Browse code
docs: Add 1.3.2 release notes
Signed-off-by: Tibor Vass <teabee89@gmail.com>
Tibor Vass authored on 2014/11/25 01:33:38Showing 1 changed files
| ... | ... |
@@ -4,6 +4,35 @@ page_keywords: docker, documentation, about, technology, understanding, release |
| 4 | 4 |
|
| 5 | 5 |
#Release Notes |
| 6 | 6 |
|
| 7 |
+##Version 1.3.2 |
|
| 8 |
+(2014-11-24) |
|
| 9 |
+ |
|
| 10 |
+This release fixes some bugs and addresses some security issues. We have also |
|
| 11 |
+made improvements to aspects of `docker run`. |
|
| 12 |
+ |
|
| 13 |
+*Security fixes* |
|
| 14 |
+ |
|
| 15 |
+Patches and changes were made to address CVE-2014-6407 and CVE-2014-6408. |
|
| 16 |
+Specifically, changes were made in order to: |
|
| 17 |
+ |
|
| 18 |
+* Prevent host privilege escalation from an image extraction vulnerability (CVE-2014-6407). |
|
| 19 |
+ |
|
| 20 |
+* Prevent container escalation from malicious security options applied to images (CVE-2014-6408). |
|
| 21 |
+ |
|
| 22 |
+*Daemon fixes* |
|
| 23 |
+ |
|
| 24 |
+The `--insecure-registry` flag of the `docker run` command has undergone |
|
| 25 |
+several refinements and additions. For details, please see the |
|
| 26 |
+[command-line reference](http://docs.docker.com/reference/commandline/cli/#run). |
|
| 27 |
+ |
|
| 28 |
+* You can now specify a sub-net in order to set a range of registries which the Docker daemon will consider insecure. |
|
| 29 |
+ |
|
| 30 |
+* By default, Docker now defines `localhost` as an insecure registry. |
|
| 31 |
+ |
|
| 32 |
+* Registries can now be referenced using the Classless Inter-Domain Routing (CIDR) format. |
|
| 33 |
+ |
|
| 34 |
+* When mirroring is enabled, the experimental registry v2 API is skipped. |
|
| 35 |
+ |
|
| 7 | 36 |
##Version 1.3.1 |
| 8 | 37 |
(2014-10-28) |
| 9 | 38 |
|