Amazon Linux 2023 version 2023.0.20230322 release notes
This topic includes release notes for the second General Availability (GA) version of Amazon Linux 2023 (AL2023). These release notes are for the 2023.0.20230322 version of AL2023.
Major updates
This release represents an update to the General Availability (GA) release of Amazon Linux 2023 (AL2023). AL2023 is the next generation of Amazon Linux. It comes with 5 years of support and brings features like Deterministic Updates, better optimizations for Graviton processors and others into Amazon Linux. AL2023 is ready for customer production workloads, and customers are encouraged to start migrations from previous versions of Amazon Linux today.
See the Amazon
Linux What's New Post
AL2023 includes the following major updates.
-
Systems Manager Patch Manager now supports AL2023.
-
The
Arm64version of AL2023 is built with a feature called Pointer Authentication (PAC). When run on supported hardware (Graviton 3), the return address for function calls are signed and verified, adding an extra layer of security against a whole category of attacks. -
Fixed the issue with
gcconaarch64with patchable function sections which was causing the failure ofkretprobeevent registration and affected related functionality in SystemTap and theperftool. -
For an in-depth look at the changes since Amazon Linux 2, see Comparing Amazon Linux 2 and AL2023.
Known Issues
-
Amazon Inspector support for AL2023 will be available in April.
-
When upgrading an instance from AL2023 RC1 or earlier, in order to avoid a boot order issue, you will need to add the following to
/etc/default/grubbefore upgrading in order to get the kernel update:GRUB_DEFAULT=saved GRUB_UPDATE_DEFAULT_KERNEL=true -
codedeployagent does not currently work with AL2023. -
AL2023 contains a known issue where customer defined
NTPservers viaDHCPare not honored.Work-Around - Configure the NTP servers using a config file in
/etc/chrony.d -
AL2023 is not yet FIPS certified. It is in process of being certified for
FIPS 140-3.
Security Updates
-
For information on the CVEs addressed in this release, refer to the Amazon Linux Security Center
. -
For visibility into the status of CVE's that haven't been addressed yet, please refer to the Amazon Linux Security Center
.
Contact us
If you find a security issue, follow this link to learn how to
contact our security team
We use GitHub issues to gather feedback about AL2023 and to track bug reports and
feature requests. You can look at existing
issues
If you just have questions about AL2023, feel free to start or join a discussion
Repository
New packages in AL2023.0.20230322 since AL2023.0.20230315
Comparing AL2023.0.20230315 version 2023.0.20230315 to AL2023.0.20230322 version 2023.0.20230322.
| Package Type | Number of new packages in AL2023.0.20230322 compared to AL2023.0.20230315 |
|---|---|
| Source RPMs | 1 |
| Total Binary RPMs | 2 |
x86_64 binary RPMs |
1 |
aarch64 binary RPMs |
1 |
New packages in AL2023.0.20230322:
| Source RPM | RPM | Architectures | Version |
|---|---|---|---|
trace-cmd
|
trace-cmd
|
aarch64, x86_64 | 2.7-10.amzn2023.0.1 |
AL2023.0.20230322 upgrades from AL2023.0.20230315
Comparing 2023.0.20230315 to 2023.0.20230322.
| Package Type | Count |
|---|---|
| Source | 25 |
| Total Binary | 376 |
noarch binary RPMs |
112 |
x86_64 binary RPMs |
135 |
aarch64 binary RPMs |
129 |
The full comparison of RPM package versions is below.
