update to 19.03.8 to get improved mitigation for CVE-2019-14271

Bug #1867068 reported by Michael Hudson-Doyle
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
docker.io (Ubuntu)
Fix Released
Undecided
Unassigned
Bionic
Fix Released
Undecided
Unassigned
Eoan
Won't Fix
Undecided
Unassigned

Bug Description

[impact]
Docker 19.03.0 (which was never in the archive) had a CVE, CVE-2019-14271 which was mostly fixed in 19.03.1. 19.03.8 improves the fix.

[test case]
autopkgtests per https://wiki.ubuntu.com/DockerUpdates

[regression potential]
as usual, we believe delivering an upstream experience is worth the risk of regression

CVE References

Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package docker.io - 19.03.8-0ubuntu1

---------------
docker.io (19.03.8-0ubuntu1) focal; urgency=medium

  * Update to 19.03.8 upstream release (LP: #1867068)
    - Improve mitigation for CVE-2019-14271 for some nscd configuration.

 -- Tianon Gravi <email address hidden> Wed, 11 Mar 2020 15:48:33 -0700

Changed in docker.io (Ubuntu):
status: New → Fix Released
Revision history for this message
Brian Murray (brian-murray) wrote :

The Eoan Ermine has reached end of life, so this bug will not be fixed for that release

Changed in docker.io (Ubuntu Eoan):
status: New → Won't Fix
Revision history for this message
Launchpad Janitor (janitor) wrote :

This bug was fixed in the package docker.io - 20.10.2-0ubuntu1~18.04.2

---------------
docker.io (20.10.2-0ubuntu1~18.04.2) bionic; urgency=medium

  * d/rules: pass --no-restart-after-upgrade to dh_installsystemd.
    The --no-start flag we pass to dh_installsystemd in d/rules is supposed
    to also disable --restart-after-upgrade, however, this feature was buggy
    before the now fixed debhelper 13. Due to that we need to manually add
    --no-restart-after-upgrade.

docker.io (20.10.2-0ubuntu1~18.04.1) bionic; urgency=medium

  * Backport version 20.10.2-0ubuntu1 from Hirsute (LP: #1919322).
    - d/control: do not b-d on libbtrfs-dev, it is not available in Bionic.

 -- Lucas Kanashiro <email address hidden> Mon, 29 Mar 2021 16:27:41 -0300

Changed in docker.io (Ubuntu Bionic):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  
Everyone can see this information.

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.