Heroku-20 and Heroku-22 stack images updated

Change effective on 13 December 2023

We have updated the heroku-20 and heroku-22 stack images to pick up security fixes in upstream packages. The new stack images will be rolled out automatically to the Common Runtime over the next 48 hours, followed by Private Spaces.

If you are using Heroku’s default buildpack-powered build system/stacks you do not need to redeploy your app to pick up these changes, since your application’s slug is applied on top of the most recent stack image each time a dyno starts. Currently running dynos will be automatically restarted, so there is no need to manually restart your app.

If your app instead uses Heroku’s container stack (most apps do not), you will need to rebuild your app’s Docker image in order to pick up any updates in the base image specified in your Dockerfile.

See this Dev Center article for an overview of the packages available in each stack image.

Changelog of packages

Stack: heroku-20

  • Updated binutils from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated binutils-common from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated binutils-x86-64-linux-gnu from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated curl from version 7.68.0-1ubuntu2.20 to 7.68.0-1ubuntu2.21
  • Updated libbinutils from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated libc-bin from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated libc-dev-bin from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated libc6 from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated libc6-dev from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated libctf-nobfd0 from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated libctf0 from version 2.34-6ubuntu1.6 to 2.34-6ubuntu1.7
  • Updated libcurl3-gnutls from version 7.68.0-1ubuntu2.20 to 7.68.0-1ubuntu2.21
  • Updated libcurl4 from version 7.68.0-1ubuntu2.20 to 7.68.0-1ubuntu2.21
  • Updated linux-libc-dev from version 5.4.0-167.184 to 5.4.0-169.187
  • Updated locales from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated tar from version 1.30+dfsg-7ubuntu0.20.04.3 to 1.30+dfsg-7ubuntu0.20.04.4

Updates to packages available at build time only

  • Updated libc6-i386 from version 2.31-0ubuntu9.12 to 2.31-0ubuntu9.14
  • Updated libcurl4-openssl-dev from version 7.68.0-1ubuntu2.20 to 7.68.0-1ubuntu2.21

Stack: heroku-22

  • Updated binutils from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated binutils-common from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated binutils-x86-64-linux-gnu from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated curl from version 7.81.0-1ubuntu1.14 to 7.81.0-1ubuntu1.15
  • Updated libbinutils from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated libc-bin from version 2.35-0ubuntu3.4 to 2.35-0ubuntu3.5
  • Updated libc-dev-bin from version 2.35-0ubuntu3.4 to 2.35-0ubuntu3.5
  • Updated libc6 from version 2.35-0ubuntu3.4 to 2.35-0ubuntu3.5
  • Updated libc6-dev from version 2.35-0ubuntu3.4 to 2.35-0ubuntu3.5
  • Updated libctf-nobfd0 from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated libctf0 from version 2.38-4ubuntu2.3 to 2.38-4ubuntu2.4
  • Updated libcurl3-gnutls from version 7.81.0-1ubuntu1.14 to 7.81.0-1ubuntu1.15
  • Updated libcurl4 from version 7.81.0-1ubuntu1.14 to 7.81.0-1ubuntu1.15
  • Updated linux-libc-dev from version 5.15.0-89.99 to 5.15.0-91.101
  • Updated locales from version 2.35-0ubuntu3.4 to 2.35-0ubuntu3.5
  • Updated tar from version 1.34+dfsg-1ubuntu0.1.22.04.1 to 1.34+dfsg-1ubuntu0.1.22.04.2

Updates to packages available at build time only

  • Updated libcurl4-openssl-dev from version 7.81.0-1ubuntu1.14 to 7.81.0-1ubuntu1.15