-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Fri, 28 Jun 2024 00:16:20 +0200
Source: runc
Binary: runc runc-dbgsym
Architecture: s390x
Version: 1.0.0~rc93+ds1-5+deb11u4
Distribution: bullseye
Urgency: medium
Maintainer: s390x Build Daemon (zani) <buildd_s390x-zani@buildd.debian.org>
Changed-By: Daniel Leidert <dleidert@debian.org>
Description:
 runc       - Open Container Project - runtime
Changes:
 runc (1.0.0~rc93+ds1-5+deb11u4) bullseye; urgency=medium
 .
   * Non-maintainer upload by the Debian LTS Team.
   * d/patches/0025-Fix-busybox-tarball-url-in-integration-test.patch: Updated.
     - Fixed download URLs again.
   * d/patches/CVE-2021-43784.patch: Added to fix CVE-2021-43784.
     - When writing netlink messages, it is possible to have a byte array larger
       than UINT16_MAX which would result in the length field overflowing and
       allowing user-controlled data to be parsed as control characters (such as
       creating custom mount points, changing which set of namespaces to allow,
       and so on).
   * d/patches/0027-Fix-test-for-newer-kernels.patch: Added.
     - Fix test for newer kernels.
   * d/patches/CVE-2023-25809.patch: Added to fix CVE-2023-25809.
     - It was found that rootless runc makes `/sys/fs/cgroup` writable under
       specific conditions. A container may then gain the write access to
       user-owned cgroup hierarchy `/sys/fs/cgroup/user.slice/...` on the host.
   * Update changelog for 1.0.0~rc93+ds1-5+deb11u4~1.gbpce2b39 release
   * Update patch for download URLs of busybox tarball
   * Add patch to fix CVE-2021-43784.patch
   * Add patch to fix tests with newer kernels
   * Add patch to fix CVE-2023-25809
Checksums-Sha1:
 04b34945dd7b7241db1278d3826b851be4ccee90 2498040 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_s390x.deb
 9d9235fcdec906b73899b31b3fe5dece02435e7f 8042 runc_1.0.0~rc93+ds1-5+deb11u4_s390x-buildd.buildinfo
 1fe7852c87c18539a73e4b4ccca3ea96f750dc5d 2196792 runc_1.0.0~rc93+ds1-5+deb11u4_s390x.deb
Checksums-Sha256:
 ad4e4c1cd2b875fbd11a6ea8773d1a78333c1ef662cc9cb90ab539cf4419c761 2498040 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_s390x.deb
 84c53a104d58f5460497bfaaf27decc1f6846216c14b9dc6839a1079dc590116 8042 runc_1.0.0~rc93+ds1-5+deb11u4_s390x-buildd.buildinfo
 76c5b60c068031d34f326f52f0c817acbd5a4b85a99a8a80f78c5e1431d45442 2196792 runc_1.0.0~rc93+ds1-5+deb11u4_s390x.deb
Files:
 1b373396f2103a590dc4e0362be00f11 2498040 debug optional runc-dbgsym_1.0.0~rc93+ds1-5+deb11u4_s390x.deb
 c1005f49220714a692241fa7efc06978 8042 admin optional runc_1.0.0~rc93+ds1-5+deb11u4_s390x-buildd.buildinfo
 cdccc61b9591382de2ead1df19aa4e8f 2196792 admin optional runc_1.0.0~rc93+ds1-5+deb11u4_s390x.deb

-----BEGIN PGP SIGNATURE-----

iQIzBAEBCgAdFiEETdQgQHyJW2hcXsTC6b+AMjGgQHgFAmaAmGsACgkQ6b+AMjGg
QHhiNw/9HuSkvj4mI2MLxGJEld2ydDgiXZPR2jTP9BAe0zb7IkxgZYPQJAXMua7X
L93kN+yMABZGRFqcWpappWRzHuUi0mmTVWYg9g+Osv7QQy/Auv17kOW4n7R9UONC
9LMh/2edUkYIE/pRkasyNsaLRUhEIoxs6gEzc7IzRyb6LKGmMrcKEsSidPqi+iyw
H+iMNuc8S0vbH5CUaUt2sLJ68+Hgv7wC7OEkjrf7IqpFPk4/XWatx8Ok8j3jGGSL
2sizTXg6k3NWXf1XdE5a2br6o93PkHuNKeBgpFESA4y0uPxPYBmVeTGpnw+uChF3
JdYOswRGgkofdG2L7zlUHm+B9nD1nkK+rgs0PDVadABd+ps0cGqdCeEweaIhQ79y
M86yPVPfcMm3oL7iJnHKSkBzCPZ48AvOI0sRNZkwyjPtC7JK1ggt9NCY/r+6nqWu
gf4rC7zzh+Jn14slhRW6i69fY0Ize9PvOq00M1UHgIsHNnxmm7W+x4OCYhRnCYWo
N2qtwB2r6qT/j6F8y5Vdz+36pUhUVcXPtOlKKJ0TajqHYiqR7c+eN7g74NAhE5vE
qBNI34HchRSAkdvNWlCan83oXDqwawqj+PaW3g4ezi7Z2wOnKJjY8anR/WqekNwg
FqWI+WRQmdvpnnydKbypqa5VMZrjesVVqIBoSK7ZZjZSodnXC74=
=F4cK
-----END PGP SIGNATURE-----