Summary: | <app-emulation/runc-1.0.0_rc2-r2: privilege escalation | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Manuel Rüger (RETIRED) <mrueg> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | cardoe, mrueg, williamh |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://seclists.org/fulldisclosure/2017/Jan/21 | ||
Whiteboard: | B1 [glsa cve] | ||
Package list: |
=app-emulation/runc-1.0.0_rc2-r2
|
Runtime testing required: | --- |
Description
Manuel Rüger (RETIRED)
2017-01-11 11:39:44 UTC
@ Arches, please test and mark stable: =app-emulation/runc-1.0.0_rc2-r2 Please re-CC amd64 when the dependent test failure is resolved. (In reply to Aaron Bauman from comment #2) > Please re-CC amd64 when the dependent test failure is resolved. test failures do not block security bugs. Please proceed (In reply to Agostino Sarubbo from comment #3) > (In reply to Aaron Bauman from comment #2) > > Please re-CC amd64 when the dependent test failure is resolved. > > test failures do not block security bugs. Please proceed My fault. amd64 stable. @maintainers, please clean the vulnerable versions. This issue was resolved and addressed in GLSA 201701-34 at https://security.gentoo.org/glsa/201701-34 by GLSA coordinator Aaron Bauman (b-man). reopened for cleanup. Cleaned up: commit b957c6bcb4ec8cd6fca134a865fc77ea2c05fe9e Author: Manuel Rüger <mrueg@gentoo.org> Date: Mon Feb 6 15:30:53 2017 +0100 app-emulation/runc: Remove old Package-Manager: Portage-2.3.3, Repoman-2.3.1 Repository is now clean, all done. |