Oracle Linux 6277 Published by

The following updates has been released for Oracle Linux:

ELBA-2018-0510 Oracle Linux 6 sssd bug fixes update
ELBA-2018-0511 Oracle Linux 6 ksh bug fix update
ELBA-2018-0514 Oracle Linux 6 irqbalance bug fix update
ELSA-2018-0504 Moderate: Oracle Linux 6 mailman security update
ELSA-2018-0505 Moderate: Oracle Linux 7 mailman security update
ELSA-2018-0515 Important: Oracle Linux 6 389-ds-base security update
ELSA-2018-0516 Moderate: Oracle Linux 6 qemu-kvm security update



ELBA-2018-0510 Oracle Linux 6 sssd bug fixes update

Oracle Linux Bug Fix Advisory ELBA-2018-0510

http://linux.oracle.com/errata/ELBA-2018-0510.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
libipa_hbac-1.13.3-58.el6_9.i686.rpm
libipa_hbac-devel-1.13.3-58.el6_9.i686.rpm
libsss_idmap-1.13.3-58.el6_9.i686.rpm
libsss_idmap-devel-1.13.3-58.el6_9.i686.rpm
libsss_nss_idmap-1.13.3-58.el6_9.i686.rpm
libsss_nss_idmap-devel-1.13.3-58.el6_9.i686.rpm
libsss_simpleifp-1.13.3-58.el6_9.i686.rpm
libsss_simpleifp-devel-1.13.3-58.el6_9.i686.rpm
python-libipa_hbac-1.13.3-58.el6_9.i686.rpm
python-libsss_nss_idmap-1.13.3-58.el6_9.i686.rpm
python-sss-1.13.3-58.el6_9.i686.rpm
python-sss-murmur-1.13.3-58.el6_9.i686.rpm
python-sssdconfig-1.13.3-58.el6_9.noarch.rpm
sssd-1.13.3-58.el6_9.i686.rpm
sssd-ad-1.13.3-58.el6_9.i686.rpm
sssd-client-1.13.3-58.el6_9.i686.rpm
sssd-common-1.13.3-58.el6_9.i686.rpm
sssd-common-pac-1.13.3-58.el6_9.i686.rpm
sssd-dbus-1.13.3-58.el6_9.i686.rpm
sssd-ipa-1.13.3-58.el6_9.i686.rpm
sssd-krb5-1.13.3-58.el6_9.i686.rpm
sssd-krb5-common-1.13.3-58.el6_9.i686.rpm
sssd-ldap-1.13.3-58.el6_9.i686.rpm
sssd-proxy-1.13.3-58.el6_9.i686.rpm
sssd-tools-1.13.3-58.el6_9.i686.rpm

x86_64:
libipa_hbac-1.13.3-58.el6_9.i686.rpm
libipa_hbac-1.13.3-58.el6_9.x86_64.rpm
libipa_hbac-devel-1.13.3-58.el6_9.i686.rpm
libipa_hbac-devel-1.13.3-58.el6_9.x86_64.rpm
libsss_idmap-1.13.3-58.el6_9.i686.rpm
libsss_idmap-1.13.3-58.el6_9.x86_64.rpm
libsss_idmap-devel-1.13.3-58.el6_9.i686.rpm
libsss_idmap-devel-1.13.3-58.el6_9.x86_64.rpm
libsss_nss_idmap-1.13.3-58.el6_9.i686.rpm
libsss_nss_idmap-1.13.3-58.el6_9.x86_64.rpm
libsss_nss_idmap-devel-1.13.3-58.el6_9.i686.rpm
libsss_nss_idmap-devel-1.13.3-58.el6_9.x86_64.rpm
libsss_simpleifp-1.13.3-58.el6_9.i686.rpm
libsss_simpleifp-1.13.3-58.el6_9.x86_64.rpm
libsss_simpleifp-devel-1.13.3-58.el6_9.i686.rpm
libsss_simpleifp-devel-1.13.3-58.el6_9.x86_64.rpm
python-libipa_hbac-1.13.3-58.el6_9.x86_64.rpm
python-libsss_nss_idmap-1.13.3-58.el6_9.x86_64.rpm
python-sss-1.13.3-58.el6_9.x86_64.rpm
python-sss-murmur-1.13.3-58.el6_9.x86_64.rpm
python-sssdconfig-1.13.3-58.el6_9.noarch.rpm
sssd-1.13.3-58.el6_9.x86_64.rpm
sssd-ad-1.13.3-58.el6_9.x86_64.rpm
sssd-client-1.13.3-58.el6_9.i686.rpm
sssd-client-1.13.3-58.el6_9.x86_64.rpm
sssd-common-1.13.3-58.el6_9.x86_64.rpm
sssd-common-pac-1.13.3-58.el6_9.x86_64.rpm
sssd-dbus-1.13.3-58.el6_9.x86_64.rpm
sssd-ipa-1.13.3-58.el6_9.x86_64.rpm
sssd-krb5-1.13.3-58.el6_9.x86_64.rpm
sssd-krb5-common-1.13.3-58.el6_9.x86_64.rpm
sssd-ldap-1.13.3-58.el6_9.x86_64.rpm
sssd-proxy-1.13.3-58.el6_9.x86_64.rpm
sssd-tools-1.13.3-58.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/sssd-1.13.3-58.el6_9.src.rpm



Description of changes:

[1.13.3-58]
- Resolves: rhbz#1534618 - ABRT crash - /usr/libexec/sssd/sssd_nss
[rhel-6.9.z]

