This release of Docker Engine fixes a regression in the Docker CLI builds for
macOS, fixes an issue with docker stats when using containerd 1.5 and up,
and updates the Go runtime to include a fix for CVE-2022-29526.
Client
Fix a regression in binaries for macOS introduced in 20.10.15, which
resulted in a panic docker/cli#43426.
Update golang.org/x/sys dependency which contains a fix for
CVE-2022-29526.
Daemon
Fix an issue where docker stats was showing empty stats when running with
containerd 1.5.0 or up moby/moby#43567.
Update the golang.org/x/sys build-time dependency which contains a fix for CVE-2022-29526.
Use "weak" dependencies for the docker scan CLI plugin, to prevent a
"conflicting requests" error when users performed an off-line installation from
downloaded RPM packages docker/docker-ce-packaging#659.
v20.10.15
This release of Docker Engine comes with updated versions of the compose,
buildx, containerd, and runc components, as well as some minor bugfixes.
Daemon
Use a RWMutex for stateCounter to prevent potential locking congestion moby/moby#43426.
Prevent an issue where the daemon was unable to find an available IP-range in
some conditions moby/moby#43360
This release of Docker Engine updates the default inheritable capabilities for
containers to address CVE-2022-24769,
a new version of the containerd.io runtime is also included to address the same
issue.
... (truncated)
Commits
f756502 Merge pull request #43582 from thaJeztah/20.10_bump_golang_1.17.10
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
2 years ago
Bumps github.com/docker/docker from 20.10.9+incompatible to 20.10.16+incompatible.
Release notes
Sourced from github.com/docker/docker's releases.
... (truncated)
Commits
f756502Merge pull request #43582 from thaJeztah/20.10_bump_golang_1.17.10a15acb4[20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad5f2e0b7[20.10] update golang to 1.17.10462cd7dMerge pull request #43567 from 42wim/fixstatsbe7855fvendor: update github.com/containerd/cgroups and github.com/cilium/ebpf4433bf6Merge pull request #43561 from thaJeztah/20.10_backport_bump_containerd_binar...414a9e2update containerd binary to v1.6.40809f5fMerge pull request #43433 from thaJeztah/20.10_backport_update_containerd_runc47b6a92update containerd binary to v1.6.36d7c2b2update containerd binary to v1.6.2Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)