ELBA-2023-0950
- ULN >
- Oracle Linux Errata repository >
- ELBA-2023-0950
ELBA-2023-0950 - nftables bug fix and enhancement update
| Type: | BUG |
| Impact: | NA |
| Release Date: | 2023-02-28 |
Description
[[1.0.4-9.el9]]
- tests: add a test case for map update from packet path with concat (Phil Sutter) [2094894]
- netlink_linearize: fix timeout with map updates (Phil Sutter) [2094894]
- netlink_delinearize: fix decoding of concat data element (Phil Sutter) [2094894]
[[1.0.4-8.el9]]
- monitor: Sanitize startup race condition (Phil Sutter) [2130721]
- evaluate: set eval ctx for add/update statements with integer constants (Phil Sutter) [2094894]
- src: allow anon set concatenation with ether and vlan (Phil Sutter) [2094887]
- evaluate: search stacked header list for matching payload dep (Phil Sutter) [2094887]
- netlink_delinearize: also postprocess OP_AND in set element context (Phil Sutter) [2094887]
- tests: add a test case for ether and vlan listing (Phil Sutter) [2094887]
- debug: dump the l2 protocol stack (Phil Sutter) [2094887]
- proto: track full stack of seen l2 protocols, not just cumulative offset (Phil Sutter) [2094887]
- netlink_delinearize: postprocess binary ands in concatenations (Phil Sutter) [2094887]
- netlink_delinearize: allow postprocessing on concatenated elements (Phil Sutter) [2094887]
- intervals: check for EXPR_F_REMOVE in case of element mismatch (Phil Sutter) [2115627]
- intervals: fix crash when trying to remove element in empty set (Phil Sutter) [2115627]
- scanner: don't pop active flex scanner scope (Phil Sutter) [2113874]
- parser: add missing synproxy scope closure (Phil Sutter) [2113874]
- tests/py: Add a test for failing ipsec after counter (Phil Sutter) [2113874]
- doc: Document limitations of ipsec expression with xfrm_interface (Phil Sutter) [1806431]
[[1.0.4-7.el9]]
- One more attempt at fixing expected error records (Phil Sutter) [1973687]
[[1.0.4-6.el9]]
- Realy fix expected error records (Phil Sutter) [1973687]
[[1.0.4-5.el9]]
- Fix expected error records (Phil Sutter) [1973687]
[[1.0.4-4.el9]]
- Add expected error records for testsuite runs (Phil Sutter) [1973687]
[[1.0.4-3.el9]]
- Prevent port-shadow attacks in sample nat config (Phil Sutter) [2061940]
Updated Packages
| Release/Architecture | Filename | sha256 | Superseded By Advisory | Channel Label |
| Oracle Linux 9 (aarch64) | nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_aarch64_baseos_latest |
| nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_aarch64_codeready_builder | |
| nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_aarch64_u1_baseos_patch | |
| nftables-1.0.4-9.el9_1.aarch64.rpm | 58b33178f751cb62479f667c8e1c217e8446b02ea22b26f8e0f3dc5ca4a5c897 | - | ol9_aarch64_baseos_latest | |
| nftables-1.0.4-9.el9_1.aarch64.rpm | 58b33178f751cb62479f667c8e1c217e8446b02ea22b26f8e0f3dc5ca4a5c897 | - | ol9_aarch64_u1_baseos_patch | |
| nftables-devel-1.0.4-9.el9_1.aarch64.rpm | fdbf966b4befa00a716c6b1aa9f84925c8e6881dd6f128232f6f848f3ae2cc66 | - | ol9_aarch64_codeready_builder | |
| python3-nftables-1.0.4-9.el9_1.aarch64.rpm | 42a7cb604aa654a9a769c8e6ad46cc86a7d072bf48888e9920f5f601f8d18a9f | - | ol9_aarch64_baseos_latest | |
| python3-nftables-1.0.4-9.el9_1.aarch64.rpm | 42a7cb604aa654a9a769c8e6ad46cc86a7d072bf48888e9920f5f601f8d18a9f | - | ol9_aarch64_u1_baseos_patch | |
| Oracle Linux 9 (x86_64) | nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_x86_64_baseos_latest |
| nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_x86_64_codeready_builder | |
| nftables-1.0.4-9.el9_1.src.rpm | a26d9526304fb4c596dfcf44251bbea8bbee11a814697eac2d126991bb5f68be | - | ol9_x86_64_u1_baseos_patch | |
| nftables-1.0.4-9.el9_1.i686.rpm | 80688df69cd4d90fd390ec1546241c4962e9bbf0cdaa7ffb156fbaa3b2449f50 | - | ol9_x86_64_baseos_latest | |
| nftables-1.0.4-9.el9_1.i686.rpm | 80688df69cd4d90fd390ec1546241c4962e9bbf0cdaa7ffb156fbaa3b2449f50 | - | ol9_x86_64_u1_baseos_patch | |
| nftables-1.0.4-9.el9_1.x86_64.rpm | a897712b37e93951d875352371dcbf9403a98a2932527e281db314f402c70b04 | - | ol9_x86_64_baseos_latest | |
| nftables-1.0.4-9.el9_1.x86_64.rpm | a897712b37e93951d875352371dcbf9403a98a2932527e281db314f402c70b04 | - | ol9_x86_64_u1_baseos_patch | |
| nftables-devel-1.0.4-9.el9_1.i686.rpm | 468ecb9425a7879af3724a1a855119d81c826d984a129b22402d9e4cdf900de4 | - | ol9_x86_64_codeready_builder | |
| nftables-devel-1.0.4-9.el9_1.x86_64.rpm | 20f5a0c01394b609637df186e08fef7cb29a6545a0290d5ed7f688daaac59ba2 | - | ol9_x86_64_codeready_builder | |
| python3-nftables-1.0.4-9.el9_1.x86_64.rpm | 987258f574c09ef210cd09d4f3a28a440243f2bb02896d68d9ed5a2893b827db | - | ol9_x86_64_baseos_latest | |
| python3-nftables-1.0.4-9.el9_1.x86_64.rpm | 987258f574c09ef210cd09d4f3a28a440243f2bb02896d68d9ed5a2893b827db | - | ol9_x86_64_u1_baseos_patch | |
This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team
