A vulnerability (CVE-2025-47913, CVSS 7.5 HIGH) in the Go `golang.org/x/crypto/ssh/agent` library can cause an SSH client panic when processing an unexpected `SSH_AGENT_SUCCESS` message. This flaw affects Podman packages on Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions, as Podman incorporates the vulnerable library. The underlying Go library is fixed in version 0.43.0; administrators should apply the provided Red Hat security update for Podman.
Red Hat Product Errata RHSA-2026:16702 - Security Advisory Issued: 2026-05-13 Updated: 2026-05-13 RHSA-2026:16702 - Security Advisory Overview Updated Packages Synopsis Important: podman security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for podman is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fix(es): golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux Server - AUS 9.2 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.2 s390x Fixes BZ - 2414943 - CVE-2025-47913 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS CVEs CVE-2025-47913 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux Server - AUS 9.2 SRPM podman-4.4.1-22.el9_2.9.src.rpm SHA-256: 9a877fe5556f44cd5851e2ac26c14b825582b2e23bd22e5041620ca70f5d4193 x86_64 podman-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: a5f0df5ac344371cfb870d1f38c3cfd9e1a22fe0a8a3bd5af3e898877eacd8ef podman-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: e9da202ca66014da56de3d19124ab7b97133ae13ec5761a00abf811a9dadaf4a podman-debugsource-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 7f4843abf6ab4f2178a811e78a98f25f8b5c1cb0332592866f9db02e42cec44d podman-docker-4.4.1-22.el9_2.9.noarch.rpm SHA-256: 6220d393793976977b9962938c6f8e056d30a67a30a0007cc4938f9f79fe28a3 podman-gvproxy-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 0b480e7eff18b2b1aa4ddad402b22bc2464c1225da923e01c834e10939b2c618 podman-gvproxy-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 38bcd65a6764041b75b399019bfee3af1692a350ba0ac83d6118f9d8d11bf9f1 podman-plugins-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 0ac2b4ecea0d5507cf1c8434cbdf6c86885af1f74998c76baea7a15a94b137d6 podman-plugins-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 8bc8f74069827f9c384c89d84b27fda2502ed8ebfa7f483050fec68c2421b11d podman-remote-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 8df99b78351309f9cf9c5b1c64afeb3fb5a4498f4a6dde51e52d43ee7f805cca podman-remote-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 736e50c6aee336f23f245d76bfcb9c77783ef907c6e8fc7282fd5ff79f13d95b podman-tests-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 75f31ea6bff371587eee420b0fd42313f91331eb101c111f36f828f1dcf63d62 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 SRPM podman-4.4.1-22.el9_2.9.src.rpm SHA-256: 9a877fe5556f44cd5851e2ac26c14b825582b2e23bd22e5041620ca70f5d4193 ppc64le podman-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 79fee0a71fbb13c5694ad7de8a7cf3c7133f6114423139926d1b93297ca9044a podman-debuginfo-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 603e98a65b22c954ee6dd76d3bebc909875e79ee4934c72fd405a534deaeefd9 podman-debugsource-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 5eb8d97b75fcd20ce56e80127e95e4c2c994efba469f119e61b4bda9d7d41508 podman-docker-4.4.1-22.el9_2.9.noarch.rpm SHA-256: 6220d393793976977b9962938c6f8e056d30a67a30a0007cc4938f9f79fe28a3 podman-gvproxy-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: a53fd4a8e70ca02d842b389e825141770401efc463d1df3572c8e776bb24f190 podman-gvproxy-debuginfo-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 5abd634d2d5005a65d298c51e292f962fb5f82a5008d0f9def13097e0e5178a6 podman-plugins-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 627fadca0bc1976271b7528ef42fc545ae56bfc77132ec2d7538f2d06fbeca41 podman-plugins-debuginfo-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 617d5f4aaeeca2d70efb4adb1a96348388ae16732361d5e1691685ecaea517fb podman-remote-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 7c17260ddc1a59d47da194bc018f00d59f0a57b42e59ad76d4277a8679122aa6 podman-remote-debuginfo-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 0190cf8385bb30cfffd28bb3a9887b06eca5c9e6e5e123b9ea80f9139cbd6d1d podman-tests-4.4.1-22.el9_2.9.ppc64le.rpm SHA-256: 2cf6ca22836d0b5d8072c609de8e4cb2b501bd77741252e39671f84cba203e43 Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 SRPM podman-4.4.1-22.el9_2.9.src.rpm SHA-256: 9a877fe5556f44cd5851e2ac26c14b825582b2e23bd22e5041620ca70f5d4193 x86_64 podman-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: a5f0df5ac344371cfb870d1f38c3cfd9e1a22fe0a8a3bd5af3e898877eacd8ef