Changes since Alpha 4487.0.0
Security fixes:
- Linux (CVE-2025-40107, CVE-2025-40028, CVE-2025-40027, CVE-2025-40026, CVE-2025-40000, CVE-2025-39995, CVE-2025-40052, CVE-2025-40061, CVE-2025-40060, CVE-2025-40059, CVE-2025-40058, CVE-2025-40057, CVE-2025-40056, CVE-2025-40055, CVE-2025-40081, CVE-2025-40080, CVE-2025-40079, CVE-2025-40078, CVE-2025-40071, CVE-2025-40070, CVE-2025-40068, CVE-2025-40067, CVE-2025-40062, CVE-2025-40053, CVE-2025-40029, CVE-2025-40038, CVE-2025-40037, CVE-2025-40036, CVE-2025-40035, CVE-2025-40033, CVE-2025-40051, CVE-2025-40049, CVE-2025-40031, CVE-2025-40048, CVE-2025-40047, CVE-2025-40045, CVE-2025-40044, CVE-2025-40043, CVE-2025-40039, CVE-2025-40030, CVE-2025-40018, CVE-2025-40004, CVE-2025-40032, CVE-2025-40042, CVE-2025-40019)
Bug fixes:
- Alpha only: Fixed systemd-sysext payload handling for air-gapped/self-hosted updates which was a known bug for 4487.0.0 (ue-rs#93)
- Excluded TUN/TAP interfaces from the default DHCP network configuration to solve conflicts with the programs that created them (Flatcar#1933)
- Fixed Intel microcode updates which were broken in recent Alpha and Beta releases by switching back to built-in extra firmware instead of early cpio inclusion (Flatcar#1909)
- Fixed a kernel boot warning when loading an explicit list of kernel modules in the minimal first-stage initrd (Flatcar#1934)
- Fixed that the needed Flatcar extensions don't get removed on update which caused a re-download (update_engine#51)
Changes:
- Added support for the kernel cmdline parameters
flatcar.release_file_server_urlandflatcar.dev_file_server_urlto specify custom servers where Flatcar extensions should be downloaded on boot (bootengine#112) - Alpha only: Reduced Azure image size again to 30 GB as before by shrinking the root partition to compensate for the growth of the other partitions (scripts#3460)
- Scaleway: The Linux console is now attached to the correct console port. (scripts#3383)