[El-errata] ELSA-2015-3085 Important: Oracle Linux 7 docker-engine security update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Oct 14 21:05:06 PDT 2015
Oracle Linux Security Advisory ELSA-2015-3085
http://linux.oracle.com/errata/ELSA-2015-3085.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
docker-engine-1.8.3-1.0.1.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/docker-engine-1.8.3-1.0.1.el7.src.rpm
Description of changes:
[1.8.3-1.0.1]
- Enable configuration of Docker daemon via sysconfig [orabug 21804877]
- Add documentation files to binary RPM
[1.8.3]
- Fix layer IDs lead to local graph poisoning (CVE-2014-8178)
- Fix manifest validation and parsing logic errors allow pull-by-digest
validation bypass (CVE-2014-8179)
- Add --disable-legacy-registry to prevent a daemon from using a v1 registry
More information about the El-errata
mailing list