Flatcar Container Linux
stable-4593.2.3Provisioning & RuntimeFlatcar stable-4593.2.3 ships Linux 6.12.93 with eight kernel CVE patches and adds NVMe/TCP support for NVMe-oF storage backends.
securityPatch eight kernel CVEs — update nodes now
This release fixes eight Linux kernel CVEs. Details on severity are not yet in NVD for these 2026-prefixed IDs, but any kernel CVE batch warrants prompt node rotation. If you run Flatcar on bare metal or cloud VMs, schedule a node drain-and-replace cycle soon — do not wait for the next maintenance window if these IDs affect your kernel subsystems.
enhancementNVMe/TCP opens up NVMe-oF storage backends
NVMe over Fabrics via TCP is now available in the kernel module set. If your storage team uses NVMe-oF targets (e.g., disaggregated storage arrays or SPDK-based backends), Flatcar nodes can now connect without a custom kernel build. Test in staging before relying on this in production — confirm the nvme-tcp module loads correctly on your target image.
主な変更 (3)
- Eight Linux kernel CVEs patched (CVE-2026-46323, -46315, -46275, -46244, -46243, -46322, -46321, -46316)
- Kernel updated to 6.12.93 (includes 6.12.92 changes)
- NVMe/TCP support added, enabling NVMe over Fabrics storage connectivity