| Source RPM | RPM | Architectures | AL2023.0.20230315 version | AL2023.0.20230322 version |
|---|---|---|---|---|
autotrace
|
autotrace
|
aarch64, x86_64 | 0.31.1-62.amzn2023.0.2 | 0.31.9-86.amzn2023.0.1 |
autotrace-devel
|
aarch64, x86_64 | |||
containerd
|
containerd
|
aarch64, x86_64 | 1.6.8-2.amzn2023.0.3 | 1.6.8-2.amzn2023.0.4 |
containerd-stress
|
aarch64, x86_64 | |||
credentials-fetcher
|
credentials-fetcher
|
aarch64, x86_64 | 1.1.0-1.amzn2023.0.2 | 1.1.0-6.amzn2023.0.2 |
device-mapper-multipath
|
device-mapper-multipath
|
aarch64, x86_64 | 0.8.7-16.amzn2023.0.1 | 0.8.7-16.amzn2023.0.2 |
device-mapper-multipath-devel
|
aarch64, x86_64 | |||
device-mapper-multipath-libs
|
aarch64, x86_64 | |||
kpartx
|
aarch64, x86_64 | |||
libdmmp
|
aarch64, x86_64 | |||
libdmmp-devel
|
aarch64, x86_64 | |||
docker
|
docker
|
aarch64, x86_64 | 20.10.17-1.amzn2023.0.5 | 20.10.17-1.amzn2023.0.6 |
emacs
|
emacs
|
aarch64, x86_64 | 28.2-3.amzn2023.0.3 | 28.2-3.amzn2023.0.4 |
emacs-common
|
aarch64, x86_64 | |||
emacs-devel
|
aarch64, x86_64 | |||
emacs-filesystem
|
noarch | |||
emacs-lucid
|
aarch64, x86_64 | |||
emacs-nox
|
aarch64, x86_64 | |||
emacs-terminal
|
noarch | |||
gcc
|
cpp
|
aarch64, x86_64 | 11.3.1-4.amzn2023.0.2 | 11.3.1-4.amzn2023.0.3 |
gcc
|
aarch64, x86_64 | |||
gcc-c++
|
aarch64, x86_64 | |||
gcc-gdb-plugin
|
aarch64, x86_64 | |||
gcc-gfortran
|
aarch64, x86_64 | |||
gcc-offload-nvptx
|
x86_64 | |||
gcc-plugin-devel
|
aarch64, x86_64 | |||
libasan
|
aarch64, x86_64 | |||
libasan-static
|
aarch64, x86_64 | |||
libatomic
|
aarch64, x86_64 | |||
libatomic-static
|
aarch64, x86_64 | |||
libgcc
|
aarch64, x86_64 | |||
libgccjit
|
aarch64, x86_64 | |||
libgccjit-devel
|
aarch64, x86_64 | |||
libgfortran
|
aarch64, x86_64 | |||
libgfortran-static
|
aarch64, x86_64 | |||
libgomp
|
aarch64, x86_64 | |||
libgomp-offload-nvptx
|
x86_64 | |||
libitm
|
aarch64, x86_64 | |||
libitm-devel
|
aarch64, x86_64 | |||
libitm-static
|
aarch64, x86_64 | |||
liblsan
|
aarch64, x86_64 | |||
liblsan-static
|
aarch64, x86_64 | |||
libquadmath
|
x86_64 | |||
libquadmath-devel
|
x86_64 | |||
libquadmath-static
|
x86_64 | |||
libstdc++
|
aarch64, x86_64 | |||
libstdc++-devel
|
aarch64, x86_64 | |||
libstdc++-docs
|
aarch64, x86_64 | |||
libstdc++-static
|
aarch64, x86_64 | |||
libtsan
|
aarch64, x86_64 | |||
libtsan-static
|
aarch64, x86_64 | |||
libubsan
|
aarch64, x86_64 | |||
libubsan-static
|
aarch64, x86_64 | |||
golang
|
golang
|
aarch64, x86_64 | 1.19.3-2.amzn2023.0.2 | 1.19.6-1.amzn2023.0.1 |
golang-bin
|
aarch64, x86_64 | |||
golang-docs
|
noarch | |||
golang-misc
|
noarch | |||
golang-race
|
x86_64 | |||
golang-shared
|
aarch64, x86_64 | |||
golang-src
|
noarch | |||
golang-tests
|
noarch | |||
httpd
|
