Red Hat Product Errata RHSA-2026:18722 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:18722 - Security Advisory Overview Updated Packages Synopsis Important: podman security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for podman is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fix(es): podman: Podman kube play command may overwrite host files (CVE-2025-9566) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 9 Release Notes linked from the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Fixes BZ - 2393152 - CVE-2025-9566 podman: Podman kube play command may overwrite host files RHEL-127541 - [podman-6] podman env passed to container RHEL-132826 - Bump to runc v1.2.9 or v1.3.4 to get CVE and regression fixes - Podman RHEL-15873 - [Podman 6.0][RFE] podman machine init fails because it relies on qemu-system RHEL-142896 - CentOS Stream 9 and 10 are missing updates for the Podman package that are already shipped in RHEL 9/10 CVEs CVE-2025-9566 References https://access.redhat.com/security/updates/classification/#important https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/9/html/9.8_release_notes/index Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM podman-5.8.0-1.el9.src.rpm SHA-256: f4687d8b1c6316f663bb3c25cd140f207ae57a038acf37fa1538b844e1795c85 x86_64 podman-5.8.0-1.el9.x86_64.rpm SHA-256: 03366a26af0736c83f4f4c0f4dc9e954903b87d565368d3b15d12c5df3e42170 podman-debuginfo-5.8.0-1.el9.x86_64.rpm SHA-256: 317e172d302a681f58f8f59f41f46aad6926538d750a72a640685030d1670352 podman-debugsource-5.8.0-1.el9.x86_64.rpm SHA-256: dd17f50d28c400215ee7016355e2f7ca26439840cd537a37f395f96c182458a9 podman-docker-5.8.0-1.el9.noarch.rpm SHA-256: cbbc65934c743d7c82af0b3dbd303a242eefbefeedc6170da8487738d4487e21 podman-plugins-5.8.0-1.el9.x86_64.rpm SHA-256: d47513cb9402fc4be9c42f09fa3af80fe4e529624b201e34e4d3df879cdb8c65 podman-plugins-debuginfo-5.8.0-1.el9.x86_64.rpm SHA-256: c6a62aa1518186d27d1a21517d4d5177e02f48d549f9df30f4f47c2eedc87e19 podman-remote-5.8.0-1.el9.x86_64.rpm SHA-256: 5d1aa42371f1096f1c157942fefab6887d8ebc7a754fdb48f362b18c72d9b38a podman-remote-debuginfo-5.8.0-1.el9.x86_64.rpm SHA-256: f35ebc2b2e0d514fc308de7edef2ecbf66096891e93b901f075b91add9cd7b60 podman-tests-5.8.0-1.el9.x86_64.rpm SHA-256: 255741c65cfa35b4a7893b856903b65b18e8684c490bde862f44a0d14fbfa0c2 podman-tests-debuginfo-5.8.0-1.el9.x86_64.rpm SHA-256: 76845b02f6f89f4c0adbaf9cd4d7e4122e6295f4aa804118bd5783bfb4c69ec1 Red Hat Enterprise Linux for IBM z Systems 9 SRPM podman-5.8.0-1.el9.src.rpm SHA-256: f4687d8b1c6316f663bb3c25cd140f207ae57a038acf37fa1538b844e1795c85 s390x podman-5.8.0-1.el9.s390x.rpm SHA-256: c69cc8771ec562aac7a437f3b9bcf89e9ca07c5630286089807f90d3db58ae02 podman-debuginfo-5.8.0-1.el9.s390x.rpm SHA-256: 741b1aab8d0242ad689883349cce9d96bdf1e38a67c462ce13ba4f1c1a604d8f podman-debugsource-5.8.0-1.el9.s390x.rpm SHA-256: 638478e63c7a6da6695d4b66a7036726328c49621c48a0631d72186dd6183d3e podman-docker-5.8.0-1.el9.noarch.rpm SHA-256: cbbc65934c743d7c82af0b3dbd303a242eefbefeedc6170da8487738d4487e21 podman-plugins-5.8.0-1.el9.s390x.rpm SHA-256: 77e37f05281cdb2fb6b39f525693b00df590dd50321a53811aeedb2b53c605bc podman-plugins-debuginfo-5.8.0-1.el9.s390x.rpm