Oracle Linux Security Advisory ELSA-2024-3254

http://linux.oracle.com/errata/ELSA-2024-3254.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
buildah-tests-1.33.7-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.x86_64.rpm
containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.x86_64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.noarch.rpm
crit-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
criu-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
criu-devel-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
criu-libs-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
crun-1.14.3-2.module+el8.10.0+90298+77a9814d.x86_64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
podman-catatonit-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
podman-docker-4.9.4-1.module+el8.10.0+90337+0d7b6e74.noarch.rpm
podman-gvproxy-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
podman-plugins-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
podman-remote-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
podman-tests-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
python3-criu-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
python3-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.noarch.rpm
runc-1.1.12-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
skopeo-tests-1.14.3-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.x86_64.rpm
udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.noarch.rpm

aarch64:
aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
buildah-tests-1.33.7-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.aarch64.rpm
containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.aarch64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.noarch.rpm
crit-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
criu-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
criu-devel-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
criu-libs-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
crun-1.14.3-2.module+el8.10.0+90298+77a9814d.aarch64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
podman-catatonit-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
podman-docker-4.9.4-1.module+el8.10.0+90337+0d7b6e74.noarch.rpm
podman-gvproxy-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
podman-plugins-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
podman-remote-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
podman-tests-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
python3-criu-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
python3-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.noarch.rpm
runc-1.1.12-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
skopeo-tests-1.14.3-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.aarch64.rpm
udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-5.module+el8.10.0+90337+0d7b6e74.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//crun-1.14.3-2.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.src.rpm

Related CVEs:

CVE-2022-2880
CVE-2022-41715
CVE-2024-1753
CVE-2024-24786
CVE-2024-28180




Description of changes:

aardvark-dns
buildah
[2:1.33.7-1]
- update to the latest content of https://github.com/containers/buildah/tree/release-1.33
  (https://github.com/containers/buildah/commit/b95e962)
- Resolves: RHEL-28224

cockpit-podman
conmon
containernetworking-plugins
containers-common
container-selinux
criu
[3.18-5]
- rebuild to preserve upgrade path
- Related: RHEL-32671

crun
fuse-overlayfs
libslirp
[4.4.0-2]
- rebuild to preserve upgrade path 8.9 -> 8.10
- Related: RHEL-32671

netavark
oci-seccomp-bpf-hook
podman
[4:4.9.4-1]
- update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel
  (https://github.com/containers/podman/commit/7752c56)
- Resolves: RHEL-28225

python-podman
runc
skopeo
[2:1.14.3-2]
- update to the latest content of https://github.com/containers/skopeo/tree/release-1.14
  (https://github.com/containers/skopeo/commit/5f2b9af)
- Resolves: RHEL-28728

[2:1.14.3-1]
- update to the latest content of https://github.com/containers/skopeo/tree/release-1.14
  (https://github.com/containers/skopeo/commit/4a2bc3a)
- Resolves: RHEL-28226

[2:1.14.3-0.2]
- update to the latest content of https://github.com/containers/skopeo/tree/release-1.14
  (https://github.com/containers/skopeo/commit/d0a0f1a)
- Resolves: RHEL-28226

slirp4netns
udica
[0.2.6-21]
- bump release to preserve update path
- Resolves: RHEL-32671

[0.2.6-20]
- bump release to preserve update path
- Related: #2139052

_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle8: ELSA-2024-3254: container-tools:ol8 Important Security Advisory Updates

