Skip to content

containerd 1.5.9
Compare
Choose a tag to compare
@github-actions github-actions released this 06 Jan 00:47
v1.5.9
This tag was signed with the committer’s verified signature.
dmcgowan Derek McGowan
GPG key ID: F58C5D0A4405ACDB
Learn about vigilant mode.
1407cab
This commit was created on github.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Welcome to the v1.5.9 release of containerd!

The ninth patch release for containerd 1.5 is a security release to fix CVE-2021-43816.

Notable Updates

  • Fix unprivileged pod using 'hostPath' bypassing SELinux labels (GHSA-mvff-h3cj-wj9c)
  • Fix setting the "container_kvm_t" SELinux label (#6381)

See the changelog for complete list of changes

Please try out the release binaries and report any issues at
https://github.com/containerd/containerd/issues.

Contributors

  • Derek McGowan
  • Sebastiaan van Stijn
  • Michael Crosby
  • Phil Estes
  • Akihiro Suda
  • Fabiano Fidêncio
  • Samuel Karp
  • Wei Fu

Changes

13 commits

  • Github Security Advisory GHSA-mvff-h3cj-wj9c
    • e4b62aaa5 Prepare release notes for v1.5.9
    • a41213fed only relabel cri managed host mounts
  • [release/1.5] seutil: Fix setting the "container_kvm_t" label (#6381)
    • da5749b67 seutil: Fix setting the "container_kvm_t" label
  • [release/1.5] Update Go to 1.16.12 (#6367)
    • 8c24a6199 [release/1.5] Update Go to 1.16.12
  • [release/1.5] go.mod github.com/opencontainers/image-spec v1.0.2 (#6264)
    • 7ab52528b [release/1.5] go.mod github.com/opencontainers/image-spec v1.0.2
  • [release/1.5] update runc binary to v1.0.3 (#6343)
  • [release/1.5] Update Go to 1.16.11 (#6334)
    • 3ff8be2d9 [release/1.5] Update Go to 1.16.11

Dependency Changes

  • github.com/opencontainers/image-spec v1.0.1 -> v1.0.2

Previous release can be found at v1.5.8

Assets 10
Loading