AlmaLinux has issued three important security updates addressing vulnerabilities in its container-tools, Podman, and kernel packages. These updates are essential for users of AlmaLinux versions 8 and 10, specifically targeting issues that could lead to unauthorized file overwriting on host systems through the "kube play" command (CVE-2025-9566).
1. Container-Tools Update (AlmaLinux 8):
- Update ID: ALSA-2025:15904
- Release Date: September 17, 2025
- Summary: The container-tools module, which includes tools like podman, buildah, skopeo, and runc, has been updated to fix the vulnerability related to file overwriting via the podman kube play command.
- Severity: Important
- For more information, visit: [Container-Tools Update Details](https://errata.almalinux.org/8/ALSA-2025-15904.html)
2. Podman Update (AlmaLinux 10):
- Update ID: ALSA-2025:15901
- Release Date: September 16, 2025
- Summary: This update addresses the same vulnerability in Podman, which manages container images and pods, a key concept in Kubernetes.
- Severity: Important
- For further details, visit: [Podman Update Details](https://errata.almalinux.org/10/ALSA-2025-15901.html)
3. Kernel Update (AlmaLinux 10):
- Update ID: ALSA-2025:15662
- Release Date: September 17, 2025
- Summary: This kernel update resolves a race condition in the POSIX CPU timers (CVE-2025-38352) that could potentially lead to system instability.
- Severity: Important
- More information can be found here: [Kernel Update Details](https://errata.almalinux.org/10/ALSA-2025-15662.html)
- For ongoing updates and community support, users can engage with the AlmaLinux community via their chat platform or manage their notification settings through the AlmaLinux mailing list.
By staying updated with these patches, users can ensure their systems remain secure and function optimally in their deployment environments
Summary of Security Updates:
1. Container-Tools Update (AlmaLinux 8):
- Update ID: ALSA-2025:15904
- Release Date: September 17, 2025
- Summary: The container-tools module, which includes tools like podman, buildah, skopeo, and runc, has been updated to fix the vulnerability related to file overwriting via the podman kube play command.
- Severity: Important
- For more information, visit: [Container-Tools Update Details](https://errata.almalinux.org/8/ALSA-2025-15904.html)
2. Podman Update (AlmaLinux 10):
- Update ID: ALSA-2025:15901
- Release Date: September 16, 2025
- Summary: This update addresses the same vulnerability in Podman, which manages container images and pods, a key concept in Kubernetes.
- Severity: Important
- For further details, visit: [Podman Update Details](https://errata.almalinux.org/10/ALSA-2025-15901.html)
3. Kernel Update (AlmaLinux 10):
- Update ID: ALSA-2025:15662
- Release Date: September 17, 2025
- Summary: This kernel update resolves a race condition in the POSIX CPU timers (CVE-2025-38352) that could potentially lead to system instability.
- Severity: Important
- More information can be found here: [Kernel Update Details](https://errata.almalinux.org/10/ALSA-2025-15662.html)
Recommendations for Users:
- Users are strongly advised to apply these security updates promptly to mitigate risks associated with the identified vulnerabilities.- For ongoing updates and community support, users can engage with the AlmaLinux community via their chat platform or manage their notification settings through the AlmaLinux mailing list.
By staying updated with these patches, users can ensure their systems remain secure and function optimally in their deployment environments
Container-Tools, Podman, Kernel updates for AlmaLinux
AlmaLinux has released three security updates: ALSA-2025:15904 for container-tools on AlmaLinux 8, ALSA-2025:15901 for podman on AlmaLinux 10, and ALSA-2025:15662 for kernel on AlmaLinux 10. The common issue addressed in all three updates is a vulnerability that could allow the "kube play" command to overwrite host files (CVE-2025-9566).
ALSA-2025:15904: container-tools:rhel8 security update (Important)
ALSA-2025:15901: podman security update (Important)
ALSA-2025:15662: kernel security update (Important)Container-Tools, Podman, Kernel updates for AlmaLinux @ Linux Compatible
