A keylime bug fix and enhancement update has been released for Oracle Linux 9.

El-errata: ELBA-2023-0309 Oracle Linux 9 keylime bug fix and enhancement update

Oracle Linux Bug Fix Advisory ELBA-2023-0309

  http://linux.oracle.com/errata/ELBA-2023-0309.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
keylime-6.5.1-1.el9_1.4.x86_64.rpm
keylime-base-6.5.1-1.el9_1.4.x86_64.rpm
keylime-registrar-6.5.1-1.el9_1.4.x86_64.rpm
keylime-selinux-6.5.1-1.el9_1.4.noarch.rpm
keylime-tenant-6.5.1-1.el9_1.4.x86_64.rpm
keylime-verifier-6.5.1-1.el9_1.4.x86_64.rpm
python3-keylime-6.5.1-1.el9_1.4.x86_64.rpm

aarch64:
keylime-6.5.1-1.el9_1.4.aarch64.rpm
keylime-base-6.5.1-1.el9_1.4.aarch64.rpm
keylime-registrar-6.5.1-1.el9_1.4.aarch64.rpm
keylime-selinux-6.5.1-1.el9_1.4.noarch.rpm
keylime-tenant-6.5.1-1.el9_1.4.aarch64.rpm
keylime-verifier-6.5.1-1.el9_1.4.aarch64.rpm
python3-keylime-6.5.1-1.el9_1.4.aarch64.rpm

SRPMS:
  http://oss.oracle.com/ol9/SRPMS-updates//keylime-6.5.1-1.el9_1.4.src.rpm


Description of changes:

[6.5.1-1.4]
- Do not use default values that need reading the config in methods
Resolves: rhbz#2142033 - Registrar may crash during EK validation when require_ek_cert is enabled [rhel-9.1.0.z]

[6.5.1-1.3]
- Backport upstream PR#1156
Resolves: rhbz#2142033 - Registrar may crash during EK validation when require_ek_cert is enabled [rhel-9.1.0.z]

[6.5.1-1.2]
- Segmentation fault in create_mb_refstate script
Resolves: rhbz#2142034 - Segmentation fault in /usr/share/keylime/create_mb_refstate script [rhel-9.1.0.z]

[6.5.1-1.1]
- ima: Fix log evaluation on quick-succession execution of scripts
Resolves: rhbz#2142032 - agent fails IMA attestation when one scripts is executed quickly after the other [rhel-9.1.0.z]

_______________________________________________