[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2022:0770-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":20,"duplicates":21,"related":22,"reserved_at":9,"published_at":26,"modified_at":27,"state":9,"summary":28,"references_raw":30,"kevs":59,"epss":9,"epss_history":60,"metrics":61,"affected":62},"OPENSUSE-SU-2022:0770-1","Security update for buildah\n\nThis update for buildah fixes the following issues:\n\nbuildah was updated to version 1.23.1:\n\nUpdate to version 1.22.3:\n\n* Update dependencies\n* Post-branch commit\n* Accept repositories on login/logout\n\nUpdate to version 1.22.0:\n\n* c/image, c/storage, c/common vendor before Podman 3.3 release\n* Proposed patch for 3399 (shadowutils)\n* Fix handling of --restore shadow-utils\n* runtime-flag (debug) test: handle old & new runc\n* Allow dst and destination for target in secret mounts\n* Multi-arch: Always push updated version-tagged img\n* imagebuildah.stageExecutor.prepare(): remove pseudonym check\n* refine dangling filter\n* Chown with environment variables not set should fail\n* Just restore protections of shadow-utils\n* Remove specific kernel version number requirement from install.md\n* Multi-arch image workflow: Make steps generic\n* chroot: fix environment value leakage to intermediate processes\n* Update nix pin with `make nixpkgs`\n* buildah source - create and manage source images\n* Update cirrus-cron notification GH workflow\n* Reuse code from containers/common/pkg/parse\n* Cirrus: Freshen VM images\n* Fix excludes exception begining with / or ./\n* Fix syntax for --manifest example\n* vendor containers/common@main\n* Cirrus: Drop dependence on fedora-minimal\n* Adjust conformance-test error-message regex\n* Workaround appearance of differing debug messages\n* Cirrus: Install docker from package cache\n* Switch rusagelogfile to use options.Out\n* Turn stdio back to blocking when command finishes\n* Add support for default network creation\n* Cirrus: Updates for master->main rename\n* Change references from master to main\n* Add `--env` and `--workingdir` flags to run command\n* [CI:DOCS] buildah bud: spelling --ignore-file requires parameter\n* [CI:DOCS] push/pull: clarify supported transports\n* Remove unused function arguments\n* Create mountOptions for mount command flags\n* Extract version command implementation to function\n* Add --json flags to `mount` and `version` commands\n* copier.Put(): set xattrs after ownership\n* buildah add/copy: spelling\n* buildah copy and buildah add should support .containerignore\n* Remove unused util.StartsWithValidTransport\n* Fix documentation of the --format option of buildah push\n* Don't use alltransports.ParseImageName with known transports\n* man pages: clarify `rmi` removes dangling parents\n* [CI:DOCS] Fix links to c/image master branch\n* imagebuildah: use the specified logger for logging preprocessing warnings\n* Fix copy into workdir for a single file\n* Fix docs links due to branch rename\n* Update nix pin with `make nixpkgs`\n* fix(docs): typo\n* Move to v1.22.0-dev\n* Fix handling of auth.json file while in a user namespace\n* Add rusage-logfile flag to optionally send rusage to a file\n* imagebuildah: redo step logging\n* Add volumes to make running buildah within a container easier\n* Add and use a 'copy' helper instead of podman load/save\n* Bump github.com/containers/common from 0.38.4 to 0.39.0\n* containerImageRef/containerImageSource: don't buffer uncompressed layers\n* containerImageRef(): squashed images have no parent images\n* Sync. workflow across skopeo, buildah, and podman\n* Bump github.com/containers/storage from 1.31.1 to 1.31.2\n* Bump github.com/opencontainers/runc from 1.0.0-rc94 to 1.0.0-rc95\n* Bump to v1.21.1-dev [NO TESTS NEEDED]\n\n",null,[],[],[],[14,16,18],{"_key":15},"CVE-2019-10214",{"_key":17},"CVE-2020-10696",{"_key":19},"CVE-2021-20206",[],[],[23,24,25],{"_key":15},{"_key":17},{"_key":19},"2022-03-09T08:24:58Z","2026-02-04T03:03:39.107503Z",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[31,37,42,46,51,55],{"url":32,"sources":33,"tags":35},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WFIDXN6UAK2I4PPVFPBE4STNQH2FZQ4A/",[34],"osv_opensuse",[36],"Advisory",{"url":38,"sources":39,"tags":40},"https://bugzilla.suse.com/1187812",[34],[41],"REPORT",{"url":43,"sources":44,"tags":45},"https://bugzilla.suse.com/1192999",[34],[41],{"url":47,"sources":48,"tags":49},"https://www.suse.com/security/cve/CVE-2019-10214",[34],[50],"WEB",{"url":52,"sources":53,"tags":54},"https://www.suse.com/security/cve/CVE-2020-10696",[34],[50],{"url":56,"sources":57,"tags":58},"https://www.suse.com/security/cve/CVE-2021-20206",[34],[50],[],[],[],[63],{"ecosystem":64,"name":65,"vendor":66,"product":67,"cpe_part":9,"purl_type":68,"purl_namespace":66,"purl_name":67,"source":9,"versions":69},"openSUSE","buildah","opensuse","buildah&distro=openSUSE Leap 15.3","rpm",[70],{"version":71,"is_range":72,"range_type":73,"version_start":9,"version_start_type":9,"version_end":74,"version_end_type":75,"fixed_in":9},"lt1_23_1_150300_8_3_1",true,"ecosystem","1.23.1-150300.8.3.1","excluding"]