INFSA-2025:21702: podman security update
Information about definition
Identificator: INFSA-2025:21702
Type: security
Release date: 2025-12-01 13:03:24 UTC
Information about package
The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.
Vulnerabilities description
- CVE-2025-52881
A flaw was found in runc. This is a flaw that allowed an attacker to trick runc into writing the LSM process labels for a container process into a dummy tmpfs file and thus not apply the correct LSM labels to the container process.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2025-52881
|
no information | 8.2 | no information |
Updated packages
Preparing to download...