SHA-256: c7d005a3f150f9252dc45bdb55d9c2eb4348f4b55b2799b7ac10d35693cd03ab podman-remote-5.8.0-1.el9.s390x.rpm SHA-256: 36e41c62c89d2bec71987c017b3a718751f268b9bdfe3907974c9dc87b899285 podman-remote-debuginfo-5.8.0-1.el9.s390x.rpm SHA-256: 49088246ea6b45bf08829319bc7c195da6092ea839a4a9fb4c24b0dba7d29dca podman-tests-5.8.0-1.el9.s390x.rpm SHA-256: 2a3b77d0bfebab9bd99e5e39f72d6ddbec74db0b3ceda361c7e39f6201ca064d podman-tests-debuginfo-5.8.0-1.el9.s390x.rpm SHA-256: e8c8e67c0e1eade02e3ae58c6a3b8d7563ac0e9be68511a07640437f12a96f1a Red Hat Enterprise Linux for Power, little endian 9 SRPM podman-5.8.0-1.el9.src.rpm SHA-256: f4687d8b1c6316f663bb3c25cd140f207ae57a038acf37fa1538b844e1795c85 ppc64le podman-5.8.0-1.el9.ppc64le.rpm SHA-256: 70275bc91cdde5225e5c20902eb8da386906cf37d4bcb9baccf478ae94917933 podman-debuginfo-5.8.0-1.el9.ppc64le.rpm SHA-256: 6251c1c2c89d69b67ff4de10ddb2faa4db5d6eea11635ca323968e99bf0286ae podman-debugsource-5.8.0-1.el9.ppc64le.rpm SHA-256: c6145dfcf373cdb6af3feae2e8cb0b00e2695689482e0323d74d769fa7b07691 podman-docker-5.8.0-1.el9.noarch.rpm SHA-256: cbbc65934c743d7c82af0b3dbd303a242eefbefeedc6170da8487738d4487e21 podman-plugins-5.8.0-1.el9.ppc64le.rpm SHA-256: ec1d3bdf85330bee456c272a5426cc77630ea636befa5ce00f50ee36fc7d22bc podman-plugins-debuginfo-5.8.0-1.el9.ppc64le.rpm SHA-256: 5067604cd12939135983ca71d1b69b28e48dd1bf145f54026046df9b93a250d0 podman-remote-5.8.0-1.el9.ppc64le.rpm SHA-256: 5de70e775aa83dd543adb714a1f5d103912f6ea1d0700dfa39c117d331b993df podman-remote-debuginfo-5.8.0-1.el9.ppc64le.rpm SHA-256: eac286123266d2c2b0f1a4b322bdbc0c01cf6aace1064550dc47a7a08edae318 podman-tests-5.8.0-1.el9.ppc64le.rpm SHA-256: 85f26da345e638fb757e7c6359d12f70c1258c58803727dd145e70fa5418d27f podman-tests-debuginfo-5.8.0-1.el9.ppc64le.rpm SHA-256: 04cfcdf0bdaa707a87e52d674222e4af54bca5c1338a0453a3c6af770774d049 Red Hat Enterprise Linux for ARM 64 9 SRPM podman-5.8.0-1.el9.src.rpm SHA-256: f4687d8b1c6316f663bb3c25cd140f207ae57a038acf37fa1538b844e1795c85 aarch64 podman-5.8.0-1.el9.aarch64.rpm SHA-256: 7f8bfb141415e4e1138101d776cbbc123b451a96f2a7a30f974e91fc833a1ff8 podman-debuginfo-5.8.0-1.el9.aarch64.rpm SHA-256: c6f31f9e5da164433e770d4e6361d65ecc9c2e5627a460206a3251a18c5c3c3d podman-debugsource-5.8.0-1.el9.aarch64.rpm SHA-256: f2a5da71d3067a99c673370ce6058e672e021c35b1d01fd2fc409dfb6b399547 podman-docker-5.8.0-1.el9.noarch.rpm SHA-256: cbbc65934c743d7c82af0b3dbd303a242eefbefeedc6170da8487738d4487e21 podman-plugins-5.8.0-1.el9.aarch64.rpm SHA-256: 8c0c04d04e43e3ca0bc9859191e2f576da235f795cda7105e373263e4a5fe53b podman-plugins-debuginfo-5.8.0-1.el9.aarch64.rpm SHA-256: 973877e66e3a64c4448cf954694780c3aebf2f4f4ab18cc3d9b38100b6dd9e3b podman-remote-5.8.0-1.el9.aarch64.rpm SHA-256: 8d64b434a7a13303a4dd7f168bb2bafcc645c5ee3c1477bf75814d6a6a463bad podman-remote-debuginfo-5.8.0-1.el9.aarch64.rpm SHA-256: c9bd0710ea81d667a8c713351cb0c0d23199fae7ae64b75d66bf7476e31bf4c9 podman-tests-5.8.0-1.el9.aarch64.rpm SHA-256: f649a590ffdc3ea3207027096c38752648993595b7c45cdd93ac8f79d47be70e podman-tests-debuginfo-5.8.0-1.el9.aarch64.rpm SHA-256: 776bb66e36786bf1c34c1cbce9674cd78732fa3046f83d3c844b2d17d6bbd769 The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .