-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Mon, 06 Dec 2021 14:36:50 -0800 Source: runc Binary: runc golang-github-opencontainers-runc-dev Architecture: source all amd64 Version: 0.1.1+dfsg1-2+deb9u3 Distribution: stretch-security Urgency: high Maintainer: Debian Go Packaging Team <pkg-go-maintainers@lists.alioth.debian.org> Changed-By: Chris Lamb <lamby@debian.org> Description: golang-github-opencontainers-runc-dev - Open Container Project - develpoment files runc - Open Container Project - runtime Changes: runc (0.1.1+dfsg1-2+deb9u3) stretch-security; urgency=high . * CVE-2021-43784: Fix an issue where an overflow in the Netlink 'bytemsg' length field could have allowed an attacker to override Netlink-based container configurations. This vulnerability required the attacker to have some control over the configuration of the container, but would have allowed the attacker to bypass the namespace restrictions of the container by simply adding their own Netlink payload which disables all namespaces. Checksums-Sha1: f9e86635926c18a1af38cf7622b83d49e2c409d8 2642 runc_0.1.1+dfsg1-2+deb9u3.dsc af17e6f585a394fa645b476e263c7c193e46fed9 151816 runc_0.1.1+dfsg1.orig.tar.xz 15d30eba8c2af9107bd1ab78fe78d5a8dd566d64 12684 runc_0.1.1+dfsg1-2+deb9u3.debian.tar.xz c56987ebaa2718bb775c3bb565588f7c2c574553 148914 golang-github-opencontainers-runc-dev_0.1.1+dfsg1-2+deb9u3_all.deb 7cbadcbc9119b18ee3643e6f62a3b423b1efffe3 785004 runc-dbgsym_0.1.1+dfsg1-2+deb9u3_amd64.deb e081f7949a3c4d8ec6aa770ef2335be60a2e4484 8646 runc_0.1.1+dfsg1-2+deb9u3_amd64.buildinfo e6362a21c3332c179e690da49347a3b8438dacae 1573778 runc_0.1.1+dfsg1-2+deb9u3_amd64.deb Checksums-Sha256: 9b358a24639374f0f1805ebae728f2d60fcbbf42ca37e9a7b71c8d90ceba8cfc 2642 runc_0.1.1+dfsg1-2+deb9u3.dsc 329d0aa37c3d6a39bf8406389a8b7f98fce578c6965ced0332b00d299f90822c 151816 runc_0.1.1+dfsg1.orig.tar.xz e0e1654000a5929848422cc469ebfe168fbad50fb85ea8200eea2b4aac3a3846 12684 runc_0.1.1+dfsg1-2+deb9u3.debian.tar.xz 6bdccb843efa6392d3098dee59588f5c6302418e8512e9634e815d2d8a57155b 148914 golang-github-opencontainers-runc-dev_0.1.1+dfsg1-2+deb9u3_all.deb 94d2b4011f7e00d7489ba9d67614269505d77765782266a28836c0893ac8fdc2 785004 runc-dbgsym_0.1.1+dfsg1-2+deb9u3_amd64.deb 6f65e2b77116d6e40de49c1e6733bff032a20ca2108e993cb98dea6dfb3168bd 8646 runc_0.1.1+dfsg1-2+deb9u3_amd64.buildinfo 6839b0da9565ce006d084828c6264e8ca59ac0c6d1bcbe97288ed23eb3d84092 1573778 runc_0.1.1+dfsg1-2+deb9u3_amd64.deb Files: 828d9ff96582131900d01014844b77f7 2642 devel extra runc_0.1.1+dfsg1-2+deb9u3.dsc df4913872328f2197ed2ff44329051a1 151816 devel extra runc_0.1.1+dfsg1.orig.tar.xz 8e5239e904747b3c4994510bed6e7a5e 12684 devel extra runc_0.1.1+dfsg1-2+deb9u3.debian.tar.xz d81c6a3f227e62459bbb16b1add0cbfd 148914 devel extra golang-github-opencontainers-runc-dev_0.1.1+dfsg1-2+deb9u3_all.deb bc243bb9d2775e34f0403c421618bce4 785004 debug extra runc-dbgsym_0.1.1+dfsg1-2+deb9u3_amd64.deb ee15ba14f27dd22559fbc8dae35ca044 8646 devel extra runc_0.1.1+dfsg1-2+deb9u3_amd64.buildinfo 2a42898450b573ac4e3e056aebfcb82c 1573778 devel extra runc_0.1.1+dfsg1-2+deb9u3_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEwv5L0nHBObhsUz5GHpU+J9QxHlgFAmGukZcACgkQHpU+J9Qx Hlg41BAAuuzCvBVvLLeryKNvqcbA+BT4Fvf8MyWb7Hi+OkBe01WKgT2NA5+i4d4i iD3oZOfN+od9nU110aFyGbES4whbUIH5B9IItiBYIMifN5sCHKE3QZtGF8g5Ygje frkuqGQQoC4NgpksmsiKzbXYgjtqBwZdCXqv5jQETmNt7GTVVYeFY85Ho2E2KAKY uHLV2SDHlJSQ8pb50WfxMEXcSwScNrsD+zJfqQxiQzXS0WgqEw/BbWK58HREvF4v aN8z73+X4Um2oeqceMG1AWCsCWuFAKSW0KqCzTcQkQI+pc6f1WPpTytz9qaTgSIl zi2hqmwd2m6dxMlHSzndWaayellEbPxyKfj+z6ciXIrUeUQGGwEcHV+IyX3q08Ds buu3t+S8pl/IQ2x4n2YVBQ4aR3RW1gzoGy6ECxhdnsKLvJ3HW0giyO0i/WEs7Gfx Ei9GfZ/kBnMMZ1vHfi5o96WuOzhGxg2r67+6nqZW51rabeH8IOJTrKuWzSCvEPMG DBwfij1Xy7EfQN7udVgf7dusII70rVBB60mHy4sQB7ksSPV3i+q6qCd7tMNJRTtN +3SJZmtAF8RJUorlUcZsoG6R1jtK3/8vAah3hj1CCvROa9DsalOoNBMnGlQV0wwB 6KpvGo4nUVkzYdMUk3P3Dn4iZTWfvNruKBwd/vC/1oIeWg5Lvu8= =fpbN -----END PGP SIGNATURE-----
