Rebuild to fix CVE-2023-24534 CVE-2023-24536 CVE-2023-24537 CVE-2023-24538 CVE-2023-29406 CVE-2022-41715 CVE-2024-24791 CVE-2021-34558 and CVE-2022-1962

(cherry picked from commit 7f01aab282fe32043b58724729e39361bf0cb6d3)
2024-12-05 09:34:09 +08:00 · 2024-12-05 09:34:09 +08:00 · 77ac412976
commit 77ac412976
parent bcc1bea196
1 changed files with 5 additions and 2 deletions
--- a/buildah.spec
+++ b/buildah.spec
@ -25,13 +25,13 @@

 Name:           buildah
 Version:        1.26.1
-Release:        1
+Release:        2
 Summary:        A command line tool used for creating OCI Images
 License:        ASL 2.0 and BSD and MIT and MPLv2.0
 URL:            https://%{name}.io
 Source:         %{git0}/archive/v%{version}.tar.gz
 Source1:        https://github.com/cpuguy83/go-md2man/archive/v1.0.10.tar.gz
-BuildRequires:  device-mapper-devel git-core golang >= 1.16.6 glib2-devel glibc-static gpgme-devel libassuan-devel
+BuildRequires:  device-mapper-devel git-core golang >= 1.17.3-33 glib2-devel glibc-static gpgme-devel libassuan-devel
 BuildRequires:  make ostree-devel btrfs-progs-devel libseccomp-static
 Requires:       containers-common netavark iptables nftables libseccomp >= 2.4.1-0
 Suggests:       containernetworking-plugins >= 0.9.1-1 cpp qemu-user-static
@ -136,5 +136,8 @@ make DESTDIR=%{buildroot} PREFIX=%{_prefix} -C docs install
 %{_datadir}/bash-completion/completions/%{name}

 %changelog
+* Thu Dec 19 2024 Jianmin <jianmin@iscas.ac.cn> - 1.26.1-2
+- Rebuild on Go 1.17.3-33 to fix CVE-2023-24534 CVE-2023-24536 CVE-2023-24537 CVE-2023-24538 CVE-2023-29406 CVE-2022-41715 CVE-2024-24791 CVE-2021-34558 and CVE-2022-1962
+
 * Mon Jun 20 2022 fushanqing <fushanqing@kylinos.cn> - 1.26.1-1
 - Initial package