- Bump runc to v1.0.0-rc95 (this addresses CVE-2021-30465)
- Disable filtering the
ptracesyscall when kernel version is above4.8.
This allows users to use theptracesyscall withoutCAP_SYS_PTRACEwhen permitted by/proc/sys/kernel/yama/ptrace_scope, and enables .NET users to use thedotnet-dumpdiagnostic tool and the Steeltoe Heap Dump endpoint.
cloudfoundry/garden-runc-release
v1.19.26
1.19.26
on GitHub
latest releases:
v1.20.9, v1.20.8, v1.20.7...
3 years ago