# Flatcar Container Linux Release - June 23, 2025 ## Alpha 4372.0.0 - AMD64-usr - Platforms succeeded: All except Brightbox - Platforms failed: Brightbox (KubeADM tests are failing, because of known provider issue of ipv4) - Platforms not tested: none - ARM64-usr - Platforms succeeded: all - Platforms failed: none - Platforms not tested: none ## Beta 4344.1.0 - AMD64-usr - Platforms succeeded: All except Brightbox - Platforms failed: Brightbox (KubeADM tests are failing, because of known provider issue of ipv4) - Platforms not tested: none - ARM64-usr - Platforms succeeded: all - Platforms failed: none - Platforms not tested: none ## Stable 4230.2.0 - AMD64-usr - Platforms succeeded: All except of two: Brightbox and qemu_uefi_secure - Platforms failed: - Brightbox: KubeADM tests are failing, because of known provider issue of ipv4 - [qemu_uefi_secure](http://jenkins.infra.kinvolk.io:8080/job/container/job/test/37070/console): - @yudocaa mentioned on matrix: Stable it's expected. 4284.0.0 is where we implemented the signing process. - Platforms not tested: none - ARM64-usr - Platforms succeeded: all - Platforms failed: none - Platforms not tested: none VERDICT: _GO_ / _WAIT_ / _NO-GO_ ## Communication --- #### Guidelines / Things to Remember - Release notes are used in a PR and will appear on https://www.flatcar.org/releases/ - [Announcement Message](#Announcement-Message) is posted in [Flatcar-Linux-user](https://groups.google.com/g/flatcar-linux-user). Make sure to post as “Flatcar Container Linux User”, not with your personal user (this can be selected when drafting the post). - Make sure the the LTS is referred to as `LTS-2021`, and not `LTS-2605` --- ### Announcement Message Subject: Announcing new releases Alpha 4372.0.0, Beta 4344.1.0, Stable 4230.2.0 Hello, We are pleased to announce a new Flatcar Container Linux release for the Alpha, Beta, Stable channel. #### Alpha 4372.0.0 _Changes since **Alpha 4344.0.0**_ #### Security fixes: - Linux ([CVE-2025-38052](https://nvd.nist.gov/vuln/detail/CVE-2025-38052), [CVE-2025-38061](https://nvd.nist.gov/vuln/detail/CVE-2025-38061), [CVE-2025-38060](https://nvd.nist.gov/vuln/detail/CVE-2025-38060), [CVE-2025-38059](https://nvd.nist.gov/vuln/detail/CVE-2025-38059), [CVE-2025-38058](https://nvd.nist.gov/vuln/detail/CVE-2025-38058), [CVE-2025-38057](https://nvd.nist.gov/vuln/detail/CVE-2025-38057), [CVE-2025-38056](https://nvd.nist.gov/vuln/detail/CVE-2025-38056), [CVE-2025-38055](https://nvd.nist.gov/vuln/detail/CVE-2025-38055), [CVE-2025-38081](https://nvd.nist.gov/vuln/detail/CVE-2025-38081), [CVE-2025-38080](https://nvd.nist.gov/vuln/detail/CVE-2025-38080), [CVE-2025-38079](https://nvd.nist.gov/vuln/detail/CVE-2025-38079), [CVE-2025-38078](https://nvd.nist.gov/vuln/detail/CVE-2025-38078), [CVE-2025-38077](https://nvd.nist.gov/vuln/detail/CVE-2025-38077), [CVE-2025-38075](https://nvd.nist.gov/vuln/detail/CVE-2025-38075), [CVE-2025-38074](https://nvd.nist.gov/vuln/detail/CVE-2025-38074), [CVE-2025-38073](https://nvd.nist.gov/vuln/detail/CVE-2025-38073), [CVE-2025-38072](https://nvd.nist.gov/vuln/detail/CVE-2025-38072), [CVE-2025-38054](https://nvd.nist.gov/vuln/detail/CVE-2025-38054), [CVE-2025-38071](https://nvd.nist.gov/vuln/detail/CVE-2025-38071), [CVE-2025-38069](https://nvd.nist.gov/vuln/detail/CVE-2025-38069), [CVE-2025-38068](https://nvd.nist.gov/vuln/detail/CVE-2025-38068), [CVE-2025-38066](https://nvd.nist.gov/vuln/detail/CVE-2025-38066), [CVE-2025-38065](https://nvd.nist.gov/vuln/detail/CVE-2025-38065), [CVE-2025-38063](https://nvd.nist.gov/vuln/detail/CVE-2025-38063), [CVE-2025-38062](https://nvd.nist.gov/vuln/detail/CVE-2025-38062), [CVE-2025-38053](https://nvd.nist.gov/vuln/detail/CVE-2025-38053), [CVE-2025-38038](https://nvd.nist.gov/vuln/detail/CVE-2025-38038), [CVE-2025-38037](https://nvd.nist.gov/vuln/detail/CVE-2025-38037), [CVE-2025-38035](https://nvd.nist.gov/vuln/detail/CVE-2025-38035), [CVE-2025-38034](https://nvd.nist.gov/vuln/detail/CVE-2025-38034), [CVE-2025-38033](https://nvd.nist.gov/vuln/detail/CVE-2025-38033), [CVE-2025-38051](https://nvd.nist.gov/vuln/detail/CVE-2025-38051), [CVE-2025-38031](https://nvd.nist.gov/vuln/detail/CVE-2025-38031), [CVE-2025-38048](https://nvd.nist.gov/vuln/detail/CVE-2025-38048), [CVE-2025-38047](https://nvd.nist.gov/vuln/detail/CVE-2025-38047), [CVE-2025-38046](https://nvd.nist.gov/vuln/detail/CVE-2025-38046), [CVE-2025-38045](https://nvd.nist.gov/vuln/detail/CVE-2025-38045), [CVE-2025-38044](https://nvd.nist.gov/vuln/detail/CVE-2025-38044), [CVE-2025-38043](https://nvd.nist.gov/vuln/detail/CVE-2025-38043), [CVE-2025-38040](https://nvd.nist.gov/vuln/detail/CVE-2025-38040), [CVE-2025-38039](https://nvd.nist.gov/vuln/detail/CVE-2025-38039), [CVE-2025-38030](https://nvd.nist.gov/vuln/detail/CVE-2025-38030), [CVE-2025-38003](https://nvd.nist.gov/vuln/detail/CVE-2025-38003), [CVE-2025-38004](https://nvd.nist.gov/vuln/detail/CVE-2025-38004), [CVE-2025-38000](https://nvd.nist.gov/vuln/detail/CVE-2025-38000), [CVE-2025-38082](https://nvd.nist.gov/vuln/detail/CVE-2025-38082), [CVE-2025-38001](https://nvd.nist.gov/vuln/detail/CVE-2025-38001), [CVE-2025-38083](https://nvd.nist.gov/vuln/detail/CVE-2025-38083)) #### Bug fixes: - Fixed race condition in the script that grows the root partition to fill the disk. This bug sometimes caused the operation to not occur. ([init#132](https://github.com/flatcar/init/pull/132)) #### Changes: - Added support for podman in `toolbox` ([toolbox#11](https://github.com/flatcar/toolbox/pull/11)) - `/boot` is now only accessible by the root user for better security. ([Flatcar#296](https://github.com/flatcar/Flatcar/issues/296)) - sysext-incus: removed `/etc/subuid` and `/etc/subgid` generation for `root` user, it has to be created through initial provisioning. ([scripts#3028](https://github.com/flatcar/scripts/pull/3028)) #### Updates: - Linux ([6.12.34](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.34) (includes [6.12.33](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.33), [6.12.32](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.32), [6.12.31](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.31))) - Linux Firmware ([20250613](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250613)) - ca-certificates ([3.112](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_112.html)) --- #### Beta 4344.1.0 _Changes since **Beta 4230.1.1**_ #### Security fixes: - VMWare: open-vm-tools ([CVE-2025-22247](https://www.cve.org/CVERecord/?id=CVE-2025-22247)) - afterburn ([CVE-2025-3416](https://www.cve.org/CVERecord?id=CVE-2025-3416), [CVE-2025-0977](https://www.cve.org/CVERecord/?id=CVE-2025-0977)) - binutils ([CVE-2024-53589](https://nvd.nist.gov/vuln/detail/CVE-2024-53589), [CVE-2025-1176](https://nvd.nist.gov/vuln/detail/CVE-2025-1176), [CVE-2025-1178](https://nvd.nist.gov/vuln/detail/CVE-2025-1178), [CVE-2025-1179](https://nvd.nist.gov/vuln/detail/CVE-2025-1179), [CVE-2025-1180](https://nvd.nist.gov/vuln/detail/CVE-2025-1180), [CVE-2025-1181](https://nvd.nist.gov/vuln/detail/CVE-2025-1181), [CVE-2025-1182](https://nvd.nist.gov/vuln/detail/CVE-2025-1182)) - c-ares ([CVE-2025-31498](https://www.cve.org/CVERecord?id=CVE-2025-31498)) - cifs-utils ([CVE-2025-2312](https://nvd.nist.gov/vuln/detail/CVE-2025-2312)) - containerd ([CVE-2024-40635](https://www.cve.org/CVERecord?id=CVE-2024-40635)) - crun ([CVE-2025-24965](https://nvd.nist.gov/vuln/detail/CVE-2025-24965)) - curl ([CVE-2025-0167](https://nvd.nist.gov/vuln/detail/CVE-2025-0167), [CVE-2025-0665](https://nvd.nist.gov/vuln/detail/CVE-2025-0665), [CVE-2025-0725](https://nvd.nist.gov/vuln/detail/CVE-2025-0725), [curl-20250205](https://github.com/curl/curl/issues/16197)) - expat ([CVE-2024-8176](https://nvd.nist.gov/vuln/detail/CVE-2024-8176)) - git ([CVE-2024-50349](https://nvd.nist.gov/vuln/detail/CVE-2024-50349), [CVE-2024-52005](https://nvd.nist.gov/vuln/detail/CVE-2024-52005), [CVE-2024-52006](https://nvd.nist.gov/vuln/detail/CVE-2024-52006)) - glib ([CVE-2024-52533](https://nvd.nist.gov/vuln/detail/CVE-2024-52533)) - glibc ([CVE-2025-0395](https://nvd.nist.gov/vuln/detail/CVE-2025-0395)) - gnutls ([CVE-2024-12243](https://nvd.nist.gov/vuln/detail/CVE-2024-12243)) - go ([CVE-2025-22871](https://www.cve.org/CVERecord?id=CVE-2025-22871)) - intel-microcode ([CVE-2023-34440](https://nvd.nist.gov/vuln/detail/CVE-2023-34440), [CVE-2023-43758](https://nvd.nist.gov/vuln/detail/CVE-2023-43758), [CVE-2024-24582](https://nvd.nist.gov/vuln/detail/CVE-2024-24582), [CVE-2024-28047](https://nvd.nist.gov/vuln/detail/CVE-2024-28047), [CVE-2024-28127](https://nvd.nist.gov/vuln/detail/CVE-2024-28127), [CVE-2024-29214](https://nvd.nist.gov/vuln/detail/CVE-2024-29214), [CVE-2024-31157](https://nvd.nist.gov/vuln/detail/CVE-2024-31157), [CVE-2024-39279](https://nvd.nist.gov/vuln/detail/CVE-2024-39279), [CVE-2024-31068](https://nvd.nist.gov/vuln/detail/CVE-2024-31068), [CVE-2024-36293](https://nvd.nist.gov/vuln/detail/CVE-2024-36293), [CVE-2024-37020](https://nvd.nist.gov/vuln/detail/CVE-2024-37020), [CVE-2024-39355](https://nvd.nist.gov/vuln/detail/CVE-2024-39355)) - iperf ([CVE-2024-53580](https://www.cve.org/CVERecord?id=CVE-2024-53580)) - libarchive ([CVE-2024-57970](https://nvd.nist.gov/vuln/detail/CVE-2024-57970), [CVE-2025-25724](https://nvd.nist.gov/vuln/detail/CVE-2025-25724)) - libcap ([CVE-2025-1390](https://nvd.nist.gov/vuln/detail/CVE-2025-1390)) - libtasn1 ([CVE-2024-12133](https://nvd.nist.gov/vuln/detail/CVE-2024-12133)) - libxml2 ([CVE-2024-56171](https://nvd.nist.gov/vuln/detail/CVE-2024-56171), [CVE-2025-24928](https://nvd.nist.gov/vuln/detail/CVE-2025-24928), [CVE-2025-27113](https://nvd.nist.gov/vuln/detail/CVE-2025-27113)) - libxslt ([CVE-2025-24855](https://nvd.nist.gov/vuln/detail/CVE-2025-24855), [CVE-2024-55549](https://nvd.nist.gov/vuln/detail/CVE-2024-55549)) - mit-krb5 ([CVE-2025-24528](https://nvd.nist.gov/vuln/detail/CVE-2025-24528)) - openssh ([CVE-2025-26465](https://nvd.nist.gov/vuln/detail/CVE-2025-26465), [CVE-2025-26466](https://nvd.nist.gov/vuln/detail/CVE-2025-26466)) - openssl ([CVE-2024-13176](https://nvd.nist.gov/vuln/detail/CVE-2024-13176), [CVE-2024-12797](https://nvd.nist.gov/vuln/detail/CVE-2024-12797)) - perl ([CVE-2024-56406](https://www.cve.org/CVERecord?id=CVE-2024-56406)) - podman ([CVE-2024-11218](https://nvd.nist.gov/vuln/detail/CVE-2024-11218)) - python ([CVE-2025-0938](https://www.cve.org/CVERecord?id=CVE-2025-0938)) - rsync ([CVE-2024-12084](https://nvd.nist.gov/vuln/detail/CVE-2024-12084), [CVE-2024-12085](https://nvd.nist.gov/vuln/detail/CVE-2024-12085), [CVE-2024-12086](https://nvd.nist.gov/vuln/detail/CVE-2024-12086), [CVE-2024-12087](https://nvd.nist.gov/vuln/detail/CVE-2024-12087), [CVE-2024-12088](https://nvd.nist.gov/vuln/detail/CVE-2024-12088), [CVE-2024-12747](https://nvd.nist.gov/vuln/detail/CVE-2024-12747)) - socat ([CVE-2024-54661](https://nvd.nist.gov/vuln/detail/CVE-2024-54661), [socat-20250221](https://repo.or.cz/socat.git/blob/refs/tags/tag-1.8.0.3:/CHANGES#l4)) - vim ([CVE-2024-41957](https://nvd.nist.gov/vuln/detail/CVE-2024-41957), [CVE-2024-41965](https://nvd.nist.gov/vuln/detail/CVE-2024-41965), [CVE-2024-43374](https://nvd.nist.gov/vuln/detail/CVE-2024-43374), [CVE-2024-43790](https://nvd.nist.gov/vuln/detail/CVE-2024-43790), [CVE-2024-43802](https://nvd.nist.gov/vuln/detail/CVE-2024-43802), [CVE-2024-45306](https://nvd.nist.gov/vuln/detail/CVE-2024-45306), [CVE-2024-47814](https://nvd.nist.gov/vuln/detail/CVE-2024-47814)) - xz-utils ([CVE-2025-31115](https://www.cve.org/CVERecord?id=CVE-2025-31115)) #### Bug fixes: - Added back some BCC tools ([scripts#2900](https://github.com/flatcar/scripts/pull/2900)) - Fix non-conforming GPT partition table ([flatcar/Flatcar#1651](https://github.com/flatcar/Flatcar/issues/1651)) - Fixed path handling in the QEMU .sh launcher scripts. Given paths now are relative to the current directory and absolute paths work as you would expect. - Fixed race condition in the script that grows the root partition to fill the disk. This bug sometimes caused the operation to not occur. ([init#132](https://github.com/flatcar/init/pull/132)) - Fixed the inclusion of Intel and AMD CPU microcode in the initrd. This was accidentally dropped some time ago. - azure: Fixed issue of wa-linux-agent overriding ssh public key from ignition configuration during provisioning ([flatcar/Flatcar#1661](https://github.com/flatcar/Flatcar/issues/1661)) - update-ssh-keys: More intuitive --help text and the -n (no-replace) option has been fixed. ([flatcar/Flatcar#1554](https://github.com/flatcar/Flatcar/issues/1554)) #### Changes: - Add changes for our secureboot signed images with our signed release process until the official shim signing ([scripts#2754](https://github.com/flatcar/scripts/pull/2754/)) - Added `nftables-load.service` and `nftables-store.service` services to load/store rules from/in `/var/lib/nftables/rules-save` ([Flatcar#900](https://github.com/flatcar/Flatcar/issues/900)) - Added support for podman in `toolbox` ([toolbox#11](https://github.com/flatcar/toolbox/pull/11)) - Allow per-sysext USE flags and architecture-specific sysexts. ([scripts#2798](https://github.com/flatcar/scripts/pull/2798/)) - Always truncate hostnames on the first occurrence of `.` ([cloud-init#32](https://github.com/flatcar/coreos-cloudinit/pull/32)) - Build Intel iGPU i915 driver as module ([scripts#2349](https://github.com/flatcar/scripts/pull/2349)) - Compile OS-dependent NVIDIA kernel module sysexts signed for secure boot. ([scripts#2798](https://github.com/flatcar/scripts/pull/2798/)) - Enabled EROFS module with XATTR support ([Flatcar#1659](https://github.com/flatcar/Flatcar/issues/1659)) - Enabled virtiofs and fuse-dax modules in the kernel for advaned Qemu usecases. Thank you @aaronk6! ([Flatcar#2825](https://github.com/flatcar/scripts/pull/2825)) - Ensure hostnames never exceeds 63 characters, regardless of the metadata provider ([cloud-init#31](https://github.com/flatcar/coreos-cloudinit/pull/31)) - Provided an Incus Flatcar extension as optional systemd-sysext image with the release. Write 'incus' to `/etc/flatcar/enabled-sysext.conf` through Ignition and the sysext will be installed during provisioning. ([scripts#1655](https://github.com/flatcar/scripts/pull/1655)) - Sign out-of-tree kernel modules using the ephemeral signing key so that ZFS and NVIDIA sysexts can work with secure boot. ([scripts#2636](https://github.com/flatcar/scripts/pull/2636/)) - The kernel image and its embedded initrd are now compressed with xz rather than zstd. This gives greater compression at the cost of decompression performance. Systems may therefore now be ever so slightly slower to boot, but this was necessary to avoid running out of space in the /boot partition. Further measures to address the space issue are planned, and perhaps we can switch back to zstd in a later release. - The qemu script (`flatcar_production_qemu*.sh`) received two new options. `-D` (or `-image-disk-opts`) can be used to add extra options to the `virtio-blk-pci` device for primary disk. `-d` (or `-disk`) can be used to add extra disks to the machine - this one takes a path to a raw or qcow2 image file and, after a comma, `virtio-blk-pci` options. To learn what disk options can be passed to `-D` or `-d`, call `qemu-system-x86_64 -device virtio-blk-pci,help` (`qemu-system-aarch64` can be used too). - `/boot` is now only accessible by the root user for better security. ([Flatcar#296](https://github.com/flatcar/Flatcar/issues/296)) - sysext-incus: removed `/etc/subuid` and `/etc/subgid` generation for `root` user, it has to be created through initial provisioning. ([scripts#3028](https://github.com/flatcar/scripts/pull/3028)) - systemd now uses OpenSSL instead of gcrypt for cryptography to reduce the size of the initrd. This change disables systemd-journal's Forward Secure Sealing feature, but it is generally not useful for Flatcar. #### Updates: - AWS: Amazon SSM Agent ([3.3.2299.0](https://github.com/aws/amazon-ssm-agent/blob/mainline/RELEASENOTES.md#3322990)) - Ignition ([2.21.0](https://coreos.github.io/ignition/release-notes/#ignition-2210-2025-03-13)) - Linux ([6.12.34](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.34) (includes [6.12.33](https://lwn.net/Articles/1024717), [6.12.32](https://lwn.net/Articles/1023797), [6.12.31](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.31), [6.12.30](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.30) [6.12.29](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.29) [6.12.28](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.28), [6.12.27](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.27), [6.12.26](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.26), [6.12.25](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.25), [6.12.24](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.24), [6.12.23](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.23), [6.12.22](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.22), [6.12.21](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.21), [6.12.20](https://lwn.net/Articles/1015185/) [6.12.19](https://lwn.net/Articles/1014045/), [6.12.18](https://lwn.net/Articles/1013397/), [6.12.17](https://lwn.net/Articles/1012191/), [6.12.16](https://lwn.net/Articles/1011265/), [6.12.15](https://lwn.net/Articles/1010623/), [6.12.14](https://lwn.net/Articles/1010356/), [6.12.13](https://lwn.net/Articles/1008643/), [6.12.12](https://lwn.net/Articles/1007440/), [6.12.11](https://lwn.net/Articles/1006009/), [6.12.10](https://lwn.net/Articles/1005382/), [6.12.9](https://lwn.net/Articles/1004549/), [6.12.8](https://lwn.net/Articles/1003985/), [6.12.7](https://lwn.net/Articles/1003608/), [6.12.6](https://lwn.net/Articles/1002918/), [6.12.5](https://lwn.net/Articles/1002176/), [6.12.4](https://lwn.net/Articles/1001437/), [6.12.3](https://lwn.net/Articles/1001203/), [6.12.2](https://lwn.net/Articles/1000872/), [6.12.1](https://lwn.net/Articles/999108/), [6.12](https://lwn.net/Articles/998490/), [6.6.89](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.89))) - Linux Firmware ([20250509](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250509) (includes [20250410](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250410), [20250311](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250311), [20250211](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250211))) - SDK: cmake ([3.31.5](https://cmake.org/cmake/help/v3.31/release/3.31.html)) - SDK: go ([1.24.2](https://go.dev/doc/devel/release#go1.24.minor) (includes [1.24.1](https://go.dev/doc/go1.24), [1.23.6](https://go.dev/doc/devel/release#go1.23.6), [1.23.5](https://go.dev/doc/go1.23))) - SDK: meson ([1.6.1](https://mesonbuild.com/Release-notes-for-1-6-0.html)) - SDK: perl ([5.40.2](https://perldoc.perl.org/perl5402delta) (includes [5.40.1](https://perldoc.perl.org/perl5401delta)) - SDK: pkgcheck ([0.10.34](https://github.com/pkgcore/pkgcheck/releases/tag/v0.10.34)) - SDK: qemu ([9.1.2](https://wiki.qemu.org/ChangeLog/9.1) (includes [9.0](https://wiki.qemu.org/ChangeLog/9.0))) - SDK: rust ([1.85.1](https://github.com/rust-lang/rust/releases/tag/1.85.1) (includes [1.85.0](https://github.com/rust-lang/rust/releases/tag/1.85.0), [1.84.1](https://releases.rs/docs/1.84.1/), [1.84.0](https://releases.rs/docs/1.84.0/), [1.83.0](https://blog.rust-lang.org/2024/11/28/Rust-1.83.0.html))) - VMWare: open-vm-tools ([12.5.2](https://github.com/vmware/open-vm-tools/releases/tag/stable-12.5.2)) - afterburn ([5.8.2](https://coreos.github.io/afterburn/release-notes/#afterburn-582)) - azure, dev, gce, sysext-python: gdbm ([1.25](https://lists.gnu.org/archive/html/info-gnu/2025-03/msg00010.html)) - azure, dev, gce, sysext-python: python ([3.11.12](https://www.python.org/downloads/release/python-31112/)) - azure: wa-linux-agent ([2.12.0.4](https://github.com/Azure/WALinuxAgent/releases/tag/v2.12.0.4)) - base, dev: azure-vm-utils ([0.6.0](https://github.com/Azure/azure-vm-utils/releases/tag/v0.6.0) (includes [0.5.2](https://github.com/Azure/azure-vm-utils/releases/tag/v0.5.2), [0.5.1](https://github.com/Azure/azure-vm-utils/releases/tag/v0.5.1), [0.5.0](https://github.com/Azure/azure-vm-utils/releases/tag/v0.5.0))) - base, dev: bind ([9.18.31](https://bind9.readthedocs.io/en/v9.18.31/notes.html#notes-for-bind-9-18-31) (includes [9.18.30](https://bind9.readthedocs.io/en/v9.18.30/notes.html#notes-for-bind-9-18-30))) - base, dev: binutils ([2.44](https://lists.gnu.org/archive/html/info-gnu/2025-02/msg00001.html)) - base, dev: btrfs-progs ([6.13](https://raw.githubusercontent.com/kdave/btrfs-progs/refs/tags/v6.13/CHANGES)) - base, dev: c-ares ([1.34.4](https://github.com/c-ares/c-ares/releases/tag/v1.34.4)) - base, dev: cifs-utils ([7.3](https://lists.samba.org/archive/samba-technical/2025-March/139360.html) (includes [7.2](https://lists.samba.org/archive/samba-technical/2025-February/139330.html), [7.1](https://lists.samba.org/archive/samba-technical/2024-October/139146.html))) - base, dev: cracklib ([2.10.3](https://github.com/cracklib/cracklib/releases/tag/v2.10.3)) - base, dev: cri-tools ([1.32.0](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.32.0) (includes [1.31.1](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.31.1), [1.31.0](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.31.0), [1.30.1](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.30.1), [1.30.0](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.30.0), [1.29.0](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.29.0), [1.28.0](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.28.0), [1.27.1](https://github.com/kubernetes-sigs/cri-tools/releases/tag/v1.27.1))) - base, dev: curl ([8.13.0](https://curl.se/ch/8.13.0.html) (includes [8.12.1](https://curl.se/ch/8.12.1.html), [8.12.0](https://curl.se/ch/8.12.0.html)) - base, dev: dbus ([1.16.2](https://gitlab.freedesktop.org/dbus/dbus/-/blob/dbus-1.16.2/NEWS) (includes [1.16.0](https://gitlab.freedesktop.org/dbus/dbus/-/blob/dbus-1.16.0/NEWS), [1.14.8](https://gitlab.freedesktop.org/dbus/dbus/-/blob/dbus-1.14.8/NEWS), [1.14.6](https://gitlab.freedesktop.org/dbus/dbus/-/blob/dbus-1.14.6/NEWS))) - base, dev: diffutils ([3.12](https://lists.gnu.org/archive/html/info-gnu/2025-04/msg00005.html) (includes [3.11](https://savannah.gnu.org/news/?id=10720))) - base, dev: e2fsprogs ([1.47.2](https://e2fsprogs.sourceforge.net/e2fsprogs-release.html#1.47.2)) - base, dev: elfutils ([0.192](https://inbox.sourceware.org/elfutils-devel/CAJDtP-T3+gXqHWp3T0mejWWbPr0_1tHetEXwfB67-o+zz7ShiA@mail.gmail.com/T/)) - base, dev: ethtool ([6.11](https://git.kernel.org/pub/scm/network/ethtool/ethtool.git/tree/NEWS?h=v6.11)) - base, dev: expat ([2.7.1](https://github.com/libexpat/libexpat/blob/R_2_7_1/expat/Changes#L40) (includes [2.7.0](https://github.com/libexpat/libexpat/blob/R_2_7_0/expat/Changes#L40))) - base, dev: git ([2.49.0](https://github.com/git/git/blob/v2.49.0/Documentation/RelNotes/2.49.0.adoc) (includes [2.48.1](https://github.com/git/git/blob/v2.48.1/Documentation/RelNotes/2.48.1.txt) [2.48.0](https://github.com/git/git/blob/v2.48.0/Documentation/RelNotes/2.48.0.txt), [2.47.2](https://github.com/git/git/blob/v2.47.2/Documentation/RelNotes/2.47.2.txt), [2.47.1](https://github.com/git/git/blob/v2.47.1/Documentation/RelNotes/2.47.1.txt), [2.47.0](https://github.com/git/git/blob/v2.47.0/Documentation/RelNotes/2.47.0.txt), [2.46.3](https://github.com/git/git/blob/v2.46.3/Documentation/RelNotes/2.46.3.txt), [2.46.2](https://github.com/git/git/blob/v2.46.2/Documentation/RelNotes/2.46.2.txt), [2.46.1](https://github.com/git/git/blob/v2.46.1/Documentation/RelNotes/2.46.1.txt), [2.46.0](https://github.com/git/git/blob/v2.46.0/Documentation/RelNotes/2.46.0.txt), [2.45.3](https://github.com/git/git/blob/v2.45.3/Documentation/RelNotes/2.45.3.txt))) - base, dev: glib (([2.82.5](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.5) (includes [2.82.4](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.4), [2.82.3](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.3), [2.82.2](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.2), [2.82.1](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1), [2.82.0](https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.0))) - base, dev: gnupg ([2.4.7](https://dev.gnupg.org/T7353)) - base, dev: gnutls ([3.8.9](https://lists.gnupg.org/pipermail/gnutls-help/2025-February/004875.html) (includes [3.8.8](https://gitlab.com/gnutls/gnutls/-/blob/3.8.8/NEWS))) - base, dev: hwdata ([0.391](https://github.com/vcrhonek/hwdata/releases/tag/v0.391)) - base, dev: intel-microcode ([20250211_p20250211](https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20250211)) - base, dev: iproute2 ([6.14.0](https://lore.kernel.org/all/20250324092319.28d39f2f@hermes.local/) (includes [6.13.0](https://lore.kernel.org/all/20250120194053.3744d96b@hermes.local/))) - base, dev: ipset ([7.23](https://ipset.netfilter.org/changelog.html)) - base, dev: iptables ([1.8.11](https://netfilter.org/projects/iptables/files/changes-iptables-1.8.11.txt) (includes [1.8.10](https://netfilter.org/projects/iptables/files/changes-iptables-1.8.10.txt), [1.8.9](https://netfilter.org/projects/iptables/files/changes-iptables-1.8.9.txt))) - base, dev: kbd ([2.7.1](https://git.kernel.org/pub/scm/linux/kernel/git/legion/kbd.git/tag/?h=v2.7.1) (includes [2.7](https://git.kernel.org/pub/scm/linux/kernel/git/legion/kbd.git/tag/?h=v2.7), [2.7-rc1](https://git.kernel.org/pub/scm/linux/kernel/git/legion/kbd.git/tag/?h=v2.7-rc1))) - base, dev: ldb ([2.9.2](https://gitlab.com/samba-team/samba/-/commit/42bfbb012f9c1c9054cdfb510ae4a50a3f12b384) (includes [2.9.1](https://gitlab.com/samba-team/samba/-/commit/3dd39600da3c0bedeae9f033c1333eb6b0f4ff33), [2.9.0](https://gitlab.com/samba-team/samba/-/commit/ec91204387bd7f5c5a8d8df8534c6ca59b491ac5))) - base, dev: libarchive ([3.7.9](https://github.com/libarchive/libarchive/releases/tag/v3.7.9) (includes [3.7.8](https://github.com/libarchive/libarchive/releases/tag/v3.7.8))) - base, dev: libidn2 ([2.3.8](https://gitlab.com/libidn/libidn2/-/blob/v2.3.8/NEWS)) - base, dev: libnvme ([1.12](https://github.com/linux-nvme/libnvme/releases/tag/v1.12)) - base, dev: libpcre2 ([10.45](https://github.com/PCRE2Project/pcre2/blob/pcre2-10.45/NEWS)) - base, dev: libseccomp ([2.6.0](https://github.com/seccomp/libseccomp/releases/tag/v2.6.0) (includes [2.5.6](https://github.com/seccomp/libseccomp/releases/tag/v2.5.6))) - base, dev: libsemanage ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: libtasn1 ([4.20.0](https://lists.gnu.org/archive/html/info-gnu/2025-02/msg00004.html)) - base, dev: libtirpc ([1.3.6](https://git.linux-nfs.org/?p=steved/libtirpc.git;a=log;h=refs/tags/libtirpc-1-3-6) (includes [1.3.5](https://git.linux-nfs.org/?p=steved/libtirpc.git;a=log;h=refs/tags/libtirpc-1-3-5))) - base, dev: libuv ([1.50.0](https://github.com/libuv/libuv/releases/tag/v1.50.0)) - base, dev: libxcrypt ([4.4.38](https://github.com/besser82/libxcrypt/releases/tag/v4.4.38) (includes [4.4.37](https://github.com/besser82/libxcrypt/releases/tag/v4.4.37))) - base, dev: libxml2 ([2.13.7](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.7) (includes [2.13.6](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.6), [2.13.5](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.5), [2.13.4](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.4), [2.13.3](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.3), [2.13.2](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.2), [2.13.1](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.1), [2.13.0](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.13.0), [2.12.10](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.10))) - base, dev: linux-headers ([6.12](https://kernelnewbies.org/Linux_6.12)) - base, dev: logrotate ([3.22.0](https://github.com/logrotate/logrotate/releases/tag/3.22.0) (includes [3.21.0](https://github.com/logrotate/logrotate/releases/tag/3.21.0))) - base, dev: lvm2 ([2.03.22](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_22) (includes [2.03.21](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_21), [2.03.20](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_20), [2.03.19](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_19), [2.03.18](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_18), [2.03.17](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_17), [2.03.16](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_16), [2.03.15](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_15), [2.03.14](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_14), [2.03.13](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_13), [2.03.12](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_12), [2.03.11](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_11), [2.03.10](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_10), [2.03.09](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_09), [2.03.08](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_08), [2.03.07](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_07), [2.03.06](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_06), [2.03.05](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_05), [2.03.04](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_04), [2.03.03](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_03), [2.03.02](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_02), [2.03.01](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_01), [2.03.00](https://gitlab.com/lvmteam/lvm2/-/tags/v2_03_00))) - base, dev: mdadm ([4.4](https://git.kernel.org/pub/scm/utils/mdadm/mdadm.git/tree/CHANGELOG.md?h=mdadm-4.4) (includes [4.3](https://git.kernel.org/pub/scm/utils/mdadm/mdadm.git/tree/CHANGELOG.md?h=mdadm-4.4#n36))) - base, dev: ncurses ([6.5_p20250125](https://invisible-island.net/ncurses/announce-6.5.html)) - base, dev: nettle ([3.10.1](https://lists.gnu.org/archive/html/info-gnu/2024-12/msg00008.html)) - base, dev: nfs-utils ([2.7.1](https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=log;h=refs/tags/nfs-utils-2-7-1) (includes [2.6.4](https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=log;h=refs/tags/nfs-utils-2-6-4), [2.6.3](https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=log;h=refs/tags/nfs-utils-2-6-3), [2.6.2](https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=log;h=refs/tags/nfs-utils-2-6-2), [2.6.1](https://git.linux-nfs.org/?p=steved/nfs-utils.git;a=log;h=refs/tags/nfs-utils-2-6-1))) - base, dev: nftables ([1.1.1](https://netfilter.org/projects/nftables/files/changes-nftables-1.1.1.txt) (includes [1.1.0](https://netfilter.org/projects/nftables/files/changes-nftables-1.1.0.txt), [1.0.9](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.9.txt), [1.0.8](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.8.txt), [1.0.7](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.7.txt), [1.0.6](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.6.txt), [1.0.5](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.5.txt), [1.0.4](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.4.txt), [1.0.3](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.3.txt), [1.0.2](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.2.txt), [1.0.1](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.1.txt), [1.0.0](https://netfilter.org/projects/nftables/files/changes-nftables-1.0.0.txt))) - base, dev: nghttp2 ([1.65.0](https://github.com/nghttp2/nghttp2/releases/tag/v1.65.0) (includes [1.64.0](https://github.com/nghttp2/nghttp2/releases/tag/v1.64.0), [1.63.0](https://github.com/nghttp2/nghttp2/releases/tag/v1.63.0))) - base, dev: nvme-cli ([2.12](https://github.com/linux-nvme/nvme-cli/releases/tag/v2.12)) - base, dev: oniguruma ([6.9.10](https://github.com/kkos/oniguruma/releases/tag/v6.9.10)) - base, dev: open-iscsi ([2.1.11](https://github.com/open-iscsi/open-iscsi/blob/2.1.11/Changelog)) - base, dev: open-isns ([0.103](https://github.com/open-iscsi/open-isns/releases/tag/v0.103)) - base, dev: openssh ([9.9_p2](https://www.openssh.com/txt/release-9.9p2) (includes [9.9_p1](https://www.openssh.com/txt/release-9.9))) - base, dev: openssl ([3.3.3](https://github.com/openssl/openssl/releases/tag/openssl-3.3.3)) - base, dev: pkgconf ([2.4.3](https://github.com/pkgconf/pkgconf/blob/pkgconf-2.4.3/NEWS) (includes [2.4.2](https://github.com/pkgconf/pkgconf/blob/pkgconf-2.4.2/NEWS), [2.4.1](https://github.com/pkgconf/pkgconf/blob/pkgconf-2.4.1/NEWS), [2.4.0](https://github.com/pkgconf/pkgconf/blob/pkgconf-2.4.0/NEWS))) - base, dev: policycoreutils ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: polkit ([126](https://github.com/polkit-org/polkit/blob/126/NEWS.md) (includes [125](https://github.com/polkit-org/polkit/blob/125/NEWS.md), [124](https://github.com/polkit-org/polkit/blob/124/NEWS.md), [123](https://github.com/polkit-org/polkit/blob/123/NEWS.md), [122](https://github.com/polkit-org/polkit/blob/122/NEWS.md))) - base, dev: qemu-guest-agent ([9.2.0](https://wiki.qemu.org/ChangeLog/9.2#Guest_agent) (includes [9.1](https://wiki.qemu.org/ChangeLog/9.1#Guest_agent), [9.0](https://wiki.qemu.org/ChangeLog/9.0#Guest_agent))) - base, dev: rpcbind ([1.2.7](http://git.linux-nfs.org/?p=steved/rpcbind.git;a=shortlog;h=refs/tags/rpcbind-1_2_7)) - base, dev: rsync ([3.4.1](https://download.samba.org/pub/rsync/NEWS#3.4.1) (includes [3.4.0](https://download.samba.org/pub/rsync/NEWS#3.4.0))) - base, dev: samba ([4.20.7](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.7/WHATSNEW.txt) (includes [4.20.6](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.6/WHATSNEW.txt), [4.20.5](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.5/WHATSNEW.txt), [4.20.4](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.4/WHATSNEW.txt), [4.20.3](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.3/WHATSNEW.txt), [4.20.2](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.2/WHATSNEW.txt), [4.20.1](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.1/WHATSNEW.txt), [4.20.0](https://gitlab.com/samba-team/samba/-/blob/samba-4.20.0/WHATSNEW.txt))) - base, dev: