Stay Vigilant with Timely Linux Security Advisories

Refine advisories

X Clear Filters

Important (1)

OpenSUSE (3839)

buffer overflow (11054)

important (27972)

integer overflow (1974)

libyang (14)

security advisory (115330)

code execution (4157)

critical (18665)

denial of service (18396)

hplip (40)

Fedora (1)

Published Date Range

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.72%)

78.72% votes

Formal training or courses (4.26%)

4.26% votes

A job that required it (4.82%)

4.82% votes

Other (12.2%)

12.2% votes

[{"id":483,"title":"Self-taught through trial and error","votes":555,"type":"x","order":1,"pct":78.72,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.26,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.82,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.2,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350

bottom 200

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Banner 2 1028x280 1708121730 1 1771599631

Explore Latest Linux Security advisories

We found -7 articles for you...

security advisorysecurity updatered hat

RedHat: RHSA-2021-4221-02 Moderate: buildah Environment Variable Leak

An update for the container-tools:2.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: container-tools:2.0 security update Advisory ID: RHSA-2021:4221-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2021:4221 Issue date: 2021-11-09 CVE Names: CVE-2021-3602 ==================================================================== 1. Summary: An update for the container-tools:2.0 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux AppStream (v. 8) - aarch64, noarch, ppc64le, s390x, x86_64 3. Description: The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fix(es): * buildah: Host environment variables leaked in build container when using chroot isolation (CVE-2021-3602) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 8.5 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed(https://bugzilla.redhat.com/): 1969264 - CVE-2021-3602 buildah: Host environment variables leaked in build container when using chroot isolation 6. Package List: Red Hat Enterprise Linux AppStream (v.8): Source: buildah-1.11.6-9.module+el8.5.0+12239+ec01067b.src.rpm cockpit-podman-11-1.module+el8.5.0+10223+f7559c42.src.rpm conmon-2.0.15-1.module+el8.5.0+10223+f7559c42.src.rpm container-selinux-2.130.0-1.module+el8.5.0+10223+f7559c42.src.rpm containernetworking-plugins-0.8.3-4.module+el8.5.0+10223+f7559c42.src.rpm criu-3.12-9.module+el8.5.0+10223+f7559c42.src.rpm fuse-overlayfs-0.7.8-1.module+el8.5.0+10223+f7559c42.src.rpm podman-1.6.4-26.module+el8.5.0+10223+f7559c42.src.rpm python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.5.0+10223+f7559c42.src.rpm runc-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.src.rpm skopeo-0.1.41-4.module+el8.5.0+10223+f7559c42.src.rpm slirp4netns-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.src.rpm toolbox-0.0.7-1.module+el8.5.0+10223+f7559c42.src.rpm udica-0.2.1-2.module+el8.5.0+10223+f7559c42.src.rpm aarch64: buildah-1.11.6-9.module+el8.5.0+12239+ec01067b.aarch64.rpm buildah-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.aarch64.rpm buildah-debugsource-1.11.6-9.module+el8.5.0+12239+ec01067b.aarch64.rpm buildah-tests-1.11.6-9.module+el8.5.0+12239+ec01067b.aarch64.rpm buildah-tests-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.aarch64.rpm conmon-2.0.15-1.module+el8.5.0+10223+f7559c42.aarch64.rpm