Ubuntu
docker-registry package

Sync docker-registry 2.8.2+ds1-1 (universe) from Debian unstable (main)

Bug #2019532 reported by Shengjing Zhu
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
docker-registry (Ubuntu)
Fix Released
Undecided
Unassigned

Bug Description

Please sync docker-registry 2.8.2+ds1-1 (universe) from Debian unstable (main)

2.8.1+ds1-2ubuntu1 is no change rebuild. There is no delta with Debian.

Changelog entries since current mantic version 2.8.1+ds1-2ubuntu1:

docker-registry (2.8.2+ds1-1) unstable; urgency=medium

  * Team upload
  * New upstream version 2.8.2+ds1
    + CVE-2023-2253: Catalog API endpoint can lead to OOM via malicious user
      input (Closes: #1035956)
  * Drop patch merged by upstream
    + 0009-Fix-panic-in-inmemory-driver.patch

 -- Shengjing Zhu <email address hidden> Sat, 13 May 2023 23:21:12 +0800

CVE References

Revision history for this message
Benjamin Drung (bdrung) wrote :

This bug was fixed in the package docker-registry - 2.8.2+ds1-1
Sponsored for Shengjing Zhu (zhsj)

---------------
docker-registry (2.8.2+ds1-1) unstable; urgency=medium

  * Team upload
  * New upstream version 2.8.2+ds1
    + CVE-2023-2253: Catalog API endpoint can lead to OOM via malicious user
      input (Closes: #1035956)
  * Drop patch merged by upstream
    + 0009-Fix-panic-in-inmemory-driver.patch

 -- Shengjing Zhu <email address hidden> Sat, 13 May 2023 23:21:12 +0800

Changed in docker-registry (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.