You are viewing documentation for version 1.20.x. The most current version is 1.21.x.

1.20.5

Package Versions in Bottlerocket Release 1.20.5
packageversionpatches
acpid2.0.34
  • 0001-Remove-shell-dependency-by-only-shutting-down.patch
amazon-ssm-agent3.3.418.0
aws-iam-authenticator0.6.14
aws-signing-helper1.1.1
bash5.2.21
  • bash-4.4-no-loadable-builtins.patch
  • bash-5.0-patch-1.patch
  • bash-5.0-patch-2.patch
binutils2.38
ca-certificates2024.03.11
chrony4.5
cni1.1.2
cni-plugins1.4.0
conntrack-tools1.4.8
  • 0001-disable-RPC-helper.patch
containerd1.6.34
coreutils9.5
dbus-broker35
  • 0001-c-utf8-disable-strict-aliasing-optimizations.patch
docker-cli25.0.5
  • 0001-non-tcp-host-header.patch
docker-engine25.0.6
  • 0001-Change-default-capabilities-using-daemon-config.patch
  • 0002-oci-inject-kmod-in-all-containers.patch
docker-init19.03.15
e2fsprogs1.47.0
early-boot-config0.1
ecr-credential-provider1.25.3
ecr-credential-provider-1.271.27.1
ecr-credential-provider-1.291.29.0
ecr-credential-provider-1.301.30.0
ecs-agent1.82.3
  • 0001-bottlerocket-default-filesystem-locations.patch
  • 0002-bottlerocket-remove-unsupported-capabilities.patch
  • 0003-bottlerocket-bind-introspection-to-localhost.patch
  • 0004-bottlerocket-fix-procfs-path-on-host.patch
  • 0005-bottlerocket-change-execcmd-directories-for-Bottlero.patch
  • 0006-containermetadata-don-t-use-dataDirOnHost-for-metada.patch
  • 1001-bottlerocket-default-filesystem-locations.patch
ecs-gpu-init0
ethtool6.7
filesystem1
findutils4.9.0
glibc2.38
  • 0001-stdlib-Improve-tst-realpath-compatibility-with-sourc.patch
  • 0002-x86-Fix-for-cache-computation-on-AMD-legacy-cpus.patch
  • 0003-nscd-Do-not-rebuild-getaddrinfo-bug-30709.patch
  • 0004-x86-Fix-incorrect-scope-of-setting-shared_per_thread.patch
  • 0005-x86_64-Fix-build-with-disable-multiarch-BZ-30721.patch
  • 0006-i686-Fix-build-with-disable-multiarch.patch
  • 0007-malloc-Enable-merging-of-remainders-in-memalign-bug-.patch
  • 0008-malloc-Remove-bin-scanning-from-memalign-bug-30723.patch
  • 0009-sysdeps-tst-bz21269-fix-test-parameter.patch
  • 0010-sysdeps-tst-bz21269-handle-ENOSYS-skip-appropriately.patch
  • 0011-sysdeps-tst-bz21269-fix-Wreturn-type.patch
  • 0012-io-Fix-record-locking-contants-for-powerpc64-with-__.patch
  • 0013-libio-Fix-oversized-__io_vtables.patch
  • 0014-elf-Do-not-run-constructors-for-proxy-objects.patch
  • 0015-elf-Always-call-destructors-in-reverse-constructor-o.patch
  • 0016-elf-Remove-unused-l_text_end-field-from-struct-link_.patch
  • 0017-elf-Move-l_init_called_next-to-old-place-of-l_text_e.patch
  • 0018-NEWS-Add-the-2.38.1-bug-list.patch
  • 0019-CVE-2023-4527-Stack-read-overflow-with-large-TCP-res.patch
  • 0020-getaddrinfo-Fix-use-after-free-in-getcanonname-CVE-2.patch
  • 0021-iconv-restore-verbosity-with-unrecognized-encoding-n.patch
