Description:
The Container Network Interface (CNI) project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted.
Security Fix(es):
* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the AlmaLinuxRelease Notes linked from the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
containernetworking-plugins-1.9.0-2.el9.aarch64.rpm |
d17f18ebbac398ea5870120e539afb60af6dd134428282a1b6c377e1e10e62c0 |
| ppc64le |
containernetworking-plugins-1.9.0-2.el9.ppc64le.rpm |
e74295503f32ff0a4df8c953ece6a21d1d82a9e0e0df9325202da5e9f998aec4 |
| s390x |
containernetworking-plugins-1.9.0-2.el9.s390x.rpm |
f3925f5ff3cce69d9981d25b7d0421efbbb7afa377e59555a9c02687d11b734b |
| x86_64 |
containernetworking-plugins-1.9.0-2.el9.x86_64.rpm |
f7c738c355c5c0801ed62102d3707090f0d0260b8b9a4a848e6d380a8d7f48c6 |
