ALSA-2026:19017

[ALSA-2026:19017] Important: podman security update

Type:

security

Severity:

important

Release date:

2026-05-26

Description:

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.  

Security Fix(es):  

  * net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)
  * github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	podman-remote-5.8.2-1.el10_2.alma.1.aarch64.rpm	84cc7f1c65163224e330b100a49eef82fa7cc88267fc809bc8afe96fb2e178f6
aarch64	podman-5.8.2-1.el10_2.alma.1.aarch64.rpm	e0070cfebb1ec07a28055bae8f8299b34ded76eceaf8b45c9b0e1eb77548748d
aarch64	podman-tests-5.8.2-1.el10_2.alma.1.aarch64.rpm	e345531e1b2267fa5e102d51dcb3fbf9d5717a56a261eb9d82ec23fc2b373583
noarch	podman-docker-5.8.2-1.el10_2.alma.1.noarch.rpm	167be1b8d65574dac9045abe3e1e0b9208ed8e6c2c2c8b29b83d77c4173a468f
ppc64le	podman-5.8.2-1.el10_2.alma.1.ppc64le.rpm	2195464c01b6e6ce01867704a0d5290ce994bb12afde20b26ee202f95044ef45
ppc64le	podman-tests-5.8.2-1.el10_2.alma.1.ppc64le.rpm	88725138574d75c49244926b327e4b369d8856294dc03c8232bb3daa6b7467e1
ppc64le	podman-remote-5.8.2-1.el10_2.alma.1.ppc64le.rpm	dad261a103c55a8a03560ff5dda2114847d24de94e1a7b9924ff10d2014b25e5
s390x	podman-5.8.2-1.el10_2.alma.1.s390x.rpm	46434809c83f7e006528fa1aeb480e05b19d424b38a1a1f8d3b0fbb83df48b0a
s390x	podman-remote-5.8.2-1.el10_2.alma.1.s390x.rpm	66dd7bf515e57dc79dab9157d6392bd6a2f98bd21bdd9d53b4333644ad466097
s390x	podman-tests-5.8.2-1.el10_2.alma.1.s390x.rpm	c6fc254c0c378fffda819e4951a516502a309d9b66bf64ad117ec4e6e24261c4
x86_64	podman-remote-5.8.2-1.el10_2.alma.1.x86_64.rpm	4e9ab108eadcb092cc949a6135909529f29e4aa3efbb284d36cec19acfe33dfa
x86_64	podman-5.8.2-1.el10_2.alma.1.x86_64.rpm	5f60e31511c2a9881ec7d094b998e29af0c86f4c7131db9f2535856ef3ed4b40
x86_64	podman-tests-5.8.2-1.el10_2.alma.1.x86_64.rpm	8bcd44c13ebb8211c5f675cdc2a7d538b450e2f97d9171067d02098efa5224be
x86_64_v2	podman-5.8.2-1.el10_2.alma.1.x86_64_v2.rpm	2c1b21a1b208d47465e94756775c711fbe87812994fcc733f009ed499e880bc2
x86_64_v2	podman-tests-5.8.2-1.el10_2.alma.1.x86_64_v2.rpm	4cd02d306ad8756ff8e8cd4886e0f5ad3e28083743ffda7f45f9ae2c5d7068d4
x86_64_v2	podman-remote-5.8.2-1.el10_2.alma.1.x86_64_v2.rpm	76e57129338e83d0b879f64972313972e42f2eb6a8c14beb88e2aa7dfb8322b1

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.