From a9fdcd577f2a65c02c27312d75242857092e5934 Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Thu, 8 Dec 2022 00:48:56 +0100 Subject: [PATCH] [20.10] update containerd binary to v1.6.12 (addresses CVE-2022-23471) The twelfth patch release for containerd 1.6 contains a fix for CVE-2022-23471. Notable Updates - Fix goroutine leak during Exec in CRI plugin (GHSA-2qjp-425j-52j9) full diff: https://github.com/containerd/containerd/compare/v1.6.11...v1.6.12 Signed-off-by: Sebastiaan van Stijn --- hack/dockerfile/install/containerd.installer | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/hack/dockerfile/install/containerd.installer b/hack/dockerfile/install/containerd.installer index c8e2121696..efc0ec25f7 100755 --- a/hack/dockerfile/install/containerd.installer +++ b/hack/dockerfile/install/containerd.installer @@ -15,7 +15,7 @@ set -e # the binary version you may also need to update the vendor version to pick up # bug fixes or new APIs, however, usually the Go packages are built from a # commit from the master branch. -: "${CONTAINERD_VERSION:=v1.6.11}" +: "${CONTAINERD_VERSION:=v1.6.12}" install_containerd() ( echo "Install containerd version $CONTAINERD_VERSION"