-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Format: 1.8 Date: Fri, 28 Jun 2024 00:56:20 +0200 Source: runc Binary: runc runc-dbgsym Architecture: i386 Version: 1.0.0~rc93+ds1-5+deb11u5 Distribution: bullseye Urgency: medium Maintainer: all / amd64 / i386 Build Daemon (x86-conova-01) Changed-By: Daniel Leidert Description: runc - Open Container Project - runtime Changes: runc (1.0.0~rc93+ds1-5+deb11u5) bullseye; urgency=medium . * Non-maintainer upload by the Debian LTS Team. * d/changelog: Cleaned up the last entry for 1.0.0~rc93+ds1-5+deb11u4 removing some superflous entries. * d/patches/CVE-2023-27561-and-CVE-2023-28642: Added to fix CVE-2023-27561 and CVE-2023-27561. - It was found that the fix for CVE-2021-30465 introduced a regression in regards to CVE-2019-19921 which results in an incorrect access control leading to privilege escalation and bypassing apparmor. Checksums-Sha1: fb4124c6090b1cdc05e1df16f6611897e306973c 2463348 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_i386.deb f2b32c5d1bf30daefd10eacee09163d8265191ea 8050 runc_1.0.0~rc93+ds1-5+deb11u5_i386-buildd.buildinfo fc46f4fe68bdf142013ad204c805c0c42f84e226 2278868 runc_1.0.0~rc93+ds1-5+deb11u5_i386.deb Checksums-Sha256: 4e06a3bf582ac30641e1c750b4bbe7c2a43d4b921a354d228781edd3ffe0c498 2463348 runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_i386.deb 6218bcf39ac985a119f21711d0d8870460ac2cc50451099b857ffb65b9b09e84 8050 runc_1.0.0~rc93+ds1-5+deb11u5_i386-buildd.buildinfo 5f4f49dadf9c3d0a1a7f7ea397837944928a45896645bff9450c4784d76ef848 2278868 runc_1.0.0~rc93+ds1-5+deb11u5_i386.deb Files: c491c75609b665c7b259ee575b2f2bb8 2463348 debug optional runc-dbgsym_1.0.0~rc93+ds1-5+deb11u5_i386.deb bc9a44aac73a81f14e1ce3fd15e0fa55 8050 admin optional runc_1.0.0~rc93+ds1-5+deb11u5_i386-buildd.buildinfo 888b4a951403286a2589a3eea3921039 2278868 admin optional runc_1.0.0~rc93+ds1-5+deb11u5_i386.deb -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEEgdRoRGwEM09wlaMzOni7ZmUpKEcFAma4n/MACgkQOni7ZmUp KEfARg/9HNfXENNy50Gh1ON6XlpE2svf5KfMIkQxsJ9ZPqjQkc0Dh1XZiemmZRMc cPKibLBCrS18ULrRDUFxJ3zirYWMHXU1fYVukcpcA5i2K2paDoOPexjCeR0OikcK bk2TWqH8/1ulMeItv6vAPkb6DlnX74FA0k3shR4cC8jNvJB8x9vTiXps6Dey5md5 ikxTZJfLAvQlhfohg0EfMGYZpWwOgdu6am8xGyddMAQoxpQ4HMD/OHzbj+PWkNVt fga5E2SiLe6huRx0VyTz88S5h0GiW/Gof+zl3i9A//LwFTNdFkzL0NkCWDZ4D1+U pbGWN++gDS3/XCL7V0cisTzY9xhs18M/SLAUyUaKJmZej4fKoz5c1x/A0Qfdh+vF +/VLj6rSlHBT9k3hLxhIWK93ftMz7p4e+0qxM6sGIxKqWzRvIvNXFvkqYHoZcgU+ HhyziWA64bJekbu2aPnCp+0CqUxHr6gRVB3TAMqOlDpjPL1aV/CEtJyVYKPHViQB Xhvt6JoqZmHJ3wUkmVHbjYj7fBvKbnmgUlPbzIwjEWf13oIYMwDpGQhl9RCJb1hc vSK5xB53xufNE2ElRf48KMAAU6FtPGzwPUXnR64jbai3wIhbw0cs50hsjLebP/9G xqQd93EqroXbn81TGJZxVopxnRrZBdBS9LvoFRyTbrLjrMqouUg= =Z9RH -----END PGP SIGNATURE-----