containers
/
toolbox
mirror of https://github.com/containers/toolbox.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
toolbox/playbooks
History
Tino Calancha a61b85cf8f playbooks/dependencies-fedora: Unbreak the missing subordinate ID ranges 
On Fedora 42 onwards, useradd(8) stopped automatically assigning
subordinate group and user ID ranges [1,2] to address a security concern
marked as CVE-2024-56433 [3].  This breaks rootless Podman and Skopeo,
and therefore Toolbx [4].

Restore the subordinate group and user ID ranges until a different
solution emerges.

[1] Fedora shadow-utils commit e1cfa31731cd68aa
    https://src.fedoraproject.org/rpms/shadow-utils/c/e1cfa31731cd68aa
    https://bugzilla.redhat.com/show_bug.cgi?id=2334168

[2] Fedora shadow-utils commit 4929903292e027ca
    https://src.fedoraproject.org/rpms/shadow-utils/c/4929903292e027ca
    https://bugzilla.redhat.com/show_bug.cgi?id=2334169

[3] https://github.com/shadow-maint/shadow/issues/1157

[4] https://bugzilla.redhat.com/show_bug.cgi?id=2382662

https://github.com/containers/toolbox/pull/1688
 		2025-07-25 00:09:02 +02:00
..
build.yaml Drop one "o" and rename the project as "Toolbx" 2024-02-06 18:24:26 +01:00
dependencies-centos-9-stream.yaml .github, build, playbooks: Bump github.com/spf13/viper to 1.20.0 2025-06-02 22:33:30 +02:00
dependencies-fedora-restricted.yaml .github, build, playbooks: Bump github.com/spf13/viper to 1.20.0 2025-06-02 22:33:30 +02:00
dependencies-fedora.yaml playbooks/dependencies-fedora: Unbreak the missing subordinate ID ranges 2025-07-25 00:09:02 +02:00
setup-env-migration-path-for-coreos-toolbox.yaml playbooks: Use the same commands as mentioned in the documentation 2025-07-04 21:34:50 +02:00
setup-env-restricted.yaml Give access to the CA certificates from the host 2025-06-02 15:58:46 +02:00
setup-env.yaml Give access to the CA certificates from the host 2025-06-02 15:58:46 +02:00
system-test-commands-options.yaml playbooks, test/system: Drop the PODMAN and SKOPEO environment variables 2024-11-14 02:06:33 +01:00
system-test-runtime-environment-arch-fedora.yaml playbooks, test/system: Drop the PODMAN and SKOPEO environment variables 2024-11-14 02:06:33 +01:00
system-test-runtime-environment-ubuntu.yaml playbooks, test/system: Drop the PODMAN and SKOPEO environment variables 2024-11-14 02:06:33 +01:00
unit-test.yaml Update copyright notices 2024-02-29 23:31:51 +01:00