Microsoft's Azure Linux 3.0.20251021 Pulls In AppArmor & Other Updates
([Microsoft] 55 Minutes Ago
Azure Linux 3.0)
- Reference: 0001587568
- News link: https://www.phoronix.com/news/Azure-Linux-3.0.20251021
- Source link:
Microsoft today released Azure Linux 3.0.20251021 as the latest update to their in-house Linux distribution.
Azure Linux 3.0.20251021 pulls in AppArmor for additional security protections, now produces Azure Marketplace images with the Linux 6.12 LTS kernel, enables various additional kernel modules/features, enables DMA Peer-To-Peer (P2P) support, and patches numerous packages for new security fixes.
"Add apparmor into Azure Linux 3.0
Add libimobiledevice-glue to SPECS-EXTENDED
Add marketplace images for 6.12 kernels
Add python-spnego to SPECS-EXTENDED
Enable ARM64 build for ibarr/ibsim/mlnx-ethtool/multiperf
Enable Aquantia AQtion ethernet driver kernel configs
Enable DMA P2P
Enable arm64 build for OFED stack kernel modules
Enable ipmi panic string for kernel-64k, kernel-hwe
Fix apache-commons-pool2 build error
Fix cglib License Check build error
Fix coredns random rebuilds bug
Fix gl-manpages build error
Fix nginx stream ssl preread
Fix perl-Locale-Msgfmt build
Generic Kernel version-release: kernel-6.6.104.2-4
Patch binutils for CVE-2025-11083, CVE-2025-11082, CVE-2025-8225, CVE-2025-0840, CVE-2025-1176, CVE-2025-1178, CVE-2025-1181, CVE-2025-1182
Patch cmake for CVE-2025-10148
Patch containerized-data-importer for CVE-2025-58058
Patch coredns for CVE-2025-58063
Patch curl for CVE-2025-10148
Patch erlang for CVE-2025-48038, CVE-2025-48039, CVE-2025-48040, CVE-2025-48041
Patch expat for CVE-2025-59375
Patch fio for CVE-2025-10823
Patch glib for CVE-2025-7039
Patch glibc for CVE-2025-4802
Patch glibc for upstream patch bug #25847
Patch gdb for CVE-2025-11082
Patch jx for CVE-2025-58058
Patch keras for CVE-2025-9905, CVE-2025-9906
Patch libtiff for CVE-2024-13978
Patch openssl for CVEs
Patch packer for CVE-2025-58058
Patch perl-JSON-XS for CVE-2025-40928
Patch python-pip for CVE-2025-8869
Patch python3 for CVE-2025-8291
Patch skopeo for CVE-2025-58058
Patch systemd for CVE-2025-4598
Patch x/crypto and x/net for CVEs
Remove libyami-1.3.2 from SPECS_EXTENDED
Remove python-unittest2 from SPECS_EXTENDED
Switch to bootstrap toolchain from 3.0 container
Upgrade buildah to 1.41.4
Upgrade ca-certificates
Upgrade cppcheck to 2.18.3
Upgrade hwe OOT specs to match kernel-hwe
Upgrade ImageCustomizer to 1.0.0 and add semantic version and latest tag support for imagecustomizer golden container
Upgrade kernels to 6.6.104.2
Upgrade kronosnet to 1.29
Upgrade libpeas to 1.36.0
Upgrade mod_md to 2.4.26
Upgrade mod_security to 2.9.7
Upgrade mythes to 1.2.5
Upgrade mythes-ca to 2.3.1
Upgrade netsniff-ng to 0.6.9
Upgrade perl-File-Find-Object to 0.3.8
Upgrade perl-File-MimeInfo to 0.35
Upgrade perl-Test-Script to 1.29
Upgrade podman to 5.6.1
Upgrade python-aiodns to 3.2.0
Upgrade python-mutagen to 1.47.0
Upgrade python-pyperclip to 1.8.2
Upgrade python-testtools and python-fixtures
Upgrade rubygem-rouge to 4.4.0
Upgrade SymCrypt-OpenSSL to 1.9.2
Upgrade SymCrypt-OpenSSL to 1.9.3
Upgrade virt-top to 1.1.1"
Downloads and more details on the Azure Linux 3.0 update for October 2025 via [1]GitHub .
