ALSA-2026:26447

[ALSA-2026:26447] Important: podman security update

Type:

security

Severity:

important

Release date:

2026-06-17

Description:

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.  

Security Fix(es):  

  * crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)
  * crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)
  * crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)


For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	podman-tests-5.8.2-3.el9_8.aarch64.rpm	44406be71cdfbf7fd73b216cd62e4759d3f13ca68bda983076412c3ce72e6314
aarch64	podman-plugins-5.8.2-3.el9_8.aarch64.rpm	be49ff8d3c60c7dd2a34d3504bf84fd8a4c5daea4f81880a285ed64aafc8e2a1
aarch64	podman-5.8.2-3.el9_8.aarch64.rpm	d19252e75b6e4e8ff194981f045368fa485c69008d74e8445ae9547a6a08ec2e
aarch64	podman-remote-5.8.2-3.el9_8.aarch64.rpm	e5887f899d8613f4f74f3bee716f0bb12e925c0128eebc9e2d4e5abd66c4e4e9
noarch	podman-docker-5.8.2-3.el9_8.noarch.rpm	ea4950ecb9c95b7b1500b31873bbcbd8605c4ba657a2c19826324871dd9ae0ed
ppc64le	podman-5.8.2-3.el9_8.ppc64le.rpm	320507b0b5d7ef8cb1f5c162503dc2ab722ad4691ea8b48a9a2410281a5481af
ppc64le	podman-plugins-5.8.2-3.el9_8.ppc64le.rpm	515c690cfbc79e50290bdc889f6615d6a8daa46cc31f55cbe4214689b4b3d0dc
ppc64le	podman-remote-5.8.2-3.el9_8.ppc64le.rpm	8e911b50508867ac1e78cb02746f589a5e1f6803011ec6581bf4a1043d5fcb97
ppc64le	podman-tests-5.8.2-3.el9_8.ppc64le.rpm	acfceb327e363e72878224c0c9b1a61d66fe476dc69dd9f9bd358a6645f69604
s390x	podman-plugins-5.8.2-3.el9_8.s390x.rpm	4bdd5ecf688cdebb54df5f4c4c247b8dbaa3ccbc13a6a4f52af016106f4c9f0e
s390x	podman-remote-5.8.2-3.el9_8.s390x.rpm	6f0182336bd5bd271b75ed4e541350b206fe08868ff7d46f715ee9d5978eb62c
s390x	podman-tests-5.8.2-3.el9_8.s390x.rpm	ebcb4ecb0b1bcc713db1b2dbf99fe937141f68a6278c346c7016ef8932e7e646
s390x	podman-5.8.2-3.el9_8.s390x.rpm	f75e2cee8d424862e7f29c86120add4e6b21403a9d20fc844c86c282630c968e
x86_64	podman-remote-5.8.2-3.el9_8.x86_64.rpm	0a54af7b9f860c185c12f8baebbb011b8ee34234416d4fd99539cac1aff10a1c
x86_64	podman-tests-5.8.2-3.el9_8.x86_64.rpm	0c0d8cf0f9a0c455f6ea77d3f912d2ddafc08eb16640bd2054739a6092a1bc8c
x86_64	podman-plugins-5.8.2-3.el9_8.x86_64.rpm	0e3f85692bc517fa99ae1f5b3b69546a2bc4c44113edacfea5284bc62105994c
x86_64	podman-5.8.2-3.el9_8.x86_64.rpm	e359e2b00f98099294dd518f188c761ff1a31b368bd8d3bb46e8788056bc2201

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.