-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 28 Jun 2024 00:16:20 +0200
Source: runc
Binary: runc runc-dbgsym
Architecture: mips64el
Version: 1.0.0~rc93+ds1-5+deb11u4
Distribution: bullseye
Urgency: medium
Maintainer: mipsel Build Daemon (mipsel-osuosl-04) <buildd_mips64el-mipsel-osuosl-04@buildd.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Description:
 runc       - Open Container Project - runtime
Changes:
 runc (1.0.0~rc93+ds1-5+deb11u4) bullseye; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * d/patches/0025-Fix-busybox-tarball-url-in-integration-test.patch: Updated.
     - Fixed download URLs again.
   * d/patches/CVE-2021-43784.patch: Added to fix CVE-2021-43784.
     - When writing netlink messages, it is possible to have a byte array larger
       than UINT16_MAX which would result in the length field overflowing and
       allowing user-controlled data to be parsed as control characters (such as
       creating custom mount points, changing which set of namespaces to allow,
       and so on).
   * d/patches/0027-Fix-test-for-newer-kernels.patch: Added.
     - Fix test for newer kernels.
   * d/patches/CVE-2023-25809.patch: Added to fix CVE-2023-25809.
     - It was found that rootless runc makes `/sys/fs/cgroup` writable under
       specific conditions. A container may then gain the write access to
       user-owned cgroup hierarchy `/sys/fs/cgroup/user.slice/...` on the host.
   * Update changelog for 1.0.0~rc93+ds1-5+deb11u4~1.gbpce2b39 release
   * Update patch for download URLs of busybox tarball
   * Add patch to fix CVE-2021-43784.patch
   * Add patch to fix tests with newer kernels
   * Add patch to fix CVE-2023-25809
Checksums-Sha1:
 2730ba03a78ab6936f8ac680215a72bed09181e5 2416572 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb
 0695fa63b820802f70087ee657806598e18814a0 7986 runc_1.0.0~rc93+ds1-5+deb11u4_mips64el-buildd.buildinfo
 13e6674b521792fac1a2811b8713d54526f4ec3e 1925552 runc_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb
Checksums-Sha256:
 e0524f74f1f6e1d22065a78112188b67feb31bf11d3da126b6e85d20c461508e 2416572 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb
 15cf1984b6548a539bb5042ab7c25647a2cbf5b62b39b75447f8d7348d481c2d 7986 runc_1.0.0~rc93+ds1-5+deb11u4_mips64el-buildd.buildinfo
 8dc703ea0f6f7652f58ae8f03e3f92b96828f8bb63add7b94cde6c70c2a786c7 1925552 runc_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb
Files:
 a75b4cbb896bed7830f8dcdc31a201fd 2416572 debug optional runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb
 3fdc196540c13c308d641a98544a9bd9 7986 admin optional runc_1.0.0~rc93+ds1-5+deb11u4_mips64el-buildd.buildinfo
 541e033c6a568a2ed85a59d53aac526b 1925552 admin optional runc_1.0.0~rc93+ds1-5+deb11u4_mips64el.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEEEmZlxOBLdXDBxnwAL00bee7O74EFAmaAgDMACgkQL00bee7O
74EtCg/+I78qbpiKGeBJcdEOOMrFaaod1hbtdiPBPvyyJgknMf+0np5RVW6rrgdg
7QKf6iKIV7l9b8kO2XXgqRdhsAiNJ95Sl1ZRhF2cesqAtSuVuF70yg+OvAcLMBdL
l/GeqraL52B578eQnZbSWXBoQ3KMRdHdAsd4AWcsml/27BRdalk+e3Gc4/25Tcbi
oxGC10fWSEsEcFxF8r3wIj4TB2foizkzpX+AP5fyMqnvmpw+JqhLNrk/GPKlfsQ2
I8TIgIdAsg4GUd8vuYutG14wVIWe8q8iDFHAmJIS22snzgORWHij2kCJI+dEzCVL
n6uWPWaDd2XmdCHATxIVjqKQSqVM1NsHzbdSlw/84YfYbX2FL27MFVLRlTgng5Je
BNIf7oucbtVeF3XGoyk8WwoGjq2hqAbD0vFErf5nQzgdGBGFddaGZzCaZm3sOUlT
1I1y3jTEXwaW0x4PXka+cF8HIhejkabHucQI/Ce8CgE2XRlThgkrUDpNNGJ3fiLd
dfV76BFfgPyp7LPbB242n63jhfbvMLbZVCHHZ+9annysyjCOTcALBk9w9YVPoaFE
wkGosIqXlgtipqslCH2S/FPw4sS3ORRBZsbqUtCC6ikKyJo5uTDxsEdmN/ycwm+K
qqqVw8XSBFpws0cDXlq5YJuikVGMUprQUwMdckkJf15lnmZY+yg=
=c3j0
-----END PGP SIGNATURE-----