Red Hat Product Errata RHSA-2025:3184 - Security Advisory
Issued:
2025-03-25
Updated:
2025-03-25

RHSA-2025:3184 - Security Advisory

Synopsis

Important: podman security update

Type/Severity

Security Advisory: Important

Red Hat Lightspeed patch analysis

Identify and remediate systems affected by this advisory.

View affected systems

Topic

An update for podman is now available for Red Hat Enterprise Linux 9.2 Extended Update Support.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Description

The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.

Security Fix(es):

  • golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (CVE-2025-22869)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Solution

For details on how to apply this update, which includes the changes described in this advisory, refer to:

https://access.redhat.com/articles/11258

Affected Products

  • Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2 x86_64
  • Red Hat Enterprise Linux Server - AUS 9.2 x86_64
  • Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2 s390x
  • Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2 ppc64le
  • Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2 aarch64
  • Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2 ppc64le
  • Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2 x86_64
  • Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2 aarch64
  • Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2 s390x

Fixes

  • BZ - 2348367 - CVE-2025-22869 golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh

Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
x86_64
podman-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: aede6356f475670b4693ae7f0e0618fcc3590d70264050c9d98704133c00451c
podman-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 392b44840fcee5506a1738c9ebe307e9ac6bf139bc3c02d7928d719737e6622f
podman-debugsource-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: dd404fafa9f069ef042dca7c7d83c6843c11d8c9a527f569f681db9840572259
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 75e3b96e217a3df1b0a0c5c370b445f7a46bdce1ed491be63e55610401f1ef1f
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 9e970f2cca6472e1f70feee20e5834d51f6bd9dd11c197fb8b4e34bc1e27e88f
podman-plugins-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 76a47ef013b21672bf3719464b938bad2f1899aa0eac15db54979548fffb6fe0
podman-plugins-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 61ca36c574a3d2abb2e395c4f362a2dde0ac5d9d9454534978f892925731419f
podman-remote-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 8b8f7d7caa32e1a35026453e49b71e4b83ae33c8cd82fb743ed3a12e801cb66d
podman-remote-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 13de1d87b6569fdcc3b3083f72b9835e76ad2012c48a5e28aae1b27335fe3667
podman-tests-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 095347e3d2afbc1b8072bb18da7c8b63d181a83382de0b2983df970d8a720ff0

Red Hat Enterprise Linux Server - AUS 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
x86_64
podman-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: aede6356f475670b4693ae7f0e0618fcc3590d70264050c9d98704133c00451c
podman-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 392b44840fcee5506a1738c9ebe307e9ac6bf139bc3c02d7928d719737e6622f
podman-debugsource-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: dd404fafa9f069ef042dca7c7d83c6843c11d8c9a527f569f681db9840572259
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 75e3b96e217a3df1b0a0c5c370b445f7a46bdce1ed491be63e55610401f1ef1f
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 9e970f2cca6472e1f70feee20e5834d51f6bd9dd11c197fb8b4e34bc1e27e88f
podman-plugins-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 76a47ef013b21672bf3719464b938bad2f1899aa0eac15db54979548fffb6fe0
podman-plugins-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 61ca36c574a3d2abb2e395c4f362a2dde0ac5d9d9454534978f892925731419f
podman-remote-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 8b8f7d7caa32e1a35026453e49b71e4b83ae33c8cd82fb743ed3a12e801cb66d
podman-remote-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 13de1d87b6569fdcc3b3083f72b9835e76ad2012c48a5e28aae1b27335fe3667
podman-tests-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 095347e3d2afbc1b8072bb18da7c8b63d181a83382de0b2983df970d8a720ff0

Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
s390x
podman-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f5aaab0715c3fd264e4ccb486dc8d70b1b04cd1d8dbb144d23e943d115c92b6b
podman-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 5862f0dbcd16a38c001cfd81254a994044369d634496ae3e099a5055d68b9909
podman-debugsource-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 3600cf0d8cb59bd6487548a5dcff9977bb3074ac344c2872c90b829a27a47c4e
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 5620d2cf15d092770e2d1e10ed1254ce1ad610899c16e949e83d73c09c8afb9e
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f74ec8451029dad7377cd931de58a36ed36b093806c4e5da4d1a1d66a933ac93
podman-plugins-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 6e8ce9141b2e0e469f4fedc654c67a8db4679240b17ccff78773da67551bb72b
podman-plugins-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: d84559df9d040ec13d8090c697b4ca69e30623fb1cd41eb2837f8e70d6ff1c31
podman-remote-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 1936193b173182ff8a1150c316b5f6c280d40efdeb92bbb945f8b54b0b60104b
podman-remote-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f48e8c71401718a370d568c7f0db557d565a4da2b6498aab20edc3a930c34a03
podman-tests-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 7e91bd994d1336eee36e8bd870b9ba9b38ad09a91f72df56d321705267918904

Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
ppc64le
podman-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: adb52f8a6abff4917367cf07a7aa46e0c2f2fbf42905ba8cb6d22df3178d82eb
podman-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 7118befc7e3ea0105240ccc2537bee5b2eb855d9916d24491481760ef2e58107
podman-debugsource-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 1b7c183f5fe52ea30afc88e95bfcb1cbe71ce4a1a007685d5124a92ad828b6c9
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 2feedbfeccbae2818d3b33bbd7c5f965e8bb937e7c68514bed1e7e3525bface8
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 756e9c6d8c9c99ca37b47a8175b3c12658f8865a19a68520571f370d44070cdc
podman-plugins-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 238503b1ffec6d46accda21366054d2700e82d2c98042391cd3a55280503a13c
podman-plugins-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: ecdecd16d905c58af6f363df42d7e8094ff3d93ccf0905f39c9524688390331a
podman-remote-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 89338f32e6b33c88094b63e2b2af7aff004fee72c6a15061e341b53e6a92ea4b
podman-remote-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: c511d4faa776e9f5581f952503b9d1518cb06481f98b91c2323dcb4a912cc837
podman-tests-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: df1328a559a3b49d077ff44a6031cd3aeb88c5f8738350a61bc074ab4211c9c5

Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
aarch64
podman-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 4270c3a4a63e740b93bfdd397de50549af5fb3de5e0116cc96df3b3b2b7ec06c
podman-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: f22ca18ca9655cc3e67271163b1cd9948eb5f18cc48597dc27546e19ae8fc7ac
podman-debugsource-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: cab51c5da51ab055c0bc925260857378c336cba4c6e6018203c4b205e1562c2d
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 8708d22101efd2b5e92bf287c74385f4351917bd6b60de960bfd78149985e813
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 849ea66cc5f9fb7d3f0881900d7300b27eda7c06244229d011497eb4b6a8b117
podman-plugins-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 489176e369d5d4fd878bd6cf0eaa1036a7e78ae26fe43d3dd5cca9b769cff27f
podman-plugins-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 184063cfefa45f4a6ff03eddc7951c77caee4f4d5fa0c3c8c0a4a965dcb657a1
podman-remote-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: e68264efb1680039661b6c4dff820b382e8e76e1e4b6407da8a41919c86b7bfd
podman-remote-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 2e07cd75e68a5ad0551dc784ed5175d8abd0c5deb8c859ccb84d7cf484df3e5d
podman-tests-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 7d8bbccbc2a77f87798f6349e0dcefd1e28dd3751dd827cd501cbc10c5987cd1

Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
ppc64le
podman-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: adb52f8a6abff4917367cf07a7aa46e0c2f2fbf42905ba8cb6d22df3178d82eb
podman-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 7118befc7e3ea0105240ccc2537bee5b2eb855d9916d24491481760ef2e58107
podman-debugsource-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 1b7c183f5fe52ea30afc88e95bfcb1cbe71ce4a1a007685d5124a92ad828b6c9
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 2feedbfeccbae2818d3b33bbd7c5f965e8bb937e7c68514bed1e7e3525bface8
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 756e9c6d8c9c99ca37b47a8175b3c12658f8865a19a68520571f370d44070cdc
podman-plugins-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 238503b1ffec6d46accda21366054d2700e82d2c98042391cd3a55280503a13c
podman-plugins-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: ecdecd16d905c58af6f363df42d7e8094ff3d93ccf0905f39c9524688390331a
podman-remote-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: 89338f32e6b33c88094b63e2b2af7aff004fee72c6a15061e341b53e6a92ea4b
podman-remote-debuginfo-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: c511d4faa776e9f5581f952503b9d1518cb06481f98b91c2323dcb4a912cc837
podman-tests-4.4.1-22.el9_2.1.ppc64le.rpm SHA-256: df1328a559a3b49d077ff44a6031cd3aeb88c5f8738350a61bc074ab4211c9c5

Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
x86_64
podman-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: aede6356f475670b4693ae7f0e0618fcc3590d70264050c9d98704133c00451c
podman-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 392b44840fcee5506a1738c9ebe307e9ac6bf139bc3c02d7928d719737e6622f
podman-debugsource-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: dd404fafa9f069ef042dca7c7d83c6843c11d8c9a527f569f681db9840572259
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 75e3b96e217a3df1b0a0c5c370b445f7a46bdce1ed491be63e55610401f1ef1f
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 9e970f2cca6472e1f70feee20e5834d51f6bd9dd11c197fb8b4e34bc1e27e88f
podman-plugins-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 76a47ef013b21672bf3719464b938bad2f1899aa0eac15db54979548fffb6fe0
podman-plugins-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 61ca36c574a3d2abb2e395c4f362a2dde0ac5d9d9454534978f892925731419f
podman-remote-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 8b8f7d7caa32e1a35026453e49b71e4b83ae33c8cd82fb743ed3a12e801cb66d
podman-remote-debuginfo-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 13de1d87b6569fdcc3b3083f72b9835e76ad2012c48a5e28aae1b27335fe3667
podman-tests-4.4.1-22.el9_2.1.x86_64.rpm SHA-256: 095347e3d2afbc1b8072bb18da7c8b63d181a83382de0b2983df970d8a720ff0

Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
aarch64
podman-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 4270c3a4a63e740b93bfdd397de50549af5fb3de5e0116cc96df3b3b2b7ec06c
podman-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: f22ca18ca9655cc3e67271163b1cd9948eb5f18cc48597dc27546e19ae8fc7ac
podman-debugsource-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: cab51c5da51ab055c0bc925260857378c336cba4c6e6018203c4b205e1562c2d
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 8708d22101efd2b5e92bf287c74385f4351917bd6b60de960bfd78149985e813
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 849ea66cc5f9fb7d3f0881900d7300b27eda7c06244229d011497eb4b6a8b117
podman-plugins-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 489176e369d5d4fd878bd6cf0eaa1036a7e78ae26fe43d3dd5cca9b769cff27f
podman-plugins-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 184063cfefa45f4a6ff03eddc7951c77caee4f4d5fa0c3c8c0a4a965dcb657a1
podman-remote-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: e68264efb1680039661b6c4dff820b382e8e76e1e4b6407da8a41919c86b7bfd
podman-remote-debuginfo-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 2e07cd75e68a5ad0551dc784ed5175d8abd0c5deb8c859ccb84d7cf484df3e5d
podman-tests-4.4.1-22.el9_2.1.aarch64.rpm SHA-256: 7d8bbccbc2a77f87798f6349e0dcefd1e28dd3751dd827cd501cbc10c5987cd1

Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.2

SRPM
podman-4.4.1-22.el9_2.1.src.rpm SHA-256: 2b1a979d3afb54f7ea3321e00df7b9432d1eff0b0dc8d449de7a23ea25c43f2e
s390x
podman-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f5aaab0715c3fd264e4ccb486dc8d70b1b04cd1d8dbb144d23e943d115c92b6b
podman-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 5862f0dbcd16a38c001cfd81254a994044369d634496ae3e099a5055d68b9909
podman-debugsource-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 3600cf0d8cb59bd6487548a5dcff9977bb3074ac344c2872c90b829a27a47c4e
podman-docker-4.4.1-22.el9_2.1.noarch.rpm SHA-256: 8f48757e093e4959c8bedb54b7da93bb1ec9c6d996ffb4237dc4caf69ecf2c6d
podman-gvproxy-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 5620d2cf15d092770e2d1e10ed1254ce1ad610899c16e949e83d73c09c8afb9e
podman-gvproxy-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f74ec8451029dad7377cd931de58a36ed36b093806c4e5da4d1a1d66a933ac93
podman-plugins-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 6e8ce9141b2e0e469f4fedc654c67a8db4679240b17ccff78773da67551bb72b
podman-plugins-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: d84559df9d040ec13d8090c697b4ca69e30623fb1cd41eb2837f8e70d6ff1c31
podman-remote-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 1936193b173182ff8a1150c316b5f6c280d40efdeb92bbb945f8b54b0b60104b
podman-remote-debuginfo-4.4.1-22.el9_2.1.s390x.rpm SHA-256: f48e8c71401718a370d568c7f0db557d565a4da2b6498aab20edc3a930c34a03
podman-tests-4.4.1-22.el9_2.1.s390x.rpm SHA-256: 7e91bd994d1336eee36e8bd870b9ba9b38ad09a91f72df56d321705267918904

The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.