Oracle Linux Security Advisory ELSA-2024-5258

http://linux.oracle.com/errata/ELSA-2024-5258.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
aardvark-dns-1.10.0-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
buildah-1.33.8-4.module+el8.10.0+90384+a78ffc57.x86_64.rpm
buildah-tests-1.33.8-4.module+el8.10.0+90384+a78ffc57.x86_64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90384+a78ffc57.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
containernetworking-plugins-1.4.0-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
containers-common-1-82.0.1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90384+a78ffc57.noarch.rpm
crit-3.18-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
criu-3.18-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
criu-devel-3.18-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
criu-libs-3.18-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
crun-1.14.3-2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
libslirp-4.4.0-2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
netavark-1.10.3-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-catatonit-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-docker-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.noarch.rpm
podman-gvproxy-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-plugins-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-remote-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
podman-tests-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.x86_64.rpm
python3-criu-3.18-5.module+el8.10.0+90384+a78ffc57.x86_64.rpm
python3-podman-4.9.0-2.module+el8.10.0+90384+a78ffc57.noarch.rpm
runc-1.1.12-4.module+el8.10.0+90384+a78ffc57.x86_64.rpm
skopeo-1.14.5-3.module+el8.10.0+90384+a78ffc57.x86_64.rpm
skopeo-tests-1.14.5-3.module+el8.10.0+90384+a78ffc57.x86_64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90384+a78ffc57.x86_64.rpm
udica-0.2.6-21.module+el8.10.0+90384+a78ffc57.noarch.rpm

aarch64:
aardvark-dns-1.10.0-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
buildah-1.33.8-4.module+el8.10.0+90384+a78ffc57.aarch64.rpm
buildah-tests-1.33.8-4.module+el8.10.0+90384+a78ffc57.aarch64.rpm
cockpit-podman-84.1-1.module+el8.10.0+90384+a78ffc57.noarch.rpm
conmon-2.1.10-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
containernetworking-plugins-1.4.0-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
containers-common-1-82.0.1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
container-selinux-2.229.0-2.module+el8.10.0+90384+a78ffc57.noarch.rpm
crit-3.18-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
criu-3.18-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
criu-devel-3.18-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
criu-libs-3.18-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
crun-1.14.3-2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
fuse-overlayfs-1.13-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
libslirp-4.4.0-2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
libslirp-devel-4.4.0-2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
netavark-1.10.3-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-catatonit-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-docker-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.noarch.rpm
podman-gvproxy-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-plugins-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-remote-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
podman-tests-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.aarch64.rpm
python3-criu-3.18-5.module+el8.10.0+90384+a78ffc57.aarch64.rpm
python3-podman-4.9.0-2.module+el8.10.0+90384+a78ffc57.noarch.rpm
runc-1.1.12-4.module+el8.10.0+90384+a78ffc57.aarch64.rpm
skopeo-1.14.5-3.module+el8.10.0+90384+a78ffc57.aarch64.rpm
skopeo-tests-1.14.5-3.module+el8.10.0+90384+a78ffc57.aarch64.rpm
slirp4netns-1.2.3-1.module+el8.10.0+90384+a78ffc57.aarch64.rpm
udica-0.2.6-21.module+el8.10.0+90384+a78ffc57.noarch.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//aardvark-dns-1.10.0-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//buildah-1.33.8-4.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-podman-84.1-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//conmon-2.1.10-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containernetworking-plugins-1.4.0-5.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//containers-common-1-82.0.1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//container-selinux-2.229.0-2.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//criu-3.18-5.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//crun-1.14.3-2.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//fuse-overlayfs-1.13-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//libslirp-4.4.0-2.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//netavark-1.10.3-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//podman-4.9.4-12.0.2.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//python-podman-4.9.0-2.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//runc-1.1.12-4.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//skopeo-1.14.5-3.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//slirp4netns-1.2.3-1.module+el8.10.0+90384+a78ffc57.src.rpm
http://oss.oracle.com/ol8/SRPMS-updates//udica-0.2.6-21.module+el8.10.0+90384+a78ffc57.src.rpm

Related CVEs:

CVE-2023-45290
CVE-2024-1394
CVE-2024-3727
CVE-2024-6104
CVE-2024-24783
CVE-2024-24784
CVE-2024-24789
CVE-2024-37298




Description of changes:

aardvark-dns
buildah
[2:1.33.8-4]
- rebuild for  golang fixes
- Related: RHEL-28452

cockpit-podman
[84.1-1]
- update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1
- Related: Jira:RHEL-25557

conmon
[3:2.1.10-1]
- update to https://github.com/containers/conmon/releases/tag/v2.1.10
- Related: Jira:RHEL-2110

containernetworking-plugins
[1:1.4.0-5]
- rebuild for  golang fixes
- Related: RHEL-28452

containers-common
[1-82.0.1]
- Updated removed references [Orabug: 33473101] (Alex Burmashev)
- Adjust registries.conf (Nikita Gerasimov)
- remove references to RedHat registry (Nikita Gerasimov)

container-selinux
[2:2.229.0-2]
- remove watch statements properly for RHEL8 and lower
- Related: Jira:RHEL-2110

criu
crun
[1.14.3-2]
- remove BR libgcrypt-devel, no longer needed
- Related: Jira:RHEL-2110

fuse-overlayfs
[1.13-1]
- update to https://github.com/containers/fuse-overlayfs/releases/tag/v1.13
- Related: Jira:RHEL-2110

libslirp
netavark
oci-seccomp-bpf-hook
[1.2.10-1]
- update to https://github.com/containers/oci-seccomp-bpf-hook/releases/tag/v1.2.10
- Related: Jira:RHEL-2110

podman
[4.9.4-12.0.2]
- Fixes issue of podman execvp error while using podmansh [Orabug: 36756665]

python-podman
[4.9.0-2]
- depend directly on urllib3
- Resolves: RHEL-43567

runc
[1:1.1.12-4]
- rebuild for  golang fixes
- Related: RHEL-28452

skopeo
[2:1.14.5-3]
- rebuild for  golang fixes
- Related: RHEL-28452

slirp4netns
[1.2.3-1]
- update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.3
- Related: Jira:RHEL-2110

udica


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata