packages/docker
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
docker/patch
History
xiadanni 5fc83aff47 docker:Fix Access to remapped root allows privilege escalation to real root (CVE-2021-21284) 
Change-Id: I483f23d368c047147932da22c80cf23c8944669b
Signed-off-by: xiadanni <xiadanni1@huawei.com>
2021-03-05 11:24:44 +08:00
..
0001-pause-move-pause-function-to-docker.patch
Package init
2019-09-30 10:37:25 -04:00
0002-pause-docker-pause-set-timeout-30s.patch
Package init
2019-09-30 10:37:25 -04:00
0003-pause-fix-integration-testing-faile-about-doc.patch
Package init
2019-09-30 10:37:25 -04:00
0004-prjquota-support-set-filesystem-quot.patch
Package init
2019-09-30 10:37:25 -04:00
0005-prjquota-fix-few-overlay2-quota-problems.patch
Package init
2019-09-30 10:37:25 -04:00
0006-prjquota-overlay2-quota-control-backward-comp.patch
Package init
2019-09-30 10:37:25 -04:00
0007-filelimit-Add-file-fds-limit.patch
Package init
2019-09-30 10:37:25 -04:00
0008-filelimit-Ignore-host-kernel-whether-suport-f.patch
Package init
2019-09-30 10:37:25 -04:00
0009-healthycheck-add-healthycheck-in-_ping-add-se.patch
Package init
2019-09-30 10:37:25 -04:00
0010-annotation-add-annotation-into-cli-flag.patch
Package init
2019-09-30 10:37:25 -04:00
0011-hookspec-Allow-adding-custom-hooks.patch
Package init
2019-09-30 10:37:25 -04:00
0012-hookspec-Security-enhancement-for-hooks.patch
Package init
2019-09-30 10:37:25 -04:00
0013-hookspec-Add-bash-completion-for-hook-spec.patch
Package init
2019-09-30 10:37:25 -04:00
0014-hookspec-Add-default-hooks-for-all-containers.patch
Package init
2019-09-30 10:37:25 -04:00
0015-hookspec-add-limit-of-hook-spec-file.patch
Package init
2019-09-30 10:37:25 -04:00
0016-hookspec-fix-hooks-nil-pointer-dereference.patch
Package init
2019-09-30 10:37:25 -04:00
0017-hookspec-canonicalize-hook-path-before-valida.patch
Package init
2019-09-30 10:37:25 -04:00
0018-dfx-trylock-add-trylock-and-trylocktimeout-fo.patch
Package init
2019-09-30 10:37:25 -04:00
0019-dfx-print-container-name-and-id-when-create-d.patch
Package init
2019-09-30 10:37:25 -04:00
0020-cleanup-remove-redundant-files-in-graphdriver.patch
Package init
2019-09-30 10:37:25 -04:00
0021-umask-support-specify-umask.patch
Package init
2019-09-30 10:37:25 -04:00
0022-umask-fix-nil-pointer-on-c.Annotations-in-set.patch
Package init
2019-09-30 10:37:25 -04:00
0023-prjquota-fix-syscall-bugs-in-projectquota.patch
Package init
2019-09-30 10:37:25 -04:00
0024-runtime-spec-Compatibility-modifications-fo.patch
Package init
2019-09-30 10:37:25 -04:00
0025-resource-limit-enable-unlimited-usage-of-memo.patch
Package init
2019-09-30 10:37:25 -04:00
0026-prjquota-use-dockerd-quota-size-when-docker.patch
Package init
2019-09-30 10:37:25 -04:00
0027-oci-add-files_panic_enable-to-masked-path.patch
Package init
2019-09-30 10:37:25 -04:00
0028-oci-add-fdenable-fdstat-and-fdthreshold-to-ma.patch
Package init
2019-09-30 10:37:25 -04:00
0029-oci-add-oom_extend-to-proc-masked-path.patch
Package init
2019-09-30 10:37:25 -04:00
0030-restart-fix-docker-stats-blocked-while-docker.patch
Package init
2019-09-30 10:37:25 -04:00
0031-restart-Incase-deadlock-when-kill-the-docker-.patch
Package init
2019-09-30 10:37:25 -04:00
0032-devmapper-Add-udev-event-time-out-to-fix-dock.patch
Package init
2019-09-30 10:37:25 -04:00
0033-devmapper-Fix-devicemapper-issue-power-off-th.patch
Package init
2019-09-30 10:37:25 -04:00
0035-restart-reject-to-restart-container-when-remo.patch
Package init
2019-09-30 10:37:25 -04:00
0036-restart-do-not-reset-container-restartCount-o.patch
