Cve-2019-5736?

James1 · February 12, 2019, 1:54pm

Does CVE-2019-5736 impact CircleCI?

drazisil · February 12, 2019, 3:13pm

We are investigating this and will make an announcement after we have determined any possible impact. You can contact us at security@circleci.com for more concerns.

system · February 22, 2019, 3:13pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.

tito-villalobos · April 15, 2019, 9:50pm

CircleCI deploys docker containers that are non-privileged and use host ‘user namespacing’ (via --userns-remap) to isolate the containers from the host OS.

This vulnerability is only applicable to privileged containers that run without the namespacing/pid mapping.

For reference:

https://www.openwall.com/lists/oss-security/2019/02/11/2

system · April 25, 2019, 9:50pm

This topic was automatically closed 10 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Original error: CircleCI was unable to start the container because of a userns remapping failure in Docker Build Environment docker	2	928	December 19, 2022
Will privileged containers (SYS_ADMIN and /dev/fuse) be supported? Build Environment docker	2	1696	May 12, 2020
Root user does not have permissions to their own $HOME directory Community	1	1707	November 30, 2018
Docker Login with --password-stdin (2.0) Build Environment docker	2	8049	June 18, 2018
Option to run docker with --privileged on circle 2.0? Build Environment docker	2	2148	June 18, 2018

Cve-2019-5736?

Related Topics