Amazon Linux 1 (EOL) Security Advisory: ALAS-2025-1977
Advisory Released Date: 2025-05-12
Advisory Updated Date: 2025-05-12
Severity:
Important
References:
CVE-2022-49168
CVE-2022-49413
CVE-2022-49465
CVE-2025-21920
FAQs regarding Amazon Linux ALAS/CVE Severity
FAQs regarding Amazon Linux ALAS/CVE Severity
Issue Overview:
In the Linux kernel, the following vulnerability has been resolved:
btrfs: do not clean up repair bio if submit fails (CVE-2022-49168)
In the Linux kernel, the following vulnerability has been resolved:
bfq: Update cgroup information before merging bio (CVE-2022-49413)
In the Linux kernel, the following vulnerability has been resolved:
blk-throttle: Set BIO_THROTTLED when bio has been throttled (CVE-2022-49465)
In the Linux kernel, the following vulnerability has been resolved:
vlan: enforce underlying device type (CVE-2025-21920)
Affected Packages:
kernel
Issue Correction:
Run yum update kernel to update your system.
System reboot is required in order to complete this update.
New Packages:
i686:
kernel-tools-4.14.355-196.643.amzn1.i686
kernel-tools-debuginfo-4.14.355-196.643.amzn1.i686
kernel-4.14.355-196.643.amzn1.i686
kernel-tools-devel-4.14.355-196.643.amzn1.i686
kernel-devel-4.14.355-196.643.amzn1.i686
kernel-debuginfo-common-i686-4.14.355-196.643.amzn1.i686
perf-debuginfo-4.14.355-196.643.amzn1.i686
kernel-headers-4.14.355-196.643.amzn1.i686
kernel-debuginfo-4.14.355-196.643.amzn1.i686
perf-4.14.355-196.643.amzn1.i686
src:
kernel-4.14.355-196.643.amzn1.src
x86_64:
kernel-tools-4.14.355-196.643.amzn1.x86_64
kernel-debuginfo-common-x86_64-4.14.355-196.643.amzn1.x86_64
kernel-headers-4.14.355-196.643.amzn1.x86_64
kernel-tools-debuginfo-4.14.355-196.643.amzn1.x86_64
kernel-4.14.355-196.643.amzn1.x86_64
kernel-debuginfo-4.14.355-196.643.amzn1.x86_64
kernel-devel-4.14.355-196.643.amzn1.x86_64
kernel-tools-devel-4.14.355-196.643.amzn1.x86_64
perf-debuginfo-4.14.355-196.643.amzn1.x86_64
perf-4.14.355-196.643.amzn1.x86_64