Buildah, SELinux-Policy, LVM2 updates for Oracle Linux 8

Oracle Linux 6166 Published 2024-03-06 06:52 by Philipp Esselbach

News

The following three updates are available for Oracle Linux 8:

ELSA-2024-12191 Moderate: Oracle Linux 8 buildah security update
ELBA-2024-0111 Oracle Linux 8 selinux-policy bug fix update
ELBA-2024-12180 Oracle Linux 8 lvm2 bug fix update

ELSA-2024-12191 Moderate: Oracle Linux 8 buildah security update

Oracle Linux Security Advisory ELSA-2024-12191

http://linux.oracle.com/errata/ELSA-2024-12191.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
buildah-1.24.6-7.module+el8.9.0+90165+ead7974e.x86_64.rpm
buildah-tests-1.24.6-7.module+el8.9.0+90165+ead7974e.x86_64.rpm
cockpit-podman-46-1.module+el8.9.0+90165+ead7974e.noarch.rpm
cockpit-podman-46-1.module+el8.9.0+90165+ead7974e.noarch.rpm
conmon-2.1.4-2.module+el8.9.0+90165+ead7974e.x86_64.rpm
containernetworking-plugins-1.1.1-6.module+el8.9.0+90165+ead7974e.x86_64.rpm
containernetworking-plugins-1.1.1-6.module+el8.9.0+90165+ead7974e.x86_64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
aardvark-dns-1.0.1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
netavark-1.0.1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
container-selinux-2.205.0-3.module+el8.9.0+90165+ead7974e.noarch.rpm
container-selinux-2.205.0-3.module+el8.9.0+90165+ead7974e.noarch.rpm
criu-3.15-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
crit-3.15-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
python3-criu-3.15-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
criu-devel-3.15-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
criu-libs-3.15-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
crun-1.8.7-1.module+el8.9.0+90165+ead7974e.x86_64.rpm
fuse-overlayfs-1.9-2.module+el8.9.0+90165+ead7974e.x86_64.rpm
fuse-overlayfs-1.9-2.module+el8.9.0+90165+ead7974e.x86_64.rpm
libslirp-4.4.0-1.module+el8.9.0+90165+ead7974e.x86_64.rpm
libslirp-devel-4.4.0-1.module+el8.9.0+90165+ead7974e.x86_64.rpm
oci-seccomp-bpf-hook-1.2.5-2.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-docker-4.0.2-26.module+el8.9.0+90165+ead7974e.noarch.rpm
podman-docker-4.0.2-26.module+el8.9.0+90165+ead7974e.noarch.rpm
podman-remote-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-tests-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-plugins-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-catatonit-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
podman-gvproxy-4.0.2-26.module+el8.9.0+90165+ead7974e.x86_64.rpm
python3-podman-4.0.0-2.module+el8.9.0+90165+ead7974e.noarch.rpm
runc-1.1.12-1.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
runc-1.1.12-1.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.x86_64.rpm
skopeo-1.6.2-9.module+el8.9.0+90165+ead7974e.x86_64.rpm
skopeo-tests-1.6.2-9.module+el8.9.0+90165+ead7974e.x86_64.rpm
slirp4netns-1.1.8-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
slirp4netns-1.1.8-3.module+el8.9.0+90165+ead7974e.x86_64.rpm
udica-0.2.6-4.module+el8.9.0+90165+ead7974e.noarch.rpm

aarch64:
buildah-1.24.6-7.module+el8.9.0+90165+ead7974e.aarch64.rpm
buildah-tests-1.24.6-7.module+el8.9.0+90165+ead7974e.aarch64.rpm
cockpit-podman-46-1.module+el8.9.0+90165+ead7974e.noarch.rpm
cockpit-podman-46-1.module+el8.9.0+90165+ead7974e.noarch.rpm
conmon-2.1.4-2.module+el8.9.0+90165+ead7974e.aarch64.rpm
containernetworking-plugins-1.1.1-6.module+el8.9.0+90165+ead7974e.aarch64.rpm
containernetworking-plugins-1.1.1-6.module+el8.9.0+90165+ead7974e.aarch64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
aardvark-dns-1.0.1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
netavark-1.0.1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
container-selinux-2.205.0-3.module+el8.9.0+90165+ead7974e.noarch.rpm
container-selinux-2.205.0-3.module+el8.9.0+90165+ead7974e.noarch.rpm
criu-3.15-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
crit-3.15-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
python3-criu-3.15-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
criu-devel-3.15-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
criu-libs-3.15-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
crun-1.8.7-1.module+el8.9.0+90165+ead7974e.aarch64.rpm
fuse-overlayfs-1.9-2.module+el8.9.0+90165+ead7974e.aarch64.rpm
fuse-overlayfs-1.9-2.module+el8.9.0+90165+ead7974e.aarch64.rpm
libslirp-4.4.0-1.module+el8.9.0+90165+ead7974e.aarch64.rpm
libslirp-devel-4.4.0-1.module+el8.9.0+90165+ead7974e.aarch64.rpm
oci-seccomp-bpf-hook-1.2.5-2.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-docker-4.0.2-26.module+el8.9.0+90165+ead7974e.noarch.rpm
podman-docker-4.0.2-26.module+el8.9.0+90165+ead7974e.noarch.rpm
podman-remote-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-tests-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-plugins-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-catatonit-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
podman-gvproxy-4.0.2-26.module+el8.9.0+90165+ead7974e.aarch64.rpm
python3-podman-4.0.0-2.module+el8.9.0+90165+ead7974e.noarch.rpm
runc-1.1.12-1.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
runc-1.1.12-1.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.aarch64.rpm
skopeo-1.6.2-9.module+el8.9.0+90165+ead7974e.aarch64.rpm
skopeo-tests-1.6.2-9.module+el8.9.0+90165+ead7974e.aarch64.rpm
slirp4netns-1.1.8-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
slirp4netns-1.1.8-3.module+el8.9.0+90165+ead7974e.aarch64.rpm
udica-0.2.6-4.module+el8.9.0+90165+ead7974e.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.24.6-7.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-46-1.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.4-2.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.1.1-6.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-38.0.1.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.205.0-3.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//criu-3.15-3.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//crun-1.8.7-1.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.9-2.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-1.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.5-2.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//podman-4.0.2-26.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.0.0-2.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-1.0.1.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.6.2-9.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.1.8-3.module+el8.9.0+90165+ead7974e.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-4.module+el8.9.0+90165+ead7974e.src.rpm

