AWS Security ChangesHomeSearch

AWS linux medium security documentation change

Service: linux · 2025-10-16 · Security-related medium

File: linux/al2023/release-notes/vercmp-AL2-AL2023.9.md

Summary

Updated release notes for AL2023.9 with package version comparisons between AL2 and AL2023.9. Includes updates to core packages (awscli, binutils, glibc, kernel), security-related packages (selinux-policy), and additions like mpg123/perl-Crypt modules. Version bumps for 50+ packages including amazon-ssm-agent, httpd, libtiff, and docker.

Security assessment

Security implications from updates to: 1) selinux-policy (38.1.50→38.1.65) which enforces security policies 2) kernel (6.1.148→6.1.153) likely containing security patches 3) Added perl-Crypt-CBC/DES for encryption support 4) libtiff/libvpx updates addressing potential CVEs 5) docker/containerd updates (CVE-2024-XXXX patterns). No explicit CVE mentions but these package types are common vulnerability carriers.

Diff