containernetworking-plugins-0.8.3-4.module+el8.5.0+10223+f7559c42.aarch64.rpm containernetworking-plugins-debuginfo-0.8.3-4.module+el8.5.0+10223+f7559c42.aarch64.rpm containernetworking-plugins-debugsource-0.8.3-4.module+el8.5.0+10223+f7559c42.aarch64.rpm containers-common-0.1.41-4.module+el8.5.0+10223+f7559c42.aarch64.rpm crit-3.12-9.module+el8.5.0+10223+f7559c42.aarch64.rpm criu-3.12-9.module+el8.5.0+10223+f7559c42.aarch64.rpm criu-debuginfo-3.12-9.module+el8.5.0+10223+f7559c42.aarch64.rpm criu-debugsource-3.12-9.module+el8.5.0+10223+f7559c42.aarch64.rpm fuse-overlayfs-0.7.8-1.module+el8.5.0+10223+f7559c42.aarch64.rpm fuse-overlayfs-debuginfo-0.7.8-1.module+el8.5.0+10223+f7559c42.aarch64.rpm fuse-overlayfs-debugsource-0.7.8-1.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-debugsource-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-remote-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-remote-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm podman-tests-1.6.4-26.module+el8.5.0+10223+f7559c42.aarch64.rpm python3-criu-3.12-9.module+el8.5.0+10223+f7559c42.aarch64.rpm runc-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.aarch64.rpm runc-debuginfo-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.aarch64.rpm runc-debugsource-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.aarch64.rpm skopeo-0.1.41-4.module+el8.5.0+10223+f7559c42.aarch64.rpm skopeo-debuginfo-0.1.41-4.module+el8.5.0+10223+f7559c42.aarch64.rpm skopeo-debugsource-0.1.41-4.module+el8.5.0+10223+f7559c42.aarch64.rpm skopeo-tests-0.1.41-4.module+el8.5.0+10223+f7559c42.aarch64.rpm slirp4netns-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.aarch64.rpm slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.aarch64.rpm slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.aarch64.rpm noarch: cockpit-podman-11-1.module+el8.5.0+10223+f7559c42.noarch.rpm container-selinux-2.130.0-1.module+el8.5.0+10223+f7559c42.noarch.rpm podman-docker-1.6.4-26.module+el8.5.0+10223+f7559c42.noarch.rpm python-podman-api-1.2.0-0.2.gitd0a45fe.module+el8.5.0+10223+f7559c42.noarch.rpm toolbox-0.0.7-1.module+el8.5.0+10223+f7559c42.noarch.rpm udica-0.2.1-2.module+el8.5.0+10223+f7559c42.noarch.rpm ppc64le: buildah-1.11.6-9.module+el8.5.0+12239+ec01067b.ppc64le.rpm buildah-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.ppc64le.rpm buildah-debugsource-1.11.6-9.module+el8.5.0+12239+ec01067b.ppc64le.rpm buildah-tests-1.11.6-9.module+el8.5.0+12239+ec01067b.ppc64le.rpm buildah-tests-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.ppc64le.rpm conmon-2.0.15-1.module+el8.5.0+10223+f7559c42.ppc64le.rpm containernetworking-plugins-0.8.3-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm containernetworking-plugins-debuginfo-0.8.3-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm containernetworking-plugins-debugsource-0.8.3-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm containers-common-0.1.41-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm crit-3.12-9.module+el8.5.0+10223+f7559c42.ppc64le.rpm criu-3.12-9.module+el8.5.0+10223+f7559c42.ppc64le.rpm criu-debuginfo-3.12-9.module+el8.5.0+10223+f7559c42.ppc64le.rpm criu-debugsource-3.12-9.module+el8.5.0+10223+f7559c42.ppc64le.rpm fuse-overlayfs-0.7.8-1.module+el8.5.0+10223+f7559c42.ppc64le.rpm fuse-overlayfs-debuginfo-0.7.8-1.module+el8.5.0+10223+f7559c42.ppc64le.rpm fuse-overlayfs-debugsource-0.7.8-1.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-debugsource-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-remote-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-remote-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm podman-tests-1.6.4-26.module+el8.5.0+10223+f7559c42.ppc64le.rpm python3-criu-3.12-9.module+el8.5.0+10223+f7559c42.ppc64le.rpm runc-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.ppc64le.rpm runc-debuginfo-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.ppc64le.rpm runc-debugsource-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.ppc64le.rpm skopeo-0.1.41-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm skopeo-debuginfo-0.1.41-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm skopeo-debugsource-0.1.41-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm skopeo-tests-0.1.41-4.module+el8.5.0+10223+f7559c42.ppc64le.rpm slirp4netns-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.ppc64le.rpm slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.ppc64le.rpm slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.ppc64le.rpm s390x: buildah-1.11.6-9.module+el8.5.0+12239+ec01067b.s390x.rpm buildah-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.s390x.rpm buildah-debugsource-1.11.6-9.module+el8.5.0+12239+ec01067b.s390x.rpm buildah-tests-1.11.6-9.module+el8.5.0+12239+ec01067b.s390x.rpm buildah-tests-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.s390x.rpm conmon-2.0.15-1.module+el8.5.0+10223+f7559c42.s390x.rpm containernetworking-plugins-0.8.3-4.module+el8.5.0+10223+f7559c42.s390x.rpm containernetworking-plugins-debuginfo-0.8.3-4.module+el8.5.0+10223+f7559c42.s390x.rpm containernetworking-plugins-debugsource-0.8.3-4.module+el8.5.0+10223+f7559c42.s390x.rpm containers-common-0.1.41-4.module+el8.5.0+10223+f7559c42.s390x.rpm crit-3.12-9.module+el8.5.0+10223+f7559c42.s390x.rpm criu-3.12-9.module+el8.5.0+10223+f7559c42.s390x.rpm criu-debuginfo-3.12-9.module+el8.5.0+10223+f7559c42.s390x.rpm criu-debugsource-3.12-9.module+el8.5.0+10223+f7559c42.s390x.rpm fuse-overlayfs-0.7.8-1.module+el8.5.0+10223+f7559c42.s390x.rpm fuse-overlayfs-debuginfo-0.7.8-1.module+el8.5.0+10223+f7559c42.s390x.rpm fuse-overlayfs-debugsource-0.7.8-1.module+el8.5.0+10223+f7559c42.s390x.rpm podman-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm podman-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm podman-debugsource-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm podman-remote-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm podman-remote-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm podman-tests-1.6.4-26.module+el8.5.0+10223+f7559c42.s390x.rpm python3-criu-3.12-9.module+el8.5.0+10223+f7559c42.s390x.rpm runc-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.s390x.rpm runc-debuginfo-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.s390x.rpm runc-debugsource-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.s390x.rpm skopeo-0.1.41-4.module+el8.5.0+10223+f7559c42.s390x.rpm skopeo-debuginfo-0.1.41-4.module+el8.5.0+10223+f7559c42.s390x.rpm skopeo-debugsource-0.1.41-4.module+el8.5.0+10223+f7559c42.s390x.rpm skopeo-tests-0.1.41-4.module+el8.5.0+10223+f7559c42.s390x.rpm slirp4netns-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.s390x.rpm slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.s390x.rpm slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.s390x.rpm x86_64: buildah-1.11.6-9.module+el8.5.0+12239+ec01067b.x86_64.rpm buildah-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.x86_64.rpm