[El-errata] ELSA-2015-3085 Important: Oracle Linux 7 docker-engine security update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Wed Oct 14 21:05:06 PDT 2015


Oracle Linux Security Advisory ELSA-2015-3085

http://linux.oracle.com/errata/ELSA-2015-3085.html

The following updated rpms for Oracle Linux 7 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
docker-engine-1.8.3-1.0.1.el7.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/docker-engine-1.8.3-1.0.1.el7.src.rpm



Description of changes:

[1.8.3-1.0.1]
- Enable configuration of Docker daemon via sysconfig [orabug 21804877]
- Add documentation files to binary RPM

[1.8.3]
- Fix layer IDs lead to local graph poisoning (CVE-2014-8178)
- Fix manifest validation and parsing logic errors allow pull-by-digest 
validation bypass (CVE-2014-8179)
- Add --disable-legacy-registry to prevent a daemon from using a v1 registry




More information about the El-errata mailing list