Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

docker-26.1.5_ce-10.1 RPM for riscv64

From OpenSuSE Ports Tumbleweed for riscv64

Name: docker Distribution: openSUSE:Factory:RISCV
Version: 26.1.5_ce Vendor: openSUSE
Release: 10.1 Build date: Wed Nov 27 13:10:42 2024
Group: System/Management Build host: reproducible
Size: 96776014 Source RPM: docker-26.1.5_ce-10.1.src.rpm
Packager: https://bugs.opensuse.org
Url: http://www.docker.io
Summary: The Moby-project Linux container runtime
Docker complements LXC with a high-level API which operates at the process
level. It runs unix processes with strong guarantees of isolation and
repeatability across servers.

Docker is a great building block for automating distributed systems: large-scale
web deployments, database clusters, continuous deployment systems, private PaaS,
service-oriented architectures, etc.

Provides

Requires

License

Apache-2.0

Changelog

* Wed Nov 27 2024 Aleksa Sarai <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - Disable docker-buildx builds for SLES. It turns out that build containers
    with docker-buildx don't currently get the SUSE secrets mounts applied,
    meaning that container-suseconnect doesn't work when building images.
    bsc#1233819
* Tue Nov 12 2024 Aleksa Sarai <[email protected]>
  - Remove DOCKER_NETWORK_OPTS from docker.service. This was removed from
    sysconfig a long time ago, and apparently this causes issues with systemd in
    some cases.
* Wed Oct 16 2024 Aleksa Sarai <[email protected]>
  - Further merge docker and docker-stable specfiles to minimise the differences.
    The main thing is that we now include both halves of the
    Conflicts/Provides/Obsoletes dance in both specfiles.
* Wed Oct 16 2024 Aleksa Sarai <[email protected]>
  - Update to docker-buildx v0.17.1 to match standalone docker-buildx package we
    are replacing. See upstream changelog online at
    <https://github.com/docker/buildx/releases/tag/v0.17.1>
* Tue Oct 15 2024 Aleksa Sarai <[email protected]>
  - Allow users to disable SUSE secrets support by setting
    DOCKER_SUSE_SECRETS_ENABLE=0 in /etc/sysconfig/docker. bsc#1231348
    bsc#1232999
* Wed Sep 18 2024 Ana Guerrero <[email protected]>
  - Add %{_sysconfdir}/audit/rules.d to filelist.
* Sat Sep 07 2024 Aleksa Sarai <[email protected]>
  - Mark docker-buildx as required since classic "docker build" has been
    deprecated since Docker 23.0. bsc#1230331
  - Import docker-buildx v0.16.2 as a subpackage. Previously this was a separate
    package, but with docker-stable it will be necessary to maintain the packages
    together and it makes more sense to have them live in the same OBS package.
    bsc#1230333
  - Make some minor name macro updates to help with the docker-stable package
    fork.
* Wed Jul 31 2024 Aleksa Sarai <[email protected]>
  - Update to Docker 26.1.5-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/26.1/#2615>
    bsc#1230294
  - This update includes fixes for:
    * CVE-2024-41110. bsc#1228324
    * CVE-2023-47108. bsc#1217070
    * CVE-2023-45142. bsc#1228553
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * 0006-bsc1221916-update-to-patched-buildkit-version-to-fix.patch
    * 0007-bsc1214855-volume-use-AtomicWriteFile-to-save-volume.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Wed Jul 31 2024 Aleksa Sarai <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - Update to Docker 25.0.6-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/25.0/#2506>
  - This update includes fixes for:
    * CVE-2024-41110. bsc#1228324
    * CVE-2023-47108. bsc#1217070 bsc#1229806
    * CVE-2023-45142. bsc#1228553 bsc#1229806
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * 0006-bsc1221916-update-to-patched-buildkit-version-to-fix.patch
    * 0007-bsc1214855-volume-use-AtomicWriteFile-to-save-volume.patch
* Mon Jun 24 2024 Aleksa Sarai <[email protected]>
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
  - Fix BuildKit's symlink resolution logic to correctly handle non-lexical
    symlinks. Backport of <https://github.com/moby/buildkit/pull/4896> and
    <https://github.com/moby/buildkit/pull/5060>. bsc#1221916
    + 0006-bsc1221916-update-to-patched-buildkit-version-to-fix.patch
  - Write volume options atomically so sudden system crashes won't result in
    future Docker starts failing due to empty files. Backport of
    <https://github.com/moby/moby/pull/48034>. bsc#1214855
    + 0007-bsc1214855-volume-use-AtomicWriteFile-to-save-volume.patch
* Thu Jun 06 2024 Aleksa Sarai <[email protected]>
  - Update to Docker 26.1.4-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/26.1/#2614>
  - Rebase patches:
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Wed Apr 24 2024 Aleksa Sarai <[email protected]>
  - Update to Docker 26.1.0-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/26.1/#2610>
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Thu Apr 18 2024 Aleksa Sarai <[email protected]>
  - Update to Docker 26.0.1-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/26.0/#2601>
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
  - Update --add-runtime to point to correct binary path.
* Mon Mar 25 2024 Aleksa Sarai <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - Update to Docker 25.0.5-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/25.0/#2505> bsc#1223409
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
  - Remove upstreamed patches:
    - 0007-daemon-overlay2-remove-world-writable-permission-fro.patch
  - Update --add-runtime to point to correct binary path.
* Fri Mar 08 2024 Dan Čermák <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - Add patch to fix bsc#1220339
    * 0007-daemon-overlay2-remove-world-writable-permission-fro.patch
  - rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * 0006-Vendor-in-latest-buildkit-v0.11-branch-including-CVE.patch
* Thu Feb 22 2024 Thorsten Kukuk <[email protected]>
  - Allow to disable apparmor support (ALP supports only SELinux)
* Sat Feb 17 2024 Danish Prakash <[email protected]>
  - Update to Docker 25.0.3-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/25.0/#2503>
  - Fixes:
    * bsc#1219267 - CVE-2024-23651
    * bsc#1219268 - CVE-2024-23652
    * bsc#1219438 - CVE-2024-23653
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
  - Remove upstreamed patches:
    - 0006-Vendor-in-latest-buildkit-v0.11-branch-including-CVE.patch
* Wed Feb 14 2024 Dan Čermák <[email protected]>
  - Vendor latest buildkit v0.11:
    Add patch 0006-Vendor-in-latest-buildkit-v0.11-branch-including-CVE.patch that
    vendors in the latest v0.11 buildkit branch including bugfixes for the following:
    * bsc#1219438: CVE-2024-23653
    * bsc#1219268: CVE-2024-23652
    * bsc#1219267: CVE-2024-23651
  - rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
  - switch from %patchN to %patch -PN syntax
  - remove unused rpmlint filters and add filters to silence pointless bash & zsh
    completion warnings
* Fri Oct 27 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 24.0.7-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2407>. bsc#1217513
    * Deny containers access to /sys/devices/virtual/powercap by default.
    - CVE-2020-8694 bsc#1170415
    - CVE-2020-8695 bsc#1170446
    - CVE-2020-12912 bsc#1178760
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Wed Oct 11 2023 Aleksa Sarai <[email protected]>
  - Add a patch to fix apparmor on SLE-12, reverting the upstream removal of
    version-specific templating for the default apparmor profile. bsc#1213500
    + 0005-SLE12-revert-apparmor-remove-version-conditionals-fr.patch
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
* Thu Sep 14 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 24.0.6-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2406>. bsc#1215323
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
  - Switch from disabledrun to manualrun in _service.
