Engine
Container runtime engine
Mon
Wed
Fri
JulAugSepOctNovDecJanFebMarAprMayJunJul
LessMore
Releases11Avg Interval6dAvg Cadence5/mo
Bug fixes and enhancements
Bug fixes and enhancements
Security
v29.4.3
CVE-2026-31431, which exposed AF_ALG sockets to 32-bit programs, is patched by replacing the socketcall(2) seccomp deny with targeted AppArmor (deny network alg) and SELinux (alg_socket) rules at the LSM layer. On SELinux systems, this requires selinux-enabled: true in daemon.json or via the --selinux-enabled flag. Also fixed the default AppArmor profile not being updated on daemon restart, which previously required a system reboot to pick up profile changes from upgrades.
Security
Bug fixes and enhancements
Bug fixes and enhancements
Security fixes:
- CVE-2026-34040: Fix an authorization bypass in AuthZ plugins GHSA-x744-4wpc-v9h2
- CVE-2026-33997: Fix a flaw in
docker plugin installwhere privilege validation could be partially…
New features:
- Add
bind-create-srcoption to--mountflag for bind mounts - CLI plugin hooks now fire on command failure and plugins can use "error-hooks" to show hints only when commands fail
- Lower minimum API version from v1.44 to v1.40 (Docker 19.03)
Bug fixes:
- Update BuildKit to v0.27.1
- Fix
docker system dffailing when run concurrently withdocker system prune - Fix daemon handling of duplicate container exit events
- Fix panic after failed daemon initialization
- Fix encrypted overlay networks not passing…
New features:
docker infonow includesNRIsection- Add experimental NRI support
- New
Identityfield in inspect endpoint showing trusted origin information about images
Networking:
- Fixed a regression where established network connections could be disrupted during a container's shutdown grace period
Updates:
- Update Go runtime to 1.25.6
Bug fixes:
- Fix
docker run --network nonepanic on Windows - Fix image mounts failing with "file name too long" for long mount paths
- Fix potential creation of orphaned overlay2 layers
Updates:
- Update BuildKit to v0.26.3
Bug fixes and enhancements:
- Add shell completion for
docker stack deploy --compose-file - containerd image store: Fix a bug causing
docker buildto ignore the explicitly setunpackimage exporter option - Fix
docker image lsdangling image handling - Fix a bug that…
Navigation and documentation interface for Docker. No release information provided.