mirror of
https://github.com/flatcar/scripts.git
synced 2025-08-22 23:11:07 +02:00
872961ff35
This updates the ebuild to include a patch number indicating changes since the referenced version number. This is because docker uses untagged versions of runc, and so we need additional version information. Prior to this change, the runc ebuild inadvertently used the upstream distfile cache of runc's distfile, regardless of the commit referenced and the -r bumps. This also re-fixes CVE-2016-9962. The patch for that vulnerability was dropped once we thought the commit contained the fix, but since the commit was being ignored and the fix never made it into any tagged release, we accidentally regressed. Finally, tihs updates the selinux patch. This was sourced from projectatomic/runc on the docker-1.13.1 branch.