  - Add a docker.socket unit file, but with socket activation effectively
    disabled to ensure that Docker will always run even if you start the socket
    individually. Users should probably just ignore this unit file. bsc#1210141
* Tue Jul 25 2023 Dirk Müller <[email protected]>
  - Update to Docker 24.0.5-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2405>. bsc#1213229
* Fri Jul 07 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 24.0.4-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2404>. bsc#1213500
* Fri Jul 07 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 24.0.3-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2403>. bsc#1213120
  - Rebase patches:
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Thu Jun 29 2023 Danish Prakash <[email protected]>
  - Recommend docker-rootless-extras instead of Require(ing) it, given
    it's an additional functionality and not inherently required for
    docker to function.
* Tue Jun 20 2023 Danish Prakash <[email protected]>
  - Add docker-rootless-extras subpackage
    (https://docs.docker.com/engine/security/rootless)
* Wed Jun 14 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 24.0.2-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/24.0/#2402>. bsc#1212368
    * Includes the upstreamed fix for the mount table pollution issue.
      bsc#1210797
  - Add Recommends for docker-buildx, and add /usr/lib/docker/cli-plugins as
    being provided by this package.
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Sun May 21 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 23.0.6-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/23.0/#2306>. bsc#1211578
  - Rebase patches:
    * cli-0001-docs-include-required-tools-in-source-tree.patch
  - Re-unify packaging for SLE-12 and SLE-15.
  - Add patch to fix build on SLE-12 by switching back to libbtrfs-devel headers
    (the uapi headers in SLE-12 are too old).
    + 0003-BUILD-SLE12-revert-graphdriver-btrfs-use-kernel-UAPI.patch
  - Re-numbered patches:
    - 0003-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    + 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch`
* Thu Apr 27 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 23.0.5-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/23.0/#2305>.
  - Rebase patches:
    * cli-0001-docs-include-required-tools-in-source-tree.patch
* Wed Apr 26 2023 Aleksa Sarai <[email protected]>
  - Update to Docker 23.0.4-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/23.0/#2304>. bsc#1208074
  - Fixes:
    * bsc#1214107 - CVE-2023-28840
    * bsc#1214108 - CVE-2023-28841
    * bsc#1214109 - CVE-2023-28842
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
  - Renumbered patches:
    - 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
  - Remove upstreamed patches:
    - 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
    - 0006-bsc1193930-vendor-update-golang.org-x-crypto.patch
    - 0007-bsc1200022-fifo.Close-prevent-possible-panic-if-fifo.patch
  - Backport <https://github.com/docker/cli/pull/4228> to allow man pages to be
    built without internet access in OBS.
    + cli-0001-docs-include-required-tools-in-source-tree.patch
* Wed Feb 01 2023 Dirk Müller <[email protected]>
  - update to 20.10.23-ce.
    * see upstream changelog at https://docs.docker.com/engine/release-notes/#201023
  - drop kubic flavor as kubic is EOL. this removes:
    kubelet.env docker-kubic-service.conf 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
* Tue Dec 06 2022 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.21-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#201021>. bsc#1206065
    bsc#1205375 CVE-2022-36109
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
    * 0006-bsc1193930-vendor-update-golang.org-x-crypto.patch
    * 0007-bsc1200022-fifo.Close-prevent-possible-panic-if-fifo.patch
  - The PRIVATE-REGISTRY patch will now output a warning if it is being used (in
    preparation for removing the feature). This feature was never meant to be
    used by users directly (and is only available in the -kubic/CaaSP version of
    the package anyway) and thus should not affect any users.
* Mon Oct 24 2022 Dan Čermák <[email protected]>
  - Fix wrong After: in docker.service, fixes bsc#1188447
* Thu Sep 29 2022 Aleksa Sarai <[email protected]>
  - Add apparmor-parser as a Recommends to make sure that most users will end up
    with it installed even if they are primarily running SELinux.
* Thu Sep 29 2022 Fabian Vogt <[email protected]>
  - Fix syntax of boolean dependency
* Thu Jul 28 2022 Frederic Crozat <[email protected]>
  - Allow to install container-selinux instead of apparmor-parser.
