Description:
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Security Fix(es):
* runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
* golang: archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
buildah-1.41.6-1.el10_1.aarch64.rpm |
882820b130f08f0f14308fa912e76757b94ea45e062dcc187dc2f875c2097c8b |
| aarch64 |
buildah-tests-1.41.6-1.el10_1.aarch64.rpm |
d7fc1bb04847913a5623f5a72cd10cbb196da2e4ed8b9a9d73cab087912d7c32 |
| ppc64le |
buildah-1.41.6-1.el10_1.ppc64le.rpm |
0edf7da7f7baac68c4a63377b3b70ae9aff1fe6502083e6d1d92c6e869efe29f |
| ppc64le |
buildah-tests-1.41.6-1.el10_1.ppc64le.rpm |
5f23e4ebb65b2b4a8288565aa35f36c658d48c024f47a957ecd223d31d19d07e |
| s390x |
buildah-tests-1.41.6-1.el10_1.s390x.rpm |
56d3e0c0770a93af9b8f86c4dd3ed6be10595abb604a614fc0d3e7d3ff97ccc8 |
| s390x |
buildah-1.41.6-1.el10_1.s390x.rpm |
b1060b60c41aaa4d30fa706de7a86dda4a4148ac27c54bf785693d43ea7dde89 |
| x86_64 |
buildah-tests-1.41.6-1.el10_1.x86_64.rpm |
2be132af1808bcf2487b3217b76a6caf8d94ecc8276e588b69f022b927711934 |
| x86_64 |
buildah-1.41.6-1.el10_1.x86_64.rpm |
6d6e3703b0592caabca07eb37fd2e3cf9881e3ad6dff1016b0457e788a252177 |
| x86_64_v2 |
buildah-tests-1.41.6-1.el10_1.x86_64_v2.rpm |
447929810d1e799f0494183decb433ce9ff8102bf07ff6b45c88687d37929504 |
| x86_64_v2 |
buildah-1.41.6-1.el10_1.x86_64_v2.rpm |
f189b672bb84d12c01e1058e4b46846488c80487f59260d4d5a7e28d1ab4b3a2 |
