cos-105-17412-535-98

Security

Fixed CVE-2024-57977 in the Linux kernel.

Security

Fixed CVE-2025-21846 in the Linux kernel.

Security

Updated dev-go/net to v0.33.0. This fixed CVE-2023-45288.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812690 -> 812692

Security

Fixed CVE-2025-21763 in the Linux kernel.

Security

Fixed CVE-2025-21726 in the Linux kernel.

Security

Fixed CVE-2024-57979 in the Linux kernel.

Security

Fixed CVE-2024-53174 in the Linux kernel.

Security

Fixed CVE-2025-21760 in the Linux kernel.

Security

Fixed CVE-2024-56558 in the Linux kernel.

Security

Fixed CVE-2025-21796 in the Linux kernel.

Security

Fixed CVE-2025-21844 in the Linux kernel.

Security

Fixed CVE-2025-21814 in the Linux kernel.

Security

Fixed CVE-2024-58005 in the Linux kernel.

Security

Fixed CVE-2024-53194 in the Linux kernel.

Security

Fixed CVE-2025-21745 in the Linux kernel.

Security

Fixed CVE-2025-21727 in the Linux kernel.

Security

Fixed KCTF-fcdd224 in the Linux kernel.

Security

Fixed CVE-2025-21764 in the Linux kernel.

Security

Fixed CVE-2025-21762 in the Linux kernel.

cos-105-17412-535-84

Security

Fixed CVE-2025-21791 in the Linux kernel.

Security

Fixed CVE-2025-21858 in the Linux kernel.

Security

Fixed CVE-2024-58017 in the Linux kernel.

Security

Fixed CVE-2025-21785 in the Linux kernel.

Security

Fixed CVE-2022-49728 in the Linux kernel.

Security

Fixed KCTF-638ba50 in the Linux kernel.

Security

Fixed KCTF-647cef2 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812699 -> 812690

cos-105-17412-535-78

Security

Fixed CVE-2025-26465 and CVE-2025-26466 in net-misc/openssh.

Change

Upgraded gzip to v1.13.

Security

Upgraded dev-libs/libxml2 to version 1.12.10. This fixes CVE-2024-56171, CVE-2025-27113 and CVE-2025-24928.

Feature

Added support for NVIDIA 570.124.06 GPU driver. Updated the R570, LATEST GPU driver label to version 570.124.06 for all GPU devices. Updated the DEFAULT GPU driver label to version 570.124.06 for NVIDIA_H200 GPU devices.

Security

Upgraded dev-go/crypto to v0.35.0. This fixes CVE-2025-22869.

Security

Fixed CVE-2024-53589 in sys-libs/libutils-libs.

Security

Fixed CVE-2024-57946 in the Linux kernel.

Fixed

Fixed console TTY leak in runc shim in containerd.

Security

Fixed CVE-2024-26982 in the Linux kernel.

Change

Updated the default tag of the GPU driver supporting the NVIDIA H200 GPU device to 570.86.15.

Security

Fixed CVE-2023-45288 in app-containers/docker.

Feature

Updated cos-gpu-installer to v2.4.8: Add the -skip-nvidia-smi flag to disable the execution of nvidia-smi verification during gpu driver installation.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812677 -> 812699

Security

Upgraded net-misc/wget to version 1.25.0. This fixes CVE-2024-10524.

cos-105-17412-535-63

Fixed

Upgraded sys-apps/which to v2.23.

Security

Fixed CVE-2025-21690 in the Linux kernel.

Fixed

Upgraded sys-apps/diffutils to v3.11-r1.

cos-105-17412-535-61

Security

Fixed CVE-2024-9287 in dev-lang/python.

Security

Fixed CVE-2024-53215 in the Linux kernel.

Security

Fixed CVE-2024-57951 in the Linux kernel.

Security

Fixed CVE-2023-27043 in dev-lang/python.

Security

Fixed CVE-2025-0395 in sys-libs/glibc.

Security

Fixed CVE-2024-56569 in the Linux kernel.

cos-105-17412-535-59

Security

Fixed CVE-2024-53215 in the Linux kernel.

Security

Fixed CVE-2025-0395 in sys-libs/glibc.

Security

Fixed CVE-2023-27043 in dev-lang/python.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812690 -> 812681

Security

Fixed CVE-2024-56569 in the Linux kernel.

Security

Fixed CVE-2024-9287 in dev-lang/python.

cos-105-17412-535-55

Security

Fixed CVE-2025-21683 in the Linux kernel.

Security

Fixed CVE-2025-21669 in the Linux kernel.

Fixed

Upgraded sys-apps/diffutils to v3.11.

Security

Fixed CVE-2024-48881 in the Linux kernel.

Security

Fixed CVE-2025-21665 in the Linux kernel.

Security

Fixed CVE-2024-56672 in the Linux kernel.

Security

Fixed CVE-2025-0840 in binutils.

Change

Updated Konlet to v0.13.4.

Security

Fixed CVE-2024-50304 in the Linux kernel.

Security

Fixed CVE-2024-57874 in the Linux kernel.

Security

Fixed CVE-2024-53217 in the Linux kernel.

Security

Fixed CVE-2025-21666 in the Linux kernel.

Security

Fixed CVE-2025-21631 in the Linux kernel.

cos-105-17412-535-42

Security

Fixed CVE-2024-56688 in the Linux kernel.

Security

Fixed CVE-2024-53124 in the Linux kernel.

Security

Fixed KCTF-bc50835 in the Linux kernel.

Security

Fixed CVE-2024-47707 in the Linux kernel.

Security

Fixed CVE-2024-40896 in libxml2.

Security

Fixed KCTF-3d5ad2d in the Linux kernel.

Security

Fixed CVE-2024-56756 in the Linux kernel.

Feature

Added NVIDIA GPU driver's R570 branch. Updated the LATEST GPU driver label to version 570.86.15.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812681 -> 812686

cos-105-17412-535-34

Security

Fixed CVE-2024-53121 in the Linux kernel.

Security

Update NVIDIA GPU drivers to v535.230.02 for R535 and v550.144.03 for R550 for all GPUs. This resolves CVE-2024-53869, CVE-2024-0150, CVE-2024-0149, CVE-2024-0147 and CVE-2024-0131.

Security

Fixed CVE-2024-50275 in the Linux kernel.

Security

Fixed CVE-2024-50055 in the Linux kernel.

Security

Fixed CVE-2024-53206 in the Linux kernel.

Security

Fixed KCTF-f8d4bc4 in the Linux kernel.

Security

Fixed CVE-2024-56763 in the Linux kernel.

Security

Fixed CVE-2024-53136 in the Linux kernel.

Feature

Added NVIDIA GPU drivers R565 branch - Update R565, latest driver to v565.57.01.

Security

Fixed CVE-2024-53140 in the Linux kernel.

Security

Fixed CVE-2024-53119 in the Linux kernel.

Security

Fixed CVE-2024-56779 in the Linux kernel.

Security

Fixed CVE-2024-56601 in the Linux kernel.

Security

Fixed CVE-2024-56600 in the Linux kernel.

Security

Upgraded dev-go/crypto to v0.31.0. This fixes CVE-2024-45337.

Security

Fixed CVE-2024-53142 in the Linux kernel.

Security

Fixed CVE-2024-53173 in the Linux kernel.

Security

Fixed CVE-2024-49996 in the Linux kernel.

Security

Fixed CVE-2024-53113 in the Linux kernel.

Security

Fixed CVE-2024-57841 in the Linux kernel.

Security

Fixed CVE-2024-56615 in the Linux kernel.

Security

Fixed CVE-2024-55916 in the Linux kernel.

Security

Fixed CVE-2024-50121 in the Linux kernel.

Fixed

Upgraded sys-apps/file to v5.46-r2.

Security

Fixed KCTF-5eb7de8 in the Linux kernel.

Security

Fixed CVE-2024-45306 and CVE-2024-47814 in vim-core.

Security

Fixed CVE-2024-45306 and CVE-2024-47814 in vim.

