pkg: idtools: export RawTo{Container,Host}

Vignesh Ramanrequested to merge
vignesh/golang-github-containers-storage:wip/vignesh/backport-cve-fixes into debian/bullseye-updates
  • The below vulnerabilities are fixed by backporting upstream patches.

CVE-2022-1227: | A privilege escalation flaw was found in Podman. This flaw allows an | attacker to publish a malicious image to a public registry. Once this | image is downloaded by a potential victim, the vulnerability is triggered | after a user runs the 'podman top' command. This action gives the attacker | access to the host filesystem, leading to information disclosure or denial | of service.

While the IDMapping methods are preferable for most users, sometimes it is necessary to map a single ID using a given mapping. In particular this is needed for psgo to be able to map the user and group entries in /proc/$pid/status using the user namespace of the target process.

Required to resolve CVE-2022-1227.

Signed-off-by: Vignesh Raman vignesh.raman@collabora.com

Merge request reports