ELSA-2024-0790 Moderate: Oracle Linux 9 nss security update
ELBA-2024-0718 Oracle Linux 9 osbuild bug fix update
ELBA-2024-0788 Oracle Linux 8 osbuild bug fix update
ELBA-2024-12156 Oracle Linux 8 jq bug fix update
ELSA-2024-0769 Moderate: Oracle Linux 8 tcpdump security update
ELSA-2024-12158 Moderate: Oracle Linux 7 openssh security update (aarch64)
ELSA-2024-12157 Moderate: Oracle Linux 7 openssh security update
ELBA-2024-0762 Oracle Linux 6 Extended Lifecycle Support (ELS) tzdata bug fix and enhancement update
ELSA-2024-0790 Moderate: Oracle Linux 9 nss security update
Oracle Linux Security Advisory ELSA-2024-0790
http://linux.oracle.com/errata/ELSA-2024-0790.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
nspr-4.35.0-6.el9_3.i686.rpm
nspr-4.35.0-6.el9_3.x86_64.rpm
nspr-devel-4.35.0-6.el9_3.i686.rpm
nspr-devel-4.35.0-6.el9_3.x86_64.rpm
nss-3.90.0-6.el9_3.i686.rpm
nss-3.90.0-6.el9_3.x86_64.rpm
nss-devel-3.90.0-6.el9_3.i686.rpm
nss-devel-3.90.0-6.el9_3.x86_64.rpm
nss-softokn-3.90.0-6.el9_3.i686.rpm
nss-softokn-3.90.0-6.el9_3.x86_64.rpm
nss-softokn-devel-3.90.0-6.el9_3.i686.rpm
nss-softokn-devel-3.90.0-6.el9_3.x86_64.rpm
nss-softokn-freebl-3.90.0-6.el9_3.i686.rpm
nss-softokn-freebl-3.90.0-6.el9_3.x86_64.rpm
nss-softokn-freebl-devel-3.90.0-6.el9_3.i686.rpm
nss-softokn-freebl-devel-3.90.0-6.el9_3.x86_64.rpm
nss-sysinit-3.90.0-6.el9_3.x86_64.rpm
nss-tools-3.90.0-6.el9_3.x86_64.rpm
nss-util-3.90.0-6.el9_3.i686.rpm
nss-util-3.90.0-6.el9_3.x86_64.rpm
nss-util-devel-3.90.0-6.el9_3.i686.rpm
nss-util-devel-3.90.0-6.el9_3.x86_64.rpm
aarch64:
nspr-4.35.0-6.el9_3.aarch64.rpm
nspr-devel-4.35.0-6.el9_3.aarch64.rpm
nss-3.90.0-6.el9_3.aarch64.rpm
nss-devel-3.90.0-6.el9_3.aarch64.rpm
nss-softokn-3.90.0-6.el9_3.aarch64.rpm
nss-softokn-devel-3.90.0-6.el9_3.aarch64.rpm
nss-softokn-freebl-3.90.0-6.el9_3.aarch64.rpm
nss-softokn-freebl-devel-3.90.0-6.el9_3.aarch64.rpm
nss-sysinit-3.90.0-6.el9_3.aarch64.rpm
nss-tools-3.90.0-6.el9_3.aarch64.rpm
nss-util-3.90.0-6.el9_3.aarch64.rpm
nss-util-devel-3.90.0-6.el9_3.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nss-3.90.0-6.el9_3.src.rpm
Related CVEs:
CVE-2023-6135
Description of changes:
[3.90.0-6]
- Fix ecc DER wrapping.
