[ubuntu/noble-proposed] runc 1.1.12+ds1-1ubuntu1 (Accepted)

Nishit Majithia nishit.majithia at canonical.com
Thu Feb 8 06:02:10 UTC 2024 

runc (1.1.12+ds1-1ubuntu1) noble; urgency=medium

  * Merge with Debian unstable.
  * Remaining changes:
    - d/control: remove the binary paragraph for runc.
    - d/golang-github-opencontainers-runc-dev.docs: install NOTICE file to
      be compliant with the Apache 2 license.
    - d/golang-github-opencontainers-runc-dev.install: remove this file, it
      is causing a FTBFS, no need to have it in place, the library files are
      already installed correctly without it.
    - d/runc.*: remove all packaging related files associated to the
      runc binary package
    - d/rules: no need to generate manpages after build
    - d/rules: remove runc binary from the binary package
    - d/tests/{checkpoint,integration}: remove since they depend on the
      runc binary package which is not provided by this source package
      anymore
  * Dropped changes:
    - d/p/0001-Fix-File-to-Close.patch: Fix File to Close
    - d/p/0002-init-verify-after-chdir-that-cwd-is-inside-the-conta.patch:
      init: verify after chdir that cwd is inside the container
    - d/p/0003-setns-init-do-explicit-lookup-of-execve-argument-ear.patch:
      setns init: do explicit lookup of execve argument early
    - d/p/0004-init-close-internal-fds-before-execve.patch: init: close
      internal fds before execve
    - d/p/0005-cgroup-plug-leaks-of-sys-fs-cgroup-handle.patch: cgroup:
      plug leaks of /sys/fs/cgroup handle
    - d/p/0006-libcontainer-mark-all-non-stdio-fds-O_CLOEXEC-before.patch:
      ibcontainer: mark all non-stdio fds O_CLOEXEC before spawning init
    [ Incorporated by upstream. ]

runc (1.1.12+ds1-1) unstable; urgency=medium

  * Team upload
  * New upstream version 1.1.12+ds1
    + CVE-2024-21626: several container breakouts due to internally leaked fds

Date: Wed, 07 Feb 2024 13:26:27 +0530
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Signed-By: Alex Murray <alex.murray at canonical.com>
https://launchpad.net/ubuntu/+source/runc/1.1.12+ds1-1ubuntu1
-------------- next part --------------
Format: 1.8
Date: Wed, 07 Feb 2024 13:26:27 +0530
Source: runc
Built-For-Profiles: noudeb
Architecture: source
Version: 1.1.12+ds1-1ubuntu1
Distribution: noble
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
Changes:
 runc (1.1.12+ds1-1ubuntu1) noble; urgency=medium
 .
   * Merge with Debian unstable.
   * Remaining changes:
     - d/control: remove the binary paragraph for runc.
     - d/golang-github-opencontainers-runc-dev.docs: install NOTICE file to
       be compliant with the Apache 2 license.
     - d/golang-github-opencontainers-runc-dev.install: remove this file, it
       is causing a FTBFS, no need to have it in place, the library files are
       already installed correctly without it.
     - d/runc.*: remove all packaging related files associated to the
       runc binary package
     - d/rules: no need to generate manpages after build
     - d/rules: remove runc binary from the binary package
     - d/tests/{checkpoint,integration}: remove since they depend on the
       runc binary package which is not provided by this source package
       anymore
   * Dropped changes:
     - d/p/0001-Fix-File-to-Close.patch: Fix File to Close
     - d/p/0002-init-verify-after-chdir-that-cwd-is-inside-the-conta.patch:
       init: verify after chdir that cwd is inside the container
     - d/p/0003-setns-init-do-explicit-lookup-of-execve-argument-ear.patch:
       setns init: do explicit lookup of execve argument early
     - d/p/0004-init-close-internal-fds-before-execve.patch: init: close
       internal fds before execve
     - d/p/0005-cgroup-plug-leaks-of-sys-fs-cgroup-handle.patch: cgroup:
       plug leaks of /sys/fs/cgroup handle
     - d/p/0006-libcontainer-mark-all-non-stdio-fds-O_CLOEXEC-before.patch:
       ibcontainer: mark all non-stdio fds O_CLOEXEC before spawning init
     [ Incorporated by upstream. ]
 .
 runc (1.1.12+ds1-1) unstable; urgency=medium
 .
   * Team upload
   * New upstream version 1.1.12+ds1
     + CVE-2024-21626: several container breakouts due to internally leaked fds
Checksums-Sha1:
 911dace57c20aa6bba5aa7aa5888cd8ad5420c70 2736 runc_1.1.12+ds1-1ubuntu1.dsc
 937c3fe186bca9df98b96c4f1b1354a89092d66c 528632 runc_1.1.12+ds1.orig.tar.xz
 729a053256a26fd4430a72b61c0ae4df6b8cd4dc 15048 runc_1.1.12+ds1-1ubuntu1.debian.tar.xz
 56481f7c27671cc0a812b27e3f0de6cd66bcc237 7971 runc_1.1.12+ds1-1ubuntu1_source.buildinfo
Checksums-Sha256:
 b91b8000c8c4a56b38a51d3b2f69a8c6d8aef08f10458d6099d0d91420cbc76f 2736 runc_1.1.12+ds1-1ubuntu1.dsc
 ab7ab8842157c9607f450cf1f2cc7dc2a61cc134766c27111d0e113bdd41d6a8 528632 runc_1.1.12+ds1.orig.tar.xz
 073fdc2161b45847468709fdf4d85877d2fb86a05ca26b939fa96fcd5b463e8e 15048 runc_1.1.12+ds1-1ubuntu1.debian.tar.xz
 9c76917b51c2d3fb79661ecbd18cc1c8f2ea57836cc460264e877a48fe4d3617 7971 runc_1.1.12+ds1-1ubuntu1_source.buildinfo
Files:
 fdc3188e89aa7db1b82b2e32bf11cc6c 2736 admin optional runc_1.1.12+ds1-1ubuntu1.dsc
 2c788fe39dea435e8db8e5baceba60e0 528632 admin optional runc_1.1.12+ds1.orig.tar.xz
 444200f18ef74f970efdec77627cbe5d 15048 admin optional runc_1.1.12+ds1-1ubuntu1.debian.tar.xz
 ff0176251cd520cddfeb629ddf85755c 7971 admin optional runc_1.1.12+ds1-1ubuntu1_source.buildinfo
Original-Maintainer: Debian Go Packaging Team <team+pkg-go at tracker.debian.org>

More information about the noble-changes mailing list