github/kubernetes
4
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

CVE-2023-27561: Bump runc go module v1.1.4 -> v1.1.5

Browse Source
This commit is contained in:
Pushkar Joglekar
2023-04-04 21:41:29 -07:00
parent 330b5a2b8d
commit e450ed9812
6 changed files with 82 additions and 44 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
vendor/github.com/opencontainers/runc/libcontainer/init_linux.go generated vendored
View File

@@ -411,8 +411,9 @@ func fixStdioPermissions(u *user.ExecUser) error {
return &os.PathError{Op: "fstat", Path: file.Name(), Err: err}
}
// Skip chown if uid is already the one we want.
if int(s.Uid) == u.Uid {
// Skip chown if uid is already the one we want or any of the STDIO descriptors
// were redirected to /dev/null.
if int(s.Uid) == u.Uid || s.Rdev == null.Rdev {
continue
}