From be580f3e41c5149ff29ddbc30bb422157506f870 Mon Sep 17 00:00:00 2001 From: Sebastiaan van Stijn Date: Wed, 17 Nov 2021 20:56:41 +0100 Subject: [PATCH] Add Docker Engine 20.10.11 release notes Signed-off-by: Sebastiaan van Stijn --- engine/release-notes/index.md | 30 ++++++++++++++++++++++++++++++ 1 file changed, 30 insertions(+) diff --git a/engine/release-notes/index.md b/engine/release-notes/index.md index 605e116834..c5836996cb 100644 --- a/engine/release-notes/index.md +++ b/engine/release-notes/index.md @@ -22,6 +22,36 @@ for Docker Engine. # Version 20.10 +## 20.10.11 +2021-11-17 + +> **IMPORTANT** +> +> Due to [net/http changes](https://github.com/golang/go/issues/40909) in [Go 1.16](https://golang.org/doc/go1.16#net/http), +> HTTP proxies configured through the `$HTTP_PROXY` environment variable are no +> longer used for TLS (`https://`) connections. Make sure you also set an `$HTTPS_PROXY` +> environment variable for handling requests to `https://` URLs. +> +> Refer to the [HTTP/HTTPS proxy section](../../config/daemon/systemd.md#httphttps-proxy) +> to learn how to configure the Docker Daemon to use a proxy server. +{: .important } + + +### Distribution + +- Handle ambiguous OCI manifest parsing to mitigate [CVE-2021-41190](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41190) / [GHSA-mc8v-mgrf-8f4m](https://github.com/opencontainers/distribution-spec/security/advisories/GHSA-mc8v-mgrf-8f4m). + See [GHSA-xmmx-7jpf-fx42](https://github.com/moby/moby/security/advisories/GHSA-xmmx-7jpf-fx42) for details. + +### Windows + +- Fix panic.log file having read-only attribute set [moby/moby#42987](https://github.com/moby/moby/pull/42987). + +## Packaging + +- Update containerd to [v1.4.12](https://github.com/containerd/containerd/releases/tag/v1.4.12) to mitigate [CVE-2021-41190](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-41190). +- Update Golang runtime to Go 1.16.10. + + ## 20.10.10 2021-10-25