[ALSA-2024:2550] buildah bug fix update
Severity
Moderate
Affected Packages
4
CVEs
1
buildah bug fix update
The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Bug Fix(es):
- TRIAGE CVE-2024-24786 buildah: golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON [almalinux-9] AlmaLinux9.4 0Day (JIRA:AlmaLinux-28230)
Package | Affected Version |
---|---|
pkg:rpm/almalinux/buildah?arch=x86_64&distro=almalinux-9.4 | < 1.33.7-1.el9_4 |
pkg:rpm/almalinux/buildah?arch=aarch64&distro=almalinux-9.4 | < 1.33.7-1.el9_4 |
pkg:rpm/almalinux/buildah-tests?arch=x86_64&distro=almalinux-9.4 | < 1.33.7-1.el9_4 |
pkg:rpm/almalinux/buildah-tests?arch=aarch64&distro=almalinux-9.4 | < 1.33.7-1.el9_4 |
- ID
- ALSA-2024:2550
- Severity
- moderate
- URL
- https://errata.almalinux.org/ALSA-2024:2550.html
- Published
-
2024-04-30T00:00:00
(4 months ago) - Modified
-
2024-05-07T14:54:52
(4 months ago) - Rights
- Copyright 2024 AlmaLinux OS
- Other Advisories
-
- ALAS2-2024-2550
- ALAS2-2024-2568
- ALAS2-2024-2618
- ALPINE:CVE-2024-24786
- ALSA-2024:2548
- ALSA-2024:2549
- ALSA-2024:3254
- ALSA-2024:4246
- ELSA-2024-12328
- ELSA-2024-12329
- ELSA-2024-12347
- ELSA-2024-12348
- ELSA-2024-2548
- ELSA-2024-2549
- ELSA-2024-2550
- ELSA-2024-3254
- ELSA-2024-4246
- FEDORA-2024-5bae6c0ea7
- GLSA-202407-12
- GLSA-202407-25
- GO-2024-2611
- RHSA-2024:1874
- RHSA-2024:2548
- RHSA-2024:2549
- RHSA-2024:2550
- RHSA-2024:3254
- RHSA-2024:4246
- RLSA-2024:2548
- RLSA-2024:2549
- RLSA-2024:2550
- SUSE-SU-2024:2031-1
- SUSE-SU-2024:2050-1
- SUSE-SU-2024:2050-2
- SUSE-SU-2024:2090-1
- SUSE-SU-2024:3094-1
- SUSE-SU-2024:3097-1
- SUSE-SU-2024:3098-1
- SUSE-SU-2024:3120-1
- USN-6746-1
- USN-6746-2
Source | # ID | Name | URL |
---|---|---|---|
RHSA | RHSA-2024:2550 | https://access.redhat.com/errata/RHSA-2024:2550 | |
CVE | CVE-2024-24786 | https://access.redhat.com/security/cve/CVE-2024-24786 | |
Bugzilla | 2268046 | https://bugzilla.redhat.com/2268046 | |
Self | ALSA-2024:2550 | https://errata.almalinux.org/9/ALSA-2024-2550.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/almalinux/buildah?arch=x86_64&distro=almalinux-9.4 | almalinux | buildah | < 1.33.7-1.el9_4 | almalinux-9.4 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah?arch=aarch64&distro=almalinux-9.4 | almalinux | buildah | < 1.33.7-1.el9_4 | almalinux-9.4 | aarch64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=x86_64&distro=almalinux-9.4 | almalinux | buildah-tests | < 1.33.7-1.el9_4 | almalinux-9.4 | x86_64 | |
Affected | pkg:rpm/almalinux/buildah-tests?arch=aarch64&distro=almalinux-9.4 | almalinux | buildah-tests | < 1.33.7-1.el9_4 | almalinux-9.4 | aarch64 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |