# Amazon Linux 2 version 2.0.20231206.0 release notes December 11, 2023 These are the release notes for Amazon Linux 2 version 2.0.20231206.0. ## Major updates None. ## Package updates The following packages were updated. | Updated packages | | --- | | `gawk-4.0.2-4.amzn2.1.3.aarch64` | | `gawk-4.0.2-4.amzn2.1.3.x86_64` | | `gmp-6.0.0-15.amzn2.0.3.aarch64` | | `gmp-6.0.0-15.amzn2.0.3.x86_64` | | `kernel-4.14.330-250.540.amzn2.aarch64` | | `kernel-4.14.330-250.540.amzn2.x86_64` | | `kernel-5.10.201-191.748.amzn2.aarch64` | | `kernel-5.10.201-191.748.amzn2.x86_64` | | `kernel-devel-4.14.330-250.540.amzn2.x86_64` | | `kernel-headers-4.14.330-250.540.amzn2.x86_64` | | `kernel-tools-4.14.330-250.540.amzn2.aarch64` | | `kernel-tools-4.14.330-250.540.amzn2.x86_64` | | `kernel-tools-5.10.201-191.748.amzn2.aarch64` | | `kernel-tools-5.10.201-191.748.amzn2.x86_64` | | `libX11-1.6.7-3.amzn2.0.5.x86_64` | | `libX11-common-1.6.7-3.amzn2.0.5.noarch` | | `libseccomp-2.5.2-1.amzn2.aarch64` | | `libseccomp-2.5.2-1.amzn2.x86_64` | | `libtiff-4.0.3-35.amzn2.0.20.aarch64` | | `libtiff-4.0.3-35.amzn2.0.20.x86_64` | | `openssl-1.0.2k-24.amzn2.0.11.aarch64` | | `openssl-1.0.2k-24.amzn2.0.11.x86_64` | | `openssl-libs-1.0.2k-24.amzn2.0.11.aarch64` | | `openssl-libs-1.0.2k-24.amzn2.0.11.x86_64` | | `python3-pip-20.2.2-1.amzn2.0.5.noarch` | | `vim-common-9.0.2120-1.amzn2.0.1.aarch64` | | `vim-common-9.0.2120-1.amzn2.0.1.x86_64` | | `vim-data-9.0.2120-1.amzn2.0.1.noarch` | | `vim-enhanced-9.0.2120-1.amzn2.0.1.aarch64` | | `vim-enhanced-9.0.2120-1.amzn2.0.1.x86_64` | | `vim-filesystem-9.0.2120-1.amzn2.0.1.noarch` | | `vim-minimal-9.0.2120-1.amzn2.0.1.aarch64` | | `vim-minimal-9.0.2120-1.amzn2.0.1.x86_64` | | `xorg-x11-server-Xorg-1.20.4-22.amzn2.0.2.x86_64` | | `xorg-x11-server-common-1.20.4-22.amzn2.0.2.x86_64` | | `xxd-9.0.2120-1.amzn2.0.1.aarch64` | | `xxd-9.0.2120-1.amzn2.0.1.x86_64` | Packages with CVEs **gawk-4.0.2-4.amzn2.1.3** CVE fixed: + [CVE-2023-4156](https://alas.aws.amazon.com/cve/html/CVE-2023-4156.html) **gmp-6.0.0-15.amzn2.0.3** CVE fixed: + [CVE-2021-43618](https://alas.aws.amazon.com/cve/html/CVE-2021-43618.html) **kernel-4.14.330-250.540.amzn2**, **kernel-devel-4.14.330-250.540.amzn2**, **kernel-headers-4.14.330-250.540.amzn2**, **kernel-tools-4.14.330-250.540.amzn2** CVE fixed: + [CVE-2023-3567](https://alas.aws.amazon.com/cve/html/CVE-2023-3567.html) **libX11-1.6.7-3.amzn2.0.5**, **libX11-common-1.6.7-3.amzn2.0.5** CVE fixed: + [CVE-2023-43786](https://alas.aws.amazon.com/cve/html/CVE-2023-43786.html) **libtiff-4.0.3-35.amzn2.0.20** CVE fixed: + [CVE-2023-6277](https://alas.aws.amazon.com/cve/html/CVE-2023-6277.html) **openssl-1.0.2k-24.amzn2.0.11**, **openssl-libs-1.0.2k-24.amzn2.0.11** CVE fixed: + [CVE-2023-5678](https://alas.aws.amazon.com/cve/html/CVE-2023-5678.html) **python3-pip-20.2.2-1.amzn2.0.5** CVE fixed: + [CVE-2023-5752](https://alas.aws.amazon.com/cve/html/CVE-2023-5752.html) **vim-common-9.0.2120-1.amzn2.0.1**, **vim-data-9.0.2120-1.amzn2.0.1**, **vim-enhanced-9.0.2120-1.amzn2.0.1**, **vim-filesystem-9.0.2120-1.amzn2.0.1**, **vim-minimal-9.0.2120-1.amzn2.0.1**, **xxd-9.0.2120-1.amzn2.0.1** CVEs fixed: + [CVE-2023-48231](https://alas.aws.amazon.com/cve/html/CVE-2023-48231.html) + [CVE-2023-48232](https://alas.aws.amazon.com/cve/html/CVE-2023-48232.html) + [CVE-2023-48233](https://alas.aws.amazon.com/cve/html/CVE-2023-48233.html) + [CVE-2023-48234](https://alas.aws.amazon.com/cve/html/CVE-2023-48234.html) + [CVE-2023-48235](https://alas.aws.amazon.com/cve/html/CVE-2023-48235.html) + [CVE-2023-48236](https://alas.aws.amazon.com/cve/html/CVE-2023-48236.html) + [CVE-2023-48237](https://alas.aws.amazon.com/cve/html/CVE-2023-48237.html) **xorg-x11-server-Xorg-1.20.4-22.amzn2.0.2**, **xorg-x11-server-common-1.20.4-22.amzn2.0.2** CVE fixed: + [CVE-2023-5574](https://alas.aws.amazon.com/cve/html/CVE-2023-5574.html)