products/SUSE_ALP_Standard
9
0
Fork 1
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity
06c3b0bf71
SUSE_ALP_Standard/patchinfo.20241016073844032466.269002615871826/_patchinfo

21 lines
1.2 KiB
Plaintext
Raw Blame History

<patchinfo incident="90">
<!-- generated from request(s) 348600 -->
<issue tracker="bnc" id="1231208">VUL-0: CVE-2024-9407: buildah: Buildah: Podman: Improper Input Validation in bind-propagation Option of Dockerfile RUN --mount Instruction</issue>
<issue tracker="bnc" id="1231230">VUL-0: CVE-2024-9341: buildah,podman: cri-o: FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library</issue>
<issue tracker="bnc" id="1231499">VUL-0: CVE-2024-9675: buildah,podman: buildah: cache arbitrary directory mount</issue>
<issue tracker="cve" id="2024-9341"/>
<issue tracker="cve" id="2024-9407"/>
<issue tracker="cve" id="2024-9675"/>
<packager>danishprakash</packager>
<rating>moderate</rating>
<category>security</category>
<summary>Security update for buildah</summary>
<description>This update for buildah fixes the following issues:
- CVE-2024-9675: Fixed caching of arbitrary directory mount (bsc#1231499)
- CVE-2024-9407: Fixed improper input validation in bind-propagation option of dockerfile RUN --mount instruction (bsc#1231208)
- CVE-2024-9341: Fixed FIPS Crypto-Policy Directory Mounting Issue in containers/common Go Library (bsc#1231230)
</description>
<package>buildah</package>
<seperate_build_arch/>
</patchinfo>
Reference in New Issue View Git Blame Copy Permalink