buildah-tests

Direct Vulnerabilities

Known vulnerabilities in the buildah-tests package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • H
NULL Pointer Dereference

*
  • M
Cross-site Scripting (XSS)

*
  • H
Improper Preservation of Permissions

*
  • M
External Control of Assumed-Immutable Web Parameter

*
  • M
Improper Validation of Specified Type of Input

*
  • H
Missing Release of Resource after Effective Lifetime

*
  • M
Improper Output Neutralization for Logs

*
  • H
Improper Validation of Specified Quantity in Input

*
  • L
Missing Release of Resource after Effective Lifetime

*
  • M
Improper Validation of Unsafe Equivalence in Input

*
  • H
Multiple Locks of a Critical Resource

<2:1.43.1-2.el10_2
  • M
HTTP Request Smuggling

*
  • H
Allocation of Resources Without Limits or Throttling

<2:1.43.1-2.el10_2
  • M
Excessive Platform Resource Consumption within a Loop

<2:1.43.1-2.el10_2
  • M
Cross-site Scripting (XSS)

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
Incorrect Calculation of Buffer Size

*
  • H
Incorrect Behavior Order: Authorization Before Parsing and Canonicalization

*
  • H
Improper Validation of Syntactic Correctness of Input

<2:1.43.1-1.el10_2
  • M
CVE-2025-68121

<2:1.41.8-2.el10_1
  • M
Directory Traversal

*
  • H
Allocation of Resources Without Limits or Throttling

<2:1.41.8-2.el10_1
  • M
Directory Traversal

*
  • M
Server-Side Request Forgery (SSRF)

*
  • M
NULL Pointer Dereference

*
  • M
Server-Side Request Forgery (SSRF)

*
  • H
Excessive Platform Resource Consumption within a Loop

<2:1.41.8-2.el10_1
  • M
Improper Certificate Validation

*
  • H
Reachable Assertion

<2:1.41.8-1.el10_1
  • M
Creation of Immutable Text Using String Concatenation

*
  • M
Allocation of Resources Without Limits or Throttling

<2:1.41.6-1.el10_1
  • H
Link Following

<2:1.41.6-1.el10_1
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Improper Output Neutralization for Logs

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Expected Behavior Violation

*
  • M
Expected Behavior Violation

*
  • M
CVE-2025-4673

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Information Exposure

*
  • L
Improper Verification of Cryptographic Signature

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Time-of-check Time-of-use (TOCTOU)

*
  • M
Improper Input Validation

*
  • M
Improper Input Validation

*
  • M
Directory Traversal

*
  • M
HTTP Request Smuggling

<2:1.39.4-2.el10_0
  • M
Allocation of Resources Without Limits or Throttling

<2:1.39.4-1.el10_0