Security scanning tools (e.g., WIZ)etect vulnerabilities on ASM OPMS servers related to:
    • CVE-2025-68121: Vulnerability in podman.
    • CVE-2026-5121: Vulnerability in libarchive.
Is it safe to update these OS-level packages and the specific steps are required to prevent service disruption. 

The vulnerabilities exist within the host operating system packages (podman and libarchive) that the ASM OPMS environment relies upon for container management and file archiving.

It is safe to upgrade both packages. To ensure a clean update, follow these steps:
    1. Stop the ASM Services: Navigate to the asm-installer directory and run: ./asm-installer stop
    2. Update the Packages: Run the following YUM commands to apply the security patches:

        yum update podman

        yum update libarchive
    3. Restart the ASM Services: ./asm-installer start
    4. Verification: Confirm the OPMS station shows as "Active" in the ASM UI.