* Sun Jul 17 2022 Callum Farmer <[email protected]>
  - Change to using systemd-sysusers
* Wed Jun 29 2022 Aleksa Sarai <[email protected]>
  - Backport <https://github.com/containerd/fifo/pull/32> to fix a crash-on-start
    issue with dockerd. bsc#1200022
    + 0007-bsc1200022-fifo.Close-prevent-possible-panic-if-fifo.patch
* Tue Jun 07 2022 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.17-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#201017>. bsc#1200145
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
    * 0006-bsc1193930-vendor-update-golang.org-x-crypto.patch
* Fri Apr 29 2022 Aleksa Sarai <[email protected]>
  - Add patch to update golang.org/x/crypto for CVE-2021-43565 and CVE-2022-27191.
    bsc#1193930 bsc#1197284
    * 0006-bsc1193930-vendor-update-golang.org-x-crypto.patch
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
* Thu Apr 14 2022 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.14-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#201014>. bsc#1197517
    CVE-2022-24769
* Mon Jan 17 2022 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.12-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#201012>.
  - Remove CHANGELOG.md. It hasn't been maintained since 2017, and all of the
    changelogs are currently only available online.
* Thu Nov 18 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.11-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#201011>. bsc#1192814
    bsc#1193273 CVE-2021-41190
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
  - Remove upstreamed patches:
    - 0006-bsc1190670-seccomp-add-support-for-clone3-syscall-in.patch
* Wed Oct 06 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.9-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#20109>. bsc#1191355
    CVE-2021-41089 bsc#1191015 CVE-2021-41091 bsc#1191434
    CVE-2021-41092 bsc#1191334 CVE-2021-41103 bsc#1191121
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    * 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
    * 0006-bsc1190670-seccomp-add-support-for-clone3-syscall-in.patch
  - Switch to Go 1.16.x compiler, in line with upstream.
* Mon Sep 20 2021 Aleksa Sarai <[email protected]>
  - Add patch to return ENOSYS for clone3 to avoid breaking glibc again.
    bsc#1190670
    + 0006-bsc1190670-seccomp-add-support-for-clone3-syscall-in.patch
* Mon May 03 2021 Aleksa Sarai <[email protected]>
  - Add shell requires for the *-completion subpackages.
* Thu Apr 15 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.6-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#20106>. bsc#1184768
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
  - Backport upstream fix <https://github.com/moby/moby/pull/42273> for btrfs
    quotas being removed by Docker regularly. bsc#1183855 bsc#1175081
    + 0005-bsc1183855-btrfs-Do-not-disable-quota-on-cleanup.patch
* Wed Mar 03 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.5-ce. See upstream changelog online at
    <https://docs.docker.com/engine/release-notes/#20105>. bsc#1182947
  - Update runc dependency to 1.0.0~rc93.
  - Remove upstreamed patches:
    - cli-0001-Rename-bin-md2man-to-bin-go-md2man.patch
  - Rebase patches:
    * 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    * 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    * 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
  - Switch version to use -ce suffix rather than _ce to avoid confusing other
    tools. boo#1182476
* Sun Feb 14 2021 Aleksa Sarai <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - It turns out the boo#1178801 libnetwork patch is also broken on Leap, so drop
    the patch entirely. bsc#1180401 bsc#1182168
    - boo1178801-0001-Add-docker-interfaces-to-firewalld-docker-zone.patch
* Wed Feb 10 2021 Aleksa Sarai <[email protected]>
  - Fix incorrect cast in SUSE secrets patches causing warnings on SLES.
    * 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
* Sat Feb 06 2021 Aleksa Sarai <[email protected]>
  [NOTE: This update was only ever released in SLES and Leap.]
  - Update Docker to 19.03.15-ce. See upstream changelog in the packaged
    /usr/share/doc/packages/docker/CHANGELOG.md. This update includes fixes for
    bsc#1181732 (CVE-2021-21284) and bsc#1181730 (CVE-2021-21285).
  - Rebase patches:
    * bsc1073877-0001-apparmor-clobber-docker-default-profile-on-start.patch
  - Only apply the boo#1178801 libnetwork patch to handle firewalld on openSUSE.
    It appears that SLES doesn't like the patch. bsc#1180401
* Tue Feb 02 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.3-ce. See upstream changelog in the packaged
    /usr/share/doc/packages/docker/CHANGELOG.md. Fixes bsc#1181732
    (CVE-2021-21284) and bsc#1181730 (CVE-2021-21285).
  - Rebase patches on top of 20.10.3-ce.
    - 0002-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    + 0001-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    - 0003-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    + 0002-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    - 0004-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    + 0003-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    - 0005-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
    + 0004-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
* Tue Feb 02 2021 Aleksa Sarai <[email protected]>
  - Drop docker-runc, docker-test and docker-libnetwork packages. We now just use
    the upstream runc package (it's stable enough and Docker no longer pins git
    versions). docker-libnetwork is so unstable that it doesn't have any
    versioning scheme and so it really doesn't make sense to maintain the project
    as a separate package. bsc#1181641 bsc#1181677
  - Remove no-longer-needed patch for packaging now that we've dropped
    docker-runc and docker-libnetwork.
    - 0001-PACKAGING-revert-Remove-docker-prefix-for-containerd.patch
* Fri Jan 29 2021 Aleksa Sarai <[email protected]>
  - Update to Docker 20.10.2-ce. See upstream changelog in the packaged
    /usr/share/doc/packages/docker/CHANGELOG.md. bsc#1181594
  - Remove upstreamed patches:
    - bsc1122469-0001-apparmor-allow-readby-and-tracedby.patch
    - boo1178801-0001-Add-docker-interfaces-to-firewalld-docker-zone.patch
  - Add patches to fix build:
    + cli-0001-Rename-bin-md2man-to-bin-go-md2man.patch
  - Since upstream has changed their source repo (again) we have to rebase all of
    our patches. While doing this, I've collapsed all patches into one branch
    per-release and thus all the patches are now just one series:
    - packaging-0001-revert-Remove-docker-prefix-for-containerd-and-runc-.patch
    + 0001-PACKAGING-revert-Remove-docker-prefix-for-containerd.patch
    - secrets-0001-daemon-allow-directory-creation-in-run-secrets.patch
    + 0002-SECRETS-daemon-allow-directory-creation-in-run-secre.patch
    - secrets-0002-SUSE-implement-SUSE-container-secrets.patch
    + 0003-SECRETS-SUSE-implement-SUSE-container-secrets.patch
    - private-registry-0001-Add-private-registry-mirror-support.patch
    + 0004-PRIVATE-REGISTRY-add-private-registry-mirror-support.patch
    - bsc1073877-0001-apparmor-clobber-docker-default-profile-on-start.patch
    + 0005-bsc1073877-apparmor-clobber-docker-default-profile-o.patch
* Fri Jan 29 2021 Aleksa Sarai <[email protected]>
  - Re-apply secrets fix for bsc#1065609 which appears to have been lost after it
    was fixed.
