new file mode 100644

@@ -0,0 +1,12 @@

+diff -ru docker-18.03.0-old/components/engine/hack/dockerfile/install/runc.installer docker-18.03.0/components/engine/hack/dockerfile/install/runc.installer

+--- docker-18.03.0-old/components/engine/hack/dockerfile/install/runc.installer	2018-03-21 15:59:46.000000000 -0700

+@@ -1,7 +1,7 @@

+ #!/bin/sh

+ 

+ # When updating RUNC_COMMIT, also update runc in vendor.conf accordingly

+-RUNC_COMMIT=4fc53a81fb7c994640722ac585fa9ca548971871

++RUNC_COMMIT=0a8e4117e7f715d5fbeef398405813ce8e88558b

+ 

+ install_runc() {

+ 	# Do not build with ambient capabilities support

@@ -4,7 +4,7 @@

 Summary:        Docker

 Name:           docker

 Version:        18.03.0

-Release:        2%{?dist}

+Release:        3%{?dist}

 License:        ASL 2.0

 URL:            http://docs.docker.com

 Group:          Applications/File

@@ -15,6 +15,7 @@ Source0:        https://github.com/docker/docker-ce/archive/docker-%{version}-ce

 %define DOCKER_GITCOMMIT 0520e243029d1361649afb0706a1c5d9a1c012b8

 Source99:       default-disable.preset

 Patch0:         fix-apparmor-not-being-applied-to-exec-processes.patch

+Patch1:         CVE-2019-5736.patch

 Patch99:        remove-firewalld.patch

 BuildRequires:  systemd

@@ -52,6 +53,7 @@ Documentation and vimfiles for docker

 %setup -q -c

 %patch0 -p1

+%patch1 -p1

 %patch99 -p1

 mkdir -p /go/src/github.com

@@ -190,6 +192,8 @@ rm -rf %{buildroot}/*

 %{_datadir}/vim/vimfiles/syntax/dockerfile.vim

 %changelog

+*   Mon Feb 11 2019 Him Kalyan Bordoloi <bordoloih@vmware.com> 18.03.0-3

+-   Patch to fix CVE-2019-5736

 *   Fri Sep 07 2018 Srivatsa S. Bhat <srivatsa@csail.mit.edu> 18.03.0-2

 -   Fix apparmor not being applied to exec processes

 *   Mon Apr 09 2018 Bo Gan <ganb@vmware.com> 18.03.0-1