From: Raspbian automatic forward porter <root@raspbian.org>
Date: Mon, 21 Feb 2022 01:09:02 +0000 (+0000)
Subject: Merge version 2.37.4-1+rpi1 and 2.37.4-1+deb10u1 to produce 2.37.4-1+rpi1+deb10u1
X-Git-Tag: raspbian/2.37.4-1+rpi1+deb10u1
X-Git-Url: https://dgit.raspbian.org/?a=commitdiff_plain;h=8b17f1a907512618696b6457245031e8ef049cd0;p=snapd.git

Merge version 2.37.4-1+rpi1 and 2.37.4-1+deb10u1 to produce 2.37.4-1+rpi1+deb10u1
---

92cb81ceb8fec24634b4d6b261a77272c5a6de15
diff --cc debian/changelog
index c6cc50b8,bbee58e3..3e2fce51
--- a/debian/changelog
+++ b/debian/changelog
@@@ -1,11 -1,14 +1,23 @@@
- snapd (2.37.4-1+rpi1) buster-staging; urgency=medium
++snapd (2.37.4-1+rpi1+deb10u1) buster-staging; urgency=medium
 +
 +  [changes brought forward from 2.27.2-2+rpi1 by Peter Michael Green <plugwash@raspbian.org> at Thu, 24 Aug 2017 17:53:18 +0000]
 +  * Treat unknown derivatives the same as Debian.
 +  * Disable testsuite.
 +  * Fix clean target.
 +
-  -- Raspbian forward porter <root@raspbian.org>  Mon, 11 Mar 2019 22:00:06 +0000
++ -- Raspbian forward porter <root@raspbian.org>  Mon, 21 Feb 2022 01:09:02 +0000
++
+ snapd (2.37.4-1+deb10u1) buster-security; urgency=medium
+ 
+    * SECURITY UPDATE: local privilege escalation
+     - d/p/cve202144730: Add validations of the
+       location of the snap-confine binary within snapd.
+     - d/p/cve202144730: Fix race condition in snap-confine
+       when preparing a private mount namespace for a snap.
+     - CVE-2021-44730
+     - CVE-2021-44731
+ 
+  -- Michael Vogt <mvo@debian.org>  Thu, 17 Feb 2022 16:29:46 +0100
  
  snapd (2.37.4-1) unstable; urgency=medium