Package init
2019-09-30 10:37:25 -04:00
0037-config-Add-liver-restore-to-OPTIION-to-enable.patch
Package init
2019-09-30 10:37:25 -04:00
0038-devmapper-devicemapper-ignore-error-when-remo.patch
Package init
2019-09-30 10:37:25 -04:00
0039-restart-Remove-redundant-Mounts-when-start-do.patch
Package init
2019-09-30 10:37:25 -04:00
0040-devmapper-devicemapper-add-API-GetDeviceList.patch
Package init
2019-09-30 10:37:25 -04:00
0041-devmapper-devmapper-remove-broken-device-when.patch
Package init
2019-09-30 10:37:25 -04:00
0042-oci-Cannot-join-own-pid-ipc-namespace.patch
Package init
2019-09-30 10:37:25 -04:00
0043-docker-Make-sure-the-pid-exist-in-pidfile-is-.patch
Package init
2019-09-30 10:37:25 -04:00
0044-plugin-Fix-plugin-security-bug-caused-by-unch.patch
Package init
2019-09-30 10:37:25 -04:00
0045-overlay-safely-remove-overlay-layer-directory.patch
Package init
2019-09-30 10:37:25 -04:00
0046-debug-add-more-error-info-when-dial-docker.so.patch
Package init
2019-09-30 10:37:25 -04:00
0047-docker-fix-panic-slice-bounds-out-of-range.patch
Package init
2019-09-30 10:37:25 -04:00
0048-docker-check-metadata-when-load-layer.patch
Package init
2019-09-30 10:37:25 -04:00
0049-cleanup-cleanup-useless-netns-file-in-var-run.patch
Package init
2019-09-30 10:37:25 -04:00
0050-volume-Make-v.opts-to-nil-if-opts.json-is-nul.patch
Package init
2019-09-30 10:37:25 -04:00
0051-docker-fix-panic-when-load-maliciously-image.patch
Package init
2019-09-30 10:37:25 -04:00
0052-docker-Lock-the-RWLayer-while-committing-expo.patch
Package init
2019-09-30 10:37:25 -04:00
0053-docker-remove-init-layer-when-no-space-to-cre.patch
Package init
2019-09-30 10:37:25 -04:00
0054-docker-remove-init-layer-if-fails-in-initMoun.patch
Package init
2019-09-30 10:37:25 -04:00
0055-docker-range-checking-for-memory-and-memory.s.patch
Package init
2019-09-30 10:37:25 -04:00
0056-docker-check-cpuset.cpu-and-cpuset.mem.patch
Package init
2019-09-30 10:37:25 -04:00
0057-docker-Ignore-ToDisk-error-in-StateChanged.patch
Package init
2019-09-30 10:37:25 -04:00
0058-cleanup-cleanup-incompleted-device-while-dock.patch
Package init
2019-09-30 10:37:25 -04:00
0059-overlay2-avoid-middle-state-while-removing-im.patch
Package init
2019-09-30 10:37:25 -04:00
0060-debug-Add-check-when-execute-docker-cp-export.patch
Package init
2019-09-30 10:37:25 -04:00
0061-docker-check-seccomp-file-size-max-10M-before.patch
Package init
2019-09-30 10:37:25 -04:00
0062-docker-check-file-size-before-reading-envfile.patch
Package init
2019-09-30 10:37:25 -04:00
0063-test-fix-umask-make-file-mode-failed.patch
Package init
2019-09-30 10:37:25 -04:00
0066-test-skip-swarm-integration-test.patch
Package init
2019-09-30 10:37:25 -04:00
0067-pause-fix-build-missing-dep-packages.patch
Package init
2019-09-30 10:37:25 -04:00
0068-pause-fix-docker-stop-stuck-on-paused-contain.patch
Package init
2019-09-30 10:37:25 -04:00
0069-pause-fix-log-pause-unpause-event-twice.patch
Package init
2019-09-30 10:37:25 -04:00
0070-test-fix-umask-make-syscall-test-failed.patch
Package init
2019-09-30 10:37:25 -04:00
0071-devmapper-Increace-udev-wait-timeout-to-185s.patch
Package init
2019-09-30 10:37:25 -04:00
0072-pause-fix-test-can-not-stop-paused-container-.patch
Package init
2019-09-30 10:37:25 -04:00
0073-service-update-docker.service-with-old-revisi.patch
Package init
2019-09-30 10:37:25 -04:00
0076-version-add-EulerVersion.patch
Package init
2019-09-30 10:37:25 -04:00
0077-image-fix-file-not-exist-for-check-file-size.patch
Package init
2019-09-30 10:37:25 -04:00
