AWS Security ChangesHomeSearch

AWS systems-manager documentation change

Service: systems-manager · 2025-06-25 · Documentation low

File: systems-manager/latest/userguide/patch-manager-compliance-states.md

Summary

Expanded list of Ubuntu Server versions and their corresponding security repositories, adding support up to Ubuntu Server 25.04

Security assessment

The change clarifies which security repositories are used when 'Include nonsecurity updates' is disabled, but does not address a specific security vulnerability. It enhances documentation about security update sources for newer Ubuntu versions.

Diff

diff --git a/systems-manager/latest/userguide/patch-manager-compliance-states.md b/systems-manager/latest/userguide/patch-manager-compliance-states.md
index 4ea0ee215..64974fef4 100644
--- a//systems-manager/latest/userguide/patch-manager-compliance-states.md
+++ b//systems-manager/latest/userguide/patch-manager-compliance-states.md
@@ -23 +23,30 @@ For Debian Server, Raspberry Pi OS, and Ubuntu Server, the rules for package cla
-Keep the following in mind when you're evaluating the `INSTALLED`, `INSTALLED_OTHER`, and `MISSING` status values: If you don't select the **Include nonsecurity updates** check box when creating or updating a patch baseline, patch candidate versions are limited to patches included in `trusty-security` (Ubuntu Server 14.04 LTS), `xenial-security` (Ubuntu Server 16.04 LTS), `bionic-security` (Ubuntu Server 18.04 LTS), `focal-security` (Ubuntu Server 20.04 LTS), `groovy-security` (Ubuntu Server 20.10 STR), `jammy-security` (Ubuntu Server 22.04 LTS), or `debian-security` (Debian Server and Raspberry Pi OS). If you do select the **Include nonsecurity updates** check box, patches from other repositories are considered as well.
+Keep the following in mind when you're evaluating the `INSTALLED`, `INSTALLED_OTHER`, and `MISSING` status values: If you don't select the **Include nonsecurity updates** check box when creating or updating a patch baseline, patch candidate versions are limited to patches in the following repositories: . 
+
+  * Ubuntu Server 14.04 LTS: `trusty-security`
+
+  * Ubuntu Server 16.04 LTS: `xenial-security`
+
+  * Ubuntu Server 18.04 LTS: `bionic-security`
+
+  * Ubuntu Server 20.04 LTS: `focal-security`
+
+  * Ubuntu Server 20.10 STR: `groovy-security`
+
+  * Ubuntu Server 22.04 LTS (`jammy-security`)
+
+  * Ubuntu Server 23.04 (`lunar-security`)
+
+  * Ubuntu Server 23.10 (`mantic-security`)
+
+  * Ubuntu Server 24.04 LTS (`noble-security`)
+
+  * Ubuntu Server 24.10 (`oracular-security`)
+
+  * Ubuntu Server 25.04 (`plucky-security`)
+
+  * `debian-security` (Debian Server and Raspberry Pi OS)
+
+
+
+
+If you do select the **Include nonsecurity updates** check box, patches from other repositories are considered as well.