rpms / skopeo

Clone
Source Code
GIT

Blame SOURCES/skopeo-CVE-2019-10214.patch

c7-alt c7-extras c8-beta-stream-1.0 c8-beta-stream-2.0 c8-beta-stream-3.0 c8-beta-stream-4.0 c8-beta-stream-rhel8 c8-stream-1.0 c8-stream-2.0 c8-stream-3.0 c8-stream-4.0 c8-stream-rhel8 c8s-stream-1.0 c8s-stream-2.0 c8s-stream-3.0 c8s-stream-4.0 c8s-stream-rhel8 c9 c9-beta c9-beta-stream-latest
  1.   dee5ab6842e40a68ccc5bba0257f9a5586caf0f6
  2.   SOURCES
  3.   skopeo-CVE-2019-10214.patch
Blob History Raw
dee5ab 
diff -up ./skopeo-1715c9084124875cb71f006916396e3c7d03014e/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214 ./skopeo-1715c9084124875cb71f006916396e3c7d03014e/vendor/github.com/containers/image/docker/docker_client.go
dee5ab 
--- ./skopeo-1715c9084124875cb71f006916396e3c7d03014e/vendor/github.com/containers/image/docker/docker_client.go.CVE-2019-10214	2019-09-12 15:41:30.949477994 +0200
dee5ab 
+++ ./skopeo-1715c9084124875cb71f006916396e3c7d03014e/vendor/github.com/containers/image/docker/docker_client.go	2019-09-12 15:41:30.950478007 +0200
dee5ab 
@@ -480,11 +480,7 @@ func (c *dockerClient) getBearerToken(ct
dee5ab 
 		authReq.SetBasicAuth(c.username, c.password)
dee5ab 
 	}
dee5ab 
 	logrus.Debugf("%s %s", authReq.Method, authReq.URL.String())
dee5ab 
-	tr := tlsclientconfig.NewTransport()
dee5ab 
-	// TODO(runcom): insecure for now to contact the external token service
dee5ab 
-	tr.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
dee5ab 
-	client := &http.Client{Transport: tr}
dee5ab 
-	res, err := client.Do(authReq)
dee5ab 
+	res, err := c.client.Do(authReq)
dee5ab 
 	if err != nil {
dee5ab 
 		return nil, err
dee5ab 
 	}

Powered by Pagure 5.14.1

SSH Hostkey/Fingerprint | Documentation