Sourced fromgithub.com/moby/moby's releases.

28.2.2

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.2.2 milestone
• moby/moby, 28.2.2 milestone

Bug fixes and enhancements

• containerd image store: Fix a regression causingdocker build --push to fail. This revertsthe fix fordocker build not persisting overridden images as dangling.moby/moby#50105

Networking

• When creating the iptablesDOCKER-USER chain, do not add an explicitRETURN rule, allowing users to append as well as insert their own rules. Existing rules are not removed on upgrade, but it won't be replaced after a reboot.moby/moby#50098

28.2.1

Packaging updates

• Fix packaging regression inv28.2.0 which broke creating thedocker group/user on fresh installations.docker-ce-packaging#1209

28.2.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

• docker/cli, 28.2.0 milestone
• moby/moby, 28.2.0 milestone
• Deprecated and removed features, seeDeprecated Features.
• Changes to the Engine API, seeAPI version history.

[!NOTE]RHEL packages are currently not available and will be released later.

New

• Add{{.Platform}} as formatting option fordocker ps to show the platform of the image the container is running.docker/cli#6042
• Add support for relative parent paths (../) on bind mount sources when usingdocker run/create with-v/--volume or--mount type=bind options.docker/cli#4966
• CDI is now enabled by default.moby/moby#49963
• Show discovered CDI devices indocker info.docker/cli#6078
• docker image rm: add--platform option to remove a variant from multi-platform images.docker/cli#6109
• containerd image store: Initial BuildKit support for building Windows container images on Windows (requires an opt-in withDOCKER_BUILDKIT=1).moby/moby#49740

Bug fixes and enhancements

• Add a new log option for fluentd log driver (fluentd-write-timeout), which enables specifying write timeouts for fluentd connections.moby/moby#49911
• Add support forDOCKER_AUTH_CONFIG for the experimental--use-api-socket option.docker/cli#6019
• Fixdocker exec waiting for 10 seconds if a non-existing user or group was specified.moby/moby#49868
• Fixdocker swarm init ignoringcacert option of--external-ca.docker/cli#5995
• Fix an issue where the CLI would not correctly save the configuration file (~/.docker/config.json) if it was a relative symbolic link.docker/cli#5282
• Fix containers with--restart always policy using CDI devices failing to start on daemon restart.moby/moby#49990

... (truncated)

• 45873be Merge pull request#50105 from jsternberg/revert-build-dangling
• 7994426 Revert "containerd: images overridden by a build are kept dangling"
• f144264 Merge pull request#50090 from corhere/libn/overlay-netip
• 768cfae Merge pull request#50050 from robmry/nftables_internal_dns
• d3289dd Add nftables NAT rules for internal DNS resolver
• 7a0bf74 Merge pull request#50038 from ctalledo/fix-for-50037
• b43afbf Merge pull request#50098 from robmry/remove_docker-user_return_rule
• c299ba3 Update worker.Platforms() in builder-next worker.
• 0e2cc22 Merge pull request#50049 from robmry/nftables_env_var_enable
• e37efd4 Merge pull request#50068 from mmorel-35/github.com/containerd/errdefs
• Additional commits viewable incompare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)