# Amazon Linux 2 version 2.0.20221210.1 release notes
<a name="relnotes-20221216"></a>

These are the release notes for Amazon Linux 2 version 2.0.20221210.1.

## Major updates
<a name="major-updates-20221216"></a>

This release includes an important security update for `python3-3.7` (`python3-3.7.15-1.amzn2.0.2`). Unless automatic security updates are disabled on launch, this update will be applied to new instance launches. Customers that run `yum update --security`, or other `yum update` commands, also see this package updated on their instances. Customers who change the `/usr/bin/python3` symlink to point to another version of `python3`, such as `python-3.8`, could see their python programs and environments experience issues as this symlink is reset to point at `/usr/bin/python3.`7. This is a result of the `/usr/bin/python3` symlink being owned by the `python-3.7` package. `Yum` will overwrite any files a package owns, unless it's configured not to. Due to other potential system and customer impacts, this symlink can't be removed from the `python3-3.7` package. To avoid issues, customer can: 
+ Use `virtualenv` with `python-3.8` and later versions of `python3`.
+ Configure any scripts or software that requires a later version of python to directly use the correct versioned binary. For example: Change calls to `/usr/bin/python3` to `/usr/bin/python3.8`.
+ Disable automatic security updates at launch, and manually apply specific security updates.
+ Write a script to detect any changes to the `/usr/bin/python3` symlink and automatically revert the change.

## Package updates
<a name="package-updates-20221216"></a>

Amazon Linux 2 includes the following packages.


