update to 19.03.8 to get improved mitigation for CVE-2019-14271

Bug #1867068 reported by Michael Hudson-Doyle on 2020-03-11
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
docker.io (Ubuntu)
Undecided
Unassigned
Bionic
Undecided
Unassigned
Eoan
Undecided
Unassigned

Bug Description

[impact]
Docker 19.03.0 (which was never in the archive) had a CVE, CVE-2019-14271 which was mostly fixed in 19.03.1. 19.03.8 improves the fix.

[test case]
autopkgtests per https://wiki.ubuntu.com/DockerUpdates

[regression potential]
as usual, we believe delivering an upstream experience is worth the risk of regression

CVE References

Launchpad Janitor (janitor) wrote :

This bug was fixed in the package docker.io - 19.03.8-0ubuntu1

---------------
docker.io (19.03.8-0ubuntu1) focal; urgency=medium

  * Update to 19.03.8 upstream release (LP: #1867068)
    - Improve mitigation for CVE-2019-14271 for some nscd configuration.

 -- Tianon Gravi <email address hidden> Wed, 11 Mar 2020 15:48:33 -0700

Changed in docker.io (Ubuntu):
status: New → Fix Released
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers