Fedora 36 2023-1bcbb1db39 Critical: runc Race Condition Fix

The runc command can be used to start containers which are packaged

in accordance with the Open Container Initiative's specifications,

and to manage containers running under runc.

Security fix for CVE-2023-27561

* Wed Apr 12 2023 Lokesh Mandvekar - 2:1.1.6-1

- Resolves: #2175994, #2182701

* Tue Apr 11 2023 Lokesh Mandvekar - 2:1.1.5-2

- switch to autospec, remove unnecessary conditionals

* Thu Apr 6 2023 Sonia Xu - 2:1.1.5-1

- Update to 1.1.5

* Mon Mar 6 2023 Lokesh Mandvekar - 2:1.1.4-5

- migrated to SPDX license

* Fri Jan 20 2023 Fedora Release Engineering - 2:1.1.4-4

- Rebuilt for https://fedoraproject.org/wiki/Fedora_38_Mass_Rebuild

* Fri Oct 28 2022 Troy Dawson - 2:1.1.4-3

- Update ExclusiveArch

* Sun Oct 16 2022 Maxwell G - 2:1.1.4-2

- Update bundled(golang(...)) Provides

[ 1 ] Bug #2175721 - CVE-2023-27561 runc: volume mount race condition (regression of CVE-2019-19921)

https://bugzilla.redhat.com/show_bug.cgi?id=2175721

su -c 'dnf upgrade --advisory FEDORA-2023-1bcbb1db39' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/

Do not reply to spam, report it: