Skip to content

vendor: github.com/docker/docker, docker/cli v28.1.1, containerd v2.0.5 #3142

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
tonistiigi merged 4 commits into from
Apr 22, 2025
Merged

vendor: github.com/docker/docker, docker/cli v28.1.1, containerd v2.0.5 #3142

tonistiigi merged 4 commits into from
Apr 22, 2025

Conversation

@thaJeztah
Copy link
Member

@thaJeztah thaJeztah commented Apr 22, 2025

vendor: golang.org/x/oauth2 v0.29.0

notable changes

  • fixes CVE-2025-22868
  • oauth2.go: use a more straightforward return value
  • oauth2: Deep copy context client in NewClient
  • jws: improve fix for CVE-2025-22868

full diff: golang/oauth2@v0.23.0...v0.29.0

vendor: github.com/containerd/containerd v2.0.5

full diff: containerd/containerd@v2.0.4...v2.0.5

vendor: github.com/docker/docker v28.1.1

diff: moby/moby@v28.1.0...v28.1.1

vendor: github.com/docker/cli v28.1.1

no changes in vendored code

diff: docker/cli@v28.1.0...v28.1.1

@thaJeztah
vendor: golang.org/x/oauth2 v0.29.0
67ccbd0 
notable changes

- fixes CVE-2025-22868
- oauth2.go: use a more straightforward return value
- oauth2: Deep copy context client in NewClient
- jws: improve fix for CVE-2025-22868

full diff: golang/oauth2@v0.23.0...v0.29.0

Signed-off-by: Sebastiaan van Stijn <[email protected]>
@thaJeztah
vendor: github.com/containerd/containerd v2.0.5
735555f 
full diff: containerd/containerd@v2.0.4...v2.0.5

Signed-off-by: Sebastiaan van Stijn <[email protected]>
@thaJeztah
vendor: github.com/docker/docker v28.1.1
0855cab 
diff:  moby/moby@v28.1.0...v28.1.1

Signed-off-by: Sebastiaan van Stijn <[email protected]>
@thaJeztah
vendor: github.com/docker/cli v28.1.1
ab533b0 
no changes in vendored code

diff:  docker/cli@v28.1.0...v28.1.1

Signed-off-by: Sebastiaan van Stijn <[email protected]>
@tonistiigi tonistiigi merged commit 2799ed6 into docker:master Apr 22, 2025
136 of 139 checks passed
@thaJeztah thaJeztah deleted the bump_docker_28.1.1 branch April 22, 2025 18:41
@yosifkit yosifkit mentioned this pull request May 12, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tonistiigi tonistiigi tonistiigi approved these changes

Assignees

@thaJeztah thaJeztah

Labels

area/dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@thaJeztah @tonistiigi