github/containerd
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity
ff67a67d72
containerd/script/setup
History
Sebastiaan van Stijn 9037069da8
update to go1.23.1, go1.22.7 
- https://github.com/golang/go/issues?q=milestone%3AGo1.23.1+label%3ACherryPickApproved
- full diff: https://github.com/golang/go/compare/go1.23.0...go1.23.1

These minor releases include 3 security fixes following the security policy:

- go/parser: stack exhaustion in all Parse* functions

    Calling any of the Parse functions on Go source code which contains
    deeply nested literals can cause a panic due to stack exhaustion.

    This is CVE-2024-34155 and Go issue https://go.dev/issue/69138.

- encoding/gob: stack exhaustion in Decoder.Decode

    Calling Decoder.Decode on a message which contains deeply nested
    structures can cause a panic due to stack exhaustion.

    This is a follow-up to CVE-2022-30635.

    Thanks to Md Sakib Anwar of The Ohio State University for reporting
    this issue.

    This is CVE-2024-34156 and Go issue https://go.dev/issue/69139.

- go/build/constraint: stack exhaustion in Parse

    Calling Parse on a "// +build" build tag line with deeply nested
    expressions can cause a panic due to stack exhaustion.

    This is CVE-2024-34158 and Go issue https://go.dev/issue/69141.

View the release notes for more information:
https://go.dev/doc/devel/release#go1.23.1

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
2024-09-06 16:12:28 +02:00
..
config-containerd script/setup/config-containerd: Use slow_chown 2024-07-10 17:26:31 +02:00
config-selinux scripts: add missing quotes, and minor linting issues 2021-08-03 17:23:18 +02:00
critools-version Update cri-tools to v1.30.1 2024-07-11 14:58:44 +02:00
crun-version Bump crun to 1.16 2024-09-02 16:46:20 +08:00
enable_docker_tls_on_windows.ps1 Add image build workflow 2021-11-25 09:26:17 +00:00
enable_ssh_windows.ps1 Add CI periodic Windows Jobs. 2021-04-20 17:18:46 +03:00
imgcrypt-version script: bump up imgcrypt version to v1.2.0-rc1 2024-07-08 19:25:39 +09:00
install-cni make repositories of install dependencies configurable 2023-08-28 18:43:41 +05:30
install-cni-windows Add arm64 to releases 2021-11-11 20:00:34 +00:00
install-critools *: enable ARM64 runner 2023-12-07 23:55:36 +08:00
install-dev-tools script/setup/install-dev-tools: include patch version in versions 2024-08-16 10:54:17 +02:00
install-failpoint-binaries *: add runc-fp as runc wrapper to inject failpoint 2023-10-02 17:44:41 +00:00
install-gotestsum gotestsum match go version 1.19 2022-11-17 20:42:22 +08:00
install-imgcrypt update imgcrypt binary to v1.1.9 2024-01-09 15:40:32 +08:00
install-protobuf Add Linux arm64 arch to install-protobuf script 2023-02-27 09:14:57 -08:00
install-runc script/setup/install-runc: fix runc using incorrect version 2024-08-06 16:52:15 +02:00
install-runhcs-shim Windows: Supply windows shim version via file 2023-08-28 11:55:55 -07:00
install-seccomp Bump seccomp version to be the same as one in runc repo 2023-05-16 09:33:26 -04:00
install-teststat CI: Output a summary using GITHUB_SUMMARY 2022-09-14 23:30:47 +00:00
prepare_env_windows.ps1 update to go1.23.1, go1.22.7 2024-09-06 16:12:28 +02:00
prepare_windows_docker_helper.ps1 Add image build workflow 2021-11-25 09:26:17 +00:00
runc-version update runc binary to 1.1.14 2024-09-03 10:15:17 +05:30
runhcs-version Update hcsshim to v0.12.6 2024-08-19 15:30:51 -07:00
upgrade_chocolaty_windows_2019.ps1 Move inline PS scripts into files 2024-02-06 18:27:21 -08:00
upgrade_mingw_windows_2019.ps1 Move inline PS scripts into files 2024-02-06 18:27:21 -08:00