runc: address CVE-2019-5736

Use git hash which addresses CVE-2019-5736. Use the same git hash
used in top of Docker 18.09 branch.

Changes in runc since
  6635b4f0 merge branch 'cve-2019-5736'
  0a8e4117 nsenter: clone /proc/self/exe to avoid exposing host binary to container
  dd023c45 merge branch 'pr-1972'

Fixes: CVE-2019-5736
Signed-off-by: Stefan Agner <stefan.agner@toradex.com>
Signed-off-by: Bruce Ashfield <bruce.ashfield@gmail.com>
This commit is contained in:
Stefan Agner 2019-02-15 17:32:38 +01:00 committed by Bruce Ashfield
parent 8c1284f921
commit da75d2a91a
2 changed files with 2 additions and 2 deletions

View File

@ -4,7 +4,7 @@ RRECOMMENDS_${PN} = "lxc docker"
# Note: this rev is before the required protocol field, update when all components
# have been updated to match.
SRCREV_runc-docker = "4a600c04ed480084b2351b3e32c26cb4a2d5d533"
SRCREV_runc-docker = "6635b4f0c6af3810594d2770f662f34ddc15b40d"
SRC_URI = "git://github.com/opencontainers/runc;nobranch=1;name=runc-docker \
file://0001-runc-Add-console-socket-dev-null.patch \
file://0001-build-drop-recvtty-and-use-GOBUILDFLAGS.patch \

View File

@ -1,6 +1,6 @@
include runc.inc
SRCREV = "4a600c04ed480084b2351b3e32c26cb4a2d5d533"
SRCREV = "6635b4f0c6af3810594d2770f662f34ddc15b40d"
SRC_URI = " \
git://github.com/opencontainers/runc;branch=master \
"