Publishing details

• Published on 2023-05-17
• Copied from ubuntu lunar in PPA for Ubuntu Security Proposed by David Fernandez Gonzalez

Changelog

runc (1.1.4-0ubuntu3.1) lunar-security; urgency=medium

  * SECURITY UPDATE: Incorrect access control through /sys/fs/cgroup
    - debian/patches/CVE-2023-25809.patch: apply MS_RDONLY if
      /sys/fs/cgroup is bind-mounted or mask if bind source is unavailable
      in libcontainer/rootfs_linux.go.
    - CVE-2023-25809
  * SECURITY UPDATE: Incorrect access control through /proc and /sys
    - debian/patches/CVE-2023-27561_2023-28642.patch: Prohibit /proc and
      /sys to be symlinks in libcontainer/rootfs_linux.go.
    - CVE-2023-27561
    - CVE-2023-28642

 -- David Fernandez Gonzalez <email address hidden>  Mon, 15 May 2023 13:19:29 +0200

Builds

• amd64
• arm64
• armhf
• ppc64el
• riscv64
• s390x

Built packages

• golang-github-opencontainers-runc-dev Open Container Project - development files

• runc Open Container Project - runtime

• runc-dbgsym debug symbols for runc

Package files

• golang-github-opencontainers-runc-dev_1.1.4-0ubuntu3.1_all.deb (1.1 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_amd64.ddeb (6.3 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_arm64.ddeb (5.9 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_armhf.ddeb (5.7 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_ppc64el.ddeb (6.0 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_riscv64.ddeb (6.0 MiB)
• runc-dbgsym_1.1.4-0ubuntu3.1_s390x.ddeb (6.1 MiB)
• runc_1.1.4-0ubuntu3.1.debian.tar.xz (13.5 KiB)
• runc_1.1.4-0ubuntu3.1.dsc (2.4 KiB)
• runc_1.1.4-0ubuntu3.1_amd64.deb (4.2 MiB)
• runc_1.1.4-0ubuntu3.1_arm64.deb (3.9 MiB)
• runc_1.1.4-0ubuntu3.1_armhf.deb (3.5 MiB)
• runc_1.1.4-0ubuntu3.1_ppc64el.deb (3.8 MiB)
• runc_1.1.4-0ubuntu3.1_riscv64.deb (4.1 MiB)
• runc_1.1.4-0ubuntu3.1_s390x.deb (4.1 MiB)
• runc_1.1.4.orig.tar.xz (1.3 MiB)