Security update for docker SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2015:0905-1 Final 1 1 2015-05-11T15:47:26Z current 2015-05-11T15:47:26Z 2015-05-11T15:47:26Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for docker docker was updated to version 1.6.1 to fix several security and non-security issues. - Updated to version 1.6.1 (2015-05-07) [bnc#930235] * Security - Fix read/write /proc paths (CVE-2015-3630) - Prohibit VOLUME /proc and VOLUME / (CVE-2015-3631) - Fix opening of file-descriptor 1 (CVE-2015-3627) - Fix symlink traversal on container respawn allowing local privilege escalation (CVE-2015-3629) - Prohibit mount of /sys * Runtime - Update Apparmor policy to not allow mounts - Updated libcontainer-apparmor-fixes.patch: adapt patch to reflect changes introduced by docker 1.6.1 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.html E-Mail link for openSUSE-SU-2015:0905-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE 13.2 docker-1.6.1-28.1 docker-bash-completion-1.6.1-28.1 docker-debuginfo-1.6.1-28.1 docker-debugsource-1.6.1-28.1 docker-zsh-completion-1.6.1-28.1 docker-1.6.1-28.1 as a component of openSUSE 13.2 docker-bash-completion-1.6.1-28.1 as a component of openSUSE 13.2 docker-debuginfo-1.6.1-28.1 as a component of openSUSE 13.2 docker-debugsource-1.6.1-28.1 as a component of openSUSE 13.2 docker-zsh-completion-1.6.1-28.1 as a component of openSUSE 13.2 Libcontainer and Docker Engine before 1.6.1 opens the file-descriptor passed to the pid-1 process before performing the chroot, which allows local users to gain privileges via a symlink attack in an image. CVE-2015-3627 openSUSE 13.2:docker-1.6.1-28.1 openSUSE 13.2:docker-bash-completion-1.6.1-28.1 openSUSE 13.2:docker-debuginfo-1.6.1-28.1 openSUSE 13.2:docker-debugsource-1.6.1-28.1 openSUSE 13.2:docker-zsh-completion-1.6.1-28.1 moderate 3.2 AV:L/AC:L/Au:S/C:P/I:P/A:N Please Install the update. http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.html https://www.suse.com/security/cve/CVE-2015-3627.html CVE-2015-3627 https://bugzilla.suse.com/930235 SUSE Bug 930235 https://bugzilla.suse.com/945060 SUSE Bug 945060 Libcontainer 1.6.0, as used in Docker Engine, allows local users to escape containerization ("mount namespace breakout") and write to arbitrary file on the host system via a symlink attack in an image when respawning a container. CVE-2015-3629 openSUSE 13.2:docker-1.6.1-28.1 openSUSE 13.2:docker-bash-completion-1.6.1-28.1 openSUSE 13.2:docker-debuginfo-1.6.1-28.1 openSUSE 13.2:docker-debugsource-1.6.1-28.1 openSUSE 13.2:docker-zsh-completion-1.6.1-28.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.html https://www.suse.com/security/cve/CVE-2015-3629.html CVE-2015-3629 https://bugzilla.suse.com/930235 SUSE Bug 930235 https://bugzilla.suse.com/945060 SUSE Bug 945060 Docker Engine before 1.6.1 uses weak permissions for (1) /proc/asound, (2) /proc/timer_stats, (3) /proc/latency_stats, and (4) /proc/fs, which allows local users to modify the host, obtain sensitive information, and perform protocol downgrade attacks via a crafted image. CVE-2015-3630 openSUSE 13.2:docker-1.6.1-28.1 openSUSE 13.2:docker-bash-completion-1.6.1-28.1 openSUSE 13.2:docker-debuginfo-1.6.1-28.1 openSUSE 13.2:docker-debugsource-1.6.1-28.1 openSUSE 13.2:docker-zsh-completion-1.6.1-28.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.html https://www.suse.com/security/cve/CVE-2015-3630.html CVE-2015-3630 https://bugzilla.suse.com/930235 SUSE Bug 930235 https://bugzilla.suse.com/945060 SUSE Bug 945060 Docker Engine before 1.6.1 allows local users to set arbitrary Linux Security Modules (LSM) and docker_t policies via an image that allows volumes to override files in /proc. CVE-2015-3631 openSUSE 13.2:docker-1.6.1-28.1 openSUSE 13.2:docker-bash-completion-1.6.1-28.1 openSUSE 13.2:docker-debuginfo-1.6.1-28.1 openSUSE 13.2:docker-debugsource-1.6.1-28.1 openSUSE 13.2:docker-zsh-completion-1.6.1-28.1 moderate Please Install the update. http://lists.opensuse.org/opensuse-updates/2015-05/msg00023.html https://www.suse.com/security/cve/CVE-2015-3631.html CVE-2015-3631 https://bugzilla.suse.com/930235 SUSE Bug 930235 https://bugzilla.suse.com/945060 SUSE Bug 945060