github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
c75178d931
containerd/contrib
History
Sebastiaan van Stijn 9037069da8
update to go1.23.1, go1.22.7 
- https://github.com/golang/go/issues?q=milestone%3AGo1.23.1+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.23.0...go1.23.1

These minor releases include 3 security fixes following the security policy:

- go/parser: stack exhaustion in all Parse* functions

    Calling any of the Parse functions on Go source code which contains
    deeply nested literals can cause a panic due to stack exhaustion.

    This is CVE-2024-34155 and Go issue https://go.dev/issue/69138.

- encoding/gob: stack exhaustion in Decoder.Decode

    Calling Decoder.Decode on a message which contains deeply nested
    structures can cause a panic due to stack exhaustion.

    This is a follow-up to CVE-2022-30635.

    Thanks to Md Sakib Anwar of The Ohio State University for reporting
    this issue.

    This is CVE-2024-34156 and Go issue https://go.dev/issue/69139.

- go/build/constraint: stack exhaustion in Parse

    Calling Parse on a "// +build" build tag line with deeply nested
    expressions can cause a panic due to stack exhaustion.

    This is CVE-2024-34158 and Go issue https://go.dev/issue/69141.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.23.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2024-09-06 16:12:28 +02:00
..
ansible Remove static link to images outside of the repository 2024-07-15 07:36:06 -07:00
apparmor Merge pull request #10123 from woky/apparmor-runc 2024-04-24 22:01:12 +00:00
autocomplete Fix zsh autocomplete script 2020-02-11 19:56:27 +08:00
aws Move snapshotters benchmark to a separate package 2019-04-02 14:42:21 -07:00
diffservice Make api a Go sub-module 2024-05-02 11:03:00 -07:00
Dockerfile.test.d contrib/Dockerfile.test: add "integration", "cri-integration", "critest" stages 2023-01-03 20:19:38 +09:00
fuzz update to go1.23.1, go1.22.7 2024-09-06 16:12:28 +02:00
gce Revert "Fix for k8s nfs related tests" 2024-02-10 22:34:30 -05:00
nvidia replace deprecated Prestart to CreateRuntime hook 2024-02-20 21:54:47 +05:30
seccomp Merge pull request #9684 from AkihiroSuda/seccomp-6.7 2024-01-25 19:07:42 +00:00
snapshotservice Make api a Go sub-module 2024-05-02 11:03:00 -07:00
Dockerfile.test update to go1.23.1, go1.22.7 2024-09-06 16:12:28 +02:00
README.md Add readme to contib 2017-09-18 11:47:27 -04:00
v2-migrate.sh Make api a Go sub-module 2024-05-02 11:03:00 -07:00

README.md

contrib

The contrib directory contains packages that do not belong in the core containerd packages but still contribute to overall containerd usability.

Package such as Apparmor or Selinux are placed in contrib because they are platform dependent and often require higher level tools and profiles to work.

Packaging and other built tools can be added to contrib to aid in packaging containerd for various distributions.

Testing

Code in the contrib directory may or may not have been tested in the normal test pipeline for core components.