Skip to content

[1.2] deps: update to github.com/opencontainers/[email protected] #4978

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 11, 2025
Merged

[1.2] deps: update to github.com/opencontainers/[email protected] #4978

merged 1 commit into from
Nov 11, 2025

Conversation

@cyphar
Copy link
Member

@cyphar cyphar commented Nov 7, 2025

Backport of #4977. (Draft until merged.)

This new version includes the fixes for CVE-2025-52881, so we can remove
the internal/third_party copy of the library we added in commit
ed6b169 ("selinux: use safe procfs API for labels") as well as the
"replace" directive in go.mod (which is problematic for "go get"
installs).

Fixes: ed6b169 ("selinux: use safe procfs API for labels")
Signed-off-by: Aleksa Sarai [email protected]

@cyphar
deps: update to github.com/opencontainers/[email protected]
90362e0 
This new version includes the fixes for CVE-2025-52881, so we can remove
the internal/third_party copy of the library we added in commit
ed6b169 ("selinux: use safe procfs API for labels") as well as the
"replace" directive in go.mod (which is problematic for "go get"
installs).

Fixes: ed6b169 ("selinux: use safe procfs API for labels")
Signed-off-by: Aleksa Sarai <[email protected]>
(cherry picked from commit 96f1962)
Signed-off-by: Aleksa Sarai <[email protected]>
@cyphar cyphar added the backport/1.2-pr A backport PR to release-1.2 label Nov 7, 2025
@cyphar cyphar marked this pull request as ready for review November 8, 2025 02:00
@lifubang lifubang added this to the 1.2.9 milestone Nov 8, 2025
kolyshkin
kolyshkin approved these changes Nov 10, 2025
View reviewed changes
Copy link
Contributor

@kolyshkin kolyshkin left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@lifubang lifubang merged commit 6e24b72 into opencontainers:release-1.2 Nov 11, 2025
40 checks passed
@cyphar cyphar deleted the 1.2-selinux-1.13 branch November 11, 2025 03:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lifubang lifubang lifubang approved these changes

@kolyshkin kolyshkin kolyshkin approved these changes

Assignees

No one assigned

Labels

backport/1.2-pr A backport PR to release-1.2

Projects

None yet

Milestone

1.2.9

Development

Successfully merging this pull request may close these issues.

3 participants

@cyphar @lifubang @kolyshkin