Merge pull request #12227 from tiborvass/engine_release_notes

Add release notes for 20.10.3 and 19.03.15

engine/release-notes/19.03.md

@@ -5,6 +5,19 @@ toc_max: 2
 skip_read_time: true
 ---
 
+## 19.03.15
+2021-02-01
+
+### Security
+
+* [CVE-2021-21285](https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8) Prevent an invalid image from crashing docker daemon
+* [CVE-2021-21284](https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc) Lock down file permissions to prevent remapped root from accessing docker state
+* Ensure AppArmor and SELinux profiles are applied when building with BuildKit
+
+### Client
+
+* Check contexts before importing them to reduce risk of extracted files escaping context store
+
 ## 19.03.14
 2020-12-01
 

engine/release-notes/index.md

@@ -22,6 +22,20 @@ for Docker Engine.
 
 # Version 20.10
 
+## 20.10.3
+2021-02-01
+
+### Security
+
+* [CVE-2021-21285](https://github.com/moby/moby/security/advisories/GHSA-6fj5-m822-rqx8) Prevent an invalid image from crashing docker daemon
+* [CVE-2021-21284](https://github.com/moby/moby/security/advisories/GHSA-7452-xqpj-6rpc) Lock down file permissions to prevent remapped root from accessing docker state
+* Ensure AppArmor and SELinux profiles are applied when building with BuildKit
+
+### Client
+
+* Check contexts before importing them to reduce risk of extracted files escaping context store
+* Windows: prevent executing certain binaries from current directory [docker/cli#2950](https://github.com/docker/cli/pull/2950)
+
 ## 20.10.2
 2021-01-04