aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorJake Buchholz Göktürk <tomalok@gmail.com>2021-10-05 01:16:16 +0000
committerAndy Postnikov <apostnikov@gmail.com>2021-10-05 13:19:42 +0000
commit3a4e14e9945b75874fe4440f98710e666c7e4a47 (patch)
treedfd3f8d05aa88cc4818f77b58f379ae1bffbd313
parentfce398a49cbdbfd58bb79643aa9958ca263ea3bf (diff)
downloadaports-3a4e14e9945b75874fe4440f98710e666c7e4a47.tar.gz
aports-3a4e14e9945b75874fe4440f98710e666c7e4a47.tar.bz2
aports-3a4e14e9945b75874fe4440f98710e666c7e4a47.tar.xz
community/docker: security update to 20.10.9
Fixes CVE-2021-41089, CVE-2021-41091, CVE-2021-41092. Other CVEs mentioned in https://github.com/moby/moby/releases/tag/v20.10.9 are fixed elsewhere (containerd, go 1.17)
-rw-r--r--community/docker/APKBUILD20
1 files changed, 12 insertions, 8 deletions
diff --git a/community/docker/APKBUILD b/community/docker/APKBUILD
index 06484ffea6..340696a674 100644
--- a/community/docker/APKBUILD
+++ b/community/docker/APKBUILD
@@ -1,11 +1,11 @@
# Contributor: Eivind Uggedal <eu@eju.no>
-# Contributor: Jake Buchholz <tomalok@gmail.com>
-# Maintainer: Jake Buchholz <tomalok@gmail.com>
+# Contributor: Jake Buchholz Göktürk <tomalok@gmail.com>
+# Maintainer: Jake Buchholz Göktürk <tomalok@gmail.com>
pkgname=docker
-pkgver=20.10.7
-_cli_commit=f0df35096d5f5e6b559b42c7fde6c65a2909f7c5 # https://github.com/docker/cli/commits/v$pkgver
-_moby_commit=b0f5bc36fea9dfb9672e1e9b1278ebab797b9ee0 # https://github.com/moby/moby/commits/v$pkgver
-pkgrel=2
+pkgver=20.10.9
+_cli_commit=c2ea9bc90bacf19bdbe37fd13eec8772432aca99 # https://github.com/docker/cli/commits/v$pkgver
+_moby_commit=79ea9d3080181d755855d5924d0f4f116faa9463 # https://github.com/moby/moby/commits/v$pkgver
+pkgrel=0
pkgdesc="Pack, ship and run any application as a lightweight container"
url="https://www.docker.io/"
arch="all"
@@ -22,6 +22,10 @@ _libnetwork_commit=64b7a4574d1426139437d20e81c0b6d391130ec8
_cobra_ver="1.1.1"
# secfixes:
+# 20.10.9-r0:
+# - CVE-2021-41089
+# - CVE-2021-41091
+# - CVE-2021-41092
# 20.10.3-r0:
# - CVE-2021-21285
# - CVE-2021-21284
@@ -196,8 +200,8 @@ cli_zshcomp() {
}
sha512sums="
-4523ae70cb27d848da119070171af2eb84e974ac39d70be4feee105e37c949487c7f72a9bc30c32ce71bffb0787e27b7b9194ce5a8aeae57bdfeb3f2d730010f cli-20.10.7.tar.gz
-2341faa3ebb903d74fa434712fce45e7acf0423710b97cdca11e3999db2819c4385d9a7fb3850925592f20f02c6261edbade6c9d6a2fefbc32f05a6b44ec3073 moby-20.10.7.tar.gz
+0a9bd36c139bb5e1cd4a975913aa5429ffce8c746d2104aa2a54d937c67073ddaa2a8a5e93d71d2d435459af58168de0e7e3a44fd452da535f3995738da206df cli-20.10.9.tar.gz
+e4ae9e37633c821892e929e7a5f9dab652fe17f348a24cd37778bc4bfc33d99cdb347e2f575966364a37664dcfa83d1500f2bff7d0b0398a890f2039155a0c0c moby-20.10.9.tar.gz
6a94fe23ce1bab0a428ee4bbe20089f5a4470e72c5da156b2b1a89de01cca803374fd9cdcd4c5b25b86af1c4e956c75a1a5ad7fb6639def7bcec69859a77c047 libnetwork-64b7a4574d1426139437d20e81c0b6d391130ec8.tar.gz
a27debc5c971f468e672826659e5c46946187e2307dded8c496084b9fabc5602e68bdfdc08f444f42d6f82f0f2704d01a0c4bde3e5fbe674c7cb14309f0a3328 cobra-1.1.1.tar.gz
4d03065e3bf5261dba5f02848c60ac790149f79985c9819814b576fafb8dcd86af0c78a58041cd676cf9e570fbc74bfd382647351db73ed2765f4395522de15b docker.initd