[1/2] docker-engine: security bump to version 1.12.6

Message ID	20170122213956.1805-1-peter@korsgaard.com
State	Accepted
Headers	show Return-Path: <buildroot-bounces@busybox.net> From: Peter Korsgaard <peter@korsgaard.com> To: buildroot@buildroot.org Date: Sun, 22 Jan 2017 22:39:55 +0100 Message-Id: <20170122213956.1805-1-peter@korsgaard.com> Subject: [Buildroot] [PATCH 1/2] docker-engine: security bump to version 1.12.6 Precedence: list MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Errors-To: buildroot-bounces@busybox.net Sender: "buildroot" <buildroot-bounces@busybox.net>

Message ID

20170122213956.1805-1-peter@korsgaard.com

State

Accepted

Headers

From: Peter Korsgaard <peter@korsgaard.com>
To: buildroot@buildroot.org
Date: Sun, 22 Jan 2017 22:39:55 +0100
Message-Id: <20170122213956.1805-1-peter@korsgaard.com>
Subject: [Buildroot] [PATCH 1/2] docker-engine: security bump to version
	1.12.6
Precedence: list
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: buildroot-bounces@busybox.net
Sender: "buildroot" <buildroot-bounces@busybox.net>

Commit Message

Peter Korsgaard Jan. 22, 2017, 9:39 p.m. UTC

Fixes runC privilege escalation (CVE-2016-9962).

Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
---
 package/docker-engine/docker-engine.hash | 2 +-
 package/docker-engine/docker-engine.mk   | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

Comments

Thomas Petazzoni Jan. 23, 2017, 8:09 a.m. UTC | #1

Hello,

On Sun, 22 Jan 2017 22:39:55 +0100, Peter Korsgaard wrote:
> Fixes runC privilege escalation (CVE-2016-9962).
> 
> Signed-off-by: Peter Korsgaard <peter@korsgaard.com>
> ---
>  package/docker-engine/docker-engine.hash | 2 +-
>  package/docker-engine/docker-engine.mk   | 4 ++--
>  2 files changed, 3 insertions(+), 3 deletions(-)

Both applied to master, thanks!

Thomas

diff --git a/package/docker-engine/docker-engine.hash b/package/docker-engine/docker-engine.hash
index 6697d8a30..5e09453e4 100644
--- a/package/docker-engine/docker-engine.hash
+++ b/package/docker-engine/docker-engine.hash
@@ -1,2 +1,2 @@ 
 # Locally calculated
-sha256 81b337368efafb631a75f6ad5469413fd5828ce672592c374adf894dc05abd38  docker-engine-v1.12.5.tar.gz
+sha256 0413f3513c2a6842ed9cf837154c8a722e9b34cb36b33430348489baa183707e  docker-engine-v1.12.6.tar.gz
diff --git a/package/docker-engine/docker-engine.mk b/package/docker-engine/docker-engine.mk
index 2cd71dd89..d575662dd 100644
--- a/package/docker-engine/docker-engine.mk
+++ b/package/docker-engine/docker-engine.mk
@@ -4,8 +4,8 @@ 
 #
 ################################################################################
 
-DOCKER_ENGINE_VERSION = v1.12.5
-DOCKER_ENGINE_COMMIT = 7392c3b0ce0f9d3e918a321c66668c5d1ef4f689
+DOCKER_ENGINE_VERSION = v1.12.6
+DOCKER_ENGINE_COMMIT = 78d18021ecba00c00730dec9d56de6896f9e708d
 DOCKER_ENGINE_SITE = $(call github,docker,docker,$(DOCKER_ENGINE_VERSION))
 
 DOCKER_ENGINE_LICENSE = Apache-2.0

[1/2] docker-engine: security bump to version 1.12.6

Commit Message

Comments

Patch