  • 0022-string-Fix-tester-build-with-fortify-enable-with-gcc.patch
  • 0023-manual-jobs.texi-Add-missing-item-EPERM-for-getpgid.patch
  • 0024-Fix-leak-in-getaddrinfo-introduced-by-the-fix-for-CV.patch
  • 0025-Document-CVE-2023-4806-and-CVE-2023-5156-in-NEWS.patch
  • 0026-Propagate-GLIBC_TUNABLES-in-setxid-binaries.patch
  • 0027-tunables-Terminate-if-end-of-input-is-reached-CVE-20.patch
  • 0028-Revert-elf-Remove-unused-l_text_end-field-from-struc.patch
  • 0029-Revert-elf-Always-call-destructors-in-reverse-constr.patch
  • 0030-Revert-elf-Move-l_init_called_next-to-old-place-of-l.patch
  • 0031-sysdeps-sem_open-Clear-O_CREAT-when-semaphore-file-i.patch
  • 0032-elf-Fix-wrong-break-removal-from-8ee878592c.patch
  • 0033-LoongArch-Delete-excessively-allocated-memory.patch
  • 0034-elf-Fix-TLS-modid-reuse-generation-assignment-BZ-290.patch
  • 0035-elf-Add-TLS-modid-reuse-test-for-bug-29039.patch
  • 0036-x86-64-Fix-the-dtv-field-load-for-x32-BZ-31184.patch
  • 0037-x86-64-Fix-the-tcb-field-load-for-x32-BZ-31185.patch
  • 0038-NEWS-Mention-bug-fixes-for-29039-30694-30709-30721.patch
  • 0039-NEWS-Mention-bug-fixes-for-30745-30843.patch
  • 0040-getaddrinfo-translate-ENOMEM-to-EAI_MEMORY-bug-31163.patch
  • 0041-libio-Check-remaining-buffer-size-in-_IO_wdo_write-b.patch
  • 0042-syslog-Fix-heap-buffer-overflow-in-__vsyslog_interna.patch
  • 0043-syslog-Fix-heap-buffer-overflow-in-__vsyslog_interna.patch
  • 0044-syslog-Fix-integer-overflow-in-__vsyslog_internal-CV.patch
  • 0045-x86_64-Optimize-ffsll-function-code-size.patch
  • 0046-S390-Fix-building-with-disable-mutli-arch-BZ-31196.patch
  • 0047-sparc-Fix-broken-memset-for-sparc32-BZ-31068.patch
  • 0048-sparc64-Remove-unwind-information-from-signal-return.patch
  • 0049-sparc-Fix-sparc64-memmove-length-comparison-BZ-31266.patch
  • 0050-sparc-Remove-unwind-information-from-signal-return-s.patch
  • 0051-arm-Remove-wrong-ldr-from-_dl_start_user-BZ-31339.patch
  • 0052-malloc-Use-__get_nprocs-on-arena_get2-BZ-30945.patch
  • 0053-S390-Do-not-clobber-r7-in-clone-BZ-31402.patch
  • 0054-linux-Use-rseq-area-unconditionally-in-sched_getcpu-.patch
  • 0055-LoongArch-Correct-__ieee754-_-_scalb-__ieee754-_-_sc.patch
  • 0056-Add-HWCAP2_MOPS-from-Linux-6.5-to-AArch64-bits-hwcap.patch
  • 0057-AArch64-Add-support-for-MOPS-memcpy-memmove-memset.patch
  • 0058-AArch64-Cleanup-ifuncs.patch
  • 0059-AArch64-Cleanup-emag-memset.patch
  • 0060-AArch64-Add-memset_zva64.patch
  • 0061-AArch64-Remove-Falkor-memcpy.patch
  • 0062-aarch64-correct-CFI-in-rawmemchr-bug-31113.patch
  • 0063-aarch64-fix-check-for-SVE-support-in-assembler.patch
  • 0064-AArch64-Check-kernel-version-for-SVE-ifuncs.patch
  • 0065-powerpc-Fix-ld.so-address-determination-for-PCREL-mo.patch
  • 0066-iconv-ISO-2022-CN-EXT-fix-out-of-bound-writes-when-w.patch
  • 0067-sparc-Remove-64-bit-check-on-sparc32-wordsize-BZ-275.patch
