Browse code
update runc binary to v1.1.12
Update the runc binary that's used in CI and for the static packages, which
includes a fix for [CVE-2024-21626].
- release notes: https://github.com/opencontainers/runc/releases/tag/v1.1.12
- full diff: https://github.com/opencontainers/runc/compare/v1.1.11...v1.1.12
[CVE-2024-21626]: https://github.com/opencontainers/runc/security/advisories/GHSA-xr7r-f8xq-vfvv
Signed-off-by: Sebastiaan van Stijn <github@gone.nl>
Sebastiaan van Stijn authored on 2024/01/31 21:02:58Showing 2 changed files
| ... | ... |
@@ -283,7 +283,7 @@ RUN git init . && git remote add origin "https://github.com/opencontainers/runc. |
| 283 | 283 |
# that is used. If you need to update runc, open a pull request in the containerd |
| 284 | 284 |
# project first, and update both after that is merged. When updating RUNC_VERSION, |
| 285 | 285 |
# consider updating runc in vendor.mod accordingly. |
| 286 |
-ARG RUNC_VERSION=v1.1.11 |
|
| 286 |
+ARG RUNC_VERSION=v1.1.12 |
|
| 287 | 287 |
RUN git fetch -q --depth 1 origin "${RUNC_VERSION}" +refs/tags/*:refs/tags/* && git checkout -q FETCH_HEAD
|
| 288 | 288 |
|
| 289 | 289 |
FROM base AS runc-build |
| ... | ... |
@@ -9,7 +9,7 @@ set -e |
| 9 | 9 |
# the containerd project first, and update both after that is merged. |
| 10 | 10 |
# |
| 11 | 11 |
# When updating RUNC_VERSION, consider updating runc in vendor.mod accordingly |
| 12 |
-: "${RUNC_VERSION:=v1.1.11}"
|
|
| 12 |
+: "${RUNC_VERSION:=v1.1.12}"
|
|
| 13 | 13 |
|
| 14 | 14 |
install_runc() {
|
| 15 | 15 |
RUNC_BUILDTAGS="${RUNC_BUILDTAGS:-"seccomp"}"
|