Vulnerability Database
Blog
FAQ
Docs
arrow_forward
search
light_mode
dark_mode
RHSA-2026:29455
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2026:29455
Import Source
https://security.access.redhat.com/data/osv/RHSA-2026:29455.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2026:29455
Upstream
CVE-2026-25679
CVE-2026-32280
CVE-2026-32281
CVE-2026-32283
CVE-2026-39829
CVE-2026-39830
Related
GO-2026-4601
GO-2026-4870
GO-2026-4946
GO-2026-4947
GO-2026-5017
GO-2026-5018
Published
2026-06-25T10:43:11Z
Modified
2026-06-30T10:48:12Z
Severity
7.5 (High)
CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: buildah security update
Details
References
https://access.redhat.com/errata/RHSA-2026:29455
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=2445356
https://bugzilla.redhat.com/show_bug.cgi?id=2456333
https://bugzilla.redhat.com/show_bug.cgi?id=2456338
https://bugzilla.redhat.com/show_bug.cgi?id=2456339
https://bugzilla.redhat.com/show_bug.cgi?id=2480681
https://bugzilla.redhat.com/show_bug.cgi?id=2480684
https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_29455.json
https://access.redhat.com/security/cve/CVE-2026-25679
https://www.cve.org/CVERecord?id=CVE-2026-25679
https://nvd.nist.gov/vuln/detail/CVE-2026-25679
https://go.dev/cl/752180
https://go.dev/issue/77578
https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk
https://pkg.go.dev/vuln/GO-2026-4601
https://access.redhat.com/security/cve/CVE-2026-32280
https://www.cve.org/CVERecord?id=CVE-2026-32280
https://nvd.nist.gov/vuln/detail/CVE-2026-32280
https://go.dev/cl/758320
https://go.dev/issue/78282
https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU
https://pkg.go.dev/vuln/GO-2026-4947
https://access.redhat.com/security/cve/CVE-2026-32281
https://www.cve.org/CVERecord?id=CVE-2026-32281
https://nvd.nist.gov/vuln/detail/CVE-2026-32281
https://go.dev/cl/758061
https://go.dev/issue/78281
https://pkg.go.dev/vuln/GO-2026-4946
https://access.redhat.com/security/cve/CVE-2026-32283
https://www.cve.org/CVERecord?id=CVE-2026-32283
https://nvd.nist.gov/vuln/detail/CVE-2026-32283
https://go.dev/cl/763767
https://go.dev/issue/78334
https://pkg.go.dev/vuln/GO-2026-4870
https://access.redhat.com/security/cve/CVE-2026-39829
https://www.cve.org/CVERecord?id=CVE-2026-39829
https://nvd.nist.gov/vuln/detail/CVE-2026-39829
https://go.dev/cl/781641
https://go.dev/cl/781661
https://go.dev/issue/79565
https://groups.google.com/g/golang-announce/c/a082jnz-LvI
https://pkg.go.dev/vuln/GO-2026-5018
https://access.redhat.com/security/cve/CVE-2026-39830
https://www.cve.org/CVERecord?id=CVE-2026-39830
https://nvd.nist.gov/vuln/detail/CVE-2026-39830
https://go.dev/cl/781640
https://go.dev/cl/781664
https://go.dev/issue/79564
https://pkg.go.dev/vuln/GO-2026-5017
Affected packages
Red Hat:enterprise_linux:9::appstream
buildah
Package
Name
buildah
Purl
pkg:rpm/redhat/buildah
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:1.43.1-2.el9_8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:29455.json"
buildah-debuginfo
Package
Name
buildah-debuginfo
Purl
pkg:rpm/redhat/buildah-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:1.43.1-2.el9_8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:29455.json"
buildah-debugsource
Package
Name
buildah-debugsource
Purl
pkg:rpm/redhat/buildah-debugsource
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:1.43.1-2.el9_8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:29455.json"
buildah-tests
Package
Name
buildah-tests
Purl
pkg:rpm/redhat/buildah-tests
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:1.43.1-2.el9_8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:29455.json"
buildah-tests-debuginfo
Package
Name
buildah-tests-debuginfo
Purl
pkg:rpm/redhat/buildah-tests-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
2:1.43.1-2.el9_8
Database specific
source
"https://security.access.redhat.com/data/osv/RHSA-2026:29455.json"
RHSA-2026:29455 - OSV