Description:
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Security Fix(es):
* runc: container escape and denial of service due to arbitrary write gadgets and procfs write redirects (CVE-2025-52881)
* golang: archive/tar: Unbounded allocation when parsing GNU sparse map (CVE-2025-58183)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
buildah-tests-1.41.6-1.el9_7.aarch64.rpm |
9e1b065f83674429f843bd3653e00ffd59e6af261091f4bbadced89666596552 |
| aarch64 |
buildah-1.41.6-1.el9_7.aarch64.rpm |
cc687204368123d68a6c72b40ac6fb7fff93089fb559fcfc1147bc9655b8593a |
| ppc64le |
buildah-1.41.6-1.el9_7.ppc64le.rpm |
8ebf9fbee81c8bda417d6b88723690bd1c08bdfda50d886c2ff117d829394e6b |
| ppc64le |
buildah-tests-1.41.6-1.el9_7.ppc64le.rpm |
8efa4d73bcbd186753effd9542c1f1e8a16e5adc895df24304e3ec36e359b486 |
| s390x |
buildah-tests-1.41.6-1.el9_7.s390x.rpm |
5a435807c6c8154157d908e4a598172691b307a6f87ac86cfb80ca90f6861c2a |
| s390x |
buildah-1.41.6-1.el9_7.s390x.rpm |
8aeede3fe23558e31dda979f7bd61d50e2fd9a58e60c2bcb77468f299d99599a |
| x86_64 |
buildah-1.41.6-1.el9_7.x86_64.rpm |
01a03cc1866a05bde09f05d2523673383b4c877daca0f6ef285b62ba84948b7f |
| x86_64 |
buildah-tests-1.41.6-1.el9_7.x86_64.rpm |
f7458171af9f40f7427bb8440b368f46ed1aaae073cd5b995368ad1822043295 |