|  | 
| --- |
|  `aws-cfn-bootstrap-2.0-20.amzn2.noarch`  | 
|  `curl-7.79.1-7.amzn2.0.1.aarch64`  | 
|  `curl-7.79.1-7.amzn2.0.1.x86_64`  | 
|  `e2fsprogs-1.42.9-19.amzn2.0.1.aarch64`  | 
|  `e2fsprogs-1.42.9-19.amzn2.0.1.x86_64`  | 
|  `e2fsprogs-libs-1.42.9-19.amzn2.0.1.aarch64`  | 
|  `e2fsprogs-libs-1.42.9-19.amzn2.0.1.x86_64`  | 
|  `ec2-net-utils-1.7.3-1.amzn2.noarch`  | 
|  `expat-2.1.0-15.amzn2.0.2.aarch64`  | 
|  `expat-2.1.0-15.amzn2.0.2.x86_64`  | 
|  `kernel-4.14.301-224.520.amzn2.aarch64`  | 
|  `kernel-4.14.301-224.520.amzn2.x86_64`  | 
|  `kernel-5.10.157-139.675.amzn2.aarch64`  | 
|  `kernel-5.10.157-139.675.amzn2.x86_64`  | 
|  `kernel-devel-4.14.301-224.520.amzn2.x86_64`  | 
|  `kernel-headers-4.14.301-224.520.amzn2.x86_64`  | 
|  `kernel-tools-4.14.301-224.520.amzn2.aarch64`  | 
|  `kernel-tools-4.14.301-224.520.amzn2.x86_64`  | 
|  `kernel-tools-5.10.157-139.675.amzn2.aarch64`  | 
|  `kernel-tools-5.10.157-139.675.amzn2.x86_64`  | 
|  `kpartx-0.4.9-136.amzn2.aarch64`  | 
|  `kpartx-0.4.9-136.amzn2.x86_64`  | 
|  `libblkid-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `libblkid-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `libcom_err-1.42.9-19.amzn2.0.1.aarch64`  | 
|  `libcom_err-1.42.9-19.amzn2.0.1.x86_64`  | 
|  `libcurl-7.79.1-7.amzn2.0.1.aarch64`  | 
|  `libcurl-7.79.1-7.amzn2.0.1.x86_64`  | 
|  `libfdisk-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `libfdisk-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `libmount-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `libmount-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `libsmartcols-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `libsmartcols-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `libss-1.42.9-19.amzn2.0.1.aarch64`  | 
|  `libss-1.42.9-19.amzn2.0.1.x86_64`  | 
|  `libtiff-4.0.3-35.amzn2.0.5.aarch64`  | 
|  `libtiff-4.0.3-35.amzn2.0.5.x86_64`  | 
|  `libuuid-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `libuuid-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `microcode_ctl-2.1-47.amzn2.0.14.x86_64`  | 
|  `ncurses-6.0-8.20170212.amzn2.1.4.aarch64`  | 
|  `ncurses-6.0-8.20170212.amzn2.1.4.x86_64`  | 
|  `ncurses-base-6.0-8.20170212.amzn2.1.4.noarch`  | 
|  `ncurses-compat-libs-6.0-8.20170212.amzn2.1.4.x86_64`  | 
|  `ncurses-libs-6.0-8.20170212.amzn2.1.4.aarch64`  | 
|  `ncurses-libs-6.0-8.20170212.amzn2.1.4.x86_64`  | 
|  `nspr-4.34.0-3.1.amzn2.aarch64`  | 
|  `nspr-4.34.0-3.1.amzn2.x86_64`  | 
|  `nss-3.79.0-4.amzn2.aarch64`  | 
|  `nss-3.79.0-4.amzn2.x86_64`  | 
|  `nss-softokn-3.79.0-4.amzn2.aarch64`  | 
|  `nss-softokn-3.79.0-4.amzn2.x86_64`  | 
|  `nss-softokn-freebl-3.79.0-4.amzn2.aarch64`  | 
|  `nss-softokn-freebl-3.79.0-4.amzn2.x86_64`  | 
|  `nss-sysinit-3.79.0-4.amzn2.aarch64`  | 
|  `nss-sysinit-3.79.0-4.amzn2.x86_64`  | 
|  `nss-tools-3.79.0-4.amzn2.aarch64`  | 
|  `nss-tools-3.79.0-4.amzn2.x86_64`  | 
|  `nss-util-3.79.0-1.amzn2.aarch64`  | 
|  `nss-util-3.79.0-1.amzn2.x86_64`  | 
|  `nvidia-450.216.04-0.amzn2.x86_64`  | 
|  `nvidia-dkms-450.216.04-0.amzn2.x86_64`  | 
|  `python2-colorama-0.3.9-3.amzn2.0.1.noarch`  | 
|  `python2-dateutil-2.6.1-3.amzn2.noarch`  | 
|  `python2-jmespath-0.9.3-1.amzn2.0.2.noarch`  | 
|  `python2-jsonschema-2.5.1-3.amzn2.0.2.noarch`  | 
|  `python2-pyasn1-0.1.9-7.amzn2.0.2.noarch`  | 
|  `python2-rsa-3.4.1-1.amzn2.0.3.noarch`  | 
|  `python2-six-1.11.0-8.amzn2.0.1.noarch`  | 
|  `python3-3.7.15-1.amzn2.0.2.aarch64`  | 
|  `python3-3.7.15-1.amzn2.0.2.x86_64`  | 
|  `python3-libs-3.7.15-1.amzn2.0.2.aarch64`  | 
|  `python3-libs-3.7.15-1.amzn2.0.2.x86_64`  | 
|  `systemd-219-78.amzn2.0.21.aarch64`  | 
|  `systemd-219-78.amzn2.0.21.x86_64`  | 
|  `systemd-libs-219-78.amzn2.0.21.aarch64`  | 
|  `systemd-libs-219-78.amzn2.0.21.x86_64`  | 
|  `systemd-sysv-219-78.amzn2.0.21.aarch64`  | 
|  `systemd-sysv-219-78.amzn2.0.21.x86_64`  | 
|  `tzdata-2022f-1.amzn2.0.1.noarch`  | 
|  `util-linux-2.30.2-2.amzn2.0.10.aarch64`  | 
|  `util-linux-2.30.2-2.amzn2.0.10.x86_64`  | 
|  `vim-common-9.0.828-1.amzn2.0.1.aarch64`  | 
|  `vim-common-9.0.828-1.amzn2.0.1.x86_64`  | 
|  `vim-data-9.0.828-1.amzn2.0.1.noarch`  | 
|  `vim-enhanced-9.0.828-1.amzn2.0.1.aarch64`  | 
|  `vim-enhanced-9.0.828-1.amzn2.0.1.x86_64`  | 
|  `vim-filesystem-9.0.828-1.amzn2.0.1.noarch`  | 
|  `vim-minimal-9.0.828-1.amzn2.0.1.aarch64`  | 
|  `vim-minimal-9.0.828-1.amzn2.0.1.x86_64`  | 
|  `xfsprogs-5.0.0-10.amzn2.0.1.aarch64`  | 
|  `xfsprogs-5.0.0-10.amzn2.0.1.x86_64`  | 

