Details:
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc.
Security Fix(es):
runc: container escape via 'masked path' abuse due to mount race conditions (CVE-2025-31133)
runc: container escape with malicious config due to /dev/console mount and related races (CVE-2025-52565)
runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
golang: archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)
golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS (CVE-2025-47913)
github.com/sirupsen/logrus: github.com/sirupsen/logrus: Denial-of-Service due to large single-line payload (CVE-2025-65637)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
2:1.0.1-40.module+el8.6.0+24209+25a149871:1.26.10-1.module+el8.6.0+24209+25a149871:1.26.10-1.module+el8.6.0+24209+25a149871:1.26.10-1.module+el8.6.0+24209+25a149871:1.26.10-1.module+el8.6.0+24209+25a149871:1.26.10-1.module+el8.6.0+24209+25a149870:49.1-1.module+el8.6.0+24209+25a149872:2.1.4-1.module+el8.6.0+24209+25a149872:2.1.4-1.module+el8.6.0+24209+25a149872:2.1.4-1.module+el8.6.0+24209+25a14987Exploitability
AV:LAC:LPR:LUI:RScope
S:CImpact
C:HI:HA:H8.2/CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H