Public bug reported: This new upstream release contains an important fix to address LP #1916485. runc now has special handling for seccomp profiles to avoid making new syscalls unusable for glibc. Backporting this single fix would be painful because upstream also updated some of the vendorized deps in the same git commit:
https://github.com/opencontainers/runc/commit/7a8d7162f9d72f20d83eaa36aeb5426deecd58f2 To stay on the safe side and also bring in some improvements made by upstream, we decided the best way to fix this issue is importing this new release. Below you can fine the upstream release notes: https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc93 And here the diff between version 1.0-rc92 which we already have in Hirsute and this new version: https://github.com/opencontainers/runc/compare/v1.0.0-rc92...v1.0.0-rc93 I already have this package (almost) ready in this PPA: https://launchpad.net/~lucaskanashiro/+archive/ubuntu/docker-20.10/+packages And I can confirm it is working well along with containerd and docker.io in Hirsute. All the DEP-8 tests are passing and also my manual smoke tests, for instance basic features like pulling images from remote registries and running them locally, binding containers to some host port, and building your own image locally. ** Affects: runc (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1919182 Title: [FFe] Import version 1.0-rc93 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/runc/+bug/1919182/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
