Alpine Linux 3.22.5 and 3.23.5 landed with a heavy OpenSSL security overhaul that patches heap overflows, QUIC memory exhaustion, and certificate parsing flaws. The update also tucks in Xen hypervisor fixes to keep virtualized workloads from leaking memory or crashing unexpectedly. Services relying on PKCS12 bundles, CMS decryption, or unverified QUIC listeners will finally stop tripping over newly closed bypass routes. Running the standard package manager upgrade now keeps both container images and host servers from becoming easy targets for remote exploits.
Alpine Linux 3.24.1 drops a comprehensive OpenSSL patch set that closes critical flaws in certificate parsing, PKCS validation, and the QUIC networking stack. Containers and backend services relying on untrusted input will finally stop crashing from heap over-reads or memory exhaustion attacks. The update also hardens cryptographic message processing and blocks known Bleichenbacher side channels that previously leaked private keys through error codes. Deploying the patch through the standard package manager takes minutes and instantly locks down the most dangerous attack surfaces in Alpine-based infrastructure.
Alpine Linux 3.24.0 delivers updated desktop environments, developer toolchains, and web server software while stripping out deprecated dependencies. System administrators must manually reinstall the bootloader for GRUB users and verify partition layouts before starting the upgrade process. The removal of GTK 2, Qt5, and libsoup 2 breaks older build scripts, and the new setuptools version forces Python projects to abandon the legacy pkg_resources module. Running apk upgrade --available and enabling the community repository keeps the transition smooth for users migrating to GNOME, KDE, COSMIC, or Sway.
The Alpine Linux project just dropped new stable releases for four different version tracks to patch critical security flaws. These updates target known vulnerabilities within musl and OpenSSL that could potentially allow attackers to compromise systems remotely. Smart admins know small base images often get overlooked during routine maintenance cycles so they better apply the upgrades immediately. Skipping this step leaves infrastructure exposed to remote exploits even if the main application code has not changed recently in production environments.
The Alpine Linux project has released four new stable versions: 3.20.9, 3.21.6, 3.22.3, and 3.23.3, which address critical security issues in OpenSSL. These updates fix multiple common vulnerability exposures (CVEs) related to high-priority vulnerabilities in OpenSSL, including CVE-2025-11187, CVE-2025-15467, and CVE-2025-15468. The new versions also patch several other vulnerabilities: CVE-2025-66199, CVE-2025-68160, CVE-2025-69418, CVE-2025-69419, CVE-2025-69420, and CVE-2025-69421. These security fixes are intended to protect users from potential threats in the OpenSSL library.
Alpine Linux has released version 3.23.2, which includes maintenance updates to polish its features and improve interactions with APKTools. The update also resolves an issue in BusyBox where the mount command could fail when reading unusually long lines from /proc/mounts. This fix will allow BusyBox's mount to handle such situations more efficiently and correctly parse the information without errors. Users who frequently use Alpine's package management system should look out for any enhancements that may alleviate their headaches.
Alpine Linux has rolled out its new stable series, version 3.23.0, which includes several significant updates such as a new Linux kernel version 6.18 and GCC 15 as its primary compiler toolchain. This release also brings major updates to various components like LLVM, Node.js, Rust, Docker, GNOME, and Qt, among others. The package manager apk-tools has been updated to version 3, designed for smooth upgrades from previous versions, but with some breaking changes for those using the older library libapk. Users upgrading from a previous release should use the specific command "apk upgrade --available" and be cautious of potential issues with separate root file systems for / and /usr.
Alpine Linux has released new stable versions—3.19.9, 3.20.8, 3.21.5, and 3.22.2—which include security fixes for OpenSSL addressing a vulnerability (CVE-2025-9230, CVE-2025-9231, CVE-2025-9232). This issue affects applications trying to decrypt CMS messages encrypted using password-based encryption, potentially leading to denial of service or execution of attacker-supplied code.
The Alpine Linux project has released versions 3.19.8, 3.20.7, 3.21.4, and 3.22.1, including a security fix for OpenSSL CVE-2025-4575.
Alpine Linux 3.22.0 has been released, marking the inaugural version in the stable series. The system comprises features such as LLVM, Dovecot, nginx, Node.js, Ruby, Xen, Bird, Crystal, Docker, GNOME, Go, KDE Plasma, and LXQt. Notable modifications involve the substitution of gummiboot with systemd-efistub, and the secureboot-hook has ceased support for gummiboot-efistub. Upgrade notes are accessible, and the comprehensive list of changes can be located in the wiki, git log, and bug tracker.
The Alpine Linux project has released stable versions 3.18.12, 3.19.7, 3.20.6, and 3.21.3, which include security fixes addressing vulnerabilities in OpenSSL and musl.
Alpine Linux versions 3.18.11, 3.19.6, 3.20.5, and 3.21.2 have been released, incorporating a regression fix for CA certificates.
Alpine Linux 3.18.10, 3.19.5, and 3.20.4 have been released to address a variety of security vulnerabilities.
Alpine Linux 3.21.1 has been released.
The first stable version in the v3.21 series, Alpine Linux 3.21.0, features the Linux kernel 6.12, GCC 14, LLVM 19, Node.js 22.11, Rust 1.83, Crystal 1.14, GNOME 47, Go 1.23, KDE Plasma 6.2, LXQt 2.1, PHP 8.4, Qt 6.8, Sway 1.10, and.NET 9.0.
Alpine Linux 3.17.10, 3.18.9, 3.19.4, and 3.20.3 have been released to address various security issues.
Alpine Linux 3.17.9, 3.18.8, and 3.19.3 have been released with various security fixes, including a fix for OpenSSL.
Alpine Linux 3.20.2, a maintenance release, contains bug patches and security updates, including a low-severity fix for OpenSSL CVE-2024-553.
Alpine Linux 3.20.1, a maintenance release containing bug fixes and security upgrades for OpenSSL and Busybox, is now available.
Alpine Linux 3.17.8, 3.18.7, and 3.19.2 have been released to resolve various security issues, including those involving OpenSSL and Busybox.