Import Debian changes 1.4.12-0ubuntu0~18.04.1~anthos1.3
containerd (1.4.12-0ubuntu0~18.04.1~anthos1.3) bionic; urgency=medium
* d/p/CVE-2022-24769.patch: Drop Process.Capabilities.Inheritable
from the TestAddCaps and TestDropCaps as done in upstream commits
to get the tests working again.
containerd (1.4.12-0ubuntu0~18.04.1~anthos1.2) bionic; urgency=medium
* Add patch to fix the Inheritable capability defaults.
(Fixes: CVE-2022-24769)
[taken from the COS team. Thank you!]
containerd (1.4.12-0ubuntu0~18.04.1~anthos1.1) bionic; urgency=medium
* SECURITY UPDATE: Insecure handling of image volumes
- debian/patches/Use-fs.RootPath-when-mounting-volumes-1.4.patch: Use
fs.RootPath when mounting volumes.
- CVE-2022-23648
containerd (1.4.12-0ubuntu0~18.04.1~anthos1) bionic; urgency=medium
* New upstream version 1.4.12.
containerd (1.4.11-0ubuntu0~18.04.1~anthos1) bionic; urgency=medium
* New upstream release. Build for Anthos 1.8.
- d/p/1.4-reduce-directory-permissions.patch: removed. It was
applied by upstream.
containerd (1.4.8-0ubuntu0~18.04.1~anthos1.1) bionic; urgency=medium
* SECURITY UPDATE: insufficiently restricted directory permissions
- debian/patches/1.4-reduce-directory-permissions.patch: reduce
permissions for bundle dir in runtime/v1/linux/bundle.go,
runtime/v1/linux/bundle_test.go, runtime/v2/bundle.go,
runtime/v2/bundle_default.go, runtime/v2/bundle_linux.go,
runtime/v2/bundle_linux_test.go, runtime/v2/bundle_test.go,
snapshots/btrfs/btrfs.go.
- CVE-2021-41103
containerd (1.4.8-0ubuntu0~18.04.1~anthos1) bionic; urgency=medium
* New upstream release. Build for Anthos 1.8.
containerd (1.4.3-0ubuntu0~18.04.1) bionic; urgency=medium
* New upstream release. Build for GKE.
- d/p/CVE-2020-15257.patch: removed. It was applied by upstream.
containerd (1.4.1-0ubuntu0~18.04.2) bionic; urgency=medium
* SECURITY UPDATE: Elevation of privilege vulnerability
- debian/patches/CVE-2020-15257.patch: Use path based unix socket for shims
and use path-based unix socket for containerd-shim.
- CVE-2020-15257
containerd (1.4.1-0ubuntu0~18.04.1) bionic; urgency=medium
* New upstream release. Build for GKE.
containerd (1.4.0-0ubuntu0~18.04.1) bionic; urgency=medium
* New upstream release. Build for GKE.
- Remove patches already applied by upstream:
+ debian/patches/0005-Update-containerd-systemd-unit-file.patch
+ debian/patches/4134-update-etcd-bbolt.patch
+ debian/patches/4277-fix-build-on-riscv64.patch
+ debian/patches/e859b8a-gc-increase-sleep-time-in-test.patch
containerd (1.3.7-0ubuntu3~18.04.1) bionic; urgency=medium
* Backport version from Groovy to Bionic.
- d/p/0005-Update-containerd-systemd-unit-file.patch: also backport
upstream patch to update containerd systemd unit file to synchronize with
CRI's version.
- d/control: do not b-d on libbtrfs-dev, it is not available in Bionic.
containerd (1.3.7-0ubuntu3) groovy; urgency=medium
* Build with Go 1.14 on riscv64 as 1.13 does not exist here. Adventurous
riscv64 users can deal with any breakage :)
containerd (1.3.7-0ubuntu2) groovy; urgency=medium
[ Tianon Gravi ]
* Build using Go 1.13 (per upstream)
* Use dh-golang to generate appropriate Built-Using
containerd (1.3.7-0ubuntu1) groovy; urgency=medium
* New upstream release.
containerd (1.3.6-0ubuntu1) groovy; urgency=medium
* New upstream release.
