Articles & Reviews
News Archive
Forums
Premium
Contact
Categories

Computers Display Drivers Graphics Cards Linux Gaming Memory Motherboards Processors Software Storage Operating Systems Peripherals

Microsoft Enables SELinux By Default For CBL-Mariner Linux Distro

Written by Michael Larabel in Microsoft on 20 March 2022 at 05:11 AM EDT. 6 Comments

MICROSOFT

It was just last week Microsoft issued a new monthly update to CBL-Mariner, its Linux distribution within use at the Windows company for tasks ranging from Azure to WSL. Now a second update for March has arrived for CBL-Mariner with security fixes and a few other updates.

Saturday's CBL-Mariner 1.0 March 2022 Update 2 release has CVE fixes affecting Ruby, PostgreSQL, OpenSSL, Rust, FreeType, libxml2, Node.js, and OpenJDK.

In addition to the security fixes, the most notable change with this new update is SELinux being enabled by default on all images. Last year Microsoft added SELinux to CBL-Mariner but it was not enabled by default. Now with this latest release, Security Enhanced Linux is there by default to further secure this Microsoft Linux OS.

This new CBL-Mariner additionally makes changes around automatically restarting containerd services 10 seconds after a crash and modifying the toolkit to use local /run folder in chroot instead of mounted TMPFS file-system.

Downloads and more details on this new CBL-Mariner release from Microsoft via GitHub.

6 Comments

Related News

Microsoft's Azure Linux 3.0 Adds 64K Kernel Option, NFTables & Intel E800 Networking

Microsoft Continues "Demikernel" Development LibOS For Kernel-Bypass I/O

Microsoft Announces Open-Source Hyperlight For Embedded VMM Within Linux/Windows Apps

Microsoft Azure Linux 3.0 Update Pushes Additions For Intel, AMD & Arm

Linux Use On Microsoft Azure Crosses 60%, AlmaLinux Now An Endorsed Distro

Microsoft Open-Sources Rust-Written OpenHCL For Running Confidential Intel/AMD VMs

About The Author

Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week

OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts

Linus Torvalds Comes Out Against "Completely Broken" x86_64 Feature Levels

How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs

Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd

Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal

COSMIC Alpha 4 Released For System76's Rust-Based Desktop

GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd

KDE Starts December By Landing A Number Of New Features