From 7de67c040f66ebf492c656f7ad7195d7f640d49a Mon Sep 17 00:00:00 2001 From: Vinayak Bhardwaj Date: Tue, 17 Mar 2026 20:29:08 +0530 Subject: [PATCH] fix: [CI-21415]: upgrade docker base to 29.2.0-dind and buildx to v0.32.1 to resolve CVE-2025-15558 Co-Authored-By: Claude Sonnet 4.6 (1M context) --- docker/docker/Dockerfile.linux.amd64 | 4 ++-- docker/docker/Dockerfile.linux.arm64 | 4 ++-- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/docker/docker/Dockerfile.linux.amd64 b/docker/docker/Dockerfile.linux.amd64 index aaf0049..2faaae6 100644 --- a/docker/docker/Dockerfile.linux.amd64 +++ b/docker/docker/Dockerfile.linux.amd64 @@ -1,4 +1,4 @@ -FROM docker:28.1.1-dind +FROM docker:29.2.0-dind ENV DOCKER_HOST=unix:///var/run/docker.sock @@ -7,7 +7,7 @@ ENV BUILDKIT_PROGRESS=plain ENV DOCKER_CLI_EXPERIMENTAL=enabled ENV PLUGIN_BUILDKIT_ASSETS_DIR=/buildkit -ARG BUILDX_URL=https://github.com/docker/buildx/releases/download/v0.23.0/buildx-v0.23.0.linux-amd64 +ARG BUILDX_URL=https://github.com/docker/buildx/releases/download/v0.32.1/buildx-v0.32.1.linux-amd64 RUN mkdir -p $HOME/.docker/cli-plugins && \ wget -O $HOME/.docker/cli-plugins/docker-buildx $BUILDX_URL && \ diff --git a/docker/docker/Dockerfile.linux.arm64 b/docker/docker/Dockerfile.linux.arm64 index 624f01b..3c57ded 100644 --- a/docker/docker/Dockerfile.linux.arm64 +++ b/docker/docker/Dockerfile.linux.arm64 @@ -1,4 +1,4 @@ -FROM arm64v8/docker:28.1.1-dind +FROM arm64v8/docker:29.2.0-dind ENV DOCKER_HOST=unix:///var/run/docker.sock @@ -7,7 +7,7 @@ ENV BUILDKIT_PROGRESS=plain ENV DOCKER_CLI_EXPERIMENTAL=enabled ENV PLUGIN_BUILDKIT_ASSETS_DIR=/buildkit -ARG BUILDX_URL=https://github.com/docker/buildx/releases/download/v0.23.0/buildx-v0.23.0.linux-arm64 +ARG BUILDX_URL=https://github.com/docker/buildx/releases/download/v0.32.1/buildx-v0.32.1.linux-arm64 RUN mkdir -p $HOME/.docker/cli-plugins && \ wget -O $HOME/.docker/cli-plugins/docker-buildx $BUILDX_URL && \