podman-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: e9da202ca66014da56de3d19124ab7b97133ae13ec5761a00abf811a9dadaf4a podman-debugsource-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 7f4843abf6ab4f2178a811e78a98f25f8b5c1cb0332592866f9db02e42cec44d podman-docker-4.4.1-22.el9_2.9.noarch.rpm SHA-256: 6220d393793976977b9962938c6f8e056d30a67a30a0007cc4938f9f79fe28a3 podman-gvproxy-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 0b480e7eff18b2b1aa4ddad402b22bc2464c1225da923e01c834e10939b2c618 podman-gvproxy-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 38bcd65a6764041b75b399019bfee3af1692a350ba0ac83d6118f9d8d11bf9f1 podman-plugins-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 0ac2b4ecea0d5507cf1c8434cbdf6c86885af1f74998c76baea7a15a94b137d6 podman-plugins-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 8bc8f74069827f9c384c89d84b27fda2502ed8ebfa7f483050fec68c2421b11d podman-remote-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 8df99b78351309f9cf9c5b1c64afeb3fb5a4498f4a6dde51e52d43ee7f805cca podman-remote-debuginfo-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 736e50c6aee336f23f245d76bfcb9c77783ef907c6e8fc7282fd5ff79f13d95b podman-tests-4.4.1-22.el9_2.9.x86_64.rpm SHA-256: 75f31ea6bff371587eee420b0fd42313f91331eb101c111f36f828f1dcf63d62 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 SRPM podman-4.4.1-22.el9_2.9.src.rpm SHA-256: 9a877fe5556f44cd5851e2ac26c14b825582b2e23bd22e5041620ca70f5d4193 aarch64 podman-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: 4cbaa5442275f00b681d766e8a61887efc7ca512be21ef249d02bcca10b1029c podman-debuginfo-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: c75f1ab3d857f6ee83ce74635ab6cadd987985239d0aac1b45b8f8d968981d5a podman-debugsource-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: 6c3817365f6de4d11497a047ad14f1e691a65172b461e6ee071b6aca0c3d6fd5 podman-docker-4.4.1-22.el9_2.9.noarch.rpm SHA-256: 6220d393793976977b9962938c6f8e056d30a67a30a0007cc4938f9f79fe28a3 podman-gvproxy-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: f645a7e595713d899139624db8a1db2d8413a5ac6487e663f7dc285acfd0e054 podman-gvproxy-debuginfo-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: bb26e7c4adc4e117dcc4ac2f5a47019c141cb0aeb532156a03f27273c9d3b9cb podman-plugins-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: 6afe2fd9206d77c5311beb49b532a804149d3b1cedf07b7bc2c8a4a88bdb4a07 podman-plugins-debuginfo-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: 87699e6252f9e6b29e4e7ccf10b5b3c6561d0343d02b66f88ed0f0a856f2f452 podman-remote-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: b7f1004280f875d939f4ff39e489c9b47d02470f5f0fa71f0271888e49e98421 podman-remote-debuginfo-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: a6e2f11937d91dec53fc4e22bbd9e4534206a6271a28f8667373a7a14d831f0e podman-tests-4.4.1-22.el9_2.9.aarch64.rpm SHA-256: 3430aa1356373f442a27bf349e314907bb986d83d0ced0a2ede07f85e0c9febc Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 SRPM podman-4.4.1-22.el9_2.9.src.rpm SHA-256: 9a877fe5556f44cd5851e2ac26c14b825582b2e23bd22e5041620ca70f5d4193 s390x podman-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 52d28d088828853eae8e75c36a2a2bcc9a8dc73ae6fe1ddf9bb41befe87326f4 podman-debuginfo-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 63f6e2f0ee177a85124735041432f5b384dbd0c4fe609d9de9729739774aea2a podman-debugsource-4.4.1-22.el9_2.9.s390x.rpm SHA-256: adf7127db196a5032fbaa3b6c4b7f18a9c7ecb14fa81729e8060306156abf298 podman-docker-4.4.1-22.el9_2.9.noarch.rpm SHA-256: 6220d393793976977b9962938c6f8e056d30a67a30a0007cc4938f9f79fe28a3 podman-gvproxy-4.4.1-22.el9_2.9.s390x.rpm SHA-256: b78844e08fd4dc844a6a6b6e9489deabba7fd7e5facc3ed18f1901cdcd968180 podman-gvproxy-debuginfo-4.4.1-22.el9_2.9.s390x.rpm SHA-256: db3cad663bf02c2e6af079edae9e5d58b63175527c89ca1df97c2484408e29cd podman-plugins-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 3f42e2c78b3bc71232e93477432f99ec019308b65b500b7a2eb944e4d65c86d1 podman-plugins-debuginfo-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 66991522d4eb0bd5d988f24f1171189f8cb42d8083ebf6f09a37d7562e387a4a podman-remote-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 5456408979487ea7e46802412b3971120f53624437545724ed6ff9beee46cd82 podman-remote-debuginfo-4.4.1-22.el9_2.9.s390x.rpm SHA-256: f9cdd5c46e2cacf224644a2ad4d61dcdcaee55cf847a5b60776f904276d8477a podman-tests-4.4.1-22.el9_2.9.s390x.rpm SHA-256: 6edce9d5193cd464333c0bc77590f7e55e045c2dfef1c8feb0cab90c8739530d Red Hat Enterprise Linux for x86_64 - E