-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Format: 1.8 Date: Fri, 17 Feb 2023 23:11:26 +0800 Source: containerd Architecture: source Version: 1.4.13~ds1-1~deb11u4 Distribution: bullseye Urgency: medium Maintainer: Debian Go Packaging Team <team+pkg-go@tracker.debian.org> Changed-By: Shengjing Zhu <zhsj@debian.org> Changes: containerd (1.4.13~ds1-1~deb11u4) bullseye; urgency=medium . * CVE-2023-25153: OCI image importer memory exhaustion * CVE-2023-25173: Supplementary groups are not set up properly Checksums-Sha1: 107906d6f790906552704bf76febb8701e8e7a3a 3872 containerd_1.4.13~ds1-1~deb11u4.dsc 1268440a73e72c40ba25be071a641ec991c7b7de 31716 containerd_1.4.13~ds1-1~deb11u4.debian.tar.xz 5e447939dacde953f31baeb2e52cf1a660a79b3f 4889 containerd_1.4.13~ds1-1~deb11u4_source.buildinfo Checksums-Sha256: 8ce75a8a94b4ff4a4f0dcff251db87f4cf6f2d94aa4b21df011f4d20474655b2 3872 containerd_1.4.13~ds1-1~deb11u4.dsc 880a03fa45e26a12b72086b8ea839100d538752dea0d6093730ad484d2e7eab3 31716 containerd_1.4.13~ds1-1~deb11u4.debian.tar.xz 2785cebeb78e6dca02e455b4d99fd04664c47374db4b01c5b7691afc4dcd6f92 4889 containerd_1.4.13~ds1-1~deb11u4_source.buildinfo Files: 38f5acfe0ad7db8df313813682a5d8e6 3872 admin optional containerd_1.4.13~ds1-1~deb11u4.dsc c9e73e3dd16132d6c92d0c8c06499b67 31716 admin optional containerd_1.4.13~ds1-1~deb11u4.debian.tar.xz a5173157964d59dc03710339b57a5e60 4889 admin optional containerd_1.4.13~ds1-1~deb11u4_source.buildinfo -----BEGIN PGP SIGNATURE----- iHUEARYIAB0WIQSRhdT1d2eu7mxV1B5/RPol6lUUywUCZCsQ+AAKCRB/RPol6lUU y+itAQD4j0mwlgO8lyWjukkTsrybOTYUccDXDuEiBiG01AG8mAD/WqP9wrw2xG3g wIzkMgIXAuwOUdaxGl5fNZO1ObBsKQo= =AiXC -----END PGP SIGNATURE-----
