# Amazon Linux 2 version 2.0.20250902.3 release notes 2.0.20250902 These are the release notes for Amazon Linux 2 version 2.0.20250902.3. **Contents** + [ ## Announcements ](#announcements-20250902) + [ ## Release Summary ](#release-summary-20250902) + [ ## Repository Updates ](#repository-updates-20250902) + [ ### Core Updated Packages ](#amis-2.0.20250902.Core-Updated-Packages) + [ ### [AL2 Extras] Aws-nitro-enclaves-cli Updated Packages ](#amis-2.0.20250902.AL2-Extras-Aws-nitro-enclaves-cli-Updated-Packages) + [ ### [AL2 Extras] Docker Updated Packages ](#amis-2.0.20250902.AL2-Extras-Docker-Updated-Packages) + [ ### [AL2 Extras] Ecs Updated Packages ](#amis-2.0.20250902.AL2-Extras-Ecs-Updated-Packages) + [ ### [AL2 Extras] Kernel-5.10 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Kernel-5-10-Updated-Packages) + [ ### [AL2 Extras] Kernel-5.15 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Kernel-5-15-Updated-Packages) + [ ### [AL2 Extras] Kernel-5.4 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Kernel-5-4-Updated-Packages) + [ ### [AL2 Extras] Postgresql13 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Postgresql13-Updated-Packages) + [ ### [AL2 Extras] Postgresql14 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Postgresql14-Updated-Packages) + [ ### [AL2 Extras] Tomcat9 Updated Packages ](#amis-2.0.20250902.AL2-Extras-Tomcat9-Updated-Packages) + [ ## Image Updates ](#ami-updates-20250902) + [ ### Default Kernel-5.10 AMI ](#amis-2.0.20250902.Default-Kernel-5-10-AMI) ## Announcements **Note** Amazon Linux 2 will reach end of life on June 30, 2026. For more information, see [Amazon Linux 2 FAQs](https://aws.amazon.com/amazon-linux-2/faqs/#topic-0). Amazon Linux will end live patching for AL2 Kernel 4.14 on 2025-10-31. Customers are encouraged to use kernel 5.10 as the default kernel for AL2 or move to AL2023 with kernels 6.1 and 6.12. Amazon Linux will provide live patches for AL2 Kernel 5.10 until the end of life of AL2 on 2026-06-30. ## Release Summary Updated packages[https://docs.aws.amazon.com/AL2/latest/relnotes/relnotes-20250902.html](https://docs.aws.amazon.com/AL2/latest/relnotes/relnotes-20250902.html) Amazon Linux 2 2.0.20250902.3 includes updated packages for this release. This release of Amazon Linux 2 includes the latest security updates. **Notable updates** + Amazon Linux will stop evaluating and fixing CVEs for the redis6 Amazon Linux 2 Extras on **2026-01-31**. With the release of Redis 8, upstream security support for Redis 6.2 will be ending in 2025. We recommend that customers migrate to [Valkey in Amazon Linux 2023](https://docs.aws.amazon.com/linux/al2023/ug/redis6-to-valkey-al2023.html). Redis 6 is provided in Amazon Linux 2023 which may help with migrating from AL2 to AL2023. However, security support for Redis 6 in AL2023 will also be ending on **2026-01-31**. + krb5: The KDC will not issue tickets with triple-DES or RC4 session keys unless explicitly configured using the new allow\$1des3 and allow\$1rc4 variables in [libdefaults]. This change resolves CVE-2025-3576. **Note** Starting with this Amazon Linux 2 release, we have added additional SSM parameters to clearly indicate the kernel version installed on the AMIs: (Existing): SSM parameters containing "kernel-5.10" in their name indicate kernel-5.10 is installed on the AMI (Existing): SSM parameters without any kernel reference in their