Overview

File _patchinfo of Package patchinfo.9732

<patchinfo incident="9732">
  <issue id="1104821" tracker="bnc">Make cri-o default for kubernetes on Kubic</issue>
  <issue id="1118898" tracker="bnc">VUL-0: CVE-2018-16874: go: cmd/go: directory traversal</issue>
  <issue id="1108038" tracker="bnc">docker hard-requires git-core</issue>
  <issue id="1114209" tracker="bnc">go: provides(API) causes "have option" unresolveable builds</issue>
  <issue id="1118897" tracker="bnc">VUL-0: CVE-2018-16873: go: cmd/go: remote command execution</issue>
  <issue id="1118899" tracker="bnc">VUL-0: CVE-2018-16875: go: crypto/x509: CPU denial of service</issue>
  <issue id="1105000" tracker="bnc">harmonise docker and docker-kubic packaging</issue>
  <issue id="1094680" tracker="bnc">Pod in terminating status</issue>
  <issue id="1080978" tracker="bnc">caasp v2 to v3 upgrade fails</issue>
  <issue id="1095817" tracker="bnc">containers packages fail randomly due to %check</issue>
  <issue id="1084533" tracker="bnc">3rd party registries used the default Docker certificate instead of the one specified for the registry</issue>
  <issue id="1113978" tracker="bnc">go 1.10 fails to build on ppc64le</issue>
  <issue id="1102522" tracker="bnc">Docker v18.06-ce upgrade.</issue>
  <issue id="1047218" tracker="bnc">trackerbug: packages do not build reproducibly from including build time</issue>
  <issue id="1098017" tracker="bnc">go1.10 fails to rebuild on Leap15 ppc64le</issue>
  <issue id="1113313" tracker="bnc">need SLE12 containers module docker update to 18.06.1-ce as soon as possible</issue>
  <issue id="1086185" tracker="bnc">Kubelet: reserve compute resources for system daemons</issue>
  <issue id="1074971" tracker="bnc">[TRACKERBUG] Enabling mirroring of private
  registries with docker</issue>
  <issue id="1081495" tracker="bnc">golang: arbitrary command execution via VCS path</issue>
  <issue id="325877" tracker="fate" />
  <issue id="2018-16873" tracker="cve" />
  <issue id="2018-16875" tracker="cve" />
  <issue id="2018-16874" tracker="cve" />
  <issue id="2018-7187" tracker="cve" />
  <issue id="1119634" tracker="bnc">go: multi-version installation is broken on version switch</issue>
  <issue id="1119706" tracker="bnc">go get broken for   import path patterns containing "..."</issue>
  <category>security</category>
  <rating>important</rating>
  <packager>cyphar</packager>
  <description>
This update for containerd, docker and go fixes the following issues:

containerd and docker:

- Add backport for building containerd (bsc#1102522, bsc#1113313)
- Upgrade to containerd v1.1.2, which is required for Docker v18.06.1-ce.
  (bsc#1102522)
- Enable seccomp support on SLE12 (fate#325877)
- Update to containerd v1.1.1, which is the required version for the Docker
  v18.06.0-ce upgrade. (bsc#1102522)
- Put containerd under the podruntime slice (bsc#1086185) 
- 3rd party registries used the default Docker certificate (bsc#1084533)
- Handle build breakage due to missing 'export GOPATH' (caused by resolution of
  boo#1119634). I believe Docker is one of the only packages with this problem.

go:
  
- golang: arbitrary command execution via VCS path (bsc#1081495, CVE-2018-7187)
- Make profile.d/go.sh no longer set GOROOT=, in order to make switching
  between versions no longer break. This ends up removing the need for go.sh
  entirely (because GOPATH is also set automatically) (boo#1119634)
- Fix a regression that broke go get for import path patterns containing "..."
  (bsc#1119706)

Additionally, the package go1.10 has been added.
</description>
  <summary>Security update for containerd, docker and go</summary>
  <message>Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update?</message>
</patchinfo>
openSUSE Build Service is sponsored by
Places