Skip to content
This repository has been archived by the owner on Dec 7, 2023. It is now read-only.

Patch CVE-2019-18960 -- Use Firecracker v0.18.1 for ignite 0.6.x #499

Merged
merged 3 commits into from
Dec 10, 2019

Conversation

stealthybox
Copy link
Contributor

@stealthybox stealthybox commented Dec 10, 2019

Ignite was unaffected as it was not using vsock for its vm's, but we were distributing vulnerable binaries.
This dependency update resolves the security issue.

Firecracker v0.18.1 Release Notes

Other details in #500

@stealthybox stealthybox requested a review from twelho as a code owner December 10, 2019 05:32
@chanwit chanwit requested review from chanwit and removed request for twelho December 10, 2019 05:50
@chanwit
Copy link
Member

chanwit commented Dec 10, 2019

LGTM! thank you @stealthybox
waiting for the CI to check as deps changed a lot.

@stealthybox
Copy link
Contributor Author

This is looking good.

A local make e2e passed all containerd test cases.
Docker+cni shutdown is failing like before this commit.

@stealthybox stealthybox merged commit 44f4207 into weaveworks:release-0.6 Dec 10, 2019
@stealthybox stealthybox deleted the 0.6-CVE-2019-18960 branch December 10, 2019 06:10
@luxas luxas added this to the v0.7.0 milestone Jun 2, 2020
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants