ELSA-2015-3037

ULN >
Oracle Linux Errata repository >
ELSA-2015-3037

ELSA-2015-3037 - docker security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2015-05-20

Description

[1.6.1-1.0.1]
- Update source to 1.6.1 from https://github.com/docker/docker/releases/tag/v1.6.1
Symlink traversal on container respawn allows local privilege escalation (CVE-2015-3629)
Insecure opening of file-descriptor 1 leading to privilege escalation (CVE-2015-3627)
Read/write proc paths allow host modification & information disclosure (CVE-2015-3630)
Volume mounts allow LSM profile escalation (CVE-2015-3631)
AppArmor policy improvements

Related CVEs

CVE-2015-3630

CVE-2015-3627

CVE-2015-3629

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	docker-1.6.1-1.0.1.el6.src.rpm	e9a3f412bca17ad4c047e8cc789a180fc03478ed3db7c38c06fde5d5abcdf0bd	-	ol6_x86_64_addons
	docker-1.6.1-1.0.1.el6.x86_64.rpm	770429d136087ecb0fcd404ed8c86884d4d079940f706cf958806f648ac854af	-	ol6_x86_64_addons
	docker-devel-1.6.1-1.0.1.el6.x86_64.rpm	47385f9e82f94e1a1bf37d173f154f7bcc203205d90dea54f31017f3c8665efd	-	ol6_x86_64_addons
	docker-logrotate-1.6.1-1.0.1.el6.x86_64.rpm	194b6dac576b5826c8276280869b5517248994402d61bfbda90ff82c7a579d28	-	ol6_x86_64_addons
	docker-pkg-devel-1.6.1-1.0.1.el6.x86_64.rpm	9b9a2741b1658ac03de023a6bcb610de273c5f9f0645326413bdb61204de6467	-	ol6_x86_64_addons
	docker-vim-1.6.1-1.0.1.el6.x86_64.rpm	e969f28ca6538c417ae0e659e3155cd0dcb84ffe726d515285611955f07afa99	-	ol6_x86_64_addons
	docker-zsh-completion-1.6.1-1.0.1.el6.x86_64.rpm	79cc3b59115c8206e2bad4842bc2890414bc600b4c668e21bd76e263d9858bca	-	ol6_x86_64_addons

Oracle Linux 7 (x86_64)	docker-1.6.1-1.0.1.el7.src.rpm	79c499649bcff93734d19398922abafac50180d7fe474ccf43592be729311bfb	-	ol7_x86_64_addons
	docker-1.6.1-1.0.1.el7.x86_64.rpm	6919364064003c46d26afc8aa3c6e24d90f757e6aea0203cb389efcad044448c	-	ol7_x86_64_addons
	docker-devel-1.6.1-1.0.1.el7.x86_64.rpm	acc9b7bc4963eeaa7451d0ecb932f8bc70bcaeb39a7889906ac0bb32c69c8de9	-	ol7_x86_64_addons
	docker-logrotate-1.6.1-1.0.1.el7.x86_64.rpm	fa0df357f69b6e6fc15999723e998c6444f9b548886f009ac6ef089b30817eb2	-	ol7_x86_64_addons
	docker-pkg-devel-1.6.1-1.0.1.el7.x86_64.rpm	44f119a9818a97081d19c2fc1cf64b9e70bfa19a89a9c855e87fb17948a9f263	-	ol7_x86_64_addons
	docker-vim-1.6.1-1.0.1.el7.x86_64.rpm	fdc1303a0a80a262422c67287eaaf0ffb5a38a5ef8c97e07410aa2c8ecfa08e1	-	ol7_x86_64_addons
	docker-zsh-completion-1.6.1-1.0.1.el7.x86_64.rpm	584978ff6cc83c21f085a42a4ea026aacbfae566d5e235f6ec22fcd3ba3d34f9	-	ol7_x86_64_addons

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691