====== System Module and Component Updates in VEOS 8.10 ====== ===== Updated Modules ===== * Nginx: updated from version 1.20.1 to 1.22.1. * Node.js: updated from version 18.x to 20.x. ===== Updated Components ===== * CMake: updated from version 3.20.2 to 3.26.5. * Git: updated from version 2.31.1 to 2.39.3. * Ruby: updated from version 3.1.2 to 3.1.4. * PHP: updated from version 8.0.27 to 8.0.30. * MariaDB: updated from version 10.5.16 to 10.5.22. ===== Compiler Updates ===== * GCC Toolset 13 added. * Go Toolset: updated from version 1.18.9 to 1.20.1. ===== Performance Monitoring Tool Updates ===== * PCP: updated from version 5.3.7-7 to 5.3.7-18. * Grafana: updated from version 7.5.15 to 9.2.10. ===== Graphics Subsystem ===== * Mesa: updated from version 22.3.0 to 23.1.4. ===== Security Updates ===== * Kernel update: * Kernel updated from version 4.18.0-477.13.1 to 4.18.0-513.11.1. * Security vulnerabilities fixed: CVE-2023-3609, CVE-2023-3611, CVE-2023-3776, CVE-2023-4128, CVE-2023-30456 (KVM subsystem), CVE-2022-4744 (tun driver). * Improved memory management stability and security. * Added support for CONFIG_INET_DIAG_DESTROY for network diagnostics. * Fixed use-after-free bugs and reference counter leaks in network schedulers. * Updated the SCSI (lpfc) driver: improved RSCN event handling and device recovery. * Improved userfaultfd behavior during THP migration and the fork() process. * Libreswan: * Updated from version 4.5 to 4.12. * Fixed vulnerabilities CVE-2023-38710, CVE-2023-38711, and CVE-2023-38712. * Improved stability and security when using IKEv1 in Aggressive Mode (CVE-2023-30570, rhbz#2187179). * firewalld: * Updated from version 0.9.3 to 0.9.11, including a number of stability and security improvements. ===== Package Changes ===== ==== Added ==== * gcc-toolset-13: Modern GCC 13 toolset with support for multiple development tools. * gcc-toolset-13-annobin: Binary annotation tool for security analysis. * gcc-toolset-13-binutils: Utilities for working with object files and linking. * gcc-toolset-13-dwz: Tool for compressing DWARF debugging information. * gcc-toolset-13-gcc: GCC 13 compiler (C, C++, and others). * gcc-toolset-13-gdb: GDB debugger compatible with GCC 13. * inkscape1: SVG vector graphics editor. * jakarta-activation2: Jakarta Activation API for working with data types. * java-21-openjdk: Open-source implementation of the Java SE 21 platform. * jaxb: Java Architecture for XML Binding — XML <-> Java conversion. * jaxb-api4: API interfaces for JAXB. * jaxb-dtd-parser: DTD parser for JAXB. * jaxb-istack-commons: Common libraries used by JAX. * jaxb-stax-ex: StAX extensions for JAXB. * libtracefs: Access library for the tracefs filesystem (debugging and profiling). * libwpe: WPE library for embedded web rendering. * mpdecimal: Library for precise decimal arithmetic (IEEE 754 compliant). * opencsd: CoreSight trace decoder (ARM architecture). * perl-Mail-AuthenticationResults: Perl module for processing and generating Authentication-Results headers. * python-tomli: Read-only TOML parser for Python. ==== Removed ==== * insights-client: Diagnostic data collection utility, deprecated and no longer used in VEOS. * maven-shared: Component for Maven plugins, no longer used in the current build infrastructure. * relaxngcc: Java class generator from RELAX NG schemas, removed as an obsolete tool. * scala: JVM programming language, removed because current VEOS packages no longer depend on Scala.