Format: 1.8
Date: Fri, 23 Feb 2024 08:54:28 +0530
Source: docker.io
Built-For-Profiles: noudeb
Architecture: source
Version: 20.10.24+dfsg1-1ubuntu2.2~test1
Distribution: mantic-security
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss@lists.ubuntu.com>
Changed-By: Nishit Majithia <nishit.majithia@canonical.com>
Changes:
 docker.io (20.10.24+dfsg1-1ubuntu2.2~test1) mantic-security; urgency=medium
 .
   * SECURITY UPDATE: denial-of-service
     - debian/patches/CVE-2024-23650.patch: Add more validations for nil
       values
     - CVE-2024-23650
   * SECURITY UPDATE: race condition with accessing subpaths from cache mounts
     - debian/patches/CVE-2024-23651.patch: add extra validation for submount
       sources
     - CVE-2024-23651
   * SECURITY UPDATE: container escape vulnerability
     - debian/patches/CVE-2024-23652.patch: recheck mount stub path within
       root after container run
     - CVE-2024-23652
   * SECURITY UPDATE: run a container with elevated privileges issue
     - debian/patches/CVE-2024-23653.patch: make sure interactive container
       API validates entitlements
     - CVE-2024-23653
Checksums-Sha1:
 0d05363d9b2897da112f85c9f223723cd5aaabd3 7383 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.dsc
 cd50e78c17e4bd2b9359ade0aee16dcfb303f630 51316 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.debian.tar.xz
 3964d673a32666203429bcf4a83579f5f234e5c7 26444 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1_source.buildinfo
Checksums-Sha256:
 104fe7ab932b8ddf722090517d8252b72d92d8b56ff75d92a941ed99c60d652e 7383 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.dsc
 643a3afddd1aaf747ce9c13f195675d3df40f7b97485f1a986dcefdb3da9d058 51316 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.debian.tar.xz
 a43fcbed174cd058feed6226b5db5d5eea312b337725bb2e12abc2051155ff2f 26444 docker.io_20.10.24+dfsg1-1ubuntu2.2~test1_source.buildinfo
Files:
 6e826e87e8e56ccd49df78e69473e162 7383 admin optional docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.dsc
 57ef73b57b6e3606bdcab74a5c774c5d 51316 admin optional docker.io_20.10.24+dfsg1-1ubuntu2.2~test1.debian.tar.xz
 5a6f0bf3013d783d47a7bd4d8df8bfba 26444 admin optional docker.io_20.10.24+dfsg1-1ubuntu2.2~test1_source.buildinfo
Original-Maintainer: Debian Go Packaging Team <team+pkg-go@tracker.debian.org>