[ubuntu/focal-security] containerd 1.5.9-0ubuntu1~20.04.4 (Accepted)
Paulo Flabiano Smorigo
pfsmorigo at canonical.com
Mon May 16 13:50:49 UTC 2022
containerd (1.5.9-0ubuntu1~20.04.4) focal-security; urgency=medium
* SECURITY UPDATE: Insecure handling of image volumes
- debian/patches/CVE-2022-23648.patch: Use fs.RootPath when mounting
volumes. (LP: #1973054)
- CVE-2022-23648
containerd (1.5.9-0ubuntu1~20.04.1) focal; urgency=medium
* Backport version 1.5.9-0ubuntu1 from Jammy (LP: #1955413, #1960449).
- d/rules: set GO111MODULE to off.
containerd (1.5.9-0ubuntu1) jammy; urgency=medium
* New upstream release (LP: #1946851, #1955413).
* Remove patches applied by upstream.
containerd (1.5.5-0ubuntu3) impish; urgency=medium
* SECURITY UPDATE: insufficiently restricted directory permissions
- debian/patches/1.5-reduce-directory-permissions.patch: reduce
permissions for bundle dir in runtime/v1/linux/bundle.go,
runtime/v1/linux/bundle_test.go, runtime/v2/bundle.go,
runtime/v2/bundle_default.go, runtime/v2/bundle_linux.go,
runtime/v2/bundle_linux_test.go, runtime/v2/bundle_test.go,
snapshots/btrfs/btrfs.go.
- CVE-2021-41103
Date: 2022-05-12 18:35:16.819084+00:00
Changed-By: Paulo Flabiano Smorigo <pfsmorigo at canonical.com>
https://launchpad.net/ubuntu/+source/containerd/1.5.9-0ubuntu1~20.04.4
-------------- next part --------------
Sorry, changesfile not available.
More information about the Focal-changes
mailing list