ELSA-2024-2853 Important: Oracle Linux 9 nodejs:20 security update
ELBA-2024-2841 Oracle Linux 9 .NET 6.0 bugfix update
ELBA-2024-12359 Oracle Linux 8 oVirt 4.4 nispor bug fix update
ELBA-2024-12361 Oracle Linux 8 oVirt 4.4 ovirt-engine bug fix update
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update (aarch64)
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update
ELSA-2024-2853 Important: Oracle Linux 9 nodejs:20 security update
Oracle Linux Security Advisory ELSA-2024-2853
http://linux.oracle.com/errata/ELSA-2024-2853.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm
nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.x86_64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.x86_64.rpm
aarch64:
nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-devel-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-docs-20.12.2-2.module+el9.4.0+90322+0b80090c.noarch.rpm
nodejs-full-i18n-20.12.2-2.module+el9.4.0+90322+0b80090c.aarch64.rpm
nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
nodejs-packaging-bundler-2021.06-4.module+el9.3.0+90066+12d4a8d7.noarch.rpm
npm-10.5.0-1.20.12.2.2.module+el9.4.0+90322+0b80090c.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-20.12.2-2.module+el9.4.0+90322+0b80090c.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-nodemon-3.0.1-1.module+el9.3.0+90066+12d4a8d7.src.rpm
http://oss.oracle.com/ol9/SRPMS-updates//nodejs-packaging-2021.06-4.module+el9.3.0+90066+12d4a8d7.src.rpm
Related CVEs:
CVE-2024-22025
CVE-2024-25629
CVE-2024-27982
CVE-2024-27983
CVE-2024-28182
Description of changes:
nodejs
[1:20.12.2-2]
- Backport nghttp2 patch for CVE-2024-28182
[1:20.12.2-1]
- Rebase to version 20.12.0
Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 (node)
Fixes: CVE-2024-25629 (c-ares)
nodejs-nodemon
nodejs-packaging
ELBA-2024-2841 Oracle Linux 9 .NET 6.0 bugfix update
Oracle Linux Bug Fix Advisory ELBA-2024-2841
http://linux.oracle.com/errata/ELBA-2024-2841.html
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
x86_64:
aspnetcore-runtime-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
aspnetcore-targeting-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-apphost-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-hostfxr-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-runtime-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-sdk-6.0-6.0.130-1.0.1.el9_4.x86_64.rpm
dotnet-targeting-pack-6.0-6.0.30-1.0.1.el9_4.x86_64.rpm
dotnet-templates-6.0-6.0.130-1.0.1.el9_4.x86_64.rpm
dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.0.1.el9_4.x86_64.rpm
aarch64:
aspnetcore-runtime-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
aspnetcore-targeting-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-apphost-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-hostfxr-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-runtime-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-sdk-6.0-6.0.130-1.0.1.el9_4.aarch64.rpm
dotnet-targeting-pack-6.0-6.0.30-1.0.1.el9_4.aarch64.rpm
dotnet-templates-6.0-6.0.130-1.0.1.el9_4.aarch64.rpm
dotnet-sdk-6.0-source-built-artifacts-6.0.130-1.0.1.el9_4.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//dotnet6.0-6.0.130-1.0.1.el9_4.src.rpm
Description of changes:
[6.0.130-1.0.1]
- Add support for Oracle Linux
[6.0.130-1]
- Update to .NET SDK 6.0.130 and Runtime 6.0.30
- Resolves: RHEL-35310
ELBA-2024-12359 Oracle Linux 8 oVirt 4.4 nispor bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-12359
http://linux.oracle.com/errata/ELBA-2024-12359.html
The following updated rpms for Oracle Linux 8 oVirt 4.4 have been uploaded to the Unbreakable Linux Network:
x86_64:
nispor-1.2.15-1.el8.x86_64.rpm
nispor-devel-1.2.15-1.el8.x86_64.rpm
python3-nispor-1.2.15-1.el8.noarch.rpm
nispor-debugsource-1.2.15-1.el8.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//nispor-1.2.15-1.el8.src.rpm
Description of changes:
[1.2.15-1]
- Upgrade to 1.2.15. NoBugSpecified
[1.2.10-1]
- Upgrade to 1.2.10. RHBZ#2153166
[1.2.9-1]
- Upgrade to 1.2.9. RHBZ#2153166
[1.2.7-1]
- Upgrade to 1.2.7. RHBZ#2064295
[1.2.5-1]
- Upgrade to 1.2.5. RHBZ#2064295
[1.2.4-1]
- Upgrade to 1.2.4. RHBZ#2064295
* Thu Jan 13 2022 - 1.2.3-1
- Update to 1.2.3. RHBZ#1996619
[1.2.2-2]
- Fix bridge vlan filtering on i40e. RHBZ#2026621
[1.2.2-1]
- Upgrade to 1.2.2. RHBZ#1996619
[1.2.1-1]
- Upgrade to 1.2.1. RHBZ#1996619
[1.2.0-1]
- Upgrade to 1.2.0. RHBZ#1996619
[1.1.1-1]
- Upgrade to 1.1.1. RHBZ#1942459
[1.1.0-3]
- Include SPEC information for bundled rust crates. RHBZ#1927789
[1.1.0-2]
- Fix cli output, loopback interface and ethtool features.
