Recommended update for docker

Announcement ID:	SUSE-RU-2023:4107-1
Rating:	moderate
References:	bsc#1208074 bsc#1210141 bsc#1210797 bsc#1211578 bsc#1212368 bsc#1213120 bsc#1213229 bsc#1213500 bsc#1215323
Affected Products:	Containers Module 12 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP2 SUSE Linux Enterprise High Performance Computing 12 SP3 SUSE Linux Enterprise High Performance Computing 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Server for SAP Applications 12 SP1 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP4 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Server for the Raspberry Pi 12-SP2 SUSE Manager Client Tools for SLE 12

An update that has nine fixes can now be installed.

Description:

This update for docker fixes the following issues:

Update to Docker 24.0.6-ce. See upstream changelong online at https://docs.docker.com/engine/release-notes/24.0/#2406. bsc#1215323

• Add a docker.socket unit file, but with socket activation effectively disabled to ensure that Docker will always run even if you start the socket individually. Users should probably just ignore this unit file. bsc#1210141

Update to Docker 24.0.5-ce. See upstream changelong online at https://docs.docker.com/engine/release-notes/24.0/#2405. bsc#1213229

Update to Docker 24.0.4-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/24.0/#2404. bsc#1213500

Update to Docker 24.0.3-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/24.0/#2403. bsc#1213120

• Recommend docker-rootless-extras instead of Require(ing) it, given it's an additional functionality and not inherently required for docker to function.

• Add docker-rootless-extras subpackage (https://docs.docker.com/engine/security/rootless)

Update to Docker 24.0.2-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/24.0/#2402. bsc#1212368 * Includes the upstreamed fix for the mount table pollution issue. bsc#1210797

• Add Recommends for docker-buildx, and add /usr/lib/docker/cli-plugins as being provided by this package.

Update to Docker 23.0.6-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/23.0/#2306. bsc#1211578

Update to Docker 23.0.5-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/23.0/#2305.

Update to Docker 23.0.4-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/23.0/#2304. bsc#1208074

• Add apparmor-parser as a Recommends to make sure that most users will end up with it installed even if they are primarily running SELinux.

• Allow to install container-selinux instead of apparmor-parser.

• Change to using systemd-sysusers

runc was updated to 1.1.9:

• Update to runc v1.1.9. Upstream changelog is available from https://github.com/opencontainers/runc/releases/tag/v1.1.9

containerd was updated to 1.7.7:

• Update to containerd v1.7.7. Upstream release notes: https://github.com/containerd/containerd/releases/tag/v1.7.7

• Update to containerd v1.7.6 for Docker v24.0.6-ce. Upstream release notes: https://github.com/containerd/containerd/releases/tag/v1.7.6 bsc#1215323

• Add Provides: cri-runtime to use containerd as container runtime in Factory Kubernetes packages

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Manager Client Tools for SLE 12
  zypper in -t patch SUSE-SLE-Manager-Tools-12-2023-4107=1
• Containers Module 12
  zypper in -t patch SUSE-SLE-Module-Containers-12-2023-4107=1
• SUSE Linux Enterprise High Performance Computing 12 SP5
  zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4107=1
• SUSE Linux Enterprise Server 12 SP5
  zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4107=1
• SUSE Linux Enterprise Server for SAP Applications 12 SP5
  zypper in -t patch SUSE-SLE-SERVER-12-SP5-2023-4107=1

Package List:

• SUSE Manager Client Tools for SLE 12 (noarch)
  • sysuser-shadow-2.0-1.7.1
• Containers Module 12 (ppc64le s390x x86_64)
  • containerd-1.7.7-16.85.1
  • docker-24.0.6_ce-98.100.2
  • docker-debuginfo-24.0.6_ce-98.100.2
  • runc-1.1.9-16.37.1
  • runc-debuginfo-1.1.9-16.37.1
• Containers Module 12 (noarch)
  • sysuser-shadow-2.0-1.7.1
• SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch)
  • sysuser-shadow-2.0-1.7.1
  • sysuser-tools-2.0-1.7.1
• SUSE Linux Enterprise Server 12 SP5 (noarch)
  • sysuser-shadow-2.0-1.7.1
  • sysuser-tools-2.0-1.7.1
• SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch)
  • sysuser-shadow-2.0-1.7.1
  • sysuser-tools-2.0-1.7.1

References:

• https://bugzilla.suse.com/show_bug.cgi?id=1208074
• https://bugzilla.suse.com/show_bug.cgi?id=1210141
• https://bugzilla.suse.com/show_bug.cgi?id=1210797
• https://bugzilla.suse.com/show_bug.cgi?id=1211578
• https://bugzilla.suse.com/show_bug.cgi?id=1212368
• https://bugzilla.suse.com/show_bug.cgi?id=1213120
• https://bugzilla.suse.com/show_bug.cgi?id=1213229
• https://bugzilla.suse.com/show_bug.cgi?id=1213500
• https://bugzilla.suse.com/show_bug.cgi?id=1215323