|
|
|
|
|
|
by AkihiroSuda
2487 days ago
|
|
|
slirp4netns v0.2.3, v0.3.2, and v0.4.0-beta.3 are already patched for this CVE. https://github.com/rootless-containers/slirp4netns/security/... Also, v0.4.0-beta.2+ can harden its own process by unsharing mount namespace and pivotting_root to an empty dir that only contains /etc and /run with noexec mount option. v0.4.0-beta.4+ additionally supports seccomp filters. |
|
|