[ubuntu/focal-updates] containerd 1.5.5-0ubuntu3~20.04.1 (Accepted)
Łukasz Zemczak
lukasz.zemczak at canonical.com
Thu Nov 4 17:23:22 UTC 2021
containerd (1.5.5-0ubuntu3~20.04.1) focal; urgency=medium
* Backport version 1.5.5-0ubuntu3 from Impish (LP: #1938908).
- d/rules: set GO111MODULE to off, this avoid Internet connection during
the build.
containerd (1.5.5-0ubuntu3) impish; urgency=medium
* SECURITY UPDATE: insufficiently restricted directory permissions
- debian/patches/1.5-reduce-directory-permissions.patch: reduce
permissions for bundle dir in runtime/v1/linux/bundle.go,
runtime/v1/linux/bundle_test.go, runtime/v2/bundle.go,
runtime/v2/bundle_default.go, runtime/v2/bundle_linux.go,
runtime/v2/bundle_linux_test.go, runtime/v2/bundle_test.go,
snapshots/btrfs/btrfs.go.
- CVE-2021-41103
containerd (1.5.5-0ubuntu2) impish; urgency=medium
* d/p/seccomp-support-clone3-syscall.patch: clone3 is explicitly requested
to give ENOSYS instead of the default EPERM, when CAP_SYS_ADMIN is unset.
(LP: #1943049).
containerd (1.5.5-0ubuntu1) impish; urgency=medium
* New upstream release.
* Bump debhelper compatibility level to 11.
- d/rules: remove the unneeded --with=systemd from the dh call.
- d/rules: override dh_installsystemd instead of dh_installinit.
containerd (1.5.2-0ubuntu1) impish; urgency=medium
* New upstream release.
* d/p/skip-tests-with-privilege.patch: add a patch to skip tests which
require a certain level of privilege not achievable in the build
environment.
Date: 2021-10-08 14:52:09.819936+00:00
Signed-By: Łukasz Zemczak <lukasz.zemczak at canonical.com>
https://launchpad.net/ubuntu/+source/containerd/1.5.5-0ubuntu3~20.04.1
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list