Bump github.com/docker/docker from 1.13.1 to 20.10.17+incompatible

[dependabot[bot]]

Bumps github.com/docker/docker from 1.13.1 to 20.10.17+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v20.10.17

This release of Docker Engine comes with updated versions of the compose, containerd, and runc components, as well as some minor bug fixes.

Client

• Remove asterisk from docker commands in zsh completion script docker/cli#3648.

Networking

• Fix Windows port conflict with published ports in host mode for overlay moby/moby#43644.
• Ensure performance tuning is always applied to libnetwork sandboxes moby/moby#43683.

Packaging

• Update Docker Compose to v2.6.0.
• Update containerd (containerd.io package) to v1.6.6, which contains a fix for CVE-2022-31030
• Update runc version to v1.1.2, which contains a fix for CVE-2022-29162.
• Updated Go runtime to 1.17.11, which contains fixes for CVE-2022-30634, CVE-2022-30629, CVE-2022-30580 and CVE-2022-29804

v20.10.16

This release of Docker Engine fixes a regression in the Docker CLI builds for macOS, fixes an issue with docker stats when using containerd 1.5 and up, and updates the Go runtime to include a fix for CVE-2022-29526.

Client

• Fix a regression in binaries for macOS introduced in 20.10.15, which resulted in a panic docker/cli#43426.
• Update golang.org/x/sys dependency which contains a fix for CVE-2022-29526.

Daemon

• Fix an issue where docker stats was showing empty stats when running with containerd 1.5.0 or up moby/moby#43567.
• Update the golang.org/x/sys build-time dependency which contains a fix for CVE-2022-29526.

Packaging

• Update Go runtime to 1.17.10, which contains a fix for CVE-2022-29526.
• Use "weak" dependencies for the docker scan CLI plugin, to prevent a "conflicting requests" error when users performed an off-line installation from downloaded RPM packages docker/docker-ce-packaging#659.

v20.10.15

This release of Docker Engine comes with updated versions of the compose, buildx, containerd, and runc components, as well as some minor bugfixes.

... (truncated)

Changelog

Sourced from github.com/docker/docker's changelog.

Changelog

Items starting with DEPRECATE are important deprecation notices. For more information on the list of deprecated flags and APIs please have a look at https://docs.docker.com/engine/deprecated/ where target removal dates can also be found.

17.03.2-ce (2017-05-29)

Networking

• Fix a concurrency issue preventing network creation #33273

Runtime

• Relabel secrets path to avoid a Permission Denied on selinux enabled systems #33236 (ref #32529
• Fix cases where local volume were not properly relabeled if needed #33236 (ref #29428)
• Fix an issue while upgrading if a plugin rootfs was still mounted #33236 (ref #32525)
• Fix an issue where volume wouldn't default to the rprivate propagation mode #33236 (ref #32851)
• Fix a panic that could occur when a volume driver could not be retrieved #33236 (ref #32347)

• Add a warning in docker info when the overlay or overlay2 graphdriver is used on a filesystem without d_type support #33236 (ref #31290)

• Fix an issue with backporting mount spec to older volumes #33207
• Fix issue where a failed unmount can lead to data loss on local volume remove #33120

Swarm Mode

• Fix a case where tasks could get killed unexpectedly #33118
• Fix an issue preventing to deploy services if the registry cannot be reached despite the needed images being locally present #33117

17.05.0-ce (2017-05-04)

Builder

• Add multi-stage build support #31257 #32063
• Allow using build-time args (ARG) in FROM #31352
• Add an option for specifying build target #32496

• Accept -f - to read Dockerfile from stdin, but use local context for building #31236
• The values of default build time arguments (e.g HTTP_PROXY) are no longer displayed in docker image history unless a corresponding ARG instruction is written in the Dockerfile. #31584

• Fix setting command if a custom shell is used in a parent image #32236
• Fix docker build --label when the label includes single quotes and a space #31750

Client

• Add --mount flag to docker run and docker create #32251
• Add --type=secret to docker inspect #32124
• Add --format option to docker secret ls #31552
• Add --filter option to docker secret ls #30810
• Add --filter scope=<swarm|local> to docker network ls #31529
• Add --cpus support to docker update #31148
• Add label filter to docker system prune and other prune commands #30740

... (truncated)

Commits

• a89b842 Merge pull request #43701 from thaJeztah/20.10_backport_update_containerd_1.6.6
• 6f3f2b6 update containerd binary to v1.6.6
• 3fba092 Merge pull request #43692 from thaJeztah/20.0_backport_bump_containerd_binary...
• 678cc00 Merge pull request #43589 from thaJeztah/20.10_backport_bump_runc
• b3bcb15 update containerd binary to v1.6.5
• 59d0ff3 Merge pull request #43686 from dfr/backport-freebsd-mknod
• 434eecd Merge pull request #43683 from neersighted/update-libnetwork
• f55b030 system: unbreak build for darwin
• 63ab12c Port pkg/system/mknod.go to FreeBSD
• 081e538 vendor: libnetwork f6ccccb1c082a432c2a5814aaedaca56af33d9ea
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)