podman - Debian Package Tracker

general

source: podman (main)
version: 5.7.0+ds2-2
maintainer: Debian Go Packaging Team (archive) (DMD)
uploaders: Reinhard Tartler [DMD] – Faidon Liambotis [DMD] – Dmitry Smirnov [DMD]
arch: any
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

stable: 5.4.2+ds1-2
testing: 5.6.2+ds1-4
unstable: 5.7.0+ds2-2

versioned links

5.4.2+ds1-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.6.2+ds1-4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.7.0+ds2-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

podman (8 bugs: 0, 5, 3, 0)
podman-docker
podman-remote

action needed

Debci reports failed tests high

unstable: fail (log)
The tests ran in 0:27:34
Last run: 2025-11-28T02:53:54.000Z
Previous status: unknown

testing: fail (log)
The tests ran in 0:54:26
Last run: 2025-11-27T00:13:26.000Z
Previous status: unknown

stable: fail (log)
The tests ran in 2:05:17
Last run: 2025-11-08T15:14:40.000Z
Previous status: unknown

Created: 2025-10-21 Last update: 2025-12-02 14:31

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-4953: A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.

Created: 2025-09-05 Last update: 2025-11-28 00:01

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2025-4953: A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.

Created: 2025-09-05 Last update: 2025-11-28 00:01

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 5.7.0+ds2-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 6a11019e18f7530a33c74e0f752103cb27839ff0
Author: Reinhard Tartler <siretart@tauware.de>
Date:   Sun Nov 30 16:50:38 2025 -0500

    debian/changelog: update

commit a7cda4b3a2e60ff67eaeda8fad1bb68245f69c11
Author: Reinhard Tartler <siretart@tauware.de>
Date:   Sun Nov 30 16:40:22 2025 -0500

    Fix autopkgtests
    
    New ginkgo upstream seems to dislike the position of the --no-color flag

commit 0c395df48f33880e23321a9a5558548d1e69d5e9
Author: Reinhard Tartler <siretart@tauware.de>
Date:   Sat Nov 29 12:24:06 2025 -0500

    NEWS entry about BoltDB -> SQLite migration

https://salsa.debian.org/api/v4/projects/go-team%2Fpackages%2Fpodman/pipelines?scope=finished&per_page=1 API request failed: 403 Forbidden at /srv/qa.debian.org/data/vcswatch/vcswatch line 431.

Created: 2025-11-29 Last update: 2025-12-01 00:01

debian/patches: 6 patches to forward upstream low

Among the 9 debian patches available in version 5.7.0+ds2-2 of the package, we noticed the following issues:

6 patches where the metadata indicates that the patch has not yet been forwarded upstream. You should either forward the patch upstream or update the metadata to document its real status.

Created: 2024-09-17 Last update: 2025-11-28 09:02

2 low-priority security issues in trixie low

There are 2 open security issues in trixie.

2 issues left for the package maintainer to handle:

CVE-2025-4953: (needs triaging) A flaw was found in Podman. In a Containerfile or Podman, data written to RUN --mount=type=bind mounts during the podman build is not discarded. This issue can lead to files created within the container appearing in the temporary build context directory on the host, leaving the created files accessible.
CVE-2025-9566: (needs triaging) There's a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file. Binary-Affected: podman Upstream-version-introduced: v4.0.0 Upstream-version-fixed: v5.6.1

You can find information about how to handle these issues in the security team's documentation.

Created: 2025-09-05 Last update: 2025-11-28 00:01

testing migrations

excuses:
- Migrates after: golang-github-containers-buildah, golang-github-containers-common, golang-github-containers-image, golang-github-containers-psgo, golang-github-containers-storage
- Migration status for podman (5.6.2+ds1-4 to 5.7.0+ds2-2): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Too young, only 4 of 5 days old
- ∙ ∙ Build-Depends(-Arch): podman golang-github-containers-buildah
- ∙ ∙ Build-Depends(-Arch): podman golang-github-containers-common
- ∙ ∙ Build-Depends(-Arch): podman golang-github-containers-image
- ∙ ∙ Build-Depends(-Arch): podman golang-github-containers-psgo
- ∙ ∙ Build-Depends(-Arch): podman golang-github-containers-storage
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/p/podman.html
- ∙ ∙ Autopkgtest for podman/5.7.0+ds2-2: amd64: Failed (not a regression) ♻ (reference ♻), arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- Not considered

news

[rss feed]

[2025-11-27] Accepted podman 5.7.0+ds2-2 (source) into unstable (Reinhard Tartler)
[2025-11-23] Accepted podman 5.7.0+ds2-1 (source) into experimental (Reinhard Tartler)
[2025-11-04] podman 5.6.2+ds1-4 MIGRATED to testing (Debian testing watch)
[2025-10-26] Accepted podman 5.6.2+ds1-4 (source) into unstable (Reinhard Tartler)
[2025-10-20] Accepted podman 5.6.2+ds1-3+exp1 (source) into experimental (Reinhard Tartler)
[2025-10-08] podman 5.6.2+ds1-3 MIGRATED to testing (Debian testing watch)
[2025-10-06] Accepted podman 5.6.2+ds1-3 (source) into unstable (Reinhard Tartler)
[2025-10-05] Accepted podman 5.6.2+ds1-2 (source) into unstable (Reinhard Tartler)
[2025-10-04] Accepted podman 5.6.2+ds1-1 (source) into unstable (Reinhard Tartler)
[2025-09-30] podman 5.6.1+ds2-3 MIGRATED to testing (Debian testing watch)
[2025-09-28] podman 5.6.1+ds2-2 MIGRATED to testing (Debian testing watch)
[2025-09-27] Accepted podman 5.6.1+ds2-3 (source) into unstable (Reinhard Tartler)
[2025-09-21] Accepted podman 5.6.1+ds2-2 (source) into unstable (Reinhard Tartler)
[2025-09-21] Accepted podman 5.6.1+ds1-2 (source) into unstable (Reinhard Tartler)
[2025-09-10] Accepted podman 5.6.1+ds1-1 (source) into experimental (Reinhard Tartler)
[2025-07-14] podman 5.4.2+ds1-2 MIGRATED to testing (Debian testing watch)
[2025-07-08] Accepted podman 5.4.2+ds1-2 (source) into unstable (Mathias Gibbens)
[2025-04-08] podman 5.4.2+ds1-1 MIGRATED to testing (Debian testing watch)
[2025-04-05] Accepted podman 5.4.2+ds1-1 (source) into unstable (Reinhard Tartler)
[2025-04-04] podman 5.4.1+ds1-3 MIGRATED to testing (Debian testing watch)
[2025-04-01] Accepted podman 5.4.1+ds1-3 (source) into unstable (Reinhard Tartler)
[2025-03-30] podman 5.4.1+ds1-2 MIGRATED to testing (Debian testing watch)
[2025-03-27] Accepted podman 5.4.1+ds1-2 (source) into unstable (Reinhard Tartler)
[2025-03-27] podman 5.4.1+ds1-1 MIGRATED to testing (Debian testing watch)
[2025-03-20] Accepted podman 5.4.1+ds1-1 (source) into unstable (Reinhard Tartler)
[2025-03-08] podman 5.4.0+ds1-1 MIGRATED to testing (Debian testing watch)
[2025-02-16] Accepted podman 5.4.0+ds1-1 (source) into unstable (Reinhard Tartler)
[2025-01-30] podman 5.3.2+ds1-1 MIGRATED to testing (Debian testing watch)
[2025-01-27] Accepted podman 5.3.2+ds1-1 (source) into unstable (Reinhard Tartler)
[2024-12-13] podman 5.3.1+ds1-7 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 9 10
RC: 0
I&N: 6
M&W: 2 3
F&P: 1
patch: 0

links

homepage
lintian
buildd: logs, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debian patches
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 5.4.2+ds1-2
2 bugs