VYPR

rpm package

opensuse/buildkit&distro=openSUSE Tumbleweed

pkg:rpm/opensuse/buildkit&distro=openSUSE%20Tumbleweed

Vulnerabilities (3)

  • CVE-2024-23653Jan 31, 2024
    affected < 0.12.5-2.1fixed 0.12.5-2.1

    BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. In addition to running containers as build steps, BuildKit also provides APIs for running interactive containers based on built images. It was possible to use th

  • CVE-2024-23652Jan 31, 2024
    affected < 0.12.5-1.1fixed 0.12.5-1.1

    BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. A malicious BuildKit frontend or Dockerfile using RUN --mount could trick the feature that removes empty files created for the mountpoints into removing a file o

  • CVE-2024-23651Jan 31, 2024
    affected < 0.12.5-1.1fixed 0.12.5-1.1

    BuildKit is a toolkit for converting source code to build artifacts in an efficient, expressive and repeatable manner. Two malicious build steps running in parallel sharing the same cache mounts with subpaths could cause a race condition that can lead to files from the host syste