AWS Security ChangesHomeSearch

AWS AmazonCloudFront documentation change

Service: AmazonCloudFront · 2025-05-01 · Documentation low

File: AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md

Summary

Documented new ACM permissions in managed policies and multi-tenant distribution support

Security assessment

The update to managed policies adds ACM permissions, which relate to certificate management - a security-relevant feature. However, this documents existing security capability enhancements rather than addressing a specific vulnerability.

Diff

diff --git a/AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md b/AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md
index b1f6b2720..a3fb8b615 100644
--- a//AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md
+++ b//AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md
@@ -10,0 +11,2 @@ Change| Description| Date
+[Updates to CloudFront managed policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/security-iam-awsmanpol.html)| Added ACM permissions to the `CloudFrontReadOnlyAccess` and `CloudFrontFullAccess` managed policies.| April 28, 2025  
+[Added support for multi-tenant distribution and distribution tenants](./distribution-config-options.html)| You can create a multi-tenant distribution to set common distribution settings based on your origin type. Then, you can reuse the multi-tenant distribution to create multiple distribution tenants that share those settings. You can then customize specific distribution tenants as you add additional websites or applications.| April 28, 2025