Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Rocky Linux RLSA-2025-21232 Important Container Escape Threat

rocky
Calendar Grey November 28, 2025
Rockylinux Esm H88
Container-tools security update for Rocky Linux addresses critical escape vulnerabilities. Immediate action is necessary.
Important: container-tools:rhel8 security update

Summary

An update is available for module.crun, fuse-overlayfs, module.slirp4netns, python-podman, module.runc, container-selinux, module.podman, module.udica, module.aardvark-dns, module.fuse-overlayfs, cockpit-podman, aardvark-dns, module.conmon, containers-common, libslirp, criu, module.containers-common, crun, module.libslirp, module.containernetworking-plugins, netavark, udica, slirp4netns, skopeo, toolbox, buildah, module.cockpit-podman, oci-seccomp-bpf-hook, containernetworking-plugins, conmon, module.toolbox, module.netavark, runc, module.buildah, module.container-selinux, module.skopeo, podman, module.python-podman, module.oci-seccomp-bpf-hook, module.criu. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list


RPMs

aardvark-dns-2:1.10.1-2.module+el8.10.0+2001+6a33db9f.aarch64.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+1896+b18fa106.src.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+1874+ce489889.src.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+1880+8e896d1b.src.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+1948+4b5cd4a9.src.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+2001+6a33db9f.src.rpm

aardvark-dns-2:1.10.1-2.module+el8.10.0+2001+6a33db9f.x86_64.rpm

buildah-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.aarch64.rpm

buildah-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.src.rpm

buildah-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.x86_64.rpm

buildah-debuginfo-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.aarch64.rpm

buildah-debuginfo-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.x86_64.rpm

buildah-debugsource-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.aarch64.rpm

buildah-debugsource-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.x86_64.rpm

buildah-tests-2:1.33.12-2.module+el8.10.0+2001+6a33db9f.aarch64.rpm

Read the Full Advisory

References

No references

CVES

https://www.cve.org/CVERecord?id=CVE-2025-31133

https://www.cve.org/CVERecord?id=CVE-2025-52565

https://www.cve.org/CVERecord?id=CVE-2025-52881

Severity
important

Name: RLSA-2025:21232
Affected Products: Rocky Linux 8

Fixes

https://bugzilla.redhat.com/show_bug.cgi?id=2404705

https://bugzilla.redhat.com/show_bug.cgi?id=2404708

https://bugzilla.redhat.com/show_bug.cgi?id=2404715


Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here