Related CVEs:

CVE-2023-39326

Description of changes:

buildah
cockpit-podman
conmon
containernetworking-plugins
containers-common
container-selinux
criu
crun
fuse-overlayfs
libslirp
oci-seccomp-bpf-hook
podman
[2:4.0.2-26]
- rebuild with golang 1.20.12 for CVE-2023-39326

python-podman
runc
[1:1.1.12-1.0.1]
- rebuild with golang 1.20.12 for CVE-2023-39326

skopeo
slirp4netns
udica

ELBA-2024-0111 Oracle Linux 8 selinux-policy bug fix update

Oracle Linux Bug Fix Advisory ELBA-2024-0111

http://linux.oracle.com/errata/ELBA-2024-0111.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
selinux-policy-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-devel-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-doc-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-minimum-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-mls-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-sandbox-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-targeted-3.14.3-128.0.3.el8_9.1.noarch.rpm

aarch64:
selinux-policy-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-devel-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-doc-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-minimum-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-mls-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-sandbox-3.14.3-128.0.3.el8_9.1.noarch.rpm
selinux-policy-targeted-3.14.3-128.0.3.el8_9.1.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//selinux-policy-3.14.3-128.0.3.el8_9.1.src.rpm

Description of changes:

[3.14.3-128.0.3.1]
- Oracle changes are now applied on top of new upstream patchset
- Update "Allow systemd-pstore to transfer files from /sys/fs/pstore" [Orabug: 31594666]
- Revert "Add support for the systemd-pstore service"
Resolves: rhbz#2188268
- Allow ip an explicit domain transition to other domains
Resolves: RHEL-15427
- Allow winbind_rpcd_t processes access when samba_export_all_* is on
Resolves: RHEL-16274

ELBA-2024-12180 Oracle Linux 8 lvm2 bug fix update

Oracle Linux Bug Fix Advisory ELBA-2024-12180

http://linux.oracle.com/errata/ELBA-2024-12180.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
device-mapper-1.02.181-13.0.3.el8_9.x86_64.rpm
device-mapper-event-1.02.181-13.0.3.el8_9.x86_64.rpm
device-mapper-event-libs-1.02.181-13.0.3.el8_9.i686.rpm
device-mapper-event-libs-1.02.181-13.0.3.el8_9.x86_64.rpm
device-mapper-libs-1.02.181-13.0.3.el8_9.i686.rpm
device-mapper-libs-1.02.181-13.0.3.el8_9.x86_64.rpm
lvm2-2.03.14-13.0.3.el8_9.x86_64.rpm
lvm2-dbusd-2.03.14-13.0.3.el8_9.noarch.rpm
lvm2-libs-2.03.14-13.0.3.el8_9.i686.rpm
lvm2-libs-2.03.14-13.0.3.el8_9.x86_64.rpm
lvm2-lockd-2.03.14-13.0.3.el8_9.x86_64.rpm
device-mapper-devel-1.02.181-13.0.3.el8_9.i686.rpm
device-mapper-devel-1.02.181-13.0.3.el8_9.x86_64.rpm
device-mapper-event-devel-1.02.181-13.0.3.el8_9.i686.rpm
device-mapper-event-devel-1.02.181-13.0.3.el8_9.x86_64.rpm
lvm2-devel-2.03.14-13.0.3.el8_9.i686.rpm
lvm2-devel-2.03.14-13.0.3.el8_9.x86_64.rpm

aarch64:
device-mapper-1.02.181-13.0.3.el8_9.aarch64.rpm
device-mapper-event-1.02.181-13.0.3.el8_9.aarch64.rpm
device-mapper-event-libs-1.02.181-13.0.3.el8_9.aarch64.rpm
device-mapper-libs-1.02.181-13.0.3.el8_9.aarch64.rpm
lvm2-2.03.14-13.0.3.el8_9.aarch64.rpm
lvm2-dbusd-2.03.14-13.0.3.el8_9.noarch.rpm
lvm2-libs-2.03.14-13.0.3.el8_9.aarch64.rpm
lvm2-lockd-2.03.14-13.0.3.el8_9.aarch64.rpm
device-mapper-devel-1.02.181-13.0.3.el8_9.aarch64.rpm
device-mapper-event-devel-1.02.181-13.0.3.el8_9.aarch64.rpm
lvm2-devel-2.03.14-13.0.3.el8_9.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//lvm2-2.03.14-13.0.3.el8_9.src.rpm

Description of changes:

[2.03.14-13.0.3]
- Fixed deletion issue for symlink when device is opened [Orabug: 36228608]

TCPDump, SqLite, LibX11, and more updates for RHEL

Mozilla-Thunderbird updates for Slackware

Buildah, SELinux-Policy, LVM2 updates for Oracle Linux 8

ELSA-2024-12191 Moderate: Oracle Linux 8 buildah security update

ELBA-2024-0111 Oracle Linux 8 selinux-policy bug fix update

ELBA-2024-12180 Oracle Linux 8 lvm2 bug fix update

Windows

Linux

macOS

Community