Ubuntu
runc package

runc 1.1.4-0ubuntu1~20.04.3 source package in Ubuntu

Changelog

runc (1.1.4-0ubuntu1~20.04.3) focal-security; urgency=medium

  * SECURITY UPDATE: Incorrect access control through /sys/fs/cgroup
    - debian/patches/CVE-2023-25809.patch: apply MS_RDONLY if
      /sys/fs/cgroup is bind-mounted or mask if bind source is unavailable
      in libcontainer/rootfs_linux.go.
    - CVE-2023-25809
  * SECURITY UPDATE: Incorrect access control through /proc and /sys
    - debian/patches/CVE-2023-27561_2023-28642.patch: Prohibit /proc and
      /sys to be symlinks in libcontainer/rootfs_linux.go.
    - CVE-2023-27561
    - CVE-2023-28642

 -- David Fernandez Gonzalez <email address hidden>  Mon, 15 May 2023 12:15:47 +0200

Upload details

Uploaded by:
David Fernandez Gonzalez
Uploaded to:
Focal
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Focal security main misc

Downloads

File Size SHA-256 Checksum
runc_1.1.4.orig.tar.xz 1.3 MiB 9f5972715dffb0b2371e4d678c1206cc8c4ec5eb80f2d48755d150bac49be35b
runc_1.1.4-0ubuntu1~20.04.3.debian.tar.xz 13.0 KiB 49124c6466b778b913ac5db50f433653198a7dfc4954a02ec11fb963d7a77e14
runc_1.1.4-0ubuntu1~20.04.3.dsc 2.4 KiB 37232e382812f83801a10510b2cb8803f87aca5042ee7ea4db47e8e9d3e24ae7

View changes file

Binary packages built by this source

golang-github-opencontainers-runc-dev: Open Container Project - development files

 "runc" is a command line client for running applications packaged according
 to the Open Container Format (OCF) and is a compliant implementation of
 the Open Container Project specification.
 .
 This package provides development files formerly known as
 "github.com/docker/libcontainer".

runc: Open Container Project - runtime

 "runc" is a command line client for running applications packaged according
 to the Open Container Format (OCF) and is a compliant implementation of
 the Open Container Project specification.

runc-dbgsym: debug symbols for runc