[3.90.0-5]
- Pick up validated constant time implementations of p256, p384, and p521
from upsream
- More Fips indicator changes
ELBA-2024-0718 Oracle Linux 9 osbuild bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-0718
http://linux.oracle.com/errata/ELBA-2024-0718.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
osbuild-93-1.el9_3.1.noarch.rpm
osbuild-luks2-93-1.el9_3.1.noarch.rpm
osbuild-lvm2-93-1.el9_3.1.noarch.rpm
osbuild-ostree-93-1.el9_3.1.noarch.rpm
osbuild-selinux-93-1.el9_3.1.noarch.rpm
python3-osbuild-93-1.el9_3.1.noarch.rpm
aarch64:
osbuild-93-1.el9_3.1.noarch.rpm
osbuild-luks2-93-1.el9_3.1.noarch.rpm
osbuild-lvm2-93-1.el9_3.1.noarch.rpm
osbuild-ostree-93-1.el9_3.1.noarch.rpm
osbuild-selinux-93-1.el9_3.1.noarch.rpm
python3-osbuild-93-1.el9_3.1.noarch.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//osbuild-93-1.el9_3.1.src.rpm
Description of changes:
[93-1.1]
- Unable to create an Azure image with image-builder (JIRA:RHEL-22837)
ELBA-2024-0788 Oracle Linux 8 osbuild bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-0788
http://linux.oracle.com/errata/ELBA-2024-0788.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
osbuild-93-1.el8_9.1.noarch.rpm
osbuild-luks2-93-1.el8_9.1.noarch.rpm
osbuild-lvm2-93-1.el8_9.1.noarch.rpm
osbuild-ostree-93-1.el8_9.1.noarch.rpm
osbuild-selinux-93-1.el8_9.1.noarch.rpm
python3-osbuild-93-1.el8_9.1.noarch.rpm
aarch64:
osbuild-93-1.el8_9.1.noarch.rpm
osbuild-luks2-93-1.el8_9.1.noarch.rpm
osbuild-lvm2-93-1.el8_9.1.noarch.rpm
osbuild-ostree-93-1.el8_9.1.noarch.rpm
osbuild-selinux-93-1.el8_9.1.noarch.rpm
python3-osbuild-93-1.el8_9.1.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//osbuild-93-1.el8_9.1.src.rpm
Description of changes:
[93-1.1]
- Unable to create an Azure image with image-builder (JIRA:RHEL-22837)
ELBA-2024-12156 Oracle Linux 8 jq bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-12156
http://linux.oracle.com/errata/ELBA-2024-12156.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
jq-1.6-7.0.3.el8.i686.rpm
jq-1.6-7.0.3.el8.x86_64.rpm
jq-devel-1.6-7.0.3.el8.i686.rpm
jq-devel-1.6-7.0.3.el8.x86_64.rpm
aarch64:
jq-1.6-7.0.3.el8.aarch64.rpm
jq-devel-1.6-7.0.3.el8.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//jq-1.6-7.0.3.el8.src.rpm
Description of changes:
[1.6-7.0.3]
- Reverts upstream patch to fix --exit-code issues #1142 and #1139 [Orabug: 36223052]
[1.6-7.0.2]
- Change version script to static 1.6 [Orabug: 36223052]
ELSA-2024-0769 Moderate: Oracle Linux 8 tcpdump security update
Oracle Linux Security Advisory ELSA-2024-0769
http://linux.oracle.com/errata/ELSA-2024-0769.html
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:
x86_64:
tcpdump-4.9.3-3.el8_9.1.x86_64.rpm
aarch64:
tcpdump-4.9.3-3.el8_9.1.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//tcpdump-4.9.3-3.el8_9.1.src.rpm
Related CVEs:
CVE-2021-41043
Description of changes:
[14:4.9.3-3.1]
- tcpslice: use-after-free in extract_slice() (CVE-2021-41043)
ELSA-2024-12158 Moderate: Oracle Linux 7 openssh security update (aarch64)
Oracle Linux Security Advisory ELSA-2024-12158
http://linux.oracle.com/errata/ELSA-2024-12158.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
aarch64:
openssh-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-askpass-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-clients-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-keycat-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-server-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-cavs-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-ldap-7.4p1-23.0.3.el7_9.aarch64.rpm
openssh-server-sysvinit-7.4p1-23.0.3.el7_9.aarch64.rpm
pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//openssh-7.4p1-23.0.3.el7_9.src.rpm
Related CVEs:
CVE-2023-48795
Description of changes:
[7.4p1-23.0.3]
- add KEX_INITIAL flag [Orabug: 36160445]
- implement "strict key exchange" [CVE-2023-48795][Orabug: 36160445]
ELSA-2024-12157 Moderate: Oracle Linux 7 openssh security update
Oracle Linux Security Advisory ELSA-2024-12157
http://linux.oracle.com/errata/ELSA-2024-12157.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
openssh-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-askpass-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-clients-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-keycat-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-server-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-cavs-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-ldap-7.4p1-23.0.3.el7_9.x86_64.rpm
openssh-server-sysvinit-7.4p1-23.0.3.el7_9.x86_64.rpm
pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.i686.rpm
pam_ssh_agent_auth-0.10.3-2.23.0.3.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//openssh-7.4p1-23.0.3.el7_9.src.rpm
Related CVEs:
CVE-2023-48795
Description of changes:
[7.4p1-23.0.3]
- add KEX_INITIAL flag [Orabug: 36160445]
- implement "strict key exchange" [CVE-2023-48795][Orabug: 36160445]
ELBA-2024-0762 Oracle Linux 6 Extended Lifecycle Support (ELS) tzdata bug fix and enhancement update
Oracle Linux Bug Fix Advisory ELBA-2024-0762
http://linux.oracle.com/errata/ELBA-2024-0762.html
The following updated rpms for Oracle Linux 6 Extended Lifecycle Support (ELS) have been uploaded to the Unbreakable Linux Network:
tzdata-2024a-1.el6.noarch.rpm
tzdata-java-2024a-1.el6.noarch.rpm
x86_64:
tzdata-2024a-1.el6.noarch.rpm
tzdata-java-2024a-1.el6.noarch.rpm
Description of changes:
[2024a-1]
- Rebase to tzdata-2024a
- Kazakhstan will transition from UTC+6 to UTC+5 on 2024-03-01.
- Palestine will spring forward a week later than previously
predicted.
