[ALSA-2024:4371] Important: buildah security update
Type:
security
Severity:
important
Release date:
2024-07-09
Description:
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. Security Fix(es): * golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 buildah-1.33.7-3.el9_4.aarch64.rpm 31788da03df0ce1a33cd90d16f738f1d964a38bfeb3bb6234c2032758c7c827a
aarch64 buildah-tests-1.33.7-3.el9_4.aarch64.rpm 62c8a406f058aa1d7e2a82ea14f619d09e2f77bab85d7726fa304c809da62034
ppc64le buildah-tests-1.33.7-3.el9_4.ppc64le.rpm 3cc2962580a4a7422cf8f51d90ec2fc90cceaf2b9334491ee8e7de2c3ce70860
ppc64le buildah-1.33.7-3.el9_4.ppc64le.rpm fa4f8a32b7a59664713a30c3e161f010a8dec8a9191cb079f23b85f8015a75e4
s390x buildah-1.33.7-3.el9_4.s390x.rpm 200090b64a324e265f8b60f81b72247afec110682c9dcbb92f1dbd8863581734
s390x buildah-tests-1.33.7-3.el9_4.s390x.rpm 4d3f674af728549a1dc8dc80c0904d5f3f8e5e6580bfa18405baaa2487ba36d9
x86_64 buildah-1.33.7-3.el9_4.x86_64.rpm 433abdfd8cbc4bf8c75c0895b15974da0690304607fec3c0f2b0e2d7e403df3c
x86_64 buildah-tests-1.33.7-3.el9_4.x86_64.rpm dbdbc6a6e94f3da4550734c8d0b70f7df093957b7536513d233236033fb6b94a
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.