0078-spec-add-missing-sysconfigs-to-rpm.patch
Package init
2019-09-30 10:37:25 -04:00
0079-rwlayer-fix-deadlock-for-docker-commit-export.patch
Package init
2019-09-30 10:37:25 -04:00
0080-selinux-Add-selinux-policy-for-docker.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0081-runtime-spec-revert-the-modify-of-runtime-spe.patch
Package init
2019-09-30 10:37:25 -04:00
0083-test-fix-start-paused-container.patch
Package init
2019-09-30 10:37:25 -04:00
0084-test-skip-pause-test-with-ctr.patch
Package init
2019-09-30 10:37:25 -04:00
0085-event-log-detailed-event-with-info-level.patch
Package init
2019-09-30 10:37:25 -04:00
0086-restart-fix-daemon-restart-with-restart-alway.patch
Package init
2019-09-30 10:37:25 -04:00
0088-attach-add-timeout-return-for-getExitStatus.patch
Package init
2019-09-30 10:37:25 -04:00
0089-libcontainerd-fix-stuck-when-containerd-in-T-.patch
Package init
2019-09-30 10:37:25 -04:00
0090-overlay2-Use-index-off-if-possible.patch
Package init
2019-09-30 10:37:25 -04:00
0091-overlay2-use-global-logger-instance.patch
Package init
2019-09-30 10:37:25 -04:00
0092-Revert-docker-Lock-the-RWLayer-while-committi.patch
Package init
2019-09-30 10:37:25 -04:00
0093-docker-do-not-try-to-connect-containerd-if-co.patch
Package init
2019-09-30 10:37:25 -04:00
0094-docker-change-health-check-minum-param-to-one.patch
Package init
2019-09-30 10:37:25 -04:00
0095-docker-enable-container-health-check-after-re.patch
Package init
2019-09-30 10:37:25 -04:00
0096-pause-check-tasks-before-updateCgroups.patch
Package init
2019-09-30 10:37:25 -04:00
0097-restart-fix-restart-unless-stopped-not-stop-f.patch
Package init
2019-09-30 10:37:25 -04:00
0099-integration-cli-fix-TestInspectAPIImageRespon.patch
Package init
2019-09-30 10:37:25 -04:00
0100-proquota-fix-quota-basesize.patch
Package init
2019-09-30 10:37:25 -04:00
0101-daeamon-add-judge-for-client-in-case-of-panic.patch
Package init
2019-09-30 10:37:25 -04:00
0102-docker-18.09-fix-docker-stop-error-if-docker-.patch
Package init
2019-09-30 10:37:25 -04:00
0103-docker-fix-parsing-name-with.patch
Package init
2019-09-30 10:37:25 -04:00
0104-docker-stats-increase-the-timeout-of-docker-s.patch
Package init
2019-09-30 10:37:25 -04:00
0105-pause-fix-pause-on-exited-container.patch
Package init
2019-09-30 10:37:25 -04:00
0106-docker-engine-selinux-support-selinux-enabl.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0107-restore-cleanup-container-meta-data-when-task.patch
Package init
2019-09-30 10:37:25 -04:00
0108-docker-Fix-can-t-run-image-while-the-image-is.patch
Package init
2019-09-30 10:37:25 -04:00
0109-graphdriver-add-Checkparent-method.patch
Package init
2019-09-30 10:37:25 -04:00
0110-docker-Fix-can-t-pull-image-while-the-image-i.patch
Package init
2019-09-30 10:37:25 -04:00
0112-docker-overlay2-quota-control-bugfix.patch
Package init
2019-09-30 10:37:25 -04:00
0114-docker-mask-internal-proc-files.patch
Package init
2019-09-30 10:37:25 -04:00
0115-docker-enable-bep-ldflags.patch
Package init
2019-09-30 10:37:25 -04:00
0116-docker-build-with-relro-flags.patch
Package init
2019-09-30 10:37:25 -04:00
0117-healthcheck-synchronize-the-healthcheck-statu.patch
Package init
2019-09-30 10:37:25 -04:00
0118-docker-fix-opened-file-not-close.patch
Package init
2019-09-30 10:37:25 -04:00
0119-docker-set-makefile-buildid.patch
Package init
2019-09-30 10:37:25 -04:00
0120-docker-fix-docker-logs-hangs-when-using-journ.patch
Package init
2019-09-30 10:37:25 -04:00
0121-docker-add-start-timeout-for-container.patch
Package init
2019-09-30 10:37:25 -04:00
