SUSE-SU-2025:20110-1

This update for docker fixes the following issues:

• Update docker-buildx to v0.19.2. See upstream changelog online at https://github.com/docker/buildx/releases/tag/v0.19.2.

  Some notable changelogs from the last update:

  • https://github.com/docker/buildx/releases/tag/v0.19.0
  • https://github.com/docker/buildx/releases/tag/v0.18.0

• Add a new toggle file /etc/docker/suse-secrets-enable which allows users to disable the SUSEConnect integration with Docker (which creates special mounts in /run/secrets to allow container-suseconnect to authenticate containers with registries on registered hosts). bsc#1231348 bsc#1232999

  In order to disable these mounts, just do

  echo 0 > /etc/docker/suse-secrets-enable

  and restart Docker. In order to re-enable them, just do

  echo 1 > /etc/docker/suse-secrets-enable

  and restart Docker. Docker will output information on startup to tell you whether the SUSE secrets feature is enabled or not.

• Remove DOCKERNETWORKOPTS from docker.service. This was removed from sysconfig a long time ago, and apparently this causes issues with systemd in some cases.

• Update to docker-buildx v0.17.1 to match standalone docker-buildx package we are replacing. See upstream changelog online at https://github.com/docker/buildx/releases/tag/v0.17.1

• Add %{_sysconfdir}/audit/rules.d to filelist.

• Update to Docker 26.1.5-ce. See upstream changelog online at https://docs.docker.com/engine/release-notes/26.1/#2615 bsc#1230294

• This update includes fixes for:
  • CVE-2024-41110. bsc#1228324
  • CVE-2023-47108. bsc#1217070
  • CVE-2023-45142. bsc#1228553