Security

Fixed CVE-2024-57890 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812682 -> 812681

cos-105-17412-535-16

Security

Fixed CVE-2024-56606 in the Linux kernel.

Security

Fixed KCTF-35f56c5 in the Linux kernel.

Security

Fixed CVE-2024-56614 in the Linux kernel.

Security

Fixed CVE-2024-56745 in the Linux kernel.

Security

Fixed CVE-2024-53146 in the Linux kernel.

Security

Fixed CVE-2024-56739 in the Linux kernel.

Security

Fixed CVE-2024-56694 in the Linux kernel.

Security

Fixed CVE-2024-53151 in the Linux kernel.

Security

Fixed CVE-2024-56780 in the Linux kernel.

Security

Upgraded rsync to version 3.3.0-r2. This fixes CVE-2024-12084, CVE-2024-12085, CVE-2024-12086, CVE-2024-12087, CVE-2024-12088, and CVE-2024-12747.

Security

Fixed CVE-2024-56720 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812690 -> 812682

cos-105-17412-535-6

Announcement

This is an LTS Refresh release.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812681 -> 812690

Feature

Added NVIDIA GPU drivers R560 branch - Update R560, latest driver to v560.35.03.

Fixed

Upgraded sys-apps/file to v5.46-r1.

Fixed

Fixed a kernel crash that occurred when running some BPF programs.

cos-105-17412-495-77

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812685 -> 812681

Security

Fixed CVE-2024-53099 in the Linux kernel.

cos-105-17412-495-75

Security

Fixed CVE-2024-50194 in the linux kernel.

cos-105-17412-495-73

Security

Fixed CVE-2024-50186 in the Linux kernel.

Security

Fixed CVE-2024-50191 in the Linux kernel.

cos-105-17412-495-69

Security

Fixed CVE-2024-50141 in the Linux kernel.

Feature

Upgraded cos-gpu-installer to v2.4.6: Support NVIDIA_H200 GPU in cos-gpu-installer.

Security

Fixed CVE-2024-50278 in the Linux kernel.

Security

Fixed CVE-2024-53052 in the Linux kernel.

Security

Upgraded dev-libs/libgcrypt to v1.10.1-r3. Fixes CVE-2024-2236.

Feature

Support NVIDIA_H200 GPU - Added support for the R560 series, including driver versions 560.35.03. Added support for the R550 series, including driver versions 550.127.05 and 550.90.12. Assigned the latest, default, and R560 tags to driver version 560.35.03. Assigned the R550 tag to driver version 550.127.05.

cos-105-17412-495-62

Security

Fixed CVE-2024-50195 in the Linux kernel.

Security

Fixed CVE-2024-53066 in the Linux kernel.

Security

Fixed CVE-2024-50151 in the Linux kernel.

Security

Fixed CVE-2024-50143 in the Linux kernel.

Security

Fixed CVE-2024-38538 in the Linux kernel.

Security

Fixed CVE-2024-50153 in the Linux kernel.

Security

Fixed CVE-2024-50257 in the Linux kernel.

Security

Updated net-misc/curl to v8.11.0. This fixes CVE-2024-9681. Added duphandle-init-netrc.patch, netrc-large-file.patch, setopt-http_content_decoding.patch to fix regression issues in curl v8.11.0.

Security

Updated runc to version 1.1.14. This fixes CVE-2024-45310, CVE-2024-9341, CVE-2024-9407, and CVE-2024-9675.

Change

Upgraded app-shells/dash to v0.5.12-r1.

Security

Fixed CVE-2024-50036 in the Linux kernel.

Security

Fixed CVE-2024-50099 in the Linux kernel.

Security

Fixed CVE-2024-50142 in the Linux kernel.

Security

Fixed KCTF-6ca5753 in the Linux kernel.

Security

Fixed CVE-2024-50228 in the Linux kernel.

Change

Upgraded sys-apps/makedumpfile to v1.7.6.

Security

Fixed CVE-2024-49927 in the Linux kernel.

Security

Fixed CVE-2024-50279 in the Linux kernel.

Security

Fixed CVE-2024-50095 in the Linux kernel.

