本文為英文版的機器翻譯版本,如內容有任何歧義或不一致之處,概以英文版為準。
# Amazon Linux 2023 2023.8.20250721 版本備註
這些是 Amazon Linux 2023 (AL2023) 2023.8.20250721 版的版本備註。
**Contents**
+ [版本摘要](#release-summary-2023.8.20250721)
+ [重要建議通知](#important-advisory-notice-2023.8.20250721)
+ [AL2023 核心](#al2023-core-advisories-2023.8.20250721)
+ [AL2023 Kernel-Livepatch](#al2023-kernel-livepatch-advisories-2023.8.20250721)
+ [儲存庫更新](#repository-updates-2023.8.20250721)
+ [核心新套件](#amis-2023.8.20250721.Core-New-Packages)
+ [核心更新套件](#amis-2023.8.20250721.Core-Updated-Packages)
+ [Kernel-livepatch 新套件](#amis-2023.8.20250721.Kernel-livepatch-New-Packages)
+ [Kernel-livepatch 更新套件](#amis-2023.8.20250721.Kernel-livepatch-Updated-Packages)
+ [映像更新](#ami-updates-2023.8.20250721)
+ [預設核心 6.1 AMI](#amis-2023.8.20250721.Default-Kernel-6-1-AMI)
+ [最小核心 6.1 AMI](#amis-2023.8.20250721.Minimal-Kernel-6-1-AMI)
+ [預設核心 6.12 AMI](#amis-2023.8.20250721.Default-Kernel-6-12-AMI)
+ [最小核心 6.12 AMI](#amis-2023.8.20250721.Minimal-Kernel-6-12-AMI)
+ [預設容器](#amis-2023.8.20250721.Default-Container)
+ [最小容器](#amis-2023.8.20250721.Minimal-Container)
+ [聯絡我們](#amis-2023.8.20250721.contact-us)
## 版本摘要
此版本代表 AL2023 第 8 個季度版本的更新。AL2023 是的新一代 Amazon Linux。它提供五年的支援,並將決定性更新和 Graviton 處理器更好的最佳化等功能帶入 Amazon Linux。AL2023 已準備好用於生產工作負載,您可以立即從舊版的 Amazon Linux 開始遷移。
**顯著更新**
+ **kernel6.12 套件重新命名:**`kernel6.12`子套件已重新命名,且 6.1 的 RPM epoch `kernel` `kernel6.12` 已增加至 1。這會影響 6.12 核心客戶的更新程序。核心子套件需要明確地交換到其對應的 6.12 套件,這些套件現在具有包含主要版本 的不同名稱`6.12`。請參閱 [kernel6.12 的更新文件。](https://docs.aws.amazon.com/linux/al2023/ug/kernel-update.html)
**注意**
從現在開始,需要 核心開發套件的客戶`kernel6.12`需要安裝 `kernel6.12-devel`。
+ AL2023 kernel-6.1 和 kernel-6.12 已啟用 CONFIG\$1LRU\$1GEN 功能
**安全性更新**
+ 如需上一版中解決CVEs 相關資訊,請參閱 [ Amazon Linux 安全中心](https://alas.aws.amazon.com/alas2023.html)。
+ 如需尚未解決的 CVEs 狀態的可見性,請參閱 [ Amazon Linux 安全中心](https://explore.alas.aws.amazon.com/)。
## 重要建議通知
儲存庫中繼資料和 ALAS 網站缺少與此版本中套件相關聯的安全建議。因此,依賴儲存庫中繼資料來追蹤或套用安全性更新 (即「dnf/yum update --security」) 的系統將無法得知此版本中可用的新更新。利用最新 AMIs的系統將擁有最新的更新。
我們了解安全可見性和合規的重要性,並且正在積極努力解決此問題。包含儲存庫中繼資料的後續版本將在 2025 年 7 月 28 日當週發佈。
此版本所修正的 CVEs 完整清單包括:
### AL2023 核心
| 新套件 NVR | 舊套件 NVR | CVE(s) |
| --- | --- | --- |
| bind-9.18.33-1.amzn2023.0.3 | bind-9.18.33-1.amzn2023.0.2 | CVE-2025-40777 |
| ecs-init-1.96.0-1.amzn2023 | ecs-init-1.95.0-1.amzn2023 | CVE-2025-22874, CVE-2025-4673 |
| git-2.50.1-1.amzn2023.0.1 | git-2.47.1-1.amzn2023.0.3 | CVE-2025-27613, CVE-2025-27614, CVE-2025-46835, CVE-2025-48384, CVE-2025-48385 |
