Skip to content

Instantly share code, notes, and snippets.

yeet or be yeeted

Taylor Walla twalla

yeet or be yeeted
View GitHub Profile
twalla /
Created Feb 19, 2019
CVE-2019-5736 docker-runc patch
# -- patch docker-runc with patch from rancher
# -- suggested usage: place at end of userdata/cloud-init script
# -- verified working w/ CoreOS/Kops Debian running k8s 1.4.x, 1.6.x. 1.8.x and 1.11.x
# -- assumes amd64, sorry arm folks :(
docker_version=$(docker -v | sed 's/^.*[^0-9]\([0-9]*\.[0-9]*\.[0-9]*\).*$/\1/')
kernel_version=$(uname -r | cut -d "." -f1)
if [ $kernel_version -eq 3 ]; then
curl -L"$docker_version"-amd64-no-memfd_create --output /tmp/docker-runc
twalla /
Created Aug 16, 2017
keybase verification

Keybase proof

I hereby claim:

  • I am twalla on github.
  • I am twalla ( on keybase.
  • I have a public key whose fingerprint is 5C8A 7CFB 296A BCBC E350 0BB5 C5BB 3FDA E04C 5BE6

To claim this, I am signing this object:

You can’t perform that action at this time.