Hi James - I took a quick look at the proposed updates to docker.io in 14.04 and 14.10. What you're proposing would update docker from version 1.0.1 on 14.04, and version 1.2.0 on 14.10, to version 1.3.3. That's not how we typically do security updates in our stable releases. We backport the specific patches that fix security issues.
A Micro Release Exception (MRE) is required for what you're proposing. I read the Tech Board thread and don't see where one was granted for docker. Can you please backport only the security fixes to the packages in 14.04 and 14.10 and then re-ping the Security Team for sponsoring the updated packages into the security pocket? Thanks! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1396572 Title: Critcial security vulnerabilties in docker < 1.3.3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1396572/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
