Docker 20.10.18 has been released today (September 9), fixing a security issue:
Mageia 8 is also affected.
Also don't forget to look at Bug 30647.
Fixed upstream in 20.10.18
I recommend building the golang update first.
Fedora has issued an advisory for this today (September 15):
Docker bugfix release 20.10.19 is out too, just FYI:
Docker 20.10.20 is out, with a mitigation for a Git CVE-2022-39253 (Bug 30985):
(In reply to David Walser from comment #5)
> Docker 20.10.20 is out, with a mitigation for a Git CVE-2022-39253 (Bug
Fedora has issued an advisory for this on October 22:
Still working on the cli build part which isn't working as before :-(
Docker bugfix release 20.10.21 is out too, just FYI:
(In reply to David Walser from comment #8)
> Docker bugfix release 20.10.21 is out too, just FYI:
and it also fixes a security issue:
Fixed upstream in 20.10.18 =>
Fixed upstream in 20.10.21Summary:
docker new security issue CVE-2022-36109 =>
docker new security issues CVE-2022-29153 and CVE-2022-36109
It possibly fixes CVE-2022-3920 in a bundled component as well:
docker 20.10.22 pushed to mga8 updates_testing.
Works for me with the new docker-containerd 1.6.14 on mga8.
Will work now that it builds on the other remaining docker related bugs. So may generate new updates again.
Fixed upstream in 20.10.21 =>
Same version also pushed to cauldron
Used qarepo to download all packages in Comment 13, and installed all of them plus dependencies, 66 packages in all. Most of the dependencies were for the devel package. There were no installation issues.
Entirely out of my element here, so I'm trying to more or less follow Len's test from Bug 30205:
Added my user to the docker group, started the docker service, and checked status, which looked OK to my untrained eye.
[tom@localhost ~]$ docker run hello-world
Unable to find image 'hello-world:latest' locally
latest: Pulling from library/hello-world
2db29710123e: Pull complete
Status: Downloaded newer image for hello-world:latest
Hello from Docker!
This message shows that your installation appears to be working correctly.
[tom@localhost ~]$ docker run -it fedora:latest bash
Unable to find image 'fedora:latest' locally
latest: Pulling from library/fedora
cd974119263e: Pull complete
Status: Downloaded newer image for fedora:latest
[root@f54276031bea /]# dnf install zsh
Fedora 37 - x86_64 5.3 MB/s | 64 MB 00:12
Fedora 37 openh264 (From Cisco) - x86_64 1.9 kB/s | 2.5 kB 00:01
Fedora Modular 37 - x86_64 1.9 MB/s | 3.0 MB 00:01
Fedora 37 - x86_64 - Updates 3.8 MB/s | 20 MB 00:05
Fedora Modular 37 - x86_64 - Updates 855 kB/s | 1.1 MB 00:01
Last metadata expiration check: 0:00:01 ago on Thu Jan 12 00:00:01 2023.
Package Architecture Version Repository Size
zsh x86_64 5.9-2.fc37 fedora 3.3 M
Install 1 Package
Total download size: 3.3 M
Installed size: 8.0 M
Is this ok [y/N]: y
zsh-5.9-2.fc37.x86_64.rpm 3.2 MB/s | 3.3 MB 00:01
Total 1.2 MB/s | 3.3 MB 00:02
Running transaction check
Transaction check succeeded.
Running transaction test
Transaction test succeeded.
Preparing : 1/1
Installing : zsh-5.9-2.fc37.x86_64 1/1
Running scriptlet: zsh-5.9-2.fc37.x86_64 1/1
Verifying : zsh-5.9-2.fc37.x86_64 1/1
[root@f54276031bea /]# dnf install fish
Last metadata expiration check: 0:14:07 ago on Thu Jan 12 00:00:01 2023.
fish-3.5.1-1.fc37.x86_64 groff-base-1.22.4-10.fc37.x86_64 less-590-5.fc37.x86_64 libpipeline-1.5.6-2.fc37.x86_64
libpkgconf-1.8.0-3.fc37.x86_64 man-db-2.10.2-2.fc37.x86_64 man-pages-5.13-4.fc37.noarch pcre2-utf32-10.40-1.fc37.1.x86_64
pkgconf-1.8.0-3.fc37.x86_64 pkgconf-m4-1.8.0-3.fc37.noarch pkgconf-pkg-config-1.8.0-3.fc37.x86_64
[root@f54276031bea /]# fish
Welcome to fish, the friendly interactive shell
Type help for instructions on how to use fish
root@f54276031bea /# ls -l lib64/libsmartcols.so.1.1.0
-rwxr-xr-x 1 root root 113208 Aug 4 14:12 lib64/libsmartcols.so.1.1.0*
root@f54276031bea /# exit
[tom@localhost ~]$ docker run -it --name cowsay --hostname cowsay debian bash
Unable to find image 'debian:latest' locally
latest: Pulling from library/debian
bbeef03cda1f: Pull complete
Status: Downloaded newer image for debian:latest
root@cowsay:/# apt-get update
root@cowsay:/# apt-get install -y cowsay fortune
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
Note, selecting 'fortune-mod' instead of 'fortune'
The following additional packages will be installed:
root@cowsay:/# /usr/games/fortune | /usr/games/cowsay
/ "What's this? Trix? Aunt! Trix? You? \
| You're after the prize! What is it?" He |
| picked up the box and studied the back. |
| "A glow-in-the-dark squid! Have you got |
| it out of there yet?" He tilted the |
| box, angling the little colored balls |
| of cereal so as to see the bottom, and |
| nearly spilling them onto the table |
| top. "Here it is!" He hauled out a |
| little cream-colored, glitter-sprinkled |
| squid, three-inches long and made out |
| of rubbery plastic. |
\ -- James P. Blaylock, "The Last Coin" /
That all looks OK to me. Validating.
(In reply to Bruno Cornec from comment #11)
> docker 20.10.22 pushed to mga8 updates_testing.
> Works for me with the new docker-containerd 1.6.14 on mga8.
> Will work now that it builds on the other remaining docker related bugs. So
> may generate new updates again.
Fedora advisory for 20.10.22:
Regarding comment 2, should this update be including any of the golang packages
currently in Mageia 8 core updates testing?
An update for this issue has been pushed to the Mageia Updates repository.