chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 24.0.7+incompatible by dependabot[bot] · Pull Request #57 · kloudlite/operator

dependabot · 2023-12-16T08:08:50Z

Bumps github.com/docker/docker from 20.10.21+incompatible to 24.0.7+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v24.0.7

24.0.7

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 24.0.7 milestone

moby/moby, 24.0.7 milestone

Bug fixes and enhancements

Write overlay2 layer metadata atomically. moby/moby#46703

Fix "Rootful-in-Rootless" Docker-in-Docker on systemd version 250 and later. moby/moby#46626

Fix dockerd-rootless-setuptools.sh when username contains a backslash. moby/moby#46407

Fix a bug that would prevent network sandboxes to be fully deleted when stopping containers with no network attachments and when dockerd --bridge=none is used. moby/moby#46702

Fix a bug where cancelling an API request could interrupt container restart. moby/moby#46697

Fix an issue where containers would fail to start when providing --ip-range with a range larger than the subnet. docker/for-mac#6870

Fix data corruption with zstd output. moby/moby#46709

Fix the conditions under which the container's MAC address is applied. moby/moby#46478

Improve the performance of the stats collector. moby/moby#46448

Fix an issue with source policy rules ending up in the wrong order. moby/moby#46441

Packaging updates

Add support for Fedora 39 and Ubuntu 23.10. docker/docker-ce-packaging#940, docker/docker-ce-packaging#955

Fix docker.socket not getting disabled when uninstalling the docker-ce RPM package. docker/docker-ce-packaging#852

Upgrade Go to go1.20.10. docker/docker-ce-packaging#951

Upgrade containerd to v1.7.6 (static binaries only). moby/moby#46103

Upgrade the containerd.io package to v1.6.24.

Security

Deny containers access to /sys/devices/virtual/powercap by default. This change hardens against CVE-2020-8694, CVE-2020-8695, and CVE-2020-12912, and an attack known as the PLATYPUS attack. For more details, see advisory, commit.

v24.0.6

24.0.6

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

docker/cli, 24.0.6 milestone

moby/moby, 24.0.6 milestone

Bug fixes and enhancements

containerd storage backend: Fix docker ps failing when a container image is no longer present in the content store. moby/moby#46095

containerd storage backend: Fix docker ps -s -a and docker container prune failing when a container image config is no longer present in the content store. moby/moby#46097

containerd storage backend: Fix docker inspect failing when a container image config is no longer (or was never) present in the content store. moby/moby#46244

containerd storage backend: Fix diff and export with the overlayfs snapshotter by using reference-counted rootfs mounts. moby/moby#46266

containerd storage backend: Fix a misleading error message when the image platforms available locally do not match the desired platform. moby/moby#46300

containerd storage backend: Fix the FROM scratch Dockerfile instruction with the classic builder. moby/moby#46302

containerd storage backend: Fix mismatched image rootfs and manifest layers errors with the classic builder. moby/moby#46310

... (truncated)

Commits

311b9ff Merge pull request #46697 from thaJeztah/24.0_backport_restart_nocancel
af60804 Merge pull request from GHSA-jq35-85cj-fj4p
3cf363e Merge pull request #46709 from thaJeztah/24.0_backport_bump_compress
05d7386 daemon: daemon.containerRestart: don't cancel restart on context cancel
649c944 Merge pull request #46703 from thaJeztah/24.0_backport_atomic-layer-data-write
9b20b1a Merge pull request #46702 from thaJeztah/24.0_backport_releaseNetwork_Network...
dd37b0b vendor: github.com/klauspost/compress v1.17.2
7058c0d vendor: github.com/klauspost/compress v1.16.5
57bd388 daemon: overlay2: Write layer metadata atomically
05d95fd daemon: release sandbox even when NetworkDisabled
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* removing pinned k8s deps * upgrading to go version 1.21.1 * fixes mutating webhook validation type * fix(resources-watcher): controllers updated for controller-runtime 0.16.0 * Refactoring: updating to new controller runtime. - Work in progress * Rfactoring mongo operator * fix(resource-watcher): platform resource watcher uses grpc connect now - removes kafka message sender * fix(mongo/database): fixes standalone database - updates to standalone CRD, to have output credentials and helm secret name in spec * feat(platform-operator): includes remaining operators * fix(msvc-influx): refactorings for controllers * Feature/ci updates (#58) * Cleanup: deleted depricated cluster-setup operator * CI: added workflows to build binaries and push images to container registry * CI: changed CI matrix strategy * Refactor: fixed compilation issues and removed depricated operators * CI: added UPX compression before container building * CI: added upx compression before container build * CI: added platform and agent operators to the build flow --------- Co-authored-by: Karthik Thirumalasetti <karthik@kloudlite.io> * chore(deps): bump github.com/docker/docker (#57) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/grpc from 1.57.0 to 1.57.1 (#56) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.57.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.57.0...v1.57.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 (#55) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.15.0 to 0.17.0. - [Commits](golang/net@v0.15.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/cyphar/filepath-securejoin (#53) Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) from 0.2.3 to 0.2.4. - [Release notes](https://github.com/cyphar/filepath-securejoin/releases) - [Commits](cyphar/filepath-securejoin@v0.2.3...v0.2.4) --- updated-dependencies: - dependency-name: github.com/cyphar/filepath-securejoin dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bug/build path fix (#60) * Cleanup: deleted depricated cluster-setup operator * CI: added workflows to build binaries and push images to container registry --------- Signed-off-by: Karthik Thirumalasetti <karthik@kloudlite.io> * CI: added workflows to build binaries and push images to container registry (#61) * Bug/build path fix (#62) * CI: added workflows to build binaries and push images to container registry * Path fix * chore(deps): bump github.com/docker/distribution (#54) Bumps [github.com/docker/distribution](https://github.com/docker/distribution) from 2.8.1+incompatible to 2.8.2+incompatible. - [Release notes](https://github.com/docker/distribution/releases) - [Commits](distribution/distribution@v2.8.1...v2.8.2) --- updated-dependencies: - dependency-name: github.com/docker/distribution dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Added Security policy --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Karthik Thirumalasetti <karthik@kloudlite.io> Co-authored-by: nxtcoder17 <nxtcoder17@gmail.com> Co-authored-by: Piyush Kumar <piyush@Piyushs-MacBook-Air.local> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

