flatcar/scripts alpha-4372.0.0

on GitHub

Changes since Alpha 4344.0.0

Security fixes:

• Linux (CVE-2025-38052, CVE-2025-38061, CVE-2025-38060, CVE-2025-38059, CVE-2025-38058, CVE-2025-38057, CVE-2025-38056, CVE-2025-38055, CVE-2025-38081, CVE-2025-38080, CVE-2025-38079, CVE-2025-38078, CVE-2025-38077, CVE-2025-38075, CVE-2025-38074, CVE-2025-38073, CVE-2025-38072, CVE-2025-38054, CVE-2025-38071, CVE-2025-38069, CVE-2025-38068, CVE-2025-38066, CVE-2025-38065, CVE-2025-38063, CVE-2025-38062, CVE-2025-38053, CVE-2025-38038, CVE-2025-38037, CVE-2025-38035, CVE-2025-38034, CVE-2025-38033, CVE-2025-38051, CVE-2025-38031, CVE-2025-38048, CVE-2025-38047, CVE-2025-38046, CVE-2025-38045, CVE-2025-38044, CVE-2025-38043, CVE-2025-38040, CVE-2025-38039, CVE-2025-38030, CVE-2025-38003, CVE-2025-38004, CVE-2025-38000, CVE-2025-38082, CVE-2025-38001, CVE-2025-38083)

Bug fixes:

• Fixed race condition in the script that grows the root partition to fill the disk. This bug sometimes caused the operation to not occur. (init#132)

Changes:

• Added support for podman in toolbox (toolbox#11)
• /boot is now only accessible by the root user for better security. (Flatcar#296)
• sysext-incus: removed /etc/subuid and /etc/subgid generation for root user, it has to be created through initial provisioning. (scripts#3028)

Updates:

• Linux (6.12.34 (includes 6.12.33, 6.12.32, 6.12.31))
• Linux Firmware (20250613)
• ca-certificates (3.112)