Security Overview · containers/buildah · GitHub

Security

SECURITY.md

Security and Disclosure Information Policy for the Buildah Project

The Buildah Project follows the Security and Disclosure Information Policy for the Containers Projects.

CVE-2024-1753 container escape at build time
GHSA-pmf3-c36m-g5cf published Mar 18, 2024 by TomSweeneyRedHat

High
Default inheritable capabilities for linux container should be empty
GHSA-c3g4-w6cv-6v7h published Mar 30, 2022 by giuseppe

Low
chroot isolation: environment value leakage to intermediate processes
GHSA-7638-r9r3-rmjj published Jul 15, 2021 by nalind

Moderate

Learn more about advisories related to containers/buildah in the GitHub Advisory Database