lts-3033.3.17

Changes since LTS 3033.3.16

Security fixes:

• Linux (CVE-2022-40982, CVE-2022-41804, CVE-2023-20569, CVE-2023-23908, CVE-2023-1206, CVE-2023-20588, CVE-2023-40283, CVE-2023-4128, CVE-2023-4147, CVE-2023-4273)

Updates:

• Linux (5.10.193 (includes 5.10.192, 5.10.191,5.10.190, 5.10.189))

beta-3602.1.5

Changes since Beta 3602.1.4

Security fixes:

• Linux (CVE-2022-40982, CVE-2022-41804, CVE-2023-20569, CVE-2023-20588, CVE-2023-40283, CVE-2023-4128, CVE-2023-23908)

Bug fixes:

• Fixed the restart of Systemd services when the main process is being killed by a SIGHUP signal (flatcar#1157)

Updates:

• Linux (5.15.129 (includes 5.15.128, 5.15.127, 5.15.126, 5.15.125))

alpha-3717.0.0

Changes since Alpha 3689.0.0

Security fixes:

• Linux (CVE-2022-40982, CVE-2022-41804, CVE-2023-20569, CVE-2023-20588, CVE-2023-34319, CVE-2023-3772, CVE-2023-3773, CVE-2023-40283, CVE-2023-4128, CVE-2023-4155, CVE-2023-4273, CVE-2023-23908)
• grub (CVE-2020-10713, CVE-2020-14372, CVE-2020-25632, CVE-2020-25647, CVE-2020-27749, CVE-2020-27779, CVE-2021-20225, CVE-2021-20233, CVE-2021-3981, CVE-2021-3695, CVE-2021-3696, CVE-2021-3697, CVE-2022-28733, CVE-2022-28734, CVE-2022-28735, CVE-2022-28736, CVE-2022-28737, CVE-2022-2601, CVE-2022-3775)
• intel-microcode (CVE-2022-40982, CVE-2022-41804, CVE-2023-23908)
• libarchive (libarchive-20230729)
• vim (CVE-2023-2609, CVE-2023-2610)
• VMware: open-vm-tools (CVE-2023-20900)
• SDK: qemu (CVE-2023-0330, CVE-2023-2861)
• SDK: Rust (CVE-2023-38497)

Bug fixes:

• Fixed the restart of Systemd services when the main process is being killed by a SIGHUP signal (Flatcar#1157)

Changes:

• Change nvidia.service to type oneshot (from the default "simple") so the subsequent services (configured with "Requires/After") are executed after the driver installation is successfully finished (Flatcar#1136)

Updates:

• Linux (6.1.50 (includes 6.1.49, 6.1.48, 6.1.47, 6.1.46, 6.1.45, 6.1.44))
• Linux Firmware (20230804)
• cifs-utils (7.0)
• containerd (1.7.5 (includes 1.7.4))
• cryptsetup (2.6.1 (includes 2.6.0 and 2.5.0))
• curl (8.2.1 (includes 8.2.0))
• gdbm (1.23)
• grub (2.06)
• intel-microcode (20230808 (includes 20230613))
• libarchive (3.7.1 (includes 3.7.0))
• libassuan (2.5.6)
• libksba (1.6.4)
• libmd (1.1.0)
• libuv (1.46.0 (includes 1.45.0))
• lsof (4.98.0)
• open-isns (0.102)
• openldap (2.6.3 (includes 2.6))
• parted (3.6)
• psmisc (23.6)
• qemu guest agent (8.0.3)
• quota (4.09)
• runc (1.1.9)
• vim (9.0.1678 (includes 9.0.1677))
• xfsprogs (6.3.0)
• VMware: open-vm-tools (12.3.0)
• SDK: portage (3.0.49)
• SDK: Rust (1.72.0 (includes 1.71.1))
• SDK: qemu (8.0.3)

stable-3510.2.6

Changes since Stable 3510.2.5

Security fixes:

• Linux (CVE-2022-48502, CVE-2023-20593, CVE-2023-2898, CVE-2023-31248, CVE-2023-35001, CVE-2023-3611, CVE-2023-3776, CVE-2023-38432, CVE-2023-3863)
• linux-firmware (CVE-2023-20593)

Updates:

• Linux (5.15.122 (includes 5.15.121, 5.15.120))
• ca-certificates (3.92)
• linux-firmware (20230625)

lts-3033.3.16

Changes since LTS 3033.3.15

Security fixes:

• Linux (CVE-2023-20593, CVE-2023-2898, CVE-2023-31248, CVE-2023-3390, CVE-2023-35001, CVE-2023-3610, CVE-2023-3611, CVE-2023-3776, CVE-2023-3863)
• linux-firmware (CVE-2023-20593)

Updates:

• Linux (5.10.188 (includes 5.10.187))
• ca-certificates (3.92)
• linux-firmware (20230625)

beta-3602.1.4

Changes since Beta 3602.1.3

Security fixes:

• Linux (CVE-2022-48502, CVE-2023-20593, CVE-2023-2898, CVE-2023-31248, CVE-2023-35001, CVE-2023-3611, CVE-2023-3776, CVE-2023-38432, CVE-2023-3863)
• OpenSSH (CVE-2023-38408)
• linux-firmware (CVE-2023-20593)

Updates:

• Linux (5.15.124 (includes 5.15.123, 5.15.122, 5.15.121))
• ca-certificates (3.92)
• linux-firmware (20230625)

alpha-3689.0.0

Changes since Alpha 3665.0.0

Security fixes:

• Linux (CVE-2022-48502, CVE-2023-20593, CVE-2023-2898, CVE-2023-31248, CVE-2023-35001, CVE-2023-3611, CVE-2023-3776, CVE-2023-3863)
• Go (CVE-2023-29406, CVE-2023-29409)
• OpenSSH (CVE-2023-38408)
• OpenSSL (CVE-2023-2975, CVE-2023-3446)
• libxml2 (libxml2-20230428)
• linux-firmware (CVE-2023-20593)
• openldap (CVE-2023-2953)
• shadow (CVE-2023-29383)

Updates:

• Linux (6.1.43 (includes 6.1.42, 6.1.41, 6.1.40, 6.1.39))
• Go (1.20.7)
• ca-certificates (3.92)
• containerd (1.7.3)
• git (2.41.0)
• iperf (3.14)
• libxml2 (2.11.4)
• libxslt (1.1.38)
• openldap (2.5.14 (includes 2.5))
• runc (1.1.8)
• SDK: pahole (1.25)
• SDK: Rust (1.71.0)

alpha-3665.0.0

Changes since Alpha 3654.0.0

Security fixes:

• binutils (CVE-2022-38533, CVE-2022-4285, CVE-2023-1579, CVE-2023-2222)
• ncurses (CVE-2023-29491)
• protobuf (CVE-2022-1941)

Changes:

• ⚠️ Dropped support for niftycloud and interoute. For interoute we haven't been generating the images for some time already.

Updates:

• Linux (6.1.38)
• Linux Firmware (20230625)
• binutils (2.40)
• containerd (1.7.2)
• elfutils (0.189)
• glib (2.76.3)
• ldb (2.4.4 (includes 2.4.3, 2.4.2))
• lua (5.4.4)
• ncurses (6.4)
• nettle (3.9.1)
• nmap (7.94)
• pax-utils (1.3.7)
• protobuf (21.9)
• python (3.11.3)
• talloc (2.4.0 (includes 2.3.4))
• tdb (1.4.8 (includes 1.4.7, 1.4.6))
• tevent (0.14.1 (includes 0.14.0, 0.13.0, 0.12.1, 0.12.0))
• SDK: perf (6.3)
• SDK: perl (5.36.1)
• SDK: qemu (7.2.3)

stable-3510.2.5

Changes since Stable 3510.2.4

Security fixes:

• Linux (CVE-2023-3338, CVE-2023-3390)

Bug fixes:

• Resolved the conflicting FD usage of libselinux and systemd which caused, e.g., a systemd crash on certain watchdog interaction during shutdown (patch in systemd 252.11)

Updates:

• Linux (5.15.119 (includes 5.15.118))
• systemd (252.11 (from 252.5))

lts-3033.3.15

Changes since LTS 3033.3.14

Security fixes:

• Linux (CVE-2023-3338)

Bug fixes:

Changes:

• Changed ext4 inode size of root partition to 256 bytes. This improves compatibility with applications and is necessary for 2038 readiness (Flatcar#1082)

Updates:

• Linux (5.10.186 (includes 5.10.185))
• ca-certificates (3.91)