[SRU] Update and backport google-guest-agent to 20230426.00
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
google-guest-agent (Ubuntu) |
Fix Released
|
Undecided
|
Utkarsh Gupta | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned | ||
Focal |
Fix Released
|
Undecided
|
Unassigned | ||
Jammy |
Fix Released
|
Undecided
|
Unassigned | ||
Kinetic |
Fix Released
|
Undecided
|
Unassigned | ||
Lunar |
Won't Fix
|
Undecided
|
Unassigned |
Bug Description
[SRU]
=====
[Impact]
This package is provided by Google for installation within guests that run on Google Compute Engine. It is part of a collection of tools and daemons, that ensure that the Ubuntu images published to GCE run properly on their platform.
Cloud platforms evolve at a rate that can't be handled in six-month increments, and they will often develop features that they would like to be available to customers who don't want to upgrade from earlier Ubuntu releases. As such, updating this package to more recent upstream releases is required within all Ubuntu releases, so they continue to function properly in their environment.
In addition, this fixes CVE-2022-41723 (affecting google-guest-agent because golang.org/x/net is vendored in the package).
[Test Case]
When a new version of this package is uploaded to -proposed, the following will be done:
* an image based on -proposed will be built for GCE and published to the ubuntu-
* the GCE team will be asked to validate that the new package addresses the issues it is expected to address, and that the image passes their internal image validation.
* Each test image will be launched, and we will validate:
** the package version(s)
** that the correct ssh keys have been imported
** that the google specific services are running successfully
If all the testing indicates that the image containing the new package is acceptable, verification will be considered to be done.
[Other Information]
This bug is used for tracking of releasing the new upstream version for all supported series, as per the approved policy mentioned in the following MRE:
https:/
The updated package is not built for riscv64 on Focal, but it is not used on riscv64 either, thus please release the SRU without the risc64 binaries.
The package does not build for powerpc on Xenial, but this is OK since it is not used on powerpc either.
Also, since this bumps some of the vendored dependencies, here's a diff of the version bump: https:/
CVE References
description: | updated |
Changed in google-guest-agent (Ubuntu): | |
assignee: | nobody → Utkarsh Gupta (utkarsh) |
Hello Utkarsh, or anyone else affected,
Accepted google-guest-agent into lunar-proposed. The package will build now and be available at https:/ /launchpad. net/ubuntu/ +source/ google- guest-agent/ 20230426. 00-0ubuntu1~ 23.04.0 in a few hours, and then in the -proposed repository.
Please help us by testing this new package. See https:/ /wiki.ubuntu. com/Testing/ EnableProposed for documentation on how to enable and use -proposed. Your feedback will aid us getting this update out to other Ubuntu users.
If this package fixes the bug for you, please add a comment to this bug, mentioning the version of the package you tested, what testing has been performed on the package and change the tag from verification- needed- lunar to verification- done-lunar. If it does not fix the bug for you, please add a comment stating that, and change the tag to verification- failed- lunar. In either case, without details of your testing we will not be able to proceed.
Further information regarding the verification process can be found at https:/ /wiki.ubuntu. com/QATeam/ PerformingSRUVe rification . Thank you in advance for helping!
N.B. The updated package will be released to -updates after the bug(s) fixed by this package have been verified and the package has been in -proposed for a minimum of 7 days.