Skip to content

Instantly share code, notes, and snippets.

Avatar
🌶️
yeet or be yeeted

Taylor Walla twalla

🌶️
yeet or be yeeted
View GitHub Profile
@twalla
twalla / patch_runc.sh
Created Feb 19, 2019
CVE-2019-5736 docker-runc patch
View patch_runc.sh
# -- patch docker-runc with patch from rancher https://github.com/rancher/runc-cve
# -- suggested usage: place at end of userdata/cloud-init script
# -- verified working w/ CoreOS/Kops Debian running k8s 1.4.x, 1.6.x. 1.8.x and 1.11.x
# -- assumes amd64, sorry arm folks :(
docker_version=$(docker -v | sed 's/^.*[^0-9]\([0-9]*\.[0-9]*\.[0-9]*\).*$/\1/')
kernel_version=$(uname -r | cut -d "." -f1)
if [ $kernel_version -eq 3 ]; then
curl -L https://github.com/rancher/runc-cve/releases/download/CVE-2019-5736-build3/runc-v"$docker_version"-amd64-no-memfd_create --output /tmp/docker-runc
@twalla
twalla / keybase.md
Created Aug 16, 2017
keybase verification
View keybase.md

Keybase proof

I hereby claim:

  • I am twalla on github.
  • I am twalla (https://keybase.io/twalla) on keybase.
  • I have a public key whose fingerprint is 5C8A 7CFB 296A BCBC E350 0BB5 C5BB 3FDA E04C 5BE6

To claim this, I am signing this object:

You can’t perform that action at this time.