Package: release.debian.org Severity: normal User: [email protected] Usertags: unblock X-Debbugs-Cc: [email protected]
Please unblock package containerd [ Reason ] It's a new upstream point release with bugfix only, and it fixes CVE-2021-21334 Most changes are cherry-pick by myself in upstream. Diff: https://salsa.debian.org/go-team/packages/containerd/-/compare/debian%2F1.4.3_ds1-2...debian%2F1.4.4_ds1-1 Many pb.go are changed, it's caused by another CVE fix, which is in protobuf generator, golang-gogoprotobuf CVE-2021-3121 Without these pb.go files, the diff is small. The package can migrate itself, but I file this unblock to reduce the migrate days. Since it will become 20 days nows. [ Impact ] Bullseye will have 20 days without CVE fix. [ Tests ] The package has autopkgtest, and I have done other integration tests, like tests with CRI-test[1], Kubernetes Node e2e tests[2]. [1] https://github.com/kubernetes-sigs/cri-tools [2] https://github.com/kubernetes/community/blob/master/contributors/devel/sig-testing/e2e-tests.md [ Risks ] No [ Checklist ] [x] all changes are documented in the d/changelog [x] I reviewed all changes and I approve them [x] attach debdiff against the package in testing [ Other info ] No unblock containerd/1.4.4~ds1-1
