Sourced from github.com/docker/docker's releases.

v20.10.16

This release of Docker Engine fixes a regression in the Docker CLI builds for macOS, fixes an issue with docker stats when using containerd 1.5 and up, and updates the Go runtime to include a fix for CVE-2022-29526.

Client

• Fix a regression in binaries for macOS introduced in 20.10.15, which resulted in a panic docker/cli#43426.
• Update golang.org/x/sys dependency which contains a fix for CVE-2022-29526.

Daemon

• Fix an issue where docker stats was showing empty stats when running with containerd 1.5.0 or up moby/moby#43567.
• Update the golang.org/x/sys build-time dependency which contains a fix for CVE-2022-29526.

Packaging

• Update Go runtime to 1.17.10, which contains a fix for CVE-2022-29526.
• Use "weak" dependencies for the docker scan CLI plugin, to prevent a "conflicting requests" error when users performed an off-line installation from downloaded RPM packages docker/docker-ce-packaging#659.

v20.10.15

This release of Docker Engine comes with updated versions of the compose, buildx, containerd, and runc components, as well as some minor bugfixes.

Daemon

• Use a RWMutex for stateCounter to prevent potential locking congestion moby/moby#43426.
• Prevent an issue where the daemon was unable to find an available IP-range in some conditions moby/moby#43360

Packaging

• Update Docker Compose to v2.5.0.
• Update Docker Buildx to v0.8.2.
• Update Go runtime to 1.17.9.
• Update containerd (containerd.io package) to v1.6.4.
• Update runc version to v1.1.1.
• Add packages for CentOS 9 stream and Fedora 36.

v20.10.14

This release of Docker Engine updates the default inheritable capabilities for containers to address CVE-2022-24769, a new version of the containerd.io runtime is also included to address the same issue.

... (truncated)

• f756502 Merge pull request #43582 from thaJeztah/20.10_bump_golang_1.17.10
• a15acb4 [20.10] vendor: golang.org/x/sys v0.0.0-20220412211240-33da011f77ad
• 5f2e0b7 [20.10] update golang to 1.17.10
• 462cd7d Merge pull request #43567 from 42wim/fixstats
• be7855f vendor: update github.com/containerd/cgroups and github.com/cilium/ebpf
• 4433bf6 Merge pull request #43561 from thaJeztah/20.10_backport_bump_containerd_binar...
• 414a9e2 update containerd binary to v1.6.4
• 0809f5f Merge pull request #43433 from thaJeztah/20.10_backport_update_containerd_runc
• 47b6a92 update containerd binary to v1.6.3
• 6d7c2b2 update containerd binary to v1.6.2
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)