SEARCH
NEW RPMS
DIRECTORIES
ABOUT
FAQ
VARIOUS
BLOG

 
 
Changelog for lxc-4.0.10-4.33.x86_64.rpm :

* Sat Aug 14 2021 Martin Hauke - Update to version 4.0.10: - TEST - TEST - TEST - TEST - TEST - TEST
* Mon May 31 2021 Johannes Kastl - fix wrong Source URLs in spec
* Mon May 24 2021 Johannes Kastl -update to 4.0.9:
* You may have noticed the sudden jump from 4.0.6 to 4.0.9, that\'s because 4.0.7 and 4.0.8 both included regressions that were reported by early users and were considered bad enough to require a new release.
* Testing improvements including fixes from oss-fuzz
* Rework of the attach codepath
* Cgroup handling rework
* for full list of changes see https://discuss.linuxcontainers.org/t/lxc-4-0-9-lts-has-been-released/10999
* Mon May 24 2021 Johannes Kastl - update to 4.0.6:
* Improve handling for compatibility architectures for seccomp
* Harden seccomp notifier implementation
* Rework parsing of /proc//mountinfo to handle kernel regression https://bugzilla.kernel.org/show_bug.cgi?id=209971
* Improve network device restoration
* Significantly cleanup and harden config file parsing
* Support new capabilities CAP_PERFORM, CAP_BPF, and CAP_CHECKPOINT_RESTORE
* Harden containers started without CAP_NET_ADMIN
* for full list of changes see https://discuss.linuxcontainers.org/t/lxc-4-0-6-lts-has-been-released/9926
* Thu Nov 05 2020 Dirk Mueller - update to 4.0.5:
* Support allocating PTS devices from within the container
* Harden more path/mount handling logics
* Rework LSM logic to limit initializer use
* for full list of changes see https://discuss.linuxcontainers.org/t/lxc-4-0-5-lts-has-been-released/9269- remove 0001-templates-lxc-download.in-fix-wrong-if-condition-use.patch, 0002-templates-lxc-download.in-make-shellcheck-happy.patch (upstream)
* Wed Jul 08 2020 Johannes Kastl - add patches from upstream:
* 0001-templates-lxc-download.in-fix-wrong-if-condition-use.patch
* 0002-templates-lxc-download.in-make-shellcheck-happy.patch
* 0003-templates-lxc-download.in-use-GPG-option-receive-key.patch
* Tue May 12 2020 Pavol Cupka - Update to LXC 4.0.2 - https://discuss.linuxcontainers.org/t/lxc-4-0-2-lts-has-been-released/7449
* Tue Apr 14 2020 Paolo Stivanin - Update to LXC 4.0.1: + Tweak systemd ordering (start after remote-fs.target) + Fix various issues around attach and cgroups + Fix shutdown timeout not working on pidfd systems + Fix cgroup issue on 4.9 kernel + Fix write issues in /dev/stdout- Remove 0001-autotools-don-t-install-run-coccinelle.sh.patch- Remove 0002-cgroups-fix-uninitialized-transient_len-warning.patch- Remove 0003-cgroups-fix-build-warning-on-GCC-7.patch
* Tue Apr 07 2020 Aleksa Sarai - Fix mis-use of %suse_version when we actually want to check against %sle_version when determining whether lxc-user-nic should be setuid.
* Thu Apr 02 2020 Aleksa Sarai - Add backport of https://github.com/lxc/lxc/pull/3347 and https://github.com/lxc/lxc/pull/3349 to fix builds on Leap. + 0002-cgroups-fix-uninitialized-transient_len-warning.patch + 0003-cgroups-fix-build-warning-on-GCC-7.patch
* Wed Apr 01 2020 Aleksa Sarai - Update to LXC 4.0.0. The full upstream changelog is available from: https://discuss.linuxcontainers.org/t/lxc-4-0-lts-has-been-released/7182 Related to the LXD 4.0.0 update (boo#1168338). + cgroups: Full cgroup2 support + cgroups: Freezer support in CGroup2 + cgroups: eBPF device controller support in CGroup2 + AppArmor: Deny access to /proc/acpi/
*
* + config: Add lxc.autodev.tmpfs.size configuration key + config: Add lxc.selinux.context.keyring key + config: Add lxc.keyring.session + seccomp: Add s390 support
* network: Improved network device creation and removal + network: Allow moving wireless devices- Add backport of patch to fix build: + 0001-autotools-don-t-install-run-coccinelle.sh.patch- Remove upstreamed patches: - lxc-3.2.1-cgroups-init-cpuset-properly.patch - 0001-tree-wide-initialize-all-auto-cleanup-variables.patch
* Mon Feb 03 2020 Dominique Leuenberger - BuildRequire pkgconfig(systemd) instead of systemd: allow OBS to shortcut through the -mini flavors.
* Sun Feb 02 2020 Aleksa Sarai - Fix bash-completion paths to match the binary names (and to avoid conflicts with LXD). boo#1162426