  • 0068-login-Check-default-sizes-of-structs-utmp-utmpx-last.patch
  • 0069-login-structs-utmp-utmpx-lastlog-_TIME_BITS-independ.patch
  • 0070-nptl-Fix-tst-cancel30-on-kernels-without-ppoll_time6.patch
  • 9001-move-ldconfig-cache-to-ephemeral-storage.patch
  • glibc-cs-path.patch
  • HACK-only-build-and-install-localedef.patch
grep3.9
grub2.06
  • 0001-setup-Add-root-device-argument-to-grub-setup.patch
  • 0002-gpt-start-new-GPT-module.patch
  • 0003-gpt-rename-misnamed-header-location-fields.patch
  • 0004-gpt-record-size-of-of-the-entries-table.patch
  • 0005-gpt-consolidate-crc32-computation-code.patch
  • 0006-gpt-add-new-repair-function-to-sync-up-primary-and-b.patch
  • 0007-gpt-add-write-function-and-gptrepair-command.patch
  • 0008-gpt-add-a-new-generic-GUID-type.patch
  • 0009-gpt-new-gptprio.next-command-for-selecting-priority-.patch
  • 0010-gpt-split-out-checksum-recomputation.patch
  • 0011-gpt-move-gpt-guid-printing-function-to-common-librar.patch
  • 0012-gpt-switch-partition-names-to-a-16-bit-type.patch
  • 0013-tests-add-some-partitions-to-the-gpt-unit-test-data.patch
  • 0014-gpt-add-search-by-partition-label-and-uuid-commands.patch
  • 0015-gpt-clean-up-little-endian-crc32-computation.patch
  • 0016-gpt-minor-cleanup.patch
  • 0017-gpt-add-search-by-disk-uuid-command.patch
  • 0018-gpt-do-not-use-disk-sizes-GRUB-will-reject-as-invali.patch
  • 0019-gpt-add-verbose-debug-logging.patch
  • 0020-gpt-improve-validation-of-GPT-headers.patch
  • 0021-gpt-refuse-to-write-to-sector-0.patch
  • 0022-gpt-properly-detect-and-repair-invalid-tables.patch
  • 0023-gptrepair_test-fix-typo-in-cleanup-trap.patch
  • 0024-gptprio_test-check-GPT-is-repaired-when-appropriate.patch
  • 0025-gpt-fix-partition-table-indexing-and-validation.patch
  • 0026-gpt-prefer-disk-size-from-header-over-firmware.patch
  • 0027-gpt-add-helper-for-picking-a-valid-header.patch
  • 0028-gptrepair-fix-status-checking.patch
  • 0029-gpt-use-inline-functions-for-checking-status-bits.patch
  • 0030-gpt-allow-repair-function-to-noop.patch
  • 0031-gpt-do-not-use-an-enum-for-status-bit-values.patch
  • 0032-gpt-check-header-and-entries-status-bits-together.patch
  • 0033-gpt-be-more-careful-about-relocating-backup-header.patch
  • 0034-gpt-selectively-update-fields-during-repair.patch
  • 0035-gpt-always-revalidate-when-recomputing-checksums.patch
  • 0036-gpt-include-backup-in-sync-check-in-revalidation.patch
  • 0037-gpt-read-entries-table-at-the-same-time-as-the-heade.patch
  • 0038-gpt-report-all-revalidation-errors.patch
  • 0039-gpt-rename-and-update-documentation-for-grub_gpt_upd.patch
  • 0040-gpt-write-backup-GPT-first-skip-if-inaccessible.patch
  • 0041-gptprio-Use-Bottlerocket-boot-partition-type-GUID.patch
  • 0042-util-mkimage-Bump-EFI-PE-header-size-to-accommodate-.patch
  • 0043-util-mkimage-avoid-adding-section-table-entry-outsid.patch
