Alerts This Week
Warning Icon 1 1,153
Alerts This Week
Warning Icon 1 1,153

SUSE Podman Important Denial of Service Security Update 2026-22451-1

suse
Calendar Grey July 3, 2026
Dist Suse Esm H88
Important SUSE security update for Podman addresses 20 vulnerabilities including denial of service risks. Update recommended.
An update that solves 20 vulnerabilities can now be installed.

Summary

## This update for podman fixes the following issues * CVE-2026-34986: github.com/go-jose/go-jose/v4,github.com/go-jose/go-jose/v3: crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262856). * CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266125). * CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266125). * CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266125). * CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh (bsc#1266125). * CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical

References

* bsc#1262856

* bsc#1266125

Cross-

* CVE-2025-22869

* CVE-2025-47913

* CVE-2025-47914

* CVE-2025-52881

* CVE-2025-6032

* CVE-2025-9566

* CVE-2026-34986

* CVE-2026-39827

* CVE-2026-39828

* CVE-2026-39829

* CVE-2026-39830

* CVE-2026-39831

* CVE-2026-39832

* CVE-2026-39833

* CVE-2026-39834

* CVE-2026-39835

* CVE-2026-42508

* CVE-2026-46595

* CVE-2026-46597

* CVE-2026-46598

CVSS scores:

* CVE-2025-22869 ( SUSE ): 8.2

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

* CVE-2025-22869 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-22869 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

* CVE-2025-47913 ( SUSE ): 8.7

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2026:22451-1
Release Date: 2026-06-30T09:31:12Z
Rating: important

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here