CRI-O - v1.20.7
Security
CRI-O v1.20.7
The release notes have been generated for the commit range
v1.20.6...5d2fa34 on Tue, 15 Mar 2022 14:12:31 UTC.
Security Fixes
This version contains a fix to a critical security vulnerability, CVE-2022-0811. Users are encouraged to upgrade to this version to protect against this vulnerability.
This release has a fix for CVE-2022-0532
Downloads
Download one of our static release bundles via our Google Cloud Bucket:
- cri-o.amd64.5d2fa3419f15655454edb94dfcc0993cb5a1521c.tar.gz
- cri-o.arm64.5d2fa3419f15655454edb94dfcc0993cb5a1521c.tar.gz
Changelog since v1.20.6
Changes by Kind
Feature
- Add functionality to use taskset to spawn new commands cri-o runs. Now, if InfraCtrCPUSet is called, all newly spawned commands will be placed in the InfraCtrCPUSet (as it's expected to be set to the reserved CPU set that system commands should run on). (#5597, @haircommander)
Uncategorized
- Backport the fix of merging storage_option from drop-in files to sttorage_option from storage.conf. (#5435, @QiWang19)
- Fix a bug where a pod given a host IPC or network namespace could configure sysctls on the host (#5702, @openshift-cherrypick-robot)
- Fix a bug where situations of excessive load on nodes causes containers to never actually start (#5693, @openshift-cherrypick-robot)
- Fix a case where conmon children are sometimes leaked (#5704, @openshift-cherrypick-robot)
- Fixed missing quantile values in
container_runtime_crio_operations_latency_microseconds_total
metrics (#5265, @saschagrunert)
Dependencies
Added
Nothing has changed.
Changed
Nothing has changed.
Removed
Nothing has changed.
Security
Details
date
March 15, 2022, 2:32 p.m.
name
v1.20.7
type
Patch
official page
👇
Register or login to:
- 🔍View and search all CRI-O releases.
- 🛠️Create and share lists to track your tools.
- 🚨Setup notifications for major, security, feature or patch updates.
- 🚀Much more coming soon!