  • 0044-efi-return-virtual-size-of-section-found-by-grub_efi.patch
  • 0045-mkimage-pgp-move-single-public-key-into-its-own-sect.patch
  • 0046-Revert-sb-Add-fallback-to-EFI-LoadImage-if-shim_lock.patch
  • 0047-Revert-UBUNTU-Move-verifiers-after-decompressors.patch
  • 0048-add-flag-to-only-search-root-dev.patch
host-ctr0
iproute6.4.0
  • 0001-skip-libelf-check.patch
iptables1.8.9
  • 1001-extensions-NAT-Fix-for-Werror-format-security.patch
  • 1002-ip6tables-Fix-checking-existence-of-rule.patch
iputils20240117
kernel-5.105.10.220
  • 1001-Makefile-add-prepare-target-for-external-modules.patch
  • 1002-initramfs-unlink-INITRAMFS_FORCE-from-CMDLINE_-EXTEN.patch
  • 1003-af_unix-increase-default-max_dgram_qlen-to-512.patch
  • 2000-kbuild-move-module-strip-compression-code-into-scrip.patch
  • 2001-kbuild-add-support-for-zstd-compressed-modules.patch
  • 5001-Revert-netfilter-nf_tables-drop-map-element-referenc.patch
kernel-5.155.15.162
  • 1001-Makefile-add-prepare-target-for-external-modules.patch
  • 1002-Revert-kbuild-hide-tools-build-targets-from-external.patch
  • 1003-initramfs-unlink-INITRAMFS_FORCE-from-CMDLINE_-EXTEN.patch
  • 1004-af_unix-increase-default-max_dgram_qlen-to-512.patch
kernel-6.16.1.97
  • 1001-Makefile-add-prepare-target-for-external-modules.patch
  • 1002-Revert-kbuild-hide-tools-build-targets-from-external.patch
  • 1003-initramfs-unlink-INITRAMFS_FORCE-from-CMDLINE_-EXTEN.patch
  • 1004-af_unix-increase-default-max_dgram_qlen-to-512.patch
  • 1005-Revert-Revert-drm-fb_helper-improve-CONFIG_FB-depend.patch
kexec-tools2.0.28
keyutils1.6.1
kmod31
kmod-5.10-nvidia1.0.0
kmod-5.15-nvidia1.0.0
kmod-6.1-nvidia1.0.0
kubernetes-1.231.23.17
kubernetes-1.241.24.17
kubernetes-1.251.25.16
kubernetes-1.261.26.15
kubernetes-1.271.27.14
kubernetes-1.281.28.10
kubernetes-1.291.29.5
kubernetes-1.301.30.1
libacl2.3.2
libattr2.5.2
libaudit3.1.4
libcap2.69
  • 9001-dont-test-during-install.patch
libdbus1.15.6
libelf0.191
libexpat2.6.2
libffi3.4.6
libgcc0
libglib2.78.4
libinih58
libiw29
  • wireless-tools-29-makefile.patch
libkcapi1.5.0
libmnl1.0.5
libncurses6.4
  • ncurses-config.patch
  • ncurses-kbs.patch
  • ncurses-libs.patch
  • ncurses-urxvt.patch
libnetfilter_conntrack1.0.9
libnetfilter_cthelper1.0.1
libnetfilter_cttimeout1.0.1
libnetfilter_queue1.0.5
libnfnetlink1.0.2
libnftnl1.2.6
libnl3.9.0
libnvidia-container1.13.5
  • 0001-use-shared-libtirpc.patch
  • 0002-use-prefix-from-environment.patch
  • 0003-keep-debug-symbols.patch
  • 0004-Use-NVIDIA_PATH-to-look-up-binaries.patch
  • 0005-makefile-avoid-ldconfig-when-cross-compiling.patch
libpcre10.43
libseccomp2.5.5
libselinux3.6
libsemanage3.6
  • 0001-remove-bzip2-dependency.patch
libsepol3.6
  • 0001-libsepol-cil-Check-common-perms-when-verifiying-all.patch
libstd-rust0
libtirpc1.3.4
liburcu0.14.0
libxcrypt4.4.36
libz1.3.1
libzstd1.5.6
