Lucene search

K
oraclelinuxOracleLinuxELSA-2019-4756
HistoryAug 19, 2019 - 12:00 a.m.

docker-engine security update

2019-08-1900:00:00
linux.oracle.com
52

8.6 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

[ 18.03.1.ol-0.0.15]

  • cherry-picked fix for CVE-2018-15664 from upstream
    [18.03.1.ol-0.0.14]
  • rebuild
    [18.03.1.ol-0.0.13]
  • update for CVE-2018-20699
    [18.03.1.ol-0.0.12]
  • correct the version string of containerd
    [18.03.1.ol-0.0.11]
  • update runc for CVE-2019-5736
    [18.03.1.ol-0.0.10]
  • update Go to version 1.10.8
    [18.03.1.ol-0.0.9]
  • correct changelog
    [18.03.1.ol-0.0.8]
  • fix [orabug 28452214] and [orabug 28461404]
    [18.03.1.ol-0.0.6]
  • obsolete/provide the docker package [orabug 28216396]
  • Fix docker plugin reference resolution [orabug 28376247]
    [18.03.1.ol-1.0.4]
  • Fixed issue where RPM overwrites config files
    [17.12.0.ol-1.0.1]
  • Update docker-engine package for upstream 17.12.0
    [17.09.1.ol-1.0.2]
  • Update docker-engine package for upstream 17.09.1
    [17.06.2.ol-1.0.1]
  • Update docker-engine package for upstream 17.06.2 [orabug 26673768]
  • Migrate to new ‘ol’-based versioning
  • add docker-storage-config utility
    [17.03.1-ce-3.0.1]
  • Update docker-engine package for upstream 17.03.1
  • Enable configuration of Docker daemon via sysconfig [orabug 21804877]
  • Require UEK4 for docker 1.9 [orabug 22235639 22235645]
  • Add docker.conf for prelink [orabug 25147708]
  • Update oracle linux selinux policy to match upstream [orabug 25653794]
  • Use dockerd instead of docker daemon as it is deprecated [orabug 25653794]

8.6 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C