WSL 2.7.0 Kernel Rebase to Linux 6.6 LTS with Security Fixes

Microsoft has published WSL 2.7.0 — a small-but-important update to the Windows Subsystem for Linux that rebases the WSL2 kernel to a newer point release on the Linux 6.6 LTS branch and delivers a batch of security fixes, stability improvements, and settings refinements for both developers and IT administrators.

Background​

WSL (Windows Subsystem for Linux) has become the de facto way for many Windows developers to run Linux toolchains, containers, and GUI apps without a separate VM. Microsoft has progressively modernized WSL over the past years: WSL2 runs a real Linux kernel inside a lightweight VM and Microsoft has increasingly published WSL components and kernel sources on GitHub, enabling community inspection and builds.
WSL's kernel choices matter because the kernel determines hardware support, driver availability, security fixes, and compatibility with in-kernel features like cgroups, vsock, and USB/IP. Microsoft historically chose to base WSL2 on a specific LTS (Long Term Support) kernel series to keep a stable, maintainable surface area of kernel patches while reducing the maintenance burden of chasing mainline kernel churn. The 2.7.0 release continues that practice by moving the WSL kernel to a newer point release in the 6.6 LTS series rather than switching to the newer 6.12 or 6.18 LTS trunks.

---

What changed in WSL 2.7.0 — the quick list​

• Kernel rebase: Microsoft updated the packaged WSL kernel component to Microsoft.WSL.Kernel 6.6.114.1, which corresponds to a downstream point release of the Linux 6.6 LTS tree. This brings the usual assortment of bugfixes and security backports included in that point release.
• Security updates: NuGet/.NET runtime package updates addressing CVE-level fixes (for example, Microsoft.NETCore.App.Runtime updates) are included in the release.
• Settings and UI polish: Improvements to the WSL Settings (wslsettings) application — better text wrapping, selection handling, OOBE behavior, and UI fixes for high-DPI.
• Feature and UX fixes: Restoration of the WSL2_VM_ID environment variable to the system distro, better handling of partial hvsocket writes, virtio networking cleanups, and .vhd edge-case fixes.
• Miscellaneous: Updated packages (DeviceHost), build fixes for Visual Studio 2026, translation updates, and additional logging and test improvements.

Each of the above entries is reflected in Microsoft’s official release tag and changelog for the 2.7.0 tag on the Microsoft/WSL GitHub repository. The release entry for 2.7.0 was created on December 11 (timestamp shown on the release page).

---

Kernel rebase: why 6.6.x and not 6.12/6.18?​

Microsoft’s release notes explicitly show the packaged kernel bumped to 6.6.114.1 (the Microsoft-branded downstream build). That means WSL remains on the Linux 6.6 LTS branch, but at a newer, safer point release that includes security fixes and stability patches.
This choice is deliberate and pragmatic:

• LTS branches provide a controlled base where Microsoft can maintain a smaller, carefully curated set of patches rather than rebasing to a moving target. By staying on 6.6 LTS while updating to a recent point release, Microsoft reduces the risk of introducing regressions from large feature merges. The vendor notes and community reporting around WSL kernel strategy show this is a common trade-off for upstream-backed, vendor-maintained kernel bundles.
• There are newer LTS kernels available (for example, 6.12 was promoted to LTS and later 6.18 was also marked LTS). Those branches are independently maintained and viable choices, but switching a platform kernel across an LTS boundary is a high-effort operation: it often requires retesting virtualization stacks, device support, WSL-specific patches, and the virtio/graphics/USB subsystems exposed to Windows. Kernel.org and distro commentary confirm 6.12 and 6.18 are LTS candidates used by many projects, but that doesn’t make them the automatic choice for WSL.

In short: Microsoft chose safer incremental movement within the same LTS branch (6.6 → 6.6.114) rather than a larger cross-LTS jump that would demand broader compatibility verification. That benefits stability and reduces the regression surface for millions of WSL users.

