github/containerd
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases 2 Wiki Activity

Add /proc/acpi to masked paths

Browse Source 
relates to CVE-2018-10892

Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
This commit is contained in:
Sebastiaan van Stijn
2018-07-06 18:34:08 +02:00
parent e01779a0da
commit 8b42adeddc
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
oci/spec_unix.go
View File

@@ -153,6 +153,7 @@ func createDefaultSpec(ctx context.Context, id string) (*Spec, error) {
},
Linux: &specs.Linux{
MaskedPaths: []string{
"/proc/acpi",
"/proc/kcore",
"/proc/latency_stats",
"/proc/timer_list",