Overview

File _patchinfo of Package patchinfo.31030

<patchinfo incident="31030">
  <issue tracker="bnc" id="1210141">docker.socket systemd configurations dosn't exist</issue>
  <issue tracker="bnc" id="1215323">[trackerbug] docker 24.0.6-ce update</issue>
  <issue tracker="bnc" id="1213229">VUL-0: CVE-2023-29406: go1.19,go1.20: net/http: insufficient sanitization of Host header</issue>
  <issue tracker="bnc" id="1217513">VUL-0: docker: mitigate power-based side channel attacks (advisory GHSA-jq35-85cj-fj4p)</issue>
  <issue tracker="bnc" id="1213500">[trackerbug] docker 24.0.4-ce update</issue>
  <issue tracker="bnc" id="1170415">VUL-0: CVE-2020-8694: kernel-source: Intel RAPL sidechannel aka PLATYPUS attack</issue>
  <issue tracker="bnc" id="1170446">VUL-0: CVE-2020-8695: ucode-intel: Intel RAPL sidechannel (SGX part)</issue>
  <issue tracker="bnc" id="1178760">VUL-0: CVE-2020-12912: kernel-source: AMD: unprivileged access to RAPL allows for side channel attacks</issue>
  <issue tracker="jsc" id="PED-6180"></issue>
  <issue tracker="cve" id="2020-8694"></issue>
  <issue tracker="cve" id="2020-8695"></issue>
  <issue tracker="cve" id="2020-12912"></issue>
  <packager>cyphar</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for docker, rootlesskit</summary>
  <description>This update for docker, rootlesskit fixes the following issues:

docker:

- Update to Docker 24.0.7-ce. See upstream changelong online at
  https://docs.docker.com/engine/release-notes/24.0/#2407>. bsc#1217513
  * Deny containers access to /sys/devices/virtual/powercap by default.
    - CVE-2020-8694 bsc#1170415
    - CVE-2020-8695 bsc#1170446
    - CVE-2020-12912 bsc#1178760

- Update to Docker 24.0.6-ce. See upstream changelong online at

  	https://docs.docker.com/engine/release-notes/24.0/#2406 . bsc#1215323

- Add a docker.socket unit file, but with socket activation effectively
  disabled to ensure that Docker will always run even if you start the socket
  individually. Users should probably just ignore this unit file. bsc#1210141

- Update to Docker 24.0.5-ce. See upstream changelong online at

	https://docs.docker.com/engine/release-notes/24.0/#2405 . bsc#1213229

This update ships docker-rootless support in the docker-rootless-extra package. (jsc#PED-6180)

rootlesskit:

- new package, for docker rootless support. (jsc#PED-6180)

</description>
  <message>Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update?</message>
</patchinfo>
openSUSE Build Service is sponsored by
Places