folkslinux
/
CBL-Mariner
mirror of https://github.com/microsoft/CBL-Mariner.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,912 Commits 970 Branches 457 Tags 853 MiB
Commit Graph

15 Commits

Author SHA1 Message Date
CBL-Mariner-Bot 187bf43842
Upgrade moby-cli to 20.10.24 (#5350) 2023-04-20 21:09:24 -07:00
Muhammad Falak R Wani a364e616af
golang: upgrade to 1.19.8 to address CVE-2023-24534, CVE-2023-24536, CVE-2023-24537, CVE-2023-24538 (#5228) 
Reference: https://github.com/golang/go/issues?q=milestone%3AGo1.19.8+label%3ASecurity
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-04-05 21:38:04 +05:30
CBL-Mariner-Bot 42a2d6d72d
Upgrade golang to 1.19.7 to address CVE-2023-24532 (#5160) 
Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2023-03-28 13:20:34 +05:30
CBL-Mariner-Bot 768aae23e3
Upgrade golang to 1.19.6 Address CVE-2022-41722, CVE-2022-41724, CVE-2022-41725, CVE-2022-41723 (#5096) 
Co-authored-by: Rakshaa Viswanathan <46165429+rakshaa2000@users.noreply.github.com>
 2023-03-17 21:20:58 +05:30
CBL-Mariner-Bot 5ed28413bb
[AUTOPATCHER-CORE] Upgrade golang to 1.19.5 upgrade to latest - (#4759) 
* Upgrade golang to 1.19.5 upgrade to latest

* remove release bump of spec that should stay on golang 1.18.8 or below
 2023-02-03 20:56:43 +01:00
CBL-Mariner-Bot 63c1d45e66
[AUTOPATCHER-CORE] Upgrade golang to 1.19.4 upgrade to latest - (#4643) 
* Upgrade golang to 1.19.4 upgrade to latest

* fix issues due to golang 1.19.4 upgrade

* re-add CVE-2022-41717.patch which is required by golang 1.17 spec

* clean up gh dependencies
 2023-01-19 18:37:17 +01:00
Daniel McIlvaney 449fbf1b41
Patch golang to resolve CVE-2022-41717 (#4457) 
* Patch golang to resolve CVE-2022-41717
 2022-12-19 12:17:43 -08:00
Olivia Crain a828f488f8
Upgrade golang to 1.18.8 to fix CVE-2022-2879, CVE-2022-2880, CVE-2022-41715, CVE-2022-27664, CVE-2022-32190 (#4157) 2022-11-01 16:37:38 -07:00
Olivia Crain fdc6619ad3
Bump supported go versions to 1.17.13, 1.18.5 to fix fifteen CVEs (#3600) 
Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
 2022-08-24 09:01:02 -07:00
Muhammad Falak R Wani d76052103a
golang: bump version to 1.18.3 to address CVE-2022-24675 & CVE-2022-28327 (#3163) 
* golang: rename specfile golang-1.17.spec -> golang.spec
* golang: bump version to 1.18.3 to address CVE-2022-24675 & CVE-2022-28327
* golang: bump release of dependent packages to force rebuild
* keda: verify license
* helm: verify license
* moby-containerd: bump version to 1.6.2 to address CVE-2022-24769
* golang: add go-1.17.10 to enable cert-manager
* cert-manger: add a hard BR on golang <= 1.17.10
* golang-17: add entry to cgimanifest

Signed-off-by: Muhammad Falak R Wani <falakreyaz@gmail.com>
 2022-06-16 23:07:41 +05:30
nicolas guibourge e8d4468606
upgrade moby-buildx, moby-runc, moby-containerd, moby-cli, moby-engine (#2124) 
* upgrade moby-buildx

* upgrade moby-buildx

* upgrade moby-buildx

* upgrade moby-runc

* upgrade moby-runc

* upgrade moby-containerd

* upgrade moby-containerd

* upgrade moby-containerd

* upgrade moby-cli

* upgrade moby-engine

* Makes moby-engine spec relying on tini to provide docker-init

* upgrade moby-engine

* upgrade moby-engine

* add %check in moby-runc.spec

* address PR check

Co-authored-by: nicolas guibourge <nicolasg@microsoft.com>
 2022-02-08 08:53:21 -08:00
jslobodzian 17b0e93e71
Merge 1.0 to dev branch 
This merge brings the latest SELinux and many packages and CVE fixes from the 1.0 branch.
 2021-08-19 13:46:51 -07:00
Andrew Phelps 9432e35aed
Update moby-engine and moby-cli to version 19.10.15 (#859) 
* update to moby 19.10.15

* fix go-md2man filename

* add comment to moby-cli
 2021-04-16 16:22:07 -07:00
Andrew Phelps 819786cad8
Increment release for all specs building with golang 1.15 (#460) 
* bump release for specs building with golang 1.15

* changelog cleanup
 2020-12-10 23:09:35 -08:00
Jon Slobodzian b877013b27 Initial CBL-Mariner commit to GitHub 2020-08-06 20:17:52 -07:00