UbuntuUpdates.org

Package "runc"

Name: runc

Description:

Open Container Project - runtime

Latest version: 1.0.0~rc95-0ubuntu1~18.04.1
Release: bionic (18.04)
Level: updates
Repository: universe
Homepage: https://github.com/opencontainers/runc

Links


Download "runc"


Other versions of "runc" in Bionic

Repository Area Version
base universe 1.0.0~rc4+dfsg1-6
security universe 1.0.0~rc93-0ubuntu1~18.04.2

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 1.0.0~rc95-0ubuntu1~18.04.1 2021-06-16 05:06:23 UTC

  runc (1.0.0~rc95-0ubuntu1~18.04.1) bionic; urgency=medium

  * New upstream release.
    - Several regressions were found in 1.0.0-rc93 by upstream and fixed in
      this new release.
      + Ensure the scratch pipe is read during ExportBPF (LP: #1927219).
    - Drop patches applied by upstream:
      + d/patches/CVE-2021-30465/*.patch
      + d/patches/fix-patchpbf-test-on-32-bit.patch
  * d/rules: set VERSION variable when building runc (LP: #1929106).

 -- Lucas Kanashiro <email address hidden> Thu, 20 May 2021 11:11:34 -0300

Source diff to previous version
1927219 context deadline exceeded: unknown in containerd with latest runc version
1929106 runc -v empty output
CVE-2021-30465 runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to crea

Version: 1.0.0~rc93-0ubuntu1~18.04.2 2021-05-19 13:06:20 UTC

  runc (1.0.0~rc93-0ubuntu1~18.04.2) bionic-security; urgency=medium

  * SECURITY UPDATE: symlink exchange attack
    - debian/patches/CVE-2021-30465/*.patch: upstream patches to add mount
      destination validation.
    - CVE-2021-30465

 -- Eduardo Barretto <email address hidden> Thu, 13 May 2021 18:11:36 +0200

Source diff to previous version

Version: 1.0.0~rc93-0ubuntu1~18.04.1 2021-04-19 16:07:46 UTC

  runc (1.0.0~rc93-0ubuntu1~18.04.1) bionic; urgency=medium

  * Backport version 1.0.0~rc93-0ubuntu1 from Hirsute (LP: #1919322,
    LP: #1916485).
    - Use Go 1.13 to build it, with the default Go 1.10 it FTBFS.
      + d/control: b-d on golang-1.13-go instead of golang-any,
      + d/rules: add Go 1.13 to the $PATH.
    - d/rules: set GOCACHE to a temporary directory. dh-golang sets it to
      "off" which is not accepted by Go >= 1.12.
    - d/rules: set GO111MODULE to "off" to avoid getting modules info online.

 -- Lucas Kanashiro <email address hidden> Tue, 16 Mar 2021 15:47:19 -0300

Source diff to previous version

Version: 1.0.0~rc10-0ubuntu1~18.04.2 2020-03-09 15:06:19 UTC

  runc (1.0.0~rc10-0ubuntu1~18.04.2) bionic-security; urgency=medium

  * No change rebuild in the -security pocket.

 -- Marc Deslauriers <email address hidden> Mon, 09 Mar 2020 07:58:37 -0400

Source diff to previous version

Version: 1.0.0~rc10-0ubuntu1~18.04.1 2020-03-09 11:07:01 UTC

  runc (1.0.0~rc10-0ubuntu1~18.04.1) bionic; urgency=medium

  * Backport to bionic. (LP: #1863669, CVE-2019-19921)

 -- Michael Hudson-Doyle <email address hidden> Wed, 19 Feb 2020 14:04:03 +1300

1863669 update to docker 19.03.6 and runc 1.0.0-rc10
CVE-2019-19921 runc through 1.0.0-rc9 has Incorrect Access Control leading to Escalation of Privileges, related to libcontainer/rootfs_linux.go. To exploit this, an



About   -   Send Feedback to @ubuntu_updates