semodule-utils ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: shadow ([4.14.8](https://github.com/shadow-maint/shadow/releases/tag/4.14.8) (includes [4.14.7](https://github.com/shadow-maint/shadow/releases/tag/4.14.7), [4.14.6](https://github.com/shadow-maint/shadow/releases/tag/4.14.6), [4.14.5](https://github.com/shadow-maint/shadow/releases/tag/4.14.5), [4.14.4](https://github.com/shadow-maint/shadow/releases/tag/4.14.4), [4.14.3](https://github.com/shadow-maint/shadow/releases/tag/4.14.3), [4.14.2](https://github.com/shadow-maint/shadow/releases/tag/4.14.2), [4.14.1](https://github.com/shadow-maint/shadow/releases/tag/4.14.1), [4.14.0](https://github.com/shadow-maint/shadow/releases/tag/4.14.0))) - base, dev: socat ([1.8.0.3](https://repo.or.cz/socat.git/blob/refs/tags/tag-1.8.0.3:/CHANGES) (includes [1.8.0.2](https://repo.or.cz/socat.git/blob/refs/tags/tag-1.8.0.2:/CHANGES), [1.8.0.1](https://repo.or.cz/socat.git/blob/6ff391324d2d3b9f6bfb58e7d16a20be43b47af7:/CHANGES))) - base, dev: sqlite ([3.49.1](https://sqlite.org/releaselog/3_49_1.html) (includes [3.49.0](https://sqlite.org/releaselog/3_49_0.html), [3.48.0](https://sqlite.org/releaselog/3_48_0.html), [3.47.2](https://sqlite.org/releaselog/3_47_2.html))) - base, dev: sssd ([2.9.6](https://sssd.io/release-notes/sssd-2.9.6.html)) - base, dev: strace ([6.14](https://github.com/strace/strace/releases/tag/v6.14) (includes [6.13](https://github.com/strace/strace/releases/tag/v6.13))) - base, dev: tdb ([1.4.12](https://gitlab.com/samba-team/samba/-/commit/6b10cfbaf2c522cceb48c610c18656d2d69cf60b) (includes [1.4.11](https://gitlab.com/samba-team/samba/-/commit/93a6656c13facdb8565f90954428c4cf800bfc36))) - base, dev: timezone-data ([2025b](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/6JVHNHLB6I2WAYTQ75L6KEPEQHFXAJK3/) (includes [2025a](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/MWII7R3HMCEDNUCIYQKSSTYYR7UWK4OQ/), [2024b](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/IZ7AO6WRE3W3TWBL5IR6PMQUL433BQIE/), [2024a](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/UXFL4DEZCXJVZW6E24Y2HLSXVB2ILFVE/), [2023d](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/WSF4TA5RFP7ECRKUKQFRHYN724HDMRTO/), [2023c](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/NPQOFZRXK5QKUW7F4CC24W52OTZ7YOOT/), [2023b](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/YXCVU55LIUZTZREUUH4VPMC75GYKKPE7/), [2023a](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/HLUTNGHZ5QPNOPZTZFS6F2QVMGQWEDMC/), [2022g](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/XIK47NMDAHCVOWE4MZIB7F44HFU3J2OB/), [2022f](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/65JMZVURDDM3XOABROYJX5ZN4N6TATZ5/), [2022e](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/CTWT3RFQXZHROH4VJKXAVQ77FYMF7BHY/), [2022d](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/TCLVCAIDB64WNEVHJV2ITDHFRUHVB7BN/), [2022c](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/GFXHZWBRVLDVX5QQUI4UCY5B4O2FRV5Z/), [2022b](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/IB5UMSJYN42GOMKHHWU5UCHD3WYRCVQ4/), [2022a](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/CU52CSKQNZRRZPRBDY4GKCCFWKZD4HAJ/), [2021e](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/ANTPUKJNFDF6ZA3NSIJEOZGDHUNJ4HL2/), [2021d](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/YPPIPGO3PLSMDNSVX6VOMASHRDL4GQWB/), [2021c](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/MFS2QPRANAWSPV2DKU46NQKDDPLMXH2H/), [2021b](https://lists.iana.org/hyperkitty/list/tz-announce@iana.org/thread/422GNGI6F26NIV2JNHI726UO2TDTO2MD/))) - base, dev: trousers ([0.3.15](https://sourceforge.net/p/trousers/trousers/ci/TROUSERS_0_3_15/tree/ChangeLog)) - base, dev: unzip ([6.0_p29](https://metadata.ftp-master.debian.org/changelogs//main/u/unzip/unzip_6.0-29_changelog)) - base, dev: userspace-rcu ([0.15.1](https://lore.kernel.org/lkml/6894741e-c3c8-4464-92ab-ba8b88929961@efficios.com/T/) (includes [0.15.0](https://lore.kernel.org/all/51160e24-389a-41b6-871b-ba522d427220@efficios.com/))) - base, dev: util-linux ([2.40.4](https://raw.githubusercontent.com/util-linux/util-linux/refs/tags/v2.40.4/Documentation/releases/v2.40.4-ReleaseNotes) (includes [2.40.3](https://raw.githubusercontent.com/util-linux/util-linux/refs/tags/v2.40.3/Documentation/releases/v2.40.3-ReleaseNotes))) - base, dev: vim ([9.1.0794](https://github.com/vim/vim/commits/v9.1.0794/)) - base, dev: which ([2.23](https://git.savannah.gnu.org/cgit/which.git/tree/NEWS?id=3e2c8f8acc3a333b66b06de234bc9324c6fe5500)) - base, dev: xfsprogs ([6.13.0](https://web.git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.13.0) (includes [6.12.0](https://web.git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.12.0))) - base, dev: xz-utils ([5.6.4](https://github.com/tukaani-project/xz/releases/tag/v5.6.4)) - base, dev: zram-generator ([1.2.1](https://github.com/systemd/zram-generator/releases/tag/v1.2.1) (includes [1.2.0](https://github.com/systemd/zram-generator/releases/tag/v1.2.0))) - base, dev: zstd ([1.5.7](https://github.com/facebook/zstd/releases/tag/v1.5.7)) - ca-certificates ([3.112](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_112.html) (includes [3.111](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html))) - containerd: containerd ([2.0.2](https://github.com/containerd/containerd/releases/tag/v2.0.2)) - containerd: runc ([1.2.5](https://github.com/opencontainers/runc/releases/tag/v1.2.5) (includes [1.2.4](https://github.com/opencontainers/runc/releases/tag/v1.2.4) [1.2.3](https://github.com/opencontainers/runc/releases/tag/v1.2.3), [1.2.2](https://github.com/opencontainers/runc/releases/tag/v1.2.2), [1.2.1](https://github.com/opencontainers/runc/releases/tag/v1.2.1), [1.2.0](https://github.com/opencontainers/runc/releases/tag/v1.2.0), [1.1.15](https://github.com/opencontainers/runc/releases/tag/v1.1.15))) - dev: bash-completion ([2.16.0](https://github.com/scop/bash-completion/releases/tag/2.16.0)) - dev: eselect ([1.4.30](https://gitweb.gentoo.org/proj/eselect.git/tree/NEWS?h=eselect-1.4.30) (includes [1.4.29](https://gitweb.gentoo.org/proj/eselect.git/tree/NEWS?h=eselect-1.4.29))) - dev: gcc-config ([2.12.1](https://gitweb.gentoo.org/proj/gcc-config.git/log/?h=v2.12.1)) - dev: getuto ([1.15](https://github.com/projg2/getuto/commits/getuto-1.15/)) - dev: iperf ([3.18](https://github.com/esnet/iperf/releases/tag/3.18)) - dev: man-pages ([6.10](https://lkml.org/lkml/2025/1/22/1229)) - dev: minicom ([2.10](https://salsa.debian.org/minicom-team/minicom/-/releases/2.10)) - dev: mpfr ([4.2.2](https://www.mpfr.org/mpfr-4.2.2/)) - dev: pahole ([1.29](https://git.kernel.org/pub/scm/devel/pahole/pahole.git/tag/?h=v1.29) (includes [1.28](https://git.kernel.org/pub/scm/devel/pahole/pahole.git/tag/?h=v1.28))) - dev: patch ([2.8](https://lists.gnu.org/archive/html/info-gnu/2025-03/msg00014.html)) - dev: portage ([3.0.67](https://github.com/gentoo/portage/blob/portage-3.0.67/NEWS)) - docker: docker ([28.0.1](https://github.com/moby/moby/releases/tag/v28.0.1) (includes [28.0.0](https://github.com/moby/moby/releases/tag/v28.0.0), [27.4.1](https://docs.docker.com/engine/release-notes/27/#2741), [27.4.0](https://docs.docker.com/engine/release-notes/27/#2740))) - docker: docker-buildx ([0.20.1](https://github.com/docker/buildx/releases/tag/v0.20.1) (includes [0.20.0](https://github.com/docker/buildx/releases/tag/v0.20.0), [0.19.3](https://github.com/docker/buildx/releases/tag/v0.19.3), [0.19.2](https://github.com/docker/buildx/releases/tag/v0.19.2), [0.19.1](https://github.com/docker/buildx/releases/tag/v0.19.1), [0.19.0](https://github.com/docker/buildx/releases/tag/v0.19.0), [0.18.0](https://github.com/docker/buildx/releases/tag/v0.18.0), [0.17.1](https://github.com/docker/buildx/releases/tag/v0.17.1), [0.17.0](https://github.com/docker/buildx/releases/tag/v0.17.0), [0.16.2](https://github.com/docker/buildx/releases/tag/v0.16.2), [0.16.1](https://github.com/docker/buildx/releases/tag/v0.16.1), [0.16.0](https://github.com/docker/buildx/releases/tag/v0.16.0), [0.15.1](https://github.com/docker/buildx/releases/tag/v0.15.1), [0.15.0](https://github.com/docker/buildx/releases/tag/v0.15.0), [0.14.1](https://github.com/docker/buildx/releases/tag/v0.14.1))) - dracut ([106](https://github.com/dracut-ng/dracut-ng/releases/tag/106) (includes [105](https://github.com/dracut-ng/dracut-ng/releases/tag/105), [104](https://github.com/dracut-ng/dracut-ng/releases/tag/104), [103](https://github.com/dracut-ng/dracut-ng/releases/tag/103), [102](https://github.com/dracut-ng/dracut-ng/releases/tag/102), [101](https://github.com/dracut-ng/dracut-ng/releases/tag/101), [100](https://github.com/dracut-ng/dracut-ng/releases/tag/100), [060](https://github.com/dracut-ng/dracut-ng/releases/tag/060), [059](https://github.com/dracut-ng/dracut-ng/releases/tag/059), [058](https://github.com/dracut-ng/dracut-ng/releases/tag/058), [057](https://github.com/dracut-ng/dracut-ng/releases/tag/057), [056](https://github.com/dracut-ng/dracut-ng/releases/tag/056), [055](https://github.com/dracut-ng/dracut-ng/releases/tag/055), [054](https://github.com/dracut-ng/dracut-ng/releases/tag/054))) - sysext-docker: docker-buildx ([0.21.2](https://github.com/docker/buildx/releases/tag/v0.21.2) (includes [0.21.1](https://github.com/docker/buildx/releases/tag/v0.21.1), [0.21.0](https://github.com/docker/buildx/releases/tag/v0.21.0))) - sysext-podman, vmware: fuse ([3.17.2](https://github.com/libfuse/libfuse/releases/tag/fuse-3.17.2) (includes [3.17.1](https://github.com/libfuse/libfuse/releases/tag/fuse-3.17.1))) - sysext-podman: aardvark-dns ([1.14.0](https://github.com/containers/aardvark-dns/releases/tag/v1.14.0) (includes [1.13.1](https://github.com/containers/aardvark-dns/releases/tag/v1.13.1), [1.13.0](https://github.com/containers/aardvark-dns/releases/tag/v1.13.0))) - sysext-podman: catatonit ([0.2.1](https://github.com/openSUSE/catatonit/releases/tag/v0.2.1)) - sysext-podman: conmon ([2.1.13](https://github.com/containers/conmon/releases/tag/v2.1.13) (includes [2.1.12](https://github.com/containers/conmon/releases/tag/v2.1.12), [2.1.11](https://github.com/containers/conmon/releases/tag/v2.1.11))) - sysext-podman: containers-common ([0.62.2](https://github.com/containers/common/releases/tag/v0.62.2) (includes [0.62.1](https://github.com/containers/common/releases/tag/v0.62.1), [0.62.0](https://github.com/containers/common/releases/tag/v0.62.0), [0.61.0](https://github.com/containers/common/releases/tag/v0.61.0))) - sysext-podman: containers-image ([5.34.2](https://github.com/containers/image/releases/tag/v5.34.2) (includes [5.34.1](https://github.com/containers/image/releases/tag/v5.34.1), [5.34.0](https://github.com/containers/image/releases/tag/v5.34.0), [5.33.0](https://github.com/containers/image/releases/tag/v5.33.0))) - sysext-podman: containers-shortnames ([2025.03.19](https://github.com/containers/shortnames/releases/tag/v2025.03.19)) - sysext-podman: containers-storage ([1.57.2](https://github.com/containers/storage/releases/tag/v1.57.2) (includes [1.57.1](https://github.com/containers/storage/releases/tag/v1.57.1), [1.57.0](https://github.com/containers/storage/releases/tag/v1.57.0), [1.56.0](https://github.com/containers/storage/releases/tag/v1.56.0))) - sysext-podman: crun ([1.20](https://github.com/containers/crun/releases/tag/1.20), [1.19.1](https://github.com/containers/crun/releases/tag/1.19.1), [1.19](https://github.com/containers/crun/releases/tag/1.19), [1.18.2](https://github.com/containers/crun/releases/tag/1.18.2), [1.18.1](https://github.com/containers/crun/releases/tag/1.18.1), [1.18](https://github.com/containers/crun/releases/tag/1.18)) - sysext-podman: gpgme ([1.24.2](https://dev.gnupg.org/T7524)) - sysext-podman: netavark ([1.14.1](https://github.com/containers/netavark/releases/tag/v1.14.1) (includes [1.14.0](https://github.com/containers/netavark/releases/tag/v1.14.0), [1.13.1](https://github.com/containers/netavark/releases/tag/v1.13.1), [1.13.0](https://github.com/containers/netavark/releases/tag/v1.13.0))) - sysext-podman: passt ([2025.02.17](https://archives.passt.top/passt-user/20250217101614.561b23bc@elisabeth/T/#u) (includes [2025.01.21](https://archives.passt.top/passt-user/20250121182827.652400c8@elisabeth/T/#u))) - sysext-podman: podman ([5.3.2](https://github.com/containers/podman/releases/tag/v5.3.2)) - sysext-python: more-itertools ([10.6.0](https://github.com/more-itertools/more-itertools/releases/tag/v10.6.0)) - sysext-python: pip ([25.0.1](https://github.com/pypa/pip/blob/25.0.1/NEWS.rst) (includes [25.0](https://github.com/pypa/pip/blob/25.0/NEWS.rst))) - sysext-python: platformdirs ([4.3.7](https://github.com/tox-dev/platformdirs/releases/tag/4.3.7)) - sysext-python: rich ([14.0.0](https://github.com/Textualize/rich/releases/tag/v14.0.0)) - sysext-python: setuptools ([78.1.0](https://github.com/pypa/setuptools/blob/v78.1.0/NEWS.rst) (includes [78.0.2](https://github.com/pypa/setuptools/blob/v78.0.2/NEWS.rst), [78.0.1](https://github.com/pypa/setuptools/blob/v78.0.1/NEWS.rst), [78.0.0](https://github.com/pypa/setuptools/blob/v78.0.0/NEWS.rst), [77.0.3](https://github.com/pypa/setuptools/blob/v77.0.3/NEWS.rst), [77.0.2](https://github.com/pypa/setuptools/blob/v77.0.2/NEWS.rst), [77.0.1](https://github.com/pypa/setuptools/blob/v77.0.1/NEWS.rst), [77.0.0](https://github.com/pypa/setuptools/blob/v77.0.0/NEWS.rst), [76.1.0](https://github.com/pypa/setuptools/blob/v76.1.0/NEWS.rst), [76.0.0](https://github.com/pypa/setuptools/blob/v76.0.0/NEWS.rst), [75.8.2](https://github.com/pypa/setuptools/blob/v75.8.2/NEWS.rst), [75.8.1](https://github.com/pypa/setuptools/blob/v75.8.1/NEWS.rst), [75.8.0](https://github.com/pypa/setuptools/blob/v75.8.0/NEWS.rst#v7580), [75.7.0](https://github.com/pypa/setuptools/blob/v75.7.0/NEWS.rst#v7570))) - sysext-python: setuptools-scm ([8.2.1](https://github.com/pypa/setuptools-scm/blob/v8.2.1/CHANGELOG.md), [8.2.0](https://github.com/pypa/setuptools-scm/blob/v8.2.0/CHANGELOG.md)) - sysext-python: trove-classifiers ([2025.4.11.15](https://github.com/pypa/trove-classifiers/releases/tag/2025.4.11.15) (includes [2025.3.3.18](https://github.com/pypa/trove-classifiers/releases/tag/2025.3.3.18), [2025.3.19.19](https://github.com/pypa/trove-classifiers/releases/tag/2025.3.19.19))) - sysext-python: truststore ([0.10.1](https://github.com/sethmlarson/truststore/blob/v0.10.1/CHANGELOG.md)) - sysext-python: typing-extensions ([4.13.2](https://github.com/python/typing_extensions/releases/tag/4.13.2) (includes [4.13.1](https://github.com/python/typing_extensions/releases/tag/4.13.1), [4.13.0](https://github.com/python/typing_extensions/releases/tag/4.13.0))) - sysext-python: urllib3 ([2.4.0](https://github.com/urllib3/urllib3/releases/tag/2.4.0)) - sysext-python: wheel ([0.46.1](https://github.com/pypa/wheel/releases/tag/0.46.1) (includes [0.46.0](https://github.com/pypa/wheel/releases/tag/0.46.0))) - sysext-zfs: zfs ([2.3.1](https://github.com/openzfs/zfs/releases/tag/zfs-2.3.1) (includes [2.3.0](https://github.com/openzfs/zfs/releases/tag/zfs-2.3.0))) - vmware: libxslt ([1.1.43](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.43) (includes [1.1.42](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.42), [1.1.41](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.41), [1.1.40](https://gitlab.gnome.org/GNOME/libxslt/-/releases/v1.1.40))) - vmware: xmlsec ([1.3.7](https://github.com/lsh123/xmlsec/releases/tag/1.3.7), [1.3.6](https://github.com/lsh123/xmlsec/releases/tag/1.3.6)) _Changes since **Alpha 4344.0.0**_ #### Security fixes: - Linux ([CVE-2025-38052](https://nvd.nist.gov/vuln/detail/CVE-2025-38052), [CVE-2025-38061](https://nvd.nist.gov/vuln/detail/CVE-2025-38061), [CVE-2025-38060](https://nvd.nist.gov/vuln/detail/CVE-2025-38060), [CVE-2025-38059](https://nvd.nist.gov/vuln/detail/CVE-2025-38059), [CVE-2025-38058](https://nvd.nist.gov/vuln/detail/CVE-2025-38058), [CVE-2025-38057](https://nvd.nist.gov/vuln/detail/CVE-2025-38057), [CVE-2025-38056](https://nvd.nist.gov/vuln/detail/CVE-2025-38056), [CVE-2025-38055](https://nvd.nist.gov/vuln/detail/CVE-2025-38055), [CVE-2025-38081](https://nvd.nist.gov/vuln/detail/CVE-2025-38081), [CVE-2025-38080](https://nvd.nist.gov/vuln/detail/CVE-2025-38080), [CVE-2025-38079](https://nvd.nist.gov/vuln/detail/CVE-2025-38079), [CVE-2025-38078](https://nvd.nist.gov/vuln/detail/CVE-2025-38078), [CVE-2025-38077](https://nvd.nist.gov/vuln/detail/CVE-2025-38077), [CVE-2025-38075](https://nvd.nist.gov/vuln/detail/CVE-2025-38075), [CVE-2025-38074](https://nvd.nist.gov/vuln/detail/CVE-2025-38074), [CVE-2025-38073](https://nvd.nist.gov/vuln/detail/CVE-2025-38073), [CVE-2025-38072](https://nvd.nist.gov/vuln/detail/CVE-2025-38072), [CVE-2025-38054](https://nvd.nist.gov/vuln/detail/CVE-2025-38054), [CVE-2025-38071](https://nvd.nist.gov/vuln/detail/CVE-2025-38071), [CVE-2025-38069](https://nvd.nist.gov/vuln/detail/CVE-2025-38069), [CVE-2025-38068](https://nvd.nist.gov/vuln/detail/CVE-2025-38068), [CVE-2025-38066](https://nvd.nist.gov/vuln/detail/CVE-2025-38066), [CVE-2025-38065](https://nvd.nist.gov/vuln/detail/CVE-2025-38065), [CVE-2025-38063](https://nvd.nist.gov/vuln/detail/CVE-2025-38063), [CVE-2025-38062](https://nvd.nist.gov/vuln/detail/CVE-2025-38062), [CVE-2025-38053](https://nvd.nist.gov/vuln/detail/CVE-2025-38053), [CVE-2025-38038](https://nvd.nist.gov/vuln/detail/CVE-2025-38038), [CVE-2025-38037](https://nvd.nist.gov/vuln/detail/CVE-2025-38037), [CVE-2025-38035](https://nvd.nist.gov/vuln/detail/CVE-2025-38035), [CVE-2025-38034](https://nvd.nist.gov/vuln/detail/CVE-2025-38034), [CVE-2025-38033](https://nvd.nist.gov/vuln/detail/CVE-2025-38033), [CVE-2025-38051](https://nvd.nist.gov/vuln/detail/CVE-2025-38051), [CVE-2025-38031](https://nvd.nist.gov/vuln/detail/CVE-2025-38031), [CVE-2025-38048](https://nvd.nist.gov/vuln/detail/CVE-2025-38048), [CVE-2025-38047](https://nvd.nist.gov/vuln/detail/CVE-2025-38047), [CVE-2025-38046](https://nvd.nist.gov/vuln/detail/CVE-2025-38046), [CVE-2025-38045](https://nvd.nist.gov/vuln/detail/CVE-2025-38045), [CVE-2025-38044](https://nvd.nist.gov/vuln/detail/CVE-2025-38044), [CVE-2025-38043](https://nvd.nist.gov/vuln/detail/CVE-2025-38043), [CVE-2025-38040](https://nvd.nist.gov/vuln/detail/CVE-2025-38040), [CVE-2025-38039](https://nvd.nist.gov/vuln/detail/CVE-2025-38039), [CVE-2025-38030](https://nvd.nist.gov/vuln/detail/CVE-2025-38030), [CVE-2025-38003](https://nvd.nist.gov/vuln/detail/CVE-2025-38003), [CVE-2025-38004](https://nvd.nist.gov/vuln/detail/CVE-2025-38004), [CVE-2025-38000](https://nvd.nist.gov/vuln/detail/CVE-2025-38000), [CVE-2025-38082](https://nvd.nist.gov/vuln/detail/CVE-2025-38082), [CVE-2025-38001](https://nvd.nist.gov/vuln/detail/CVE-2025-38001), [CVE-2025-38083](https://nvd.nist.gov/vuln/detail/CVE-2025-38083)) #### Bug fixes: - Fixed race condition in the script that grows the root partition to fill the disk. This bug sometimes caused the operation to not occur. ([init#132](https://github.com/flatcar/init/pull/132)) #### Changes: - Added support for podman in `toolbox` ([toolbox#11](https://github.com/flatcar/toolbox/pull/11)) - `/boot` is now only accessible by the root user for better security. ([Flatcar#296](https://github.com/flatcar/Flatcar/issues/296)) - sysext-incus: removed `/etc/subuid` and `/etc/subgid` generation for `root` user, it has to be created through initial provisioning. ([scripts#3028](https://github.com/flatcar/scripts/pull/3028)) #### Updates: - Linux ([6.12.34](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.34) (includes [6.12.33](https://lwn.net/Articles/1024717), [6.12.32](https://lwn.net/Articles/1023797), [6.12.31](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.12.31))) - ca-certificates ([3.112](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_112.html)) --- #### Stable 4230.2.0 _Changes since **Stable 4152.2.3**_ #### Security fixes: - Linux ([CVE-2025-37989](https://nvd.nist.gov/vuln/detail/CVE-2025-37989), [CVE-2025-37988](https://nvd.nist.gov/vuln/detail/CVE-2025-37988), [CVE-2025-37985](https://nvd.nist.gov/vuln/detail/CVE-2025-37985), [CVE-2025-37983](https://nvd.nist.gov/vuln/detail/CVE-2025-37983), [CVE-2025-37938](https://nvd.nist.gov/vuln/detail/CVE-2025-37938), [CVE-2025-37885](https://nvd.nist.gov/vuln/detail/CVE-2025-37885), [CVE-2025-37884](https://nvd.nist.gov/vuln/detail/CVE-2025-37884), [CVE-2025-37883](https://nvd.nist.gov/vuln/detail/CVE-2025-37883), [CVE-2025-37881](https://nvd.nist.gov/vuln/detail/CVE-2025-37881), [CVE-2025-37879](https://nvd.nist.gov/vuln/detail/CVE-2025-37879), [CVE-2025-37878](https://nvd.nist.gov/vuln/detail/CVE-2025-37878), [CVE-2025-37887](https://nvd.nist.gov/vuln/detail/CVE-2025-37887), [CVE-2025-37886](https://nvd.nist.gov/vuln/detail/CVE-2025-37886), [CVE-2025-37836](https://nvd.nist.gov/vuln/detail/CVE-2025-37836), [CVE-2025-37823](https://nvd.nist.gov/vuln/detail/CVE-2025-37823), [CVE-2025-37831](https://nvd.nist.gov/vuln/detail/CVE-2025-37831), [CVE-2025-37830](https://nvd.nist.gov/vuln/detail/CVE-2025-37830), [CVE-2025-37829](https://nvd.nist.gov/vuln/detail/CVE-2025-37829), [CVE-2025-37828](https://nvd.nist.gov/vuln/detail/CVE-2025-37828), [CVE-2025-37824](https://nvd.nist.gov/vuln/detail/CVE-2025-37824), [CVE-2025-37808](https://nvd.nist.gov/vuln/detail/CVE-2025-37808), [CVE-2025-37805](https://nvd.nist.gov/vuln/detail/CVE-2025-37805), [CVE-2025-37804](https://nvd.nist.gov/vuln/detail/CVE-2025-37804), [CVE-2025-37803](https://nvd.nist.gov/vuln/detail/CVE-2025-37803), [CVE-2025-37820](https://nvd.nist.gov/vuln/detail/CVE-2025-37820), [CVE-2025-37819](https://nvd.nist.gov/vuln/detail/CVE-2025-37819), [CVE-2025-37818](https://nvd.nist.gov/vuln/detail/CVE-2025-37818), [CVE-2025-37817](https://nvd.nist.gov/vuln/detail/CVE-2025-37817), [CVE-2025-37815](https://nvd.nist.gov/vuln/detail/CVE-2025-37815), [CVE-2025-37813](https://nvd.nist.gov/vuln/detail/CVE-2025-37813), [CVE-2025-37812](https://nvd.nist.gov/vuln/detail/CVE-2025-37812), [CVE-2025-37811](https://nvd.nist.gov/vuln/detail/CVE-2025-37811), [CVE-2025-37810](https://nvd.nist.gov/vuln/detail/CVE-2025-37810), [CVE-2025-37800](https://nvd.nist.gov/vuln/detail/CVE-2025-37800), [CVE-2025-37801](https://nvd.nist.gov/vuln/detail/CVE-2025-37801), [CVE-2025-37799](https://nvd.nist.gov/vuln/detail/CVE-2025-37799), [CVE-2025-37797](https://nvd.nist.gov/vuln/detail/CVE-2025-37797), [CVE-2025-37990