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

aardvark-dns buildah [2:1.33.7-1] - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 (https://github.com/containers/buildah/commit/b95e962) - Resolves: RHEL-28224 cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu [3.18-5] - rebuild to preserve upgrade path - Related: RHEL-32671 crun fuse-overlayfs libslirp [4.4.0-2] - rebuild to preserve upgrade path 8.9 -> 8.10 - Related: RHEL-32671 netavark oci-seccomp-bpf-hook podman [4:4.9.4-1] - update to the latest content of https://github.com/containers/podman/tree/v4.9-rhel (https://github.com/containers/podman/commit/7752c56) - Resolves: RHEL-28225 python-podman runc skopeo [2:1.14.3-2] - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 (https://github.com/containers/skopeo/commit/5f2b9af) - Resolves: RHEL-28728 [2:1.14.3-1] - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 (https://github.com/containers/skopeo/commit/4a2bc3a) - Resolves: RHEL-28226 [2:1.14.3-0.2] - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 (https://github.com/containers/skopeo/commit/d0a0f1a) - Resolves: RHEL-28226 slirp4netns udica [0.2.6-21] - bump release to preserve update path - Resolves: RHEL-32671 [0.2.6-20] - bump release to preserve update path - Related: #2139052

SRPMs

http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-5.module+el8.10.0+90337+0d7b6e74.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//crun-1.14.3-2.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.src.rpm http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.src.rpm

x86_64

aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.x86_64.rpm buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm buildah-tests-1.33.7-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.x86_64.rpm containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.x86_64.rpm containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.x86_64.rpm container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.noarch.rpm crit-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm criu-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm criu-devel-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm criu-libs-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm crun-1.14.3-2.module+el8.10.0+90298+77a9814d.x86_64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.x86_64.rpm libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.x86_64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.x86_64.rpm podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm podman-catatonit-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm podman-docker-4.9.4-1.module+el8.10.0+90337+0d7b6e74.noarch.rpm podman-gvproxy-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm podman-plugins-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm podman-remote-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm podman-tests-4.9.4-1.module+el8.10.0+90337+0d7b6e74.x86_64.rpm python3-criu-3.18-5.module+el8.10.0+90337+0d7b6e74.x86_64.rpm python3-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.noarch.rpm runc-1.1.12-1.module+el8.10.0+90298+77a9814d.x86_64.rpm skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm skopeo-tests-1.14.3-2.module+el8.10.0+90337+0d7b6e74.x86_64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.x86_64.rpm udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.noarch.rpm

aarch64

aardvark-dns-1.10.0-1.module+el8.10.0+90298+77a9814d.aarch64.rpm buildah-1.33.7-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm buildah-tests-1.33.7-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm cockpit-podman-84.1-1.module+el8.10.0+90298+77a9814d.noarch.rpm conmon-2.1.10-1.module+el8.10.0+90298+77a9814d.aarch64.rpm containernetworking-plugins-1.4.0-2.module+el8.10.0+90298+77a9814d.aarch64.rpm containers-common-1-81.0.1.module+el8.10.0+90298+77a9814d.aarch64.rpm container-selinux-2.229.0-2.module+el8.10.0+90298+77a9814d.noarch.rpm crit-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm criu-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm criu-devel-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm criu-libs-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm crun-1.14.3-2.module+el8.10.0+90298+77a9814d.aarch64.rpm fuse-overlayfs-1.13-1.module+el8.10.0+90298+77a9814d.aarch64.rpm libslirp-4.4.0-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm libslirp-devel-4.4.0-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm netavark-1.10.3-1.module+el8.10.0+90298+77a9814d.aarch64.rpm oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90298+77a9814d.aarch64.rpm podman-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm podman-catatonit-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm podman-docker-4.9.4-1.module+el8.10.0+90337+0d7b6e74.noarch.rpm podman-gvproxy-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm podman-plugins-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm podman-remote-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm podman-tests-4.9.4-1.module+el8.10.0+90337+0d7b6e74.aarch64.rpm python3-criu-3.18-5.module+el8.10.0+90337+0d7b6e74.aarch64.rpm python3-podman-4.9.0-1.module+el8.10.0+90298+77a9814d.noarch.rpm runc-1.1.12-1.module+el8.10.0+90298+77a9814d.aarch64.rpm skopeo-1.14.3-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm skopeo-tests-1.14.3-2.module+el8.10.0+90337+0d7b6e74.aarch64.rpm slirp4netns-1.2.3-1.module+el8.10.0+90298+77a9814d.aarch64.rpm udica-0.2.6-21.module+el8.10.0+90337+0d7b6e74.noarch.rpm