0122-cleanup-local-db-on-first-start-after-os-star.patch
Package init
2019-09-30 10:37:25 -04:00
0123-docker-support-exit-on-unhealthy.patch
Package init
2019-09-30 10:37:25 -04:00
0124-docker-Support-compress-when-saving-images.patch
Package init
2019-09-30 10:37:25 -04:00
0125-docker-add-hugetlb-limit-option-to-docker.patch
Package init
2019-09-30 10:37:25 -04:00
0126-docker-pass-root-to-chroot-to-for-chroot-ta.patch
Package init
2019-09-30 10:37:25 -04:00
0127-docker-support-docker-cli-using-syslog.patch
Package init
2019-09-30 10:37:25 -04:00
0128-docker-add-log-forwarding-mechanism-and-print.patch
Package init
2019-09-30 10:37:25 -04:00
0128-docker-fix-CVE-2019-13509.patch
Package init
2019-12-25 19:10:46 +08:00
0129-docker-add-validation-for-ref-CVE-2019-13139.patch
Package init
2019-12-25 19:10:46 +08:00
0129-docker-check-if-image-exists-in-memory-when-p.patch
Package init
2019-09-30 10:37:25 -04:00
0130-docker-Handle-blocked-I-O-of-exec-d-process.patch
Package init
2019-12-25 19:10:46 +08:00
0130-docker-mask-internal-proc-add-livepatch.patch
Package init
2019-09-30 10:37:25 -04:00
0131-docker-fix-mount-loop-on-docker-cp.patch
Package init
2019-12-25 19:10:46 +08:00
0132-docker-fix-docker-cp-when-container-source-path-is-root.patch
Package init
2019-12-25 19:10:46 +08:00
0132-docker-fix-docker-pull-406-error-on-some-regi.patch
Package init
2019-09-30 10:37:25 -04:00
0133-docker-Fixed-docker-ps-and-docker-inspect-sta.patch
Package init
2019-09-30 10:37:25 -04:00
0135-docker-delete-containerd-db-first-reboot.patch
Package init
2019-09-30 10:37:25 -04:00
0136-docker-continue-to-check-healthy-instead-of-return.patch
Package init
2019-09-30 10:37:25 -04:00
0137-docker-fix-reboot-dirty-data-in-containerd.patch
Package init
2019-09-30 10:37:25 -04:00
0138-docker-add-loaded-time-to-images-inspect.patch
Package init
2019-09-30 10:37:25 -04:00
0139-docker-printf-execid-when-task-exit.patch
Package init
2019-09-30 10:37:25 -04:00
0140-docker-add-timestamp-when-setup-iptables.patch
Package init
2019-09-30 10:37:25 -04:00
0141-docker-fix-updateUnpauseStats-wrong-path-erro.patch
Package init
2019-12-25 19:10:46 +08:00
0141-docker-remove-logo-info.patch
Package init
2019-09-30 10:37:25 -04:00
0142-docker-add-copyright.patch
Package init
2019-09-30 10:37:25 -04:00
0142-docker-fix-fd-leak-on-reboot.patch
Package init
2019-12-25 19:10:46 +08:00
0143-docker-add-exit-on-unhealthy-flag-for-health-check.patch
Package init
2019-12-25 19:10:46 +08:00
0143-docker-add-license.patch
Package init
2019-09-30 10:37:25 -04:00
0144-docker-fix-testcase-TestAttachClosedOnContain.patch
Package init
2019-12-25 19:10:46 +08:00
0144-docker-hide-some-path-in-container.patch
Package init
2019-09-30 10:37:25 -04:00
0145-docker-hot-upgrade-support-default-runtime.patch
Package init
2019-12-25 19:10:46 +08:00
0146-docker-hot-upgrade-support-accel-plugins.patch
Package init
2019-12-25 19:10:46 +08:00
0147-docker-hot-upgrade-treat-empty-storage-opt-as.patch
Package init
2019-12-25 19:10:46 +08:00
0148-docker-ignore-warning-for-docker-info.patch
Package init
2019-12-25 19:10:46 +08:00
0149-docker-check-running-containers-before-del-db.patch
Package init
2019-12-25 19:10:46 +08:00
0150-docker-fix-set-read-deadline-not-work.patch
Package init
2019-12-25 19:10:46 +08:00
0151-docker-enable-setting-env-variable-to-disable-db-del.patch
Package init
2019-12-25 19:10:46 +08:00
0152-docker-Enable-disable-legacy-registry-function.patch
Package init
2019-12-25 19:10:46 +08:00
