replicatedhq / outdated

Kubectl plugin to find and report outdated images running in a Kubernetes cluster
https://outdated.sh
Apache License 2.0
426 stars 23 forks source link

Bump github.com/docker/docker from 1.13.1 to 20.10.19+incompatible #91

Closed dependabot[bot] closed 2 years ago

dependabot[bot] commented 2 years ago

Bumps github.com/docker/docker from 1.13.1 to 20.10.19+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v20.10.19

This release of Docker Engine comes with some bug-fixes, and an updated version of Docker Compose.

Builder

  • Fix an issue that could result in a panic during docker builder prune or docker system prune moby/moby#44122.

Daemon

  • Fix a bug where using docker volume prune would remove volumes that were still in use if the daemon was running with "live restore" and was restarted moby/moby#44238.

Packaging

v20.10.18

This release of Docker Engine comes with a fix for a low-severity security issue, some minor bug fixes, and updated versions of Docker Compose, Docker Buildx, containerd, and runc.

Client

Builder

  • Fix an issue where file-capabilities were not preserved during build moby/moby#43876.
  • Fix an issue that could result in a panic caused by a concurrent map read and map write moby/moby#44067

Daemon

  • Fix a security vulnerability relating to supplementary group permissions, which could allow a container process to bypass primary group restrictions within the container CVE-2022-36109, GHSA-rc4r-wh2q-q6c4.
  • seccomp: add support for Landlock syscalls in default policy moby/moby#43991.
  • seccomp: update default policy to support new syscalls introduced in kernel 5.12 - 5.16 moby/moby#43991.
  • Fix an issue where cache lookup for image manifests would fail, resulting in a redundant round-trip to the image registry moby/moby#44109.
  • Fix an issue where exec processes and healthchecks were not terminated when they timed out moby/moby#44018.

Packaging

  • Update Docker Buildx to v0.9.1.

... (truncated)

Changelog

Sourced from github.com/docker/docker's changelog.

Changelog

Items starting with DEPRECATE are important deprecation notices. For more information on the list of deprecated flags and APIs please have a look at https://docs.docker.com/engine/deprecated/ where target removal dates can also be found.

17.03.2-ce (2017-05-29)

Networking

  • Fix a concurrency issue preventing network creation #33273

Runtime

  • Relabel secrets path to avoid a Permission Denied on selinux enabled systems #33236 (ref #32529
  • Fix cases where local volume were not properly relabeled if needed #33236 (ref #29428)
  • Fix an issue while upgrading if a plugin rootfs was still mounted #33236 (ref #32525)
  • Fix an issue where volume wouldn't default to the rprivate propagation mode #33236 (ref #32851)
  • Fix a panic that could occur when a volume driver could not be retrieved #33236 (ref #32347)
  • Add a warning in docker info when the overlay or overlay2 graphdriver is used on a filesystem without d_type support #33236 (ref #31290)
  • Fix an issue with backporting mount spec to older volumes #33207
  • Fix issue where a failed unmount can lead to data loss on local volume remove #33120

Swarm Mode

  • Fix a case where tasks could get killed unexpectedly #33118
  • Fix an issue preventing to deploy services if the registry cannot be reached despite the needed images being locally present #33117

17.05.0-ce (2017-05-04)

Builder

  • Add multi-stage build support #31257 #32063
  • Allow using build-time args (ARG) in FROM #31352
  • Add an option for specifying build target #32496
  • Accept -f - to read Dockerfile from stdin, but use local context for building #31236
  • The values of default build time arguments (e.g HTTP_PROXY) are no longer displayed in docker image history unless a corresponding ARG instruction is written in the Dockerfile. #31584
  • Fix setting command if a custom shell is used in a parent image #32236
  • Fix docker build --label when the label includes single quotes and a space #31750

Client

  • Add --mount flag to docker run and docker create #32251
  • Add --type=secret to docker inspect #32124
  • Add --format option to docker secret ls #31552
  • Add --filter option to docker secret ls #30810
  • Add --filter scope=<swarm|local> to docker network ls #31529
  • Add --cpus support to docker update #31148
  • Add label filter to docker system prune and other prune commands #30740

... (truncated)

Commits
  • c964641 Merge pull request #44122 from thaJeztah/20.10_bump_buildkit
  • 3bb9973 Merge pull request #44127 from thaJeztah/20.10_backport_image_spec_no_literal
  • 435c40c Merge pull request #44247 from thaJeztah/20.10_bump_go_1.18.7
  • 11bdbf4 [20.10] Update to go 1.18.7 to address CVE-2022-2879, CVE-2022-2880, CVE-2022...
  • 35eaf7e Merge pull request #44238 from cpuguy83/20.10_fix_restore_volumerefs
  • 66ddb7f Fix live-restore w/ restart policies + volume refs
  • f219cb5 Merge pull request #44218 from thaJeztah/20.10_backport_more_robust_rootless
  • c003392 contrib: make dockerd-rootless-setuptool.sh more robust
  • 53313be docker-rootless-setuptools.sh: use context after install
  • 4163c55 Merge pull request #44202 from crazy-max/20.10_backport_api-fix-logo
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 2 years ago

Superseded by #95.