[2024-05-17]: We are pleased to announce the release of the first version of OpenCloudOS 9.2, which will serve as the baseline version of OC9.2, featuring kernel verison 6.6.30-4. The file pointing relationship is as follows: OpenCloudOS-9.2-aarch64-boot.iso -> OpenCloudOS-9.2-20240513.0-aarch64-boot.iso OpenCloudOS-9.2-aarch64-minimal.iso -> OpenCloudOS-9.2-20240513.0-aarch64-minimal.iso OpenCloudOS-9.2-aarch64-everything.iso -> OpenCloudOS-9.2-20240513.0-aarch64-everything.iso [2024-07-16]: Update monthly version OpenCloudOS-9.2-20240701.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - kernel update to version 6.6.34-9. - openssh update to version 9.3p2-11,which has fixed the race condition vulnerability in openssh-7.1p2-audit-race-condition.patch and further addressed the issue that related to low-memory environments when using SSH channel multiplexing to execute multiple commands concurrently during the initial connection, which could result in a segfault when reaching the cipher_free function and lead to occasional connection failures. [2024-08-22]: Update monthly version OpenCloudOS-9.2-20240807.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - openssh has been updated to version 9.3p2-13, several community patches have been added to address bugs and improve functionality,and also fixed CVE-2024-6387. [2024-09-30]: Update monthly version OpenCloudOS-9.2-20240923.1. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - python3.11 has been updated to version 3.11.6-10, incorporating the upstream fix for issue (GH-121286) (#123639), which removes backtracking when parsing tarfile headers to enhance efficiency and security. Additionally, we have addressed the critical vulnerability CVE-2024-6232. [2024-11-06]: Update monthly version OpenCloudOS-9.2-20241029.1. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - ** kernel ** has been updated to version 6.6.47-12, enhancing support for Phytium, Hygon, and AMD hardware, fixing several bugs, and improving system performance and security. It also adds support for new technologies, including disk I/O latency monitoring and PCIe hardware fault recovery. - ** openssl ** has been updated to version 3.0.12-14, improving QAT engine support and fix multiple CVEs, enhancing overall performance and security. - ** python3.11 ** has been updated to version 3.11.6-13, addressing several CVEs, such as CVE-2024-6232. - ** glibc ** has been updated to version 2.38-23. The updates mainly focus on performance optimization, architectural support, disabling tests, and some minor fixes, including slight adjustments in the sub-package separation. [2024-12-20]: Update monthly version OpenCloudOS-9.2-20241205.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - ** kernel ** has been updated to version 6.6.63-17, merging Linux 6.6.63 and introducing several new features and important bug fixes. The new features include enabling CONFIG_SMC for sockets over RDMA support, Hygon Trusted Key Management on CSV, objtool, ORC, and livepatch support for LoongArch, Intel GNR and SRF intel_idle support, KVM x86 support for virtualizing Linear Address Masking (LAM), and the addition of loongson-bmc DRM driver support. - ** python 3.11 ** has been updated to version 3.11.6-14, addressing CVE-2024-6923 and fixing related issues in `venv` activation scripts to improve security and functionality. [2025-02-28]: Update monthly version OpenCloudOS-9.2-20250221.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - ** kernel ** has been updated to **6.6.70-24**, merging Linux **6.6.65 to 6.6.70**. This update introduces Intel RDT monitoring on SNC systems, Hygon CSV3 remote authentication and startup security enhancements, Phytium GPU support, Motorcomm YT6801 Ethernet driver, and Loongson SE CPU monitoring with ACPI support, improving hardware compatibility and performance. It also fixes pagecache limit issues with mglru, kernel module insertion failures, and memory error address translation failures in PRM. Security updates address **CVE-2024-50017, CVE-2024-50018, and CVE-2024-46772**, enhancing system security. Several Loongson-specific fixes improve CMA allocation, MAC DMA reset, interrupt routing, I2C frequency configuration, VFIO passthrough, and extioi restart in VMs, ensuring better system stability. - ** glibc ** has been updated to **2.38-29**, syncing **LoongArch** support with upstream and fixing **PIE-related errors**. The update optimizes `bsearch()` performance, forces **SHMLBA** to match the kernel on **LoongArch**, and resolves a `system()` issue when a child process cannot be created **[BZ #32450]**. Additionally, it ensures **`zh` and `en`** are set as default languages and fixes an update failure from older versions to **2.38-16** when `weakdependency=False`. This update also fixes **CVE-2025-0395** and addresses an **underallocation issue** in the `abort_msg_s` struct, improving stability and security. - ** gcc ** has been updated to **12.3.1.3-1**, backporting LoongArch patches and introducing various performance optimizations and fixes. This update improves instruction generation for branching, immediate loading, multiplication, and stack-checking, while addressing **libgccjit** link errors, GNOME desktop startup failures, memory reference issues, and redundant barrier instructions. It also enhances backend stability, refines macro instruction behavior, and resolves multiple build and test inconsistencies. Additionally, support has been added for the **3A6000 processor**, **Ada, libffi, libvtv, libitm, libsanitizer**, TLS relocation types, and vector instruction tests. Other improvements include optimized floating-point operations, better handling of relocations, and new options like `-mdirect-extern-access` and `-mexplicit-relocs`, ensuring greater performance, stability, and compatibility on LoongArch. - ** systemd ** has been updated to **255-12**, addressing a **systemd-logind coredump issue** related to `hashmap_put()`. This update also restores certain `%ghost` directories for compatibility, improves build dependencies by adding `valgrind-devel` and `libxkbcommon-devel`, and splits unnecessary binaries and libraries into separate subpackages.  - ** grub2 ** has been updated to **2.12-9**, increasing the SBAT level to 4 for improved security and compatibility.    [2025-04-12]: Update monthly version OpenCloudOS-9.2-20250327.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - ** kernel ** has been updated to 6.6.80-26, merging Linux 6.6.80 and adding support for Hygon 8h processors, cgroupv2 memory.stat extensions, per-CPU pageset auto-tuning, and EEVDF scheduler optimizations. It includes bug fixes for LoongArch (cache, HDA, Bluetooth), Hygon 4h–10h, DIM memory overflow, and Intel SGX cleanup. The oc-ops tool adds fs recovery (XFS/EXT4), os_stat auto-tuning, arm64 support, and performance diagnostics improvements. - ** grub2 ** has been updated to 2.12-13.oc9.ap.2, backporting upstream changes. It introduces support for confidential computing provisioned secrets for disk decryption and adds grub2 provider in the grub2-efi-loongarch64 package. This update also addresses multiple security vulnerabilities, resolving CVE-2024-45774 through CVE-2025-1125. - ** python3 ** has been updated to 3.11.6-16, addressing security vulnerabilities CVE-2025-0938 and CVE-2025-1795. Fixes include disallowing square brackets in domain names for parsed URLs, correcting UnicodeEncodeError in TokenList.fold(), resolving issues with list separators in email header parsing, fixing whitespace handling in email.generator.Generator, and addressing AttributeError in the email module. [2025-04-28]: Update monthly version OpenCloudOS-9.2-20250421.0. Typically includes: fixed rpm packages for recently discovered bugs, security fixes, and optimization or upgrades for some rpm packages. Special note the following updates: - ** kernel ** has been updated to 6.6.80-29, merging the OCK linux-6.6/devel branch and bringing key enhancements. LoongArch support was improved by enabling PCI FDT driver and disabling CONFIG_RT_GROUP_SCHED. Intel platforms gained backported support for Sierra Forest MAXPHYSADDR and Clearwater Forest CPUID features. ACPI added PRM direct call support, and epoll introduced min_wait_time. The hinic driver was updated, and cgroup socket association was fixed. Distribution changes include restricted secure boot signing, disabled MLNX out-of-tree driver, and RPM build optimizations. Aegis config was disabled by default, and an experimental emm module was added then removed. - ** gcc ** has been updated to 12.3.1.4-2, mainly fixing a triple link issue introduced in the previous version that caused clang build errors. Earlier updates improved support for KunPeng 920 processors, including AI compilation optimizations, structure and array width handling, and instruction generation. Compatibility with LLVM-based compilers was also enhanced, and a rebuild was performed to integrate LoongArch-related binutils patches. - ** systemd ** has been updated to 255-13 to fix an issue in systemd-networkd-wait-online that caused unexpected behavior due to commit ab3aed4a. This resolves incorrect network readiness detection during boot.