](https://nvd.nist.gov/vuln/detail/CVE-2025-37990), [CVE-2025-37991](https://nvd.nist.gov/vuln/detail/CVE-2025-37991), [CVE-2025-37917](https://nvd.nist.gov/vuln/detail/CVE-2025-37917), [CVE-2025-37927](https://nvd.nist.gov/vuln/detail/CVE-2025-37927), [CVE-2025-37924](https://nvd.nist.gov/vuln/detail/CVE-2025-37924), [CVE-2025-37923](https://nvd.nist.gov/vuln/detail/CVE-2025-37923), [CVE-2025-37922](https://nvd.nist.gov/vuln/detail/CVE-2025-37922), [CVE-2025-37921](https://nvd.nist.gov/vuln/detail/CVE-2025-37921), [CVE-2025-37936](https://nvd.nist.gov/vuln/detail/CVE-2025-37936), [CVE-2025-37935](https://nvd.nist.gov/vuln/detail/CVE-2025-37935), [CVE-2025-37933](https://nvd.nist.gov/vuln/detail/CVE-2025-37933), [CVE-2025-37932](https://nvd.nist.gov/vuln/detail/CVE-2025-37932), [CVE-2025-37930](https://nvd.nist.gov/vuln/detail/CVE-2025-37930), [CVE-2025-37929](https://nvd.nist.gov/vuln/detail/CVE-2025-37929), [CVE-2025-37928](https://nvd.nist.gov/vuln/detail/CVE-2025-37928), [CVE-2025-37918](https://nvd.nist.gov/vuln/detail/CVE-2025-37918), [CVE-2025-37903](https://nvd.nist.gov/vuln/detail/CVE-2025-37903), [CVE-2025-37901](https://nvd.nist.gov/vuln/detail/CVE-2025-37901), [CVE-2025-37897](https://nvd.nist.gov/vuln/detail/CVE-2025-37897), [CVE-2025-37916](https://nvd.nist.gov/vuln/detail/CVE-2025-37916), [CVE-2025-37915](https://nvd.nist.gov/vuln/detail/CVE-2025-37915), [CVE-2025-37914](https://nvd.nist.gov/vuln/detail/CVE-2025-37914), [CVE-2025-37913](https://nvd.nist.gov/vuln/detail/CVE-2025-37913), [CVE-2025-37912](https://nvd.nist.gov/vuln/detail/CVE-2025-37912), [CVE-2025-37911](https://nvd.nist.gov/vuln/detail/CVE-2025-37911), [CVE-2025-37909](https://nvd.nist.gov/vuln/detail/CVE-2025-37909), [CVE-2025-37905](https://nvd.nist.gov/vuln/detail/CVE-2025-37905), [CVE-2025-37891](https://nvd.nist.gov/vuln/detail/CVE-2025-37891), [CVE-2025-37890](https://nvd.nist.gov/vuln/detail/CVE-2025-37890), [CVE-2025-37998](https://nvd.nist.gov/vuln/detail/CVE-2025-37998), [CVE-2025-37997](https://nvd.nist.gov/vuln/detail/CVE-2025-37997), [CVE-2025-37995](https://nvd.nist.gov/vuln/detail/CVE-2025-37995), [CVE-2025-37994](https://nvd.nist.gov/vuln/detail/CVE-2025-37994), [CVE-2025-37973](https://nvd.nist.gov/vuln/detail/CVE-2025-37973), [CVE-2025-37972](https://nvd.nist.gov/vuln/detail/CVE-2025-37972), [CVE-2025-37970](https://nvd.nist.gov/vuln/detail/CVE-2025-37970), [CVE-2025-37969](https://nvd.nist.gov/vuln/detail/CVE-2025-37969), [CVE-2025-37964](https://nvd.nist.gov/vuln/detail/CVE-2025-37964), [CVE-2025-37963](https://nvd.nist.gov/vuln/detail/CVE-2025-37963), [CVE-2025-37962](https://nvd.nist.gov/vuln/detail/CVE-2025-37962), [CVE-2025-37961](https://nvd.nist.gov/vuln/detail/CVE-2025-37961), [CVE-2025-37959](https://nvd.nist.gov/vuln/detail/CVE-2025-37959), [CVE-2025-37954](https://nvd.nist.gov/vuln/detail/CVE-2025-37954), [CVE-2025-37953](https://nvd.nist.gov/vuln/detail/CVE-2025-37953), [CVE-2025-37952](https://nvd.nist.gov/vuln/detail/CVE-2025-37952), [CVE-2025-37951](https://nvd.nist.gov/vuln/detail/CVE-2025-37951), [CVE-2025-37949](https://nvd.nist.gov/vuln/detail/CVE-2025-37949), [CVE-2025-37948](https://nvd.nist.gov/vuln/detail/CVE-2025-37948), [CVE-2025-37956](https://nvd.nist.gov/vuln/detail/CVE-2025-37956), [CVE-2025-37947](https://nvd.nist.gov/vuln/detail/CVE-2025-37947), [CVE-2025-38015](https://nvd.nist.gov/vuln/detail/CVE-2025-38015), [CVE-2025-38014](https://nvd.nist.gov/vuln/detail/CVE-2025-38014), [CVE-2025-38013](https://nvd.nist.gov/vuln/detail/CVE-2025-38013), [CVE-2025-38010](https://nvd.nist.gov/vuln/detail/CVE-2025-38010), [CVE-2025-38009](https://nvd.nist.gov/vuln/detail/CVE-2025-38009), [CVE-2025-38027](https://nvd.nist.gov/vuln/detail/CVE-2025-38027), [CVE-2025-38008](https://nvd.nist.gov/vuln/detail/CVE-2025-38008), [CVE-2025-38024](https://nvd.nist.gov/vuln/detail/CVE-2025-38024), [CVE-2025-38023](https://nvd.nist.gov/vuln/detail/CVE-2025-38023), [CVE-2025-38020](https://nvd.nist.gov/vuln/detail/CVE-2025-38020), [CVE-2025-38019](https://nvd.nist.gov/vuln/detail/CVE-2025-38019), [CVE-2025-38018](https://nvd.nist.gov/vuln/detail/CVE-2025-38018), [CVE-2025-38007](https://nvd.nist.gov/vuln/detail/CVE-2025-38007), [CVE-2025-38006](https://nvd.nist.gov/vuln/detail/CVE-2025-38006), [CVE-2025-38005](https://nvd.nist.gov/vuln/detail/CVE-2025-38005), [CVE-2025-37992](https://nvd.nist.gov/vuln/detail/CVE-2025-37992), [CVE-2025-38052](https://nvd.nist.gov/vuln/detail/CVE-2025-38052), [CVE-2025-38061](https://nvd.nist.gov/vuln/detail/CVE-2025-38061), [CVE-2025-38059](https://nvd.nist.gov/vuln/detail/CVE-2025-38059), [CVE-2025-38058](https://nvd.nist.gov/vuln/detail/CVE-2025-38058), [CVE-2025-38081](https://nvd.nist.gov/vuln/detail/CVE-2025-38081), [CVE-2025-38080](https://nvd.nist.gov/vuln/detail/CVE-2025-38080), [CVE-2025-38079](https://nvd.nist.gov/vuln/detail/CVE-2025-38079), [CVE-2025-38078](https://nvd.nist.gov/vuln/detail/CVE-2025-38078), [CVE-2025-38077](https://nvd.nist.gov/vuln/detail/CVE-2025-38077), [CVE-2025-38075](https://nvd.nist.gov/vuln/detail/CVE-2025-38075), [CVE-2025-38074](https://nvd.nist.gov/vuln/detail/CVE-2025-38074), [CVE-2025-38072](https://nvd.nist.gov/vuln/detail/CVE-2025-38072), [CVE-2025-38071](https://nvd.nist.gov/vuln/detail/CVE-2025-38071), [CVE-2025-38068](https://nvd.nist.gov/vuln/detail/CVE-2025-38068), [CVE-2025-38066](https://nvd.nist.gov/vuln/detail/CVE-2025-38066), [CVE-2025-38065](https://nvd.nist.gov/vuln/detail/CVE-2025-38065), [CVE-2025-38063](https://nvd.nist.gov/vuln/detail/CVE-2025-38063), [CVE-2025-38062](https://nvd.nist.gov/vuln/detail/CVE-2025-38062), [CVE-2025-38037](https://nvd.nist.gov/vuln/detail/CVE-2025-38037), [CVE-2025-38035](https://nvd.nist.gov/vuln/detail/CVE-2025-38035), [CVE-2025-38034](https://nvd.nist.gov/vuln/detail/CVE-2025-38034), [CVE-2025-38051](https://nvd.nist.gov/vuln/detail/CVE-2025-38051), [CVE-2025-38031](https://nvd.nist.gov/vuln/detail/CVE-2025-38031), [CVE-2025-38048](https://nvd.nist.gov/vuln/detail/CVE-2025-38048), [CVE-2025-38046](https://nvd.nist.gov/vuln/detail/CVE-2025-38046), [CVE-2025-38045](https://nvd.nist.gov/vuln/detail/CVE-2025-38045), [CVE-2025-38044](https://nvd.nist.gov/vuln/detail/CVE-2025-38044), [CVE-2025-38043](https://nvd.nist.gov/vuln/detail/CVE-2025-38043), [CVE-2025-38040](https://nvd.nist.gov/vuln/detail/CVE-2025-38040), [CVE-2025-38039](https://nvd.nist.gov/vuln/detail/CVE-2025-38039), [CVE-2025-38030](https://nvd.nist.gov/vuln/detail/CVE-2025-38030), [CVE-2025-38003](https://nvd.nist.gov/vuln/detail/CVE-2025-38003), [CVE-2025-38004](https://nvd.nist.gov/vuln/detail/CVE-2025-38004), [CVE-2025-38001](https://nvd.nist.gov/vuln/detail/CVE-2025-38001), [CVE-2025-38000](https://nvd.nist.gov/vuln/detail/CVE-2025-38000), [CVE-2025-38083](https://nvd.nist.gov/vuln/detail/CVE-2025-38083)) - containers-storage, podman ([CVE-2024-9676](https://nvd.nist.gov/vuln/detail/CVE-2024-9676)) - curl ([CVE-2024-11053](https://nvd.nist.gov/vuln/detail/CVE-2024-11053), [CVE-2024-9681](https://nvd.nist.gov/vuln/detail/CVE-2024-9681)) - expat ([CVE-2024-50602](https://nvd.nist.gov/vuln/detail/CVE-2024-50602)) - sssd ([CVE-2023-3758](https://nvd.nist.gov/vuln/detail/CVE-2023-3758)) - wget ([CVE-2024-10524](https://nvd.nist.gov/vuln/detail/CVE-2024-10524)) #### Bug fixes: - Fixed PXE boot failures that arose since upgrading to systemd v256. Users were dumped to an emergency shell. ([flatcar/bootengine#103](https://github.com/flatcar/bootengine/pull/103)) - Fixed creating netdev arguments to correctly include commas when no port forwards are passed ([flatcar/scripts#2581](https://github.com/flatcar/scripts/pull/2581)) - The kernel module build directory now contains native binaries in arm64 images instead of the previous amd64 binaries ([scripts#2694](https://github.com/flatcar/scripts/pull/2694)) - Nvidia driver installer service now supports the 570 driver branch by forcing the use of the proprietary kernel module. The 570 branch defaults to the kernel-open driver which requires loading firmware, which is not yet supported on Flatcar. ([scripts#2694](https://github.com/flatcar/scripts/pull/2694)) - Added back some BCC tools ([scripts#2900](https://github.com/flatcar/scripts/pull/2900)) #### Changes: - Added support for ARM64 architecture in the NVIDIA driver installer service ([scripts#2694](https://github.com/flatcar/scripts/pull/2694)) - Added support for multiple port forwarding parameters in the QEMU startup script. Users can now specify multiple port forwards using the `-f` option. ([flatcar/scripts#2575](https://github.com/flatcar/scripts/pull/2575)) - Additional GRUB modules are no longer installed for UEFI platforms to save space and also because they cannot be loaded with Secure Boot enabled. This does not affect existing installations. - The GRUB modules on non-UEFI platforms are now compressed with xz rather than gzip to save even more space. This does not affect existing installations. - The VFIO kernel modules are now also available in ARM64 builds. ([flatcar/scripts#2484](https://github.com/flatcar/scripts/pull/2484)) - Enabled the gtp kernel module. This is the GPRS Tunneling Protocol datapath for usage in telecoms scenarios. ([flatcar/scripts#2504](https://github.com/flatcar/scripts/pull/2504)) #### Updates: - AMD64: nvidia-drivers ([535.230.02](https://docs.nvidia.com/datacenter/tesla/tesla-release-notes-535-230-02/index.html)) - ARM64: nvidia-drivers ([570.86.15](https://docs.nvidia.com/datacenter/tesla/tesla-release-notes-570-86-15/index.html)) - Go ([1.22.11](https://go.dev/doc/devel/release#go1.22.11) (includes [1.22.10](https://go.dev/doc/devel/release#go1.22.10))) - Linux ([6.6.94](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.94) (includes [6.6.93](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.93), [6.6.92](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.92), [6.6.91](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.91), [6.6.90](https://lwn.net/Articles/1020659/), [6.6.89](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.89),[6.6.65](https://lwn.net/Articles/1001732))) - Linux Firmware ([20250109](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20250109) (includes [20241210](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20241210), [20241110](https://git.kernel.org/pub/scm/linux/kernel/git/firmware/linux-firmware.git/tag/?h=20241110))) - SDK: autoconf ([2.72](https://lists.gnu.org/archive/html/autotools-announce/2023-12/msg00003.html)) - SDK: cmake ([3.30.5](https://cmake.org/cmake/help/v3.30/release/3.30.html#id5)) - SDK: libpng ([1.6.44](https://github.com/pnggroup/libpng/blob/v1.6.44/CHANGES#L6199)) - SDK: perf ([6.11.7](https://kernelnewbies.org/Linux_6.11#Tracing.2C_perf_and_BPF)) - SDK: pkgcheck ([0.10.32](https://github.com/pkgcore/pkgcheck/releases/tag/v0.10.32)) - SDK: portage ([3.0.66.1](https://github.com/gentoo/portage/blob/portage-3.0.66.1/NEWS#L9)) - SDK: qemu ([8.2.7](https://lists.gnu.org/archive/html/qemu-devel/2024-09/msg03900.html)) - azure, dev, gce, sysext-python: python ([3.11.11_p1](https://www.python.org/downloads/release/python-31111/)) - azure: chrony ([4.6.1](https://gitlab.com/chrony/chrony/-/blob/4.6.1/NEWS)) - base, dev: audit ([4.0.2](https://github.com/linux-audit/audit-userspace/releases/tag/v4.0.2)) - base, dev: azure-vm-utils ([0.4.0](https://github.com/Azure/azure-vm-utils/commits/v0.4.0/)) - base, dev: bind ([9.18.29](https://bind9.readthedocs.io/en/v9.18.29/notes.html#notes-for-bind-9-18-29)) - base, dev: bpftool ([7.5.0](https://github.com/libbpf/bpftool/releases/tag/v7.5.0) (includes [7.4.0](https://github.com/libbpf/bpftool/releases/tag/v7.4.0))) - base, dev: btrfs-progs ([6.12](https://raw.githubusercontent.com/kdave/btrfs-progs/refs/tags/v6.12/CHANGES) (includes [6.11](https://raw.githubusercontent.com/kdave/btrfs-progs/refs/tags/v6.11/CHANGES))) - base, dev: c-ares ([1.34.3](https://github.com/c-ares/c-ares/releases/tag/v1.34.3) (includes [1.34.2](https://github.com/c-ares/c-ares/releases/tag/v1.34.2), [1.34.1](https://github.com/c-ares/c-ares/releases/tag/v1.34.1), [1.34.0](https://github.com/c-ares/c-ares/releases/tag/v1.34.0))) - base, dev: checkpolicy ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: ethtool ([6.10](https://git.kernel.org/pub/scm/network/ethtool/ethtool.git/tree/NEWS?h=v6.10)) - base, dev: expat ([2.6.4](https://github.com/libexpat/libexpat/blob/R_2_6_4/expat/Changes)) - base, dev: gawk ([5.3.1](https://lists.gnu.org/archive/html/info-gnu/2024-09/msg00008.html)) - base, dev: gcc ([14.2.1_p20241116](https://gcc.gnu.org/gcc-14/changes.html)) - base, dev: glib ([2.80.5](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.5) (includes [2.80.4](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.4), [2.80.3](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.3), [2.80.2](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.2), [2.80.1](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.1), [2.80.0](https://gitlab.gnome.org/GNOME/glib/-/releases/2.80.0))) - base, dev: gnupg ([2.4.6](https://lists.gnupg.org/pipermail/gnupg-announce/2024q4/000486.html)) - base, dev: hwdata ([0.390](https://github.com/vcrhonek/hwdata/releases/tag/v0.390)) - base, dev: intel-microcode ([20241112](https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20241112) (includes [20241029](https://github.com/intel/Intel-Linux-Processor-Microcode-Data-Files/releases/tag/microcode-20241029))) - base, dev: iproute2 ([6.12.0](https://lore.kernel.org/netdev/20241119092743.6a1bdcb7@hermes.local/) (includes [6.11.0](https://lore.kernel.org/netdev/20240915201831.164de47e@hermes.local/), [6.10.0](https://lore.kernel.org/netdev/20240717090601.20b2871f@hermes.local/))) - base, dev: iputils ([20240905](https://github.com/iputils/iputils/releases/tag/20240905)) - base, dev: json-c ([0.18](https://github.com/json-c/json-c/blob/json-c-0.18-20240915/ChangeLog)) - base, dev: kexec-tools ([2.0.30](https://github.com/horms/kexec-tools/commits/v2.0.30/) (includes [2.0.29](https://github.com/horms/kexec-tools/commits/v2.0.29/))) - base, dev: less ([668](https://www.greenwoodsoftware.com/less/news.668.html)) - base, dev: libarchive ([3.7.7](https://github.com/libarchive/libarchive/releases/tag/v3.7.7)) - base, dev: libcap ([2.71](https://sites.google.com/site/fullycapable/release-notes-for-libcap#h.oq9dsdhihxp5)) - base, dev: libgpg-error ([1.51](https://git.gnupg.org/cgi-bin/gitweb.cgi?p=libgpg-error.git;a=blob;f=NEWS;h=75f2b2d220de4e4f53252d3367950ecb2ab85079;hb=b0bb9266010d84b30fa2dc6a2127b7e40dc03660)) - base, dev: libnetfilter_conntrack ([1.1.0](https://lists.netfilter.org/pipermail/netfilter-announce/2024/000260.html)) - base, dev: libnftnl ([1.2.8](https://lists.netfilter.org/pipermail/netfilter-announce/2024/000261.html)) - base, dev: libnvme ([1.11.1](https://github.com/linux-nvme/libnvme/releases/tag/v1.11.1) (includes [1.11](https://github.com/linux-nvme/libnvme/releases/tag/v1.11))) - base, dev: libselinux ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: libsepol ([3.7](https://github.com/SELinuxProject/selinux/releases/tag/3.7)) - base, dev: libuv ([1.49.2](https://github.com/libuv/libuv/releases/tag/v1.49.2) (includes [1.49.1](https://github.com/libuv/libuv/releases/tag/v1.49.1), [1.49.0](https://github.com/libuv/libuv/releases/tag/v1.49.0))) - base, dev: libxml2 ([2.12.9](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.9) (includes [2.12.8](https://gitlab.gnome.org/GNOME/libxml2/-/releases/v2.12.8))) - base, dev: lsof ([4.99.4](https://github.com/lsof-org/lsof/releases/tag/4.99.4)) - base, dev: mokutil ([0.7.2](https://github.com/lcp/mokutil/commits/0.7.2/)) - base, dev: npth ([1.8](https://git.gnupg.org/cgi-bin/gitweb.cgi?p=npth.git;a=blob;f=NEWS;h=0f8d78958d8059de95e363a977051995e05dc691;hb=64905e765aad9de6054ef70a97fc30bd992ce999)) - base, dev: nvme-cli ([2.11](https://github.com/linux-nvme/nvme-cli/releases/tag/v2.11)) - base, dev: openldap ([2.6.8](https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_6_8/CHANGES) (includes [2.6.7](https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_6_7/CHANGES), [2.6.6](https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_6_6/CHANGES), [2.6.5](https://git.openldap.org/openldap/openldap/-/blob/OPENLDAP_REL_ENG_2_6_5/CHANGES))) - base, dev: pax-utils ([1.3.8](https://gitweb.gentoo.org/proj/pax-utils.git/log/?h=v1.3.8)) - base, dev: sssd ([2.9.5](https://sssd.io/release-notes/sssd-2.9.5.html) (includes [2.9.4](https://sssd.io/release-notes/sssd-2.9.4.html), [2.9.3](https://sssd.io/release-notes/sssd-2.9.3.html), [2.9.2](https://sssd.io/release-notes/sssd-2.9.2.html), [2.9.1](https://sssd.io/release-notes/sssd-2.9.1.html), [2.9.0](https://sssd.io/release-notes/sssd-2.9.0.html), [2.8.0](https://sssd.io/release-notes/sssd-2.8.0.html), [2.7.0](https://sssd.io/release-notes/sssd-2.7.0.html), [2.6.0](https://sssd.io/release-notes/sssd-2.6.0.html), [2.5.0](https://sssd.io/release-notes/sssd-2.5.0.html), [2.4.0](https://sssd.io/release-notes/sssd-2.4.0.html))) - base, dev: strace ([6.12](https://github.com/strace/strace/releases/tag/v6.12) (includes [6.11](https://github.com/strace/strace/releases/tag/v6.11), [6.10](https://github.com/strace/strace/releases/tag/v6.10))) - base, dev: usbutils ([018](https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usbutils.git/tree/NEWS?h=v018)) - base, dev: util-linux ([2.40.2](https://raw.githubusercontent.com/util-linux/util-linux/refs/tags/v2.40.2/Documentation/releases/v2.40.2-ReleaseNotes) (includes [2.40.1](https://raw.githubusercontent.com/util-linux/util-linux/refs/tags/v2.40.1/Documentation/releases/v2.40.1-ReleaseNotes), [2.40.0](https://raw.githubusercontent.com/util-linux/util-linux/refs/tags/v2.40/Documentation/releases/v2.40-ReleaseNotes))) - base, dev: wget ([1.25.0](https://lists.gnu.org/archive/html/info-gnu/2024-11/msg00000.html)) - base, dev: xfsprogs ([6.11.0](https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.11.0) includes ([6.10.1](https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.10.1), [6.10.0](https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.10.0), [6.9.0](https://git.kernel.org/pub/scm/fs/xfs/xfsprogs-dev.git/tree/doc/CHANGES?h=v6.9.0))) - base, dev: xz-utils ([5.6.3](https://github.com/tukaani-project/xz/releases/tag/v5.6.3)) - ca-certificates ([3.112](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_112.html) (includes [3.111](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html))) - dev: bash-completion ([2.15.0](https://github.com/scop/bash-completion/releases/tag/2.15.0)) - dev: binutils ([2.43](https://lists.gnu.org/archive/html/info-gnu/2024-08/msg00001.html)) - dev: gentoolkit ([0.6.8](https://gitweb.gentoo.org/proj/gentoolkit.git/log/?h=gentoolkit-0.6.8)) - docker: docker ([27.3.1](https://github.com/moby/moby/releases/tag/v27.3.1)) - docker: docker-buildx ([0.14.0](https://github.com/docker/buildx/releases/tag/v0.14.0) (includes [0.13.0](https://github.com/docker/buildx/releases/tag/v0.13.0), [0.12.0](https://github.com/docker/buildx/releases/tag/v0.12.0), [0.11.0](https://github.com/docker/buildx/releases/tag/v0.11.0))) - docker: docker-cli ([27.3.1](https://github.com/moby/moby/releases/tag/v27.3.1)) - gce: six ([1.17.0](https://github.com/benjaminp/six/blob/1.17.0/CHANGES)) - sysext-podman: containers-storage ([1.55.1](https://github.com/containers/storage/releases/tag/v1.55.1)) - sysext-podman: gpgme ([1.24.1](https://dev.gnupg.org/T7440) (includes [1.24.0](https://dev.gnupg.org/T7376))) - sysext-podman: podman ([5.3.0](https://github.com/containers/podman/releases/tag/v5.3.0)) - sysext-python: cachecontrol ([0.14.1](https://github.com/psf/cachecontrol/releases/tag/v0.14.1)) - sysext-python: charset-normalizer ([3.4.1](https://github.com/jawah/charset_normalizer/releases/tag/3.4.1) (includes [3.4.0](https://github.com/jawah/charset_normalizer/releases/tag/3.4.0))) - sysext-python: distlib ([0.3.9](https://github.com/pypa/distlib/blob/0.3.9/CHANGES.rst)) - sysext-python: jaraco-functools ([4.1.0](https://github.com/jaraco/jaraco.functools/blob/v4.1.0/NEWS.rsto)) - sysext-python: packaging ([24.2](https://github.com/pypa/packaging/releases/tag/24.2)) - sysext-python: pip ([24.3.1](https://github.com/pypa/pip/blob/24.3.1/NEWS.rst) (includes [24.3](https://github.com/pypa/pip/blob/24.3/NEWS.rst)) - sysext-python: pyproject-hooks ([1.2.0](https://github.com/pypa/pyproject-hooks/blob/v1.2.0/docs/changelog.rst)) - sysext-python: resolvelib ([1.1.0](https://github.com/sarugaku/resolvelib/blob/1.1.0/CHANGELOG.rst)) - sysext-python: rich ([13.9.3](https://github.com/Textualize/rich/releases/tag/v13.9.3)) - sysext-python: setuptools ([75.6.0](https://github.com/pypa/setuptools/blob/v75.6.0/NEWS.rst) (includes [75.5.0](https://github.com/pypa/setuptools/blob/75.5.0/NEWS.rst), [75.4.0](https://github.com/pypa/setuptools/blob/75.4.0/NEWS.rst), [75.3.0](https://github.com/pypa/setuptools/blob/75.3.0/NEWS.rst), [75.2.0](https://github.com/pypa/setuptools/blob/75.2.0/NEWS.rst), [75.1.1](https://github.com/pypa/setuptools/blob/75.1.1/NEWS.rst), [75.1.0](https://github.com/pypa/setuptools/blob/75.1.0/NEWS.rst), [75.0.0](https://github.com/pypa/setuptools/blob/75.0.0/NEWS.rst))) - sysext-python: trove-classifiers ([2024.10.21.16](https://github.com/pypa/trove-classifiers/commits/2024.10.21.16/)) - sysext-python: truststore ([0.10.0](https://github.com/sethmlarson/truststore/blob/v0.10.0/CHANGELOG.md)) - sysext-python: urllib3 ([2.3.0](https://github.com/urllib3/urllib3/releases/tag/2.3.0)) - sysext-python: wheel ([0.45.1](https://github.com/pypa/wheel/releases/tag/0.45.1) (includes [0.45.0](https://github.com/pypa/wheel/releases/tag/0.45.0))) - sysext-zfs: zfs ([2.2.7](https://github.com/openzfs/zfs/releases/tag/zfs-2.2.7) (includes [2.2.6](https://github.com/openzfs/zfs/releases/tag/zfs-2.2.6))) - systemd ([256.9](https://github.com/systemd/system/releases/tag/v256.9) (from 255.8)) - vmware: libltdl ([2.5.4](https://savannah.gnu.org/news/?id=10693) (includes [2.5.3](https://savannah.gnu.org/news/?id=10676), [2.5.2](https://savannah.gnu.org/news/?id=10669), [2.5.1](https://savannah.gnu.org/news/?id=10660), [2.5.0](https://savannah.gnu.org/news/?id=10631))) - vmware: libmspack ([1.11](https://github.com/kyz/libmspack/commits/v1.11/libmspack)) - vmware: xmlsec ([1.3.5](https://github.com/lsh123/xmlsec/releases/tag/1.3.5)) _Changes since **Beta 4230.1.1**_ #### Security fixes: - Linux ([CVE-2025-37989](https://nvd.nist.gov/vuln/detail/CVE-2025-37989), [CVE-2025-37988](https://nvd.nist.gov/vuln/detail/CVE-2025-37988), [CVE-2025-37985](https://nvd.nist.gov/vuln/detail/CVE-2025-37985), [CVE-2025-37983](https://nvd.nist.gov/vuln/detail/CVE-2025-37983), [CVE-2025-37938](https://nvd.nist.gov/vuln/detail/CVE-2025-37938), [CVE-2025-37885](https://nvd.nist.gov/vuln/detail/CVE-2025-37885), [CVE-2025-37884](https://nvd.nist.gov/vuln/detail/CVE-2025-37884), [CVE-2025-37883](https://nvd.nist.gov/vuln/detail/CVE-2025-37883), [CVE-2025-37881](https://nvd.nist.gov/vuln/detail/CVE-2025-37881), [CVE-2025-37879](https://nvd.nist.gov/vuln/detail/CVE-2025-37879), [CVE-2025-37878](https://nvd.nist.gov/vuln/detail/CVE-2025-37878), [CVE-2025-37887](https://nvd.nist.gov/vuln/detail/CVE-2025-37887), [CVE-2025-37886](https://nvd.nist.gov/vuln/detail/CVE-2025-37886), [CVE-2025-37836](https://nvd.nist.gov/vuln/detail/CVE-2025-37836), [CVE-2025-37823](https://nvd.nist.gov/vuln/detail/CVE-2025-37823), [CVE-2025-37831](https://nvd.nist.gov/vuln/detail/CVE-2025-37831), [CVE-2025-37830](https://nvd.nist.gov/vuln/detail/CVE-2025-37830), [CVE-2025-37829](https://nvd.nist.gov/vuln/detail/CVE-2025-37829), [CVE-2025-37828](https://nvd.nist.gov/vuln/detail/CVE-2025-37828), [CVE-2025-37824](https://nvd.nist.gov/vuln/detail/CVE-2025-37824), [CVE-2025-37808](https://nvd.nist.gov/vuln/detail/CVE-2025-37808), [CVE-2025-37805](https://nvd.nist.gov/vuln/detail/CVE-2025-37805), [CVE-2025-37804](https://nvd.nist.gov/vuln/detail/CVE-2025-37804), [CVE-2025-37803](https://nvd.nist.gov/vuln/detail/CVE-2025-37803), [CVE-2025-37820](https://nvd.nist.gov/vuln/detail/CVE-2025-37820), [CVE-2025-37819](https://nvd.nist.gov/vuln/detail/CVE-2025-37819), [CVE-2025-37818](https://nvd.nist.gov/vuln/detail/CVE-2025-37818), [CVE-2025-37817](https://nvd.nist.gov/vuln/detail/CVE-2025-37817), [CVE-2025-37815](https://nvd.nist.gov/vuln/detail/CVE-2025-37815), [CVE-2025-37813](https://nvd.nist.gov/vuln/detail/CVE-2025-37813), [CVE-2025-37812](https://nvd.nist.gov/vuln/detail/CVE-2025-37812), [CVE-2025-37811](https://nvd.nist.gov/vuln/detail/CVE-2025-37811), [CVE-2025-37810](https://nvd.nist.gov/vuln/detail/CVE-2025-37810), [CVE-2025-37800](https://nvd.nist.gov/vuln/detail/CVE-2025-37800), [CVE-2025-37801](https://nvd.nist.gov/vuln/detail/CVE-2025-37801), [CVE-2025-37799](https://nvd.nist.gov/vuln/detail/CVE-2025-37799), [CVE-2025-37797](https://nvd.nist.gov/vuln/detail/CVE-2025-37797), [CVE-2025-37990](https://nvd.nist.gov/vuln/detail/CVE-2025-37990), [CVE-2025-37991](https://nvd.nist.gov/vuln/detail/CVE-2025-37991), [CVE-2025-37917](https://nvd.nist.gov/vuln/detail/CVE-2025-37917), [CVE-2025-37927](https://nvd.nist.gov/vuln/detail/CVE-2025-37927), [CVE-2025-37924](https://nvd.nist.gov/vuln/detail/CVE-2025-37924), [CVE-2025-37923](https://nvd.nist.gov/vuln/detail/CVE-2025-37923), [CVE-2025-37922](https://nvd.nist.gov/vuln/detail/CVE-2025-37922), [CVE-2025-37921](https://nvd.nist.gov/vuln/detail/CVE-2025-37921), [CVE-2025-37936](https://nvd.nist.gov/vuln/detail/CVE-2025-37936), [CVE-2025-37935](https://nvd.nist.gov/vuln/detail/CVE-2025-37935), [CVE-2025-37933](https://nvd.nist.gov/vuln/detail/CVE-2025-37933), [CVE-2025-37932](https://nvd.nist.gov/vuln/detail/CVE-2025-37932), [CVE-2025-37930](https://nvd.nist.gov/vuln/detail/CVE-2025-37930), [CVE-2025-37929](https://nvd.nist.gov/vuln/detail/CVE-2025-37929), [CVE-2025-37928](https://nvd.nist.gov/vuln/detail/CVE-2025-37928), [CVE-2025-37918](https://nvd.nist.gov/vuln/detail/CVE-2025-37918), [CVE-2025-37903](https://nvd.nist.gov/vuln/detail/CVE-2025-37903), [CVE-2025-37901](https://nvd.nist.gov/vuln/detail/CVE-2025-37901), [CVE-2025-37897](https://nvd.nist.gov/vuln/detail/CVE-2025-37897), [CVE-2025-37916](https://nvd.nist.gov/vuln/detail/CVE-2025-37916), [CVE-2025-37915](https://nvd.nist.gov/vuln/detail/CVE-2025-37915), [CVE-2025-37914](https://nvd.nist.gov/vuln/detail/CVE-2025-37914), [CVE-2025-37913](https://nvd.nist.gov/vuln/detail/CVE-2025-37913), [CVE-2025-37912](https://nvd.nist.gov/vuln/detail/CVE-2025-37912), [CVE-2025-37911](https://nvd.nist.gov/vuln/detail/CVE-2025-37911), [CVE-2025-37909](https://nvd.nist.gov/vuln/detail/CVE-2025-37909), [CVE-2025-37905](https://nvd.nist.gov/vuln/detail/CVE-2025-37905), [CVE-2025-37891](https://nvd.nist.gov/vuln/detail/CVE-2025-37891), [CVE-2025-37890](https://nvd.nist.gov/vuln/detail/CVE-2025-37890), [CVE-2025-37998](https://nvd.nist.gov/vuln/detail/CVE-2025-37998), [CVE-2025-37997](https://nvd.nist.gov/vuln/detail/CVE-2025-37997), [CVE-2025-37995](https://nvd.nist.gov/vuln/detail/CVE-2025-37995), [CVE-2025-37994](https://nvd.nist.gov/vuln/detail/CVE-2025-37994), [CVE-2025-37973](https://nvd.nist.gov/vuln/detail/CVE-2025-37973), [CVE-2025-37972](https://nvd.nist.gov/vuln/detail/CVE-2025-37972), [CVE-2025-37970](https://nvd.nist.gov/vuln/detail/CVE-2025-37970), [CVE-2025-37969](https://nvd.nist.gov/vuln/detail/CVE-2025-37969), [CVE-2025-37964](https://nvd.nist.gov/vuln/detail/CVE-2025-37964), [CVE-2025-37963](https://nvd.nist.gov/vuln/detail/CVE-2025-37963), [CVE-2025-37962](https://nvd.nist.gov/vuln/detail/CVE-2025-37962), [CVE-2025-37961](https://nvd.nist.gov/vuln/detail/CVE-2025-37961), [CVE-2025-37959](https://nvd.nist.gov/vuln/detail/CVE-2025-37959), [CVE-2025-37954](https://nvd.nist.gov/vuln/detail/CVE-2025-37954), [CVE-2025-37953](https://nvd.nist.gov/vuln/detail/CVE-2025-37953), [CVE-2025-37952](https://nvd.nist.gov/vuln/detail/CVE-2025-37952), [CVE-2025-37951](https://nvd.nist.gov/vuln/detail/CVE-2025-37951), [CVE-2025-37949](https://nvd.nist.gov/vuln/detail/CVE-2025-37949), [CVE-2025-37948](https://nvd.nist.gov/vuln/detail/CVE-2025-37948), [CVE-2025-37956](https://nvd.nist.gov/vuln/detail/CVE-2025-37956), [CVE-2025-37947](https://nvd.nist.gov/vuln/detail/CVE-2025-37947), [CVE-2025-38015](https://nvd.nist.gov/vuln/detail/CVE-2025-38015), [CVE-2025-38014](https://nvd.nist.gov/vuln/detail/CVE-2025-38014), [CVE-2025-38013](https://nvd.nist.gov/vuln/detail/CVE-2025-38013), [CVE-2025-38010](https://nvd.nist.gov/vuln/detail/CVE-2025-38010), [CVE-2025-38009](https://nvd.nist.gov/vuln/detail/CVE-2025-38009), [CVE-2025-38027](https://nvd.nist.gov/vuln/detail/CVE-2025-38027), [CVE-2025-38008](https://nvd.nist.gov/vuln/detail/CVE-2025-38008), [CVE-2025-38024](https://nvd.nist.gov/vuln/detail/CVE-2025-38024), [CVE-2025-38023](https://nvd.nist.gov/vuln/detail/CVE-2025-38023), [CVE-2025-38020](https://nvd.nist.gov/vuln/detail/CVE-2025-38020), [CVE-2025-38019](https://nvd.nist.gov/vuln/detail/CVE-2025-38019), [CVE-2025-38018](https://nvd.nist.gov/vuln/detail/CVE-2025-38018), [CVE-2025-38007](https://nvd.nist.gov/vuln/detail/CVE-2025-38007), [CVE-2025-38006](https://nvd.nist.gov/vuln/detail/CVE-2025-38006), [CVE-2025-38005](https://nvd.nist.gov/vuln/detail/CVE-2025-38005), [CVE-2025-37992](https://nvd.nist.gov/vuln/detail/CVE-2025-37992), [CVE-2025-38052](https://nvd.nist.gov/vuln/detail/CVE-2025-38052), [CVE-2025-38061](https://nvd.nist.gov/vuln/detail/CVE-2025-38061), [CVE-2025-38059](https://nvd.nist.gov/vuln/detail/CVE-2025-38059), [CVE-2025-38058](https://nvd.nist.gov/vuln/detail/CVE-2025-38058), [CVE-2025-38081](https://nvd.nist.gov/vuln/detail/CVE-2025-38081), [CVE-2025-38080](https://nvd.nist.gov/vuln/detail/CVE-2025-38080), [CVE-2025-38079](https://nvd.nist.gov/vuln/detail/CVE-2025-38079), [CVE-2025-38078](https://nvd.nist.gov/vuln/detail/CVE-2025-38078), [CVE-2025-38077](https://nvd.nist.gov/vuln/detail/CVE-2025-38077), [CVE-2025-38075](https://nvd.nist.gov/vuln/detail/CVE-2025-38075), [CVE-2025-38074](https://nvd.nist.gov/vuln/detail/CVE-2025-38074), [CVE-2025-38072](https://nvd.nist.gov/vuln/detail/CVE-2025-38072), [CVE-2025-38071](https://nvd.nist.gov/vuln/detail/CVE-2025-38071), [CVE-2025-38068](https://nvd.nist.gov/vuln/detail/CVE-2025-38068), [CVE-2025-38066](https://nvd.nist.gov/vuln/detail/CVE-2025-38066), [CVE-2025-38065](https://nvd.nist.gov/vuln/detail/CVE-2025-38065), [CVE-2025-38063](https://nvd.nist.gov/vuln/detail/CVE-2025-38063), [CVE-2025-38062](https://nvd.nist.gov/vuln/detail/CVE-2025-38062), [CVE-2025-38037](https://nvd.nist.gov/vuln/detail/CVE-2025-38037), [CVE-2025-38035](https://nvd.nist.gov/vuln/detail/CVE-2025-38035), [CVE-2025-38034](https://nvd.nist.gov/vuln/detail/CVE-2025-38034), [CVE-2025-38051](https://nvd.nist.gov/vuln/detail/CVE-2025-38051), [CVE-2025-38031](https://nvd.nist.gov/vuln/detail/CVE-2025-38031), [CVE-2025-38048](https://nvd.nist.gov/vuln/detail/CVE-2025-38048), [CVE-2025-38046](https://nvd.nist.gov/vuln/detail/CVE-2025-38046), [CVE-2025-38045](https://nvd.nist.gov/vuln/detail/CVE-2025-38045), [CVE-2025-38044](https://nvd.nist.gov/vuln/detail/CVE-2025-38044), [CVE-2025-38043](https://nvd.nist.gov/vuln/detail/CVE-2025-38043), [CVE-2025-38040](https://nvd.nist.gov/vuln/detail/CVE-2025-38040), [CVE-2025-38039](https://nvd.nist.gov/vuln/detail/CVE-2025-38039), [CVE-2025-38030](https://nvd.nist.gov/vuln/detail/CVE-2025-38030), [CVE-2025-38003](https://nvd.nist.gov/vuln/detail/CVE-2025-38003), [CVE-2025-38004](https://nvd.nist.gov/vuln/detail/CVE-2025-38004), [CVE-2025-38001](https://nvd.nist.gov/vuln/detail/CVE-2025-38001), [CVE-2025-38000](https://nvd.nist.gov/vuln/detail/CVE-2025-38000), [CVE-2025-38083](https://nvd.nist.gov/vuln/detail/CVE-2025-38083)) #### Bug fixes: - Added back some BCC tools ([scripts#2900](https://github.com/flatcar/scripts/pull/2900)) #### Updates: - Linux ([6.6.94](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.94) (includes [6.6.93](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.93), [6.6.92](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.92), [6.6.91](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.91), [6.6.90](https://lwn.net/Articles/1020659/), [6.6.89](https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tag/?h=v6.6.89))) - ca-certificates ([3.112](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_112.html) (includes [3.111](https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_111.html))) Best, The Flatcar Container Linux Maintainers --- ### Communication #### Go/No-Go message for Matrix/Slack Go/No-Go Meeting for Alpha 4372.0.0, Beta 4344.1.0, Stable 4230.2.0 Pre-view images are available in https://bincache.flatcar-linux.net/images/amd64/$VERSION/ Tracking issue: https://github.com/flatcar/Flatcar/issues/1779 The Go/No-Go document is in our HackMD @flatcar namespace Link: https://hackmd.io/ybBKFjdmQqePJli4zHBPhg Please give your Go/No-Go vote with 💚 for Go, ❌ for No-Go, and ✋ for Wait. Contributors & community feel free to put your suggestions, thoughts or comments on the document or here in the chat. @MAINTAINER @MAINTAINER @MAINTAINER ** add all the maintainers here ** #### Mastodon _The toot (from [@flatcar](https://hachyderm.io/@flatcar)) goes out after the changelog update has been published; it includes a link to the web changelog._ New Flatcar Alpha, Beta, Stable releases now available! 📦 Many package updates: Linux, Go, nvidia-drivers 🔒 CVE fixes & security patches: Linux, curl, wget 📜 Release notes at the usual spot: https://www.flatcar.org/releases/ #### Kubernetes Slack _This goes in the #flatcar channel_ Please welcome Flatcar releases of this month: - Alpha 4372.0.0 (new major) - Beta 4344.1.0 (major release) - Stable 4230.2.0 (major release) These releases include: 📦 Many package updates: Linux, Go, nvidia-drivers 🔒 CVE fixes & security patches: Linux, curl, wget 📜 Release notes at the usual spot: https://www.flatcar.org/releases/