ALSA-2025:0923

[ALSA-2025:0923] Important: buildah security update

Type:

security

Severity:

important

Release date:

2025-02-05

Description:

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.   

Security Fix(es):  

  * podman: buildah: Container breakout by using --jobs=2 and a race condition when building a malicious Containerfile (CVE-2024-11218)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	buildah-tests-1.37.6-1.el9_5.aarch64.rpm	0038a84499bce0d9e4c4c69cda4c4e4bb54ae05843b104fa46d33e830d0598e3
aarch64	buildah-1.37.6-1.el9_5.aarch64.rpm	dd1c762e595e07aa089a4f8771df4f35848bcb426e4c12b95541221b0ae01fc4
ppc64le	buildah-1.37.6-1.el9_5.ppc64le.rpm	46c963adfd865d4e389efe61986129c39f7a9f56426971711381ea966ed2615a
ppc64le	buildah-tests-1.37.6-1.el9_5.ppc64le.rpm	e7006550669bb0ffbc4434ceae17f12a00e7cbcd6170d0dadb4b8dcd14c92972
s390x	buildah-tests-1.37.6-1.el9_5.s390x.rpm	3ce5680adef259346398671110de7238e62882f8cf85ee4fc8c3751664a5db54
s390x	buildah-1.37.6-1.el9_5.s390x.rpm	81f53acabfb0834da12045268be4fb9b58fea6a34461cfb8ace3739e091e0c3f
x86_64	buildah-1.37.6-1.el9_5.x86_64.rpm	5f35dddbffa9bed0aa3d5d014852cddde6cc07fdf0e16ade175d9ec5b463c3ef
x86_64	buildah-tests-1.37.6-1.el9_5.x86_64.rpm	a2684bc5aea43f7274f442607c9d2f96ecd7b39849bc42222c88b9b48c49cc82

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.