    * secrets-0001-daemon-allow-directory-creation-in-run-secrets.patch
    * secrets-0002-SUSE-implement-SUSE-container-secrets.patch

Files

/etc/audit/rules.d
/etc/audit/rules.d/docker.rules
/etc/docker
/etc/docker/daemon.json
/usr/bin/docker
/usr/bin/docker-proxy
/usr/bin/dockerd
/usr/lib/docker
/usr/lib/docker/cli-plugins
/usr/lib/systemd/system/docker.service
/usr/lib/systemd/system/docker.socket
/usr/lib/sysusers.d/docker.conf
/usr/lib/udev/rules.d/80-docker.rules
/usr/sbin/rcdocker
/usr/share/doc/packages/docker
/usr/share/doc/packages/docker/README.md
/usr/share/doc/packages/docker/README_SUSE.md
/usr/share/fillup-templates/sysconfig.docker
/usr/share/licenses/docker
/usr/share/licenses/docker/LICENSE
/usr/share/man/man1/docker-attach.1.gz
/usr/share/man/man1/docker-build.1.gz
/usr/share/man/man1/docker-builder-build.1.gz
/usr/share/man/man1/docker-builder-prune.1.gz
/usr/share/man/man1/docker-builder.1.gz
/usr/share/man/man1/docker-checkpoint-create.1.gz
/usr/share/man/man1/docker-checkpoint-ls.1.gz
/usr/share/man/man1/docker-checkpoint-rm.1.gz
/usr/share/man/man1/docker-checkpoint.1.gz
/usr/share/man/man1/docker-commit.1.gz
/usr/share/man/man1/docker-config-create.1.gz
/usr/share/man/man1/docker-config-inspect.1.gz
/usr/share/man/man1/docker-config-ls.1.gz
/usr/share/man/man1/docker-config-rm.1.gz
/usr/share/man/man1/docker-config.1.gz
/usr/share/man/man1/docker-container-attach.1.gz
/usr/share/man/man1/docker-container-commit.1.gz
/usr/share/man/man1/docker-container-cp.1.gz
/usr/share/man/man1/docker-container-create.1.gz
/usr/share/man/man1/docker-container-diff.1.gz
/usr/share/man/man1/docker-container-exec.1.gz
/usr/share/man/man1/docker-container-export.1.gz
/usr/share/man/man1/docker-container-inspect.1.gz
/usr/share/man/man1/docker-container-kill.1.gz
/usr/share/man/man1/docker-container-logs.1.gz
/usr/share/man/man1/docker-container-ls.1.gz
/usr/share/man/man1/docker-container-pause.1.gz
/usr/share/man/man1/docker-container-port.1.gz
/usr/share/man/man1/docker-container-prune.1.gz
/usr/share/man/man1/docker-container-rename.1.gz
/usr/share/man/man1/docker-container-restart.1.gz
/usr/share/man/man1/docker-container-rm.1.gz
/usr/share/man/man1/docker-container-run.1.gz
/usr/share/man/man1/docker-container-start.1.gz
/usr/share/man/man1/docker-container-stats.1.gz
/usr/share/man/man1/docker-container-stop.1.gz
/usr/share/man/man1/docker-container-top.1.gz
/usr/share/man/man1/docker-container-unpause.1.gz
/usr/share/man/man1/docker-container-update.1.gz
/usr/share/man/man1/docker-container-wait.1.gz
/usr/share/man/man1/docker-container.1.gz
/usr/share/man/man1/docker-context-create.1.gz
/usr/share/man/man1/docker-context-export.1.gz
/usr/share/man/man1/docker-context-import.1.gz
/usr/share/man/man1/docker-context-inspect.1.gz
/usr/share/man/man1/docker-context-ls.1.gz
/usr/share/man/man1/docker-context-rm.1.gz
/usr/share/man/man1/docker-context-show.1.gz
/usr/share/man/man1/docker-context-update.1.gz
/usr/share/man/man1/docker-context-use.1.gz
