Red Hat Product Errata RHSA-2026:19017 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19017 - Security Advisory Overview Updated Packages Synopsis Important: podman security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for podman is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes. Security Fix(es): net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679) github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 10.2 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 10.2 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 10.2 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 10.2 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.2 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.2 s390x Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.2 ppc64le Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.2 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 10.2 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 10.2 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 10.2 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 10.2 s390x Fixes BZ - 2445356 - CVE-2026-25679 net/url: Incorrect parsing of IPv6 host literals in net/url BZ - 2455470 - CVE-2026-34986 github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object CVEs CVE-2026-25679 CVE-2026-34986 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 x86_64 podman-5.8.2-1.el10_2.x86_64.rpm SHA-256: b93667b666ff2f5defa2cfba1bb1bb76a8574248abd436b2e7c3068bb3ab39ae podman-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: 619dfdaec4eb962588df536453fc17e427784e92370beccb0c8e83bd4e54c478 podman-debugsource-5.8.2-1.el10_2.x86_64.rpm SHA-256: 908be59135754b589b4ec8f5f895b948eae088b9cb6d32fd4153be0066be6467 podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.x86_64.rpm SHA-256: 7c6a7adf66059c9973c6c6bd615c29d0dcbe28892dabc551161c3c81873377ac podman-remote-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: a1b4da3ce1f977c5a76e54540a6cd5d56e5b7370acc125d415826f42b5daf7b1 podman-tests-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: ce11afebd3936a2ae8b2abd8514bcc3268ed0ff46d605261e88b8b676feef43a Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.2 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 x86_64 podman-5.8.2-1.el10_2.x86_64.rpm SHA-256: b93667b666ff2f5defa2cfba1bb1bb76a8574248abd436b2e7c3068bb3ab39ae podman-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: 619dfdaec4eb962588df536453fc17e427784e92370beccb0c8e83bd4e54c478 podman-debugsource-5.8.2-1.el10_2.x86_64.rpm SHA-256: 908be59135754b589b4ec8f5f895b948eae088b9cb6d32fd4153be0066be6467 podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.x86_64.rpm SHA-256: 7c6a7adf66059c9973c6c6bd615c29d0dcbe28892dabc551161c3c81873377ac podman-remote-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: a1b4da3ce1f977c5a76e54540a6cd5d56e5b7370acc125d415826f42b5daf7b1 podman-tests-debuginfo-5.8.2-1.el10_2.x86_64.rpm SHA-256: ce11afebd3936a2ae8b2abd8514bcc3268ed0ff46d605261e88b8b676feef43a Red Hat Enterprise Linux for IBM z Systems 10 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 s390x podman-5.8.2-1.el10_2.s390x.rpm SHA-256: 20b3aac5f07c0fe7e1ec40b778e9e9aea04d50b25a25a2b40f521e95b773f10f podman-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: 35be98e392f8ce428bfdda3fb3d34e00806d4c903e8a277e394075b2b54d6e66 podman-debugsource-5.8.2-1.el10_2.s390x.rpm SHA-256: 828cab0f43f80ae1dfcaeeb3a9e4918420b3332b7e400c02989a083cb3ad848c podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.s390x.rpm SHA-256: e85807c5b3cc30bf02800023d8512185e771580e1b33cb4fd32025cf131cd17a podman-remote-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: 43529f4c9c8a67c76c0a826aff633c905ba45230f5b1830b680d5c85286b473a podman-tests-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: f0d2def210871237461fc09025b3e0cdd16d4c0fb2dac2055ae58cb7ce799acf Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.2 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 s390x podman-5.8.2-1.el10_2.s390x.rpm SHA-256: 20b3aac5f07c0fe7e1ec40b778e9e9aea04d50b25a25a2b40f521e95b773f10f podman-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: 35be98e392f8ce428bfdda3fb3d34e00806d4c903e8a277e394075b2b54d6e66 podman-debugsource-5.8.2-1.el10_2.s390x.rpm SHA-256: 828cab0f43f80ae1dfcaeeb3a9e4918420b3332b7e400c02989a083cb3ad848c podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.s390x.rpm SHA-256: e85807c5b3cc30bf02800023d8512185e771580e1b33cb4fd32025cf131cd17a podman-remote-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: 43529f4c9c8a67c76c0a826aff633c905ba45230f5b1830b680d5c85286b473a podman-tests-debuginfo-5.8.2-1.el10_2.s390x.rpm SHA-256: f0d2def210871237461fc09025b3e0cdd16d4c0fb2dac2055ae58cb7ce799acf Red Hat Enterprise Linux for Power, little endian 10 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 ppc64le podman-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 5a127503d3eff67ddd25e9149fa6aeca92530793a2a8fa720deb43bf4ce8addb podman-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 1fb696404e627259fe422f43a911cefcd6dd77c0444ffaaeca89597977bd8196 podman-debugsource-5.8.2-1.el10_2.ppc64le.rpm SHA-256: c72407bb853bea6736b286600e927a4d9630fc45f8535dc36ba7bef7df1f84f3 podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 6bf504f54f2c136460d3729c4f1dedd44520b326ad70f2dd31f4a6d939e26a7e podman-remote-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: d2ec830d5d52b0384a35ace434f5e0d8f6ba0ec80b4b0b192edbfec957066a2c podman-tests-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 237d9d0abcc460af732fe7ef22df2e2fe2c58692f421577f4483dbd2c6956880 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.2 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 ppc64le podman-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 5a127503d3eff67ddd25e9149fa6aeca92530793a2a8fa720deb43bf4ce8addb podman-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 1fb696404e627259fe422f43a911cefcd6dd77c0444ffaaeca89597977bd8196 podman-debugsource-5.8.2-1.el10_2.ppc64le.rpm SHA-256: c72407bb853bea6736b286600e927a4d9630fc45f8535dc36ba7bef7df1f84f3 podman-docker-5.8.2-1.el10_2.noarch.rpm SHA-256: e2c742118f186b634081ad5b44ce5c6bbfa79d386405389164e9980c0a0881a1 podman-remote-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 6bf504f54f2c136460d3729c4f1dedd44520b326ad70f2dd31f4a6d939e26a7e podman-remote-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: d2ec830d5d52b0384a35ace434f5e0d8f6ba0ec80b4b0b192edbfec957066a2c podman-tests-debuginfo-5.8.2-1.el10_2.ppc64le.rpm SHA-256: 237d9d0abcc460af732fe7ef22df2e2fe2c58692f421577f4483dbd2c6956880 Red Hat Enterprise Linux for ARM 64 10 SRPM podman-5.8.2-1.el10_2.src.rpm SHA-256: 23fa0f07e46b39f16e4afde2c9c40e294ef47b124dc5089ed3ccac533e4cf032 aarch64 podman-5.8.2-1.el10_2.aarch64.rpm SHA-256: 9e4c32d11726402e51283257ff14c34240c5534800e9172c9c7187cd9f8ae20a podman-debuginfo-5.8.2-1.el10_2.aarch64.rpm SHA-256: 3a7f7b52930c0a890a