Welcome to the v1.2.14 release of containerd!
The fourteenth patch release for containerd
1.2 is a security release to fix CVE-2020-15157.
Security Fixes
- Fix bug which allowed manifests to coerce containerd clients into leaking registry credentials GHSA-742w-89gc-8m9c
Included Changes
- Fix regression pushing manifests as octet stream #4268
- Update golang version
Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.
Contributors
- Sebastiaan van Stijn
- Michael Crosby
- Phil Estes
- Maksym Pavlenko
- Akihiro Suda
- Derek McGowan
- Wei Fu
- Chris C
- Davanum Srinivas
- Erik Sipsma
- Sergey Kanzhelev
- Ted Yu
- Tobias Klauser
- Ulysses Souza
- Zhiyu Li
Changes
48 commits
f8777f130
Add release notes for v1.2.14abbb17959
Add comment clarifying fix for security issue1ead8d9de
treat manifest provided URLs differently7f1f9b1cb
Merge pull request #4464 from thaJeztah/1.2_backport_bump_golang_1.13.15f52fbb8a9
Bump Golang 1.13.150732aa7a6
Bump Golang 1.13.14f6b342959
Bump Go 1.13.130a454c2f7
Merge pull request #4339 from AkihiroSuda/golang-1.13.12-containerd1.22f4dfde54
Bump Golang 1.13.1248cc59890
Merge pull request #4319 from hakman/runc-selinux-1.2cbdfca815
Build runc with selinux support3b72766af
Merge pull request #4268 from dmcgowan/1.2-fix-bad-backport-push-octet-streamf8ae16778
Fix incorrect backport of setting octet-streamd4242f0d3
Merge pull request #4270 from estesp/travis-ci-fixes17a506c94
golangci-lint update and fix05bf3d63a
Merge pull request #4173 from thaJeztah/1.2_backport_bump_golang_1.134f6dc01a8
Bump Golang 1.13.10493665bd5
Bump Golang 1.13.9edc830f98
Merge pull request #4149 from thaJeztah/1.2_backport_bump_console053f4d6fd
Update containerd/console vendor for fixe72c2b5b1
Bump containerd console for os.File changes8810a1387
bump containerd/console 0650fd9eeb50bab4fc99dceb9f2e14cf58f36e7fb3b1ef317
Merge pull request #4121 from payall4u/hotfix-delete-container-errorf8be3cf7f
when kill container, check if container has been deleted8403abc6f
Merge pull request #4060 from thaJeztah/1.2_backport_bump_golang_1.1335a174382
Update Golang 1.13.8305703670
Update Golang 1.13.7 (CVE-2020-0601, CVE-2020-7919)1591eb809
Update Golang 1.13.6fc95ae8ed
Update Golang 1.13.577499e24e
Update to Golang 1.13.42adf308a2
Revert "Update Golang 1.12.14"9d53ba930
Revert "Update Golang 1.12.15"c5843f944
Revert "Update Golang 1.12.16 (CVE-2020-0601, CVE-2020-7919)"012c4c0af
Revert "Update Golang 1.12.17"30267a8da
platforms: update known OS and arch values591f6f491
Move flag.Parse in tests to TestMaine7583ca96
Merge pull request #4064 from thaJeztah/1.2_backport_namespace_path80914476e
Merge pull request #4061 from thaJeztah/1.2_backport_golang_ci_lint469320d92
Merge pull request #4067 from thaJeztah/1.2_backport_content_close598f7a7b5
Try set GOGC for golintdfff5b146
Switch to golangci-linta18c08347
fix additional linting failuresc1ceae579
Update timestamp atomic write82ddedea2
Ensure close in content test961c23a57
fix killall when use pidnamespacea386eb648
Fix linter errors4fcbc810e
Merge pull request #4055 from fuweid/cp12-4048971ad613c
bugfix: cleanup dangling shim by brand new context
Changes from containerd/console
10 commits
8375c34
Merge pull request #34 from sipsma/close-once38c5469
Only close epoller FD at most once.02ecf6a
Merge pull request #33 from ulyssessouza/add-file-interfacef652dc3
Add File interface instead of using os.File53a0f1d
Merge pull request #32 from estesp/check-vendor6214f20
Add vendor check now that content is vendored4b1ac2b
Merge pull request #31 from TwinProduction/master55928bd
Enable vendoring0650fd9
Merge pull request #30 from estesp/common-project-content0b9f189
Add common project repo checks/README references
Dependency Changes
- github.com/containerd/console c12b1e7919c1 -> 8375c3424e4d
Previous release can be found at v1.2.13