Changes since Alpha 3619.0.0
Security fixes:
- Go (CVE-2023-29402, CVE-2023-29403, CVE-2023-29404, CVE-2023-29405)
- c-ares (CVE-2023-31124, CVE-2023-31130, CVE-2023-31147, CVE-2023-32067)
- sudo (CVE-2023-27320, CVE-2023-28486, CVE-2023-28487)
- VMware: open-vm-tools (CVE-2023-20867)
Bug fixes:
- Resolved the conflicting FD usage of libselinux and systemd which caused, e.g., a systemd crash on certain watchdog interaction during shutdown (patch in systemd 252.11)
Changes:
- Added TLS Kernel module (scripts#865)
- Added support for multipart MIME userdata in coreos-cloudinit. Ignition now detects multipart userdata and delegates execution to coreos-cloudinit. (scripts#873)
- Enabled the virtio GPU driver (scripts#830)
- Migrate to Type=notify in containerd.service. Changed the unit to Type=notify, utilizing the existing containerd support for sd_notify call after socket setup. (scripts#866)
- Migrated the NVIDIA installer from the Azure/AWS OEM partition to
/usr
to make it available on all platforms (scripts#932, Flatcar#1077) - Azure and QEMU OEM images now use systemd-sysext images for layering additional platform-specific software on top of
/usr
. For Azure images this also means that the image has a normal Python installation available through the sysext image. The OEM software is still not updated but this will be added soon. - Moved a mountpoint of the OEM partition from
/usr/share/oem
to/oem
./usr/share/oem
became a symlink to/oem
for backward compatibility. Despite the move, the initrd images providing files through/usr/share/oem
should keep using/usr/share/oem
. The move was done to enable activating the OEM sysext images that are placed in the OEM partition.
Updates:
- Linux (6.1.34 (includes 6.1.33, 6.1.32, 6.1.31))
- Go (1.20.5)
- c-ares (1.19.1)
- ca-certificates (3.90)
- coreutils (9.1)
- debianutils (5.7)
- ethtool (6.2)
- grep (3.8)
- hwdata (0.367)
- iproute (6.2)
- kbd (2.5.1)
- kexec-tools (2.0.24)
- kmod (30)
- less (632)
- nvme-cli (2.3)
- pciutils (3.9.0)
- sed (4.9)
- smartmontools (7.3)
- strace (6.2)
- sudo (1.9.13p3)
- systemd (252.11 (from 252.5))
- usbutils (015)
- util-linux (2.38.1)
- SDK: Rust (1.70.0)
- SDK: man-db (2.11.2)
- SDK: man-pages (6.03)
- VMware: open-vm-tools (12.2.5)