Bump github.com/docker/docker from 1.13.1 to 23.0.4+incompatible

[dependabot[bot]]

Bumps github.com/docker/docker from 1.13.1 to 23.0.4+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v23.0.4

23.0.4

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 23.0.4 milestone
• moby/moby, 23.0.4 milestone

Bug fixes and enhancements

• Fix a performance regression in Docker CLI 23.0.0 docker/cli#4141.
• Fix progress indicator on docker cp not functioning as intended docker/cli#4157.
• Fix shell completion for docker compose --file docker/cli#4177.
• Fix an error caused by incorrect handling of "default-address-pools" in daemon.json moby/moby#45246.

Packaging Updates

• Fix missing packages for CentOS 9 Stream.
• Upgrade Go to 1.19.8. docker/docker-ce-packaging#878, docker/cli#4164, moby/moby#45277, which contains fixes for CVE-2023-24537, CVE-2023-24538, CVE-2023-24534, and CVE-2023-24536

v23.0.3

23.0.3

Note

Due to an issue with CentOS 9 Stream's package repositories, packages for CentOS 9 are currently unavailable. Packages for CentOS 9 may be added later, or as part of the next (23.0.4) patch release.

Bug fixes and enhancements

• Fixed a number of issues that can cause Swarm encrypted overlay networks to fail to uphold their guarantees, addressing CVE-2023-28841, CVE-2023-28840, and CVE-2023-28842.
  • A lack of kernel support for encrypted overlay networks now reports as an error.
  • Encrypted overlay networks are eagerly set up, rather than waiting for multiple nodes to attach.
  • Encrypted overlay networks are now usable on Red Hat Enterprise Linux 9 through the use of the xt_bpf kernel module.
  • Users of Swarm overlay networks should review GHSA-vwm3-crmr-xfxw to ensure that unintentional exposure has not occurred.

... (truncated)

Commits

• cbce331 Merge pull request #45330 from kevingentile/buildkit-3770
• 5f684cb Merge pull request #45331 from thaJeztah/23.0_backport_rootless_script_bugs
• 3731ce1 Fix argument quoting bugs in dockerd-rootless.sh
• 23774ad vendor: github.com/moby/buildkit v0.10.7-0.20230412161310-d52b2d584242
• 90e8a0b Merge pull request #45323 from thaJeztah/23.0_backport_vendor_sctp
• 9277e64 vendor: github.com/ishidawataru/sctp v0.0.0-20230406120618-7ff4192f6ff2
• cdb6200 Merge pull request #45293 from AkihiroSuda/backport-45283-23
• 09fbbd5 docker-rootless-setuptools.sh: improve readability of messages
• 4ca4705 Merge pull request #45277 from thaJeztah/23.0_bump_go1.19.8
• d3e5293 [23.0] update go to go1.19.8
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #118.