https://www.phoronix.com/scan.php?page=news_item&px=MS-CBL-Mariner-SELinux-More Phoronix * Articles & Reviews * News Archive * Forums * Premium * Categories * Computers * Display Drivers * GPUs / Graphics Cards * Linux Gaming * Memory * Motherboards * CPUs / Processors * Software * Storage * Operating Systems * Peripherals * Close * * Articles & Reviews * News Archive * Forums * Premium * Categories Computers GPUs / Graphics Cards Linux Gaming Memory Motherboards CPUs / Processors Software Storage Operating Systems Peripherals * [ ] [Search] Microsoft Enables SELinux By Default For CBL-Mariner Linux Distro Written by Michael Larabel in Microsoft on 20 March 2022 at 05:11 AM EDT. 1 Comment MICROSOFT -- It was just last week Microsoft issued a new monthly update to CBL-Mariner, its Linux distribution within use at the Windows company for tasks ranging from Azure to WSL. Now a second update for March has arrived for CBL-Mariner with security fixes and a few other updates. Saturday's CBL-Mariner 1.0 March 2022 Update 2 release has CVE fixes affecting Ruby, PostgreSQL, OpenSSL, Rust, FreeType, libxml2, Node.js, and OpenJDK. In addition to the security fixes, the most notable change with this new update is SELinux being enabled by default on all images. Last year Microsoft added SELinux to CBL-Mariner but it was not enabled by default. Now with this latest release, Security Enhanced Linux is there by default to further secure this Microsoft Linux OS. This new CBL-Mariner additionally makes changes around automatically restarting containerd services 10 seconds after a crash and modifying the toolkit to use local /run folder in chroot instead of mounted TMPFS file-system. Downloads and more details on this new CBL-Mariner release from Microsoft via GitHub. 1 Comment Tweet [INS::INS] Related News Microsoft's CBL-Mariner Linux Distro Updated For March With Many Security Fixes Microsoft Makes The DirectStorage API Officially Available Microsoft Wants To Add DirectX + HLSL Support To The Upstream LLVM/ Clang Compiler Microsoft Has Another Go At Their DirectX Linux Kernel Driver Microsoft Posts Updated "DXGKRNL" Linux Kernel Driver For WSL/WSA Mesa's "Dozen" Close To Providing Vulkan Over Direct3D 12 About The Author Author picture Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter or contacted via MichaelLarabel.com. Popular News This Week ReactOS "Open-Source Windows" Making Progress On SMP/Multi-Core Support AMD Linux Kernel Graphics Driver Closing In On 4 Million Lines Linux 5.17 Pushed Back Due To The New Spectre Attack, Other Headaches Linux x86 Ready To Remove Its Old 32-bit a.out Support Microsoft Makes The DirectStorage API Officially Available AMD Now Backing AlmaLinux As This Increasingly Popular RHEL/CentOS Alternative Rust Patches For The Linux Kernel Updated A Fifth Time With New Features Wine 7.4 Released With VKD3D Bundled, WineD3D/D3D12/DXGI Converted To PE Latest Linux News Linux 5.17 Released With AMD P-State Driver, Plenty Of New Hardware Support AMD Publishes New Instinct MI200 Instruction Set Documentation Linux Mint Debian Edition 5 Released - Built Atop Debian 11 Many NVMe Updates & Other Block Changes For Linux 5.18 Updated AMD GPU Firmware Blobs Land In Linux-Firmware.Git For PSP 13.0.8, GC 10.3.7 Microsoft Enables SELinux By Default For CBL-Mariner Linux Distro Fish 3.4 Shell Released With Faster Globbing, Improved Command Substitution Syntax IO_uring Gets New Features & Speed-Ups With Linux 5.18 Sound Open Firmware 2.1-rc1 Released Patches Pending That Bring Vulkan 1.3 To Lavapipe Show Your Support, Go Premium Phoronix Premium allows ad-free access to the site, multi-page articles on a single page, and other features while supporting this site's continued operations. Latest Featured Articles AMD Makes A Compelling Case For Budget-Friendly Ryzen Dedicated Servers The Performance Impact Of AMD Changing Their Retpoline Method For Spectre V2 In Light Of Spectre BHI, The Performance Impact For Retpolines On Modern Intel CPUs Steam Deck AMD APU Performance For Non-Gaming CPU Workloads AMD Announces The Ryzen Threadripper PRO 5000 WX Series For What Should Be Great On Linux Support Phoronix The mission at Phoronix since 2004 has centered around enriching the Linux hardware experience. In addition to supporting our site through advertisements, you can help by subscribing to Phoronix Premium. You can also contribute to Phoronix through a PayPal tip. Phoronix Media --------------------------------------------------------------------- * OpenBenchmarking.org Phoronix Premium --------------------------------------------------------------------- * Support Phoronix * While Having Ad-Free Browsing, * Single-Page Article Viewing Share --------------------------------------------------------------------- * Facebook * Twitter * Legal Disclaimer, Privacy Policy | Contact * Copyright (c) 2004 - 2022 by Phoronix Media. * All trademarks used are properties of their respective owners. All rights reserved.