Bug#929662: docker.io: CVE-2018-15664 - upstream backport of patch for 18.09
On Sat, Jun 22, 2019 at 3:07 PM Fabrice Dagorn wrote: > > Hi, > > it seems that docker.io would be removed from buster if nothing changes > in the next 3 days [0]. > > Do you need help to fix this ? > [...] > > thanks for reaching out. I applied the patch, that is no problem. > > However the new tests that were added makes my machine go crazy and > > reach the maximum number of process. Right now I'm configured like that: > > > > $ ulimit -u > > 62688 > > I can't figure out what's wrong. The tests added by upstream cause wield results. I'm not sure if changing ulimit really works. But my desktop crashes(run out of pids)... outside the schroot... Anyway, I uploaded NMU to apply upstream patch, but the wield tests are omitted. -- Shengjing Zhu
Bug#929662: docker.io: CVE-2018-15664 - upstream backport of patch for 18.09
Hi, it seems that docker.io would be removed from buster if nothing changes in the next 3 days [0]. Do you need help to fix this ? Fabrice [0] https://lists.debian.org/debian-release/2019/06/msg00542.html On Mon, 10 Jun 2019 11:54:08 +0700 Arnaud Rebillout wrote: > Hi, > > thanks for reaching out. I applied the patch, that is no problem. > However the new tests that were added makes my machine go crazy and > reach the maximum number of process. Right now I'm configured like that: > > $ ulimit -u > 62688 > > I will bumb this number but I also want to check a bit more in details > what's happening and report that upstream, as I don't know if this is > expected behavior or not. > > You can checkout the branch at > https://salsa.debian.org/docker-team/docker/tree/arnaudr/cve-2018-15664 > and try it by yourself if you're curious. > > In the meantime, I reached out to the release team at #930293 to prepare > for the next unblock. > > So things are in progress, no need for help on this particular issue, > but in general if you're interested in the docker package, then help > with the packaging is more than welcome :) > > Arnaud > > > On 6/9/19 9:31 AM, Afif Elghraoui wrote: > > Hello, > > > > Is any help needed on this? Upstream has a backport of the patch for the > > 18.09 series (same as Unstable): > > > > https://github.com/docker/engine/pull/253 > > > > Hopefully it won't be too much work to incorporate it. > > > > thanks and regards > > Afif > > > >
Bug#929662: docker.io: CVE-2018-15664 - upstream backport of patch for 18.09
Hi, thanks for reaching out. I applied the patch, that is no problem. However the new tests that were added makes my machine go crazy and reach the maximum number of process. Right now I'm configured like that: $ ulimit -u 62688 I will bumb this number but I also want to check a bit more in details what's happening and report that upstream, as I don't know if this is expected behavior or not. You can checkout the branch at https://salsa.debian.org/docker-team/docker/tree/arnaudr/cve-2018-15664 and try it by yourself if you're curious. In the meantime, I reached out to the release team at #930293 to prepare for the next unblock. So things are in progress, no need for help on this particular issue, but in general if you're interested in the docker package, then help with the packaging is more than welcome :) Arnaud On 6/9/19 9:31 AM, Afif Elghraoui wrote: > Hello, > > Is any help needed on this? Upstream has a backport of the patch for the > 18.09 series (same as Unstable): > > https://github.com/docker/engine/pull/253 > > Hopefully it won't be too much work to incorporate it. > > thanks and regards > Afif >
Bug#929662: docker.io: CVE-2018-15664 - upstream backport of patch for 18.09
Hello, Is any help needed on this? Upstream has a backport of the patch for the 18.09 series (same as Unstable): https://github.com/docker/engine/pull/253 Hopefully it won't be too much work to incorporate it. thanks and regards Afif -- Afif Elghraoui | عفيف الغراوي https://afif.ghraoui.name