Overview

File _patchinfo of Package patchinfo.42049

<patchinfo incident="42049">
  <issue tracker="cve" id="2025-47914"/>
  <issue tracker="cve" id="2025-47913"/>
  <issue tracker="bnc" id="1253598">VUL-0: CVE-2025-47913: buildah: golang.org/x/crypto/ssh/agent: client process termination when receiving an unexpected message type in response to a key listing or signing request</issue>
  <issue tracker="bnc" id="1254054">VUL-0: CVE-2025-47914: buildah: golang.org/x/crypto/ssh/agent: non validated message size can cause a panic due to an out of bounds read</issue>
  <packager>danishprakash</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for buildah</summary>
  <description>This update for buildah fixes the following issues:

- CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed out of bounds read caused by non validated 
  message size (bsc#1254054)
- CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving 
  an unexpected message type in response to a key listing or signing request (bsc#1253598)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places