The following updates has been released for Oracle Linux 7:
ELBA-2018-3658 Oracle Linux 7 nbdkit bug fix and enhancement update
ELBA-2018-3659 Oracle Linux 7 libguestfs bug fix update
ELBA-2018-3660 Oracle Linux 7 389-ds-base bug fix update
ELBA-2018-3664 Oracle Linux 7 selinux-policy bug fix update
ELBA-2018-3670 Oracle Linux 7 ipset bug fix update
ELSA-2018-3651 Moderate: Oracle Linux 7 kernel security, bug fix, and enhancement update
ELSA-2018-3665 Important: Oracle Linux 7 NetworkManager security update
ELBA-2018-3658 Oracle Linux 7 nbdkit bug fix and enhancement update
ELBA-2018-3659 Oracle Linux 7 libguestfs bug fix update
ELBA-2018-3660 Oracle Linux 7 389-ds-base bug fix update
ELBA-2018-3664 Oracle Linux 7 selinux-policy bug fix update
ELBA-2018-3670 Oracle Linux 7 ipset bug fix update
ELSA-2018-3651 Moderate: Oracle Linux 7 kernel security, bug fix, and enhancement update
ELSA-2018-3665 Important: Oracle Linux 7 NetworkManager security update
ELBA-2018-3658 Oracle Linux 7 nbdkit bug fix and enhancement update
Oracle Linux Bug Fix Advisory ELBA-2018-3658
http://linux.oracle.com/errata/ELBA-2018-3658.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
nbdkit-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-basic-plugins-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-devel-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-example-plugins-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-plugin-python-common-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-plugin-python2-1.2.6-1.el7_6.2.x86_64.rpm
nbdkit-plugin-vddk-1.2.6-1.el7_6.2.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/nbdkit-1.2.6-1.el7_6.2.src.rpm
Description of changes:
[1.2.6-1.el7_6.2]
- Enhanced Python error reporting.
resolves: rhbz#1613946
[1.2.6-1.el7_6.1]
- Fix TLS priority. (RHBZ#1632220)
ELBA-2018-3659 Oracle Linux 7 libguestfs bug fix update
Oracle Linux Bug Fix Advisory ELBA-2018-3659
http://linux.oracle.com/errata/ELBA-2018-3659.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
libguestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-bash-completion-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-benchmarking-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-devel-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-gfs2-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-gobject-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-gobject-devel-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-inspect-icons-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-java-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-java-devel-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-javadoc-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-man-pages-ja-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-man-pages-uk-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-rescue-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-rsync-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-tools-1.38.2-12.0.1.el7_6.1.noarch.rpm
libguestfs-tools-c-1.38.2-12.0.1.el7_6.1.x86_64.rpm
libguestfs-xfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
lua-guestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
ocaml-libguestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
ocaml-libguestfs-devel-1.38.2-12.0.1.el7_6.1.x86_64.rpm
perl-Sys-Guestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
python-libguestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
ruby-libguestfs-1.38.2-12.0.1.el7_6.1.x86_64.rpm
virt-dib-1.38.2-12.0.1.el7_6.1.x86_64.rpm
virt-p2v-maker-1.38.2-12.0.1.el7_6.1.x86_64.rpm
virt-v2v-1.38.2-12.0.1.el7_6.1.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/libguestfs-1.38.2-12.0.1.el7_6.1.src.rpm
