Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[release-1.35] CVE-2024-1753 fix, bump to v1.35.1, then v1.35.2-dev #5416

Merged
merged 3 commits into from
Mar 18, 2024
Merged

[release-1.35] CVE-2024-1753 fix, bump to v1.35.1, then v1.35.2-dev #5416

merged 3 commits into from
Mar 18, 2024

Conversation

TomSweeneyRedHat
Copy link
Member

What type of PR is this?

/kind api-change
/kind bug
/kind cleanup
/kind deprecation
/kind design
/kind documentation
/kind failing-test
/kind feature
/kind flake
/kind other

What this PR does / why we need it:

How to verify it

Which issue(s) this PR fixes:

Special notes for your reviewer:

Does this PR introduce a user-facing change?

None

@openshift-ci OpenShift CI
Copy link
Contributor

openshift-ci bot commented Mar 18, 2024

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: TomSweeneyRedHat

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@TomSweeneyRedHat TomSweeneyRedHat changed the title Dev/tsweeney/CVE 1.35 [release-1.35] CVE-2024-1753 fix, bump to v1.35.1, then v1.35.2-dev Mar 18, 2024
@mheon
Copy link
Member

mheon commented Mar 18, 2024

LGTM

mtrmac
mtrmac reviewed Mar 18, 2024
View reviewed changes
Copy link
Contributor

@mtrmac mtrmac left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

@openshift-ci openshift-ci bot added the lgtm label Mar 18, 2024
@mtrmac
Copy link
Contributor

mtrmac commented Mar 18, 2024

/hold

mtrmac
mtrmac reviewed Mar 18, 2024
View reviewed changes
@TomSweeneyRedHat
[release-1.35] CVE-2024-1753 container escape fix
9de9c20 
Addresses CVE-2024-1753 which allowed a user to write files to the
`/` directory of the host machine if selinux was not enabled.

Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>
@TomSweeneyRedHat
[release-1.35] Bump to v1.35.1
f0141c6 
As the title says.  Bumping to v1.35.1 in preparation
of Podman v5.0.

[NO NEW TESTS NEEDED]

Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>
@TomSweeneyRedHat
[release-1.35] Bump to v1.35.2-dev
30da354 
As the title says

[NO NEW TESTS NEEDEDED]

Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>
@openshift-ci openshift-ci bot removed the lgtm label Mar 18, 2024
@mtrmac
Copy link
Contributor

mtrmac commented Mar 18, 2024

/lgtm
/hold cancel

@openshift-merge-bot openshift-merge-bot bot merged commit a10eed0 into containers:release-1.35 Mar 18, 2024
36 checks passed
@stale-locking-app stale-locking-app bot locked as resolved and limited conversation to collaborators Jun 17, 2024
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@mtrmac mtrmac mtrmac left review comments

Assignees

@mtrmac mtrmac

Labels
approved lgtm locked - please file new issue/PR
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@TomSweeneyRedHat @mheon @mtrmac