Skip to content

chore(deps): refresh rpm lockfiles [SECURITY] #44

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: release-5.3
Choose a base branch
from
Open

chore(deps): refresh rpm lockfiles [SECURITY] #44

wants to merge 1 commit into from

Conversation

@konflux-internal-p02
Copy link

@konflux-internal-p02 konflux-internal-p02 bot commented Sep 10, 2025
edited
Loading

This PR contains the following updates:

File rpms.in.yaml:

Package Change
conmon 3:2.1.10-1.module+el8.10.0+23320+f7205097 -> 3:2.1.10-1.module+el8.10.0+23498+f7d19d48
container-selinux 2:2.229.0-2.module+el8.10.0+23320+f7205097 -> 2:2.229.0-2.module+el8.10.0+23498+f7d19d48
containernetworking-plugins 1:1.4.0-6.module+el8.10.0+23320+f7205097 -> 1:1.4.0-6.module+el8.10.0+23498+f7d19d48
containers-common 2:1-82.module+el8.10.0+23320+f7205097 -> 2:1-82.module+el8.10.0+23498+f7d19d48
criu 3.18-5.module+el8.10.0+23320+f7205097 -> 3.18-5.module+el8.10.0+23498+f7d19d48
dnsmasq 2.79-33.el8_10 -> 2.79-35.el8_10
fuse-overlayfs 1.13-1.module+el8.10.0+23320+f7205097 -> 1.13-1.module+el8.10.0+23498+f7d19d48
libslirp 4.4.0-2.module+el8.10.0+23320+f7205097 -> 4.4.0-2.module+el8.10.0+23498+f7d19d48
platform-python-devel 3.6.8-70.el8_10 -> 3.6.8-71.el8_10
podman 4:4.9.4-22.module+el8.10.0+23320+f7205097 -> 4:4.9.4-23.module+el8.10.0+23498+f7d19d48
podman-catatonit 4:4.9.4-22.module+el8.10.0+23320+f7205097 -> 4:4.9.4-23.module+el8.10.0+23498+f7d19d48
podman-gvproxy 4:4.9.4-22.module+el8.10.0+23320+f7205097 -> 4:4.9.4-23.module+el8.10.0+23498+f7d19d48
podman-plugins 4:4.9.4-22.module+el8.10.0+23320+f7205097 -> 4:4.9.4-23.module+el8.10.0+23498+f7d19d48
runc 1:1.1.12-6.module+el8.10.0+23320+f7205097 -> 1:1.1.12-6.module+el8.10.0+23498+f7d19d48
slirp4netns 1.2.3-1.module+el8.10.0+23320+f7205097 -> 1.2.3-1.module+el8.10.0+23498+f7d19d48
bash 4.4.20-5.el8 -> 4.4.20-6.el8_10
ca-certificates 2024.2.69_v8.0.303-80.0.el8_10 -> 2025.2.80_v9.0.304-80.2.el8_10
curl 7.61.1-34.el8_10.3 -> 7.61.1-34.el8_10.8
dbus 1:1.12.8-26.el8 -> 1:1.12.8-27.el8_10
dbus-common 1:1.12.8-26.el8 -> 1:1.12.8-27.el8_10
dbus-daemon 1:1.12.8-26.el8 -> 1:1.12.8-27.el8_10
dbus-libs 1:1.12.8-26.el8 -> 1:1.12.8-27.el8_10
dbus-tools 1:1.12.8-26.el8 -> 1:1.12.8-27.el8_10
e2fsprogs 1.45.6-6.el8_10 -> 1.45.6-7.el8_10
e2fsprogs-libs 1.45.6-6.el8_10 -> 1.45.6-7.el8_10
file 5.33-26.el8 -> 5.33-27.el8_10
file-libs 5.33-26.el8 -> 5.33-27.el8_10
glibc 2.28-251.el8_10.22 -> 2.28-251.el8_10.25
glibc-all-langpacks 2.28-251.el8_10.22 -> 2.28-251.el8_10.25
glibc-common 2.28-251.el8_10.22 -> 2.28-251.el8_10.25
glibc-gconv-extra 2.28-251.el8_10.22 -> 2.28-251.el8_10.25
gnutls 3.6.16-8.el8_10.3 -> 3.6.16-8.el8_10.4
grub2-common 1:2.02-167.el8_10 -> 1:2.02-169.el8_10
grub2-tools 1:2.02-167.el8_10 -> 1:2.02-169.el8_10
grub2-tools-minimal 1:2.02-167.el8_10 -> 1:2.02-169.el8_10
libarchive 3.3.3-5.el8 -> 3.3.3-6.el8_10
libcom_err 1.45.6-6.el8_10 -> 1.45.6-7.el8_10
libcurl 7.61.1-34.el8_10.3 -> 7.61.1-34.el8_10.8
libgcc 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
libgfortran 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
libgomp 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
libquadmath 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
libss 1.45.6-6.el8_10 -> 1.45.6-7.el8_10
libssh 0.9.6-14.el8 -> 0.9.6-15.el8_10
libssh-config 0.9.6-14.el8 -> 0.9.6-15.el8_10
libstdc++ 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
libxml2 2.9.7-21.el8_10.1 -> 2.9.7-21.el8_10.3
libxslt 1.1.32-6.2.el8_10 -> 1.1.32-6.3.el8_10
openssh 8.0p1-25.el8_10 -> 8.0p1-26.el8_10
openssh-clients 8.0p1-25.el8_10 -> 8.0p1-26.el8_10
pam 1.3.1-37.el8_10 -> 1.3.1-38.el8_10
platform-python 3.6.8-70.el8_10 -> 3.6.8-71.el8_10
python3-cryptography 3.2.1-7.el8_9 -> 3.2.1-8.el8_10
python3-libs 3.6.8-70.el8_10 -> 3.6.8-71.el8_10
python3-requests 2.20.0-5.el8_10 -> 2.20.0-6.el8_10
sqlite-libs 3.26.0-19.el8_9 -> 3.26.0-20.el8_10
sudo 1.9.5p2-1.el8_10.1 -> 1.9.5p2-1.el8_10.2
tar 2:1.30-10.el8_10 -> 2:1.30-11.el8_10
vim-minimal 2:8.0.1763-19.el8_6.4 -> 2:8.0.1763-21.el8_10
which 2.21-20.el8 -> 2.21-21.el8_10
libatomic 8.5.0-26.el8_10 -> 8.5.0-28.el8_10
s390utils-base 2:2.29.0-3.el8_10.1 -> 2:2.29.0-3.el8_10.3
s390utils-core 2:2.29.0-3.el8_10.1 -> 2:2.29.0-3.el8_10.3
s390utils-se-data 2:2.29.0-3.el8_10.1 -> 2:2.29.0-3.el8_10.3

