Download Latest Version
v29.5.2 source code.tar.gz (21.1 MB)
Get an email when there's a new version of Moby
| Name | Modified | Size | Downloads / Week |
|---|---|---|---|
| Parent folder | |||
| README.md | 2026-05-06 | 1.2 kB | |
| v29.4.3 source code.tar.gz | 2026-05-06 | 21.3 MB | |
| v29.4.3 source code.zip | 2026-05-06 | 29.2 MB | |
| Totals: 3 Items | 50.5 MB | 0 | |
29.4.3
For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:
Bug fixes
- CVE-2026-31431: Fix the 29.4.2 regression that broke 32-bit programs and i386 images. The broad socketcall(2) seccomp deny is replaced with targeted AppArmor (deny network alg) and SELinux (alg_socket) rules that block AF_ALG at the LSM layer, covering both socket(2) and socketcall(2) paths without disrupting legitimate 32-bit workloads. [#52537]
On SELinux-based systems, the SELinux mitigation requires the daemon to be configured with selinux-enabled: true (via daemon.json or the --selinux-enabled CLI flag). This option is not enabled by default.
- Fix the default AppArmor profile not being updated on daemon restart, requiring a system reboot to pick up profile changes from daemon upgrades. [#52537]
