Oracle Linux 6277 Published by

The following Oracle Linux updates are available:

ELBA-2024-0475 Oracle Linux 9 osbuild-composer bug fix update
ELBA-2024-12097 Oracle Linux 9 rpm bug fix update
ELSA-2024-0468 Moderate: Oracle Linux 9 grub2 security update
ELSA-2024-0539 Important: Oracle Linux 8 tomcat security update




ELBA-2024-0475 Oracle Linux 9 osbuild-composer bug fix update


Oracle Linux Bug Fix Advisory ELBA-2024-0475

http://linux.oracle.com/errata/ELBA-2024-0475.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
osbuild-composer-88.3-1.el9_3.x86_64.rpm
osbuild-composer-core-88.3-1.el9_3.x86_64.rpm
osbuild-composer-dnf-json-88.3-1.el9_3.x86_64.rpm
osbuild-composer-worker-88.3-1.el9_3.x86_64.rpm

aarch64:
osbuild-composer-88.3-1.el9_3.aarch64.rpm
osbuild-composer-core-88.3-1.el9_3.aarch64.rpm
osbuild-composer-dnf-json-88.3-1.el9_3.aarch64.rpm
osbuild-composer-worker-88.3-1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//osbuild-composer-88.3-1.el9_3.src.rpm

Description of changes:

[88.3-1]
- Update to upstream 88.3



ELBA-2024-12097 Oracle Linux 9 rpm bug fix update


Oracle Linux Bug Fix Advisory ELBA-2024-12097

http://linux.oracle.com/errata/ELBA-2024-12097.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
python3-rpm-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-build-libs-4.16.1.3-27.0.1.el9_3.i686.rpm
rpm-build-libs-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-libs-4.16.1.3-27.0.1.el9_3.i686.rpm
rpm-libs-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-audit-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-selinux-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-sign-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-sign-libs-4.16.1.3-27.0.1.el9_3.i686.rpm
rpm-sign-libs-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-apidocs-4.16.1.3-27.0.1.el9_3.noarch.rpm
rpm-build-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-cron-4.16.1.3-27.0.1.el9_3.noarch.rpm
rpm-devel-4.16.1.3-27.0.1.el9_3.i686.rpm
rpm-devel-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-fapolicyd-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-ima-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-syslog-4.16.1.3-27.0.1.el9_3.x86_64.rpm
rpm-plugin-systemd-inhibit-4.16.1.3-27.0.1.el9_3.x86_64.rpm

aarch64:
python3-rpm-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-build-libs-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-libs-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-audit-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-selinux-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-sign-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-sign-libs-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-apidocs-4.16.1.3-27.0.1.el9_3.noarch.rpm
rpm-build-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-cron-4.16.1.3-27.0.1.el9_3.noarch.rpm
rpm-devel-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-fapolicyd-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-ima-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-syslog-4.16.1.3-27.0.1.el9_3.aarch64.rpm
rpm-plugin-systemd-inhibit-4.16.1.3-27.0.1.el9_3.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//rpm-4.16.1.3-27.0.1.el9_3.src.rpm

Description of changes:

[4.16.1.3-27.0.1]
- Correctly check for errors for IMA operations [Orabug: 36227977]



ELSA-2024-0468 Moderate: Oracle Linux 9 grub2 security update


Oracle Linux Security Advisory ELSA-2024-0468

http://linux.oracle.com/errata/ELSA-2024-0468.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
grub2-common-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-efi-aa64-modules-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-efi-x64-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-efi-x64-cdboot-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-efi-x64-modules-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-pc-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-pc-modules-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-tools-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-tools-efi-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-tools-extra-2.06-70.0.2.el9_3.2.x86_64.rpm
grub2-tools-minimal-2.06-70.0.2.el9_3.2.x86_64.rpm

aarch64:
grub2-common-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-efi-aa64-2.06-70.0.2.el9_3.2.aarch64.rpm
grub2-efi-aa64-cdboot-2.06-70.0.2.el9_3.2.aarch64.rpm
grub2-efi-aa64-modules-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-efi-x64-modules-2.06-70.0.2.el9_3.2.noarch.rpm
grub2-tools-2.06-70.0.2.el9_3.2.aarch64.rpm
grub2-tools-extra-2.06-70.0.2.el9_3.2.aarch64.rpm
grub2-tools-minimal-2.06-70.0.2.el9_3.2.aarch64.rpm

SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//grub2-2.06-70.0.2.el9_3.2.src.rpm

Related CVEs:

CVE-2023-4001

Description of changes:

[2.06-70.0.2.2]
- search command: add flag to only search root dev
- Resolves: #CVE-2023-4001



ELSA-2024-0539 Important: Oracle Linux 8 tomcat security update


Oracle Linux Security Advisory ELSA-2024-0539

http://linux.oracle.com/errata/ELSA-2024-0539.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
tomcat-9.0.62-27.el8_9.3.noarch.rpm
tomcat-admin-webapps-9.0.62-27.el8_9.3.noarch.rpm
tomcat-docs-webapp-9.0.62-27.el8_9.3.noarch.rpm
tomcat-el-3.0-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-jsp-2.3-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-lib-9.0.62-27.el8_9.3.noarch.rpm
tomcat-servlet-4.0-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-webapps-9.0.62-27.el8_9.3.noarch.rpm

aarch64:
tomcat-9.0.62-27.el8_9.3.noarch.rpm
tomcat-admin-webapps-9.0.62-27.el8_9.3.noarch.rpm
tomcat-docs-webapp-9.0.62-27.el8_9.3.noarch.rpm
tomcat-el-3.0-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-jsp-2.3-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-lib-9.0.62-27.el8_9.3.noarch.rpm
tomcat-servlet-4.0-api-9.0.62-27.el8_9.3.noarch.rpm
tomcat-webapps-9.0.62-27.el8_9.3.noarch.rpm

SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//tomcat-9.0.62-27.el8_9.3.src.rpm

Related CVEs:

CVE-2023-46589

Description of changes:

[1:9.0.62-27.3]
- tomcat: HTTP request smuggling via malformed trailer headers (CVE-2023-46589)