cpython: Cpython infinite loop when parsing a tarfile

CVE-2025-8194

More information

Severity

Moderate

References

glibc: Double free in glibc

CVE-2025-8058

More information

Severity

Moderate

References

gnutls: NULL pointer dereference in _gnutls_figure_common_ciphersuite()

CVE-2025-6395

More information

Severity

Moderate

References

gnutls: Vulnerability in GnuTLS certtool template parsing

CVE-2025-32990

More information

Severity

Moderate

References

gnutls: Vulnerability in GnuTLS otherName SAN export

CVE-2025-32988

More information

Severity

Moderate

References

libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c

CVE-2025-5914

More information

Severity

Important

References

libssh: out-of-bounds read in sftp_handle()

CVE-2025-5318

More information

Severity

Moderate

References

libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr

CVE-2025-7425

More information

Severity

Important

References

libxml2: Out-of-bounds Read in xmlSchemaIDCFillNodeTables

CVE-2025-32415

More information

Severity

Moderate

References

openssh: Machine-in-the-middle attack if VerifyHostKeyDNS is enabled

CVE-2025-26465

More information

Severity

Moderate

References

linux-pam: Incomplete fix for CVE-2025-6020

CVE-2025-8941

More information

Severity

Important

References

linux-pam: Linux-pam directory Traversal

CVE-2025-6020

More information

Severity

Important

References

python-cryptography: NULL-dereference when loading PKCS7 certificates

CVE-2023-49083

More information

Severity

Moderate

References

requests: Requests vulnerable to .netrc credentials leak via malicious URLs

CVE-2024-47081

More information

Severity

Moderate

References

sqlite: Integer Truncation in SQLite

CVE-2025-6965

More information

Severity

Important

References

🔧 This Pull Request updates lock files to use the latest dependency versions.

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

To execute skipped test pipelines write comment /ok-to-test.

This PR has been generated by MintMaker (powered by Renovate Bot).

@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 3 times, most recently from 576dd61 to 2850a88 Compare September 16, 2025 08:16
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 6 times, most recently from 6993e23 to d37b24c Compare September 26, 2025 00:19
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 4 times, most recently from 598e5fd to 3f0104f Compare October 1, 2025 16:15
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 5 times, most recently from dff6bd3 to 3f5bd55 Compare October 13, 2025 20:18
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 3 times, most recently from cbb2b14 to cef120c Compare October 20, 2025 04:27
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch 5 times, most recently from 56a9fc1 to 63f3d5f Compare October 30, 2025 00:16
@konflux-internal-p02
chore(deps): refresh rpm lockfiles [SECURITY]
c3c08c1 
Signed-off-by: konflux-internal-p02 <170854209+konflux-internal-p02[bot]@users.noreply.github.com>
@konflux-internal-p02 konflux-internal-p02 bot force-pushed the konflux/mintmaker/release-5.3/lock-file-maintenance-vulnerability branch from 63f3d5f to c3c08c1 Compare October 30, 2025 08:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant