--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-fde38dda12
2023-01-11 01:20:34.979740
--------------------------------------------------------------------------------
Name : moby-engine
Product : Fedora 37
Version : 20.10.22
Release : 1.fc37
URL :
https://www.docker.com
Summary : The open-source application container engine
Description :
Docker is an open source project to build, ship and run any application as a
lightweight container.
Docker containers are both hardware-agnostic and platform-agnostic. This means
they can run anywhere, from your laptop to the largest EC2 compute instance and
everything in between - and they don't require you to use a particular
language, framework or packaging system. That makes them great building blocks
for deploying and scaling web apps, databases, and backend services without
depending on a particular stack or provider.
--------------------------------------------------------------------------------
Update Information:
update to 20.10.22
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 1 2023 S��rgio Basto <sergio(a)serjux.com>
- Update moby-engine to 20.10.22
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2134573 - CVE-2022-29153 moby-engine: consul: Hashicorp Consul HTTP health
check endpoints returning an HTTP redirect may be abused as SSRF vector [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2134573
[ 2 ] Bug #2148176 - CVE-2022-3920 moby-engine: consul: Consul Cluster Peering Leaks
Imported Nodes/Services Information [fedora-36]
https://bugzilla.redhat.com/show_bug.cgi?id=2148176
[ 3 ] Bug #2155990 - Moby-engine 20.10.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2155990
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-fde38dda12' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------