github.com/adxhyt/docker@v1.4.2-0.20150117221845-467b7c821390/docs/sources/release-notes.md (about)

     1  page_title: Docker 1.x Series Release Notes
     2  page_description: Release Notes for Docker 1.x.
     3  page_keywords: docker, documentation, about, technology, understanding, release
     4  
     5  #Release Notes
     6  
     7  You can view release notes for earlier version of Docker by selecting the
     8  desired version from the drop-down list at the top right of this page.
     9  
    10  ##Version 1.4.1
    11  (2014-12-17)
    12   
    13  This release fixes an issue related to mounting volumes on `create`. Details available in the [Github milestone](https://github.com/docker/docker/issues?q=milestone%3A1.4.1+is%3Aclosed).
    14  
    15  ##Version 1.4.0
    16  (2014-12-11)
    17   
    18  This release provides a number of new features, but is mainly focused on bug
    19  fixes and improvements to platform stability and security.
    20  
    21  For a complete list of patches, fixes, and other improvements, see the [merge PR on GitHub](https://github.com/docker/docker/pull/9345).
    22   
    23  *New Features*
    24  
    25  * You can now add labels to the Docker daemon using key=value pairs defined with
    26  the new `--label` flag. The labels are displayed by running `docker info`. In
    27  addition, `docker info` also now returns an ID and hostname field. For more
    28  information, see  the 
    29  [command line reference](http://docs.docker.com/reference/commandline/cli/#daemon).
    30  * The `ENV` instruction in the `Dockerfile` now supports arguments in the form 
    31  of `ENV name=value name2=value2..`. For more information, see the 
    32  [command line reference](http://docs.docker.com/reference/builder/#env)
    33  * Introducing a new, still 
    34  [experimental, overlayfs storage driver](https://github.com/docker/docker/pull/7619/).
    35  * You can now add filters to `docker events` to filter events by event name, 
    36  container, or image. For more information, see  the 
    37  [command line reference](http://docs.docker.com/reference/commandline/cli/#events).
    38  * The `docker cp` command now supports copying files from the filesystem of a
    39  container's volumes. For more information, see  the 
    40  [remote API reference](http://docs.docker.com/reference/api/docker_remote_api/).
    41  * The `docker tag` command has been fixed so that it correctly honors `--force`
    42  when overriding a tag for existing image. For more information, see 
    43  the [command line reference](http://docs.docker.com/reference/commandline/cli/#tag).
    44  
    45  * Container volumes are now initialized during `docker create`. For more information, see 
    46  the [command line reference](http://docs.docker.com/reference/commandline/cli/#create).
    47  
    48  *Security Fixes*
    49  
    50  Patches and changes were made to address the following vulnerabilities:
    51  
    52  * CVE-2014-9356: Path traversal during processing of absolute symlinks.
    53  Absolute symlinks were not adequately checked for  traversal which created a
    54  vulnerability via image extraction and/or volume mounts.
    55  * CVE-2014-9357: Escalation of privileges during decompression of LZMA (.xz)
    56  archives. Docker 1.3.2 added `chroot` for archive extraction. This created a
    57  vulnerability that could allow malicious images or builds to write files to the
    58  host system and escape containerization, leading to privilege escalation.
    59  * CVE-2014-9358: Path traversal and spoofing opportunities via image
    60  identifiers. Image IDs passed either via `docker load` or registry communications
    61  were not sufficiently validated. This created a vulnerability to path traversal
    62  attacks wherein malicious images or repository spoofing could lead to graph
    63  corruption and manipulation.
    64  
    65  > **Note:** the above CVEs are also patched in Docker 1.3.3, which was released
    66  > concurrently with 1.4.0.
    67  
    68  *Runtime fixes*
    69  
    70  * Fixed an issue that caused image archives to be read slowly.
    71  
    72  *Client fixes*
    73   
    74  * Fixed a regression related to STDIN redirection.
    75  * Fixed a regression involving `docker cp` when the current directory is the
    76  destination.
    77  
    78  > **Note:**
    79  > Development history prior to version 1.0 can be found by
    80  > searching in the [Docker GitHub repo](https://github.com/docker/docker).
    81  
    82  ## Known Issues
    83  
    84  This section lists significant known issues present in Docker as of release
    85  date. It is not exhaustive; it lists only issues with potentially significant
    86  impact on users. This list will be updated as issues are resolved.
    87  
    88  * **Unexpected File Permissions in Containers**
    89  An idiosyncrasy in AUFS prevents permissions from propagating predictably
    90  between upper and lower layers. This can cause issues with accessing private
    91  keys, database instances, etc. For complete information and workarounds see
    92  [Github Issue 783](https://github.com/docker/docker/issues/783).