-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 28 Jun 2024 00:56:20 +0200 Source: runc Binary: golang-github-opencontainers-runc-dev runc runc-dbgsym Architecture: source all amd64 Version: 1.0.0~rc93+ds1-5+deb11u5 Distribution: bullseye Urgency: medium Maintainer: Debian Go Packaging Team <team+pkg-go@tracker.debian.org> Changed-By: Daniel Leidert <dleidert@debian.org> Description: golang-github-opencontainers-runc-dev - Open Container Project - development files runc - Open Container Project - runtime Changes: runc (1.0.0~rc93+ds1-5+deb11u5) bullseye; urgency=medium . * Non-maintainer upload by the Debian LTS Team. * d/changelog: Cleaned up the last entry for 1.0.0~rc93+ds1-5+deb11u4 removing some superflous entries. * d/patches/CVE-2023-27561-and-CVE-2023-28642: Added to fix CVE-2023-27561 and CVE-2023-27561. - It was found that the fix for CVE-2021-30465 introduced a regression in regards to CVE-2019-19921 which results in an incorrect access control leading to privilege escalation and bypassing apparmor. Checksums-Sha1: 52c811a645727949a7e298f4efe644f01f0233f8 3216 runc_1.0.0~rc93+ds1-5+deb11u5.dsc 44e8ae775b1f36c0f317a3cf99cb7fe66ffe9c43 456640 runc_1.0.0~rc93+ds1.orig.tar.xz 69a3f43990cdee1e0cfe1faad9a7c1579c5947af 53848 runc_1.0.0~rc93+ds1-5+deb11u5.debian.tar.xz 8e749f44b5716e568f015ee1ff376e146ddf3812 233420 golang-github-opencontainers-runc-dev_1.0.0~rc93+ds1-5+deb11u5_all.deb cc392092ed21cb7bdf93a0e316a5995ede7334fa 2505280 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_amd64.deb fc812387d9141717fef3c5f5179e18d32a60f0e0 8851 runc_1.0.0~rc93+ds1-5+deb11u5_amd64.buildinfo a9f7cc25cb534c956b61195d250a56d3ef8afe8e 2430944 runc_1.0.0~rc93+ds1-5+deb11u5_amd64.deb Checksums-Sha256: 25784d512bfe51c41f74f795738e190c5c7ea9dc513eaf942719d62cbf36521a 3216 runc_1.0.0~rc93+ds1-5+deb11u5.dsc f47903dacd71c002b648250f840ce4c4c9ec9c328e4b7cab8a02946d3ef989f3 456640 runc_1.0.0~rc93+ds1.orig.tar.xz 71135504d60239225112f90614e6facfa374574c39d47be1d9c1af193a757615 53848 runc_1.0.0~rc93+ds1-5+deb11u5.debian.tar.xz da77ae447505150f5f2a88f42104cfdfa8d1ff54968f80234c3d28847ddaa249 233420 golang-github-opencontainers-runc-dev_1.0.0~rc93+ds1-5+deb11u5_all.deb 747e82c21756e657833edd2ab014095fa7927a69a6f09002875d66782aa66643 2505280 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_amd64.deb 4ddef91e276191ba2a83a400f91797a90ed80e58795d9b54427388e1b436e752 8851 runc_1.0.0~rc93+ds1-5+deb11u5_amd64.buildinfo 24bffd5d8b1c4b846112b668b4bf6e5959a25594c6484d0323d9748ce4465f60 2430944 runc_1.0.0~rc93+ds1-5+deb11u5_amd64.deb Files: 728df3e96c36a453360cfc19c23f519a 3216 admin optional runc_1.0.0~rc93+ds1-5+deb11u5.dsc 168220a508ee96372b5fec47e854a1a8 456640 admin optional runc_1.0.0~rc93+ds1.orig.tar.xz 210df0109d6d470efbc51dcf53554a28 53848 admin optional runc_1.0.0~rc93+ds1-5+deb11u5.debian.tar.xz 268b3f63d0f56a6866ecb3c74d3bb143 233420 golang optional golang-github-opencontainers-runc-dev_1.0.0~rc93+ds1-5+deb11u5_all.deb 253de640f40914b17b196e72f672d936 2505280 debug optional runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_amd64.deb 62cb71bd5f2e39d223c0551ae8a4315b 8851 admin optional runc_1.0.0~rc93+ds1-5+deb11u5_amd64.buildinfo 7deae86a46983804af06767eab5b1539 2430944 admin optional runc_1.0.0~rc93+ds1-5+deb11u5_amd64.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEvu1N7VVEpMA+KD3HS80FZ8KW0F0FAmagFicACgkQS80FZ8KW 0F1t2g/+LfvAGF6KDR1EQE3p4wIH1bFoypJA+nw14RtuvTF/kL0f/AOqarhaGy8z +9TDgpCaGDQuykCGDbIFQLonnE4e38v5OqrOZJ7vqiuQ9Trqn1Xi5mfEx1B5Q99j 9dtbNJt/X0ZGWvqnFlsJ//Av6uJthgQcTDbpdfkmXGgP/l//oeNV/x/DIagXjlAF Q/oFeQGv+glUxb0Eby7OWqK4BbSz5X3ZEXRfi9WLOiUWkPp+EUq58hXEbH/xQZ5n fgT/cH3YsqIU8EzyV45rvM7aInR3ItDxVqwzKHpeW2Git+MFj04H2TXyEhq6M6qj LzpNc6qFZH1pYiHleePGwDeu4j/+f1K8RTe/dDo0szE7sdMvbNmT9khSuRr+4JTH nomzBbVf0lBJ/YiVu/Acwi3G0b/9WW3fpS0d4LiQcCiDQuwbtXUef7RaJ8O9QtpS KYJaBl20RxQsrno+T8zknrYOSduWIyfaUvbJSK9iIBd9d2IMmW4MmWCczuDojuot he7P3YpEEn7Cw/OpKtW/wqbf1RKNVBx/pA9yTYIRMagaENbSvZe7Rdp3QO1Q0ZRe kOVBw6xYfSWZb8kAuxh34xTNVEDnzkaL6fNkj2/rXEWaT3RlF74lZThEaA/V1jAx qh7mZxNQ30bb8O7dWVt3jH0vWI0ekKu8SEi666EezsZsNhTbY+g= =tSkv -----END PGP SIGNATURE-----