Oracle Linux 6278 Published by

An apr-util security update has been released for Oracle Linux 7.



El-errata: ELSA-2023-3145 Important: Oracle Linux 7 apr-util security update


Oracle Linux Security Advisory ELSA-2023-3145

  http://linux.oracle.com/errata/ELSA-2023-3145.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
apr-util-1.5.2-6.0.1.el7_9.1.i686.rpm
apr-util-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-devel-1.5.2-6.0.1.el7_9.1.i686.rpm
apr-util-devel-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-ldap-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-mysql-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-nss-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-odbc-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-openssl-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-pgsql-1.5.2-6.0.1.el7_9.1.x86_64.rpm
apr-util-sqlite-1.5.2-6.0.1.el7_9.1.x86_64.rpm

SRPMS:
  http://oss.oracle.com/ol7/SRPMS-updates//apr-util-1.5.2-6.0.1.el7_9.1.src.rpm

Related CVEs:

CVE-2022-25147



Description of changes:

[1.5.2-6.0.1.1]
- Rebuild bumping release

[1.5.2-6.1]
- Resolves: #2196120 - CVE-2022-25147 apr-util: out-of-bounds writes
in the apr_base64

_______________________________________________