/usr/share/man/man1/docker-context.1.gz
/usr/share/man/man1/docker-cp.1.gz
/usr/share/man/man1/docker-create.1.gz
/usr/share/man/man1/docker-diff.1.gz
/usr/share/man/man1/docker-events.1.gz
/usr/share/man/man1/docker-exec.1.gz
/usr/share/man/man1/docker-export.1.gz
/usr/share/man/man1/docker-history.1.gz
/usr/share/man/man1/docker-image-build.1.gz
/usr/share/man/man1/docker-image-history.1.gz
/usr/share/man/man1/docker-image-import.1.gz
/usr/share/man/man1/docker-image-inspect.1.gz
/usr/share/man/man1/docker-image-load.1.gz
/usr/share/man/man1/docker-image-ls.1.gz
/usr/share/man/man1/docker-image-prune.1.gz
/usr/share/man/man1/docker-image-pull.1.gz
/usr/share/man/man1/docker-image-push.1.gz
/usr/share/man/man1/docker-image-rm.1.gz
/usr/share/man/man1/docker-image-save.1.gz
/usr/share/man/man1/docker-image-tag.1.gz
/usr/share/man/man1/docker-image.1.gz
/usr/share/man/man1/docker-images.1.gz
/usr/share/man/man1/docker-import.1.gz
/usr/share/man/man1/docker-info.1.gz
/usr/share/man/man1/docker-inspect.1.gz
/usr/share/man/man1/docker-kill.1.gz
/usr/share/man/man1/docker-load.1.gz
/usr/share/man/man1/docker-login.1.gz
/usr/share/man/man1/docker-logout.1.gz
/usr/share/man/man1/docker-logs.1.gz
/usr/share/man/man1/docker-manifest-annotate.1.gz
/usr/share/man/man1/docker-manifest-create.1.gz
/usr/share/man/man1/docker-manifest-inspect.1.gz
/usr/share/man/man1/docker-manifest-push.1.gz
/usr/share/man/man1/docker-manifest-rm.1.gz
/usr/share/man/man1/docker-manifest.1.gz
/usr/share/man/man1/docker-network-connect.1.gz
/usr/share/man/man1/docker-network-create.1.gz
/usr/share/man/man1/docker-network-disconnect.1.gz
/usr/share/man/man1/docker-network-inspect.1.gz
/usr/share/man/man1/docker-network-ls.1.gz
/usr/share/man/man1/docker-network-prune.1.gz
/usr/share/man/man1/docker-network-rm.1.gz
/usr/share/man/man1/docker-network.1.gz
/usr/share/man/man1/docker-node-demote.1.gz
/usr/share/man/man1/docker-node-inspect.1.gz
/usr/share/man/man1/docker-node-ls.1.gz
/usr/share/man/man1/docker-node-promote.1.gz
/usr/share/man/man1/docker-node-ps.1.gz
/usr/share/man/man1/docker-node-rm.1.gz
/usr/share/man/man1/docker-node-update.1.gz
/usr/share/man/man1/docker-node.1.gz
/usr/share/man/man1/docker-pause.1.gz
/usr/share/man/man1/docker-plugin-create.1.gz
/usr/share/man/man1/docker-plugin-disable.1.gz
/usr/share/man/man1/docker-plugin-enable.1.gz
/usr/share/man/man1/docker-plugin-inspect.1.gz
/usr/share/man/man1/docker-plugin-install.1.gz
/usr/share/man/man1/docker-plugin-ls.1.gz
/usr/share/man/man1/docker-plugin-push.1.gz
/usr/share/man/man1/docker-plugin-rm.1.gz
/usr/share/man/man1/docker-plugin-set.1.gz
/usr/share/man/man1/docker-plugin-upgrade.1.gz
/usr/share/man/man1/docker-plugin.1.gz
/usr/share/man/man1/docker-port.1.gz
/usr/share/man/man1/docker-ps.1.gz
/usr/share/man/man1/docker-pull.1.gz
/usr/share/man/man1/docker-push.1.gz
/usr/share/man/man1/docker-rename.1.gz
/usr/share/man/man1/docker-restart.1.gz
/usr/share/man/man1/docker-rm.1.gz
