Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1

To: "Adam D. Barratt" <adam@adam-barratt.org.uk>
Cc: 1000448@bugs.debian.org
Subject: Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
From: Shengjing Zhu <zhsj@debian.org>
Date: Sat, 4 Dec 2021 00:53:47 +0800
Message-id: <[🔎] CAFyCLW9ZY7rBXhkNv=E7TJchMzaps-M7z2pNnzay=fvsoUFUGg@mail.gmail.com>
Reply-to: Shengjing Zhu <zhsj@debian.org>, 1000448@bugs.debian.org
In-reply-to: <[🔎] 2747bebf2a1446d1ac9cde2e25f8d4e13191f29b.camel@adam-barratt.org.uk>
References: <YZzKm87RVVkuNgOZ@local.zhsj.me> <[🔎] 2747bebf2a1446d1ac9cde2e25f8d4e13191f29b.camel@adam-barratt.org.uk> <YZzKm87RVVkuNgOZ@local.zhsj.me>

On Sat, Dec 4, 2021 at 12:11 AM Adam D. Barratt
<adam@adam-barratt.org.uk> wrote:
>
> Control: tags -1 + confirmed
>
> On Tue, 2021-11-23 at 19:27 +0800, Shengjing Zhu wrote:
> > I'd like to update containerd in bullseye to latest upstream
> > patch version. Upstream does maintain a stable release branch
> > 1.4.x with only backporting important bugfix.
> >
> > Notably:
> > 1.4.12~ds1-1~deb11u1 will have:
> >
> > + Workaround for "clone3" syscall. So users can run images like
> >   fedora:rawhide, ubuntu:impish, which has enabled clone3 syscall
> >   in glibc.
> >   See also https://bugs.launchpad.net/cloud-images/+bug/1943049
> > + Mitigate CVE-2021-41190: Handle ambiguous OCI manifest parsing
> > + Backport RPi1/RPi0 workaround #998909
> >
>
> Please go ahead.
>

Uploaded.

-- 
Shengjing Zhu

Reply to:

References:
- Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
  - From: "Adam D. Barratt" <adam@adam-barratt.org.uk>

Prev by Date: Processed: Re: Bug#995394: bullseye-pu: package horizon/3:18.6.2-5
Next by Date: Bug#993318: bullseye-pu: package golang-1.15/1.15.15-1~deb11u1
Previous by thread: Processed: Re: Bug#1000448: bullseye-pu: package containerd/1.4.12~ds1-1~deb11u1
Next by thread: Bug#993809: bullseye-pu: package segemehl/0.3.4-3+deb11u1 (Pre-approval)
Index(es):
- Date
- Thread