Debian Patches
Status for cloud-init/22.4.2-1+deb12u3
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| fix-sysvinit-dependencies.patch | Fix sysv-init dependencies. | Debian Cloud Team <debian-cloud@lists.debian.org> | no | 2018-09-17 | ||
| cloud-init-before-chronyd.patch | cloud-init before chronyd | Thomas Goirand <zigo@debian.org> | no | debian | 2018-10-15 | |
| 0009-Drop-all-unused-extended-version-handling.patch | Drop all unused extended version handling =================================================================== |
Bastian Blank <waldi@debian.org> | no | 2019-08-29 | ||
| 0012-Fix-message-when-a-local-is-missing.patch | Fix message when a local is missing. | Thomas Goirand <zigo@debian.org> | no | 2017-10-16 | ||
| 0001-config-Support-APT-automated-mirror-selection.patch | [PATCH] config: Support APT automated mirror selection | Bastian Blank <waldi@debian.org> | yes | 2022-08-16 | ||
| networkd_Add_support_for_multiple_Route_sections.patch | [PATCH] networkd: Add support for multiple [Route] sections (#1868) Networkd supports multiple [Route] sections within the same file. Currently all [Route] section tags are squashed into one and if there is a default gateway it means defining a device route is not possible as the target is set to the default gateway. This patch adds support for multiple [Route] sections allowing us to support device routes. This is done by tracking each route in the route list individually and ensuring the key-value pairs are maintained within their respective [Route] section. This both maintains backwards compatibility with previous behavior and allows the specification of routes with no destination IP, causing the destination to be added with a device target. |
Nigel Kukard <nkukard@lbsd.net> | no | 2022-12-07 | ||
| CVE-2024-6174.patch | [PATCH] fix: Don't attempt to identify non-x86 OpenStack instances This causes cloud-init to attempt to reach out to the OpenStack Nova datasource in non-Nova deployments on non-x86 architectures. Change default policy of ds-identify to disallow discovery of datasources without strict identifiable artifacts in either kernel cmdline, DMI platform information or system configuration files. This prevents cloud-init from attempting to reach out to well-known hard-codded link-local IP addresses for configuration information unless the platform strictly identifies as a specific datasource. CVE-2024-6174 BREAKING_CHANGE: This may break non-x86 OpenStack Nova users. Affected users may wish to use ConfigDrive as a workaround. |
Brett Holman <brett.holman@canonical.com> | no | 2024-08-22 | ||
| CVE-2024-11584.patch | [PATCH] fix: Make hotplug socket writable only by root (#25) The 'hook-hotplug-cmd' was writable by all users, allowing any user to trigger the hotplug hook script. This script should only be run by root via a udev trigger. Also move socket into 'share' directory and update references accordingly. Since the 'share' directory is only readable by root, this adds another layer of security while also being in a consistent location with the other sockets used by cloud-init. CVE-2024-11584 [backported to 22.4.2 by noahm@debian.org] |
James Falcon <therealfalcon@gmail.com> | no | 2025-06-11 |
All known versions for source package 'cloud-init'
- 25.2-1 (forky, sid)
- 25.1.4-1 (trixie)
- 22.4.2-1+deb12u3 (bookworm)