From 3fd0b8d6ebea596934dc041bc43674d80558a06f Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Tue, 5 Oct 2021 09:51:39 +0200 Subject: [PATCH] Update containerd binary to v1.5.7 The seventh patch release for containerd 1.5 is a security release to fix CVE-2021-41103. Notable Updates: - Fix insufficiently restricted permissions on container root and plugin directories GHSA-c2h3-6mxw-7mvq Signed-off-by: Sebastiaan van Stijn (cherry picked from commit fa4a9702be2a2707e7d7345272d58ff9e381f393) Signed-off-by: Sebastiaan van Stijn --- hack/dockerfile/install/containerd.installer | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hack/dockerfile/install/containerd.installer b/hack/dockerfile/install/containerd.installer index 3660c32d55..94e82cfdc1 100755 --- a/hack/dockerfile/install/containerd.installer +++ b/hack/dockerfile/install/containerd.installer @@ -15,7 +15,7 @@ set -e # the binary version you may also need to update the vendor version to pick up # bug fixes or new APIs, however, usually the Go packages are built from a # commit from the master branch. -: "${CONTAINERD_VERSION:=v1.5.6}" +: "${CONTAINERD_VERSION:=v1.5.7}" install_containerd() ( echo "Install containerd version $CONTAINERD_VERSION"