httpd
|
aarch64, x86_64 | 2.4.55-1.amzn2023 | 2.4.56-1.amzn2023 |
httpd-core
|
aarch64, x86_64 | |||
httpd-devel
|
aarch64, x86_64 | |||
httpd-filesystem
|
noarch | |||
httpd-manual
|
noarch | |||
httpd-tools
|
aarch64, x86_64 | |||
mod_ldap
|
aarch64, x86_64 | |||
mod_lua
|
aarch64, x86_64 | |||
mod_proxy_html
|
aarch64, x86_64 | |||
mod_session
|
aarch64, x86_64 | |||
mod_ssl
|
aarch64, x86_64 | |||
kernel
|
bpftool
|
aarch64, x86_64 | 6.1.15-28.43.amzn2023 | 6.1.19-30.43.amzn2023 |
kernel
|
aarch64, x86_64 | |||
kernel-devel
|
aarch64, x86_64 | |||
kernel-headers
|
aarch64, x86_64 | |||
kernel-libbpf
|
aarch64, x86_64 | |||
kernel-libbpf-devel
|
aarch64, x86_64 | |||
kernel-libbpf-static
|
aarch64, x86_64 | |||
kernel-tools
|
aarch64, x86_64 | |||
kernel-tools-devel
|
aarch64, x86_64 | |||
perf
|
aarch64, x86_64 | |||
python3-perf
|
aarch64, x86_64 | |||
keyutils
|
keyutils
|
aarch64, x86_64 | 1.6.1-2.amzn2023.0.2 | 1.6.3-1.amzn2023 |
keyutils-libs
|
aarch64, x86_64 | |||
keyutils-libs-devel
|
aarch64, x86_64 | |||
nmap
|
nmap
|
aarch64, x86_64 | 7.80-11.amzn2023.0.3 | 7.93-1.amzn2023 |
nmap-ncat
|
aarch64, x86_64 | |||
opensc
|
opensc
|
aarch64, x86_64 | 0.22.0-4.amzn2023.0.3 | 0.23.0-3.amzn2023 |
openscap
|
openscap
|
aarch64, x86_64 | 1.3.5-2.amzn2023.0.3 | 1.3.7-1.amzn2023.0.1 |
openscap-containers
|
noarch | |||
openscap-devel
|
aarch64, x86_64 | |||
openscap-engine-sce
|
aarch64, x86_64 | |||
openscap-engine-sce-devel
|
aarch64, x86_64 | |||
openscap-python3
|
aarch64, x86_64 | |||
openscap-scanner
|
aarch64, x86_64 | |||
openscap-utils
|
aarch64, x86_64 | |||
php8.1
|
php8.1
|
aarch64, x86_64 | 8.1.14-1.amzn2023.0.2 | 8.1.16-1.amzn2023.0.1 |
php8.1-bcmath
|
aarch64, x86_64 | |||
php8.1-cli
|
aarch64, x86_64 | |||
php8.1-common
|
aarch64, x86_64 | |||
php8.1-dba
|
aarch64, x86_64 | |||
php8.1-dbg
|
aarch64, x86_64 | |||
php8.1-devel
|
aarch64, x86_64 | |||
php8.1-embedded
|
aarch64, x86_64 | |||
php8.1-enchant
|
aarch64, x86_64 | |||
php8.1-ffi
|
aarch64, x86_64 | |||
php8.1-fpm
|
aarch64, x86_64 | |||
php8.1-gd
|
aarch64, x86_64 | |||
php8.1-gmp
|
aarch64, x86_64 | |||
php8.1-intl
|
aarch64, x86_64 | |||
php8.1-ldap
|
aarch64, x86_64 | |||
php8.1-mbstring
|
aarch64, x86_64 | |||
php8.1-mysqlnd
|
aarch64, x86_64 | |||
php8.1-odbc
|
aarch64, x86_64 | |||
php8.1-opcache
|
aarch64, x86_64 | |||
php8.1-pdo
|
aarch64, x86_64 | |||
php8.1-pgsql
|
aarch64, x86_64 | |||
php8.1-process
|
aarch64, x86_64 | |||
php8.1-soap
|
aarch64, x86_64 | |||
php8.1-tidy
|
aarch64, x86_64 | |||
php8.1-xml
|
aarch64, x86_64 | |||
polkit
|
polkit
|
aarch64, x86_64 | 0.117-10.amzn2023.0.3 | 0.117-11.amzn2023 |
polkit-devel
|
aarch64, x86_64 | |||
polkit-docs
|
noarch | |||
polkit-libs
|
aarch64, x86_64 | |||
