vulnerability

Alma Linux: CVE-2025-47907: Important: podman security update (ALSA-2025-20909)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:M/Au:N/C:C/I:P/A:P)	Nov 11, 2025	Nov 26, 2025	Jan 30, 2026

Severity

CVSS

(AV:N/AC:M/Au:N/C:C/I:P/A:P)

Published

Nov 11, 2025

Added

Nov 26, 2025

Modified

Jan 30, 2026

Description

Cancelling a query (e.g. by cancelling the context passed to one of the query methods) during a call to the Scan method of the returned Rows can result in unexpected results if other queries are being made in parallel. This can result in a race condition that may overwrite the expected results with those of another query, causing the call to Scan to return either unexpected results from the other query or an error.

Solutions

alma-upgrade-podmanalma-upgrade-podman-dockeralma-upgrade-podman-pluginsalma-upgrade-podman-remotealma-upgrade-podman-tests

References

CVE-2025-47907
https://attackerkb.com/topics/CVE-2025-47907
CWE-362
URL-https://errata.almalinux.org/9/ALSA-2025-20909.html

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today