Synopsis: Important: buildah security and bug fix update
Advisory ID: SLSA-2020:2116-1
Issue Date: 2020-05-12
CVE Numbers: CVE-2020-1702
CVE-2020-10696
—
* buildah: Crafted input tar file may lead to local file overwrite during image build process
* containers/image: Container images read entire image manifest into memory
—
– Scientific Linux Development Team
