[Buildroot] [PATCH 2/2] package/docker-cli: security bump to version 18.09.7

[Peter Korsgaard]

>>>>> "Peter" == Peter Korsgaard <peter at korsgaard.com> writes:

 > Fixes CVE-2018-15664: API endpoints behind the 'docker cp' command are
 > vulnerable to a symlink-exchange attack with Directory Traversal, giving
 > attackers arbitrary read-write access to the host filesystem with root
 > privileges, because daemon/archive.go does not do archive operations on a
 > frozen filesystem (or from within a chroot).

 > And includes additional post-18.09.6 fixes:

 > Builder
 > - Fixed a panic error when building dockerfiles that contain only comments.
 >   moby/moby#38487
 > - Added a workaround for GCR authentication issue. moby/moby#38246
 > - Builder-next: Fixed a bug in the GCR token cache implementation
 >   workaround.  moby/moby#39183

 > Runtime
 > - Added performance optimizations in aufs and layer store that helps in
 >   massively parallel container creation and removal.  moby/moby#39107,
 >   moby/moby#39135
 > - daemon: fixed a mirrors validation issue. moby/moby#38991
 > - Docker no longer supports sorting UID and GID ranges in ID maps.
 >   moby/moby#39288

 > Logging
 > - Added a fix that now allows large log lines for logger plugins.
 >   moby/moby#39038

 > Signed-off-by: Peter Korsgaard <peter at korsgaard.com>

Committed to 2019.02.x and 2019.05.x, thanks.

-- 
Bye, Peter Korsgaard