Bump github.com/docker/docker from 17.12.0-ce-rc1.0.20200706150819-a40b877fbb9e+incompatible to 20.10.18+incompatible in /internal/common

[dependabot]

Bumps github.com/docker/docker from 17.12.0-ce-rc1.0.20200706150819-a40b877fbb9e+incompatible to 20.10.18+incompatible.

Release notes

Sourced from github.com/docker/docker's releases.

v20.10.18

This release of Docker Engine comes with a fix for a low-severity security issue, some minor bug fixes, and updated versions of Docker Compose, Docker Buildx, containerd, and runc.

Client

• Add Bash completion for Docker Compose docker/cli#3752.

Builder

• Fix an issue where file-capabilities were not preserved during build moby/moby#43876.
• Fix an issue that could result in a panic caused by a concurrent map read and map write moby/moby#44067

Daemon

• Fix a security vulnerability relating to supplementary group permissions, which could allow a container process to bypass primary group restrictions within the container CVE-2022-36109, GHSA-rc4r-wh2q-q6c4.
• seccomp: add support for Landlock syscalls in default policy moby/moby#43991.
• seccomp: update default policy to support new syscalls introduced in kernel 5.12 - 5.16 moby/moby#43991.
• Fix an issue where cache lookup for image manifests would fail, resulting in a redundant round-trip to the image registry moby/moby#44109.
• Fix an issue where exec processes and healthchecks were not terminated when they timed out moby/moby#44018.

Packaging

• Update Docker Buildx to v0.9.1.
• Update Docker Compose to v2.10.2.
• Update containerd (containerd.io package) to v1.6.8.
• Update runc to v1.1.4.
• Update Go runtime to 1.18.6, which contains fixes for CVE-2022-27664 and CVE-2022-32190.

v20.10.17

This release of Docker Engine comes with updated versions of the compose, containerd, and runc components, as well as some minor bug fixes.

Client

• Remove asterisk from docker commands in zsh completion script docker/cli#3648.

Networking

• Fix Windows port conflict with published ports in host mode for overlay moby/moby#43644.
• Ensure performance tuning is always applied to libnetwork sandboxes moby/moby#43683.

Packaging

... (truncated)

Commits

• See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #2048.