Description of changes:
[1:1.38.2-12.0.1]
- Set DISTRO_ORACLE_LINUX corresponding to ol
- Remove 0001-update-distro-for-oracle.patch
To support OL, update related code about /etc/os-release [bug 28760753]
- Update packagelist.in for OL
[1:1.38.2-12.el7_6.1]
- v2v: update documentation regarding SHA-2 certificates in Windows 7 and
Windows Server 2008 R2
resolves: rhbz#1632788
- v2v: fix rhev-apt firstboot command for Windows
resolves: rhbz#1625216
ELBA-2018-3660 Oracle Linux 7 389-ds-base bug fix update
Oracle Linux Bug Fix Advisory ELBA-2018-3660
http://linux.oracle.com/errata/ELBA-2018-3660.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
389-ds-base-1.3.8.4-18.el7_6.x86_64.rpm
389-ds-base-devel-1.3.8.4-18.el7_6.x86_64.rpm
389-ds-base-libs-1.3.8.4-18.el7_6.x86_64.rpm
389-ds-base-snmp-1.3.8.4-18.el7_6.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/389-ds-base-1.3.8.4-18.el7_6.src.rpm
Description of changes:
[1.3.8.4-18]
- Bump version to 1.3.8.4-18
- Resolves: Bug 1638516 - CRIT - list_candidates - NULL idl was recieved
from filter_candidates_ex
[1.3.8.4-17]
- Bump version to 1.3.8.4-17
- Resolves: Bug 1643875 - ns-slapd: crash in entrycache_add_int
[1.3.8.4-16]
- Bump version to 1.3.8.4-16
- Resolves: Bug 1638513 - Message: "CRIT - list_candidates - NULL idl
was recieved from filter_candidates_ext." should not be critical
ELBA-2018-3664 Oracle Linux 7 selinux-policy bug fix update
Oracle Linux Bug Fix Advisory ELBA-2018-3664
http://linux.oracle.com/errata/ELBA-2018-3664.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
selinux-policy-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-devel-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-doc-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-minimum-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-mls-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-sandbox-3.13.1-229.0.1.el7_6.6.noarch.rpm
selinux-policy-targeted-3.13.1-229.0.1.el7_6.6.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/selinux-policy-3.13.1-229.0.1.el7_6.6.src.rpm
Description of changes:
[3.13.1-229.0.1]
- SELinux support for cgroup2 filesystem. [OraBug 28127822]
- refpolicy: Define getrlimit permission for class process [OraBug 28229492]
- Add vhost-scsi to be vhost_device_t type [OraBug 27774921]
- Obsolete docker-engine-selinux [OraBug 26439663]
- Fix container selinux policy [OraBug 26427364]
- Allow ocfs2_dlmfs to be mounted with ocfs2_dlmfs_t type.
[3.13.1-229.6]
- Allow nova_t domain to use pam
Resolves: rhbz:#1645270
- sysstat: grant sysstat_t the search_dir_perms set
Resolves: rhbz#1645271
ELBA-2018-3670 Oracle Linux 7 ipset bug fix update
Oracle Linux Bug Fix Advisory ELBA-2018-3670
http://linux.oracle.com/errata/ELBA-2018-3670.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
ipset-6.38-3.el7_6.x86_64.rpm
ipset-devel-6.38-3.el7_6.i686.rpm
ipset-devel-6.38-3.el7_6.x86_64.rpm
ipset-libs-6.38-3.el7_6.i686.rpm
ipset-libs-6.38-3.el7_6.x86_64.rpm
ipset-service-6.38-3.el7_6.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ipset-6.38-3.el7_6.src.rpm
Description of changes:
[6.38-3]
- Fix loading of sets with dependencies on other sets (RHBZ#1646666)
ELSA-2018-3651 Moderate: Oracle Linux 7 kernel security, bug fix, and enhancement update
Oracle Linux Security Advisory ELSA-2018-3651
http://linux.oracle.com/errata/ELSA-2018-3651.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
bpftool-3.10.0-957.1.3.el7.x86_64.rpm
kernel-3.10.0-957.1.3.el7.x86_64.rpm
kernel-abi-whitelists-3.10.0-957.1.3.el7.noarch.rpm
kernel-debug-3.10.0-957.1.3.el7.x86_64.rpm
kernel-debug-devel-3.10.0-957.1.3.el7.x86_64.rpm
kernel-devel-3.10.0-957.1.3.el7.x86_64.rpm
kernel-doc-3.10.0-957.1.3.el7.noarch.rpm
