Alpine Linux is a community-developed operating system designed for x86 routers, firewalls, virtual private networks, IP telephones, and servers. It is designed to implement the concept of security, including a number of active security features such as PaX and SSP, they can prevent the software vulnerabilities are used by rivals. The system uses the C language library is musl, the basic tools are in BusyBox. They are common in embedded systems and are smaller than tools in GNU / Linux systems.
Alpine Linux is built around musl libc and busybox. This makes it smaller and more resource efficient than traditional GNU/Linux distributions. A container requires no more than 8 MB and a minimal installation to disk requires around 130 MB of storage. Not only do you get a fully-fledged Linux environment but a large selection of packages from the repository.
Binary packages are thinned out and split, giving you even more control over what you install, which in turn keeps your environment as small and efficient as possible.
Alpine Linux is a very simple distribution that will try to stay out of your way. It uses its own package manager called apk, the OpenRC init system, script driven set-ups and that’s it! This provides you with a simple, crystal-clear Linux environment without all the noise. You can then add on top of that just the packages you need for your project, so whether it’s building a home PVR, or an iSCSI storage controller, a wafer-thin mail server container, or a rock-solid embedded switch, nothing else will get in the way.
Alpine Linux was designed with security in mind. The kernel is patched with an unofficial port of grsecurity/PaX, and all userland binaries are compiled as Position Independent Executables (PIE) with stack smashing protection. These proactive security features prevent exploitation of entire classes of zero-day and other vulnerabilities.
Alpine Linux 3.9.11 has been released.
Andy Postnikov (2):
community/php7: add argon2 support
community/php7: upgrade to 7.3.7
Francesco Colista (2):
main/libvirt: security upgrade to 5.5.0
community/patchwork: security fix for CVE-2019-13122
Henrik Riomar (1):
community/intel-ucode: upgrade to 20190618
main/samba: security upgrade to 4.10.5
community/firefox-esr: security upgrade to 60.7.2 (CVE-2019-11708)
Jake Buchholz (1):
community/docker: update to 18.09.7
Kevin Daudt (1):
main/bind: security upgrade to 9.14.3 (CVE-2019-6471)
Milan P. Stanić (3):
community/mutt: upgrade to 1.12.1
main/haproxy: upgrade to 2.0.1
main/postgresql: security upgrade to 11.4