From ec97bc93945ef1f7c4cdf2e820d4770c120d1c90 Mon Sep 17 00:00:00 2001 From: Jessica Frazelle Date: Wed, 7 Oct 2015 10:50:58 -0700 Subject: [PATCH 1/2] bump version for v1.8.3 Signed-off-by: Jessica Frazelle (cherry picked from commit f4bf5c7026816785d9f63c07e87f9450a49f2403) --- CHANGELOG.md | 24 ++++++++++++++++-------- VERSION | 2 +- 2 files changed, 17 insertions(+), 9 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 3b92943cc0..51de61470d 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,8 +1,16 @@ # Changelog +## 1.8.3 (2015-10-12) + +### Distribution + +- Fix layer IDs lead to local graph poisoning (CVE-2014-8178) +- Fix manifest validation and parsing logic errors allow pull-by-digest validation bypass (CVE-2014-8179) ++ Add `--disable-legacy-registry` to prevent a daemon from using a v1 registry + ## 1.8.2 (2015-09-10) -### Distribution: +### Distribution - Fixes rare edge case of handling GNU LongLink and LongName entries. - Fix ^C on docker pull. @@ -10,7 +18,7 @@ - Fix issue that caused the daemon to panic when loggers weren't configured properly. - Fix goroutine leak pulling images from registry V2. -### Runtime: +### Runtime - Fix a bug mounting cgroups for docker daemons running inside docker containers. - Initialize log configuration properly. @@ -19,11 +27,11 @@ - Handle `-q` flag in `docker ps` properly when there is a default format. -### Networking: +### Networking - Fix several corner cases with netlink. -### Contrib: +### Contrib - Fix several issues with bash completion. @@ -268,7 +276,7 @@ #### Notable Features since 1.3.0 + Set key=value labels to the daemon (displayed in `docker info`), applied with new `-label` daemon flag -+ Add support for `ENV` in Dockerfile of the form: ++ Add support for `ENV` in Dockerfile of the form: `ENV name=value name2=value2...` + New Overlayfs Storage Driver + `docker info` now returns an `ID` and `Name` field @@ -730,7 +738,7 @@ - Fix broken images API for version less than 1.7 - Use the right encoding for all API endpoints which return JSON - Move remote api client to api/ -- Queue calls to the API using generic socket wait +- Queue calls to the API using generic socket wait #### Runtime @@ -810,7 +818,7 @@ With the ongoing changes to the networking and execution subsystems of docker te - Do not add hostname when networking is disabled * Return most recent image from the cache by date - Return all errors from docker wait -* Add Content-Type Header "application/json" to GET /version and /info responses +* Add Content-Type Header "application/json" to GET /version and /info responses #### Other @@ -838,7 +846,7 @@ With the ongoing changes to the networking and execution subsystems of docker te #### Runtime - Only get the image's rootfs when we need to calculate the image size -- Correctly handle unmapping UDP ports +- Correctly handle unmapping UDP ports * Make CopyFileWithTar use a pipe instead of a buffer to save memory on docker build - Fix login message to say pull instead of push - Fix "docker load" help by removing "SOURCE" prompt and mentioning STDIN diff --git a/VERSION b/VERSION index b57588e592..a7ee35a3ea 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -1.9.0-dev +1.8.3 From 01ca4f621d4eab91799712622f0c1146cb361f2d Mon Sep 17 00:00:00 2001 From: Jessica Frazelle Date: Mon, 12 Oct 2015 11:18:28 -0700 Subject: [PATCH 2/2] bump version back to 1.9.0-dev Signed-off-by: Jessica Frazelle --- VERSION | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/VERSION b/VERSION index a7ee35a3ea..b57588e592 100644 --- a/VERSION +++ b/VERSION @@ -1 +1 @@ -1.8.3 +1.9.0-dev