* removing pinned k8s deps * upgrading to go version 1.21.1 * fixes mutating webhook validation type * fix(resources-watcher): controllers updated for controller-runtime 0.16.0 * Refactoring: updating to new controller runtime. - Work in progress * Rfactoring mongo operator * fix(resource-watcher): platform resource watcher uses grpc connect now - removes kafka message sender * fix(mongo/database): fixes standalone database - updates to standalone CRD, to have output credentials and helm secret name in spec * feat(platform-operator): includes remaining operators * fix(msvc-influx): refactorings for controllers * Feature/ci updates (#58) * Cleanup: deleted depricated cluster-setup operator * CI: added workflows to build binaries and push images to container registry * CI: changed CI matrix strategy * Refactor: fixed compilation issues and removed depricated operators * CI: added UPX compression before container building * CI: added upx compression before container build * CI: added platform and agent operators to the build flow --------- Co-authored-by: Karthik Thirumalasetti <karthik@kloudlite.io> * chore(deps): bump github.com/docker/docker (#57) Bumps [github.com/docker/docker](https://github.com/docker/docker) from 20.10.21+incompatible to 24.0.7+incompatible. - [Release notes](https://github.com/docker/docker/releases) - [Commits](moby/moby@v20.10.21...v24.0.7) --- updated-dependencies: - dependency-name: github.com/docker/docker dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump google.golang.org/grpc from 1.57.0 to 1.57.1 (#56) Bumps [google.golang.org/grpc](https://github.com/grpc/grpc-go) from 1.57.0 to 1.57.1. - [Release notes](https://github.com/grpc/grpc-go/releases) - [Commits](grpc/grpc-go@v1.57.0...v1.57.1) --- updated-dependencies: - dependency-name: google.golang.org/grpc dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump golang.org/x/net from 0.15.0 to 0.17.0 (#55) Bumps [golang.org/x/net](https://github.com/golang/net) from 0.15.0 to 0.17.0. - [Commits](golang/net@v0.15.0...v0.17.0) --- updated-dependencies: - dependency-name: golang.org/x/net dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * chore(deps): bump github.com/cyphar/filepath-securejoin (#53) Bumps [github.com/cyphar/filepath-securejoin](https://github.com/cyphar/filepath-securejoin) from 0.2.3 to 0.2.4. - [Release notes](https://github.com/cyphar/filepath-securejoin/releases) - [Commits](cyphar/filepath-securejoin@v0.2.3...v0.2.4) --- updated-dependencies: - dependency-name: github.com/cyphar/filepath-securejoin dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Bug/build path fix (#60) * Cleanup: deleted depricated cluster-setup operator * CI: added workflows to build binaries and push images to container registry --------- Signed-off-by: Karthik Thirumalasetti <karthik@kloudlite.io> * CI: added workflows to build binaries and push images to container registry (#61) * Bug/build path fix (#62) * CI: added workflows to build binaries and push images to container registry * Path fix * chore(deps): bump github.com/docker/distribution (#54) Bumps [github.com/docker/distribution](https://github.com/docker/distribution) from 2.8.1+incompatible to 2.8.2+incompatible. - [Release notes](https://github.com/docker/distribution/releases) - [Commits](distribution/distribution@v2.8.1...v2.8.2) --- updated-dependencies: - dependency-name: github.com/docker/distribution dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> * Added Security policy --------- Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: Karthik Thirumalasetti <karthik@kloudlite.io> Co-authored-by: nxtcoder17 <nxtcoder17@gmail.com> Co-authored-by: Piyush Kumar <piyush@Piyushs-MacBook-Air.local> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

- [Misuse of ServerConfig.PublicKeyCallback may cause authorization bypass in golang.org/x/crypto #56 ](https://github.com/kloudlite/operator/security/dependabot/56) - [ Non-linear parsing of case-insensitive content in golang.org/x/net/html #57](https://github.com/kloudlite/operator/security/dependabot/57)

dependabot Bot added the DEPENDENCY Pull requests that update a dependency file label Dec 16, 2023

karthik1729 merged commit 34796ec into release-1.0.5 Dec 16, 2023

dependabot Bot deleted the dependabot/go_modules/github.com/docker/docker-24.0.7incompatible branch December 16, 2023 11:01

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 24.0.7+incompatible#57

chore(deps): bump github.com/docker/docker from 20.10.21+incompatible to 24.0.7+incompatible#57
karthik1729 merged 1 commit into
release-1.0.5from
dependabot/go_modules/github.com/docker/docker-24.0.7incompatible

dependabot Bot commented on behalf of github Dec 16, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

dependabot Bot commented on behalf of github Dec 16, 2023

v24.0.7

24.0.7

Bug fixes and enhancements

Packaging updates

Security

v24.0.6

24.0.6

Bug fixes and enhancements

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant