Overview
Request 1086800 accepted
- update to 2.8.2 (bsc#1207705, CVE-2023-2253, bsc#1210428):
* Revert registry/client: set `Accept: identity` header when
getting layers
* Parse `http` forbidden as denied
* Fix CVE-2023-2253 runaway allocation on /v2/_catalog
* Fix panic in inmemory driver
* update to go1.19.9
* Add code to handle pagination of parts. Fixes max layer size
of 10GB bug
* Dockerfile: fix filenames of artifacts
- drop aws-sdk-1.42.27-update.patch (no longer wanted)
- drop 0001-Fix-runaway-allocation-on-v2-_catalog.patch (upstream)
- refresh 0001-Fix-runaway-allocation-on-v2-_catalog.patch to
be more compatible with invalid pagination requests (CVE-2023-2253, bsc#1207705)␣
- add 0001-Fix-runaway-allocation-on-v2-_catalog.patch (CVE-2023-2253, bsc#1207705)
- Created by dirkmueller
- In state accepted
- Supersedes 1086799
Request History
dirkmueller created request
- update to 2.8.2 (bsc#1207705, CVE-2023-2253, bsc#1210428):
* Revert registry/client: set `Accept: identity` header when
getting layers
* Parse `http` forbidden as denied
* Fix CVE-2023-2253 runaway allocation on /v2/_catalog
* Fix panic in inmemory driver
* update to go1.19.9
* Add code to handle pagination of parts. Fixes max layer size
of 10GB bug
* Dockerfile: fix filenames of artifacts
- drop aws-sdk-1.42.27-update.patch (no longer wanted)
- drop 0001-Fix-runaway-allocation-on-v2-_catalog.patch (upstream)
- refresh 0001-Fix-runaway-allocation-on-v2-_catalog.patch to
be more compatible with invalid pagination requests (CVE-2023-2253, bsc#1207705)␣
- add 0001-Fix-runaway-allocation-on-v2-_catalog.patch (CVE-2023-2253, bsc#1207705)
factory-auto added opensuse-review-team as a reviewer
Please review sources
factory-auto accepted review
Check script succeeded
licensedigger accepted review
ok
staging-bot added as a reviewer
Being evaluated by staging project "openSUSE:Factory:Staging:adi:59"
staging-bot accepted review
Picked "openSUSE:Factory:Staging:adi:59"
dimstar accepted review
dimstar_suse accepted review
Staging Project openSUSE:Factory:Staging:adi:59 got accepted.
dimstar_suse approved review
Staging Project openSUSE:Factory:Staging:adi:59 got accepted.
dimstar_suse accepted request
Staging Project openSUSE:Factory:Staging:adi:59 got accepted.