ELSA-2023-13028

ULN >
Oracle Linux Errata repository >
ELSA-2023-13028

ELSA-2023-13028 - olcne security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2023-12-07

Description

conmon
[2.1.3-7]
- Resolve CVE-2023-39325

[2.1.3-6]
- Add ol8_baseos_latest, and ol9_baseos_latest, to Jenkinsfile

[2.1.3-5]
- Add systemd-devel as build requirement

[2.1.3-4]
- Add support ARM build

[2.1.3.3]
- Add OL9 support

[2.1.3.2]
- Update inline with Linux team building conmon for all but OL7.

cri-o
[1.25.2-3]
- Resolve CVE-2023-39325

cri-tools
[1.25.0-2]
- Resolve CVE-2023-39325

etcd
[3.5.9-2]
- Bump up version

[3.5.9-1]
- Added Oracle specific build files

flannel-cni-plugin
[1.0.1-3]
- Resolve CVE-2023-44487 and CVE-2023-39325

helm
[3.11.1-2]
- address CVE-2023-44487 and CVE-2023-39325

istio
kata
[1.12.1-14]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-13]
- Rebuild kata to fix timestamp issue

[1.12.1-12]
- Add support for ARM build

[1.12.1-11]
- Add OL9 support

[1.12.1-10]
- Updated kata-runtime version to work with more versions of kvm_utils

kata-agent
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Remove build_date global variable in kata-image specfile

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Add OL9 support

kata-image
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Remove build_date global variable in specfile

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Restore OL7 and bump release

[1.12.1-5]
- Add support for Oracle Linux 9

[1.12.1-4]
- build for kata-agent-1.12.1-4

kata-ksm-throttler
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Bump release inline with other kata packages for fixing timestamp issue

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Bump releaase inline with others for reversion of removal of OL7.

[1.12.1-5]
- Add support for Oracle Linux 9

kata-proxy
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Bump release inline with other kata packages for fixing timestamp issue

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Revert OL7 removal

[1.12.1-5]
- Add support for Oracle Linux 9

kata-runtime
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Bump release inline with other kata packages for fixing timestamp issue

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Add OL9 support

[1.12.1-5]
- Updated qemu-kvm machine options to work with more versions of kvm_utils

kata-shim
[1.12.1-9]
- Updated to address CVE-2023-44487 and CVE-2023-39325

[1.12.1-8]
- Bump release inline with other kata packages for fixing timestamp issue

[1.12.1-7]
- Add support for ARM build

[1.12.1-6]
- Bump releaase inline with others for reversion of removal of OL7.

[1.12.1-5]
- Add support for Oracle Linux 9

kubernetes
kubernetes-cni
[1.0.1-3]
- Resolve CVE-2023-44487 and CVE-2023-39325

kubernetes-cni-plugins
[1.0.1-4]
- Resolve CVE-2023-44487 and CVE-2023-39325

olcne
[1.6.5-9]
- Mark container-registry as updatable

[1.6.5-9]
- update metallb 0.12.1 to address CVE-2023-44487 and CVE-2023-39325

[1.6.5-8]
- Update externalip-webhook 1.0.0-3 to address CVE-2023-44487, CVE-2023-39325

[1.6.5-7]
- Update multus-cni 3.9.3 to address CVE-2023-44487 and CVE-2023-39325

[1.6.5-6]
- Update rook-1.10.9 to address CVE-2023-44487, CVE-2023-39325

[1.6.5-5]
- Update Istio, Grafana, Prometheus, and Kubernetes-dashboard to address CVE's
- CVE-2023-44487
- CVE-2023-39325

[1.6.5-4]
- Update kubernetes and components to address golang CVE-2023-44487, CVE-2023-39325

[1.6.5-3]
- update configmap-registry to 1.28.0 to address CVE-2023-44487 and CVE-2023-39325

