[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

utopic has seen the end of its life and is no longer receiving any updates. Marking the utopic task for this ticket as "Won't Fix". ** Changed in: docker.io (Ubuntu Utopic) Status: Confirmed => Won't Fix -- You received this bug notification because you are a member of Ubuntu Bugs, which

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

This bug was fixed in the package docker.io - 1.6.2~dfsg1-1ubuntu4~14.04.1 --- docker.io (1.6.2~dfsg1-1ubuntu4~14.04.1) trusty; urgency=medium * Backport to Ubuntu 14.04 (LP: #1454719). * Disabled - d/p/lxc.autodev-support.patch to minimise regression risk as it is not r

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

At this time, there's no action for the Ubuntu Security Sponsors team to take, so I'm unsubscribing that team from this bug. When the Technical Board grants the MRE for docker, please resubscribe the team, and we'll take action on it then. Thanks! -- You received this bug notification because yo

Re: [Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

Doh. Sorry. I misspoke. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To manage notifications about this bug go to: https://bugs.

Re: [Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 23/01/15 02:18, Dustin Kirkland  wrote: > We do have a standing exception to update Docker's major versions > in 14.04. Not yet we don't - please see the discussion on the technical-board ML. - -- James Page Ubuntu and Debian Developer james.p

Re: [Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

Hey Tyler, We do have a standing exception to update Docker's major versions in 14.04. :-Dustin On Thu, Jan 22, 2015 at 1:44 PM, Tyler Hicks wrote: > Hi James - I took a quick look at the proposed updates to docker.io in > 14.04 and 14.10. What you're proposing would update docker from version

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

Hi James - I took a quick look at the proposed updates to docker.io in 14.04 and 14.10. What you're proposing would update docker from version 1.0.1 on 14.04, and version 1.2.0 on 14.10, to version 1.3.3. That's not how we typically do security updates in our stable releases. We backport the specif

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

Revised packages included the fix for bug 1404300 are in: https://launchpad.net/~james-page/+archive/ubuntu/docker I've requested the security team review. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/b

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

Security updates blocked by bug 1404300 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To manage notifications about this bug go to:

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

** Branch linked: lp:ubuntu/docker.io -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To manage notifications about this bug go to: h

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

This bug was fixed in the package docker.io - 1.3.3~dfsg1-1ubuntu1 --- docker.io (1.3.3~dfsg1-1ubuntu1) vivid; urgency=medium * Merge from Debian unstable (LP: #1396572), remaining changes: - d/p/sync-apparmor-with-lxc.patch: Update AppArmor policy to be in sync with LXC.

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

** Changed in: docker.io (Ubuntu Vivid) Assignee: (unassigned) => James Page (james-page) ** Changed in: docker.io (Ubuntu Vivid) Status: Confirmed => In Progress -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bug

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

docker 1.3.3 was uploaded to Debian unstable ~4 hrs ago - as soon as launchpad notices, I'll merge into vivid. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerab

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

** Changed in: docker.io (Ubuntu Vivid) Status: Fix Released => Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To m

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

** Branch linked: lp:~james-page/ubuntu/utopic/docker.io/lp.1396572 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To manage notific

[Bug 1396572] Re: Critcial security vulnerabilties in docker < 1.3.3

** Summary changed: - Critcial security vulnerabilties in docker < 1.3.2 + Critcial security vulnerabilties in docker < 1.3.3 ** CVE added: http://www.cve.mitre.org/cgi- bin/cvename.cgi?name=2014-9357 ** Description changed: Today, we are releasing Docker 1.3.2 in order to address two critica