kernel-headers-3.10.0-957.1.3.el7.x86_64.rpm
kernel-tools-3.10.0-957.1.3.el7.x86_64.rpm
kernel-tools-libs-3.10.0-957.1.3.el7.x86_64.rpm
kernel-tools-libs-devel-3.10.0-957.1.3.el7.x86_64.rpm
perf-3.10.0-957.1.3.el7.x86_64.rpm
python-perf-3.10.0-957.1.3.el7.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/kernel-3.10.0-957.1.3.el7.src.rpm
Description of changes:
[3.10.0-957.1.3.el7.OL7]
- Oracle Linux certificates (Alexey Petrenko)
- Oracle Linux RHCK Module Signing Key was compiled into kernel
(olkmod_signing_
key.x509)(alexey.petrenko@oracle.com)
- Update x509.genkey [bug 24817676]
[3.10.0-957.1.3.el7]
- [x86] Mark Intel Cascade Lake supported (Steve Best) [1650213 1639980]
[3.10.0-957.1.2.el7]
- [net] rtnetlink: give a user socket to get_target_net() (Jiri Benc)
[1639635 1630694] {CVE-2018-14646}
- [net] Add variants of capable for use on on sockets (Jiri Benc)
[1639635 1630694] {CVE-2018-14646}
[3.10.0-957.1.1.el7]
- [x86] boot: Fix kexec booting failure in the SEV bit detection code
(Kairui Song) [1644990 1628828]
- [net] 8021q: create device with all possible features in
wanted_features (Davide Caratti) [1644675 1640645]
- [mm] memcontrol: fix high scheduling latency source in
mem_cgroup_reparent_charges (Andrea Arcangeli) [1644673 1632898]
- [kernel] cpuset: use trialcs->mems_allowed as a temp variable (Aristeu
Rozanski) [1644236 1613248]
- [kernel] cpuset: fix a warning when clearing configured masks in old
hierarchy (Aristeu Rozanski) [1644236 1613248]
- [kernel] cpuset: initialize effective masks when clone_children is
enabled (Aristeu Rozanski) [1644236 1613248]
- [x86] efi: Only load initrd above 4g on second try (Lenny Szubowicz)
[1643359 1608955]
- [x86] efi: Support initrd loaded above 4G (Lenny Szubowicz) [1643359
1608955]
- [x86] efi: Generalize handle_ramdisks() and rename to
handle_cmdline_files() (Lenny Szubowicz) [1643359 1608955]
- [kernel] sched/fair: Fix throttle_list starvation with low CFS quota
(Phil Auld) [1640675 1601153]
- [target] scsi: iscsi: Use bin2hex instead of a re-implementation
(Maurizio Lombardi) [1634711 1627034] {CVE-2018-14633}
- [target] scsi: iscsi: Use hex2bin instead of a re-implementation
(Maurizio Lombardi) [1634711 1627034] {CVE-2018-14633}
ELSA-2018-3665 Important: Oracle Linux 7 NetworkManager security update
Oracle Linux Security Advisory ELSA-2018-3665
http://linux.oracle.com/errata/ELSA-2018-3665.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
NetworkManager-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-adsl-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-bluetooth-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-config-server-1.12.0-8.el7_6.noarch.rpm
NetworkManager-dispatcher-routing-rules-1.12.0-8.el7_6.noarch.rpm
NetworkManager-glib-1.12.0-8.el7_6.i686.rpm
NetworkManager-glib-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-glib-devel-1.12.0-8.el7_6.i686.rpm
NetworkManager-glib-devel-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-libnm-1.12.0-8.el7_6.i686.rpm
NetworkManager-libnm-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-libnm-devel-1.12.0-8.el7_6.i686.rpm
NetworkManager-libnm-devel-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-ovs-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-ppp-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-team-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-tui-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-wifi-1.12.0-8.el7_6.x86_64.rpm
NetworkManager-wwan-1.12.0-8.el7_6.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/NetworkManager-1.12.0-8.el7_6.src.rpm
Description of changes:
[1:1.12.0-8]
- dhcp: fix out-of-bounds heap write for DHCPv6 with internal plugin
(CVE-2018-15688)