ELBA-2018-0511 Oracle Linux 6 ksh bug fix update

Oracle Linux Bug Fix Advisory ELBA-2018-0511

http://linux.oracle.com/errata/ELBA-2018-0511.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
ksh-20120801-37.el6_9.i686.rpm

x86_64:
ksh-20120801-37.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/ksh-20120801-37.el6_9.src.rpm



Description of changes:

[20120801-37]
- Fix a crash due to out of bounds write
Resolves: #1506344

ELBA-2018-0514 Oracle Linux 6 irqbalance bug fix update

Oracle Linux Bug Fix Advisory ELBA-2018-0514

http://linux.oracle.com/errata/ELBA-2018-0514.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
irqbalance-1.0.7-8.0.1.el6_9.1.i686.rpm

x86_64:
irqbalance-1.0.7-8.0.1.el6_9.1.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/irqbalance-1.0.7-8.0.1.el6_9.1.src.rpm



Description of changes:

[2:1.0.7-8.0.1.1]
- fix conversion of cpu load to milliseconds [Orabug: 20030172]
(rama.nichanamatlu@oracle.com)
- Add support for UEK format of sysfs msi_irqs (Jerry
Snitselaar)[Orabug: 16039715]
- Fix segfault when parse 1000+ interrupts [12603860]

[2:1.0.7-8.1]
- Balance correctly IRQs reappearing
- Resolves: #1541290

ELSA-2018-0504 Moderate: Oracle Linux 6 mailman security update

Oracle Linux Security Advisory ELSA-2018-0504

http://linux.oracle.com/errata/ELSA-2018-0504.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
mailman-2.1.12-26.el6_9.3.i686.rpm

x86_64:
mailman-2.1.12-26.el6_9.3.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/mailman-2.1.12-26.el6_9.3.src.rpm



Description of changes:

[3:2.1.12-26.3]
- Related: #1545967 - Add missed import

[3:2.1.12-26.2]
- Resolves: #1545967 - Fix XSS vulnerability in web UI. Add sanitizer

[3:2.1.12-26.1]
- Resolves: #1545967 - Fix XSS vulnerability in web UI

ELSA-2018-0505 Moderate: Oracle Linux 7 mailman security update

Oracle Linux Security Advisory ELSA-2018-0505

http://linux.oracle.com/errata/ELSA-2018-0505.html

The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:

x86_64:
mailman-2.1.15-26.el7_4.1.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/mailman-2.1.15-26.el7_4.1.src.rpm



Description of changes:

[3:2.1.15-26.1]
- Related: #1545974 - Add import regular expression module

[3:2.1.15-26]
- Related: #1545974 - Bump release to make it higher than 7.5

[3:2.1.15-24.2]
- Resolves: #1545974 - Add sanitizer to mitigate XSS injection

[3:2.1.15-24.1]
- Resolves: #1545974 - Fix XSS vulnerability in web UI

ELSA-2018-0515 Important: Oracle Linux 6 389-ds-base security update

Oracle Linux Security Advisory ELSA-2018-0515

http://linux.oracle.com/errata/ELSA-2018-0515.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
389-ds-base-1.2.11.15-94.el6_9.i686.rpm
389-ds-base-devel-1.2.11.15-94.el6_9.i686.rpm
389-ds-base-libs-1.2.11.15-94.el6_9.i686.rpm

x86_64:
389-ds-base-1.2.11.15-94.el6_9.x86_64.rpm
389-ds-base-devel-1.2.11.15-94.el6_9.i686.rpm
389-ds-base-devel-1.2.11.15-94.el6_9.x86_64.rpm
389-ds-base-libs-1.2.11.15-94.el6_9.i686.rpm
389-ds-base-libs-1.2.11.15-94.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/389-ds-base-1.2.11.15-94.el6_9.src.rpm



Description of changes:

[1.2.11-15-94]
- Release 1.2.11.15-94
- Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication
bypass due to lack of size check in slapi_ct_memcmp function in
ch_malloc.c (fix cherry-pick error)

[1.2.11-15-93]
- Release 1.2.11.15-93
- Resolves: Bug 1544415 - CVE-2017-15135 389-ds-base: Authentication
bypass due to lack of size check in slapi_ct_memcmp function in ch_malloc.c
- Resolves: Bug 1543798 - EMBARGOED CVE-2018-1054 389-ds-base: remote
Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8
in collate.c

[1.2.11-15-92]
- Release 1.2.11.15-92
- Resolves: Bug 1543798 - EMBARGOED CVE-2018-1054 389-ds-base: remote
Denial of Service (DoS) via search filters in SetUnicodeStringFromUTF_8
in collate.c

ELSA-2018-0516 Moderate: Oracle Linux 6 qemu-kvm security update

Oracle Linux Security Advisory ELSA-2018-0516

http://linux.oracle.com/errata/ELSA-2018-0516.html

The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:

i386:
qemu-guest-agent-0.12.1.2-2.503.el6_9.5.i686.rpm

x86_64:
qemu-guest-agent-0.12.1.2-2.503.el6_9.5.x86_64.rpm
qemu-img-0.12.1.2-2.503.el6_9.5.x86_64.rpm
qemu-kvm-0.12.1.2-2.503.el6_9.5.x86_64.rpm
qemu-kvm-tools-0.12.1.2-2.503.el6_9.5.x86_64.rpm


SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/qemu-kvm-0.12.1.2-2.503.el6_9.5.src.rpm



Description of changes:

[0.12.1.2-2.503.el6_9.5]
- kvm-cirrus-fix-oob-access-in-mode4and5-write-functions.patch [bz#1501296]
- Resolves: bz#1501296
(CVE-2017-15289 qemu-kvm: Qemu: cirrus: OOB access issue in
mode4and5 write functions [rhel-6.9.z])