Announcing new releases Alpha 3535.0.0, Beta 3510.1.0, Stable 3374.2.5, LTS-2022 3033.3.10

15 views

Skip to first unread message

unread,

Mar 8, 2023, 5:22:11 AM3/8/23

to Flatcar Container Linux User

Hello,
We are pleased to announce a new Flatcar Container Linux release for the Alpha, Beta, Stable and LTS channels.

New Alpha release 3535.0.0

Changes since Alpha 3510.0.0

Security fixes:

Linux (CVE-2022-2196, CVE-2022-27672, CVE-2022-3707, CVE-2023-1078, CVE-2023-26545)
Go (CVE-2022-41723, CVE-2022-41724, CVE-2022-41725)
OpenSSH (CVE-2023-25136)
OpenSSL (CVE-2022-4203, CVE-2022-4304, CVE-2022-4450, CVE-2023-0215, CVE-2023-0216, CVE-2023-0217, CVE-2023-0286, CVE-2023-0401)
containerd (CVE-2023-25153, CVE-2023-25173)
e2fsprogs (CVE-2022-1304)
intel-microcode (CVE-2022-21216, CVE-2022-33196, CVE-2022-38090)
less (CVE-2022-46663)
torcx (CVE-2022-32149)
SDK: dnsmasq (CVE-2022-0934)

Bug fixes:

Excluded the special Kubernetes network interfaces nodelocaldns and kube-ipvs0 from being managed with systemd-networkd which interfered with the setup (init#89).

Changes:

Added a new flatcar-reset tool and boot logic for selective OS resets to reconfigure the system with Ignition while avoiding config drift (bootengine#55, init#91)
On boot any files in /etc that are the same as provided by the booted /usr/share/flatcar/etc default for the overlay mount on /etc are deleted to ensure that future updates of /usr/share/flatcar/etc are propagated - to opt out create /etc/.no-dup-update in case you want to keep an unmodified config file as is or because you fear that a future Flatcar version may use the same file as you at which point your copy is cleaned up and any other future Flatcar changes would be applied (bootengine#54)
Switched systemd log reporting to the combined format of both unit description, as before, and now the unit name to easily find the unit (coreos-overlay#2436)
/etc is now set up as overlayfs with the original /etc folder being the store for changed files/directories and /usr/share/flatcar/etc providing the lower default directory tree (bootengine#53, scripts#666)

Updates:

New Beta Release 3510.1.0

Changes since Beta 3493.1.0

Security fixes:

Linux (CVE-2022-2196, CVE-2022-27672, CVE-2022-3707, CVE-2023-1078, CVE-2023-26545)
curl (CVE-2022-43551, CVE-2022-43552)
sudo (CVE-2023-22809)
vim (CVE-2023-0049, CVE-2023-0051, CVE-2023-0054)
SDK: qemu (CVE-2022-4172)

Bug fixes:

Excluded the special Kubernetes network interfaces nodelocaldns and kube-ipvs0 from being managed with systemd-networkd which interfered with the setup (init#89).

Updates:

Linux (5.15.98 (includes 5.15.97, 5.15.96, 5.15.95, 5.15.94, 5.15.93))
Docker (20.10.23)
bind tools (9.16.36 (includes 9.16.34 and 9.16.35))
bpftool (5.19.12)
ca-certificates (3.88.1)
containerd (1.6.16)
curl (7.87.0)
git (2.39.1 (includes 2.39.0))
iptables (1.8.8)
sudo (1.9.12_p2)
systemd (252.5)
vim (9.0.1157)
XZ utils (5.4.1 (includes 5.4.0))
SDK: boost (1.81.0)
SDK: file (5.44)
SDK: portage (3.0.43 (includes 3.0.42))
SDK: qemu (7.2.0)
SDK: Rust (1.67.0)

Changes since Alpha 3510.0.0

Security fixes:

Bug fixes:

Excluded the special Kubernetes network interfaces nodelocaldns and kube-ipvs0 from being managed with systemd-networkd which interfered with the setup (init#89).

Updates:

New Stable 3374.2.5

Changes since Stable 3374.2.4

Security fixes:

Bug fixes:

Excluded the special Kubernetes network interfaces nodelocaldns and kube-ipvs0 from being managed with systemd-networkd which interfered with the setup (init#89).

Updates:

New LTS-2022 Release 3033.3.10

Changes since LTS 3033.3.9

Security fixes:

Updates: