[ubuntu/bionic-security] docker.io 20.10.21-0ubuntu1~18.04.3 (Accepted)
Nishit Majithia
nishit.majithia at canonical.com
Thu Apr 27 08:47:07 UTC 2023
docker.io (20.10.21-0ubuntu1~18.04.3) bionic-security; urgency=medium
* No change rebuild due to golang-1.18 update
docker.io (20.10.21-0ubuntu1~18.04.2) bionic; urgency=medium
* d/t/basic-smoke: do not pass mirror url to debootstrap call, since, in
Ubuntu, this url changes for non-amd64/non-i386 architectures. By not
passing the url, we pick the default one, which will be correct for the
architecture being tested.
docker.io (20.10.21-0ubuntu1~18.04.1) bionic; urgency=medium
* Backport version 20.10.21-0ubuntu1 from Lunar (LP: #1996909).
- Build with Go 1.18.
- d/control: do not b-d on libbtrfs-dev, it is not available in Bionic.
- d/control: do not build docker.io for riscv64, not supported in Bionic.
- d/t/basic-smoke: debootstrap bionic instead of debian stable.
docker.io (20.10.21-0ubuntu1) lunar; urgency=medium
* New upstream release.
docker.io (20.10.16-0ubuntu1) kinetic; urgency=medium
* New upstream release.
docker.io (20.10.12-0ubuntu4) jammy; urgency=medium
* Enable riscv64 architecture (LP: #1963920)
docker.io (20.10.12-0ubuntu2) jammy; urgency=medium
* d/t/docker-in-lxd: Match "file:/" instead of "file:///" on
copy_local_apt_files.
The command "apt-get indextargets" returns a URI field with "file:/"
as the prefix. We've been trying to match "file:///", which is
sometimes unsuccessful and leads to errors because the local apt cache
is not copied over to the container. We can use "file:/" instead,
which will work on both scenarios. It's also not a problem to just
strip the "file:" prefix, because even paths like "///var/cache" are
correctly resolved by the filesystem.
docker.io (20.10.12-0ubuntu1) jammy; urgency=medium
* New upstream release.
* Remove all patches, applied by upstream.
* Build depend on default golang 1.17.
* d/rules: set GO111MODULE to auto.
docker.io (20.10.7-0ubuntu7) jammy; urgency=medium
* SECURITY UPDATE: docker cli information disclosure on misconfiguration
- d/p/CVE-2021-41092.patch: Ensure that default authentication config
has an address.
- CVE-2021-41092
docker.io (20.10.7-0ubuntu6) devel; urgency=medium
* d/t/control: Drop unused aufs-tools as a test dependency (LP: #1947004)
docker.io (20.10.7-0ubuntu5) impish; urgency=medium
[ Sergio Durigan Junior ]
* d/t/docker-in-lxd:
Improve dep8 test. Make it run a more complex test against an
ubuntu:devel docker container, especially because glibc updates might
break docker.io. Improve test reliability when running autopkgtest
locally.
[ Steve Beattie ]
* SECURITY UPDATE: insufficiently restricted directory permissions
- d/p/CVE-2021-41091.patch: Lock down docker root dir perms.
- CVE-2021-41091
* SECURITY UPDATE: permissions modifications outside of install directory
- d/p/CVE-2021-41089.patch: chrootarchive: don't create parent dirs
outside of chroot.
- CVE-2021-41089
Date: 2023-04-27 05:49:08.809838+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/docker.io/20.10.21-0ubuntu1~18.04.3
-------------- next part --------------
Sorry, changesfile not available.
More information about the Bionic-changes
mailing list