CVE-2017-11468 is fixed in this release. Reference: https://nvd.nist.gov/vuln/detail/CVE-2017-11468
Release note: https://github.com/docker/distribution/releases/tag/v2.6.2 Signed-off-by: Yi Zhao <yi.z...@windriver.com> --- recipes-containers/docker-distribution/docker-distribution_git.bb | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/recipes-containers/docker-distribution/docker-distribution_git.bb b/recipes-containers/docker-distribution/docker-distribution_git.bb index 08b6d70..e2eac2e 100644 --- a/recipes-containers/docker-distribution/docker-distribution_git.bb +++ b/recipes-containers/docker-distribution/docker-distribution_git.bb @@ -3,14 +3,14 @@ SUMMARY = "The Docker toolset to pack, ship, store, and deliver content" LICENSE = "Apache-2.0" LIC_FILES_CHKSUM = "file://LICENSE;md5=d2794c0df5b907fdace235a619d80314" -SRCREV_distribution="0810eba2adf048b77621472991211924d9ec31c5" -SRC_URI = "git://github.com/docker/distribution.git;branch=master;name=distribution;destsuffix=git/src/github.com/docker/distribution \ +SRCREV_distribution="48294d928ced5dd9b378f7fd7c6f5da3ff3f2c89" +SRC_URI = "git://github.com/docker/distribution.git;branch=release/2.6;name=distribution;destsuffix=git/src/github.com/docker/distribution \ file://docker-registry.service \ " PACKAGES =+ "docker-registry" -PV = "v2.6.0-rc+git${SRCPV}" +PV = "v2.6.2" S = "${WORKDIR}/git/src/github.com/docker/distribution" inherit goarch -- 2.7.4 -- _______________________________________________ meta-virtualization mailing list meta-virtualization@yoctoproject.org https://lists.yoctoproject.org/listinfo/meta-virtualization