Update to CGroupsV2
As of Alpha version 2969.0.0, Flatcar Container Linux migrates to the unified cgroup hierarchy (aka CGroupsV2)! New nodes will utilize CGroupsV2 by default. Existing nodes remain on CGroupsV1 and need to be manually migrated to CGroupsV2. To learn more about CGroupsV2 on Flatcar Container Linux and the migration guide, please refer to https://kinvolk.io/docs/flatcar-container-linux/latest/container-runtimes/switching-to-unified-cgroups/
New Alpha release 3005.0.0
Changes since Alpha 2983.0.0
Security fixes
- Linux (CVE-2021-3753, CVE-2021-3739, CVE-2021-40490)
- Go (CVE-2021-39293)
- binutils (CVE-2021-3530, CVE-2021-3549)
- glibc (CVE-2021-38604)
- nettle (CVE-2021-20305, CVE-2021-3580)
- sssd (CVE-2021-3621)
Bug Fixes
- Randomize OEM filesystem UUID if mounting fails (init#47)
- Run emergency.target on ignition/torcx service unit failure in dracut (bootengine#28)
Changes
- Added GPIO support (coreos-overlay#1236)
- Enabled SELinux in permissive mode on ARM64 (coreos-overlay#1245)
Updates
- Linux (5.10.67)
- binutils (2.37)
- ebtables (2.0.11)
- iptables (1.8.7)
- ldb (2.3.0)
- libmnl (1.0.4)
- libnftnl (1.2.0)
- nettle (3.7.3)
- nftables (0.9.9)
- openssh (8.7_p1-r1)
- talloc (2.3.2)
- xenstore (4.14.2)
- Go (1.16.8)
- SDK: Rust (1.55.0)
Note: Please note that ARM images remain experimental for now.