FEDORA-2019-901feba171

security update in Fedora 28 for docker

Status: stable 8 months ago
  • Resolves: #1666565, #1666566 - CVE-2018-20699
  • Resolves: #1663068, #1667622 - umount all procfs and sysfs with --no-pivot
  • built docker @projectatomic/docker-1.13.1 commit 1185cfd
  • built docker-runc @projectatomic/docker-1.13.1 commit e4ffe43

Comments 6

This update has been submitted for testing by lsm5.

This update has been pushed to testing.

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

This update has been submitted for batched by lsm5.

This update has been submitted for stable by lsm5.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 8 months ago
in testing 8 months ago
in stable 8 months ago

Related Bugs 4

00 #1663068 runc: not using pivot_root allows mounting of /proc
00 #1666565 CVE-2018-20699 docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus
00 #1666566 CVE-2018-20699 docker: Memory exhaustion via large integer used with --cpuset-mems or --cpuset-cpus [fedora-all]
00 #1667622 runc: not using pivot_root allows mounting of /proc [fedora-all]

Automated Test Results