---

Notable technical details in 2.7.0​

Kernel component and what it includes​

The GitHub release entry shows the kernel packaging change: Microsoft.WSL.Kernel updated to 6.6.114.1. This “Microsoft-branded” kernel is a downstream build of the Linux LTS branch with WSL-specific configuration and patches applied (virtio enhancements, modules, boot-time tweaks, and WSL memory/boot optimizations). These kernels are distributed inside WSL as packaged kernel binaries and are used by the lightweight WSL VM.

Restored environment variable: WSL2_VM_ID​

One practical developer-facing change is the reintroduction of the WSL2_VM_ID environment variable into the system distro. That variable is useful for scripts and tooling that need a stable VM identifier when interacting with services started inside WSL. Restoring it fixes workflows that relied on that identifier being present in prior WSL versions.

Improved error handling and resiliency​

Several fixes reduce crash surface: handling partial hvsocket writes with additional logging, more robust .vhd handling, and preventing crashes when collecting Linux crash dumps with certain configuration values. These are the types of low-level robustness fixes that disproportionately help users who run complex workloads, nested virtualization, or have large on-disk distro images.

---

Security and dependency updates​

WSL 2.7.0 includes updates to Microsoft’s .NET runtime and other NuGet packages — an important inclusion because WSL’s userland tooling and the Windows-hosted services that coordinate the WSL VM depend on these components. Microsoft specifically updated Microsoft.NETCore.App.Runtime packages to include fixes addressing CVE entries. These updates are part of the release’s changelog.
Beyond runtime updates, the kernel point release itself brings kernel-space fixes backported from the broader Linux 6.6.y maintenance stream. These can include drivers, memory-management, and networking fixes that close security or stability holes discovered after earlier WSL shipments. For users in corporate environments, these kernel-level backports are often the most critical reason to upgrade quickly.

---

Practical impact for developers and admins​

• Better stability for container and build workloads: The point-release kernel bump includes bugfixes that reduce crashes and hangs in corner-case drivers and subsystems, which is particularly beneficial for container-heavy workflows and CI pipelines that run inside WSL.
• Improved UI and settings experience: The wslsettings app improvements and text wrapping fixes make configuration and onboarding slightly smoother, particularly on high-DPI screens or for localized users.
• Security posture: Updating Microsoft.NETCore.App.Runtime packages and the kernel point release improves the overall security posture of WSL installations that accept automatic updates from Microsoft’s distribution channels. Admins should consider applying the WSL update in environments that require timely CVE mitigation.
• Reproducible tooling expectations: The restoration of WSL2_VM_ID restores compatibility for automation scripts and tools that depended on that environment variable being present, reducing the need for local workarounds.

---

Risks, caveats and what Microsoft didn’t change​

Not the newest LTS branch​

Although the kernel has been rebased to 6.6.114, Microsoft has not moved WSL to the later LTS branches (6.12 or 6.18) in this release. That means WSL will not immediately benefit from features landed in those branches unless those fixes were separately backported to the 6.6 series. Organizations that require newer in-kernel features or driver updates available only in newer LTS branches will still need to weigh options such as running full VMs or custom kernels. Kernel LTS records confirm multiple LTS branches exist and are actively used; Microsoft’s cautious rebase policy is conservative but deliberate.

Custom kernel builds and manual configuration​

Users who prefer to run a different kernel version inside WSL can still do so via the custom-kernel configuration options — and Microsoft provides guidance on how to point WSL to a custom bzImage. However, building and maintaining a custom kernel for WSL remains an advanced task and carries its own maintenance burden. Official guidance and community documentation exist for custom kernel workflows.

Potential for subtle regressions​

Any kernel rebase, even within the same LTS family, can introduce subtle behavioral changes. For example, differences in module behavior, scheduler adjustments, or memory handling can surface as performance changes under certain workloads. The WSL release notes include test and logging improvements that aim to mitigate and catch regressions, but cautious rollout in production is still recommended.

