Oracle Linux 9 ELSA-2024-3843 Moderate: Cockpit Command Injection Fix
oracle
June 13, 2024
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
Summary
[311.2-1.0.1] - Replaced upstream urls in documentation with oracle links [Orabug: 36528753] - Drop subscription-manager-cockpit requirement for ol [Orabug: 34681110] - Remove duplicate reference to server in cockpit [Orabug: 34030494] - Update documentation links [Orabug: 30271413], [Orabug: 32013095], [Orabug: 32795691], [Orabug: 34398512], [Orabug: 34742876] - Update spec file for new release [311.2] - Remove recommends on subscription-manager-cockpit if applicable [311.2-1] - sosreport: Fix command injection with crafted report names [CVE-2024-2947] (jira#RHEL-31074)
Topics Covered
SRPMs
http://oss.oracle.com/ol9/SRPMS-updates//cockpit-311.2-1.0.1.el9_4.src.rpm
x86_64
cockpit-311.2-1.0.1.el9_4.x86_64.rpm cockpit-bridge-311.2-1.0.1.el9_4.x86_64.rpm cockpit-doc-311.2-1.0.1.el9_4.noarch.rpm cockpit-packagekit-311.2-1.0.1.el9_4.noarch.rpm cockpit-pcp-311.2-1.0.1.el9_4.x86_64.rpm cockpit-storaged-311.2-1.0.1.el9_4.noarch.rpm cockpit-system-311.2-1.0.1.el9_4.noarch.rpm cockpit-ws-311.2-1.0.1.el9_4.x86_64.rpm
aarch64
cockpit-311.2-1.0.1.el9_4.aarch64.rpm cockpit-bridge-311.2-1.0.1.el9_4.aarch64.rpm cockpit-doc-311.2-1.0.1.el9_4.noarch.rpm cockpit-packagekit-311.2-1.0.1.el9_4.noarch.rpm cockpit-pcp-311.2-1.0.1.el9_4.aarch64.rpm cockpit-storaged-311.2-1.0.1.el9_4.noarch.rpm cockpit-system-311.2-1.0.1.el9_4.noarch.rpm cockpit-ws-311.2-1.0.1.el9_4.aarch64.rpm
PREVIOUS
NEXT
Related CVEs:
CVE-2024-2947
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!