AL2023 dnf check-release-update plugin does not report the latest release version

If you are performing in-place patching of Amazon Linux 2023, instances may be affected by an issue in the check-release-update command [1] of the DNF package manager that results in it returning a release, which is not the latest. This command is run on an instance to determine what release that instance can be updated to, and is used by SSM Patch Manager to deploy updates to instances. You are not affected if you are updating via host-replacement using the latest AMIs. A fix is available in the 2023.10.20260120 release of Amazon Linux 2023.

If you are using Amazon Linux 2023 release 2023.9.20251117 or earlier, you can explicitly update to the new release by giving the --releasever=2023.10.20260120 argument to the dnf package manager. If you are using 2023.9.20251208 or later, no customer action is required.

[1] https://docs.aws.amazon.com/linux/al2023/ug/managing-repos-os-updates.html#dnf-repository-updates