This update for buildah fixes the following issues:
CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed out of bounds read caused by non validated
message size (bsc#1254054)
CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving
an unexpected message type in response to a key listing or signing request (bsc#1253598)
Affected Packages
SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOSbuildah
Fixed in:
1.35.5-150400.3.59.1
SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSSbuildah
Fixed in:
1.35.5-150400.3.59.1
SUSE:Linux Enterprise Server 15 SP4-LTSSbuildah
Fixed in:
1.35.5-150400.3.59.1
SUSE:Linux Enterprise Server for SAP Applications 15 SP4buildah