[1.1.0-1]
- Upgrade to 1.1.0. RHBZ#1942459
[1.0.2-4]
- Remove the varlink support. RHBZ#1926941
[1.0.1-3]
- Add support to bond vlan+srcmac tx hashing option. RHBZ#1919986
[1.0.1-2]
- Upload new cargo vendor tarbal without crates used for windows platform.
[1.0.1-1]
- Upgrade to 1.0.1
[1.0.0-1]
ELBA-2024-12361 Oracle Linux 8 oVirt 4.4 ovirt-engine bug fix update
Oracle Linux Bug Fix Advisory ELBA-2024-12361
http://linux.oracle.com/errata/ELBA-2024-12361.html
The following updated rpms for Oracle Linux 8 oVirt 4.4 have been uploaded to the Unbreakable Linux Network:
x86_64:
ovirt-engine-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-backend-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-dbscripts-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-health-check-bundler-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-restapi-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-base-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-cinderlib-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-imageio-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-ovirt-engine-common-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-vmconsole-proxy-helper-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-setup-plugin-websocket-proxy-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-tools-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-tools-backup-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-vmconsole-proxy-helper-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-webadmin-portal-4.4.10.7-1.0.32.el8.noarch.rpm
ovirt-engine-websocket-proxy-4.4.10.7-1.0.32.el8.noarch.rpm
python3-ovirt-engine-lib-4.4.10.7-1.0.32.el8.noarch.rpm
SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//ovirt-engine-4.4.10.7-1.0.32.el8.src.rpm
Description of changes:
[4.4.10.7-1.0.32]
- Upgrade bundled frontend dependency of jquery-ui
[4.4.10.7-1.0.31]
- Allow enrolling certificates in non-responsive state and Extend the lifetime of non-web certificates
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update (aarch64)
Oracle Linux Security Advisory ELSA-2024-2881
http://linux.oracle.com/errata/ELSA-2024-2881.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
aarch64:
firefox-115.11.0-1.0.1.el7_9.aarch64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-115.11.0-1.0.1.el7_9.src.rpm
Related CVEs:
CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777
Description of changes:
[115.11.0-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file
[115.11.0-1]
- Update to 115.11.0 build1
ELSA-2024-2881 Important: Oracle Linux 7 firefox security update
Oracle Linux Security Advisory ELSA-2024-2881
http://linux.oracle.com/errata/ELSA-2024-2881.html
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:
x86_64:
firefox-115.11.0-1.0.1.el7_9.i686.rpm
firefox-115.11.0-1.0.1.el7_9.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates//firefox-115.11.0-1.0.1.el7_9.src.rpm
Related CVEs:
CVE-2024-4367
CVE-2024-4767
CVE-2024-4768
CVE-2024-4769
CVE-2024-4770
CVE-2024-4777
Description of changes:
[115.11.0-1.0.1]
- Remove upstream references [Orabug: 30143292]
- Update distribution for Oracle Linux [Orabug: 30143292]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file
[115.11.0-1]
- Update to 115.11.0 build1