[1.6.5-2]
- Update kubevirt 0.58.0 to address CVE-2023-44487 and CVE-2023-39325

[1.6.5-1]
- Update calico image versions to address golang CVE-2023-44487, CVE-2023-39325

yq
[4.34.1-3]
- address CVE-2023-44487 and CVE-2023-3932A

[4.34.1-2]
- Add support for ARM build

Related CVEs

CVE-2023-39325

CVE-2023-44487

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	yq-4.34.1-3.el8.src.rpm	befdffc620a1f0fa7b66d75812ea178bd6847ac238d876ce0778ecbdca8703b3	-	ol8_aarch64_olcne18
	yq-4.34.1-3.el8.aarch64.rpm	923a0bc30799078121aaa902398969332824434ab56bae88bc7eb882f4769f40	-	ol8_aarch64_olcne18

Oracle Linux 8 (x86_64)	conmon-2.1.3-7.el8.src.rpm	898d5f1f96c7c5317fc95adc95c2f926c0d6c547705d10d70a3c426abe0cee04	-	ol8_x86_64_olcne16
	conmon-2.1.3-7.el8.src.rpm	898d5f1f96c7c5317fc95adc95c2f926c0d6c547705d10d70a3c426abe0cee04	-	ol8_x86_64_olcne17
	cri-o-1.25.2-3.el8.src.rpm	314bf1fc477d2a944b58efbdca0f22607bbe8a4d2b57dd7aab8c5a449fec5a79	-	ol8_x86_64_olcne16
	cri-tools-1.25.0-2.el8.src.rpm	0971495abb9f1bdb3250be931f16b87f49088450713a5d518e28b6b1749ad8d7	-	ol8_x86_64_olcne16
	etcd-3.5.9-2.el8.src.rpm	1664f266341f73e3e925356736bfbdefd8e7b6984398eb5e253982b391b61fc7	-	ol8_x86_64_olcne16
	etcd-3.5.9-2.el8.src.rpm	1664f266341f73e3e925356736bfbdefd8e7b6984398eb5e253982b391b61fc7	-	ol8_x86_64_olcne17
	flannel-cni-plugin-1.0.1-3.el8.src.rpm	6de52f81e19369a948907a8e99d192f1d7a44a2dd0c2941c023250d1e1a1b13e	-	ol8_x86_64_olcne16
	helm-3.11.1-2.el8.src.rpm	f7828821efa49fb26d4f9960f8ffa38f76d6350e9dc30804be43a87375aaf0fa	-	ol8_x86_64_olcne16
	istio-1.16.7-2.el8.src.rpm	d963436e33e9f0e7bcc93b3c603af0efbc7d8a9ba37e0ba3a9981c2bb1ed9755	-	ol8_x86_64_olcne16
	kata-1.12.1-14.el8.src.rpm	fe3f104f5a82b079f29f4ff8c81168f22faa94f58fb36d186d5dc733f3a61b24	-	ol8_x86_64_olcne16
	kata-1.12.1-14.el8.src.rpm	fe3f104f5a82b079f29f4ff8c81168f22faa94f58fb36d186d5dc733f3a61b24	-	ol8_x86_64_olcne17
	kata-agent-1.12.1-9.el8.src.rpm	9d6db54d3096ef6a080d3df641b459e9824de60833d376eb713c2b76bb8e7ff7	-	ol8_x86_64_olcne16
	kata-agent-1.12.1-9.el8.src.rpm	9d6db54d3096ef6a080d3df641b459e9824de60833d376eb713c2b76bb8e7ff7	-	ol8_x86_64_olcne17
	kata-image-1.12.1-9.9.ol8_202311161805.src.rpm	221cbc99a9a756ed0f52aa137b633adeb5044a47350031eb4ea25b2566ba8787	-	ol8_x86_64_olcne16
	kata-image-1.12.1-9.9.ol8_202311161805.src.rpm	221cbc99a9a756ed0f52aa137b633adeb5044a47350031eb4ea25b2566ba8787	-	ol8_x86_64_olcne17
