Language:

Information about definition

Identificator: INFSA-2025:9146

Type: security

Release date: 2025-07-15 19:44:09 UTC

Information about package

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.

Vulnerabilities description

CVE-2025-22871
The net/http package improperly accepts a bare LF as a line terminator in chunked data chunk-size lines. This can permit request smuggling if a net/http server is used in conjunction with a server that incorrectly accepts a bare LF as part of a chunk-ext.

Severity level

CVE	Score CVSS 2.0	Score CVSS 3.x	Score CVSS 4.0

Critical, important, moderate, low

Updated packages

INFSA-2025:9146: podman security update

Information about definition