Browse code
Bump version to 1.6.1
Signed-off-by: Jessica Frazelle <jess@docker.com>
(cherry picked from commit 97cd073598275fa468fb3051952bd11002830c8e)
Conflicts:
VERSION
Jessica Frazelle authored on 2015/05/01 03:22:57Showing 2 changed files
| ... | ... |
@@ -1,5 +1,17 @@ |
| 1 | 1 |
# Changelog |
| 2 | 2 |
|
| 3 |
+## 1.6.1 (2015-05-07) |
|
| 4 |
+ |
|
| 5 |
+#### Security |
|
| 6 |
+- Fix read/write /proc paths (CVE-2015-3630) |
|
| 7 |
+- Prohibit VOLUME /proc and VOLUME / (CVE-2015-3631) |
|
| 8 |
+- Fix opening of file-descriptor 1 (CVE-2015-3627) |
|
| 9 |
+- Fix symlink traversal on container respawn allowing local privilege escalation (CVE-2015-3629) |
|
| 10 |
+- Prohibit mount of /sys |
|
| 11 |
+ |
|
| 12 |
+#### Runtime |
|
| 13 |
+- Update Apparmor policy to not allow mounts |
|
| 14 |
+ |
|
| 3 | 15 |
## 1.6.0 (2015-04-07) |
| 4 | 16 |
|
| 5 | 17 |
#### Builder |