Oracle Linux 9 ELSA-2025-22011 Buildah Important Denial of Service
oracle
November 26, 2025
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
Summary
[1.41.6-1.0.1] - Drop nmap-ncat requirement and skip ignore-socket test case [Orabug: 34117178] [2:1.41.6-1] - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 (https://github.com/containers/buildah/commit/2ece502) - fixes "[Minor Incident] CVE-2025-52881 buildah: container escape and denial of service due to arbitrary write gadgets and procfs write redirects [rhel-9.7.z]" - Resolves: RHEL-126925 [2:1.41.4-4] - rebuild for CVE-2025-58183 - Resolves: RHEL-125680 [2:1.41.4-3] - fix the TMT tests - Related: RHEL-115166 [2:1.41.4-2] - rebuild as last build was built in the wrong tag - Related: RHEL-115166 [2:1.41.4-1] - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 (https://github.com/containers/buildah/commit/ee5b574) - fixes "buildah: create parent directories of mount targets with mode 0755 - [RHEL-9.7] 0day" - Resolves: RHEL-115166
Topics Covered
SRPMs
http://oss.oracle.com/ol9/SRPMS-updates/buildah-1.41.6-1.0.1.el9_7.src.rpm
x86_64
buildah-1.41.6-1.0.1.el9_7.x86_64.rpm buildah-tests-1.41.6-1.0.1.el9_7.x86_64.rpm
aarch64
buildah-1.41.6-1.0.1.el9_7.aarch64.rpm buildah-tests-1.41.6-1.0.1.el9_7.aarch64.rpm
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Related CVEs:
CVE-2025-52881
CVE-2025-58183
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!