A new release of the Ubuntu Cloud Images for stable Ubuntu release 20.04 LTS (Focal Fossa) is available at [1]. These new images superseded the existing images [2]. Images are available for download or immediate use on EC2 via publish AMI ids. Users who wish to update their existing installations can do so with: 'sudo apt-get update && sudo apt-get dist-upgrade && sudo reboot'. The following packages have been updated. Please see the full changelogs for a complete listing of changes: * heimdal: 7.7.0+dfsg-1ubuntu1.3 => 7.7.0+dfsg-1ubuntu1.4 * linux-meta: 5.4.0.137.135 => 5.4.0.139.137 * linux-signed: 5.4.0-137.154 => 5.4.0-139.156 * ubuntu-release-upgrader: 1:20.04.39 => 1:20.04.40 The following is a complete changelog for this image. new: {'linux-headers-5.4.0-139': '5.4.0-139.156', 'linux-headers-5.4.0-139-generic': '5.4.0-139.156', 'linux-modules-5.4.0-139-generic': '5.4.0-139.156'} removed: {'linux-modules-5.4.0-137-generic': '5.4.0-137.154', 'linux-headers-5.4.0-137-generic': '5.4.0-137.154', 'linux-headers-5.4.0-137': '5.4.0-137.154'} changed: ['libasn1-8-heimdal:amd64', 'libgssapi3-heimdal:amd64', 'libhcrypto4-heimdal:amd64', 'libheimbase1-heimdal:amd64', 'libheimntlm0-heimdal:amd64', 'libhx509-5-heimdal:amd64', 'libkrb5-26-heimdal:amd64', 'libroken18-heimdal:amd64', 'libwind0-heimdal:amd64', 'linux-headers-generic', 'linux-headers-virtual', 'linux-image-5.4.0-139-generic', 'linux-image-virtual', 'linux-virtual', 'python3-distupgrade', 'ubuntu-release-upgrader-core'] new snaps: {} removed snaps: {} changed snaps: ['core20'] ==== heimdal: 7.7.0+dfsg-1ubuntu1.3 => 7.7.0+dfsg-1ubuntu1.4 ==== ==== libasn1-8-heimdal:amd64 libgssapi3-heimdal:amd64 libhcrypto4-heimdal:amd64 libheimbase1-heimdal:amd64 libheimntlm0-heimdal:amd64 libhx509-5-heimdal:amd64 libkrb5-26-heimdal:amd64 libroken18-heimdal:amd64 libwind0-heimdal:amd64 * SECURITY UPDATE: signature validation failure - debian/patches/CVE-2022-45142.patch: fix logic inversion issue caused by the fix for CVE-2022-3437 when using memcmp in _gssapi_verify_mic_arcfour() and _gssapi_unwrap_arcfour() in lib/gssapi/krb5/arcfour.c. - CVE-2022-45142 ==== linux-meta: 5.4.0.137.135 => 5.4.0.139.137 ==== ==== linux-headers-generic linux-headers-virtual linux-image-virtual linux-virtual * Bump ABI 5.4.0-139 * Bump ABI 5.4.0-138 ==== linux-signed: 5.4.0-137.154 => 5.4.0-139.156 ==== ==== linux-image-5.4.0-139-generic * Master version: 5.4.0-139.156 * SIGNEDv3: add a linux-generate ancillary package (LP: #1989705) - [Packaging] add linux-generate* direct ancillary * Miscellaneous Ubuntu changes - debian/tracking-bug -- update from master * Master version: 5.4.0-138.155 ==== ubuntu-release-upgrader: 1:20.04.39 => 1:20.04.40 ==== ==== python3-distupgrade ubuntu-release-upgrader-core [ Matthew Ruffell ] * DistUpgrade/DistUpgradeQuirks.py: Add quirk to handle fips specific .libgcrypt.so.20.hmac file from libgcrypt20-hmac being placed in /lib instead of /usr/lib, breaking upgrades for fips enabled systems. (LP: #1982534) [ Brian Murray ] * Update mirrors, demotions, and translations. -- [1] http://cloud-images.ubuntu.com/releases/focal/release-20230209/ [2] http://cloud-images.ubuntu.com/releases/focal/release-20230207/