toolbox-0.2-1.el9_6

エラータID: AXSA:2025-10740:02

Release date: 
Thursday, August 14, 2025 - 12:45
Subject: 
toolbox-0.2-1.el9_6
Affected Channels: 
MIRACLE LINUX 9 for x86_64
Severity: 
High
Description: 

Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI.

Security Fix(es):

* nvidia-container-toolkit: Privilege Escalation via Hook Initialization in NVIDIA Container Toolkit (CVE-2025-23266)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-23266
NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service.

Solution: 

Update packages.

CVEs: 
CVE-2025-23266
** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided.
Additional Info: 

N/A

Download: 

SRPMS
  1. toolbox-0.2-1.el9_6.src.rpm
    MD5: 2308058815a95d405ab17f4e5e33f135
    SHA-256: 13aaa49fedabd279688da3b6965a4cf65eaa88ac0ca04ee71759e033282ca059
    Size: 1.43 MB

Asianux Server 9 for x86_64
  1. toolbox-0.2-1.el9_6.x86_64.rpm
    MD5: 02ad011f11671049984f754c82f62271
    SHA-256: 96fcbbe78b0b402c9d328a1f2300e45159ba90a9d5623c2af2dcca04f2367ab1
    Size: 3.59 MB
  2. toolbox-tests-0.2-1.el9_6.x86_64.rpm
    MD5: e916d58da3a85593976a09770f55af42
    SHA-256: f5f785e77ba7666496dd257fe6eef18c22f736406a1e245da5c96c24104ea049
    Size: 64.92 kB