Backport the container stack in Impish
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
containerd (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Focal |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Hirsute |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
docker.io (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Focal |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Hirsute |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
golang-github-containers-buildah (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Invalid
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
golang-github-containers-common (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Invalid
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
golang-github-containers-image (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Invalid
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
golang-github-containers-storage (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Invalid
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
golang-github-ishidawataru-sctp (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Invalid
|
Undecided
|
Unassigned | ||
Hirsute |
Invalid
|
Undecided
|
Unassigned | ||
opengcs (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Hirsute |
Fix Released
|
Undecided
|
Unassigned | ||
runc (Ubuntu) |
Invalid
|
Undecided
|
Unassigned | ||
Bionic |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Focal |
Fix Released
|
Undecided
|
Lucas Kanashiro | ||
Hirsute |
Fix Released
|
Undecided
|
Lucas Kanashiro |
Bug Description
[Impact]
In order to follow our policy on keeping the container stack (docker.io, containerd, and runc) up-to-date in our supported releases, let's backport the stack in Impish to Hirsute, Focal, and Bionic.
It is also important because the new releases contain some CVE fixes.
The backport of the stack will also fix the following bug:
https:/
Which is an issue when people are running containers with ubuntu:impish image.
[Test Plan]
Per https:/
[Where problems could occur]
As usual, we deliver most benefit to our users by delivering an upstream experience. A risk of regressions is part of that.
[Other Info]
In order to backport docker.
1) Add golang-
2) Roll back the changes introduced in docker.
Due to the considerations made above I'd prefer to pick 1).
CVE References
Changed in containerd (Ubuntu): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in containerd (Ubuntu Bionic): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in containerd (Ubuntu Focal): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in containerd (Ubuntu Hirsute): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in docker.io (Ubuntu): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in docker.io (Ubuntu Bionic): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in docker.io (Ubuntu Focal): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in docker.io (Ubuntu Hirsute): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in runc (Ubuntu Bionic): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in runc (Ubuntu Focal): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in runc (Ubuntu Hirsute): | |
assignee: | nobody → Lucas Kanashiro (lucaskanashiro) |
Changed in docker.io (Ubuntu): | |
assignee: | Lucas Kanashiro (lucaskanashiro) → nobody |
Changed in containerd (Ubuntu): | |
assignee: | Lucas Kanashiro (lucaskanashiro) → nobody |
status: | New → Invalid |
Changed in docker.io (Ubuntu): | |
status: | New → Invalid |
Changed in runc (Ubuntu): | |
status: | New → Invalid |
description: | updated |
Changed in golang-github-containers-buildah (Ubuntu): | |
status: | New → Invalid |
Changed in golang-github-containers-buildah (Ubuntu Bionic): | |
status: | New → Invalid |
Changed in golang-github-containers-buildah (Ubuntu Focal): | |
status: | New → Invalid |
Changed in golang-github-containers-buildah (Ubuntu Hirsute): | |
status: | New → Triaged |
Changed in golang-github-containers-image (Ubuntu Hirsute): | |
status: | Triaged → Fix Committed |
Changed in golang-github-containers-buildah (Ubuntu Hirsute): | |
status: | Triaged → Fix Committed |
Changed in golang-github-containers-storage (Ubuntu Hirsute): | |
status: | Triaged → Fix Committed |
Changed in golang-github-containers-common (Ubuntu Hirsute): | |
status: | Triaged → Fix Committed |
Changed in opengcs (Ubuntu Hirsute): | |
status: | Triaged → Fix Committed |
Changed in golang-github-containers-storage (Ubuntu Focal): | |
status: | Triaged → Fix Committed |
Changed in opengcs (Ubuntu Focal): | |
status: | Triaged → Fix Committed |
Changed in runc (Ubuntu Bionic): | |
status: | New → Fix Committed |
Changed in containerd (Ubuntu Bionic): | |
status: | New → Fix Committed |
This bug was fixed in the package docker.io - 20.10.7- 0ubuntu1~ 20.04.1
--------------- 7-0ubuntu1~ 20.04.1) focal-security; urgency=medium
docker.io (20.10.
* Backport version 20.10.7-0ubuntu1 from Impish (LP: #1938908).
-- Lucas Kanashiro <email address hidden> Wed, 04 Aug 2021 16:07:47 -0300