Amazon Linux 2 version 2.0.20251014.0 release notes
These are the release notes for Amazon Linux 2 version 2.0.20251014.0.
Contents
Announcements
Note
-
Amazon Linux 2 will reach end of life on June 30, 2026. For more information, see Amazon Linux 2 FAQs
. -
Amazon Linux will end live patching for AL2 Kernel 4.14 on 2025-10-31. Customers are encouraged to use kernel 5.10 as the default kernel for AL2 or move to AL2023 with kernels 6.1 and 6.12.
-
Amazon Linux will provide live patches for AL2 Kernel 5.10 until the end of life of AL2 on 2026-06-30.
-
We have now added additional SSM parameters to clearly indicate the kernel version installed on the AMIs:
-
kernel-default represents our latest available kernel version (currently kernel-5.10)
-
For AMIs with kernel-5.10, use SSM parameters containing "kernel-5.10" or "kernel-default" in the parameter name (see examples below):
-
/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-5.10-hvm-x86_64-gp2 -
/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-default-hvm-x86_64-gp2
-
-
For AMIs with kernel-4.14, use SSM parameters containing "kernel-4.14" in the parameter name (see example below):
-
/aws/service/ami-amazon-linux-latest/amzn2-ami-kernel-4.14-hvm-x86_64-gp2
-
-
-
We strongly recommend that customers migrate to the latest kernel version (kernel-5.10)
Release Summary
This release of Amazon Linux 2 includes the latest security updates.
Notable updates
-
On February 1, 2026, Amazon Linux will end support for the
java-1.7.0-openjdkpackage in the Amazon Linux 2 core repository. Until then, Amazon Linux will continue to evaluate relevant CVEs, however security updates will be limited to "Critical" fixes only.The upstream OpenJDK project discontinued support for Java 7 in July 2022. We recommend customers move to using
java-1.8.0-openjdkin AL2 core repository,java-1.8.0-amazon-correttoin AL2corretto8extra, or any of the supported Corretto versions on Amazon Linux 2023. -
As part of the remediation for CVE-2025-46818, the Lua functions
getfenv,setfenv, andnewproxyhave been deprecated by default for Redis 6. If these functions are necessary to your workflow, the optionlua-enable-deprecated-apican be set to enable them.
Security updates
-
For information on the CVEs addressed in this release, see the Amazon Linux Security Center
. -
For visibility into the status of CVEs that haven't been addressed yet, see the Amazon Linux Security Center
.
Repository Updates
Core Updated Packages
This section provides details about core updated packages.
amazon-cloudwatch-agent-1.300059.1-1.amzn2
|
compat-libtiff3-3.9.4-12.amzn2.0.6
|
cups-1.6.3-51.amzn2.0.7
|
edk2-20240813-304.amzn2
|
gegl-0.2.0-19.amzn2.1.1
|
ghostscript-9.54.0-9.amzn2.0.13
|
kernel-4.14.355-280.698.amzn2
|
libtiff-4.0.3-35.amzn2.0.27
|
nvme-cli-1.11.1-1.amzn2.0.4
|
open-vm-tools-12.3.0-1.amzn2.0.4
|
openssl-1.0.2k-24.amzn2.0.16
|
openssl11-1.1.1zd-1.amzn2.0.1
|
polkit-0.112-26.amzn2.2.1
|
postgresql-9.2.24-8.amzn2.0.8
|
python-pip-20.2.2-1.amzn2.0.13
|
qemu-3.1.0-8.amzn2.0.20
|
sox-14.4.1-7.amzn2.0.3
|
squid-3.5.20-17.amzn2.7.24
|
webkitgtk4-2.48.7-1.amzn2
|
[AL2 Extras] Gimp Updated Packages
This section provides details about [al2 extras] gimp updated packages.
gimp-2.8.22-1.amzn2.0.8
|
[AL2 Extras] Openssl-snapsafe Updated Packages
This section provides details about [al2 extras] openssl-snapsafe updated packages.
openssl-snapsafe-1.0.2k-24.amzn2.0.16
|
Image Updates
Default Kernel-5.10 AMI
This section provides details about default kernel-5.10 ami.
kernel-tools-5.10.244-240.970.amzn2
|
kernel-5.10.244-240.970.amzn2
|
libtiff-4.0.3-35.amzn2.0.27
|
openssl-libs-1:1.0.2k-24.amzn2.0.16
|
openssl-1:1.0.2k-24.amzn2.0.16
|
python3-pip-20.2.2-1.amzn2.0.13
|
