Download Latest Version
v29.4.0 source code.tar.gz (21.1 MB)
Get an email when there's a new version of Moby
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| README.md | 2026-03-25 | 2.5 kB | |
| v29.3.1 source code.tar.gz | 2026-03-25 | 21.0 MB | |
| v29.3.1 source code.zip | 2026-03-25 | 28.9 MB | |
| Totals: 3 Items | 50.0 MB | 0 | |
29.3.1
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Security
This release includes fixes for multiple security vulnerabilities affecting Docker Engine and related components.
-
CVE-2026-34040 Fix an authorization bypass in AuthZ plugins that could allow authorization plugins to be bypassed under specific conditions.
GHSA-x744-4wpc-v9h2 -
CVE-2026-33997 Fix a flaw in
docker plugin installwhere privilege validation could be partially bypassed, potentially leading to unauthorized privilege escalation.
GHSA-pxq6-2prw-chj9 -
CVE-2026-33748 Fix insufficient validation of Git URL
#ref:subdirfragments in BuildKit, which could allow access to files outside the intended repository scope.
GHSA-4vrq-3vrq-g6gg -
CVE-2026-33747 Fix a vulnerability in BuildKit where an untrusted frontend could cause files to be written outside the BuildKit state directory.
GHSA-3c29-8rgm-jvjj
Bug fixes and enhancements
- Fix a daemon crash during docker build if
.dockerignorecontained an invalid pattern. [#52214] - Fix a panic when the containerd client uses a closed stream. [#52211]
Packaging updates
- Update containerd (static binaries) to v2.2.2. [#52213]
- Update Go runtime to 1.25.8. [#52210], [docker/cli#6883](https://github.com/docker/cli/issues/6883)
Go SDK
- Add missing build-tag, which could cause
cannot range over 10 (untyped int constant)when importing thecli/commandpackage. [docker/cli#6884](https://github.com/docker/cli/issues/6884)
