projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 004be1e) | patch
package/runc: security bump to 1.0.0-rc9
authorChristian Stewart <christian@paral.in>
Tue, 3 Dec 2019 04:50:00 +0000 (20:50 -0800)
committerPeter Korsgaard <peter@korsgaard.com>
Sun, 5 Jan 2020 21:22:19 +0000 (22:22 +0100)
commitdbbf08849b70d68c8afd2b6648e7be6d5575d6cb
treeb0b475c2ebb76909a719d114ca0b23a3f5be5c83tree
parent004be1eb9c802ea3543d9dd1ae73ca1dab6a18a6commit | diff
package/runc: security bump to 1.0.0-rc9

Fixes the following security vulnerability:

- CVE-2019-16884: runc through 1.0.0-rc8, as used in Docker through
  19.03.2-ce and other products, allows AppArmor restriction bypass because
  libcontainer/rootfs_linux.go incorrectly checks mount targets, and thus a
  malicious Docker image can mount over a /proc directory.

Signed-off-by: Christian Stewart <christian@paral.in>
[Peter: mention security impact]
Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
package/runc/runc.hash diff | blob | history
package/runc/runc.mk diff | blob | history