GNU bug report logs -
#69080
[PATCH] gnu: runc: Update to 1.1.12 [security fixes].
Previous Next
Reported by: Tomas Volf <~@wolfsden.cz>
Date: Mon, 12 Feb 2024 17:41:02 UTC
Severity: normal
Tags: patch
Done: Christopher Baines <mail <at> cbaines.net>
Bug is archived. No further changes may be made.
To add a comment to this bug, you must first unarchive it, by sending
a message to control AT debbugs.gnu.org, with unarchive 69080 in the body.
You can then email your comments to 69080 AT debbugs.gnu.org in the normal way.
Toggle the display of automated, internal messages from the tracker.
Report forwarded
to
guix-patches <at> gnu.org:
bug#69080; Package
guix-patches.
(Mon, 12 Feb 2024 17:41:02 GMT)
Full text and
rfc822 format available.
Acknowledgement sent
to
Tomas Volf <~@wolfsden.cz>:
New bug report received and forwarded. Copy sent to
guix-patches <at> gnu.org.
(Mon, 12 Feb 2024 17:41:02 GMT)
Full text and
rfc822 format available.
Message #5 received at submit <at> debbugs.gnu.org (full text, mbox):
Fixes CVE-2024-21626.
* gnu/packages/virtualization.scm (runc): Update to 1.1.12.
Change-Id: Ie39eef21fd5e9a01f2777dd8ec54421fb05ae0d5
---
gnu/packages/virtualization.scm | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
index 91f7a151a6..7b42b30f71 100644
--- a/gnu/packages/virtualization.scm
+++ b/gnu/packages/virtualization.scm
@@ -2149,7 +2149,7 @@ (define-public looking-glass-client
(define-public runc
(package
(name "runc")
- (version "1.1.9")
+ (version "1.1.12")
(source (origin
(method url-fetch)
(uri (string-append
@@ -2158,7 +2158,7 @@ (define-public runc
(file-name (string-append name "-" version ".tar.xz"))
(sha256
(base32
- "1hhxqwg0mblrgv2aim3scfd9xg13l6i22j124sdma5sf2fzgx5bn"))))
+ "1mx4iik1gx1am3d2s4ljhrirwjzf4ikn8frba5hdhy74012y7na7"))))
(build-system go-build-system)
(arguments
'(#:import-path "github.com/opencontainers/runc"
base-commit: e257de4365b24a84f39813aea2e8b4ab6259f283
--
2.41.0
Information forwarded
to
guix-patches <at> gnu.org:
bug#69080; Package
guix-patches.
(Tue, 13 Feb 2024 12:30:02 GMT)
Full text and
rfc822 format available.
Message #8 received at submit <at> debbugs.gnu.org (full text, mbox):
[Message part 1 (text/plain, inline)]
Tomas Volf <~@wolfsden.cz> writes:
> Fixes CVE-2024-21626.
>
> * gnu/packages/virtualization.scm (runc): Update to 1.1.12.
>
> Change-Id: Ie39eef21fd5e9a01f2777dd8ec54421fb05ae0d5
> ---
> gnu/packages/virtualization.scm | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
Thanks for the patch, I've pushed this to master as
85e67f7feac14a1290022b9500c333c51c7f3ca3.
Chris
[signature.asc (application/pgp-signature, inline)]
Reply sent
to
Christopher Baines <mail <at> cbaines.net>:
You have taken responsibility.
(Tue, 13 Feb 2024 12:31:01 GMT)
Full text and
rfc822 format available.
Notification sent
to
Tomas Volf <~@wolfsden.cz>:
bug acknowledged by developer.
(Tue, 13 Feb 2024 12:31:02 GMT)
Full text and
rfc822 format available.
bug archived.
Request was from
Debbugs Internal Request <help-debbugs <at> gnu.org>
to
internal_control <at> debbugs.gnu.org.
(Wed, 13 Mar 2024 11:24:18 GMT)
Full text and
rfc822 format available.
This bug report was last modified 135 days ago.
Previous Next
GNU bug tracking system
Copyright (C) 1999 Darren O. Benham,
1997,2003 nCipher Corporation Ltd,
1994-97 Ian Jackson.