Your message dated Mon, 10 Apr 2023 23:04:08 +0000
with message-id <[email protected]>
and subject line Bug#1032099: fixed in libpod 4.3.1+ds1-7
has caused the Debian Bug report #1032099,
regarding libpod: CVE-2023-0778
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
1032099: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1032099
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Source: libpod
X-Debbugs-CC: [email protected]
Severity: important
Tags: security
Hi,
The following vulnerability was published for libpod.
CVE-2023-0778[0]:
https://bugzilla.redhat.com/show_bug.cgi?id=2168256
https://github.com/containers/podman/commit/6ca857feb07a5fdc96fd947afef03916291673d8
If you fix the vulnerability please also make sure to include the
CVE (Common Vulnerabilities & Exposures) id in your changelog entry.
For further information see:
[0] https://security-tracker.debian.org/tracker/CVE-2023-0778
https://www.cve.org/CVERecord?id=CVE-2023-0778
Please adjust the affected versions in the BTS as needed.
--- End Message ---
--- Begin Message ---
Source: libpod
Source-Version: 4.3.1+ds1-7
Done: Reinhard Tartler <[email protected]>
We believe that the bug you reported is fixed in the latest version of
libpod, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Reinhard Tartler <[email protected]> (supplier of updated libpod package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 10 Apr 2023 18:39:24 -0400
Source: libpod
Architecture: source
Version: 4.3.1+ds1-7
Distribution: unstable
Urgency: medium
Maintainer: Debian Go Packaging Team
<[email protected]>
Changed-By: Reinhard Tartler <[email protected]>
Closes: 1032099
Changes:
libpod (4.3.1+ds1-7) unstable; urgency=medium
.
* [upstream] volume,container: chroot to source before exporting content
(Closes: #1032099), Fixes: CVE-2023-0778
Checksums-Sha1:
2629faf28a1f96d787f6b1fb8ebe3af612250b76 5107 libpod_4.3.1+ds1-7.dsc
eb8531c037c3084f731779d711f32c1e1293b158 17708 libpod_4.3.1+ds1-7.debian.tar.xz
Checksums-Sha256:
3c783d1e6fbd6e7096452eb8117dc2f2cc6b9d2df42f7826f970592cf7b957b6 5107
libpod_4.3.1+ds1-7.dsc
e2ab8580f04d9a28747e688314184e938e3e5b13bac046e1a3124dd600d205e8 17708
libpod_4.3.1+ds1-7.debian.tar.xz
Files:
584588ad98ec643ff000d4078326a9a3 5107 admin optional libpod_4.3.1+ds1-7.dsc
3e524d098e3a603f7625bc2f63e82658 17708 admin optional
libpod_4.3.1+ds1-7.debian.tar.xz
-----BEGIN PGP SIGNATURE-----
iQJIBAEBCgAyFiEEMN59F2OrlFLH4IJQSadpd5QoJssFAmQ0kyYUHHNpcmV0YXJ0
QHRhdXdhcmUuZGUACgkQSadpd5QoJssFohAAr0rbYiwkm/1PDfPH+a6WddwSurcY
p3PYX/rWQ4tu3qSguLRKZcS5N4p396MSk5dGwzHtSkCZxkj+G0dDzAJut28nE3X3
gT2Lk/131fmqi+s3GHJkRdE8KIn//f+vLVceoQjU/q97XqwprJFRdSJHNbqD4R9k
PTB9fVo4rJixIkkqKnHQUoMqsgylxRdNugWv1cwm0qGwjRKi0QZEwKZDL8g/N2hQ
5S2nRTqQ+xzYHMu5MaGDZZAbNDNj1Ya/4a32p4P462NXC/mdfJlm2Qrk3HcKfNL7
LHYRcz/PxeGy0Xk8EjowpRE5MZCR/l7kMBwpCgymNnqFYcopQ3iTopUghidZGXm7
92E73f1X4MP3rdXEksxWSInXOhLWwN+sf6d8b2cp4i3+X4nmHK/RfzYnsHQDknwZ
2vFC/+hzgy+k5SAG8ySuf8hwJ3iJipfpO0qi6cPlSiLzudFVo5bDMfzwS1DkzkSf
kdQZrY8PSuO8C+0XPRZW49yag8pGyc2tW8Ss76fkRAc6Z6Jwr4RTkA9j5u9HnoFz
HCEOHT4IJbdgW0gA6vy5tMgCzmLDhaAqMwxfL4h1DYHELVEIFJHT972Y0vu6dWog
lAbbFKIjnO6GMm1gDZ7Koww8UO7IVbA05hwkbgi1HfuONleZs9JtM2yn3xi+KKZu
SCyBOkktV3ZNMQE=
=j/YY
-----END PGP SIGNATURE-----
--- End Message ---
_______________________________________________
Pkg-go-maintainers mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-go-maintainers
