Fedora 29: docker-latest Security Update

    Date30 Jan 2019
    CategoryFedora
    821
    Posted ByAnthony Pell
    - Resolves: #1666565, #1667625 - CVE-2018-20699 - Resolves: #1663068, #1667626 - umount all procfs and sysfs with --no-pivot - built docker @projectatomic/docker-1.13.1 commit 1185cfd - built docker-runc @projectatomic/docker-1.13.1 commit e4ffe43
    --------------------------------------------------------------------------------
    Fedora Update Notification
    FEDORA-2019-f5b57646b7
    2019-01-31 03:20:04.985285
    --------------------------------------------------------------------------------
    
    Name        : docker-latest
    Product     : Fedora 29
    Version     : 1.13.1
    Release     : 40.git1185cfd.fc29
    URL         : https://github.com/projectatomic/docker
    Summary     : Automates deployment of containerized applications
    Description :
    Docker is an open-source engine that automates the deployment of any
    application as a lightweight, portable, self-sufficient container that will
    run virtually anywhere.
    
    Docker containers can encapsulate any payload, and will run consistently on
    and between virtually any server. The same container that a developer builds
    and tests on a laptop will run at scale, in production*, on VMs, bare-metal
    servers, OpenStack clusters, public instances, or combinations of the above.
    
    --------------------------------------------------------------------------------
    Update Information:
    
    - Resolves: #1666565, #1667625 - CVE-2018-20699 - Resolves: #1663068, #1667626 -
    umount all procfs and sysfs with --no-pivot - built docker
    @projectatomic/docker-1.13.1 commit 1185cfd - built docker-runc
    @projectatomic/docker-1.13.1 commit e4ffe43
    --------------------------------------------------------------------------------
    ChangeLog:
    
    * Sat Jan 19 2019 Lokesh Mandvekar  - 2:1.13.1-40.git1185cfd
    - Resolves: #1666565, #1667625 - CVE-2018-20699
    - Resolves: #1663068, #1667626 - umount all procfs and sysfs with --no-pivot
    - built docker @projectatomic/docker-1.13.1 commit 1185cfd
    - built docker-runc @projectatomic/docker-1.13.1 commit e4ffe43
    * Thu Jul 12 2018 Fedora Release Engineering  - 2:1.13.1-38.git9cb56fd
    - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild
    --------------------------------------------------------------------------------
    References:
    
      [ 1 ] Bug #1663068 - runc: not using pivot_root allows mounting of /proc
            https://bugzilla.redhat.com/show_bug.cgi?id=1663068
      [ 2 ] Bug #1666565 - CVE-2018-20699 docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus
            https://bugzilla.redhat.com/show_bug.cgi?id=1666565
    --------------------------------------------------------------------------------
    
    This update can be installed with the "dnf" update program. Use
    su -c 'dnf upgrade --advisory FEDORA-2019-f5b57646b7' at the command
    line. For more information, refer to the dnf documentation available at
    http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
    
    All packages are signed with the Fedora Project GPG key. More details on the
    GPG keys used by the Fedora Project can be found at
    https://fedoraproject.org/keys
    --------------------------------------------------------------------------------
    _______________________________________________
    package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it.
    To unsubscribe send an email to This email address is being protected from spambots. You need JavaScript enabled to view it.
    Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html
    List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
    List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it.
    
    You are not authorised to post comments.

    LinuxSecurity Poll

    What is your favorite LinuxSecurity.com feature?

    No answer selected. Please try again.
    Please select either existing option or enter your own, however not both.
    Please select minimum 0 answer(s) and maximum 3 answer(s).
    /component/communitypolls/?task=poll.vote&format=json
    17
    radio
    [{"id":"65","title":"Feature articles","votes":"0","type":"x","order":"1","pct":0,"resources":[]},{"id":"66","title":"News","votes":"1","type":"x","order":"2","pct":100,"resources":[]},{"id":"67","title":"HOWTOs","votes":"0","type":"x","order":"3","pct":0,"resources":[]}]["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"]["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"]350
    bottom200

    Advisories

    We use cookies to provide and improve our services. By using our site, you consent to our Cookie Policy.