[FFe] Import version 1.0-rc93
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| runc (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Bug Description
This new upstream release contains an important fix to address LP #1916485. runc now has special handling for seccomp profiles to avoid making new syscalls unusable for glibc. Backporting this single fix would be painful because upstream also updated some of the vendorized deps in the same git commit:
https:/
To stay on the safe side and also bring in some improvements made by upstream, we decided the best way to fix this issue is importing this new release. Below you can fine the upstream release notes:
https:/
And here the diff between version 1.0-rc92 which we already have in Hirsute and this new version:
https:/
I already have this package (almost) ready in this PPA:
https:/
And I can confirm it is working well along with containerd and docker.io in Hirsute. All the DEP-8 tests are passing and also my manual smoke tests, for instance basic features like pulling images from remote registries and running them locally, binding containers to some host port, and building your own image locally.
| Iain Lane (laney) wrote | #1 |
| Changed in runc (Ubuntu): | |
| status: | New → Confirmed |
| importance: | Undecided → Medium |
| Launchpad Janitor (janitor) wrote | #2 |
| Changed in runc (Ubuntu): | |
| status: | Confirmed → Fix Released |
Sounds good, thanks for confirming about the testing you've done. That's what I like to see.
Please go ahead.