Overview

File _patchinfo of Package patchinfo.9604

<patchinfo incident="9604">
  <issue tracker="bnc" id="1118899">VUL-0: CVE-2018-16875: go: crypto/x509: CPU denial of service</issue>
  <issue tracker="bnc" id="1118898">VUL-0: CVE-2018-16874: go: cmd/go: directory traversal</issue>
  <issue tracker="bnc" id="1118897">VUL-0: CVE-2018-16873: go: cmd/go: remote command execution</issue>
  <issue tracker="bnc" id="1121412">should disable to building kubic multibuilded subpackage on Leap</issue>
  <issue tracker="bnc" id="1118990">L3-Question: Docker 18.06-ce can not commit images with &gt;23GB files</issue>
  <issue tracker="bnc" id="1112980">'ulimit: open files: cannot modify limit: Operation not permitted' when using cri-o</issue>
  <issue tracker="bnc" id="1001161">Docker: "--hostname" - set hostname and domainname separately</issue>
  <issue tracker="bnc" id="1115464">Out of date package: openSUSE:Factory/docker is out of date</issue>
  <issue tracker="cve" id="2018-16873"/>
  <issue tracker="cve" id="2018-16874"/>
  <issue tracker="cve" id="2018-16875"/>
  <category>security</category>
  <rating>moderate</rating>
  <packager>sgrunert</packager>
  <description>This update for containerd, docker, docker-runc and golang-github-docker-libnetwork fixes the following issues:

Security issues fixed for containerd, docker, docker-runc and golang-github-docker-libnetwork:

- CVE-2018-16873: cmd/go: remote command execution during "go get -u" (bsc#1118897)
- CVE-2018-16874: cmd/go: directory traversal in "go get" via curly braces in import paths (bsc#1118898)
- CVE-2018-16875: crypto/x509: CPU denial of service (bsc#1118899)

Non-security issues fixed for docker:

- Disable leap based builds for kubic flavor (bsc#1121412)
- Allow users to explicitly specify the NIS domainname of a container (bsc#1001161)
- Update docker.service to match upstream and avoid rlimit problems (bsc#1112980)
- Allow docker images larger then 23GB (bsc#1118990)
- Docker version update to version 18.09.0-ce (bsc#1115464)

This update was imported from the SUSE:SLE-15:Update update project.</description>
  <summary>Security update for docker</summary>
  <message>Updating docker will restart the docker service, which may stop some of your docker containers. Do you want to proceed with the update?</message>
</patchinfo>
openSUSE Build Service is sponsored by
Places