• Resolves: #1666565, #1667625 - CVE-2018-20699
  • Resolves: #1663068, #1667626 - umount all procfs and sysfs with --no-pivot
  • built docker @projectatomic/docker-1.13.1 commit 1185cfd
  • built docker-runc @projectatomic/docker-1.13.1 commit e4ffe43

Resolves: #1598581, #1598582 - CVE-2018-10892

How to install

sudo dnf upgrade --advisory=FEDORA-2019-723711c645
This update has been submitted for testing by lsm5. 10 months ago
This update has obsoleted [docker-latest-1.13.1-37.git9cb56fd.fc28](https://bodhi.fedoraproject.org/updates/FEDORA-2018-28e9841baf), and has inherited its bugs and notes. 10 months ago
This update has been pushed to testing. 10 months ago
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes 10 months ago
This update has been submitted for batched by lsm5. 10 months ago
This update has been submitted for stable by lsm5. 10 months ago
This update has been pushed to stable. 10 months ago

Please login to add feedback.

Metadata
Type
security
Severity
low
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
10 months ago
in testing
10 months ago
in stable
10 months ago
BZ#1510352 CVE-2017-14992 docker-latest: docker: Lack of content verification [fedora-all]
0
0
BZ#1598581 CVE-2018-10892 docker: container breakout without selinux in enforcing mode
0
0
BZ#1598582 CVE-2018-10892 docker-latest: docker: container breakout without selinux in enforcing mode [fedora-all]
0
0
BZ#1663068 runc: not using pivot_root allows mounting of /proc
0
0
BZ#1666565 CVE-2018-20699 docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus
0
0
BZ#1667625 CVE-2018-20699 docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus [fedora-all]
0
0
BZ#1667626 runc: not using pivot_root allows mounting of /proc [fedora-all]
0
0

Automated Test Results