| gnupg2-2.3.7-1.amzn2023.0.5 | gnupg2-2.3.7-1.amzn2023.0.4 | CVE-2025-30258 |
| golang-1.24.5-1.amzn2023.0.1 | golang-1.24.4-1.amzn2023.0.1 | CVE-2025-4674 |
| java-1.8.0-amazon-corretto-1.8.0\$1462.b08-1.amzn2023 | java-1.8.0-amazon-corretto-1.8.0\$1452.b09-2.amzn2023 | CVE-2025-30749, CVE-2025-30754, CVE-2025-30761, CVE-2025-50106 |
| java-11-amazon-corretto-11.0.28\$16-1.amzn2023 | java-11-amazon-corretto-11.0.27\$16-1.amzn2023 | CVE-2025-30749, CVE-2025-30754, CVE-2025-30761, CVE-2025-50059, CVE-2025-50106 |
| java-17-amazon-corretto-17.0.16\$18-1.amzn2023.1 | java-17-amazon-corretto-17.0.15\$16-1.amzn2023.1 | CVE-2025-30749, CVE-2025-30754, CVE-2025-50059, CVE-2025-50106 |
| java-21-amazon-corretto-21.0.8\$19-1.amzn2023.1 | java-21-amazon-corretto-21.0.7\$16-1.amzn2023.1 | CVE-2025-30749, CVE-2025-30754, CVE-2025-50059, CVE-2025-50106 |
| java-24-amazon-corretto-24.0.2\$112-1.amzn2023.1 | java-24-amazon-corretto-24.0.1\$19-1.amzn2023.1 | CVE-2025-30749, CVE-2025-30754, CVE-2025-50059, CVE-2025-50106 |
| jq-1.7.1-50.amzn2023 | jq-1.7.1-49.amzn2023.0.2 | CVE-2024-23337 |
| kernel-6.1.144-170.251.amzn2023 | kernel-6.1.141-165.249.amzn2023 | CVE-2024-36913, CVE-2024-41013, CVE-2024-57883, CVE-2025-37807, CVE-2025-37958 |
| libarchive-3.7.4-2.amzn2023.0.4 | libarchive-3.7.4-2.amzn2023.0.3 | CVE-2025-5915, CVE-2025-5917 |
| libxml2-2.10.4-1.amzn2023.0.12 | libxml2-2.10.4-1.amzn2023.0.11 | CVE-2025-49794, CVE-2025-49795, CVE-2025-49796 |
| mtr-0.95-3.amzn2023.0.2 | mtr-0.95-3.amzn2023.0.1 | CVE-2025-49809 |
| php8.1-8.1.33-1.amzn2023.0.1 | php8.1-8.1.32-1.amzn2023.0.1 | CVE-2025-1220, CVE-2025-1735, CVE-2025-6491 |
| php8.2-8.2.29-1.amzn2023.0.1 | php8.2-8.2.28-1.amzn2023.0.1 | CVE-2025-1220, CVE-2025-1735, CVE-2025-6491 |
| php8.3-8.3.23-1.amzn2023.0.1 | php8.3-8.3.22-1.amzn2023.0.1 | CVE-2025-1220, CVE-2025-1735, CVE-2025-6491 |
| php8.4-8.4.10-1.amzn2023.0.1 | php8.4-8.4.8-1.amzn2023.0.1 | CVE-2025-1220, CVE-2025-1735, CVE-2025-6491 |
| python-pip-21.3.1-2.amzn2023.0.13 | python-pip-21.3.1-2.amzn2023.0.12 | CVE-2025-50181 |
| python-requests-2.25.1-1.amzn2023.0.6 | python-requests-2.25.1-1.amzn2023.0.5 | CVE-2024-47081 |
| python3.11-3.11.13-1.amzn2023.0.2 | python3.11-3.11.12-2.amzn2023.0.2 | CVE-2025-6069 |
| python3.11-pip-22.3.1-2.amzn2023.0.7 | python3.11-pip-22.3.1-2.amzn2023.0.6 | CVE-2024-47081, CVE-2025-50181 |
| python3.12-pip-23.2.1-4.amzn2023.0.5 | python3.12-pip-23.2.1-4.amzn2023.0.3 | CVE-2025-50181 |
| python3.9-3.9.23-1.amzn2023.0.2 | python3.9-3.9.22-1.amzn2023.0.2 | CVE-2025-6069 |
