mirrors/flatcar-scripts
1
0
Fork 0
mirror of https://github.com/flatcar/scripts.git synced 2025-08-21 22:41:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

coreos-base/oem-vmware: enable PrivateTmp for vmtoolsd

Browse Source 
It would have mitigated CVE-2015-5191 and might again be useful in the
future.
This commit is contained in:
Benjamin Gilbert 2017-07-28 22:41:53 -07:00
parent 276aa5dfbe
commit 40cedc85f6
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
sdk_container/src/third_party/coreos-overlay/coreos-base/oem-vmware/files/units/vmtoolsd.service vendored
View File

@ -7,6 +7,7 @@ ConditionVirtualization=vmware
ExecStartPre=/usr/bin/ln -sfT /usr/share/oem/vmware-tools /etc/vmware-tools
ExecStart=/usr/share/oem/bin/vmtoolsd
TimeoutStopSec=5
PrivateTmp=true
[Install]
WantedBy=multi-user.target