- What: Security update for container-tools in Red Hat Enterprise Linux 8.8
- Impact: Systems using container-tools may be vulnerable if not updated
红帽产品勘误 RHSA-2026:16701 - Security Advisory 发布: 2026-05-13 已更新: 2026-05-13 RHSA-2026:16701 - Security Advisory 概述 更新的软件包 概述 Important: container-tools:rhel8 security update 类型/严重性 Security Advisory: Important Red Hat Lightspeed patch analysis 识别并修复受此公告影响的系统。 查看受影响的系统 标题 An update for the container-tools:rhel8 module is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 描述 The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix(es): golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 解决方案 For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 受影响的产品 Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 x86_64 Red Hat Enterprise Linux Server - TUS 8.8 x86_64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.8 x86_64 修复 BZ - 2414943 - CVE-2025-47913 golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS CVE CVE-2025-47913 参考 https://access.redhat.com/security/updates/classification/#important 注:: 可能有这些软件包的更新版本。 点击软件包名称查看详情。 Red Hat Enterprise Linux for x86_64 - Extended Update Support Extension 8.8 SRPM aardvark-dns-1.5.0-2.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 960ad6009556798fb98fc2eb251bd1cf8d278d498f483c9007f54ec4744d2a8f buildah-1.29.7-1.module+el8.8.0+24026+ca15dd94.src.rpm SHA-256: cea4b3728f8f3f67b4f44bef2e1014b5ff5ed3b0297007ea5683318912fc528d cockpit-podman-63.1-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 3635ab2d3c9a12f295526f6eb7fc6af776d1c8b5b989f1f6f488e18999804930 conmon-2.1.6-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 444aebe8a782f8977ac975f36be18b68874cfb91443cc466be80b54a110eba13 container-selinux-2.229.0-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 89ba83577aca39820145d9d02f3d80b3b7a26b233af54767d5c7903c36427113 containernetworking-plugins-1.2.0-3.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 23debc785896a5955cd765bc7ca0a96d23346337fef20ab4c0664699351956c6 containers-common-1-67.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 5d9c50cb3837a9ca97ebab791325319d513b5e09060605ae15f134f3b7b89dc7 criu-3.15-4.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 1f9321c8075cd7f4347c11cee790088e9f82168afe2361e877eed18c5cfda0da crun-1.14.3-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: c4b66c3a4ffffb91d42960539ecfb0bb103ed97e1fbcf05cffd5d2256b8bf6df fuse-overlayfs-1.11-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 9e172f8cc6725e11fb9c362b8a271211083056e0871e197f3345600b2d3f0b59 libslirp-4.4.0-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 5cf18c72440e24367131332805cf556849939fffe111cd8e8af497483a95f276 netavark-1.5.1-3.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 2bc1cfc61114918345c6b68c3443f11817def5711f6c35d6579c4e70f7fa3aaf oci-seccomp-bpf-hook-1.2.10-1.module+el8.8.0+24130+2fde7a57.src.rpm SHA-256: 219cab8cffcc73af9058d48787977660f70aeedc47fe4773b36c90d1cc982b56 podman-4.4.1-27.module+el8.8.0+24240+fe437f32.6.src.rpm SHA-256: 684bc47362ee8e8b578896b16714e0e4f9b1536bdd1aa1216292eafad120879a python-podman-4.4.1-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 92df420492a1e298f86887b3c5ed2afaebbb3ed6889bd579c5d28aee562f410e runc-1.2.9-1.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: aa7600e11c8ad6b1546b5973d5ef7aae7df5082dbf58d750b412fa21af131d6e skopeo-1.11.4-0.1.module+el8.8.0+24130+2fde7a57.src.rpm SHA-256: 1edd3a8053581e1ba38933ee8dc6eae9ecc039c7d305b3e6e875a06619894774 slirp4netns-1.2.0-3.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 00e54c7901cfec2376466c72621bea8127c3659210e86bfa261cfba70f8bc109 toolbox-0.0.99.3-7.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 5e89d16b566675df35ff3bb869969ad39a5f9777dbcd43ff1117735c78bb7370 udica-0.2.6-20.module+el8.8.0+23884+2031fc78.src.rpm SHA-256: 99fa8e1040e627ef22d45c9ffd6eab1547c4305bef2853aa507925861e560222 x86_64 aardvark-dns-1.5.0-2.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 39e44b2d585fb4c7208de1aa0c79b6872f76c56dd5c08948b45c978eb5b084e7 buildah-1.29.7-1.module+el8.8.0+24026+ca15dd94.x86_64.rpm SHA-256: cf25890a2dff5c90da71717cf336bb73e5df61f9f3b87d815b1639879e2aa1e7 buildah-debuginfo-1.29.7-1.module+el8.8.0+24026+ca15dd94.x86_64.rpm SHA-256: 2d915da948ca4996f72f388d29e566d6b3f8dea67e118d13cd0dd1fb3aed5183 buildah-debugsource-1.29.7-1.module+el8.8.0+24026+ca15dd94.x86_64.rpm SHA-256: d41755c7123eac2e257f9781ba55c326e686bf875c189ac273a0644ec0a86901 buildah-tests-1.29.7-1.module+el8.8.0+24026+ca15dd94.x86_64.rpm SHA-256: dcf02d94a73c833a38bd06071c49eda6d0b47183af4c90fd8f247894d3bff817 buildah-tests-debuginfo-1.29.7-1.module+el8.8.0+24026+ca15dd94.x86_64.rpm SHA-256: 6f1c3781a43d47e0fdae5954f7fcf3c83ea92aa9c126e8bf46c164ff11eb9712 cockpit-podman-63.1-1.module+el8.8.0+23884+2031fc78.noarch.rpm SHA-256: 3ae0eb03cdabb877cceabe1233a7ebc477bc64efac680318b6ef48e2162986f2 conmon-2.1.6-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: bf43860594b1e9c39f56ad726acbbf99503daffd950d868a8c24466c254de568 conmon-debuginfo-2.1.6-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 348df4e703c3464dfad5959c1023f52013b335911c8273c598ef41b15aecf8ae conmon-debugsource-2.1.6-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: e41d19c5fdb62ce766d527652db52bd479e1af1dd3c516c9d8498edaf002da19 container-selinux-2.229.0-1.module+el8.8.0+23884+2031fc78.noarch.rpm SHA-256: 2f0fbb3d0025fb3677ed5f56b3db72e8837d632d6a813be2f9f77dd34e6d1613 containernetworking-plugins-1.2.0-3.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 69b3d86e472dced42fabffff0fa280b3533b24ed2342b72626cc1b0c6f75b1d0 containernetworking-plugins-debuginfo-1.2.0-3.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 2ecda50a2ca2c4be5747cbc5c01def42b10cb2eabf2cef33afcc255d80cba7f3 containernetworking-plugins-debugsource-1.2.0-3.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 54a5d635b820aa3756155c774fb37429268500696735cf3f63e06a76ce5a9e11 containers-common-1-67.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 61db2dbb62921360dda9262685ed045ddd6a34318cdcfe91c5bf8e1af8343eb0 crit-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 7d4da5e91f291c7fcc478873bdb1f668b84bb7e57b48f7c6a9c3fe9de784dda0 criu-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: b032a36844e133b0bca2c488212313f0bf010091dd110bfe9d4cce27aa37aef5 criu-debuginfo-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 3680c0122b276a0fc2b8ad931ddd0a9c5d8bb16e3cfa105a6ed6b7061a1cbda0 criu-debugsource-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 61cbbf785f76b7a87685f0edae3d45d6f1a7b5e32ad5d83ac70e3bf2c28f1ffc criu-devel-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 88fb4c0126a53f2c722bd50637b4d5b22e2dbda52cf7dbdbffddd03e32d54f8e criu-libs-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 48e4327b33f47beef2e7a14ac528ea825768ee74feddff708228148e5f2f22c2 criu-libs-debuginfo-3.15-4.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: ab52df6204848753e870d1f6f41694af46df7591ee1cc5f3170846c3316d94cf crun-1.14.3-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: a6ce794594885343e76b05e5d7aee5558b72bf234dcd2e4f89233453a33a4ca9 crun-debuginfo-1.14.3-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 2f0e592342b058dfab9adbca13a1a71711e077f96a0baeac08bc6153dfd29495 crun-debugsource-1.14.3-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 598fbe05dade262f514f974a1a5a7d402dd73bb1c282f4a91d457f0403b990a6 fuse-overlayfs-1.11-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 1af991df90f89a5f864b78a26d5c7ec5a5e29806d57a117fec83b2ea3ee29abe fuse-overlayfs-debuginfo-1.11-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 88555f0d508d103c951d3cd840e628ce202c0642b08ff0aa49ccc6a21f1a0e8b fuse-overlayfs-debugsource-1.11-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: e6842974aa58d9400af649222a66c1fc5f40b5afb8069789add5ebd27b31411c libslirp-4.4.0-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 1f0c29f2eae103577bb70c9018ec0e4a3479b39a8109bdcfabfc0db7c093fe4b libslirp-debuginfo-4.4.0-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 180022e6adb387512109b90153ebd116ce0997ce8a7acb85e47f5b57639b500a libslirp-debugsource-4.4.0-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: ad7b3959ba97e6ffd27bdbef5a48a1262503be258ee35f939d5c65c1fa103d39 libslirp-devel-4.4.0-1.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 3d86c1dde15bb5fd360d96362ce94a855220ea54a61015c8ed28381a22c98d60 netavark-1.5.1-3.module+el8.8.0+23884+2031fc78.x86_64.rpm SHA-256: 4cd9baa512ecc7fb5f500b152615c803478b42998b6e32ca927d5d6c55df18fa oci-seccomp-bpf-hook-1.2.10-1.module+el8.8.0+24130+2fde7a57.x86_64.rpm SHA-256: 6cf78c1c5b6b70dd756e53918a893a6ed0523d326bcca123ee24ac21cdafb998 oci-seccomp-bpf-hook-debuginfo-1.2.10-1.module+el8.8.0+24130+2fde7a57.x86_64.rpm SHA-256: b851ff281738a7a6dfc1bff3f2507cc01a25e24c9f9d1385c19b442dedf0536e oci-seccomp-bpf-hook-debugsource-1.2.10-1.module+el8.8.0+24130+2fde7a57.x86_64.rpm SHA-256: 7ed816f00629540c3ec6981b12b8af58358ab0c8a9e64bec441af7e4c7d80154 podman-4.4.1-27.module+el8.8.0+24240+fe437f32.6.x86_64.rpm SHA-256: eb3482a8c3ffdef34dacc12e454909ce4d4dfba41b1d2c80c4eb7dd7a0d6c8e9 podman-catatonit-4.4.1-27.module+el8.8.0+24240+fe437f32.6.x86_64.rpm SHA-256: 7c33a6a8a9574af9acd3fa64bac38e41432c6eb889e3b3f77d0ab542e5e3