AWS Security ChangesHomeSearch

AWS elasticbeanstalk high security documentation change

Service: elasticbeanstalk · 2025-11-13 · Security-related high

File: elasticbeanstalk/latest/relnotes/relnotes.md

Summary

Added release note about Docker platform update addressing runc library CVE

Security assessment

Explicitly mentions addressing a CVE-related regression in runc library that prevented ECS agent startup, indicating a security vulnerability fix.

Diff

diff --git a/elasticbeanstalk/latest/relnotes/relnotes.md b/elasticbeanstalk/latest/relnotes/relnotes.md
index df46616a4..1c628b6d3 100644
--- a//elasticbeanstalk/latest/relnotes/relnotes.md
+++ b//elasticbeanstalk/latest/relnotes/relnotes.md
@@ -12,0 +13 @@ Change| Description| Date
+[Release: Elastic Beanstalk Amazon Linux 2023 and Amazon Linux 2 Docker platform updates](https://docs.aws.amazon.com/elasticbeanstalk/latest/relnotes/release-2025-11-09-al-docker-ecs-cve.html)| This release is an emergent AWS Elastic Beanstalk Docker platform update for Amazon Linux 2023 and Amazon Linux 2. It addresses a regression in the runc-1.3.2-2 library that causes directory permission issues preventing the ECS agent from starting.| November 9, 2025