Impact
All containers are executed with root privileged capabilities.
Patches
The admin sys mode is now conditional and dedicated for the special case. By default, since ezmaster@5.2.11 no instance (container) is launched with advanced capabilities. no root mode.
Workarounds
need to upgrade ezmaster to 5.2.11
References
See CHANGELOG for more information : https://github.com/Inist-CNRS/ezmaster/blob/master/CHANGELOG.md_
For more information
If you have any questions or comments about this advisory:
Impact
All containers are executed with root privileged capabilities.
Patches
The admin sys mode is now conditional and dedicated for the special case. By default, since ezmaster@5.2.11 no instance (container) is launched with advanced capabilities. no root mode.
Workarounds
need to upgrade ezmaster to 5.2.11
References
See CHANGELOG for more information : https://github.com/Inist-CNRS/ezmaster/blob/master/CHANGELOG.md_
For more information
If you have any questions or comments about this advisory: