Description:
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Security Fix(es):
* crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)
* golang: net/url: Memory exhaustion in query parameter parsing in net/url (CVE-2025-61726)
* crypto/tls: Unexpected session resumption in crypto/tls (CVE-2025-68121)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
| Architecture |
Package |
Checksum |
| aarch64 |
buildah-tests-1.41.8-2.el9_7.aarch64.rpm |
6b9336985cf0a13dc1cd705b896c40ecc7fd6219f95a528f4f14084729fdebc9 |
| aarch64 |
buildah-1.41.8-2.el9_7.aarch64.rpm |
7efb65ff95e73edb738edc2ad905904fbb62c0be28a8126270a257cbb96c6509 |
| ppc64le |
buildah-tests-1.41.8-2.el9_7.ppc64le.rpm |
51ce7c6e90b6e37c84ad75ad6db298b24da08726ca07655158a2466b1d2eb836 |
| ppc64le |
buildah-1.41.8-2.el9_7.ppc64le.rpm |
55c7a1e0752a671a640fae233f7eb57ddd4583fdead1827d34df2f457577322e |
| s390x |
buildah-1.41.8-2.el9_7.s390x.rpm |
ab86fc49d5cdbb2d08f95fe10427e36ef28bcc4243a5fa38ed2dd604723d5208 |
| s390x |
buildah-tests-1.41.8-2.el9_7.s390x.rpm |
f504e27bc017c775cb924b068f969e3c54baced8e998c511408e18c461cc8bb7 |
| x86_64 |
buildah-1.41.8-2.el9_7.x86_64.rpm |
09ecf31e3522402c3a94714f207544e46e84d792ca4b3b2f60451ef4a949ddc4 |
| x86_64 |
buildah-tests-1.41.8-2.el9_7.x86_64.rpm |
d0854285f5828999acaa5065a0ff6db24beb38df778a81bebb7868fcd610e7ff |