| ruby3.2-3.2.8-184.amzn2023.0.2 | ruby3.2-3.2.8-184.amzn2023.0.1 | CVE-2025-6442 |
| rust-1.88.0-1.amzn2023.0.2 | rust-1.87.0-1.amzn2023.0.1 | CVE-2025-53605 |
| tomcat10-10.1.43-1.amzn2023.0.1 | tomcat10-10.1.42-1.amzn2023.0.1 | CVE-2025-53506 |
| tomcat9-9.0.107-1.amzn2023.0.1 | tomcat9-9.0.106-1.amzn2023.0.1 | CVE-2025-52434, CVE-2025-53506 |
### AL2023 Kernel-Livepatch
| 新套件 NVR | 舊套件 NVR | CVE(s) |
| --- | --- | --- |
| kernel-livepatch-6.1.140-154.222-1.0-1.amzn2023 | 這是新的 | CVE-2025-38000, CVE-2025-38003 |
| kernel-livepatch-6.12.25-32.101-1.0-1.amzn2023 | 這是新的 | CVE-2025-38037 |
| kernel-livepatch-6.12.29-33.102-1.0-1.amzn2023 | 這是新的 | CVE-2025-38037 |
| kernel-livepatch-6.12.30-34.92-1.0-1.amzn2023 | 這是新的 | CVE-2025-38037 |
| kernel-livepatch-6.1.134-150.224-1.0-3.amzn2023 | kernel-livepatch-6.1.134-150.224-1.0-2.amzn2023 | CVE-2025-38000, CVE-2025-38003 |
| kernel-livepatch-6.1.134-152.225-1.0-3.amzn2023 | kernel-livepatch-6.1.134-152.225-1.0-2.amzn2023 | CVE-2025-38000, CVE-2025-38003 |
## 儲存庫更新
### 核心新套件
本節提供有關核心新套件的詳細資訊。
| |
| --- |
| python3.13-3.13.3-3.amzn2023.0.4 |
| python3.13-flit-core-3.9.0-9.amzn2023.0.3 |
| python3.13-packaging-24.2-92.amzn2023 |
| python3.13-pip-24.2-259.amzn2023.0.1 |
| python3.13-setuptools-69.2.0-382.amzn2023 |
| python3.13-wheel-0.43.0-103.amzn2023 |
### 核心更新套件
本節提供有關核心更新套件的詳細資訊。
| |
| --- |
| amazon-ec2-net-utils-2.7.0-1.amzn2023.0.1 |
| aws-cfn-bootstrap-2.0-35.amzn2023 |
| bind-9.18.33-1.amzn2023.0.3 |
| ecs-init-1.96.0-1.amzn2023 |
| git-2.50.1-1.amzn2023.0.1 |
| gnome-control-center-47.3-196.amzn2023 |
| gnupg2-2.3.7-1.amzn2023.0.5 |
| golang-1.24.5-1.amzn2023.0.1 |
| java-1.8.0-amazon-corretto-1.8.0\$1462.b08-1.amzn2023 |
| java-11-amazon-corretto-11.0.28\$16-1.amzn2023 |
| java-17-amazon-corretto-17.0.16\$18-1.amzn2023.1 |
| java-21-amazon-corretto-21.0.8\$19-1.amzn2023.1 |
| java-24-amazon-corretto-24.0.2\$112-1.amzn2023.1 |
| jq-1.7.1-50.amzn2023 |
| kernel-6.1.144-170.251.amzn2023 |
| kernel6.12-6.12.37-61.105.amzn2023 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libsigc\$1\$130-3.6.0-3.amzn2023.0.1 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| mtr-0.95-3.amzn2023.0.2 |
| nerdctl-2.1.3-1.amzn2023.0.1 |
| php8.1-8.1.33-1.amzn2023.0.1 |
| php8.2-8.2.29-1.amzn2023.0.1 |
| php8.3-8.3.23-1.amzn2023.0.1 |
| php8.4-8.4.10-1.amzn2023.0.1 |
| python-pip-21.3.1-2.amzn2023.0.13 |
| python-requests-2.25.1-1.amzn2023.0.6 |
| python3.11-3.11.13-1.amzn2023.0.2 |
| python3.11-pip-22.3.1-2.amzn2023.0.7 |