[1] https://github.com/microsoft/azurelinux/releases/tag/3.0.20251021-3.0
Azure Linux 3.0.20251021 pulls in AppArmor for additional security protections, now produces Azure Marketplace images with the Linux 6.12 LTS kernel, enables various additional kernel modules/features, enables DMA Peer-To-Peer (P2P) support, and patches numerous packages for new security fixes.
"Add apparmor into Azure Linux 3.0
Add libimobiledevice-glue to SPECS-EXTENDED
Add marketplace images for 6.12 kernels
Add python-spnego to SPECS-EXTENDED
Enable ARM64 build for ibarr/ibsim/mlnx-ethtool/multiperf
Enable Aquantia AQtion ethernet driver kernel configs
Enable DMA P2P
Enable arm64 build for OFED stack kernel modules
Enable ipmi panic string for kernel-64k, kernel-hwe
Fix apache-commons-pool2 build error
Fix cglib License Check build error
Fix coredns random rebuilds bug
Fix gl-manpages build error
Fix nginx stream ssl preread
Fix perl-Locale-Msgfmt build
Generic Kernel version-release: kernel-6.6.104.2-4
Patch binutils for CVE-2025-11083, CVE-2025-11082, CVE-2025-8225, CVE-2025-0840, CVE-2025-1176, CVE-2025-1178, CVE-2025-1181, CVE-2025-1182
Patch cmake for CVE-2025-10148
Patch containerized-data-importer for CVE-2025-58058
Patch coredns for CVE-2025-58063
Patch curl for CVE-2025-10148
Patch erlang for CVE-2025-48038, CVE-2025-48039, CVE-2025-48040, CVE-2025-48041
Patch expat for CVE-2025-59375
Patch fio for CVE-2025-10823
Patch glib for CVE-2025-7039
Patch glibc for CVE-2025-4802
Patch glibc for upstream patch bug #25847
Patch gdb for CVE-2025-11082
Patch jx for CVE-2025-58058
Patch keras for CVE-2025-9905, CVE-2025-9906
Patch libtiff for CVE-2024-13978
Patch openssl for CVEs
Patch packer for CVE-2025-58058
Patch perl-JSON-XS for CVE-2025-40928
Patch python-pip for CVE-2025-8869
Patch python3 for CVE-2025-8291
Patch skopeo for CVE-2025-58058
Patch systemd for CVE-2025-4598
Patch x/crypto and x/net for CVEs
Remove libyami-1.3.2 from SPECS_EXTENDED
Remove python-unittest2 from SPECS_EXTENDED
Switch to bootstrap toolchain from 3.0 container
Upgrade buildah to 1.41.4
Upgrade ca-certificates
Upgrade cppcheck to 2.18.3
Upgrade hwe OOT specs to match kernel-hwe
Upgrade ImageCustomizer to 1.0.0 and add semantic version and latest tag support for imagecustomizer golden container
Upgrade kernels to 6.6.104.2
Upgrade kronosnet to 1.29
Upgrade libpeas to 1.36.0
Upgrade mod_md to 2.4.26
Upgrade mod_security to 2.9.7
Upgrade mythes to 1.2.5
Upgrade mythes-ca to 2.3.1
Upgrade netsniff-ng to 0.6.9
Upgrade perl-File-Find-Object to 0.3.8
Upgrade perl-File-MimeInfo to 0.35
Upgrade perl-Test-Script to 1.29
Upgrade podman to 5.6.1
Upgrade python-aiodns to 3.2.0
Upgrade python-mutagen to 1.47.0
Upgrade python-pyperclip to 1.8.2
Upgrade python-testtools and python-fixtures
Upgrade rubygem-rouge to 4.4.0
Upgrade SymCrypt-OpenSSL to 1.9.2
Upgrade SymCrypt-OpenSSL to 1.9.3
Upgrade virt-top to 1.1.1"
Downloads and more details on the Azure Linux 3.0 update for October 2025 via [1]GitHub .
[1] https://github.com/microsoft/azurelinux/releases/tag/3.0.20251021-3.0