概述
Important: runc security update
类型/严重性
Security Advisory: Important
标题
An update for runc is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
描述
The runC tool is a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime.
Security Fix(es):
- crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
- golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
- crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
受影响的产品
-
Red Hat Enterprise Linux for x86_64 9 x86_64
-
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64
-
Red Hat Enterprise Linux for IBM z Systems 9 s390x
-
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x
-
Red Hat Enterprise Linux for Power, little endian 9 ppc64le
-
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le
-
Red Hat Enterprise Linux for ARM 64 9 aarch64
-
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64
-
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le
-
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64
-
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64
-
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x
-
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64
-
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64
-
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le
-
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x
修复
-
BZ - 2418462
- CVE-2025-61729 crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate
-
BZ - 2434432
- CVE-2025-61726 golang: net/url: Memory exhaustion in query parameter parsing in net/url
-
BZ - 2437111
- CVE-2025-68121 crypto/tls: Unexpected session resumption in crypto/tls
备注:
可能有这些软件包的更新版本。
点击软件包名称查看详情。
Red Hat Enterprise Linux for x86_64 9
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| x86_64 |
|
runc-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: ed7a7c6fcf5b37861fe32ebb54fb98560bdff1f91b94fbd64163fc997d14a45a |
|
runc-debuginfo-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: dd5403e114185bcb7ed2ff776a1dc3eadad9a0aa6877ce14f5414290f03adcf8 |
|
runc-debugsource-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: d7427927e1eae9c613968fa7dbdbc87130bbc1b12429659a8a838320c5ef7265 |
Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| x86_64 |
|
runc-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: ed7a7c6fcf5b37861fe32ebb54fb98560bdff1f91b94fbd64163fc997d14a45a |
|
runc-debuginfo-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: dd5403e114185bcb7ed2ff776a1dc3eadad9a0aa6877ce14f5414290f03adcf8 |
|
runc-debugsource-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: d7427927e1eae9c613968fa7dbdbc87130bbc1b12429659a8a838320c5ef7265 |
Red Hat Enterprise Linux for IBM z Systems 9
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| s390x |
|
runc-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 959454ce889e888a143f460a332afc033e36bf87848717ee0c2d209b2fa21b1a |
|
runc-debuginfo-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: ea0e9860e8676141a9ac8ff25d22bf50b1fdd153024fcba741d418ce7e8c5433 |
|
runc-debugsource-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 72e3383f80f02e6179a886fad2d0c6798f4b242c54c2f8a7760f662b6f841381 |
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| s390x |
|
runc-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 959454ce889e888a143f460a332afc033e36bf87848717ee0c2d209b2fa21b1a |
|
runc-debuginfo-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: ea0e9860e8676141a9ac8ff25d22bf50b1fdd153024fcba741d418ce7e8c5433 |
|
runc-debugsource-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 72e3383f80f02e6179a886fad2d0c6798f4b242c54c2f8a7760f662b6f841381 |
Red Hat Enterprise Linux for Power, little endian 9
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| ppc64le |
|
runc-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 634d44e17dbdc926e37846075e7db87394462f2e669665b4d7d540d6819a273b |
|
runc-debuginfo-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 78dc1a5c70200c1ea5d40878a01556dd33cbe4fd4c4999d3bc6c7c35b12c9105 |
|
runc-debugsource-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 3b2586caf726e194b42152f437939679850b5034b12233ba8bd9755bea06f3c5 |
Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| ppc64le |
|
runc-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 634d44e17dbdc926e37846075e7db87394462f2e669665b4d7d540d6819a273b |
|
runc-debuginfo-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 78dc1a5c70200c1ea5d40878a01556dd33cbe4fd4c4999d3bc6c7c35b12c9105 |
|
runc-debugsource-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 3b2586caf726e194b42152f437939679850b5034b12233ba8bd9755bea06f3c5 |
Red Hat Enterprise Linux for ARM 64 9
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| aarch64 |
|
runc-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 6d075ac1db3dcf571b2fb353763300be6cc287a87be522ccec8ecfc6f4ee09f8 |
|
runc-debuginfo-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 5fe30d3445084f16552765afa888f7dfe292793244be1e540d138a9749a23014 |
|
runc-debugsource-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: ae30ad0df1aaa22777997d0f4d03318b9754b85ed430270c4928f2f1abf199dc |
Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| aarch64 |
|
runc-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 6d075ac1db3dcf571b2fb353763300be6cc287a87be522ccec8ecfc6f4ee09f8 |
|
runc-debuginfo-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 5fe30d3445084f16552765afa888f7dfe292793244be1e540d138a9749a23014 |
|
runc-debugsource-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: ae30ad0df1aaa22777997d0f4d03318b9754b85ed430270c4928f2f1abf199dc |
Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| ppc64le |
|
runc-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 634d44e17dbdc926e37846075e7db87394462f2e669665b4d7d540d6819a273b |
|
runc-debuginfo-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 78dc1a5c70200c1ea5d40878a01556dd33cbe4fd4c4999d3bc6c7c35b12c9105 |
|
runc-debugsource-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 3b2586caf726e194b42152f437939679850b5034b12233ba8bd9755bea06f3c5 |
Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| x86_64 |
|
runc-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: ed7a7c6fcf5b37861fe32ebb54fb98560bdff1f91b94fbd64163fc997d14a45a |
|
runc-debuginfo-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: dd5403e114185bcb7ed2ff776a1dc3eadad9a0aa6877ce14f5414290f03adcf8 |
|
runc-debugsource-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: d7427927e1eae9c613968fa7dbdbc87130bbc1b12429659a8a838320c5ef7265 |
Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| aarch64 |
|
runc-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 6d075ac1db3dcf571b2fb353763300be6cc287a87be522ccec8ecfc6f4ee09f8 |
|
runc-debuginfo-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 5fe30d3445084f16552765afa888f7dfe292793244be1e540d138a9749a23014 |
|
runc-debugsource-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: ae30ad0df1aaa22777997d0f4d03318b9754b85ed430270c4928f2f1abf199dc |
Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| s390x |
|
runc-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 959454ce889e888a143f460a332afc033e36bf87848717ee0c2d209b2fa21b1a |
|
runc-debuginfo-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: ea0e9860e8676141a9ac8ff25d22bf50b1fdd153024fcba741d418ce7e8c5433 |
|
runc-debugsource-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 72e3383f80f02e6179a886fad2d0c6798f4b242c54c2f8a7760f662b6f841381 |
Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| x86_64 |
|
runc-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: ed7a7c6fcf5b37861fe32ebb54fb98560bdff1f91b94fbd64163fc997d14a45a |
|
runc-debuginfo-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: dd5403e114185bcb7ed2ff776a1dc3eadad9a0aa6877ce14f5414290f03adcf8 |
|
runc-debugsource-1.4.0-2.el9_7.x86_64.rpm
|
SHA-256: d7427927e1eae9c613968fa7dbdbc87130bbc1b12429659a8a838320c5ef7265 |
Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| aarch64 |
|
runc-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 6d075ac1db3dcf571b2fb353763300be6cc287a87be522ccec8ecfc6f4ee09f8 |
|
runc-debuginfo-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: 5fe30d3445084f16552765afa888f7dfe292793244be1e540d138a9749a23014 |
|
runc-debugsource-1.4.0-2.el9_7.aarch64.rpm
|
SHA-256: ae30ad0df1aaa22777997d0f4d03318b9754b85ed430270c4928f2f1abf199dc |
Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| ppc64le |
|
runc-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 634d44e17dbdc926e37846075e7db87394462f2e669665b4d7d540d6819a273b |
|
runc-debuginfo-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 78dc1a5c70200c1ea5d40878a01556dd33cbe4fd4c4999d3bc6c7c35b12c9105 |
|
runc-debugsource-1.4.0-2.el9_7.ppc64le.rpm
|
SHA-256: 3b2586caf726e194b42152f437939679850b5034b12233ba8bd9755bea06f3c5 |
Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8
| SRPM |
|
runc-1.4.0-2.el9_7.src.rpm
|
SHA-256: 1516088b45f05fe9d6bf6f6d0207c268c8c3d468bd5350d53c92795dfdb9eb5b |
| s390x |
|
runc-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 959454ce889e888a143f460a332afc033e36bf87848717ee0c2d209b2fa21b1a |
|
runc-debuginfo-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: ea0e9860e8676141a9ac8ff25d22bf50b1fdd153024fcba741d418ce7e8c5433 |
|
runc-debugsource-1.4.0-2.el9_7.s390x.rpm
|
SHA-256: 72e3383f80f02e6179a886fad2d0c6798f4b242c54c2f8a7760f662b6f841381 |