| python3.12-pip-23.2.1-4.amzn2023.0.5 |
| python3.9-3.9.23-1.amzn2023.0.2 |
| ruby3.2-3.2.8-184.amzn2023.0.2 |
| runfinch-finch-1.10.0-1.amzn2023.0.1 |
| rust-1.88.0-1.amzn2023.0.2 |
| showtime-48.1-10.amzn2023 |
| soci-snapshotter-0.11.1-1.amzn2023.0.1 |
| system-release-2023.8.20250721-0.amzn2023 |
| systemtap-5.2-1.amzn2023.0.5 |
| tomcat10-10.1.43-1.amzn2023.0.1 |
| tomcat9-9.0.107-1.amzn2023.0.1 |
### Kernel-livepatch 新套件
本節提供有關 kernel-livepatch 新套件的詳細資訊。
| |
| --- |
| kernel-livepatch-6.1.140-154.222-1.0-1.amzn2023 |
| kernel-livepatch-6.12.25-32.101-1.0-1.amzn2023 |
| kernel-livepatch-6.12.29-33.102-1.0-1.amzn2023 |
| kernel-livepatch-6.12.30-34.92-1.0-1.amzn2023 |
### Kernel-livepatch 更新套件
本節提供有關 kernel-livepatch 更新套件的詳細資訊。
| |
| --- |
| kernel-livepatch-6.1.134-150.224-1.0-3.amzn2023 |
| kernel-livepatch-6.1.134-152.225-1.0-3.amzn2023 |
## 映像更新
### 預設核心 6.1 AMI
本節提供有關預設核心 6.1 ami 的詳細資訊。
| |
| --- |
| amazon-ec2-net-utils-2.7.0-1.amzn2023.0.1 |
| amazon-linux-repo-s3-2023.8.20250721-0.amzn2023 |
| aws-cfn-bootstrap-2.0-35.amzn2023 |
| bind-libs-32:9.18.33-1.amzn2023.0.3 |
| bind-license-32:9.18.33-1.amzn2023.0.3 |
| bind-utils-32:9.18.33-1.amzn2023.0.3 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| jq-1.7.1-50.amzn2023 |
| kernel-libbpf-1:6.1.144-170.251.amzn2023 |
| kernel-livepatch-repo-s3-2023.8.20250721-0.amzn2023 |
| kernel-tools-1:6.1.144-170.251.amzn2023 |
| kernel-1:6.1.144-170.251.amzn2023 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| python3-libs-3.9.23-1.amzn2023.0.2 |
| python3-pip-wheel-21.3.1-2.amzn2023.0.13 |
| python3-requests-2.25.1-1.amzn2023.0.6 |
| python3-3.9.23-1.amzn2023.0.2 |
| rust-toolset-srpm-macros-1.88.0-1.amzn2023.0.2 |
| system-release-2023.8.20250721-0.amzn2023 |
| systemtap-runtime-5.2-1.amzn2023.0.5 |
### 最小核心 6.1 AMI
本節提供有關最低核心 6.1 ami 的詳細資訊。
| |
| --- |
| amazon-ec2-net-utils-2.7.0-1.amzn2023.0.1 |
| amazon-linux-repo-s3-2023.8.20250721-0.amzn2023 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| jq-1.7.1-50.amzn2023 |
| kernel-libbpf-1:6.1.144-170.251.amzn2023 |
| kernel-livepatch-repo-s3-2023.8.20250721-0.amzn2023 |
| kernel-1:6.1.144-170.251.amzn2023 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| python3-libs-3.9.23-1.amzn2023.0.2 |
| python3-pip-wheel-21.3.1-2.amzn2023.0.13 |
| python3-requests-2.25.1-1.amzn2023.0.6 |
| python3-3.9.23-1.amzn2023.0.2 |
| system-release-2023.8.20250721-0.amzn2023 |
### 預設核心 6.12 AMI
本節提供有關預設核心 6.12 ami 的詳細資訊。
| |
| --- |
| amazon-ec2-net-utils-2.7.0-1.amzn2023.0.1 |
| amazon-linux-repo-s3-2023.8.20250721-0.amzn2023 |
| aws-cfn-bootstrap-2.0-35.amzn2023 |
| bind-libs-32:9.18.33-1.amzn2023.0.3 |
| bind-license-32:9.18.33-1.amzn2023.0.3 |
| bind-utils-32:9.18.33-1.amzn2023.0.3 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| jq-1.7.1-50.amzn2023 |
| kernel-livepatch-repo-s3-2023.8.20250721-0.amzn2023 |
| kernel6.12-libbpf-1:6.12.37-61.105.amzn2023 |
| kernel6.12-tools-1:6.12.37-61.105.amzn2023 |
| kernel6.12-1:6.12.37-61.105.amzn2023 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| python3-libs-3.9.23-1.amzn2023.0.2 |
| python3-pip-wheel-21.3.1-2.amzn2023.0.13 |
| python3-requests-2.25.1-1.amzn2023.0.6 |
| python3-3.9.23-1.amzn2023.0.2 |
| rust-toolset-srpm-macros-1.88.0-1.amzn2023.0.2 |
| system-release-2023.8.20250721-0.amzn2023 |
| systemtap-runtime-5.2-1.amzn2023.0.5 |
### 最小核心 6.12 AMI
本節提供最低核心 6.12 ami 的詳細資訊。
| |
| --- |
| amazon-ec2-net-utils-2.7.0-1.amzn2023.0.1 |
| amazon-linux-repo-s3-2023.8.20250721-0.amzn2023 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| jq-1.7.1-50.amzn2023 |
| kernel-livepatch-repo-s3-2023.8.20250721-0.amzn2023 |
| kernel6.12-libbpf-1:6.12.37-61.105.amzn2023 |
| kernel6.12-1:6.12.37-61.105.amzn2023 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| python3-libs-3.9.23-1.amzn2023.0.2 |
| python3-pip-wheel-21.3.1-2.amzn2023.0.13 |
| python3-requests-2.25.1-1.amzn2023.0.6 |
| python3-3.9.23-1.amzn2023.0.2 |
| system-release-2023.8.20250721-0.amzn2023 |
### 預設容器
本節提供有關預設容器的詳細資訊。
| |
| --- |
| amazon-linux-repo-cdn-2023.8.20250721-0.amzn2023 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| python3-libs-3.9.23-1.amzn2023.0.2 |
| python3-pip-wheel-21.3.1-2.amzn2023.0.13 |
| python3-3.9.23-1.amzn2023.0.2 |
| system-release-2023.8.20250721-0.amzn2023 |
### 最小容器
本節提供有關最小容器的詳細資訊。
| |
| --- |
| amazon-linux-repo-cdn-2023.8.20250721-0.amzn2023 |
| gnupg2-minimal-2.3.7-1.amzn2023.0.5 |
| libarchive-3.7.4-2.amzn2023.0.4 |
| libxml2-2.10.4-1.amzn2023.0.12 |
| system-release-2023.8.20250721-0.amzn2023 |
## 聯絡我們
如果您發現安全問題,[請聯絡我們的安全團隊](https://github.com/amazonlinux/amazon-linux-2023/security/policy),而不是開啟 GitHub 問題。
我們使用 GitHub 問題收集有關 AL2023 的意見回饋,並追蹤錯誤報告和功能要求。您可以查看[現有問題](https://github.com/amazonlinux/amazon-linux-2023/issues),以查看您的問題是否為已知問題。如果不是,請開啟[新問題](https://github.com/amazonlinux/amazon-linux-2023/issues/new/choose)。
如果您對 AL2023 有任何疑問,請隨時開始或參加[討論](https://github.com/amazonlinux/amazon-linux-2023/discussions)。您也可以透過指定的 AWS 代表提供 AL2023 的意見回饋。