MIRRORS/meta-virtualization
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 20:59:41 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity

buildah: upgrade 1.26.8 -> 1.26.9

Browse Source 
This upgrade fixes:
CVE-2024-11218

Changes in this Upgrade:
=========================
This upgrade from Buildah 1.26.8 to 1.26.9 includes important security and stability fixes:
- Fixes CVE-2024-11218
- Resolves TOCTOU error when bind and cache mounts use "src" values
- Fixes cache locks with multiple mounts
- Enhances volume handling and mount label options

For full details, refer to:
https://github.com/containers/buildah/releases/tag/v1.26.9

Signed-off-by: Praveen Kumar <praveen.kumar@windriver.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
This commit is contained in:
Praveen Kumar 2025-03-27 07:35:28 +00:00 committed by Bruce Ashfield
parent 55209831c2
commit 426530794b
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
recipes-containers/buildah/buildah_git.bb
View File

@ -8,9 +8,9 @@ LIC_FILES_CHKSUM = "file://src/github.com/containers/buildah/LICENSE;md5=e3fc50a
S = "${WORKDIR}/git" S = "${WORKDIR}/git"
SRCREV_buildah = "e2feca77516568553dc1318019cea90ae000e0f3" SRCREV_buildah = "9aaa280f29910a9a0a13b83dd522508f1fa40a91"
PV = "1.26.8" PV = "1.26.9"
inherit go inherit go
inherit goarch inherit goarch