Security

Fixed CVE-2024-49949 in the Linux kernel.

Security

Fixed CVE-2024-50072 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812699 -> 812685

Change

Upgraded sys-process/lsof to v4.99.4.

Security

Fixed CVE-2024-49878 in the Linux kernel.

Security

Fixed CVE-2024-49946 in the Linux kernel.

Fixed

Upgraded cos-gpu-installer to v2.4.4. This fixes an issue where GPU drivers that only have two numeric version components could not be loaded.

Security

Fixed CVE-2024-50163 in the Linux kernel.

Security

Fixed CVE-2024-50262 in the Linux kernel.

Security

Fixed CVE-2024-50192 in the Linux kernel.

Security

Fixed CVE-2024-50154 in the Linux kernel.

Security

Fixed CVE-2024-49948 in the Linux kernel.

Security

Fixed CVE-2024-50162 in the Linux kernel.

Security

Fixed CVE-2024-50251 in the Linux kernel.

cos-105-17412-495-45

Security

Fixed CVE-2024-46855 in the Linux kernel.

Security

Fixed CVE-2024-50131 in the Linux kernel.

Security

Fixed CVE-2024-50110 in the Linux kernel.

Security

Fixed CVE-2024-49954 in the Linux kernel.

Security

Fixed CVE-2024-50010 in the Linux kernel.

Security

Fixed CVE-2024-49959 in the Linux kernel.

Security

Fixed CVE-2024-49952 in the Linux kernel.

cos-105-17412-495-37

Security

Fixed CVE-2024-50082 in the Linux kernel.

Security

Fixed CVE-2024-50002 in the Linux kernel.

Security

Fixed CVE-2024-50006 in the Linux kernel.

Security

Fixed CVE-2024-50015 in the Linux kernel.

Security

Fixed CVE-2024-50024 in the Linux kernel.

Security

Fixed CVE-2024-50038 in the Linux kernel.

Security

Fixed CVE-2024-49967 in the Linux kernel.

Security

Fixed CVE-2024-50602 in dev-libs/expat.

Security

Fixed KCTF-2e95c43 in the Linux kernel.

Security

Fixed CVE-2024-50083 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812681 -> 812709

Security

Fixed CVE-2024-50001 in the Linux kernel.

Security

Fixed CVE-2024-49881 in the Linux kernel.

cos-105-17412-495-28

Security

Fixed CVE-2024-47679 in the Linux kernel.

Security

Updated NVIDIA GPU drivers to v535.216.01 for default/R535 and v550.127.05 for R550 for all GPUs. This resolves CVE-2024-0126.

Security

Fixed CVE-2024-50000 in the Linux kernel.

Security

Fixed CVE-2024-49936 in the Linux kernel.

Security

Fixed CVE-2024-47710 in the Linux kernel.

Security

Fixed CVE-2024-50033 in the Linux kernel.

Security

Fixed CVE-2024-47705 in the Linux kernel.

Security

Fixed CVE-2024-47739 in the Linux kernel.

Security

Fixed CVE-2024-49993 in the Linux kernel.

Security

Fixed CVE-2024-47684 in the Linux kernel.

Security

Fixed CVE-2024-49889 in the Linux kernel.

Security

Fixed CVE-2024-47701 in the Linux kernel.

Security

Fixed CVE-2024-50019 in the Linux kernel.

Security

Fixed CVE-2024-50046 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812685 -> 812681

Security

Fixed CVE-2024-50035 in the Linux kernel.

Security

Fixed CVE-2024-49858 in the Linux kernel.

Security

Fixed CVE-2024-50039 in the Linux kernel.

Security

Fixed CVE-2024-49875 in the Linux kernel.

Security

Fixed CVE-2024-47692 in the Linux kernel.

Security

Fixed CVE-2024-47696 in the Linux kernel.

Security

Fixed CVE-2024-50045 in the Linux kernel.

Security

Fixed CVE-2024-49884 in the Linux kernel.

Security

Fixed CVE-2024-47742 in the Linux kernel.

Feature

Added NVIDIA GPU drivers R560 branch - Update R560, latest driver to v560.35.03.

