[Buildroot] [git commit] package/containerd: security bump to version 1.5.11
Peter Korsgaard
peter at korsgaard.com
Tue Apr 5 17:28:14 UTC 2022
commit: https://git.buildroot.net/buildroot/commit/?id=2642edb0af08f04fb98f4cb5f88895faded4b325
branch: https://git.buildroot.net/buildroot/commit/?id=refs/heads/master
Fixes the following security issues:
- CVE-2022-23648: containerd CRI plugin: Insecure handling of image volumes
https://github.com/containerd/containerd/security/advisories/GHSA-crp2-qrr5-8pq7
- CVE-2022-24769: Default inheritable capabilities for linux container
should be empty
https://github.com/containerd/containerd/security/advisories/GHSA-c9cp-9c75-9v8c
Signed-off-by: Peter Korsgaard <peter at korsgaard.com>
---
package/containerd/containerd.hash | 2 +-
package/containerd/containerd.mk | 2 +-
2 files changed, 2 insertions(+), 2 deletions(-)
diff --git a/package/containerd/containerd.hash b/package/containerd/containerd.hash
index d5aafe2e70..23dacded88 100644
--- a/package/containerd/containerd.hash
+++ b/package/containerd/containerd.hash
@@ -1,3 +1,3 @@
# Computed locally
-sha256 40c9767af3e87f2c36adf2f563f0a8374e80b30bd2b7aa80058c85912406cef4 containerd-1.5.9.tar.gz
+sha256 6a289406c1c0583763e5a9754e31a1eced55cd5f162a7bc2a3a315d5eb05c7a1 containerd-1.5.11.tar.gz
sha256 4bbe3b885e8cd1907ab4cf9a41e862e74e24b5422297a4f2fe524e6a30ada2b4 LICENSE
diff --git a/package/containerd/containerd.mk b/package/containerd/containerd.mk
index 8976e12f1a..c405b75e81 100644
--- a/package/containerd/containerd.mk
+++ b/package/containerd/containerd.mk
@@ -4,7 +4,7 @@
#
################################################################################
-CONTAINERD_VERSION = 1.5.9
+CONTAINERD_VERSION = 1.5.11
CONTAINERD_SITE = $(call github,containerd,containerd,v$(CONTAINERD_VERSION))
CONTAINERD_LICENSE = Apache-2.0
CONTAINERD_LICENSE_FILES = LICENSE
More information about the buildroot
mailing list