| id: GO-2025-3777 |
| modules: |
| - module: github.com/containers/podman |
| vulnerable_at: 1.9.3 |
| - module: github.com/containers/podman/v2 |
| vulnerable_at: 2.2.1 |
| - module: github.com/containers/podman/v3 |
| vulnerable_at: 3.4.7 |
| - module: github.com/containers/podman/v4 |
| versions: |
| - introduced: 4.8.0 |
| unsupported_versions: |
| - last_affected: 4.9.5 |
| vulnerable_at: 4.9.5 |
| - module: github.com/containers/podman/v5 |
| versions: |
| - fixed: 5.5.2 |
| vulnerable_at: 5.5.1 |
| summary: Podman Improper Certificate Validation; machine missing TLS verification in github.com/containers/podman |
| cves: |
| - CVE-2025-6032 |
| ghsas: |
| - GHSA-65gg-3w2w-hr4h |
| references: |
| - advisory: https://github.com/containers/podman/security/advisories/GHSA-65gg-3w2w-hr4h |
| - advisory: https://nvd.nist.gov/vuln/detail/CVE-2025-6032 |
| - fix: https://github.com/containers/podman/commit/726b506acc8a00d99f1a3a1357ecf619a1f798c3 |
| - web: https://access.redhat.com/errata/RHSA-2025:10295 |
| - web: https://access.redhat.com/errata/RHSA-2025:10549 |
| - web: https://access.redhat.com/errata/RHSA-2025:10550 |
| - web: https://access.redhat.com/errata/RHSA-2025:10551 |
| - web: https://access.redhat.com/errata/RHSA-2025:10668 |
| - web: https://access.redhat.com/errata/RHSA-2025:9726 |
| - web: https://access.redhat.com/errata/RHSA-2025:9751 |
| - web: https://access.redhat.com/errata/RHSA-2025:9766 |
| - web: https://access.redhat.com/security/cve/CVE-2025-6032 |
| - web: https://bugzilla.redhat.com/show_bug.cgi?id=2372501 |
| source: |
| id: GHSA-65gg-3w2w-hr4h |
| created: 2025-07-21T17:03:00.19093353Z |
| review_status: UNREVIEWED |
