CRI-O - v1.24.5

Security

CRI-O v1.24.5

The release notes have been generated for the commit range
v1.24.4...v1.24.5 on Tue, 04 Apr 2023 14:14:46 UTC.

Downloads

Download one of our static release bundles via our Google Cloud Bucket:

Changelog since v1.24.4

Changes by Kind

Bug or Regression

  • Fix a bug where CRI-O would fail if Kubelet specified -1 for swap (which is a valid way of specifying unlimited) (#6150, @haircommander)

Uncategorized

  • Do not wipe images when the filename is empty. (#6509, @jrvaldes)
  • Fix CVE-2022-4318 by failing to create container if it's passed a HOME environment variable with a newline (#6672, @openshift-cherrypick-robot)
  • Fix a bug where the GID of the container is not specified in the AdditionalGids, leading to a low risk security vulnerability. For more information please see CVE-2022-2995. (#6775, @openshift-cherrypick-robot)

Dependencies

Added

Nothing has changed.

Changed

Nothing has changed.

Removed

Nothing has changed.


Details

date
April 4, 2023, 2:21 p.m.
name
v1.24.5
type
Patch
👇
Register or login to:
  • 🔍View and search all CRI-O releases.
  • 🛠️Create and share lists to track your tools.
  • 🚨Setup notifications for major, security, feature or patch updates.
  • 🚀Much more coming soon!
Continue with GitHub
Continue with Google
or