/usr/share/man/man1/docker-rmi.1.gz
/usr/share/man/man1/docker-run.1.gz
/usr/share/man/man1/docker-save.1.gz
/usr/share/man/man1/docker-search.1.gz
/usr/share/man/man1/docker-secret-create.1.gz
/usr/share/man/man1/docker-secret-inspect.1.gz
/usr/share/man/man1/docker-secret-ls.1.gz
/usr/share/man/man1/docker-secret-rm.1.gz
/usr/share/man/man1/docker-secret.1.gz
/usr/share/man/man1/docker-service-create.1.gz
/usr/share/man/man1/docker-service-inspect.1.gz
/usr/share/man/man1/docker-service-logs.1.gz
/usr/share/man/man1/docker-service-ls.1.gz
/usr/share/man/man1/docker-service-ps.1.gz
/usr/share/man/man1/docker-service-rm.1.gz
/usr/share/man/man1/docker-service-rollback.1.gz
/usr/share/man/man1/docker-service-scale.1.gz
/usr/share/man/man1/docker-service-update.1.gz
/usr/share/man/man1/docker-service.1.gz
/usr/share/man/man1/docker-stack-config.1.gz
/usr/share/man/man1/docker-stack-deploy.1.gz
/usr/share/man/man1/docker-stack-ls.1.gz
/usr/share/man/man1/docker-stack-ps.1.gz
/usr/share/man/man1/docker-stack-rm.1.gz
/usr/share/man/man1/docker-stack-services.1.gz
/usr/share/man/man1/docker-stack.1.gz
/usr/share/man/man1/docker-start.1.gz
/usr/share/man/man1/docker-stats.1.gz
/usr/share/man/man1/docker-stop.1.gz
/usr/share/man/man1/docker-swarm-ca.1.gz
/usr/share/man/man1/docker-swarm-init.1.gz
/usr/share/man/man1/docker-swarm-join-token.1.gz
/usr/share/man/man1/docker-swarm-join.1.gz
/usr/share/man/man1/docker-swarm-leave.1.gz
/usr/share/man/man1/docker-swarm-unlock-key.1.gz
/usr/share/man/man1/docker-swarm-unlock.1.gz
/usr/share/man/man1/docker-swarm-update.1.gz
/usr/share/man/man1/docker-swarm.1.gz
/usr/share/man/man1/docker-system-df.1.gz
/usr/share/man/man1/docker-system-events.1.gz
/usr/share/man/man1/docker-system-info.1.gz
/usr/share/man/man1/docker-system-prune.1.gz
/usr/share/man/man1/docker-system.1.gz
/usr/share/man/man1/docker-tag.1.gz
/usr/share/man/man1/docker-top.1.gz
/usr/share/man/man1/docker-trust-inspect.1.gz
/usr/share/man/man1/docker-trust-key-generate.1.gz
/usr/share/man/man1/docker-trust-key-load.1.gz
/usr/share/man/man1/docker-trust-key.1.gz
/usr/share/man/man1/docker-trust-revoke.1.gz
/usr/share/man/man1/docker-trust-sign.1.gz
/usr/share/man/man1/docker-trust-signer-add.1.gz
/usr/share/man/man1/docker-trust-signer-remove.1.gz
/usr/share/man/man1/docker-trust-signer.1.gz
/usr/share/man/man1/docker-trust.1.gz
/usr/share/man/man1/docker-unpause.1.gz
/usr/share/man/man1/docker-update.1.gz
/usr/share/man/man1/docker-version.1.gz
/usr/share/man/man1/docker-volume-create.1.gz
/usr/share/man/man1/docker-volume-inspect.1.gz
/usr/share/man/man1/docker-volume-ls.1.gz
/usr/share/man/man1/docker-volume-prune.1.gz
/usr/share/man/man1/docker-volume-rm.1.gz
/usr/share/man/man1/docker-volume-update.1.gz
/usr/share/man/man1/docker-volume.1.gz
/usr/share/man/man1/docker-wait.1.gz
/usr/share/man/man1/docker.1.gz
/usr/share/man/man5/Dockerfile.5.gz
/usr/share/man/man8/dockerd.8.gz
/var/lib/docker


Generated by rpm2html 1.8.1

Fabrice Bellet, Sun Dec 8 23:52:46 2024