Heroku-20, Heroku-22 and Heroku-24 stacks updated

Change effective on 13 August 2024

We have updated the heroku-20, heroku-22 and heroku-24 stacks to pick up security fixes in upstream packages. The new base images for each stack will be rolled out automatically to the Common Runtime over the next 48 hours, followed by Private Spaces.

If you are using Heroku’s default buildpack-powered build system/stacks you do not need to redeploy your app to pick up these changes, since your application’s slug is applied on top of the most recent base image for the stack each time a dyno starts. Currently running dynos will be automatically restarted, so there is no need to manually restart your app.

If your app instead uses Heroku’s container stack (most apps do not), you will need to rebuild your app’s Docker image in order to pick up any updates in the base image specified in your Dockerfile.

See this Dev Center article for an overview of the packages available in each stack’s base image.

Changelog of packages

Stack: heroku-20

  • Updated curl from version 7.68.0-1ubuntu2.22 to 7.68.0-1ubuntu2.23
  • Updated libcroco3 from version 0.6.13-1 to 0.6.13-1ubuntu0.1
  • Updated libcurl3-gnutls from version 7.68.0-1ubuntu2.22 to 7.68.0-1ubuntu2.23
  • Updated libcurl4 from version 7.68.0-1ubuntu2.22 to 7.68.0-1ubuntu2.23
  • Updated libgssapi-krb5-2 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libk5crypto3 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkrb5-3 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkrb5support0 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libpq5 from version 16.3-1.pgdg20.04+1 to 16.4-1.pgdg20.04+1
  • Updated libssl1.1 from version 1.1.1f-1ubuntu2.22 to 1.1.1f-1ubuntu2.23
  • Updated linux-libc-dev from version 5.4.0-190.210 to 5.4.0-192.212
  • Updated openssl from version 1.1.1f-1ubuntu2.22 to 1.1.1f-1ubuntu2.23
  • Updated postgresql-client-16 from version 16.3-1.pgdg20.04+1 to 16.4-1.pgdg20.04+1
  • Updated postgresql-client-common from version 261.pgdg20.04+1 to 262.pgdg20.04+1

Updates to packages available at build time only

  • Updated krb5-multidev from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libcurl4-openssl-dev from version 7.68.0-1ubuntu2.22 to 7.68.0-1ubuntu2.23
  • Updated libgssrpc4 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkadm5clnt-mit11 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkadm5srv-mit11 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkdb5-9 from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libkrb5-dev from version 1.17-6ubuntu4.4 to 1.17-6ubuntu4.6
  • Updated libpq-dev from version 16.3-1.pgdg20.04+1 to 16.4-1.pgdg20.04+1
  • Updated libssl-dev from version 1.1.1f-1ubuntu2.22 to 1.1.1f-1ubuntu2.23
  • Updated postgresql-common from version 261.pgdg20.04+1 to 262.pgdg20.04+1
  • Updated postgresql-server-dev-16 from version 16.3-1.pgdg20.04+1 to 16.4-1.pgdg20.04+1

Stack: heroku-22

  • Updated curl from version 7.81.0-1ubuntu1.16 to 7.81.0-1ubuntu1.17
  • Updated libcurl3-gnutls from version 7.81.0-1ubuntu1.16 to 7.81.0-1ubuntu1.17
  • Updated libcurl4 from version 7.81.0-1ubuntu1.16 to 7.81.0-1ubuntu1.17
  • Updated libgssapi-krb5-2 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libk5crypto3 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkrb5-3 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkrb5support0 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libpq5 from version 16.3-1.pgdg22.04+1 to 16.4-1.pgdg22.04+1
  • Updated libssl3 from version 3.0.2-0ubuntu1.16 to 3.0.2-0ubuntu1.17
  • Updated linux-libc-dev from version 5.15.0-117.127 to 5.15.0-118.128
  • Updated openssl from version 3.0.2-0ubuntu1.16 to 3.0.2-0ubuntu1.17
  • Updated postgresql-client-16 from version 16.3-1.pgdg22.04+1 to 16.4-1.pgdg22.04+1
  • Updated postgresql-client-common from version 261.pgdg22.04+1 to 262.pgdg22.04+1

Updates to packages available at build time only

  • Updated krb5-multidev from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libcurl4-openssl-dev from version 7.81.0-1ubuntu1.16 to 7.81.0-1ubuntu1.17
  • Updated libgssrpc4 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkadm5clnt-mit12 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkadm5srv-mit12 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkdb5-10 from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libkrb5-dev from version 1.19.2-2ubuntu0.3 to 1.19.2-2ubuntu0.4
  • Updated libpq-dev from version 16.3-1.pgdg22.04+1 to 16.4-1.pgdg22.04+1
  • Updated libssl-dev from version 3.0.2-0ubuntu1.16 to 3.0.2-0ubuntu1.17

Stack: heroku-24

  • Updated curl from version 8.5.0-2ubuntu10.1 to 8.5.0-2ubuntu10.2
  • Updated libcurl3t64-gnutls from version 8.5.0-2ubuntu10.1 to 8.5.0-2ubuntu10.2
  • Updated libcurl4t64 from version 8.5.0-2ubuntu10.1 to 8.5.0-2ubuntu10.2
  • Updated libgssapi-krb5-2 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libk5crypto3 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkrb5-3 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkrb5support0 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libpq5 from version 16.3-1.pgdg24.04+1 to 16.4-1.pgdg24.04+1
  • Updated libssl3t64 from version 3.0.13-0ubuntu3.1 to 3.0.13-0ubuntu3.2
  • Updated openssl from version 3.0.13-0ubuntu3.1 to 3.0.13-0ubuntu3.2
  • Updated postgresql-client-16 from version 16.3-1.pgdg24.04+1 to 16.4-1.pgdg24.04+1
  • Updated postgresql-client-common from version 261.pgdg24.04+1 to 262.pgdg24.04+1

Updates to packages available at build time only

  • Updated krb5-multidev from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libcurl4-openssl-dev from version 8.5.0-2ubuntu10.1 to 8.5.0-2ubuntu10.2
  • Updated libgssrpc4t64 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkadm5clnt-mit12 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkadm5srv-mit12 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkdb5-10t64 from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libkrb5-dev from version 1.20.1-6ubuntu2 to 1.20.1-6ubuntu2.1
  • Updated libpq-dev from version 16.3-1.pgdg24.04+1 to 16.4-1.pgdg24.04+1
  • Updated libpython3.12-minimal from version 3.12.3-1 to 3.12.3-1ubuntu0.1
  • Updated libpython3.12-stdlib from version 3.12.3-1 to 3.12.3-1ubuntu0.1
  • Updated libssl-dev from version 3.0.13-0ubuntu3.1 to 3.0.13-0ubuntu3.2
  • Updated linux-libc-dev from version 6.8.0-39.39 to 6.8.0-40.40
  • Updated python3.12 from version 3.12.3-1 to 3.12.3-1ubuntu0.1
  • Updated python3.12-minimal from version 3.12.3-1 to 3.12.3-1ubuntu0.1