linux-firmware20230625
  • 0001-linux-firmware-snd-remove-firmware-for-snd-audio-dev.patch
  • 0002-linux-firmware-video-Remove-firmware-for-video-broad.patch
  • 0003-linux-firmware-bt-wifi-Remove-firmware-for-Bluetooth.patch
  • 0004-linux-firmware-scsi-Remove-firmware-for-SCSI-devices.patch
  • 0005-linux-firmware-usb-remove-firmware-for-USB-Serial-PC.patch
  • 0006-linux-firmware-ethernet-Remove-firmware-for-ethernet.patch
  • 0007-linux-firmware-Remove-firmware-for-Accelarator-devic.patch
  • 0008-linux-firmware-gpu-Remove-firmware-for-GPU-devices.patch
  • 0009-linux-firmware-various-Remove-firmware-for-various-d.patch
  • 0010-linux-firmware-amd-ucode-Remove-amd-microcode.patch
login0.0.1
makedumpfile1.7.5
  • 0000-fix-strip-invocation-for-TARGET-env-variable.patch
  • 0001-do-not-overlink-with-bzip2.patch
microcode0
netdog0.1.1
nvidia-container-toolkit1.13.5
nvidia-k8s-device-plugin0.14.4
oci-add-hooks1.0.0
open-vm-tools12.3.5
  • 0001-no_cflags_werror.patch
  • 0002-dont-force-cppflags.patch
  • 0003-Update-shutdown-code-to-work-for-Bottlerocket.patch
os0
pigz2.8
policycoreutils3.6
procps4.0.4
readline8.2
  • readline-8.2-shlib.patch
release0
runc1.1.12
selinux-policy0
settings-aws0
settings-container-registry0
settings-kernel0
settings-motd0
settings-ntp0
settings-updates0
shim15.8
static-pods0.1
strace6.8
systemd252.22
  • 1001-sd-netlink-make-calc_elapse-return-USEC_INFINITY-whe.patch
  • 1002-sd-netlink-make-the-default-timeout-configurable-by-.patch
  • 9001-use-absolute-path-for-var-run-symlink.patch
  • 9002-core-add-separate-timeout-for-system-shutdown.patch
  • 9003-machine-id-setup-generate-stable-ID-under-Xen-and-VM.patch
  • 9004-units-mount-tmp-with-noexec.patch
  • 9005-mount-setup-apply-noexec-to-more-mounts.patch
  • 9006-mount-setup-mount-etc-with-specific-label.patch
  • 9007-pkg-config-stop-hardcoding-prefix-to-usr.patch
  • 9008-sysctl-do-not-set-rp_filter-via-wildcard.patch
  • 9009-sysusers-set-root-shell-to-sbin-nologin.patch
  • 9010-units-keep-modprobe-service-units-running.patch
  • 9011-systemd-networkd-Conditionalize-hostnamed-timezoned-.patch
  • 9012-core-mount-increase-mount-rate-limit-burst-to-25.patch
  • 9013-sd-dhcp-lease-parse-multiple-domains-in-option-15.patch
  • 9014-meson-make-gpt-auto-generator-selectable-at-build-ti.patch
util-linux2.39.3
wicked0.6.68
  • 0001-dhcp6-refresh-ipv6-flags-on-staring-in-auto-mode.patch
  • 1001-avoid-gcrypt-dependency.patch
  • 1002-exclude-unused-components.patch
  • 1003-ship-mkconst-and-schema-sources-for-runtime-use.patch
  • 1004-adjust-safeguard-for-dhcp6-defer-timeout.patch
  • 1005-client-validate-ethernet-namespace-node.patch
  • 1006-server-discover-hardware-address-of-unconfigured-int.patch
  • 1007-dhpc6-don-t-cancel-transmission-if-random-delay-happ.patch
  • 1008-dhcp6-reduce-maximum-initial-solicitation-delay-to-1.patch
xfsprogs6.7.0