Explore top 10 tips to secure your open-source projects now. Read More
×
Update to upstream 1.5.2. Also fixes CVE-2026-27145 because golang was new enough.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-f8ab642466 2026-07-03 01:08:59.045311+00:00 -------------------------------------------------------------------------------- Name : apptainer Product : Fedora 43 Version : 1.5.2 Release : 1.fc43 URL : https://apptainer.org Summary : Application and environment virtualization formerly known as Singularity Description : Apptainer provides functionality to make portable containers that can be used across host environments. -------------------------------------------------------------------------------- Update Information: Update to upstream 1.5.2. Also fixes CVE-2026-27145 because golang was new enough. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 23 2026 Dave Dykstra - 1.5.2 - Update to upstream 1.5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2437258 - Apptainer is compiled without FIPS support https://bugzilla.redhat.com/show_bug.cgi?id=2437258 [ 2 ] Bug #2489307 - Apptainer persistently segfaults during SIF file compression using mksquashfs https://bugzilla.redhat.com/show_bug.cgi?id=2489307 [ 3 ] Bug #2494375 - CVE-2026-27145 apptainer: golang crypto/x509: Denial of Service via excessive processing of DNS SAN entries [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2494375 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-f8ab642466' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora ProjectGPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
# Security update for buildah Announcement ID: SUSE-SU-2026:2415-1 Release Date: 2026-06-16T12:23:37Z Rating: important References:. # Security update for buildah Announcement ID: SUSE-SU-2026:2415-1 Release Date: 2026-06-16T12:23:37Z Rating: important References: Affected Products: * Containers Module 15-SP7 * openSUSE Leap 15.5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server 15 SP5 LTSS * SUSE Linux Enterprise Server 15 SP6 * SUSE Linux Enterprise Server 15 SP6 LTSS * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that can now be installed. ## Description: This update for buildah rebuilds it against the current go security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2026-2415=1 * Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-2415=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-ESPOS-2026-2415=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 zypper in -t patch SUSE-SLE-Product-HPC-15-SP5-LTSS-2026-2415=1 * SUSE Linux Enterprise Server 15 SP5 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP5-LTSS-2026-2415=1 * SUSE Linux Enterprise Server 15 SP6 LTSS zypper in -t patch SUSE-SLE-Product-SLES-15-SP6-LTSS-2026-2415=1 * SUSE Linux Enterprise Server for SAPApplications 15 SP5 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP5-2026-2415=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP6-2026-2415=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * buildah-1.35.5-150500.3.59.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP5 (aarch64 x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP5 (aarch64 x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise Server 15 SP5 LTSS (aarch64 ppc64le s390x x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise Server 15 SP6 LTSS (aarch64 ppc64le s390x x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 (ppc64le x86_64) * buildah-1.35.5-150500.3.59.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP6 (ppc64le x86_64) * buildah-1.35.5-150500.3.59.1 . A critical security update for buildah on SUSE distributions addressing important issues with the application.. buildah security update,SUSE advisory,containers module,openSUSE updates. . Severity: Important. LinuxSecurity.com Team
An update that solves seven vulnerabilities can now be installed.. # Security update for kubevirt Announcement ID: SUSE-SU-2026:2400-1 Release Date: 2026-06-15T15:34:14Z Rating: critical References: * bsc#1251420 * bsc#1251615 * bsc#1253559 * bsc#1253935 * bsc#1254014 * bsc#1260234 * bsc#1265467 Cross-References: * CVE-2025-47911 * CVE-2025-47913 * CVE-2025-47914 * CVE-2025-58181 * CVE-2025-58190 * CVE-2026-33186 * CVE-2026-7374 CVSS scores: * CVE-2025-47911 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47911 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47911 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47911 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47913 ( SUSE ): 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N * CVE-2025-47913 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47913 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2025-47914 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-47914 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-47914 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58181 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58181 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58181 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( SUSE ): 6.9 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N * CVE-2025-58190 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2025-58190 ( NVD ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2026-33186 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N * CVE-2026-33186 ( SUSE ): 8.1 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2026-33186 ( NVD ): 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N * CVE-2026-7374 ( SUSE ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H * CVE-2026-7374 ( NVD ): 9.9 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Affected Products: * Containers Module 15-SP7 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that solves seven vulnerabilities can now be installed. ## Description: This update for kubevirt fixes the following issues: Update to version 1.7.4, fixes various go embedded security issues: * CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents (bsc#1251420). * CVE-2025-47913: golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request (bsc#1253559). * CVE-2025-47914: golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read (bsc#1254014). * CVE-2025-58181: golang.org/x/crypto/ssh: invalidated number of mechanisms can cause unbounded memory consumption (bsc#1253935). * CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially crafted input (bsc#1251615). * CVE-2026-7374: virt-handler: Privilege escalation and node compromise via symlink following vulnerability (bsc#1265467). * CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo- header (bsc#1260234). Release notes https://github.com/kubevirt/kubevirt/releases/tag/v1.7.4 ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: *Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-2400=1 ## Package List: * Containers Module 15-SP7 (aarch64 x86_64) * kubevirt-virtctl-debuginfo-1.7.4-150700.3.24.2 * kubevirt-virtctl-1.7.4-150700.3.24.2 * kubevirt-manifests-1.7.4-150700.3.24.2 ## References: * https://www.suse.com/security/cve/CVE-2025-47911.html * https://www.suse.com/security/cve/CVE-2025-47913.html * https://www.suse.com/security/cve/CVE-2025-47914.html * https://www.suse.com/security/cve/CVE-2025-58181.html * https://www.suse.com/security/cve/CVE-2025-58190.html * https://www.suse.com/security/cve/CVE-2026-33186.html * https://www.suse.com/security/cve/CVE-2026-7374.html * https://bugzilla.suse.com/show_bug.cgi?id=1251420 * https://bugzilla.suse.com/show_bug.cgi?id=1251615 * https://bugzilla.suse.com/show_bug.cgi?id=1253559 * https://bugzilla.suse.com/show_bug.cgi?id=1253935 * https://bugzilla.suse.com/show_bug.cgi?id=1254014 * https://bugzilla.suse.com/show_bug.cgi?id=1260234 * https://bugzilla.suse.com/show_bug.cgi?id=1265467 . Critical SUSE security update addresses seven vulnerabilities in kubevirt, ensuring enhanced security for systems.. SUSE security update, Kubevirt vulnerabilities, Critical cybersecurity patch, Linux container security, Privilege escalation issues. . Severity: Critical. LinuxSecurity.com Team
Update to upstream 1.5.1. Fixes CVE-2026-48785. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-ff5370cd61 2026-06-13 01:09:32.029732+00:00 -------------------------------------------------------------------------------- Name : apptainer Product : Fedora 44 Version : 1.5.1 Release : 1.fc44 URL : https://apptainer.org Summary : Application and environment virtualization formerly known as Singularity Description : Apptainer provides functionality to make portable containers that can be used across host environments. -------------------------------------------------------------------------------- Update Information: Update to upstream 1.5.1. Fixes CVE-2026-48785 -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 4 2026 Dave Dykstra - 1.5.1 - Update to upstream 1.5.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #2484859 - apptainer-1.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=2484859 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-ff5370cd61' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
Update to release v0.30.0 Resolves CVE-2026-39984: rhbz#2458929 Upstream new features and fixes. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2026-5045ce29e3 2026-05-23 00:56:16.173310+00:00 -------------------------------------------------------------------------------- Name : docker-buildkit Product : Fedora 44 Version : 0.30.0 Release : 1.fc44 URL : https://github.com/moby/buildkit Summary : Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit Description : Concurrent, cache-efficient, and Dockerfile-agnostic builder toolkit. -------------------------------------------------------------------------------- Update Information: Update to release v0.30.0 Resolves CVE-2026-39984: rhbz#2458929 Upstream new features and fixes -------------------------------------------------------------------------------- ChangeLog: * Wed May 13 2026 Bradley G Smith - 0.30.0-1 - Update to release v0.30.0 - Resolves CVE-2026-39984: rhbz#2458929 - Upstream new features and fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #2458929 - CVE-2026-39984 docker-buildkit: improper certificate validation in verifier [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2458929 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-5045ce29e3' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list --
