Oracle Linux 6256 Published by

The following updates are available for Oracle Linux:

ELSA-2024-2853 Important: Oracle Linux 9 nodejs:20 security update
ELBA-2024-2841 Oracle Linux 9 .NET 6.0 bugfix update
ELBA-2024-12359 Oracle Linux 8 oVirt 4.4 nispor bug fix update
ELBA-2024-12361 Oracle Linux 8 oVirt 4.4 ovirt-engine bug fix update
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update (aarch64)
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update




ELSA-2024-2853 Important: Oracle Linux 9 nodejs:20 security update


Oracle Linux Security Advisory ELSA-2024-2853

http://linux.oracle.com/errata/ELSA-2024-2853.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm
nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.x86_64.rpm

aarch64:
nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm
nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm

Related CVEs:

CVE-2024-22025
CVE-2024-25629
CVE-2024-27982
CVE-2024-27983
CVE-2024-28182

Description of changes:

nodejs
[1:20.12.2-2]
- Backport nghttp2 patch for CVE-2024-28182

[1:20.12.2-1]
- Rebase to version 20.12.0
Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 (node)
Fixes: CVE-2024-25629 (c-ares)

nodejs-nodemon
nodejs-packaging



ELBA-2024-2841 Oracle Linux 9 .NET 6.0 bugfix update


Oracle Linux Bug Fix Advisory ELBA-2024-2841

http://linux.oracle.com/errata/ELBA-2024-2841.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
aspnetcore-runtime-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
aspnetcore-targeting-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-apphost-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-hostfxr-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-runtime-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-sdk-6.0-6.0.130-1.0.1.el9_4.x86_64.rpm
dotnet-targeting-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-templates-6.0-6.0.130-1.0.1.el9_4.x86_64.rpm
dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.0.1.el9_4.x86_64.rpm

aarch64:
aspnetcore-runtime-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
aspnetcore-targeting-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-apphost-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-hostfxr-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-runtime-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-sdk-6.0-6.0.130-1.0.1.el9_4.aarch64.rpm
dotnet-targeting-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-templates-6.0-6.0.130-1.0.1.el9_4.aarch64.rpm
dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.0.1.el9_4.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dotnet6.0-6.0.130-1.0.1.el9_4.src.rpm

Description of changes:

[6.0.130-1.0.1]
- Add support for Oracle Linux

[6.0.130-1]
- Update to .NET SDK 6.0.130 and Runtime 6.0.30
- Resolves: RHEL-35310



ELBA-2024-12359 Oracle Linux 8 oVirt 4.4 nispor bug fix update


Oracle Linux Bug Fix Advisory ELBA-2024-12359

http://linux.oracle.com/errata/ELBA-2024-12359.html

The following updated rpms for Oracle Linux 8 oVirt 4.4 have been uploaded to the Unbreakable Linux Network:

x86_64:
nispor-1.2.15-1.el8.x86_64.rpm
nispor-devel-1.2.15-1.el8.x86_64.rpm
python3-nispor-1.2.15-1.el8.noarch.rpm
nispor-debugsource-1.2.15-1.el8.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nispor-1.2.15-1.el8.src.rpm

Description of changes:

[1.2.15-1]
- Upgrade to 1.2.15. NoBugSpecified

[1.2.10-1]
- Upgrade to 1.2.10. RHBZ#2153166

[1.2.9-1]
- Upgrade to 1.2.9. RHBZ#2153166

[1.2.7-1]
- Upgrade to 1.2.7. RHBZ#2064295

[1.2.5-1]
- Upgrade to 1.2.5. RHBZ#2064295

[1.2.4-1]
- Upgrade to 1.2.4. RHBZ#2064295

* Thu Jan 13 2022 - 1.2.3-1
- Update to 1.2.3. RHBZ#1996619

[1.2.2-2]
- Fix bridge vlan filtering on i40e. RHBZ#2026621

[1.2.2-1]
- Upgrade to 1.2.2. RHBZ#1996619

[1.2.1-1]
- Upgrade to 1.2.1. RHBZ#1996619

[1.2.0-1]
- Upgrade to 1.2.0. RHBZ#1996619

[1.1.1-1]
- Upgrade to 1.1.1. RHBZ#1942459

[1.1.0-3]
- Include SPEC information for bundled rust crates. RHBZ#1927789

[1.1.0-2]
- Fix cli output, loopback interface and ethtool features.

[1.1.0-1]
- Upgrade to 1.1.0. RHBZ#1942459

[1.0.2-4]
- Remove the varlink support. RHBZ#1926941

[1.0.1-3]
- Add support to bond vlan+srcmac tx hashing option. RHBZ#1919986

[1.0.1-2]
- Upload new cargo vendor tarbal without crates used for windows platform.

[1.0.1-1]
- Upgrade to 1.0.1

[1.0.0-1]



ELBA-2024-12361 Oracle Linux 8 oVirt 4.4 ovirt-engine bug fix update


Oracle Linux Bug Fix Advisory ELBA-2024-12361

http://linux.oracle.com/errata/ELBA-2024-12361.html

The following updated rpms for Oracle Linux 8 oVirt 4.4 have been uploaded to the Unbreakable Linux Network:

x86_64:
ovirt-engine-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-backend-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-dbscripts-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-health-check-bundler-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-restapi-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-base-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-cinderlib-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-imageio-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-common-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-websocket-proxy-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-tools-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-tools-backup-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-vmconsole-proxy-helper-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-webadmin-portal-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-websocket-proxy-4.4.10.7-1.0.32.el8.noarch.rpm
python3-ovirt-engine-lib-4.4.10.7-1.0.32.el8.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//ovirt-engine-4.4.10.7-1.0.32.el8.src.rpm

Description of changes:

[4.4.10.7-1.0.32]
- Upgrade bundled frontend dependency of jquery-ui

[4.4.10.7-1.0.31]
- Allow enrolling certificates in non-responsive state and Extend the lifetime of non-web certificates



ELSA-2024-2881 Important: Oracle Linux 7 firefox security update (aarch64)


Oracle Linux Security Advisory ELSA-2024-2881

http://linux.oracle.com/errata/ELSA-2024-2881.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
firefox-115.11.0-1.0.1.el7_9.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-115.11.0-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777

Description of changes:

[115.11.0-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.11.0-1]
- Update to 115.11.0 build1



ELSA-2024-2881 Important: Oracle Linux 7 firefox security update


Oracle Linux Security Advisory ELSA-2024-2881

http://linux.oracle.com/errata/ELSA-2024-2881.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-115.11.0-1.0.1.el7_9.i686.rpm
firefox-115.11.0-1.0.1.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-115.11.0-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777

Description of changes:

[115.11.0-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[115.11.0-1]
- Update to 115.11.0 build1