Security
- This release addresses CVE-2024-9407, which allows arbitrary access to the host filesystem from
RUN --mount
arguments to a Dockerfile being built. - This release also addresses CVE-2024-9341, allowing the mounting of arbitrary directories from the host into containers on FIPS enabled systems using a malicious image with crafted symlinks.
Misc
- Updated Buildah to v1.37.4
- Updated the containers/common library to v0.60.4