Описание
ELSA-2025-0923: buildah security update (IMPORTANT)
[1.37.6-1.0.1]
- Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117178]
[2:1.37.6-1]
- update to the latest content of https://github.com/containers/buildah/tree/release-1.37 (https://github.com/containers/buildah/commit/fd39521)
- Resolves: RHEL-67617
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
buildah
1.37.6-1.0.1.el9_5
buildah-tests
1.37.6-1.0.1.el9_5
Oracle Linux x86_64
buildah
1.37.6-1.0.1.el9_5
buildah-tests
1.37.6-1.0.1.el9_5
Связанные CVE
Связанные уязвимости
A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.
A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.
A vulnerability was found in `podman build` and `buildah.` This issue occurs in a container breakout by using --jobs=2 and a race condition when building a malicious Containerfile. SELinux might mitigate it, but even with SELinux on, it still allows the enumeration of files and directories on the host.
A vulnerability was found in `podman build` and `buildah.` This issue ...
