Description:
The Container Network Interface (CNI) project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted.
Security Fix(es):
* net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)
* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)
* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)
* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
containernetworking-plugins-1.9.0-3.el9_8.aarch64.rpm |
7186e6d8e1386d278e9c4316994bb71ce5f663698e04e44409816619cc2b3e2f |
| ppc64le |
containernetworking-plugins-1.9.0-3.el9_8.ppc64le.rpm |
435fd8abdb4228b846150a9a004df764bcf363921b9cb0d5e048922866c588f8 |
| s390x |
containernetworking-plugins-1.9.0-3.el9_8.s390x.rpm |
dcb9116fe3104c51032c09504f8e922d247ed38606b3a67ae0eb0f1382633418 |
| x86_64 |
containernetworking-plugins-1.9.0-3.el9_8.x86_64.rpm |
99ed6b1a9551f42a3f144b498850c1d514a8d7516e61efa3e2f4db37033f142a |