name indicate kernel-4.14 is installed on the AMI (New): SSM parameters containing "kernel-4.14" in their name reference the same AMI IDs as (2) above (New): SSM parameters containing "kernel-default" in their name reference the latest kernel AMI IDs, which are currently the same as (1) above These changes are additive; however, we strongly recommend that customers migrate to the latest kernel version (kernel-5.10) by using either option (1) or (4) above. **Security updates** + For information on the CVEs addressed in this release, see the [ Amazon Linux Security Center](https://alas.aws.amazon.com/alas2.html). + For visibility into the status of CVEs that haven't been addressed yet, see the [ Amazon Linux Security Center](https://explore.alas.aws.amazon.com/). ## Repository Updates ### Core Updated Packages This section provides details about core updated packages. | | | --- | | ImageMagick-6.9.10.97-1.amzn2.0.15 | | aws-cfn-bootstrap-2.0-36.amzn2 | | cairo-1.15.12-4.amzn2.0.1 | | cloud-init-19.3-46.amzn2.0.7 | | compat-libtiff3-3.9.4-12.amzn2.0.5 | | giflib-4.1.6-9.amzn2.0.3 | | golang-1.24.6-1.amzn2.0.1 | | httpd-2.4.65-1.amzn2.0.2 | | kernel-4.14.355-280.679.amzn2 | | krb5-1.15.1-55.amzn2.2.9 | | libxml2-2.9.1-6.amzn2.5.20 | | mod\$1security-2.9.12-1.amzn2.0.1 | | ruby-2.0.0.648-36.amzn2.0.17 | | rust-1.86.0-1.amzn2.0.3 | | samba-4.10.16-24.amzn2.0.5 | | udisks2-2.7.3-9.amzn2.0.4 | | vorbis-tools-1.4.0-13.amzn2.0.1 | ### [AL2 Extras] Aws-nitro-enclaves-cli Updated Packages This section provides details about [al2 extras] aws-nitro-enclaves-cli updated packages. | | | --- | | docker-25.0.8-1.amzn2.0.6 | ### [AL2 Extras] Docker Updated Packages This section provides details about [al2 extras] docker updated packages. | | | --- | | docker-25.0.8-1.amzn2.0.6 | | runfinch-finch-1.10.0-1.amzn2.0.4 | ### [AL2 Extras] Ecs Updated Packages This section provides details about [al2 extras] ecs updated packages. | | | --- | | ecs-init-1.98.0-1.amzn2 | ### [AL2 Extras] Kernel-5.10 Updated Packages This section provides details about [al2 extras] kernel-5.10 updated packages. | | | --- | | kernel-5.10.240-238.966.amzn2 | ### [AL2 Extras] Kernel-5.15 Updated Packages This section provides details about [al2 extras] kernel-5.15 updated packages. | | | --- | | kernel-5.15.189-131.211.amzn2 | ### [AL2 Extras] Kernel-5.4 Updated Packages This section provides details about [al2 extras] kernel-5.4 updated packages. | | | --- | | kernel-5.4.296-217.428.amzn2 | ### [AL2 Extras] Postgresql13 Updated Packages This section provides details about [al2 extras] postgresql13 updated packages. | | | --- | | libpq-13.22-1.amzn2.0.1 | | postgresql-13.22-1.amzn2.0.1 | ### [AL2 Extras] Postgresql14 Updated Packages This section provides details about [al2 extras] postgresql14 updated packages. | | | --- | | libpq-14.19-1.amzn2.0.2 | | postgresql-14.19-1.amzn2.0.1 | ### [AL2 Extras] Tomcat9 Updated Packages This section provides details about [al2 extras] tomcat9 updated packages. | | | --- | | tomcat-9.0.108-1.amzn2.0.1 | ## Image Updates ### Default Kernel-5.10 AMI This section provides details about default kernel-5.10 ami. | | | --- | | aws-cfn-bootstrap-2.0-36.amzn2 | | cloud-init-19.3-46.amzn2.0.7 | | kernel-tools-5.10.240-238.966.amzn2 | | kernel-5.10.240-238.966.amzn2 | | krb5-libs-1.15.1-55.amzn2.2.9 | | libxml2-python-2.9.1-6.amzn2.5.20 | | libxml2-2.9.1-6.amzn2.5.20 |