Vanient
5ca67e3066
runc:do not set inheritable capabilities(fix CVE-2022-29162)
...
Signed-off-by: Vanient <xiadanni1@huawei.com>
2022-06-06 20:46:23 +08:00
xiadanni
22caaf6e10
runc:fix systemd cgroup after memory type changed
...
upstream from
acaf6897f5
2021-08-09 11:44:43 +08:00
xiadanni
e026adfb26
runc:add mount destination validation(fix CVE-2021-30465)
...
Signed-off-by: xiadanni <xiadanni1@huawei.com>
2021-06-04 12:46:21 +08:00
xiadanni
d7cca0cc8f
runc:sync bugfix and bump version
...
Signed-off-by: xiadanni <xiadanni1@huawei.com>
Conflicts:
runc-openeuler.spec
2021-03-05 11:36:07 +08:00
xiadanni
874ff09e56
runc: update patches
...
0118-runc-don-t-deny-all-devices-when-update-cgroup-resou.patch
0119-runc-rootfs-do-not-permit-proc-mounts-to-no.patch
0120-runc-fix-permission-denied.patch
Signed-off-by: xiadanni <xiadanni1@huawei.com>
2020-11-25 19:49:16 +08:00
xiadanni1
e85c7e153b
runc:Pass back the pid of runc:[1:CHILD] so we can wait on it
...
reason:This allows the libcontainer to automatically clean up
runc:[1:CHILD] processes created as part of nsenter.
Signed-off-by: Alex Fang <littlelightlittlefire@gmail.com>
2020-03-20 21:31:32 +08:00
Grooooot
ba3d1f2aa6
runc: sync patches
...
Signed-off-by: Grooooot <isula@huawei.com>
2020-03-05 19:34:03 +08:00
openeuler-iSula
5904ba4dcf
runc: package init
...
Signed-off-by: openeuler-iSula <isula@huawei.com>
2019-12-29 15:34:20 +08:00
