Moby - Browse /docker-v29.5.0 at SourceForge.net

The interactive file manager requires Javascript. Please enable it or use sftp or scp.
You may still browse the files here.

Name	Modified	Size	InfoDownloads / Week
Parent folder
README.md	2026-05-14	5.9 kB	0
v29.5.0 source code.tar.gz	2026-05-14	21.1 MB	0
v29.5.0 source code.zip	2026-05-14	29.1 MB	0
Totals: 3 Items		50.2 MB	0

29.5.0

For a full list of pull requests and changes in this release, refer to the relevant GitHub milestones:

New

Enable private time namespace for containers by default on supported kernels. [#52326]
The local logging driver now has support for custom attributes, adding support for the label, label-regex, env, env-regex, and tag log options. [#52348]
Windows: The daemon now supports listening on a Unix socket (-H unix://...), with optional group-based access control via --group. [#52365]

Security

CVE-2026-32288: Fix a denial of service where pulling a maliciously crafted image could cause the daemon to allocate unbounded memory when processing sparse tar archives. GHSA-x4jj-h2v8-hqqv. [#52478]

Bug fixes and enhancements

docker ps --format now supports a .HealthStatus placeholder to print container health state (starting, healthy, unhealthy) as a dedicated field. [docker/cli#6913](https://github.com/docker/cli/issues/6913)
Add "time-namespaces" feature flag to disable time-namespaces. [#52577]
containerd integration: Fix auth token requests ignoring per-host TLS settings (custom CAs, insecure-registries). [#52600]
Daemon reload events now signify that the daemon reload has fully completed. [#52589]
Expose diagnostic data about userland proxy in docker info. [#52321]
Fix docker image ls --filter reference=... (GET /images/json) to also match fully qualified canonical image names (e.g. docker.io/library/alpine), not only the familiar short form. [#52333]
Fix a bug where leaving an autolock-enabled swarm could leave orphaned state, causing subsequent swarm init to fail with "Swarm is encrypted and needs to be unlocked". [#52479]
Fix an issue where logging errors appeared as empty strings in the daemon log instead of the message that failed to write. [#52442]
Fix incorrect SHARED SIZE and UNIQUE SIZE reporting in docker system df -v by including shared content blobs in size calculation. [#52482]
Fix support for CDI specifications that request additional group IDs. [#52579]
Fix volume subpath file mounts over an existing file in the image failing container creation with "not a directory". [#52584]
Sort labels in volume, network, config, and secret formatters for deterministic output. [docker/cli#6954](https://github.com/docker/cli/issues/6954)
Swarm: Prevent corruption of Raft snapshots when swarm state is large. [#52441]

Packaging updates

Update BuildKit to v0.30.0. [#52618]
Update Go runtime to 1.26.3. [#52572], [docker/cli#6967](https://github.com/docker/cli/issues/6967)

Networking

Fix conntrack entries being incorrectly deleted for UDP containers sharing the same port on different IPs when one container is restarted. [#52423]
Fix stale VIP DNS records for swarm service network aliases not being removed during rolling updates. [#52236]
Fix the userland proxy silently dropping UDP datagrams when a previous write to an unavailable backend left a stale ECONNREFUSED error on the socket. [#52483]
Rootless: Properly support --net=host and localhost registries. [#47103]

Rootless

Update RootlessKit to v3.0.0. [#52319]

Go SDK

cli/config/configfile: GetAuthConfig, GetCredentialsStore: normalize hostname when resolving auth. [docker/cli#6846](https://github.com/docker/cli/issues/6846)