[ubuntu/bionic-security] docker.io 20.10.21-0ubuntu1~18.04.3 (Accepted)

Nishit Majithia nishit.majithia at canonical.com
Thu Apr 27 08:47:07 UTC 2023 

docker.io (20.10.21-0ubuntu1~18.04.3) bionic-security; urgency=medium

  * No change rebuild due to golang-1.18 update

docker.io (20.10.21-0ubuntu1~18.04.2) bionic; urgency=medium

  * d/t/basic-smoke: do not pass mirror url to debootstrap call, since, in
    Ubuntu, this url changes for non-amd64/non-i386 architectures. By not
    passing the url, we pick the default one, which will be correct for the
    architecture being tested.

docker.io (20.10.21-0ubuntu1~18.04.1) bionic; urgency=medium

  * Backport version 20.10.21-0ubuntu1 from Lunar (LP: #1996909).
    - Build with Go 1.18.
    - d/control: do not b-d on libbtrfs-dev, it is not available in Bionic.
    - d/control: do not build docker.io for riscv64, not supported in Bionic.
    - d/t/basic-smoke: debootstrap bionic instead of debian stable.

docker.io (20.10.21-0ubuntu1) lunar; urgency=medium

  * New upstream release.

docker.io (20.10.16-0ubuntu1) kinetic; urgency=medium

  * New upstream release.

docker.io (20.10.12-0ubuntu4) jammy; urgency=medium

  * Enable riscv64 architecture (LP: #1963920)

docker.io (20.10.12-0ubuntu2) jammy; urgency=medium

  * d/t/docker-in-lxd: Match "file:/" instead of "file:///" on
    copy_local_apt_files.
    The command "apt-get indextargets" returns a URI field with "file:/"
    as the prefix.  We've been trying to match "file:///", which is
    sometimes unsuccessful and leads to errors because the local apt cache
    is not copied over to the container.  We can use "file:/" instead,
    which will work on both scenarios.  It's also not a problem to just
    strip the "file:" prefix, because even paths like "///var/cache" are
    correctly resolved by the filesystem.

docker.io (20.10.12-0ubuntu1) jammy; urgency=medium

  * New upstream release.
  * Remove all patches, applied by upstream.
  * Build depend on default golang 1.17.
  * d/rules: set GO111MODULE to auto.

docker.io (20.10.7-0ubuntu7) jammy; urgency=medium

  * SECURITY UPDATE: docker cli information disclosure on misconfiguration
    - d/p/CVE-2021-41092.patch: Ensure that default authentication config
    has an address.
    - CVE-2021-41092

docker.io (20.10.7-0ubuntu6) devel; urgency=medium

  * d/t/control: Drop unused aufs-tools as a test dependency (LP: #1947004)

docker.io (20.10.7-0ubuntu5) impish; urgency=medium

  [ Sergio Durigan Junior ]
  * d/t/docker-in-lxd:
    Improve dep8 test.  Make it run a more complex test against an
    ubuntu:devel docker container, especially because glibc updates might
    break docker.io.  Improve test reliability when running autopkgtest
    locally.

  [ Steve Beattie ]
  * SECURITY UPDATE: insufficiently restricted directory permissions
    - d/p/CVE-2021-41091.patch: Lock down docker root dir perms.
    - CVE-2021-41091
  * SECURITY UPDATE: permissions modifications outside of install directory
    - d/p/CVE-2021-41089.patch: chrootarchive: don't create parent dirs
      outside of chroot.
    - CVE-2021-41089

Date: 2023-04-27 05:49:08.809838+00:00
Changed-By: Nishit Majithia <nishit.majithia at canonical.com>
https://launchpad.net/ubuntu/+source/docker.io/20.10.21-0ubuntu1~18.04.3
-------------- next part --------------
Sorry, changesfile not available.

More information about the Bionic-changes mailing list