runc 1.1.4-0ubuntu3.1 source package in Ubuntu

Changelog

runc (1.1.4-0ubuntu3.1) lunar-security; urgency=medium

  * SECURITY UPDATE: Incorrect access control through /sys/fs/cgroup
    - debian/patches/CVE-2023-25809.patch: apply MS_RDONLY if
      /sys/fs/cgroup is bind-mounted or mask if bind source is unavailable
      in libcontainer/rootfs_linux.go.
    - CVE-2023-25809
  * SECURITY UPDATE: Incorrect access control through /proc and /sys
    - debian/patches/CVE-2023-27561_2023-28642.patch: Prohibit /proc and
      /sys to be symlinks in libcontainer/rootfs_linux.go.
    - CVE-2023-27561
    - CVE-2023-28642

 -- David Fernandez Gonzalez <email address hidden>  Mon, 15 May 2023 13:19:29 +0200

Upload details

Uploaded by:
David Fernandez Gonzalez
Uploaded to:
Lunar
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Lunar security main misc

Downloads

File Size SHA-256 Checksum
runc_1.1.4.orig.tar.xz 1.3 MiB 9f5972715dffb0b2371e4d678c1206cc8c4ec5eb80f2d48755d150bac49be35b
runc_1.1.4-0ubuntu3.1.debian.tar.xz 13.5 KiB 82e6ecece2c452fbdf3eedeb8e3c2e41636bd5e7c3bdd277de4dde3c305706e5
runc_1.1.4-0ubuntu3.1.dsc 2.4 KiB 2ad49c1853a402d5e9c2498555a7283058c8ca006fb440cdc06b5d5f043154f1

View changes file

Binary packages built by this source

golang-github-opencontainers-runc-dev: Open Container Project - development files

 "runc" is a command line client for running applications packaged according
 to the Open Container Format (OCF) and is a compliant implementation of
 the Open Container Project specification.
 .
 This package provides development files formerly known as
 "github.com/docker/libcontainer".

runc: Open Container Project - runtime

 "runc" is a command line client for running applications packaged according
 to the Open Container Format (OCF) and is a compliant implementation of
 the Open Container Project specification.

runc-dbgsym: debug symbols for runc