---

How to get WSL 2.7.0 and best-practice update steps​

• Check your current WSL version and kernel: run wsl --version and uname -r from a WSL shell to see the running kernel and WSL package version.
• If your Windows installation gets WSL updates through the Microsoft Store or Windows Update, allow those updates to apply; for manual installs or builds, download the release from the Microsoft/WSL GitHub repository and follow the package/install instructions.
• If you rely on automation or CI pipelines that depend on the WSL kernel, test the new WSL 2.7.0 build in a staging environment first, especially for workloads that exercise networking, virtio, or USB/IP.
• For organizations, document the rollback path: unregistering or reverting to the previous WSL package and kernel image can save time if an unexpected regression appears in production.
• If you require features beyond 6.6 LTS, evaluate the effort of running a custom kernel in WSL (supported) versus using a full VM with the required kernel version.

Microsoft’s GitHub release entry should be treated as the authoritative distribution point for the 2.7.0 assets and changelog. The release entry was created on December 11 and enumerates the kernel bump, .NET updates, and other fixes.

---

Critical analysis: strengths and limitations​

Strengths​

• Conservative stability-first approach: By moving within the 6.6 LTS branch to a newer point release, Microsoft minimizes regression risk while still delivering crucial kernel fixes. This is the correct trade-off for a widely used subsystem where stability matters.
• Comprehensive maintenance mix: The release shows attention to both kernel security (point-release backports) and user-facing polish (wslsettings fixes, translations). That mix addresses both enterprise needs and daily developer friction.
• Open-source transparency: Microsoft continues to publish WSL tooling and kernel packaging details on GitHub, enabling community review and the ability to build or audit components. That is a positive governance move for trust and developer collaboration.

Limitations and risks​

• Not an LTS branch upgrade: Users hoping for the latest LTS branch features (6.12/6.18) will be disappointed; those features remain upstream and would require a larger project to adopt safely inside WSL. For some niche hardware or bleeding-edge container scenarios, that means WSL may lag mainline Linux for specific needs.
• Operational unknowns for large fleets: Enterprises that run WSL across thousands of developer machines should still perform staged testing. The risk of subtle regressions around I/O, GPU passthrough (WSLg), or nested virtualization remains a practical concern.
• Custom kernel complexity: Running a custom kernel inside WSL remains possible but is non-trivial. For teams that require kernels outside Microsoft’s supported 6.6 channel, that is an extra maintenance burden that will not be removed by this release.

---

Where this fits in the broader Linux-on-Windows story​

WSL’s evolution mirrors a broader industry trend: vendors are delivering managed, opinionated Linux kernels for non-Linux hosts to balance ease-of-use with security and maintainability. Microsoft’s decision to release WSL components as open source and to continue shipping a curated downstream kernel aligns with that trend. The incremental kernel point-release approach reduces churn while delivering actionable fixes — a suitable path for a platform that must run robustly on millions of machines.
Meanwhile, the Linux kernel ecosystem continues to produce new LTS versions (6.12, 6.18, etc., and distributions and vendors will choose when and whether to move to those LTS series. WSL’s pace is conservative by design; that is a strength for stability and a limitation for feature parity with the absolute latest kernels.

---

Recommendations​

• Individual developers and small teams: accept the update when your system prompts or apply the 2.7.0 release from GitHub after a quick smoke test. Expect improved stability and fewer obscure crashes.
• DevOps and enterprise admins: deploy the update to a pilot group, validate your critical CI and container workloads, and then roll out broadly once tests pass. Document and automate rollback steps.
• Power users seeking newer kernel features: if you need driver/hardware features absent from 6.6, evaluate either a custom WSL kernel (advanced) or a full VM environment that can track a newer LTS branch. Use Microsoft’s documentation for configuring custom kernels where needed.

---

Conclusion​

WSL 2.7.0 is a pragmatic maintenance release: the headline change is the kernel rebase to Microsoft.WSL.Kernel 6.6.114.1, which brings important security and stability fixes without forcing a risky cross-LTS jump. The release also restores a helpful environment variable, tightens various WSL settings and UI behaviors, and updates runtime dependencies that impact security. For the majority of users — from hobbyists to professional developers — this release improves reliability with minimal disruption. Organizations that require the absolute latest kernel features should continue to evaluate the trade-offs between staying on WSL’s conservative, supported path and pursuing custom kernels or alternative VM-based approaches.

---

---

Source: Phoronix Windows WSL 2.7.0 Released With Newer Linux 6.6 LTS Point Release, Many Fixes - Phoronix