Debian Package Tracker

general

source: runc (main)
version: 1.0.0~rc92+dfsg1-5
maintainer: Debian Go Packaging Team (DMD)
uploaders: Dmitry Smirnov [DMD] – Alexandre Viau [DMD] – Tim Potter [DMD]
arch: all any
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

oldstable: 0.1.1+dfsg1-2+deb9u1
old-sec: 0.1.1+dfsg1-2+deb9u2
stable: 1.0.0~rc6+dfsg1-3
testing: 1.0.0~rc92+dfsg1-5
unstable: 1.0.0~rc92+dfsg1-5

versioned links

0.1.1+dfsg1-2+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
0.1.1+dfsg1-2+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.0~rc6+dfsg1-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1.0.0~rc92+dfsg1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

golang-github-opencontainers-runc-dev
runc

action needed

Does not build reproducibly during testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2020-08-31 Last update: 2020-10-26 17:37

2 new commits since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 273c77c401ea30e63f98b892f93b6505bd2c1d3a
Author: Dmitry Smirnov <onlyjob@member.fsf.org>
Date:   Wed Oct 7 14:10:22 2020 +1100

    Tightened dependency on "golang-github-pkg-errors-dev"
    
      golang-github-pkg-errors-dev (>= 0.9.1~)
    
    Fixes the following FTBFS:
    
    ~~~~
    src/github.com/opencontainers/runc/libcontainer/cgroups/fscommon/fscommon.go:44:6: undefined: "github.com/pkg/errors".Is
    ~~~~

commit 7da0fc46a1310724b41540577b603f5dbc1ab7d4
Author: Dmitry Smirnov <onlyjob@member.fsf.org>
Date:   Wed Oct 7 13:57:06 2020 +1100

    CI: customised CI

https://salsa.debian.org/api/v4/projects/go-team%2Fpackages%2Frunc/pipelines?scope=finished&per_page=1 API request failed: 403 Forbidden at /srv/qa.debian.org/data/vcswatch/vcswatch line 402.

Created: 2020-10-07 Last update: 2020-10-26 16:07

lintian reports 17 warnings normal

Lintian reports 17 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2020-09-21 Last update: 2020-09-21 06:04

2 ignored security issues in stretch low

There are 2 open security issues in stretch.

2 issues skipped by the security teams:

CVE-2019-16884: runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
CVE-2019-19921: runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)

Please fix them.

Created: 2019-09-25 Last update: 2020-08-29 03:49

2 ignored security issues in buster low

There are 2 open security issues in buster.

2 issues skipped by the security teams:

CVE-2019-16884: runc through 1.0.0-rc8, as used in Docker through 19.03.2-ce and other products, allows AppArmor restriction bypass because libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a malicious Docker image can mount over a /proc directory.
CVE-2019-19921: runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an attacker must be able to spawn two containers with custom volume-mount configurations, and be able to run custom images. (This vulnerability does not affect Docker due to an implementation detail that happens to block the attack.)

Please fix them.

Created: 2019-09-25 Last update: 2020-08-29 03:49

news

[rss feed]

[2020-08-29] runc 1.0.0~rc92+dfsg1-5 MIGRATED to testing (Debian testing watch)
[2020-08-27] Accepted runc 1.0.0~rc92+dfsg1-5 (source) into unstable (Shengjing Zhu)
[2020-08-25] Accepted runc 1.0.0~rc92+dfsg1-4 (source) into unstable (Shengjing Zhu)
[2020-08-22] Accepted runc 1.0.0~rc92+dfsg1-3 (source) into unstable (Shengjing Zhu)
[2020-08-19] Accepted runc 1.0.0~rc92+dfsg1-2 (source) into experimental (Shengjing Zhu)
[2020-08-19] Accepted runc 1.0.0~rc92+dfsg1-1 (source) into experimental (Shengjing Zhu)
[2020-08-10] Accepted runc 0.1.1+dfsg1-2+deb9u2 (source) into oldstable (Adrian Bunk)
[2020-04-30] runc 1.0.0~rc10+dfsg2-1 MIGRATED to testing (Debian testing watch)
[2020-04-26] Accepted runc 1.0.0~rc10+dfsg2-1 (source) into unstable (Shengjing Zhu)
[2020-01-28] runc 1.0.0~rc10+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2020-01-26] Accepted runc 1.0.0~rc10+dfsg1-1 (source) into unstable (Dmitry Smirnov)
[2019-10-12] runc 1.0.0~rc9+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-10-10] runc 1.0.0~rc8+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-10-10] Accepted runc 1.0.0~rc9+dfsg1-1 (source) into unstable (Dmitry Smirnov)
[2019-09-09] Accepted runc 1.0.0~rc8+dfsg1-1 (source) into unstable (Dmitry Smirnov)
[2019-04-15] Accepted runc 0.1.1+dfsg1-2+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Shengjing Zhu)
[2019-03-29] runc 1.0.0~rc6+dfsg1-3 MIGRATED to testing (Debian testing watch)
[2019-03-18] Accepted runc 1.0.0~rc6+dfsg1-3 (source) into unstable (Shengjing Zhu)
[2019-02-24] runc 1.0.0~rc6+dfsg1-2 MIGRATED to testing (Debian testing watch)
[2019-02-12] Accepted runc 1.0.0~rc6+dfsg1-2 (source) into unstable (Shengjing Zhu)
[2019-02-11] runc 1.0.0~rc6+dfsg1-1 MIGRATED to testing (Debian testing watch)
[2019-01-25] Accepted runc 1.0.0~rc6+dfsg1-1 (source all amd64) into unstable (Dmitry Smirnov)
[2018-09-29] runc 1.0.0~rc5+dfsg1-4 MIGRATED to testing (Debian testing watch)
[2018-09-26] Accepted runc 1.0.0~rc5+dfsg1-4 (source) into unstable (Dmitry Smirnov)
[2018-06-18] Accepted runc 1.0.0~rc5+dfsg1-3 (source all amd64) into unstable (Dmitry Smirnov)
[2018-06-16] Accepted runc 1.0.0~rc5+dfsg1-2 (source all amd64) into unstable (Dmitry Smirnov)
[2018-06-15] Accepted runc 1.0.0~rc5+dfsg1-1 (source all amd64) into unstable (Dmitry Smirnov)
[2018-04-16] runc 1.0.0~rc4+dfsg1-6 MIGRATED to testing (Debian testing watch)
[2018-04-11] Accepted runc 1.0.0~rc4+dfsg1-6 (source) into unstable (Balint Reczey)
[2018-02-06] Accepted runc 1.0.0~rc4+dfsg1-5 (source) into unstable (Alexandre Viau)

bugs [bug history graph]

all: 0

links

homepage
lintian (0, 17)
buildd: logs, checks, clang, reproducibility, cross
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1.0.0~rc10-0ubuntu2
patches for 1.0.0~rc10-0ubuntu2