Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1

To: Shengjing Zhu <zhsj@debian.org>, 1000448@bugs.debian.org
Subject: Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
From: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Date: Fri, 03 Dec 2021 16:10:57 +0000
Message-id: <[🔎] 2747bebf2a1446d1ac9cde2e25f8d4e13191f29b.camel@adam-barratt.org.uk>
Reply-to: "Adam D. Barratt" <adam@adam-barratt.org.uk>, 1000448@bugs.debian.org
In-reply-to: <YZzKm87RVVkuNgOZ@local.zhsj.me>
References: <YZzKm87RVVkuNgOZ@local.zhsj.me> <YZzKm87RVVkuNgOZ@local.zhsj.me>

Control: tags -1 + confirmed

On Tue, 2021-11-23 at 19:27 +0800, Shengjing Zhu wrote:
> I'd like to update containerd in bullseye to latest upstream
> patch version. Upstream does maintain a stable release branch
> 1.4.x with only backporting important bugfix.
> 
> Notably:
> 1.4.12~ds1-1~deb11u1 will have:
> 
> + Workaround for "clone3" syscall. So users can run images like
>   fedora:rawhide, ubuntu:impish, which has enabled clone3 syscall
>   in glibc.
>   See also https://bugs.launchpad.net/cloud-images/+bug/1943049
> + Mitigate CVE-2021-41190: Handle ambiguous OCI manifest parsing
> + Backport RPi1/RPi0 workaround #998909
> 

Please go ahead.

Regards,

Adam

Reply to:

Follow-Ups:
- Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
  - From: Shengjing Zhu <zhsj@debian.org>

Prev by Date: Processed: Re: Bug#1000377: bullseye-pu: package node-json-schema/0.3.0+_7.0.6-1+deb11u1
Next by Date: Processed: Re: Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
Previous by thread: Processed: Re: Bug#1000377: bullseye-pu: package node-json-schema/0.3.0+_7.0.6-1+deb11u1
Next by thread: Processed: Re: Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
Index(es):
- Date
- Thread