Security

Fixed CVE-2024-49975 in the Linux kernel.

Security

Fixed CVE-2024-49983 in the Linux kernel.

Security

Fixed CVE-2024-49860 in the Linux kernel.

Security

Fixed CVE-2024-49851 in the Linux kernel.

Security

Fixed CVE-2024-49883 in the Linux kernel.

Security

Fixed CVE-2024-47693 in the Linux kernel.

Security

Fixed CVE-2024-47737 in the Linux kernel.

Security

Fixed CVE-2024-47706 in the Linux kernel.

cos-105-17412-495-13

Security

Fixed CVE-2024-8096 and CVE-2024-7264 in net-misc/curl.

Change

Upgraded app-containers/cni-plugins to v1.5.1.

Feature

Updated R550, latest driver to v550.90.12.

Change

Upgraded app-admin/google-guest-configs to v20240725.00.

Security

Fixed CVE-2024-47685 in the Linux kernel.

Security

Fixed CVE-2024-38632 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812700 -> 812685

Security

Fixed CVE-2024-47674 in the Linux kernel.

Security

Fixed CVE-2024-27017 in the Linux kernel.

Security

Fixed CVE-2024-39463 in the Linux kernel.

cos-105-17412-495-4

Announcement

This is an LTS Refresh release.

Change

Updated app-containers/containerd to 1.7.23.

Change

Upgraded app-arch/lz4 to v1.10.0-r1.

Security

Fixed CVE-2024-43892 in the Linux kernel.

Change

Upgraded net-nds/rpcbind to v1.2.6.

Security

Fixed CVE-2024-44958 in the Linux kernel.

Security

Updated app-arch/libarchive to version 3.7.6. This fixed CVE-2024-48957, CVE-2024-48958.

Change

Upgraded sys-libs/libcap to v2.70.

Change

Upgraded app-arch/pigz to v2.8.

Change

Upgraded sys-libs/gdbm to v1.24.

Change

Upgraded net-libs/libnetfilter_cthelper to v1.0.1-r1.

Change

Upgraded net-libs/libnetfilter_queue to v1.0.5.

Change

Upgraded net-libs/libmnl to v1.0.5.

Change

Upgraded net-libs/libtirpc to v1.3.4-r3.

Change

Upgraded sys-libs/zlib to v1.3.1-r1.

Change

Upgraded dev-libs/nss to v3.103.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812681 -> 812700

Change

Upgraded net-libs/libnetfilter_cttimeout to v1.0.1.

cos-105-17412-448-66

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812685 -> 812681

Security

Fixed CVE-2024-44965 in the Linux kernel.

Fixed

Update sosreport to v4.5.4

Security

Fixed CVE-2024-46829 in the Linux kernel.

Security

Fixed CVE-2024-45003 in the Linux kernel.

cos-105-17412-448-61

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812662 -> 812685

Feature

Update R535 default driver to v535.183.06.

Security

Fixed CVE-2024-46744 in the Linux kernel.

Fixed

Updated the GPU installer to v2.4.1.

Security

Fixed CVE-2024-46750 in the Linux kernel.

cos-105-17412-448-57

Feature

Fixed A3 Edge VM names in google guest agent configs.

Security

Fixed CVE-2024-46679 in the Linux kernel.

Security

Fixed CVE-2024-46743 in the Linux kernel

Fixed

Updated cos-gpu-installer to v2.4.0. It identifies GPU drivers before installation.

Security

Fixed CVE-2024-42246 in the Linux kernel

Security

Fixed CVE-2024-46800 in the Linux kernel

Change

Upgraded app-admin/google-guest-configs to v20240725.00.

Security

Fixed CVE-2024-46763 in the Linux kernel.

