Amazon Linux 2 Security Advisory: ALAS2-2025-2879
Advisory Released Date: 2025-06-12
Advisory Updated Date: 2025-06-12
Severity:
Important
Issue Overview:
Thread creation while a directory handle is open does a fchdir, affecting other threads (race condition) (CVE-2025-40909)
Affected Packages:
perl
Note:
This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.
Issue Correction:
Run yum update perl to update your system.
New Packages:
aarch64:
perl-5.16.3-299.amzn2.0.3.aarch64
perl-libs-5.16.3-299.amzn2.0.3.aarch64
perl-devel-5.16.3-299.amzn2.0.3.aarch64
perl-macros-5.16.3-299.amzn2.0.3.aarch64
perl-tests-5.16.3-299.amzn2.0.3.aarch64
perl-Time-Piece-1.20.1-299.amzn2.0.3.aarch64
perl-core-5.16.3-299.amzn2.0.3.aarch64
perl-debuginfo-5.16.3-299.amzn2.0.3.aarch64
i686:
perl-5.16.3-299.amzn2.0.3.i686
perl-libs-5.16.3-299.amzn2.0.3.i686
perl-devel-5.16.3-299.amzn2.0.3.i686
perl-macros-5.16.3-299.amzn2.0.3.i686
perl-tests-5.16.3-299.amzn2.0.3.i686
perl-Time-Piece-1.20.1-299.amzn2.0.3.i686
perl-core-5.16.3-299.amzn2.0.3.i686
perl-debuginfo-5.16.3-299.amzn2.0.3.i686
noarch:
perl-CPAN-1.9800-299.amzn2.0.3.noarch
perl-ExtUtils-CBuilder-0.28.2.6-299.amzn2.0.3.noarch
perl-ExtUtils-Embed-1.30-299.amzn2.0.3.noarch
perl-ExtUtils-Install-1.58-299.amzn2.0.3.noarch
perl-IO-Zlib-1.10-299.amzn2.0.3.noarch
perl-Locale-Maketext-Simple-0.21-299.amzn2.0.3.noarch
perl-Module-CoreList-2.76.02-299.amzn2.0.3.noarch
perl-Module-Loaded-0.08-299.amzn2.0.3.noarch
perl-Object-Accessor-0.42-299.amzn2.0.3.noarch
perl-Package-Constants-0.02-299.amzn2.0.3.noarch
perl-Pod-Escapes-1.04-299.amzn2.0.3.noarch
src:
perl-5.16.3-299.amzn2.0.3.src
x86_64:
perl-5.16.3-299.amzn2.0.3.x86_64
perl-libs-5.16.3-299.amzn2.0.3.x86_64
perl-devel-5.16.3-299.amzn2.0.3.x86_64
perl-macros-5.16.3-299.amzn2.0.3.x86_64
perl-tests-5.16.3-299.amzn2.0.3.x86_64
perl-Time-Piece-1.20.1-299.amzn2.0.3.x86_64
perl-core-5.16.3-299.amzn2.0.3.x86_64
perl-debuginfo-5.16.3-299.amzn2.0.3.x86_64