Fedora 33 Update: buildah-1.21.4-4.fc33

Fedora Linux 8773 Published by

A buildah security update has been released for Fedora 33.



SECURITY: Fedora 33 Update: buildah-1.21.4-4.fc33


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2021-112557d2c5
2021-08-02 01:06:02.549728
--------------------------------------------------------------------------------

Name : buildah
Product : Fedora 33
Version : 1.21.4
Release : 4.fc33
URL :   https://buildah.io
Summary : A command line tool used for creating OCI Images
Description :
The buildah package provides a command line tool which can be used to
* create a working container from scratch
or
* create a working container from an image as a starting point
* mount/umount a working container's root file system for manipulation
* save container's root file system layer to create a new image
* delete a working container or an image

--------------------------------------------------------------------------------
Update Information:

Security fix for CVE-2021-3602
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 23 2021 Lokesh Mandvekar - 1.21.4-4
- ensure consistent version-release and changelog
* Fri Jul 23 2021 Lokesh Mandvekar - 1.21.4-1
- bump to v1.21.4
- fix gating test issues
* Thu Jul 22 2021 Lokesh Mandvekar - 1.21.3-3
- try fix for copy-release
* Thu Jul 22 2021 Eduardo Santiago - 1.21.3-2
- Try to deal with new buildah-copy-helper nightmare
* Fri Jul 16 2021 Lokesh Mandvekar - 1.21.3-1
- Resolves: #1969264, #1982880 - Security fix for CVE-2021-3602
- bump to v1.21.3
* Wed Jun 30 2021 Lokesh Mandvekar - 1.21.2-1
- bump to v1.21.2
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #1969264 - CVE-2021-3602 buildah: Host environment variables leaked in build container when using chroot isolation
  https://bugzilla.redhat.com/show_bug.cgi?id=1969264
--------------------------------------------------------------------------------

This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2021-112557d2c5' at the command
line. For more information, refer to the dnf documentation available at
  http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
  https://fedoraproject.org/keys

Ventoy 1.0.48 released and more

DLA 2725-1: lrzip security update

Windows

Linux

macOS

Community

  • dhamu
    Hello Phil, I have a Linux Tutorial website that curre ...
  • StephanX
    Hi friends, i am new in the Linux universe but i try to ...
  • Philipp
    I would try the XanMod kernel: https://xanmod.orgĀ  I ...