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-3428 http://linux.oracle.com/errata/ELSA-2026-3428.html The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable LinuxNetwork: x86_64: aardvark-dns-1.10.1-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm buildah-1.33.14-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm buildah-tests-1.33.14-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm cockpit-podman-84.1-1.module+el8.10.0+90820+1c0b9746.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90820+1c0b9746.x86_64.rpm containernetworking-plugins-1.4.0-6.module+el8.10.0+90820+1c0b9746.x86_64.rpm containers-common-1-82.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm container-selinux-2.229.0-2.module+el8.10.0+90820+1c0b9746.noarch.rpm crit-3.18-5.module+el8.10.0+90820+1c0b9746.x86_64.rpm criu-3.18-5.module+el8.10.0+90820+1c0b9746.x86_64.rpm criu-devel-3.18-5.module+el8.10.0+90820+1c0b9746.x86_64.rpm criu-libs-3.18-5.module+el8.10.0+90820+1c0b9746.x86_64.rpm crun-1.14.3-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90820+1c0b9746.x86_64.rpm libslirp-4.4.0-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90820+1c0b9746.x86_64.rpm netavark-1.10.3-1.module+el8.10.0+90820+1c0b9746.x86_64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-catatonit-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-docker-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.noarch.rpm podman-gvproxy-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-plugins-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-remote-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm podman-tests-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.x86_64.rpm python3-criu-3.18-5.module+el8.10.0+90820+1c0b9746.x86_64.rpm python3-podman-4.9.0-3.module+el8.10.0+90820+1c0b9746.noarch.rpm runc-1.2.9-3.module+el8.10.0+90820+1c0b9746.x86_64.rpm skopeo-1.14.5-6.module+el8.10.0+90820+1c0b9746.x86_64.rpm skopeo-tests-1.14.5-6.module+el8.10.0+90820+1c0b9746.x86_64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90820+1c0b9746.x86_64.rpm udica-0.2.6-21.module+el8.10.0+90820+1c0b9746.noarch.rpm aarch64: aardvark-dns-1.10.1-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm buildah-1.33.14-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm buildah-tests-1.33.14-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm cockpit-podman-84.1-1.module+el8.10.0+90820+1c0b9746.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90820+1c0b9746.aarch64.rpm containernetworking-plugins-1.4.0-6.module+el8.10.0+90820+1c0b9746.aarch64.rpm containers-common-1-82.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm container-selinux-2.229.0-2.module+el8.10.0+90820+1c0b9746.noarch.rpm crit-3.18-5.module+el8.10.0+90820+1c0b9746.aarch64.rpm criu-3.18-5.module+el8.10.0+90820+1c0b9746.aarch64.rpm criu-devel-3.18-5.module+el8.10.0+90820+1c0b9746.aarch64.rpm criu-libs-3.18-5.module+el8.10.0+90820+1c0b9746.aarch64.rpm crun-1.14.3-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90820+1c0b9746.aarch64.rpm libslirp-4.4.0-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90820+1c0b9746.aarch64.rpm netavark-1.10.3-1.module+el8.10.0+90820+1c0b9746.aarch64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-catatonit-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-docker-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.noarch.rpm podman-gvproxy-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-plugins-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-remote-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm podman-tests-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.aarch64.rpm python3-criu-3.18-5.module+el8.10.0+90820+1c0b9746.aarch64.rpm python3-podman-4.9.0-3.module+el8.10.0+90820+1c0b9746.noarch.rpm runc-1.2.9-3.module+el8.10.0+90820+1c0b9746.aarch64.rpm skopeo-1.14.5-6.module+el8.10.0+90820+1c0b9746.aarch64.rpm skopeo-tests-1.14.5-6.module+el8.10.0+90820+1c0b9746.aarch64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90820+1c0b9746.aarch64.rpm udica-0.2.6-21.module+el8.10.0+90820+1c0b9746.noarch.rpm SRPMS: http://oss.oracle.com/ol8/SRPMS-updates/aardvark-dns-1.10.1-2.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/buildah-1.33.14-2.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/cockpit-podman-84.1-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/conmon-2.1.10-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/containernetworking-plugins-1.4.0-6.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/containers-common-1-82.0.1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/container-selinux-2.229.0-2.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/criu-3.18-5.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/crun-1.14.3-2.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/fuse-overlayfs-1.13-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/libslirp-4.4.0-2.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/netavark-1.10.3-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/podman-4.9.4-27.0.1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/python-podman-4.9.0-3.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/runc-1.2.9-3.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/skopeo-1.14.5-6.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/slirp4netns-1.2.3-1.module+el8.10.0+90820+1c0b9746.src.rpm http://oss.oracle.com/ol8/SRPMS-updates/udica-0.2.6-21.module+el8.10.0+90820+1c0b9746.src.rpm Related CVEs: CVE-2024-24785 CVE-2025-61729 CVE-2025-65637 Description of changes: aardvark-dns [2:1.10.1-2] -build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah [2:1.33.14-2] - rebuild for CVE-2025-61729 - Resolves: RHEL-140529 cockpit-podman [84.1-1] - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon [3:2.1.10-1] - update to https://github.com/containers/conmon/releases/tag/v2.1.10 - Related: Jira:RHEL-2110 containernetworking-plugins [1:1.4.0-6] - rebuild for CVE-2025-22871 - Resolves: RHEL-89244 containers-common [1-82.0.1] - Updated removed references [Orabug: 33473101] (Alex Burmashev) - Adjust registries.conf (Nikita Gerasimov) - remove references to RedHat registry (Nikita Gerasimov) container-selinux [2:2.229.0-2] - remove watch statements properly for RHEL8 and lower - Related: Jira:RHEL-2110 criu [3.18-5] - rebuild to preserve upgrade path - Related: RHEL-32671 crun [1.14.3-2] - remove BR libgcrypt-devel, no longer needed - Related: Jira:RHEL-2110 fuse-overlayfs [1.13-1] - update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.13 - Related: Jira:RHEL-2110 libslirp [4.4.0-2] - rebuild to preserve upgrade path 8.9 -> 8.10 - Related: RHEL-32671 netavark [2:1.10.3-1] - update to https://github.com/containers/netavark/releases/tag/v1.10.3 - Related: Jira:RHEL-2110 oci-seccomp-bpf-hook [1.2.10-1] - update to https://github.com/containers/oci-seccomp-bpf-hook/releases/tag/v1.2.10 - Related: Jira:RHEL-2110 podman [4.9.4-27.0.1] - Fixes issue of container created in cgroupv2 not start in cgroupv1 [Orabug: 36136813] - Fixes container memory limit not set after host is rebooted with cgroupv2 [Orabug: 36136802] - Fixes issue of podman execvp error while using podmansh [Orabug: 36756665] python-podman [4.9.0-3] - sync with release-4.9 branch - Resolves: RHEL-31069 runc [4:1.2.9-3] - rebuild for CVE-2025-61729 - Resolves: RHEL-140533 skopeo [2:1.14.5-6] - rebuild for CVE-2025-61729 - Resolves: RHEL-140534 slirp4netns [1.2.3-1] - update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.3 -Related: Jira:RHEL-2110 udica [0.2.6-21] - bump release to preserve update path - Resolves: RHEL-32671 _______________________________________________ El-errata mailing list
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:. Oracle Linux Security Advisory ELSA-2026-3336 http://linux.oracle.com/errata/ELSA-2026-3336.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: podman-5.6.0-12.0.1.el10_1.x86_64.rpm podman-docker-5.6.0-12.0.1.el10_1.noarch.rpm podman-remote-5.6.0-12.0.1.el10_1.x86_64.rpm podman-tests-5.6.0-12.0.1.el10_1.x86_64.rpm aarch64: podman-5.6.0-12.0.1.el10_1.aarch64.rpm podman-docker-5.6.0-12.0.1.el10_1.noarch.rpm podman-remote-5.6.0-12.0.1.el10_1.aarch64.rpm podman-tests-5.6.0-12.0.1.el10_1.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/podman-5.6.0-12.0.1.el10_1.src.rpm Related CVEs: CVE-2025-61726 CVE-2025-61728 CVE-2025-61729 CVE-2025-68121 Description of changes: [5.6.0-12.0.1] - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694] - Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404] [7:5.6.0-12] - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146727 _______________________________________________ El-errata mailing list
# Security update for kubernetes-old Announcement ID: SUSE-SU-2026:0573-1 Release Date: 2026-02-17T18:47:31Z Rating: important References:. # Security update for kubernetes-old Announcement ID: SUSE-SU-2026:0573-1 Release Date: 2026-02-17T18:47:31Z Rating: important References: Affected Products: * Containers Module 15-SP7 * openSUSE Leap 15.6 * SUSE Linux Enterprise Real Time 15 SP7 * SUSE Linux Enterprise Server 15 SP7 * SUSE Linux Enterprise Server for SAP Applications 15 SP7 An update that can now be installed. ## Description: This update for kubernetes-old rebuilds it against the current GO security release. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.6 zypper in -t patch SUSE-2026-573=1 openSUSE-SLE-15.6-2026-573=1 * Containers Module 15-SP7 zypper in -t patch SUSE-SLE-Module-Containers-15-SP7-2026-573=1 ## Package List: * openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64) * kubernetes1.33-client-1.33.7-150600.13.25.1 * kubernetes1.33-client-common-1.33.7-150600.13.25.1 * openSUSE Leap 15.6 (noarch) * kubernetes1.33-client-fish-completion-1.33.7-150600.13.25.1 * kubernetes1.33-client-bash-completion-1.33.7-150600.13.25.1 * Containers Module 15-SP7 (aarch64 ppc64le s390x x86_64) * kubernetes1.33-client-1.33.7-150600.13.25.1 * kubernetes1.33-client-common-1.33.7-150600.13.25.1 * Containers Module 15-SP7 (noarch) * kubernetes1.33-client-bash-completion-1.33.7-150600.13.25.1 . SUSE updates kubernetes-old to enhance security with important fixes for various versions. Apply updates promptly.. SUSE Linux Update, Kubernetes Security, SUSE Containers, OpenSUSE Security Update, Kubernetes Client Patch. . Severity: Important. LinuxSecurity.com Team
Get the latest Linux and open source security news straight to your inbox.