Description: "An issue was discovered in Docker Engine before 19.03.11. An attacker in a container, with the CAP_NET_RAW capability, can craft IPv6 router advertisements, and consequently spoof external IPv6 hosts, obtain sensitive information, or cause a denial of service."
Please bump to 19.03.11.
ping
ping. Please bump to 19.03.11.
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=7dbf23f4a87e5e05138d5f348bf26f2407518d89 commit 7dbf23f4a87e5e05138d5f348bf26f2407518d89 Author: William Hubbs <williamh@gentoo.org> AuthorDate: 2020-08-01 19:13:07 +0000 Commit: William Hubbs <williamh@gentoo.org> CommitDate: 2020-08-01 19:16:17 +0000 app-emulation/docker: 19.03.12 security bump Bug: https://bugs.gentoo.org/729208 Signed-off-by: William Hubbs <williamh@gentoo.org> app-emulation/docker/Manifest | 1 + app-emulation/docker/docker-19.03.12.ebuild | 314 ++++++++++++++++++++++++++++ 2 files changed, 315 insertions(+)
Thanks, please cleanup <19.03.12 when ready!
The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=c36679efd436befb08ce71b20194a55c1f4de0b5 commit c36679efd436befb08ce71b20194a55c1f4de0b5 Author: William Hubbs <williamh@gentoo.org> AuthorDate: 2020-08-22 21:15:58 +0000 Commit: William Hubbs <williamh@gentoo.org> CommitDate: 2020-08-22 21:16:15 +0000 app-emulation/docker: remove old Bug: https://bugs.gentoo.org/729208 Signed-off-by: William Hubbs <williamh@gentoo.org> app-emulation/docker/Manifest | 1 - app-emulation/docker/docker-19.03.8.ebuild | 314 ----------------------------- 2 files changed, 315 deletions(-)
Thanks.
This issue was resolved and addressed in GLSA 202008-15 at https://security.gentoo.org/glsa/202008-15 by GLSA coordinator Sam James (sam_c).