update docker/runc version on summerwind/actions-runner #3259
Labels
community
Community contribution
enhancement
New feature or request
needs triage
Requires review from the maintainers
Comments
klepiz
added
community
|
Any updates here in how to proceed? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
What would you like added? and Why is this needed?
As cause of the recent docker vulnerabilty https://snyk.io/blog/leaky-vessels-docker-runc-container-breakout-vulnerabilities/,
urrently the lastest version of summerwind/actions-runner contains Docker version 24.0.7, build afdd53b, Docker required to be updated to Docker Engine 4.25.2 and runc 1.1.12 which contains a fix CVE-2024-24557, CVE-2024-23650, CVE-2024-23651, CVE-2024-23652 and CVE-2024-23653 and CVE-2024-21626
Questions
Is there a faster way to update the docker/runc version for actions-runner-controller? my current k8s master/nodes are already updated to the latest version of runc
The text was updated successfully, but these errors were encountered: