GNU bug report logs

#73001 [PATCH] gnu: runc: Update to 1.1.14 [security fixes].

PackageSource(s)Maintainer(s)
guix-patches PTS Buildd Popcon
Reply or subscribe to this bug. View this bug as an mbox, status mbox, or maintainer mbox

Report forwarded to guix-patches@gnu.org:
bug#73001; Package guix-patches. (Tue, 03 Sep 2024 11:34:01 GMT) (full text, mbox, link).

Acknowledgement sent to ashish.is@lostca.se:
New bug report received and forwarded. Copy sent to guix-patches@gnu.org. (Tue, 03 Sep 2024 11:34:01 GMT) (full text, mbox, link).

Message #5 received at submit@debbugs.gnu.org (full text, mbox, reply):

From: ashish.is@lostca.se
To: guix-patches@gnu.org
Cc: Ashish SHUKLA <ashish.is@lostca.se>
Subject: [PATCH] gnu: runc: Update to 1.1.14 [security fixes].
Date: Tue, 3 Sep 2024 10:30:34 +0000
From: Ashish SHUKLA <ashish.is@lostca.se>

Fixes CVE-2024-45310.

* gnu/packages/virtualization.scm (runc): Update to 1.1.14.

Change-Id: Ifa1d296cb447124e51d0741fd030535356529847
---
 gnu/packages/virtualization.scm | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/gnu/packages/virtualization.scm b/gnu/packages/virtualization.scm
index 398b332dd6..417bd02567 100644
--- a/gnu/packages/virtualization.scm
+++ b/gnu/packages/virtualization.scm
@@ -35,6 +35,7 @@
 ;;; Copyright © 2024 Janneke Nieuwenhuizen <janneke@gnu.org>
 ;;; Copyright © 2024 Raven Hallsby <karl@hallsby.com>
 ;;; Copyright © 2024 jgart <jgart@dismail.de>
+;;; Copyright © 2024 Ashish SHUKLA <ashish.is@lostca.se>
 ;;;
 ;;; This file is part of GNU Guix.
 ;;;
@@ -2218,7 +2219,7 @@ (define-public looking-glass-client
 (define-public runc
   (package
     (name "runc")
-    (version "1.1.12")
+    (version "1.1.14")
     (source (origin
               (method url-fetch)
               (uri (string-append
@@ -2227,7 +2228,7 @@ (define-public runc
               (file-name (string-append name "-" version ".tar.xz"))
               (sha256
                (base32
-                "1mx4iik1gx1am3d2s4ljhrirwjzf4ikn8frba5hdhy74012y7na7"))))
+                "1nypczyb3fp3cnfdg13grxjhg9361i44zialsdkxcfxb0c9g79jf"))))
     (build-system go-build-system)
     (arguments
      '(#:import-path "github.com/opencontainers/runc"

base-commit: 1569b861f504178263b73b4b48563bf3937d01bf
-- 
2.46.0

Reply sent to Sharlatan Hellseher <sharlatanus@gmail.com>:
You have taken responsibility. (Wed, 04 Sep 2024 10:06:02 GMT) (full text, mbox, link).

Notification sent to ashish.is@lostca.se:
bug acknowledged by developer. (Wed, 04 Sep 2024 10:06:02 GMT) (full text, mbox, link).

Message #10 received at 73001-done@debbugs.gnu.org (full text, mbox, reply):

From: Sharlatan Hellseher <sharlatanus@gmail.com>
To: 73001-done@debbugs.gnu.org
Subject: [PATCH] gnu: runc: Update to 1.1.14 [security fixes].
Date: Wed, 04 Sep 2024 11:03:33 +0100
[Message part 1 (text/plain, inline)]
Hi,

Thanks for the patch.

Pushed as f16e6b3c1e325b28268c843d7864af724195745f to master. 

--
Oleg

[signature.asc (application/pgp-signature, inline)]

bug archived. Request was from Debbugs Internal Request <help-debbugs@gnu.org> to internal_control@debbugs.gnu.org. (Wed, 02 Oct 2024 11:24:06 GMT) (full text, mbox, link).

Send a report that this bug log contains spam.

debbugs.gnu.org maintainers <help-debbugs@gnu.org>. Last modified: Mon Nov 4 22:22:24 2024; Machine Name: wallace-server

GNU bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.