Skip to content

Commit 2afdd47

Browse files
aevesdockeraevesdocker
authored
4.44.3 release notes (#23281)
<!--Delete sections as needed --> ## Description <!-- Tell us what you did and why --> ## Related issues or tickets <!-- Related issues, pull requests, or Jira tickets --> ## Reviews <!-- Notes for reviewers here --> <!-- List applicable reviews (optionally @tag reviewers) --> - [ ] Technical review - [ ] Editorial review - [ ] Product review
1 parent 3ed4ec0 commit 2afdd47

File tree

2 files changed

+23
-0
lines changed

2 files changed

+23
-0
lines changed

content/manuals/desktop/release-notes.md

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -31,6 +31,20 @@ For more frequently asked questions, see the [FAQs](/manuals/desktop/troubleshoo
3131
>
3232
> If you're experiencing malware detection issues on Mac, follow the steps documented in [docker/for-mac#7527](https://github.com/docker/for-mac/issues/7527).
3333
34+
## 4.44.3
35+
36+
{{< release-date date="2025-08-20" >}}
37+
38+
{{< desktop-install-v2 all=true win_arm_release="Early Access" version="4.44.2" build_path="/202357/" >}}
39+
40+
### Security
41+
42+
- Fixed CVE-2025-9074 where a malicious container running on Docker Desktop could access the Docker Engine and launch additional containers without requiring the Docker socket to be mounted. This could allow unauthorized access to user files on the host system. Enhanced Container Isolation (ECI) does not mitigate this vulnerability.
43+
44+
### Bug fixes and enhancements
45+
46+
- Fixed a bug which caused the Docker Offload dialog to block users from accessing the dashboard.
47+
3448
## 4.44.2
3549

3650
{{< release-date date="2025-08-15" >}}

content/manuals/security/security-announcements.md

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -8,6 +8,15 @@ toc_min: 1
88
toc_max: 2
99
---
1010

11+
## Docker Desktop 4.44.3 security update: CVE-2025-9074
12+
13+
_Last updated August 20, 2025_
14+
15+
A vulnerability in Docker Desktop was fixed on July 03 in the [4.44.3](/manuals/desktop/release-notes.md#4443) release:
16+
17+
- Fixed CVE-2025-9074 where a malicious container running on Docker Desktop could access the Docker Engine and launch additional containers without requiring the Docker socket to be mounted. This could allow unauthorized access to user files on the host system. Enhanced Container Isolation (ECI) does not mitigate this vulnerability.
18+
19+
1120
## Docker Desktop 4.44.0 security update: CVE-2025-23266
1221

1322
_Last updated July 31, 2025_

0 commit comments

Comments
 (0)