* d/rules: remove vendor directory from the library package
containerd (1.3.4-0ubuntu6) groovy; urgency=medium
* d/control: remove the golang-race-detector-runtime build dependency as the
package is no longer built from source with latest golang.
containerd (1.3.4-0ubuntu5) groovy; urgency=medium
* Rename install file to match the new binary package name
containerd (1.3.4-0ubuntu4) groovy; urgency=medium
* d/control: rename binary package with dev files and update
XS-Go-Import-Path. Now it is called
golang-github-containerd-containerd-dev instead of
golang-github-docker-containerd-dev.
containerd (1.3.4-0ubuntu3) groovy; urgency=medium
* Add a patch to fix the gc/scheduler flaky test on riscv64
containerd (1.3.4-0ubuntu2) groovy; urgency=medium
* Add a patch to not use -buildmode=pie on riscv64
* d/rules: check for DEB_BUILD_ARCH to set variables to build on riscv64
containerd (1.3.4-0ubuntu1) groovy; urgency=medium
* New upstream release.
* d/p/0001-Improve-host-fallback-behaviour-in-docker-remote.patch: drop
patch applied by upstream.
* debian/control: update Vcs-{Git,Broswer} to point to the Github repository.
* d/p/update_go.etcd.io_bbolt_to_v1.3.4.patch: update go.etcd.io/bbolt to
version 1.3.4 to fix a FTBFS against Go 1.14.
* d/rules: disable btrfs plugin on riscv64, it needs cgo and riscv64 doesn't
support.
containerd (1.3.3-0ubuntu2) focal; urgency=high
* d/p/0001-Improve-host-fallback-behaviour-in-docker-remote.patch:
Fixes regression introduced in 1.3.3 update, LP: #1867398.
containerd (1.3.3-0ubuntu1) focal; urgency=medium
* New upstream version.
containerd (1.3.2-0ubuntu1) focal; urgency=medium
[ Tianon Gravi ]
* Use "sed" to adjust upstream's service file ExecStart value
* Update to 1.3.2 upstream release
[ Michael Hudson-Doyle ]
* d/patches/preserve-debug-info.patch: generate binaries with debug info in
them so we still get ddebs.
containerd (1.3.1-0ubuntu1) focal; urgency=medium
* Update to 1.3.1 upstream release (LP: #1854841)
containerd (1.2.10-0ubuntu1) eoan; urgency=medium
* New upstream release.
containerd (1.2.9-0ubuntu1) eoan; urgency=medium
* New upstream release.
* Set GOCACHE to a safely-writeable directory during build.
containerd (1.2.6-0ubuntu1) disco; urgency=medium
* New upstream release.
containerd (1.2.5-0ubuntu1) disco; urgency=medium
* New upstream release.
containerd (1.2.2-0ubuntu3) disco; urgency=medium
* Add available docs to containerd package
* Add "basic-smoke" autopkgtest to verify basic functionality
* Skip tests on armhf (for now)
containerd (1.2.2-0ubuntu2) disco; urgency=medium
* Update "golang-race-detector-runtime" Build-Depends to be amd64-only
containerd (1.2.2-0ubuntu1) disco; urgency=medium
* Update to 1.2.2 upstream release
containerd (0.2.5-0ubuntu2) artful; urgency=medium
* No change rebuild to fix miscompilation on ppc64el. (LP: #1711935)
containerd (0.2.5-0ubuntu1) zesty; urgency=medium
* Update to 0.2.5 upstream release (LP: #1655906)
containerd (0.2.3-0ubuntu1) yakkety; urgency=medium
* Update to 0.2.3 upstream release
- remove "fix-arm64.patch"; applied upstream,
https://github.com/docker/containerd/pull/226
- update runc dependency (>= 1.0.0-rc1)
containerd (0.2.1-0ubuntu4) yakkety; urgency=medium
* Add d/patches/fix-arm64.patch, a backport of upstream arm64 fixes.
containerd (0.2.1-0ubuntu3) yakkety; urgency=medium
* Fix "-dev" package Depends, and use vendoring more directly
containerd (0.2.1-0ubuntu2) yakkety; urgency=medium
* No change rebuild to pick up s390x fixes.
containerd (0.2.1-0ubuntu1) yakkety; urgency=medium
* Use bundled dependencies for Ubuntu
containerd (0.2.1~ds1-1) unstable; urgency=medium
* Team upload.
[ Tianon Gravi ]
* Update to 0.2.1 upstream release
[ Tim Potter ]
* Add "golang-github-docker-containerd-dev" package (Closes: #822213)
containerd (0.1.0~ds1-1) unstable; urgency=medium
* Initial release (Closes: #819520)
