Fedora 36: Critical CVE Fix for golang-github-appc-docker2aci Issue

Docker2aci is a small library and CLI binary that converts Docker images to ACI.

It takes as input either a file generated by "docker save" or a Docker registry

URL. It gets all the layers of a Docker image and squashes them into an ACI

image. Optionally, it can generate one ACI for each layer, setting the correct

dependencies.

Rebuild for CVE-2022-27191 ---- Fix FTBFS Close: rhbz#2045471

* Sat Apr 16 2022 Fabio Alessandro Locati - 0.17.2-8

- Rebuilt for CVE-2022-27191

[ 1 ] Bug #2045471 - golang-github-appc-goaci: FTBFS in Fedora rawhide/f36

https://bugzilla.redhat.com/show_bug.cgi?id=2045471

[ 2 ] Bug #2074262 - CVE-2022-27191 golang-x-crypto: golang: crash in a golang.org/x/crypto/ssh server [fedora-all]

https://bugzilla.redhat.com/show_bug.cgi?id=2074262

su -c 'dnf upgrade --advisory FEDORA-2022-08ae2dd481' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure