stable-3374.2.4

Changes since Stable 3374.2.3

Security fixes:

• Linux (CVE-2022-36280, CVE-2022-41218, CVE-2022-47929, CVE-2023-0045, CVE-2023-0179, CVE-2023-0210, CVE-2023-0266, CVE-2023-0394, CVE-2023-23454, CVE-2023-23455)

Updates:

• Linux (5.15.89 (includes 5.15.88, 5.15.87))
• ca-certificates (3.88.1)
• cri-tools (1.24.2)

alpha-3510.0.0

Changes since Alpha 3493.0.0

Security fixes:

• Linux (CVE-2022-4842)
• curl (CVE-2022-43551, CVE-2022-43552)
• sudo (CVE-2023-22809)
• vim (CVE-2023-0049, CVE-2023-0051, CVE-2023-0054)
• SDK: qemu (CVE-2022-4172)

Bug fixes:

Changes:

Updates:

• Linux (5.15.92 (includes 5.15.91, 5.15.90))
• bind tools (9.16.36 (includes 9.16.34 and 9.16.35))
• bpftool (5.19.12)
• containerd (1.6.16)
• cri-tools (1.24.2)
• curl (7.87.0)
• Docker (20.10.23)
• git (2.39.1 (includes 2.39.0))
• iptables (1.8.8)
• sudo (1.9.12_p2)
• systemd (252.5 (includes 252))
• XZ utils (5.4.1 (includes 5.4.0))
• vim (9.0.1157)
• SDK: boost (1.81.0)
• SDK: file (5.44)
• SDK: portage (3.0.43 (includes 3.0.42))
• SDK: qemu (7.2.0)
• SDK: Rust (1.67.0)

stable-3374.2.3

Changes since Stable 3374.2.2

Security fixes:

• Linux (CVE-2022-3169, CVE-2022-3344, CVE-2022-3424, CVE-2022-3521, CVE-2022-3534, CVE-2022-3545, CVE-2022-3643, CVE-2022-4378, CVE-2022-45869, CVE-2022-45934, CVE-2022-47518, CVE-2022-47519, CVE-2022-47520, CVE-2022-47521)
• git (CVE-2022-23521, CVE-2022-41903)

Bug fixes:

• Fix "ext4 deadlock under heavy I/O load" kernel issue. The patch for this is included provisionally while we stay with Kernel 5.15.86. (Flatcar#847, coreos-overlay#2402)

Changes:

Updates:

• Linux (5.15.86 (includes 5.15.85, 5.15.84, 5.15.83, 5.15.82, 5.15.81, 5.15.80))
• git (2.37.5)

lts-3033.3.9

Changes since LTS 3033.3.8

Security fixes:

• Linux (CVE-2022-3424, CVE-2022-3534, CVE-2022-3545, CVE-2022-3623, CVE-2022-36280, CVE-2022-3643, CVE-2022-41218, CVE-2022-4378, CVE-2022-45934, CVE-2022-47929, CVE-2023-0266, CVE-2023-0394, CVE-2023-23454, CVE-2023-23455)

Bug fixes:

Changes:

Updates:

• Linux (5.10.164 (includes 5.10.163, 5.10.162, 5.10.161, 5.10.160, 5.10.159, 5.10.158))
• ca-certificates (3.87 (includes 3.86))

beta-3446.1.1

Changes since Beta 3446.1.0

Security fixes:

• Linux (CVE-2022-36280, CVE-2022-41218, CVE-2022-47929, CVE-2023-0210, CVE-2023-0266, CVE-2023-0394, CVE-2023-23454, CVE-2023-23455)
• git (CVE-2022-23521, CVE-2022-41903)

Bug fixes:

• Fixed a regression (in Alpha/Beta) where machines failed to boot if they didn't have the core user or group in /etc/passwd or /etc/group (baselayout#26)

Changes:

Updates:

• Linux (5.15.89 (includes 5.15.88, 5.15.87))
• git (2.37.5)

alpha-3493.0.0

Changes since Alpha 3480.0.0

Security fixes:

• Linux (CVE-2022-36280, CVE-2022-41218, CVE-2022-47929, CVE-2023-0210, CVE-2023-0266, CVE-2023-0394, CVE-2023-23454, CVE-2023-23455)
• git (CVE-2022-23521, CVE-2022-41903)
• glib (fixes to normal form handling in GVariant)
• vim (CVE-2022-3491, CVE-2022-3520, CVE-2022-3591, CVE-2022-4141, CVE-2022-4292, CVE-2022-4293)
• SDK: qemu (CVE-2020-14394, CVE-2022-0216, CVE-2022-3872)
• SDK: Rust (CVE-2022-46176)

Bug fixes:

• Fixed a regression (in Alpha/Beta) where machines failed to boot if they didn't have the core user or group in /etc/passwd or /etc/group (baselayout#26)

Changes:

Updates:

• Linux (5.15.89 (includes 5.15.88, 5.15.87))
• Linux Firmware (20230117)
• Go (1.19.5, 1.18.10)
• adcli (0.9.2)
• binutils (2.39)
• elfutils (0.188 (includes 0.187))
• file (5.43)
• gawk (5.2.1 (contains 5.2.0))
• git (2.38.3)
• glib (2.74.4)
• I2C tools (4.3)
• Intel Microcode Package (20221108)
• libcap-ng (0.8.3)
• libseccomp (2.5.4 (contains 2.5.2, 2.5.3))
• nettle (3.8.1)
• rsync (3.2.7)
• shadow (4.13)
• sqlite (3.40.1 (contains 3.40.0))
• vim (9.0.1000)
• XZ utils (5.2.10)
• Azure: python-oem (3.9.16)
• SDK: libpng (1.6.39 (includes 1.6.38))
• SDK: perl (5.36.0)
• SDK: portage (3.0.41)
• SDK: qemu (7.1.0)
• SDK: Rust (1.66.1)

stable-3374.2.2

Changes since Stable 3374.2.1

Security fixes:

• Linux (CVE-2022-3543, CVE-2022-3564, CVE-2022-3619, CVE-2022-3623, CVE-2022-3628, CVE-2022-42895, CVE-2022-42896)

Updates:

• Linux (5.15.79 (includes 5.15.78, 5.15.77, 5.15.76, 5.15.75))
• ca-certificates (3.87)

beta-3446.1.0

Changes since Beta 3432.1.0

Security fixes:

• Linux (CVE-2022-3424, CVE-2022-3534, CVE-2022-3545, CVE-2022-3643, CVE-2022-4378, CVE-2022-45869, CVE-2022-45934)
• sudo (CVE-2022-43995)
• libksba (CVE-2022-47629)

Bug fixes:

• Added back Ignition support for Vagrant (coreos-overlay#2351)
• The rootfs setup in the initrd now runs systemd-tmpfiles on every boot, not only when Ignition runs, to fix a dbus failure due to missing files (Flatcar#944)

Updates:

• Linux (5.15.86 (includes 5.15.85, 5.15.84, 5.15.83, 5.15.82))
• ca-certificates (3.87)
• sudo (1.9.12_p1)
• GnuTLS (3.7.8)
• XZ utils (5.2.8)
• gettext (0.21.1)
• libksba (1.6.3)
• VMware: open-vm-tools (12.1.5)

Changes since Alpha 3446.0.0

Security fixes:

• Linux (CVE-2022-3424, CVE-2022-3534, CVE-2022-3545, CVE-2022-3643, CVE-2022-4378, CVE-2022-45869, CVE-2022-45934)
• libksba (CVE-2022-47629)

Bug fixes:

• Added back Ignition support for Vagrant (coreos-overlay#2351)
• The rootfs setup in the initrd now runs systemd-tmpfiles on every boot, not only when Ignition runs, to fix a dbus failure due to missing files (Flatcar#944)

Updates:

• Linux (5.15.86 (includes 5.15.85, 5.15.84, 5.15.83, 5.15.82))
• ca-certificates (3.87)
• libksba (1.6.3)

alpha-3480.0.0

Changes since Alpha 3446.0.0

Security fixes:

• Linux (CVE-2022-3424, CVE-2022-3534, CVE-2022-3545, CVE-2022-3643, CVE-2022-4378, CVE-2022-45869, CVE-2022-45934)
• Go (CVE-2022-41717)
• containerd (CVE-2022-23471)
• systemd (CVE-2022-3821, CVE-2022-4415)
• Python (CVE-2015-20107, CVE-2020-10735, CVE-2021-3654, CVE-2022-37454, CVE-2022-42919, CVE-2022-45061)
• libarchive (CVE-2022-36227)
• libksba (CVE-2022-47629)

Bug fixes:

• Added back Ignition support for Vagrant (coreos-overlay#2351)
• The rootfs setup in the initrd now runs systemd-tmpfiles on every boot, not only when Ignition runs, to fix a dbus failure due to missing files (Flatcar#944)

Updates:

• Linux (5.15.86 (includes 5.15.85, 5.15.84, 5.15.83, 5.15.82))
• Linux Firmware (20221214)
• Docker (20.10.22)
• GNU C Library (2.36)
• Go (1.19.4)
• Rust (1.66.0)
• ca-certificates (3.87)
• containerd (1.6.15)
• systemd (251.10 (includes 251))
• MIT Kerberos V (1.20.1)
• XZ utils (5.2.9)
• libksba (1.6.3)

stable-3374.2.1

Changes since Stable 3374.2.0

Security fixes:

• Linux (CVE-2022-2602, CVE-2022-3524, CVE-2022-3535, CVE-2022-3542, CVE-2022-3565, CVE-2022-3594, CVE-2022-41849, CVE-2022-41850, CVE-2022-43945)

Updates:

• Linux (5.15.77 (includes 5.15.76, 5.15.75))
• ca-certificates (3.85)