buildah-debugsource-1.11.6-9.module+el8.5.0+12239+ec01067b.x86_64.rpm buildah-tests-1.11.6-9.module+el8.5.0+12239+ec01067b.x86_64.rpm buildah-tests-debuginfo-1.11.6-9.module+el8.5.0+12239+ec01067b.x86_64.rpm conmon-2.0.15-1.module+el8.5.0+10223+f7559c42.x86_64.rpm containernetworking-plugins-0.8.3-4.module+el8.5.0+10223+f7559c42.x86_64.rpm containernetworking-plugins-debuginfo-0.8.3-4.module+el8.5.0+10223+f7559c42.x86_64.rpm containernetworking-plugins-debugsource-0.8.3-4.module+el8.5.0+10223+f7559c42.x86_64.rpm containers-common-0.1.41-4.module+el8.5.0+10223+f7559c42.x86_64.rpm crit-3.12-9.module+el8.5.0+10223+f7559c42.x86_64.rpm criu-3.12-9.module+el8.5.0+10223+f7559c42.x86_64.rpm criu-debuginfo-3.12-9.module+el8.5.0+10223+f7559c42.x86_64.rpm criu-debugsource-3.12-9.module+el8.5.0+10223+f7559c42.x86_64.rpm fuse-overlayfs-0.7.8-1.module+el8.5.0+10223+f7559c42.x86_64.rpm fuse-overlayfs-debuginfo-0.7.8-1.module+el8.5.0+10223+f7559c42.x86_64.rpm fuse-overlayfs-debugsource-0.7.8-1.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-debugsource-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-remote-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-remote-debuginfo-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm podman-tests-1.6.4-26.module+el8.5.0+10223+f7559c42.x86_64.rpm python3-criu-3.12-9.module+el8.5.0+10223+f7559c42.x86_64.rpm runc-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.x86_64.rpm runc-debuginfo-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.x86_64.rpm runc-debugsource-1.0.0-66.rc10.module+el8.5.0+11041+627a5cdc.x86_64.rpm skopeo-0.1.41-4.module+el8.5.0+10223+f7559c42.x86_64.rpm skopeo-debuginfo-0.1.41-4.module+el8.5.0+10223+f7559c42.x86_64.rpm skopeo-debugsource-0.1.41-4.module+el8.5.0+10223+f7559c42.x86_64.rpm skopeo-tests-0.1.41-4.module+el8.5.0+10223+f7559c42.x86_64.rpm slirp4netns-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.x86_64.rpm slirp4netns-debuginfo-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.x86_64.rpm slirp4netns-debugsource-0.4.2-3.git21fdece.module+el8.5.0+10223+f7559c42.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2021-3602 https://access.redhat.com/security/updates/classification#moderate https://docs.redhat.com/en/documentation/red_hat_enterprise_linux/8/html/8.5_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2021 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBYYrdbNzjgjWX9erEAQiFqRAAkEXEzud8Jw2C1M9Hnm3LWYCmcSUj6Ew9 TPUUaN1m1/8dSpjABIvLh/SaJhY3MwtOp3Kg4D+w950CZlivZQnc4G/fN3FgCh81 RFMj6QeEAq1LqgsScIRNJY1a4qTFwkUsb5VL+qW1aM7gnHDqB8qKaHTqbxV5ggLm KtnGdtMlTk4iIUisRDWe4d2op77pV86YlruZhY5J9+guYkjYLJ4yUWBjUKskR59n YsVFzwjY8UCVs3q6vKUQKO5ZSArbv+zwtmTNyDhDRE81u2iI+ZxvD4O67cpoLh4+ /dPLn+VNTvd0NYXstI8TbBCH/hwOqsET+1svV1ryVLZNypM5uGfKSbGlX4699n5s 2ym2RbK7SaJ/BAuxJTWqNE/2Y0psZrtuI1oCcsTcxlGMoax/VLpwT18cg53yWRIQ v1v5K34trv9/6lnz1Q8iUlxYly13jp0alYy4I5DHR0apHk2p29yMDGsK8PnkNYTf 7H9QqREzvAD6Ny1oqQHKKmGHLvFTntQs1xie4vgIS4XGoMD7C6PusQsLup2d6as8 HQzo3GiIqhUvPjaNzcf3Zo+3oD3jLRsJXB6WITSnH6r+uz3aX9AznhfV1zZ/mwCT Fy8vRvNeU3ftLKmgPjM81x7IYJ5E5wt1zDW+LFnyim6uuYwg5TXH61NdPlBgkz8x aVhk5TiuILA=Zwgd -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Important security patch released for container-tools:2.1 in CentOS addressing potential secrets exposure in environment variables.. container-tools Security Update, Red Hat Advisory, Moderate Severity Patch, Linux Container Security. . LinuxSecurity.com Team

