Update module github.com/docker/docker to v20.10.18 #20

renovate-bot · 2022-09-11T21:17:01Z

renovate-bot commented

2022-09-11 21:17:01 +00:00

This PR contains the following updates:

Package	Type	Update	Change
github.com/docker/docker	require	patch	`v20.10.17+incompatible` -> `v20.10.18`

Release Notes

docker/docker

`v20.10.18`

Compare Source

This release of Docker Engine comes with a fix for a low-severity security issue,
some minor bug fixes, and updated versions of Docker Compose, Docker Buildx,
containerd, and runc.

Client

Add Bash completion for Docker Compose docker/cli#3752.

Builder

Fix an issue where file-capabilities were not preserved during build moby/moby#43876.
Fix an issue that could result in a panic caused by a concurrent map read and map write moby/moby#44067

Daemon

Fix a security vulnerability relating to supplementary group permissions, which
could allow a container process to bypass primary group restrictions within the
container CVE-2022-36109, GHSA-rc4r-wh2q-q6c4.
seccomp: add support for Landlock syscalls in default policy moby/moby#43991.
seccomp: update default policy to support new syscalls introduced in kernel 5.12 - 5.16 moby/moby#43991.
Fix an issue where cache lookup for image manifests would fail, resulting
in a redundant round-trip to the image registry moby/moby#44109.
Fix an issue where exec processes and healthchecks were not terminated
when they timed out moby/moby#44018.

Packaging

Update Docker Buildx to v0.9.1.
Update Docker Compose to v2.10.2.
Update containerd (containerd.io package) to v1.6.8.
Update runc to v1.1.4.
Update Go runtime to 1.18.6,
which contains fixes for CVE-2022-27664
and CVE-2022-32190.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

If you want to rebase/retry this PR, click this checkbox.

This PR has been generated by Renovate Bot.

This PR contains the following updates: | Package | Type | Update | Change | |---|---|---|---| | [github.com/docker/docker](https://github.com/docker/docker) | require | patch | `v20.10.17+incompatible` -> `v20.10.18` | --- ### Release Notes <details> <summary>docker/docker</summary> ### [`v20.10.18`](https://github.com/moby/moby/releases/tag/v20.10.18) [Compare Source](https://github.com/docker/docker/compare/v20.10.17...v20.10.18) This release of Docker Engine comes with a fix for a low-severity security issue, some minor bug fixes, and updated versions of Docker Compose, Docker Buildx, `containerd`, and `runc`. ##### Client - Add Bash completion for Docker Compose [docker/cli#3752](https://github.com/docker/cli/pull/3752). ##### Builder - Fix an issue where file-capabilities were not preserved during build [moby/moby#43876](https://github.com/moby/moby/pull/43876). - Fix an issue that could result in a panic caused by a concurrent map read and map write [moby/moby#44067](https://github.com/moby/moby/pull/44067) ##### Daemon - Fix a security vulnerability relating to supplementary group permissions, which could allow a container process to bypass primary group restrictions within the container [CVE-2022-36109](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36109), [GHSA-rc4r-wh2q-q6c4](https://github.com/moby/moby/security/advisories/GHSA-rc4r-wh2q-q6c4). - seccomp: add support for Landlock syscalls in default policy [moby/moby#43991](https://github.com/moby/moby/pull/43991). - seccomp: update default policy to support new syscalls introduced in kernel 5.12 - 5.16 [moby/moby#43991](https://github.com/moby/moby/pull/43991). - Fix an issue where cache lookup for image manifests would fail, resulting in a redundant round-trip to the image registry [moby/moby#44109](https://github.com/moby/moby/pull/44109). - Fix an issue where `exec` processes and healthchecks were not terminated when they timed out [moby/moby#44018](https://github.com/moby/moby/pull/44018). ##### Packaging - Update Docker Buildx to [v0.9.1](https://github.com/docker/buildx/releases/tag/v0.9.1). - Update Docker Compose to [v2.10.2](https://github.com/docker/compose/releases/tag/v2.10.2). - Update containerd (`containerd.io` package) to [v1.6.8](https://github.com/containerd/containerd/releases/tag/v1.6.8). - Update runc to [v1.1.4](https://github.com/opencontainers/runc/releases/tag/v1.1.4). - Update Go runtime to [1.18.6](https://go.dev/doc/devel/release#go1.18.minor), which contains fixes for [CVE-2022-27664](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-27664) and [CVE-2022-32190](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-32190). </details> --- ### Configuration 📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined). 🚦 **Automerge**: Enabled. ♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox. 🔕 **Ignore**: Close this PR and you won't be reminded about this update again. --- - [ ] If you want to rebase/retry this PR, click this checkbox. --- This PR has been generated by [Renovate Bot](https://github.com/renovatebot/renovate).

renovate-bot added 1 commit 2022-09-11 21:17:04 +00:00

Update module github.com/docker/docker to v20.10.18 71cc3caaac

nemunaire merged commit 71cc3caaac into master

2022-09-14 13:42:35 +00:00

nemunaire deleted branch renovate/github.com-docker-docker-20.x

2022-09-14 13:42:36 +00:00

This repo is archived. You cannot comment on pull requests.

1 Participants

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: nemunaire/minifaas#20