Synopsis
Moderate: gvisor-tap-vsock security update
Type/Severity
Security Advisory: Moderate
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
View affected systems
Topic
An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Description
A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding.
Security Fix(es):
- net/http: Request smuggling due to acceptance of invalid chunked data in net/http (CVE-2025-22871)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Affected Products
-
Red Hat Enterprise Linux for x86_64 10 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0 x86_64
-
Red Hat Enterprise Linux for IBM z Systems 10 s390x
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0 s390x
-
Red Hat Enterprise Linux for Power, little endian 10 ppc64le
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0 ppc64le
-
Red Hat Enterprise Linux for ARM 64 10 aarch64
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0 aarch64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0 s390x
-
Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0 ppc64le
-
Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0 x86_64
Fixes
-
BZ - 2358493
- CVE-2025-22871 net/http: Request smuggling due to acceptance of invalid chunked data in net/http
Note:
More recent versions of these packages may be available.
Click a package name for more details.
Red Hat Enterprise Linux for x86_64 10
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| x86_64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 2a207d6ff79c0a25a60e7904430457935230627bccfe96e090444f3a460014ad |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 890551905c059c05016e2efeebedadfb4ff73e8b9c5859bb3e60d372e4bae719 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 5a9f56f99877229c7da9667693e874c59166e9f7501f05fb1f6fd92876ff339f |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 3d96034f0c8c4721fd4df5c21721f207cdba4137d4a4470b1e5af2decf558012 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 4bd15d9b5bdaf974f0198e72992fec54b6075706230775697a07e28e9265dd67 |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| x86_64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 2a207d6ff79c0a25a60e7904430457935230627bccfe96e090444f3a460014ad |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 890551905c059c05016e2efeebedadfb4ff73e8b9c5859bb3e60d372e4bae719 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 5a9f56f99877229c7da9667693e874c59166e9f7501f05fb1f6fd92876ff339f |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 3d96034f0c8c4721fd4df5c21721f207cdba4137d4a4470b1e5af2decf558012 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 4bd15d9b5bdaf974f0198e72992fec54b6075706230775697a07e28e9265dd67 |
Red Hat Enterprise Linux for IBM z Systems 10
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| s390x |
|
gvisor-tap-vsock-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 8b42a5ba59aef62ef21b2612aa253f0382b4c1c357150b2c6a37c0e8d8c2fadb |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b9d06a044583f08d4009ca474b4926ba29beb3869d0fb9332ab62398ce20582a |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 576e2748ad1996c2fb20f89b41ee1dbb5031ab426bc199bc5bbf097037347124 |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 4cde52e3af4ddf19b4b8df9e5983d67a17049dbc3bf28537194940be1fb20949 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b3907cce209675f32238ba3b11e94134a6590c473b2131a88d0325bd4f261143 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| s390x |
|
gvisor-tap-vsock-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 8b42a5ba59aef62ef21b2612aa253f0382b4c1c357150b2c6a37c0e8d8c2fadb |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b9d06a044583f08d4009ca474b4926ba29beb3869d0fb9332ab62398ce20582a |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 576e2748ad1996c2fb20f89b41ee1dbb5031ab426bc199bc5bbf097037347124 |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 4cde52e3af4ddf19b4b8df9e5983d67a17049dbc3bf28537194940be1fb20949 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b3907cce209675f32238ba3b11e94134a6590c473b2131a88d0325bd4f261143 |
Red Hat Enterprise Linux for Power, little endian 10
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| ppc64le |
|
gvisor-tap-vsock-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 1b07ad47c4d27c3ec51b33a80c938b9d14de86e5875952ca1c463cae04ea9ad4 |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 9fba138ca27945c5c9ccb876b3f80e53a993f0bde4b693ff94b252c83d513a56 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 83989cb7fc4d47145e0c432781fdb087544e91987f52ec66bce60a59a4790e6d |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 003a3b39eff4688a650be80c388e4f7b1f00ddca85f98debab62699a121d3be2 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 69c539e7f263df6c9f63efc521cfb165034387900cf86a42a3436f645bbefa71 |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| ppc64le |
|
