[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#984565: unblock: containerd/1.4.4~ds1-1

Package: release.debian.org
Severity: normal
User: release.debian.org@packages.debian.org
Usertags: unblock
X-Debbugs-Cc: zhsj@debian.org

Please unblock package containerd

[ Reason ]
It's a new upstream point release with bugfix only, and
it fixes CVE-2021-21334
Most changes are cherry-pick by myself in upstream.

Diff:
https://salsa.debian.org/go-team/packages/containerd/-/compare/debian%2F1.4.3_ds1-2...debian%2F1.4.4_ds1-1
Many pb.go are changed, it's caused by another CVE fix, which is in
protobuf generator, golang-gogoprotobuf CVE-2021-3121
Without these pb.go files, the diff is small.

The package can migrate itself, but I file this unblock to
reduce the migrate days. Since it will become 20 days nows.

[ Impact ]
Bullseye will have 20 days without CVE fix.

[ Tests ]
The package has autopkgtest, and I have done other integration
tests, like tests with CRI-test[1], Kubernetes Node e2e tests[2].

[1] https://github.com/kubernetes-sigs/cri-tools
[2] https://github.com/kubernetes/community/blob/master/contributors/devel/sig-testing/e2e-tests.md

[ Risks ]
No

[ Checklist ]
  [x] all changes are documented in the d/changelog
  [x] I reviewed all changes and I approve them
  [x] attach debdiff against the package in testing

[ Other info ]
No

unblock containerd/1.4.4~ds1-1
Reply to: