MIRRORS/meta-virtualization
1
0
Fork 0
mirror of git://git.yoctoproject.org/meta-virtualization.git synced 2025-07-19 12:50:22 +02:00
Code Issues Actions Packages Projects Releases Wiki Activity
07a578d49c
meta-virtualization/recipes-containers
History
Peter Marko 07a578d49c podman: ignore CVE-2022-2989 and CVE-2023-0778 
NVD shows only redhat links and does not mention fixed-in release
se these CVEs will show-up in reports indefinitely.
They are already fixed in current version, so ignore them.

CVE-2022-2989
* https://github.com/advisories/GHSA-4wjj-jwc9-2x96
* https://github.com/containers/podman/pull/15618
* commit d82a41687e614d9ac8b2d169dee47fe226835e4c Add container GID to additional groups

CVE-2023-0778
* https://github.com/advisories/GHSA-qwqv-rqgf-8qh8
* https://github.com/containers/podman/pull/17528
* commit 6ca857feb07a5fdc96fd947afef03916291673d8 volume,container: chroot to source before exporting content

Signed-off-by: Peter Marko <peter.marko@siemens.com>
2023-08-01 14:41:46 -04:00
..
aardvark-dns aardvark-dns: Rewrite the recipe 2023-05-08 18:42:14 -04:00
buildah buildah: add seccomp and ipv6 to REQUIRED_DISTRO_FEATURES 2023-04-12 13:10:11 -04:00
catatonit catatonit: Integrate version 0.1.7 2022-09-16 11:12:41 -04:00
cgroup-lite global: update licence values to SPDX values 2022-02-18 13:07:10 -05:00
conmon conmon: update to 2.1.3-tip 2023-04-05 16:03:55 -04:00
container-host-config container-host-config: extend to native and nativesdk 2023-02-21 10:11:48 -05:00
containerd containerd: update to 1.7.2 2023-07-25 14:54:20 -04:00
cri-o cri-o: update to 1.27-tip 2023-07-25 14:54:20 -04:00
cri-tools cri-tools: update to v1.27.0 2023-06-07 16:40:22 -04:00
criu treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
crun crun: fix compilation with musl 2023-07-11 19:11:30 +00:00
docker moby: update to v24.0.2 2023-06-21 01:56:06 +00:00
docker-compose docker-compose: update to v2.17.2 2023-04-05 16:03:56 -04:00
docker-distribution treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
go-digest go-digest: update to 1.0.0-tip 2023-04-05 16:03:56 -04:00
go-errors meta-virt: sync SRC_URIs between k8s and k3s 2023-02-15 15:09:17 -05:00
go-spf13-cobra cobra: update to 1.6.0 2023-04-05 16:03:56 -04:00
go-spf13-pflag meta-virt: sync SRC_URIs between k8s and k3s 2023-02-15 15:09:17 -05:00
k3s k3s, kubernetes, nagios-nrpe: fix Upstream-Status formatting 2023-05-08 18:41:38 -04:00
kubernetes kubernetes: set CVE_VERSION explicitly 2023-07-25 14:54:20 -04:00
lxc lxc: update to 5.0.2-tip 2023-04-05 16:03:56 -04:00
lxcfs lxcfs: fix build with newer linux-libc-headers 2023-05-08 18:41:38 -04:00
nerdctl nerdctl: update to v1.3.0 2023-04-05 16:03:56 -04:00
netavark netavark, xen: *.patch: add Upstream-Status to all patches 2023-06-22 14:41:45 -04:00
oci-image-spec oci-image-spec: update to 1.1.0-rc3 2023-06-15 17:42:32 -04:00
oci-image-tools treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
oci-runtime-spec oci-runtime-spec: update to 1.1.0-rc.2 2023-06-15 17:42:32 -04:00
oci-runtime-tools treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
oci-systemd-hook treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
podman podman: ignore CVE-2022-2989 and CVE-2023-0778 2023-08-01 14:41:46 -04:00
podman-compose podman-compose: switch 1.0.3 to stable branch 2022-06-01 12:41:54 -04:00
podman-tui podman-tui: update to v0.9.0 2023-04-05 22:59:52 -04:00
riddler treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
runc runc-opencontainers: use bfd linker even when gold is selected by ls-is-gold 2023-07-27 12:03:05 -04:00
singularity treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
skopeo skopeo: restructure recipe to fix buildpaths warnings 2023-06-15 17:42:31 -04:00
sloci-image treewide: bulk update patches with status field 2023-01-27 10:32:06 -05:00
tini tiny: fix typo in Upstream-Status 2023-02-01 09:55:28 -05:00
umoci umoci: update to 0.4.7-tip 2023-06-15 17:42:31 -04:00