Description:
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Security Fix(es):
* github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object (CVE-2026-34986)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
buildah-tests-1.41.8-3.el9_7.aarch64.rpm |
33c3a067b9de83bb59e6b68e21ffbcf6d5464947940b58805b26d6a3a804cbc4 |
| aarch64 |
buildah-1.41.8-3.el9_7.aarch64.rpm |
67fdaf20c752a421249532a1aa4952a73eb2e95f8fd94014302df45f5b0921de |
| ppc64le |
buildah-tests-1.41.8-3.el9_7.ppc64le.rpm |
7fe2063df4712eec3af82cc9a72aab2dfb958afd2667ceac595a011e2f284079 |
| ppc64le |
buildah-1.41.8-3.el9_7.ppc64le.rpm |
fcf3efdfa71dd0c528cbac460594193c9d7cc93c72900e60a6c809e107207e4b |
| s390x |
buildah-tests-1.41.8-3.el9_7.s390x.rpm |
a379b3e00edb1d0b1bd1c0dbcc2ce363b2952e962795ef952f3c2d39755e5d6c |
| s390x |
buildah-1.41.8-3.el9_7.s390x.rpm |
f9f90fb9abc1d34d82864e3fc270f4c97f5c61bfb980f7cdd8bd0dd986d17b0a |
| x86_64 |
buildah-1.41.8-3.el9_7.x86_64.rpm |
f251a0f0beb0ce9ae4ad236f739d1b6a0975222bd6a200bd1789ff8c8a137bed |
| x86_64 |
buildah-tests-1.41.8-3.el9_7.x86_64.rpm |
fbfd24bd304efccab2fd6f4e2aed48bcabb1a2c7a4c29a342dd60b873dcd47a9 |
