Skip to content

Skarambelkar podman installfix fullbuildtry [For comparison, DO NOT MERGE] #15338

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
sandeepkarambelkar wants to merge 45 commits into
base: 3.0-dev
Choose a base branch
from
Draft

Skarambelkar podman installfix fullbuildtry [For comparison, DO NOT MERGE] #15338

sandeepkarambelkar wants to merge 45 commits into from

Conversation

@sandeepkarambelkar
Copy link
Contributor

@sandeepkarambelkar sandeepkarambelkar commented Dec 18, 2025

Merge Checklist

All boxes should be checked before merging the PR (just tick any boxes which don't apply to this PR)

  • The toolchain has been rebuilt successfully (or no changes were made to it)
  • The toolchain/worker package manifests are up-to-date
  • Any updated packages successfully build (or no packages were changed)
  • Packages depending on static components modified in this PR (Golang, *-static subpackages, etc.) have had their Release tag incremented.
  • Package tests (%check section) have been verified with RUN_CHECK=y for existing SPEC files, or added to new SPEC files
  • All package sources are available
  • cgmanifest files are up-to-date and sorted (./cgmanifest.json, ./toolkit/scripts/toolchain/cgmanifest.json, .github/workflows/cgmanifest.json)
  • LICENSE-MAP files are up-to-date (./LICENSES-AND-NOTICES/SPECS/data/licenses.json, ./LICENSES-AND-NOTICES/SPECS/LICENSES-MAP.md, ./LICENSES-AND-NOTICES/SPECS/LICENSE-EXCEPTIONS.PHOTON)
  • All source files have up-to-date hashes in the *.signatures.json files
  • sudo make go-tidy-all and sudo make go-test-coverage pass
  • Documentation has been updated to match any changes to the build system
  • Ready to merge
Summary

What does the PR accomplish, why was it needed?

Change Log
  • Change
  • Change
  • Change
Does this affect the toolchain?

YES/NO

Associated issues
  • #xxxx
Links to CVEs
Test Methodology
  • Pipeline build id: xxxx

sandeepkarambelkar and others added 30 commits November 10, 2025 05:06
@sandeepkarambelkar
Fix podman install issue and add required dependent packages
9731efb
@sandeepkarambelkar
Update cgmanifest and license maps
22840c4
@sandeepkarambelkar
Revert glibc-static version changed for local building
84d6e54
@sandeepkarambelkar
Update glibc-static check in crun spec
4a01ea9
@sandeepkarambelkar
Update release
a996200
@sandeepkarambelkar
Updated release, added changelog and changed the toolchain version
2bf6795
@sandeepkarambelkar
Update aarch toolchain manifests
a2a9db3
@sandeepkarambelkar
Merge branch '3.0-dev' into skarambelkar/3.0-dev/podman-install-fix
1ab916f
@sandeepkarambelkar
Update License Map
c57e22c
@sandeepkarambelkar
Remove core spec changes and try the build and install
212f221
@sandeepkarambelkar
Update glibc-static version constraint
47d8928
@sandeepkarambelkar
Add docker cli conflict for podman-docker
a3d44f7
@sandeepkarambelkar
Add python3-libmount
7471dbe
@sandeepkarambelkar
Update toolchain with python3
30e0696
@CBL-Mariner-Bot @azurelinux-security
@jslobodzian @sandeepkarambelkar
[AUTO-CHERRYPICK] [AutoPR- Security] Patch kubevirt for CVE-2025-47913
e3a7a68 
…[HIGH] - branch 3.0-dev (#15134)

Co-authored-by: Azure Linux Security Servicing Account <azurelinux-security@microsoft.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@CBL-Mariner-Bot @azurelinux-security
@jslobodzian @aaruag @Kanishk-Bansal @sandeepkarambelkar
[AUTO-CHERRYPICK] [AutoPR- Security] Patch containerd2 for CVE-2024-2…
c29f136 
…5621 [HIGH] - branch 3.0-dev (#15125)

Co-authored-by: Azure Linux Security Servicing Account <azurelinux-security@microsoft.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
Co-authored-by: aaruag <aaruagrawal@microsoft.com>
Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
@akhila-guruju @sandeepkarambelkar
Build fix for uw-imap (#15000)
6f0d52d
@AkarshHCL @sandeepkarambelkar
Upgrading jdepend to Version-2.10 (#15110)
eb729e5
@archana25-ms @sandeepkarambelkar
Upgrade: perl-IO-Socket-INET6 version to 2.73 (#13319)
46ebc41
@AkarshHCL @sandeepkarambelkar
Upgrade:perl-Test2-Plugin-NoWarnings to version 0.10 (#15141)
4e6a171
@azurelinux-security @sandeepkarambelkar
[AutoPR- Security] Patch libtiff for CVE-2025-8961 [LOW] (#15176)
e7bd053
@v-aaditya @sandeepkarambelkar
[Low] Patch atop for CVE-2025-31160 (#15029)
3461d1a
@azurelinux-security @sandeepkarambelkar
[AutoPR- Security] Patch containerized-data-importer for CVE-2025-58183
dc86648 
… [MEDIUM] (#15103)
@azurelinux-security @sandeepkarambelkar
[AutoPR- Security] Patch moby-engine for CVE-2025-58183 [MEDIUM] (#15102
ba1664e 
)
@AkarshHCL @sandeepkarambelkar
Build fix for jakarta-taglibs-standard (#15142)
ea4efb1
@CBL-Mariner-Bot @Kanishk-Bansal
@jslobodzian @sandeepkarambelkar
Merge PR "[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade libpng to 1.6.…
14267c7 
…51 for CVE-2025-64505, CVE-2025-64506, CVE-2025-65018, CVE-2025-64720 - branch 3.0-dev" #15193

Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@CBL-Mariner-Bot @v-aaditya
@jslobodzian @sandeepkarambelkar
[AUTO-CHERRYPICK] [High] Patch kubernetes for CVE-2025-31133 and CVE-…
d86501f 
…2025-52565 - branch 3.0-dev (#15192)

Co-authored-by: Aditya Singh <v-aditysing@microsoft.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@CBL-Mariner-Bot @sandeepkarambelkar
[AUTOPATCHER-kernel] Kernel upgrade to version 6.6.117.1 - branch 3.0…
05e26b5 
…-dev (#15169)
@archana25-ms @sandeepkarambelkar
Removal of xpp2 version 2.1.10 from SPECS_EXTENDED (#15031)
a29b32d
@archana25-ms @sandeepkarambelkar
Upgrade: xmlunit version to 1.6 (#15158)
7707c09
azurelinux-security and others added 15 commits December 9, 2025 06:00
@azurelinux-security @archana25-ms @sandeepkarambelkar
[AutoPR- Security] Patch gh for CVE-2025-58183 [MEDIUM] (#15096)
2b78eae 
Co-authored-by: Archana Shettigar <v-shettigara@microsoft.com>
@CBL-Mariner-Bot @azurelinux-security
@Kanishk-Bansal @jslobodzian @sandeepkarambelkar
[AUTO-CHERRYPICK] [AutoPR- Security] Patch glib for CVE-2025-13601 [H…
6aaea8f 
…IGH] - branch 3.0-dev (#15191)

Co-authored-by: Azure Linux Security Servicing Account <azurelinux-security@microsoft.com>
Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@azurelinux-security @sandeepkarambelkar
[AutoPR- Security] Patch libxslt for CVE-2025-11731 [LOW] (#15147)
541b280
@bot-for-go @sandeepkarambelkar
(security) golang: bump Go version to 1.24.11-1 (#15201)
8d1be87 
Co-authored-by: bot-for-go[bot] <199222863+bot-for-go[bot]@users.noreply.github.com>
@CBL-Mariner-Bot @sandeepkarambelkar
Merge PR "[AUTO-CHERRYPICK] [AUTOPATCHER-CORE] Upgrade libpng to 1.…
d70ca69 
…6.52 for CVE-2025-66293 [High] - branch 3.0-dev" #15224
@CBL-Mariner-Bot @azurelinux-security
@Kanishk-Bansal @jslobodzian @sandeepkarambelkar
Merge PR "[AUTO-CHERRYPICK] [AutoPR- Security] Patch fluent-bit for C…
0b87098 
…VE-2025-12970 [HIGH] - branch 3.0-dev" #15225

Signed-off-by: Kanishk Bansal <kanbansal@microsoft.com>
Co-authored-by: Azure Linux Security Servicing Account <azurelinux-security@microsoft.com>
Co-authored-by: Kanishk Bansal <kanbansal@microsoft.com>
Co-authored-by: Kanishk Bansal <103916909+Kanishk-Bansal@users.noreply.github.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@liulanze @sandeepkarambelkar
Fix telemetry for imagecustomizer golden container. (#15060)
37d3082
@bot-for-go @sandeepkarambelkar
(security) golang: bump Go version to 1.25.5-1 (#15202)
68fc7c5 
Co-authored-by: bot-for-go[bot] <199222863+bot-for-go[bot]@users.noreply.github.com>
@CBL-Mariner-Bot @archana25-ms
@jslobodzian @sandeepkarambelkar
[AUTO-CHERRYPICK] [HIGH] Patch pytorch for CVE-2025-55552 - branch 3.…
a3156b4 
…0-dev (#15226)

Co-authored-by: Archana Shettigar <v-shettigara@microsoft.com>
Co-authored-by: jslobodzian <joslobo@microsoft.com>
@CBL-Mariner-Bot @PawelWMS @sandeepkarambelkar
Merge PR "[AUTO-CHERRYPICK] Added DigiCert root CAs to 'ca-certificat…
d489409 
…es-base' - branch 3.0-dev" #15231

Co-authored-by: Pawel Winogrodzki <pawelwi@microsoft.com>
@azurelinux-security @sandeepkarambelkar
[AutoPR- Security] Patch libxslt for CVE-2025-7424 [MEDIUM] (#15220)
9cf3032
@CBL-Mariner-Bot @sandeepkarambelkar
[AUTOPATCHER-CORE] Upgrade cups to 2.4.16 for CVE-2025-58436, CVE-2…
5aca86f 
…025-61915 [Medium] (#15222)

Signed-off-by: Kanishk Bansal <kanbansal@microsoft.com>
Co-authored-by: Kanishk Bansal <kanbansal@microsoft.com>
@CBL-Mariner-Bot @sandeepkarambelkar
Prepare December 2025 Update (#15236)
0750a14
@CBL-Mariner-Bot @sandeepkarambelkar
[AUTOPATCHER-CORE] Upgrade tzdata to 2025b upgrade to version 2025b (#…
6ae3588 
…15156)
@sandeepkarambelkar
Merge branch '3.0-dev' into skarambelkar-podman-installfix-fullbuildtry
15ee0c0
@microsoft-github-policy-service microsoft-github-policy-service bot added Packaging specs-extended PR to fix SPECS-EXTENDED 3.0-dev PRs Destined for AzureLinux 3.0 labels Dec 18, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

3.0-dev PRs Destined for AzureLinux 3.0 Packaging specs-extended PR to fix SPECS-EXTENDED

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

9 participants

@sandeepkarambelkar @CBL-Mariner-Bot @akhila-guruju @AkarshHCL @archana25-ms @azurelinux-security @v-aaditya @liulanze