Security

Fixed CVE-2024-46738 in the Linux kernel

Security

Fixed CVE-2024-46721 in the Linux kernel

Security

Fixed CVE-2024-44940 in the Linux kernel

cos-105-17412-448-49

Security

Fixed CVE-2024-45018 in the Linux kernel

Security

Fixed CVE-2024-43817 in the Linux kernel

Security

Fixed CVE-2024-45025 in the Linux kernel

Security

Fixed CVE-2024-44983 in the Linux kernel

Security

Fixed CVE-2024-43871 in the Linux kernel

Security

Fixed CVE-2024-44947 in the Linux kernel

Security

Fixed CVE-2024-44952 in the Linux kernel

Security

Fixed CVE-2024-43893 in the Linux kernel

Security

Fixed CVE-2024-45021 in the Linux kernel

Security

Fixed CVE-2024-41012 in the Linux kernel

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812685 -> 812689

Security

Fixed CVE-2024-7592 in dev-lang/python.

cos-105-17412-448-36

Security

Fixed CVE-2024-44986 in the Linux kernel

Security

Fixed CVE-2024-44944 in the Linux kernel

Security

Fixed CVE-2024-44987 in the Linux kernel

Security

Fixed CVE-2024-6232 in dev-lang/python and upgraded to v3.8.19 which fixes CVE-2007-4559.

Security

Fixed CVE-2023-7256 in net-libs/libpcap.

Security

Fixed CVE-2024-43882 in the Linux kernel

Security

Fixed CVE-2024-43914 in the Linux kernel

Security

Updated dev-libs/expat to v2.6.3. This fixed CVE-2024-45492, CVE-2024-45490, CVE-2024-45491.

Security

Fixed CVE-2024-43853 in the Linux kernel

Security

Fixed CVE-2024-44985 in the Linux kernel

cos-105-17412-448-29

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812696 -> 812685
• Changed: net.ipv4.tcp_rto_min_us: 200000 -> 5000

Security

Fixes CVE-2024-37370, CVE-2024-37371 in app-crypt/mit-krb5.

Security

Fixes CVE-2024-41098 in Linux kernel.

Security

Fixes CVE-2024-43854 in the Linux kernel.

Security

Fixes CVE-2024-43856 in the Linux kernel.

Security

Fixes CVE-2024-43889 in the Linux kernel.

Security

Fixes CVE-2024-44934 in the Linux kernel.

Security

Fixes CVE-2024-43828 in the Linux kernel.

Security

Fixes CVE-2024-42302 in the Linux kernel.

Security

Fixes CVE-2024-41073 in the Linux kernel.

cos-105-17412-448-22

Security

Fixed KCTF-c07ff85 in the Linux kernel.

Security

Fixed CVE-2024-42270 in the Linux kernel.

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812685 -> 812696

Security

Fixed CVE-2024-42285 in the Linux kernel.

Security

Fixed CVE-2024-42269 in the Linux kernel.

Security

Updated app-editors/vim, app-editors/vim-core to version 9.1.0686. This fixed CVE-2024-41957, CVE-2024-41965.

Security

Fixed CVE-2024-42283 in the Linux kernel.

Security

Fixed CVE-2023-52889 in the Linux kernel.

cos-105-17412-448-16

Change

Runtime sysctl changes:

• Changed: fs.file-max: 812707 -> 812685
• Changed: kernel.threads-max: 63552 -> 63551
• Changed: net.ipv4.tcp_mem: 94140 125520 188280 -> 94137 125519 188274
• Changed: net.ipv4.udp_mem: 188280 251041 376560 -> 188277 251039 376554
• Changed: user.max_cgroup_namespaces: 31776 -> 31775
• Changed: user.max_ipc_namespaces: 31776 -> 31775
• Changed: user.max_mnt_namespaces: 31776 -> 31775
• Changed: user.max_net_namespaces: 31776 -> 31775
• Changed: user.max_pid_namespaces: 31776 -> 31775
• Changed: user.max_time_namespaces: 31776 -> 31775
• Changed: user.max_user_namespaces: 31776 -> 31775
• Changed: user.max_uts_namespaces: 31776 -> 31775

Security

Fixed CVE-2023-0597 in the Linux kernel.

cos-105-17412-448-12

Security

Fixed CVE-2024-6602 in dev-libs/nss.

Change

Runtime sysctl changes:

• Added: vm.unprivileged_userfaultfd: 0
• Changed: fs.file-max: 812708 -> 812707