Rebuild to mitigate CVE-2022-{1705,32148,30631,30633,28131,30635,30632,30630,1962} in golang
See https://groups.google.com/g/golang-dev/c/frczlF8OFQ0/m/4lrZh5BHDgAJ for more information about the specific vulnerabilities.
Update to latest commit as of 20220719
Added
Experimental: nebula clients can be configured to act as relays for other nebula clients.
Primarily useful when stubborn NATs make a direct tunnel impossible. (#678)
Configuration option to report manually specified ip:ports to lighthouses. (#650)
Windows arm64 build. (#638)
punchy and most lighthouse config options now support hot reloading. (#649)
Changed
Build against go 1.18. (#656)
Promoted routines config from experimental to supported feature. (#702)
Dependencies updated. (#664)
Fixed
Packets destined for the same host that sent it will be returned on MacOS.
This matches the default behavior of other operating systems. (#501)
unsafe_route configuration will no longer crash on Windows. (#648)
A few panics that were introduced in 1.5.x. (#657, #658, #675)
Security
You can set listen.send_recv_error to control the conditions in which
recv_error messages are sent. Sending these messages can expose the fact
that Nebula is running on a host, but it speeds up re-handshaking. (#670)
Removed
x509 config stanza support has been removed. (#685)
bump to v4.2.0-rc1
fix package dir listing
resolve build issues and list new shell completion files
Release of stargz snapshotter v0.12.0. Please see the release note for details: https://github.com/containerd/stargz-snapshotter/releases/tag/v0.12.0
Fix extracting network metric
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2022-5038c3236c
Please login to add feedback.
This update's test gating status has been changed to 'waiting'.
This update has obsoleted golang-x-mobile-0-0.12.20220719git8578da9.fc36, and has inherited its bugs and notes.
This update has obsoleted nebula-1.6.0-1.fc36, and has inherited its bugs and notes.
This update has obsoleted podman-4.2.0~rc1-2.fc36, and has inherited its bugs and notes.
This update has obsoleted skopeo-1.9.0-3.fc36, and has inherited its bugs and notes.
This update has obsoleted stargz-snapshotter-0.12.0-1.fc36, and has inherited its bugs and notes.
This update has obsoleted xe-guest-utilities-latest-7.30.0-5.fc36, and has inherited its bugs and notes.
gotmax23 edited this update.
This update's test gating status has been changed to 'failed'.
@gotmax23 Can you remove the podman-4.2.0~rc1-3 build from this update. We don't want it to land in the updates repo.
gotmax23 edited this update.
This update's test gating status has been changed to 'waiting'.
I will remove it later. I'm AFK right now. Do know that it will be vulnerable to CVEs until you push another update. Next time, please don't push commits to distgit that you don't want to be built.
@gotmax23 well, we want it to be built and in updates-testing, just not in updates. Is there a form or something I could fill out for an exception for podman, buildah, skopeo and other tools maintained by the containers team?
gotmax23 edited this update.
Removed build(s):
Karma has been reset.
This update has been submitted for testing by gotmax23.
@lsm5, that's not really how
updates-testing
works. It's for ensuring that updates are tested before they get pushed to stable. If you want to test RCs and not have them pushed, you should do it in COPR, in upstream CI, or somewhere else.This update's test gating status has been changed to 'failed'.
This update has been pushed to testing.
Syncthing continues to work fine after the rebuild.
No issues noted.
works
gotmax23 edited this update.
cc @anthr76
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'failed'.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'passed'.
This update has been submitted for stable by bodhi.
This update has been pushed to stable.