-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Wed, 29 Mar 2023 17:24:36 +0800 Source: runc Architecture: source Version: 1.1.5+ds1-1 Distribution: unstable Urgency: medium Maintainer: Debian Go Packaging Team <team+pkg-go@tracker.debian.org> Changed-By: Shengjing Zhu <zhsj@debian.org> Closes: 1033520 Changes: runc (1.1.5+ds1-1) unstable; urgency=medium . * Team upload. * New upstream version 1.1.5+ds1 + CVE-2023-25809: rootless: `/sys/fs/cgroup` is writable when cgroupns isn't unshared + CVE-2023-27561: Incorrect Authorization vulnerability (re-introduced CVE-2019-19921) (Closes: #1033520) + CVE-2023-28642: AppArmor/SELinux bypass with symlinked /proc * Drop patches applied in new version - 0009-tests-replace-local-hello-world-bundle-with-busybox-.patch - 0010-tests-convert-arm32-arch-string-when-download-bundle.patch * Add patch to skip TestOpenat2 when cgroups is not available Checksums-Sha1: c794555950c71dc51c1d4119dcd8d952787e02c9 2492 runc_1.1.5+ds1-1.dsc 66480f2a021d462fb7142f22b273369e247f615a 506916 runc_1.1.5+ds1.orig.tar.xz b319cc18fa4c56b35026f8538448ed7909740cee 11240 runc_1.1.5+ds1-1.debian.tar.xz 918fcbf565f7d9c99b186b7e7657e860bf8b4c19 4829 runc_1.1.5+ds1-1_source.buildinfo Checksums-Sha256: 5cd3c99eca86a373f6c1e0f433ede10931c9d1593a53af7cd13a83ff272f2e9c 2492 runc_1.1.5+ds1-1.dsc e936cc563c4557178b3416aa1bb9e8231c53011beb8df67adedbfbaba4eacce7 506916 runc_1.1.5+ds1.orig.tar.xz 1d8f706605e45d99fe0d80a23fcfe9e8cc5fa045885fc5726766aeb8e2d9a403 11240 runc_1.1.5+ds1-1.debian.tar.xz ac5572d3c4317b3aa2d5a5500b7bcb76abf20002bbb0f67d925f95d2d156486e 4829 runc_1.1.5+ds1-1_source.buildinfo Files: 6924783b8f2563bc6838449314a63243 2492 admin optional runc_1.1.5+ds1-1.dsc 5beaef181905367c02c1b2dd2c2d51d9 506916 admin optional runc_1.1.5+ds1.orig.tar.xz fff1a11abe942aa0a8cee83f5e33dfd3 11240 admin optional runc_1.1.5+ds1-1.debian.tar.xz ab3cd6d2c1828694799587a90c0d13a7 4829 admin optional runc_1.1.5+ds1-1_source.buildinfo -----BEGIN PGP SIGNATURE----- iHUEARYIAB0WIQSRhdT1d2eu7mxV1B5/RPol6lUUywUCZCQHSwAKCRB/RPol6lUU y9G1AP412mtEL3DoeeqAQtoCxBtnDSG5dxGSsmGuHmC9AYYW+gEA2iladUjF6Cp4 hxwb6RJ5UpeSseEtnywR0uRcS1V+BAw= =V1B+ -----END PGP SIGNATURE-----