python-pillow
|
python3-pillow
|
aarch64, x86_64 | 9.0.1-6.amzn2023.0.3 | 9.4.0-2.amzn2023.0.1 |
python3-pillow-devel
|
aarch64, x86_64 | |||
python3-pillow-tk
|
aarch64, x86_64 | |||
setools
|
python3-setools
|
aarch64, x86_64 | 4.4.0-9.amzn2023.0.2 | 4.4.1-1.amzn2023 |
setools
|
aarch64, x86_64 | |||
setools-console
|
aarch64, x86_64 | |||
sudo
|
sudo
|
aarch64, x86_64 | 1.9.12-1.p2.amzn2023.0.3 | 1.9.13-1.p2.amzn2023.0.1 |
sudo-devel
|
aarch64, x86_64 | |||
sudo-logsrvd
|
aarch64, x86_64 | |||
sudo-python-plugin
|
aarch64, x86_64 | |||
system-release
|
amazon-linux-repo-cdn
|
noarch | 2023.0.20230315-1.amzn2023 | 2023.0.20230322-0.amzn2023 |
amazon-linux-repo-s3
|
noarch | |||
kernel-livepatch-repo-cdn
|
noarch | |||
kernel-livepatch-repo-s3
|
noarch | |||
system-release
|
noarch | |||
tomcat9
|
tomcat9
|
noarch | 9.0.64-1.amzn2023.0.2 | 9.0.71-1.amzn2023.0.1 |
tomcat9-admin-webapps
|
noarch | |||
tomcat9-docs-webapp
|
noarch | |||
tomcat9-el-3.0-api
|
noarch | |||
tomcat9-jsp-2.3-api
|
noarch | |||
tomcat9-lib
|
noarch | |||
tomcat9-servlet-4.0-api
|
noarch | |||
tomcat9-webapps
|
noarch | |||
udica
|
udica
|
noarch | 0.2.6-3.amzn2023.0.1 | 0.2.7-4.amzn2023.0.1 |
unbound
|
python3-unbound
|
aarch64, x86_64 | 1.16.3-2.amzn2023.0.1 | 1.17.1-1.amzn2023.0.1 |
unbound
|
aarch64, x86_64 | |||
unbound-anchor
|
aarch64, x86_64 | |||
unbound-devel
|
aarch64, x86_64 | |||
unbound-libs
|
aarch64, x86_64 | |||
unbound-utils
|
aarch64, x86_64 | |||
update-motd
|
update-motd
|
noarch | 2.0-1.amzn2023.0.3 | 2.1-1.amzn2023 |
vim
|
vim-common
|
aarch64, x86_64 | 9.0.1314-1.amzn2023.0.2 | 9.0.1367-1.amzn2023.0.1 |
vim-data
|
noarch | |||
vim-default-editor
|
noarch | |||
vim-enhanced
|
aarch64, x86_64 | |||
vim-filesystem
|
noarch | |||
vim-minimal
|
aarch64, x86_64 |
Docker container image
The following packages have been removed.
-
amazon-linux-repo-cdn-2023.0.20230315-1.amzn2023 -
keyutils-libs-1.6.1-2.amzn2023.0.2 -
libgcc-11.3.1-4.amzn2023.0.2 -
libgomp-11.3.1-4.amzn2023.0.2 -
libstdc++-11.3.1-4.amzn2023.0.2 -
system-release-2023.0.20230315-1.amzn2023
The following packages have been updated.
-
amazon-linux-repo-cdn-2023.0.20230322-0.amzn2023 -
keyutils-libs-1.6.3-1.amzn2023 -
libgcc-11.3.1-4.amzn2023.0.3 -
libgomp-11.3.1-4.amzn2023.0.3 -
libstdc++-11.3.1-4.amzn2023.0.3 -
system-release-2023.0.20230322-0.amzn2023
Default AMI
The following packages have been removed.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
The following packages have been updated.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Minimal AMI
The following packages have been removed.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
The following packages have been updated.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
