New Stable release 3033.2.1
Changes since Stable 3033.2.0
Known issues:
- The SELinux policy store update fix resulted in some files leaked to the root filesystem top directory (flatcar-linux/Flatcar#596)
Security fixes:
- Linux (CVE-2021-4135, CVE-2021-4155, CVE-2021-28711, CVE-2021-28712, CVE-2021-28713, CVE-2021-28714, CVE-2021-28715, CVE-2021-39685, CVE-2021-44733, CVE-2021-45095, CVE-2022-0185)
- ca-certificates (CVE-2021-43527)
- containerd (CVE-2021-43816)
- expat (CVE-2021-45960, CVE-2021-46143, CVE-2022-22822, CVE-2022-22823, CVE-2022-22824, CVE-2022-22825, CVE-2022-22826, CVE-2022-22827)
Bug fixes:
- Ensured that the
/run/xtables.lock
coordination file exists for modifications of the xtables backend from containers (must be bind-mounted) or theiptables-legacy
binaries on the host (flatcar-linux/init#57) - dev container: Fix github URL for coreos-overlay and portage-stable to use repos from flatcar-linux org directly instead of relying on redirects from the kinvolk org. This fixes checkouts with emerge-gitclone inside dev-container. (flatcar-linux/scripts#194)
- SDK: Fixed build error popping up in the new SDK Container because
policycoreutils
used the wrong ROOT to update the SELinux store (flatcar-linux/coreos-overlay#1502)
Changes:
- Backported
elf
support foriproute2
(flatcar-linux/coreos-overlay#1256)