Kua kitea he ngoikoretanga (CVE-2021-30465) i roto i te runc, he taputapu e whakamahia ana i roto i te Docker me te Kubernetes mō te whakarewa i ngā ipu motuhake. Mā tēnei ngoikoretanga ka taea te uru atu ki te pūnaha kōnae manaaki o raro mai i roto i te ipu. Mā te whakahaere i ngā hononga tohu, ka taea te hanga i tētahi whirihoranga ipu āhua korekore e hua ake ai te whakairinga here o tētahi pūnaha kōnae o waho i roto i te ipu. Kua whakatikahia te take i roto i te runc 1.0.0-rc95.
Hei whakamahi i tēnei ngoikoretanga, me āhei te kaiwhakaeke ki te whakarewa i ngā ipu me ngā pūwāhi whakairinga tāpiri i roto i te whirihoranga (hei tauira, ka taea te tārua i te take i roto i ngā taiao e hangai ana ki a Kubernetes, ka taea e ngā kaiwhakamahi te whakarewa i ā rātou ake ipu). Nā te wā i waenganui i te tirotiro me te whakamahi i ngā pūwāhi whakairinga i runga i ngā wāhanga e tohaina ana ki ētahi atu ipu, ka taea e te kaiwhakaeke te whakamahi i tētahi tikanga whakataetae i te wā e whakarewahia ana te ipu me te whakakapi i te whaiaronga e whakamahia ana mō te whakairinga ipu me tētahi hononga tohu e tohu ana ki tētahi wāhi i waho o te pūnaha kōnae pakiaka o te ipu.
Source: opennet.ru
