projects / docker.io.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2144c5a) | patch
Pass root to chroot to for chroot Untar
authorBrian Goff <cpuguy83@gmail.com>
Thu, 30 May 2019 18:15:09 +0000 (11:15 -0700)
committerShengjing Zhu <zhsj@debian.org>
Sat, 22 Jun 2019 17:25:10 +0000 (18:25 +0100)
commit177fad15b5ccefc7490701ab6b383824e619f901
treed6a7a93911bae8221f6808520ae22a77b7d00a56tree | snapshot
parent2144c5ad1d09228e916cf3ce2de1829c83de29b7commit | diff
Pass root to chroot to for chroot Untar

This is useful for preventing CVE-2018-15664 where a malicious container
process can take advantage of a race on symlink resolution/sanitization.

Before this change chrootarchive would chroot to the destination
directory which is attacker controlled. With this patch we always chroot
to the container's root which is not attacker controlled.

Signed-off-by: Brian Goff <cpuguy83@gmail.com>
Origin: upstream, https://github.com/moby/moby/pull/39292

Gbp-Pq: Name cve-2018-15664-01-pass-root-to-chroot-to-for-chroot-untar.patch
engine/daemon/archive.go diff | blob | history
engine/pkg/chrootarchive/archive.go diff | blob | history
engine/pkg/chrootarchive/archive_unix.go diff | blob | history
engine/pkg/chrootarchive/archive_windows.go diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.