Nov 09, 2021 Red Hat

security advisoryFedoracommand line tool

Fedora 33: FEDORA-2021-112557d2c5 Moderate: buildah Host Environment Leak

Security fix for CVE-2021-3602. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-112557d2c5 2021-08-02 01:06:02.549728 --------------------------------------------------------------------------------Name : buildah Product : Fedora 33 Version : 1.21.4 Release : 4.fc33 URL : https://buildah.io Summary : A command line tool used for creating OCI Images Description : The buildah package provides a command line tool which can be used to * create a working container from scratch or * create a working container from an image as a starting point * mount/umount a working container's root file system for manipulation * save container's root file system layer to create a new image * delete a working container or an image --------------------------------------------------------------------------------Update Information: Security fix for CVE-2021-3602 --------------------------------------------------------------------------------ChangeLog: * Fri Jul 23 2021 Lokesh Mandvekar - 1.21.4-4 - ensure consistent version-release and changelog * Fri Jul 23 2021 Lokesh Mandvekar - 1.21.4-1 - bump to v1.21.4 - fix gating test issues * Thu Jul 22 2021 Lokesh Mandvekar - 1.21.3-3 - try fix for copy-release * Thu Jul 22 2021 Eduardo Santiago - 1.21.3-2 - Try to deal with new buildah-copy-helper nightmare * Fri Jul 16 2021 Lokesh Mandvekar - 1.21.3-1 - Resolves: #1969264, #1982880 - Security fix for CVE-2021-3602 - bump to v1.21.3 * Wed Jun 30 2021 Lokesh Mandvekar - 1.21.2-1 - bump to v1.21.2 --------------------------------------------------------------------------------References: [ 1 ] Bug #1969264 - CVE-2021-3602 buildah: Host environment variables leaked in build container when using chroot isolation https://bugzilla.redhat.com/show_bug.cgi?id=1969264 --------------------------------------------------------------------------------This update can be installed with the"dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-112557d2c5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . Follow these steps to fix vulnerability CVE-2021-3602 in buildah on Fedora 33, addressing host leaks and ensuring system security updates. Fedora Security, Buildah Update, Command Line Tool, Host Environment Leak, Container Management. . Severity: Important. LinuxSecurity.com Team

Aug 01, 2021 •Important Fedora

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Linux Advisory Watch

Linux Security Week

Community Poll

More Polls

What got you started with Linux?

Message!

Self-taught through trial and error
Formal training or courses
A job that required it
Other

No answer selected. Please try again.

Please select either existing option or enter your own, however not both.

Please select minimum {0} answer(s).

Please select maximum {0} answer(s).

/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json

150

radio

Self-taught through trial and error (78.72%)

78.72% votes

Formal training or courses (4.26%)

4.26% votes

A job that required it (4.82%)

4.82% votes

Other (12.2%)

12.2% votes

bottom 200

Stay Secure with the Latest Linux Advisories

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Explore Latest Linux Security advisories

RedHat: RHSA-2021-4221-02 Moderate: buildah Environment Variable Leak

Fedora 33: FEDORA-2021-112557d2c5 Moderate: buildah Host Environment Leak

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Ubuntu 22.04 OpenSSH Important Remote Access Issues USN-8222-1

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

openSUSE libyang Important Buffer Overflow Advisory 2026-2381-1

openSUSE HPLIP Severe Code Execution Denial of Service 2026-2380-1

openSUSE HPLIP Critical Escalation DoS Advisory SUSE-2026-2380-1

SUSE Linux Micro 6.2 python-Pygments Low Denial of Service CVE-2026-4539

Ubuntu 16.04 LTS GStreamer Base Plugins Critical DoS CVE-2026-2921

Debian 12 Linux Base Update Brings Important Security Fix DLA-4628-1

Debian 12 Kernel-Wedge Update for Linux 6.12 DLA-4627-1

openSUSE NetworkManager-libreswan Important Security Update CVE-2024-9050

openSUSE Rclone Critical Security Update CVE-2026-25680 CVE-2026-25681

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!