* Mon Nov 11 2019 Pavol Cupka - adding a patch to fix \"Containers fail to start regression lxc 3.2\" - patch name: lxc-3.2.1-cgroups-init-cpuset-properly.patch - upstream issue - https://github.com/lxc/lxc/issues/3108
* Thu Sep 12 2019 Aleksa Sarai - Add backport of https://github.com/lxc/lxc/pull/3102 to fix build failures on openSUSE Leap. + 0001-tree-wide-initialize-all-auto-cleanup-variables.patch- Update to lxc 3.2.1. The changelog can be found at https://discuss.linuxcontainers.org/t/lxc-3-2-1-has-been-released/5322 + seccomp: support syscall forwarding to userspace + add lxc.seccomp.allow_nesting + pidfd: Add initial support for the new pidfd api
* Many hardening improvements.
* Use /sys/kernel/cgroup/delegate file for cgroup v2.
* Fix CVE-2019-5736 equivalent bug.
* Sat Apr 20 2019 Aleksa Sarai - Rework /var/adm/update-messages handling to be far less complicated, and more packaging-friendly (by update-messages be owned by the rpm) as well as storing the update message in a autoconf-templated source file.
* Wed Apr 10 2019 Dirk Mueller - fix apparmor dropin to be compatible with LXC 3.1.0 (bsc#1131762)
* Sun Apr 07 2019 Aleksa Sarai - Avoid wrong permissions warning by conditionally setting the setuid bit based on what version of permissions is available in that distribution (makes no difference but results in less confusion to users).
* Mon Apr 01 2019 Aleksa Sarai - Fix builds on SLE12, by depending on apparmor-profiles instead of apparmor-abstractions. In addition, remove the Requires on abstractions.
* Fri Mar 29 2019 Jan Engelhardt - Trim project history from package description.
* Tue Mar 26 2019 Aleksa Sarai - Update to LXC 3.1.0. The changelog is far too long to include here, please look at the changelogs posted on https://linuxcontainers.org/. boo#1131762
* Includes fixes for CVE-2019-5736 bsc#1122185. + pam_cgfs is now provided by this package, since upstream has moved the sources to LXC (it used to be part of lxcfs).
* All of the patches have been upstreamed or are no longer relevant: - 0001-apparmor-Allow-usr-lib-paths-for-mount-and-pivot_roo.patch - 0001-utils-add-LXC_PROC_PID_FD_LEN.patch - 0001-lxc-user-nic-verify-file-descriptor-stable-2.0.patch - 0001-Backport-autodev-fix-from-lxc-master.patch - 0001-PyOS_AfterFork-python3.7.patch- Add a warning if lxc-user-nic is not setuid after set_permissions, to ensure users actually read the warning (which means we get to remove README.SUSE). It also supports people using paranoid mode, which is why it\'s done in post-install and isn\'t packaged. boo#988348- Quite a lot of the runtime helpers and configuration have been moved to liblxc, in order to allow LXD to make use of them (because, in truth, they were always a requirement of liblxc and not just the lxc-
* tools).- Add workaround for pre-15 distros, where _sharedstatedir was inexplicably /usr/com, to use the correct directory of /var/lib.
* Tue Mar 26 2019 Aleksa Sarai - Rework packaging to be a more modern openSUSE-style.
* Mon Feb 04 2019 Bjoern Voigt - compilation fixed for Python 3.7 (PyOS_AfterFork() replaced with PyOS_AfterFork_Child()) added patch 0001-PyOS_AfterFork-python3.7.patch
* Sat Sep 15 2018 Johannes Kastl - fix for bsc#988348 (lxc: enable setuid bit on lxc-user-nic) - do not remove setuid bit for lxc-user-nic on releases with suse_version >=1550 - remove setuid stuff from README.SUSE on releases with suse_version >=1550
* Fri Sep 14 2018 Johannes Kastl - move bash completion file from /etc/bash_completion.d/lxc to /usr/share/bash-completion/completions/ to avoid warning
* Mon Aug 27 2018 bernd-obsAATTwachter.fi- 0001-Backport-autodev-fix-from-lxc-master.patch: fix unprivileged lxc containers on kernel >= 4.18
* Fri Aug 03 2018 matthias.gerstnerAATTsuse.com- 0001-utils-add-LXC_PROC_PID_FD_LEN.patch: prerequisite for applying the next patch- 0001-lxc-user-nic-verify-file-descriptor-stable-2.0.patch: fix information leak and possible open() side effects accessible to regular users via lxc-user-nic (bsc#988348, CVE-2018-6556)
* Thu Jul 19 2018 mchandrasAATTsuse.de- Add upstream patch to fix container start up problems when AppArmor is enabled (boo#1099239)
* 0001-apparmor-Allow-usr-lib-paths-for-mount-and-pivot_roo.patch
* Wed Jun 13 2018 dcassanyAATTsuse.com- Make use of %license macro
  
ICM