0153-docker-clean-code.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0154-docker-fix-merge-accel-env-rewriten.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0155-docker-update-log-opt-when-upgrade-from-1.11.2.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0156-docker-only-update-log-opt-tag-for-containers-from-1.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0157-docker-Support-check-manifest-and-layer-s-DiffID-inf.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0158-docker-support-private-registry.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0159-docker-extend-timeout-in-cli-testcases.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0160-docker-create-a-soft-link-from-runtime-default-to-ru.patch
docker: add patches
2020-03-05 15:13:09 +08:00
0161-docker-Delete-stale-containerd-object-on-start-failure.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0162-docker-remove-redundant-word-item.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0163-docker-delete-event-is-not-need-to-process.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0164-docker-stat-process-exit-file-when-kill-process-dire.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0165-docker-sync-cli-vendor.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0167-docker-fix-CVE-2020-13401.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0167-dockerd-add-more-messages-for-ops-when-device-not-fo.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0168-docker-do-not-add-w-to-LDFLAGS.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0169-docker-add-files-in-proc-for-mask.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0170-docker-fix-docker-load-files-leak.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0171-docker-do-not-sync-if-BYPAAS_SYNC-is-false.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0172-docker-fix-panic-on-single-character-volumes.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0173-docker-fix-stats-memory-usage-display-error.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0175-docker-clean-docker-load-leak-files.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0175-docker-mask-proc-pin_memory.patch
sync patches from internal
2020-11-28 11:20:04 +08:00
0176-docker-kill-container-process-if-its-status-is-not-r.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0177-resume-suspend-dm-on-start.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0178-docker-skip-kill-and-restart-containerd-during-docke.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0179-handle-exit-force.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0180-wait-io-with-timeout-in-task-delete.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0181-docker-do-not-return-when-matched-registry-mirror.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0183-add-masked-paths-pagealloc_module-and-slaballoc_stat.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0184-docker-wait-io-with-timeout-when-process-Start-faile.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0185-docker-delete-image-reference-when-failed-to-get-ima.patch
docker: sync bugfix
2021-01-18 21:44:33 +08:00
0186-docker-fix-execCommands-leak-in-health-check.patch
docker: sync bugfix and bump version
2021-03-05 11:24:18 +08:00
0188-docker-check-containerd-pid-before-kill-it.patch
docker: sync bugfix and bump version
2021-03-05 11:24:18 +08:00
0189-docker-fix-Access-to-remapped-root-allows-privilege-.patch
docker:Fix Access to remapped root allows privilege escalation to real root (CVE-2021-21284)
2021-03-05 11:24:44 +08:00