gvisor-tap-vsock-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 1b07ad47c4d27c3ec51b33a80c938b9d14de86e5875952ca1c463cae04ea9ad4 |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 9fba138ca27945c5c9ccb876b3f80e53a993f0bde4b693ff94b252c83d513a56 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 83989cb7fc4d47145e0c432781fdb087544e91987f52ec66bce60a59a4790e6d |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 003a3b39eff4688a650be80c388e4f7b1f00ddca85f98debab62699a121d3be2 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 69c539e7f263df6c9f63efc521cfb165034387900cf86a42a3436f645bbefa71 |
Red Hat Enterprise Linux for ARM 64 10
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| aarch64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: bc6ad4b2bdf80d23d98f34b41a527f36aa3714809aa28c8051a26667776d928c |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: d94b26e0d065b622ea534801408c109ac9618897784c7e92636fe6cf3dd5cfca |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: ed8174ec7220cf59afac6d436a220655b0717b09a050c515a46e56f23d3951dc |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 4a5456654b76dcb790ea8e0a553faa62d1ed20276d7476c5641bf85b85b78f65 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 92d5d86baaa63d850f246af922bbb4ac5a657431992a62cfc07db593a5bdacb6 |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| aarch64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: bc6ad4b2bdf80d23d98f34b41a527f36aa3714809aa28c8051a26667776d928c |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: d94b26e0d065b622ea534801408c109ac9618897784c7e92636fe6cf3dd5cfca |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: ed8174ec7220cf59afac6d436a220655b0717b09a050c515a46e56f23d3951dc |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 4a5456654b76dcb790ea8e0a553faa62d1ed20276d7476c5641bf85b85b78f65 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 92d5d86baaa63d850f246af922bbb4ac5a657431992a62cfc07db593a5bdacb6 |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| aarch64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: bc6ad4b2bdf80d23d98f34b41a527f36aa3714809aa28c8051a26667776d928c |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: d94b26e0d065b622ea534801408c109ac9618897784c7e92636fe6cf3dd5cfca |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: ed8174ec7220cf59afac6d436a220655b0717b09a050c515a46e56f23d3951dc |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 4a5456654b76dcb790ea8e0a553faa62d1ed20276d7476c5641bf85b85b78f65 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.aarch64.rpm
|
SHA-256: 92d5d86baaa63d850f246af922bbb4ac5a657431992a62cfc07db593a5bdacb6 |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| s390x |
|
gvisor-tap-vsock-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 8b42a5ba59aef62ef21b2612aa253f0382b4c1c357150b2c6a37c0e8d8c2fadb |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b9d06a044583f08d4009ca474b4926ba29beb3869d0fb9332ab62398ce20582a |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 576e2748ad1996c2fb20f89b41ee1dbb5031ab426bc199bc5bbf097037347124 |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: 4cde52e3af4ddf19b4b8df9e5983d67a17049dbc3bf28537194940be1fb20949 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.s390x.rpm
|
SHA-256: b3907cce209675f32238ba3b11e94134a6590c473b2131a88d0325bd4f261143 |
Red Hat Enterprise Linux for Power, little endian - 4 years of support 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| ppc64le |
|
gvisor-tap-vsock-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 1b07ad47c4d27c3ec51b33a80c938b9d14de86e5875952ca1c463cae04ea9ad4 |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 9fba138ca27945c5c9ccb876b3f80e53a993f0bde4b693ff94b252c83d513a56 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 83989cb7fc4d47145e0c432781fdb087544e91987f52ec66bce60a59a4790e6d |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 003a3b39eff4688a650be80c388e4f7b1f00ddca85f98debab62699a121d3be2 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.ppc64le.rpm
|
SHA-256: 69c539e7f263df6c9f63efc521cfb165034387900cf86a42a3436f645bbefa71 |
Red Hat Enterprise Linux for x86_64 - 4 years of updates 10.0
| SRPM |
|
gvisor-tap-vsock-0.8.5-2.el10_0.src.rpm
|
SHA-256: e3d6901aad75d776140f5cfa6b2248bc2bda2eba531168418ae5c6974eb8d679 |
| x86_64 |
|
gvisor-tap-vsock-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 2a207d6ff79c0a25a60e7904430457935230627bccfe96e090444f3a460014ad |
|
gvisor-tap-vsock-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 890551905c059c05016e2efeebedadfb4ff73e8b9c5859bb3e60d372e4bae719 |
|
gvisor-tap-vsock-debugsource-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 5a9f56f99877229c7da9667693e874c59166e9f7501f05fb1f6fd92876ff339f |
|
gvisor-tap-vsock-gvforwarder-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 3d96034f0c8c4721fd4df5c21721f207cdba4137d4a4470b1e5af2decf558012 |
|
gvisor-tap-vsock-gvforwarder-debuginfo-0.8.5-2.el10_0.x86_64.rpm
|
SHA-256: 4bd15d9b5bdaf974f0198e72992fec54b6075706230775697a07e28e9265dd67 |
