buildah

Commit Graph

Author	SHA1	Message	Date
tomsweeneyredhat	ae50fd85ef	[release-1.32] CVE-2024-1753 container escape fix Addresses CVE-2024-1753 which allowed a user to write files to the `/` directory of the host machine if selinux was not enabled. Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>	2024-03-27 10:05:09 -04:00
Paul Holzinger	0191bc6710	Split GetTempDir from internal/util With this pkg/parse does not depend on libimage. [NO NEW TESTS NEEDED] Based on Miloslav's work: https://github.com/containers/podman/pull/19718 Signed-off-by: Paul Holzinger <pholzing@redhat.com>	2023-09-12 15:21:04 +02:00
Paul Holzinger	6e6827b270	Move most of internal/parse to internal/volumes internal/parse does not need to depend on libimage. This allows for a smaller podman remote client. Based on Miloslav's work: https://github.com/containers/podman/pull/19718 Signed-off-by: Paul Holzinger <pholzing@redhat.com>	2023-09-12 14:29:31 +02:00

Author

SHA1

Message

Date

tomsweeneyredhat

ae50fd85ef

[release-1.32] CVE-2024-1753 container escape fix

Addresses CVE-2024-1753 which allowed a user to write files to the
`/` directory of the host machine if selinux was not enabled.

Signed-off-by: tomsweeneyredhat <tsweeney@redhat.com>

2024-03-27 10:05:09 -04:00

Paul Holzinger

0191bc6710

Split GetTempDir from internal/util

With this pkg/parse does not depend on libimage.

[NO NEW TESTS NEEDED]

Based on Miloslav's work: https://github.com/containers/podman/pull/19718

Signed-off-by: Paul Holzinger <pholzing@redhat.com>

2023-09-12 15:21:04 +02:00

Paul Holzinger

6e6827b270

Move most of internal/parse to internal/volumes

internal/parse does not need to depend on libimage.
This allows for a smaller podman remote client.

Based on Miloslav's work: https://github.com/containers/podman/pull/19718

Signed-off-by: Paul Holzinger <pholzing@redhat.com>

2023-09-12 14:29:31 +02:00

3 Commits