AWS AmazonCloudFront documentation change
Summary
Documented new ACM permissions in managed policies and multi-tenant distribution support
Security assessment
The update to managed policies adds ACM permissions, which relate to certificate management - a security-relevant feature. However, this documents existing security capability enhancements rather than addressing a specific vulnerability.
Diff
diff --git a/AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md b/AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md index b1f6b2720..a3fb8b615 100644 --- a//AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md +++ b//AmazonCloudFront/latest/DeveloperGuide/WhatsNew.md @@ -10,0 +11,2 @@ Change| Description| Date +[Updates to CloudFront managed policies](https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/security-iam-awsmanpol.html)| Added ACM permissions to the `CloudFrontReadOnlyAccess` and `CloudFrontFullAccess` managed policies.| April 28, 2025 +[Added support for multi-tenant distribution and distribution tenants](./distribution-config-options.html)| You can create a multi-tenant distribution to set common distribution settings based on your origin type. Then, you can reuse the multi-tenant distribution to create multiple distribution tenants that share those settings. You can then customize specific distribution tenants as you add additional websites or applications.| April 28, 2025