Oracle Linux 6260 Published by

Oracle Linux has been updated with security updates for Firefox, and NetworkManager-libreswan:

ELSA-2024-8727 Moderate: Oracle Linux 7 firefox security update
ELSA-2024-8727 Moderate: Oracle Linux 7 firefox security update (aarch64)
ELSA-2024-8357 Important: Oracle Linux 7 NetworkManager-libreswan security update (aarch64)
ELSA-2024-8357 Important: Oracle Linux 7 NetworkManager-libreswan security update




ELSA-2024-8727 Moderate: Oracle Linux 7 firefox security update


Oracle Linux Security Advisory ELSA-2024-8727

http://linux.oracle.com/errata/ELSA-2024-8727.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-128.4.0-1.0.1.el7_9.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-128.4.0-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2024-10458
CVE-2024-10459
CVE-2024-10460
CVE-2024-10461
CVE-2024-10462
CVE-2024-10463
CVE-2024-10464
CVE-2024-10465
CVE-2024-10466
CVE-2024-10467

Description of changes:

[128.4.0-1.0.1]
- Update to 128.4.0 build1 [Orabug: 37236498][CVE-2024-10458][CVE-2024-10459]
[CVE-2024-10460][CVE-2024-10461][CVE-2024-10462][CVE-2024-10463]
[CVE-2024-10464][CVE-2024-10465][CVE-2024-10466][CVE-2024-10467]



ELSA-2024-8727 Moderate: Oracle Linux 7 firefox security update (aarch64)


Oracle Linux Security Advisory ELSA-2024-8727

http://linux.oracle.com/errata/ELSA-2024-8727.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
firefox-128.4.0-1.0.1.el7_9.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-128.4.0-1.0.1.el7_9.src.rpm

Related CVEs:

CVE-2024-10458
CVE-2024-10459
CVE-2024-10460
CVE-2024-10461
CVE-2024-10462
CVE-2024-10463
CVE-2024-10464
CVE-2024-10465
CVE-2024-10466
CVE-2024-10467

Description of changes:

[128.4.0-1.0.1]
- Update to 128.4.0 build1 [Orabug: 37236498][CVE-2024-10458][CVE-2024-10459]
[CVE-2024-10460][CVE-2024-10461][CVE-2024-10462][CVE-2024-10463]
[CVE-2024-10464][CVE-2024-10465][CVE-2024-10466][CVE-2024-10467]



ELSA-2024-8357 Important: Oracle Linux 7 NetworkManager-libreswan security update (aarch64)


Oracle Linux Security Advisory ELSA-2024-8357

http://linux.oracle.com/errata/ELSA-2024-8357.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

aarch64:
NetworkManager-libreswan-1.2.4-2.0.1.el7.aarch64.rpm
NetworkManager-libreswan-gnome-1.2.4-2.0.1.el7.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//NetworkManager-libreswan-1.2.4-2.0.1.el7.src.rpm

Related CVEs:

CVE-2024-9050

Description of changes:

[1.2.4-2.0.1]
- Fix improper escaping of Libreswan configuration [CVE-2024-9050][Orabug: 37206712]



ELSA-2024-8357 Important: Oracle Linux 7 NetworkManager-libreswan security update


Oracle Linux Security Advisory ELSA-2024-8357

http://linux.oracle.com/errata/ELSA-2024-8357.html

The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

x86_64:
NetworkManager-libreswan-1.2.4-2.0.1.el7.x86_64.rpm
NetworkManager-libreswan-gnome-1.2.4-2.0.1.el7.x86_64.rpm

SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//NetworkManager-libreswan-1.2.4-2.0.1.el7.src.rpm

Related CVEs:

CVE-2024-9050

Description of changes:

[1.2.4-2.0.1]
- Fix improper escaping of Libreswan configuration [CVE-2024-9050][Orabug: 37206712]