Overview

File _patchinfo of Package patchinfo.4029

<patchinfo incident="4029">
  <issue id="1012568" tracker="bnc">VUL-0: CVE-2016-9962: runc: container escape vulnerability</issue>
  <issue id="1019251" tracker="bnc">Docker 1.12.5 -- Docker commands are failing -- Error: Cannot connect to the Docker daemon.</issue>
  <issue id="2016-9962" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>jordimassaguerpla</packager>
  <description>
This update for 
- containerd
- docker to 1.12.6
- runc
fixes the two issues.

This security issue was fixed:

- CVE-2016-9962: A difficult to exploit race condition caused by passing a file descriptor from the host's filesystem into the container could have allowed the guest to escape(bsc#1012568).

For docker this non-security issue was fixed:

- bsc#1019251: Waiting when starting the docker service 
</description>
  <summary>Security update for containerd, docker, runc</summary>
  <message>Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update?</message>
</patchinfo>
openSUSE Build Service is sponsored by
Places