USN-4589-1 fixed a vulnerability in containerd. This update provides the corresponding update for docker.io.
Original advisory details:
It was discovered that containerd could be made to expose sensitive information when processing URLs in container image manifests. A remote attacker could use this to trick the user and obtain the user's registry credentials.
{ "availability": "No subscription required", "binaries": [ { "binary_version": "18.09.7-0ubuntu1~16.04.6", "binary_name": "docker-doc" }, { "binary_version": "18.09.7-0ubuntu1~16.04.6", "binary_name": "docker.io" }, { "binary_version": "18.09.7-0ubuntu1~16.04.6", "binary_name": "golang-docker-dev" }, { "binary_version": "18.09.7-0ubuntu1~16.04.6", "binary_name": "golang-github-docker-docker-dev" }, { "binary_version": "18.09.7-0ubuntu1~16.04.6", "binary_name": "vim-syntax-docker" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "19.03.6-0ubuntu1~18.04.2", "binary_name": "docker-doc" }, { "binary_version": "19.03.6-0ubuntu1~18.04.2", "binary_name": "docker.io" }, { "binary_version": "19.03.6-0ubuntu1~18.04.2", "binary_name": "golang-docker-dev" }, { "binary_version": "19.03.6-0ubuntu1~18.04.2", "binary_name": "golang-github-docker-docker-dev" }, { "binary_version": "19.03.6-0ubuntu1~18.04.2", "binary_name": "vim-syntax-docker" } ] }
{ "availability": "No subscription required", "binaries": [ { "binary_version": "19.03.8-0ubuntu1.20.04.1", "binary_name": "docker-doc" }, { "binary_version": "19.03.8-0ubuntu1.20.04.1", "binary_name": "docker.io" }, { "binary_version": "19.03.8-0ubuntu1.20.04.1", "binary_name": "golang-docker-dev" }, { "binary_version": "19.03.8-0ubuntu1.20.04.1", "binary_name": "golang-github-docker-docker-dev" }, { "binary_version": "19.03.8-0ubuntu1.20.04.1", "binary_name": "vim-syntax-docker" } ] }