Package with CVEs:

**curl-7.79.1-7.amzn2.0.1**

CVEs fixed:
+ [CVE-2022-32221](https://alas.aws.amazon.com/cve/html/CVE-2022-32221.html)
+ [CVE-2022-35260](https://alas.aws.amazon.com/cve/html/CVE-2022-35260.html)
+ [CVE-2022-42915](https://alas.aws.amazon.com/cve/html/CVE-2022-42915.html)
+ [CVE-2022-42916](https://alas.aws.amazon.com/cve/html/CVE-2022-42916.html)

**kernel-4.14.301-224.520.amzn2**

CVEs fixed:
+ [CVE-2022-3524](https://alas.aws.amazon.com/cve/html/CVE-2022-3524.html)
+ [CVE-2022-42896](https://alas.aws.amazon.com/cve/html/CVE-2022-42896.html)

**libtiff-4.0.3-35.amzn2.0.5**

CVEs fixed:
+ [CVE-2022-1355](https://alas.aws.amazon.com/cve/html/CVE-2022-1355.html)
+ [CVE-2022-3970](https://alas.aws.amazon.com/cve/html/CVE-2022-3970.html)

**ncurses-6.0-8.20170212.amzn2.1.4**

CVEs fixed:
+ [CVE-2021-39537](https://alas.aws.amazon.com/cve/html/CVE-2021-39537.html)
+ [CVE-2022-29458](https://alas.aws.amazon.com/cve/html/CVE-2022-29458.html)

**nvidia-450.216.04-0.amzn2**

CVEs fixed:
+ [CVE-2022-34670](https://alas.aws.amazon.com/cve/html/CVE-2022-34670.html)
+ [CVE-2022-42263](https://alas.aws.amazon.com/cve/html/CVE-2022-42263.html)
+ [CVE-2022-42264](https://alas.aws.amazon.com/cve/html/CVE-2022-42264.html)
+ [CVE-2022-34674](https://alas.aws.amazon.com/cve/html/CVE-2022-34674.html)
+ [CVE-2022-34677](https://alas.aws.amazon.com/cve/html/CVE-2022-34677.html)
+ [CVE-2022-34679](https://alas.aws.amazon.com/cve/html/CVE-2022-34679.html)
+ [CVE-2022-34680](https://alas.aws.amazon.com/cve/html/CVE-2022-34680.html)
+ [CVE-2022-34682](https://alas.aws.amazon.com/cve/html/CVE-2022-34682.html)
+ [CVE-2022-34684](https://alas.aws.amazon.com/cve/html/CVE-2022-34684.html)
+ [CVE-2022-42254](https://alas.aws.amazon.com/cve/html/CVE-2022-42254.html)
+ [CVE-2022-42255](https://alas.aws.amazon.com/cve/html/CVE-2022-42255.html)
+ [CVE-2022-42256](https://alas.aws.amazon.com/cve/html/CVE-2022-42256.html)
+ [CVE-2022-42257](https://alas.aws.amazon.com/cve/html/CVE-2022-42257.html)
+ [CVE-2022-42258](https://alas.aws.amazon.com/cve/html/CVE-2022-42258.html)
+ [CVE-2022-42259](https://alas.aws.amazon.com/cve/html/CVE-2022-42259.html)