[meta-virtualization] [PATCH] lxc: upgrade it to 1.1.4
Bruce Ashfield
bruce.ashfield at gmail.com
Fri Oct 30 05:38:25 PDT 2015
sorry for the delay. This is now merged.
Bruce
On Thu, Oct 22, 2015 at 9:17 PM, <rongqing.li at windriver.com> wrote:
> From: Roy Li <rongqing.li at windriver.com>
>
> V1.1.4 includes a fix for CVE-2015-1335:
>
> lxc-start in lxc before 1.0.8 and 1.1.x before 1.1.4 allows local container
> administrators to escape AppArmor confinement via a symlink attack on a (1)
> mount target or (2) bind mount source.
> http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-1335
>
> Signed-off-by: Roy Li <rongqing.li at windriver.com>
> ---
> recipes-containers/lxc/{lxc_1.1.3.bb => lxc_1.1.4.bb} | 4 ++--
> 1 file changed, 2 insertions(+), 2 deletions(-)
> rename recipes-containers/lxc/{lxc_1.1.3.bb => lxc_1.1.4.bb} (97%)
>
> diff --git a/recipes-containers/lxc/lxc_1.1.3.bb b/recipes-containers/lxc/lxc_1.1.4.bb
> similarity index 97%
> rename from recipes-containers/lxc/lxc_1.1.3.bb
> rename to recipes-containers/lxc/lxc_1.1.4.bb
> index e61aa6d..4006deb 100644
> --- a/recipes-containers/lxc/lxc_1.1.3.bb
> +++ b/recipes-containers/lxc/lxc_1.1.4.bb
> @@ -36,8 +36,8 @@ SRC_URI = "http://linuxcontainers.org/downloads/${BPN}-${PV}.tar.gz \
> file://logs-optionally-use-base-filenames-to-report-src-fil.patch \
> "
>
> -SRC_URI[md5sum] = "197abb5a28ab0b689c737eb1951023fb"
> -SRC_URI[sha256sum] = "933b87f773ea6213c912fcd25b8f24d66fb66d285b80797dac530a8b94b7d1ad"
> +SRC_URI[md5sum] = "d33c4bd9c57755c0e2b0e2acbc3f171d"
> +SRC_URI[sha256sum] = "8f072ea2001bc94389003d82a91902855edf16b609e06f0486a74e4b8973e5dc"
>
> S = "${WORKDIR}/${BPN}-${PV}"
>
> --
> 1.9.1
>
> --
> _______________________________________________
> meta-virtualization mailing list
> meta-virtualization at yoctoproject.org
> https://lists.yoctoproject.org/listinfo/meta-virtualization
--
"Thou shalt not follow the NULL pointer, for chaos and madness await
thee at its end"
More information about the meta-virtualization
mailing list