Hey Tyler,

We do have a standing exception to update Docker's major versions in
14.04.

:-Dustin


On Thu, Jan 22, 2015 at 1:44 PM, Tyler Hicks <tyhi...@canonical.com> wrote:
> Hi James - I took a quick look at the proposed updates to docker.io in
> 14.04 and 14.10. What you're proposing would update docker from version
> 1.0.1 on 14.04, and version 1.2.0 on 14.10, to version 1.3.3. That's not
> how we typically do security updates in our stable releases. We backport
> the specific patches that fix security issues.
>
> A Micro Release Exception (MRE) is required for what you're proposing. I
> read the Tech Board thread and don't see where one was granted for
> docker.
>
> Can you please backport only the security fixes to the packages in 14.04
> and 14.10 and then re-ping the Security Team for sponsoring the updated
> packages into the security pocket? Thanks!
>
> --
> You received this bug notification because you are a member of Docker
> Ubuntu Maintainers, which is subscribed to docker.io in Ubuntu.
> https://bugs.launchpad.net/bugs/1396572
>
> Title:
>   Critcial security vulnerabilties in docker < 1.3.3
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1396572/+subscriptions

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1396572

Title:
  Critcial security vulnerabilties in docker < 1.3.3

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/docker.io/+bug/1396572/+subscriptions

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to