SUSE-SU-2023:1726-1

Description of the patch:

This update for runc fixes the following issues:

Update to runc v1.1.5:

Security fixes:

• CVE-2023-25809: Fixed rootless /sys/fs/cgroup is writable when cgroupns isn't unshared (bnc#1209884).
• CVE-2023-27561: Fixed regression that reintroduced CVE-2019-19921 vulnerability (bnc#1208962).
• CVE-2023-28642: Fixed AppArmor/SELinux bypass with symlinked /proc (bnc#1209888).

Other fixes:

• Fix the inability to use /dev/null when inside a container.
• Fix changing the ownership of host's /dev/null caused by fd redirection (bsc#1168481).
• Fix rare runc exec/enter unshare error on older kernels.
• nsexec: Check for errors in write_log().
• Drop version-specific Go requirement.