Oracle Linux Security Advisory ELSA-2025-9144 http://linux.oracle.com/errata/ELSA-2025-9144.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: podman-5.4.0-10.0.1.el9_6.x86_64.rpm podman-docker-5.4.0-10.0.1.el9_6.noarch.rpm podman-plugins-5.4.0-10.0.1.el9_6.x86_64.rpm podman-remote-5.4.0-10.0.1.el9_6.x86_64.rpm podman-tests-5.4.0-10.0.1.el9_6.x86_64.rpm aarch64: podman-5.4.0-10.0.1.el9_6.aarch64.rpm podman-docker-5.4.0-10.0.1.el9_6.noarch.rpm podman-plugins-5.4.0-10.0.1.el9_6.aarch64.rpm podman-remote-5.4.0-10.0.1.el9_6.aarch64.rpm podman-tests-5.4.0-10.0.1.el9_6.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//podman-5.4.0-10.0.1.el9_6.src.rpm Related CVEs: CVE-2025-22871 Description of changes: [5.4.0-10.0.1] - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount [Orabug: 36234694] - Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117404] [5:5.4.0-10] - rebuild to fix CVE-2025-22871 podman: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-90055 _______________________________________________ El-errata mailing list [email protected] https://oss.oracle.com/mailman/listinfo/el-errata