	kata-ksm-throttler-1.12.1-9.el8.src.rpm	61229a172ae360bbfed34a5fafed160cf29b98b539a0b36b0848a63a31f1fd6a	-	ol8_x86_64_olcne16
	kata-ksm-throttler-1.12.1-9.el8.src.rpm	61229a172ae360bbfed34a5fafed160cf29b98b539a0b36b0848a63a31f1fd6a	-	ol8_x86_64_olcne17
	kata-proxy-1.12.1-9.el8.src.rpm	e5e7dc78f15508b92c8d87843d51fff7e97f13b701131a5631c28c85b2f66caa	-	ol8_x86_64_olcne16
	kata-proxy-1.12.1-9.el8.src.rpm	e5e7dc78f15508b92c8d87843d51fff7e97f13b701131a5631c28c85b2f66caa	-	ol8_x86_64_olcne17
	kata-runtime-1.12.1-9.el8.src.rpm	df3e1278e7e89ccbc1def4feaecf9b8471d0e92d7debd533e20f2f14911049d9	-	ol8_x86_64_olcne16
	kata-runtime-1.12.1-9.el8.src.rpm	df3e1278e7e89ccbc1def4feaecf9b8471d0e92d7debd533e20f2f14911049d9	-	ol8_x86_64_olcne17
	kata-shim-1.12.1-9.el8.src.rpm	c19271e0e604f8cd544fb9a6a37f85b096f0ad7f7a02a5e0a10f4e97e20e404e	-	ol8_x86_64_olcne16
	kata-shim-1.12.1-9.el8.src.rpm	c19271e0e604f8cd544fb9a6a37f85b096f0ad7f7a02a5e0a10f4e97e20e404e	-	ol8_x86_64_olcne17
	kubernetes-1.25.15-1.el8.src.rpm	d025c9760ce49571481b259b1853429bcc5a92a4905d753c03c42582149f3294	-	ol8_x86_64_olcne16
	kubernetes-cni-1.0.1-3.el8.src.rpm	f2f2d5d354b04403f08d7a9341b1d3d104dc1df752894c60a0e9579e909ba200	-	ol8_x86_64_olcne16
	kubernetes-cni-plugins-1.0.1-4.el8.src.rpm	a68a3b2a9c4639530201f21298bbad2fd34cb1f3d5ad1447a8f432a42fef8f57	-	ol8_x86_64_olcne16
	olcne-1.6.5-10.el8.src.rpm	7f3db624c3a2c0b49ef801b5348252e4ccb8281cf4ffa50f80f9e5612930aff7	-	ol8_x86_64_olcne16
	yq-4.34.1-3.el8.src.rpm	3c691211969a2736b15496ad1f605c2cbe531e51989e74a2391aeac7a79771f6	-	ol8_x86_64_olcne16
	yq-4.34.1-3.el8.src.rpm	3c691211969a2736b15496ad1f605c2cbe531e51989e74a2391aeac7a79771f6	-	ol8_x86_64_olcne17
	yq-4.34.1-3.el8.src.rpm	befdffc620a1f0fa7b66d75812ea178bd6847ac238d876ce0778ecbdca8703b3	-	ol8_x86_64_olcne18
	conmon-2.1.3-7.el8.x86_64.rpm	f0c8689881a87d6272a9dab9dc163ab216e97ce815b333f46b091a65011f4174	-	ol8_x86_64_olcne16
	conmon-2.1.3-7.el8.x86_64.rpm	f0c8689881a87d6272a9dab9dc163ab216e97ce815b333f46b091a65011f4174	-	ol8_x86_64_olcne17
	cri-o-1.25.2-3.el8.x86_64.rpm	c0d59724ec68c5edb3cc9afef4460ccc93e672845a55fe40af786699b6f7e580	-	ol8_x86_64_olcne16
	cri-tools-1.25.0-2.el8.x86_64.rpm	6c8e55ca31d54950ab17a0d2630f0307098eacccaefae7c85937a48ce98d1f01	-	ol8_x86_64_olcne16
	etcd-3.5.9-2.el8.x86_64.rpm	150c8302f38ca4eff5c62f0593d210c61708e081664af0388ff210254cbec8f9	-	ol8_x86_64_olcne16
	etcd-3.5.9-2.el8.x86_64.rpm	150c8302f38ca4eff5c62f0593d210c61708e081664af0388ff210254cbec8f9	-	ol8_x86_64_olcne17
	flannel-cni-plugin-1.0.1-3.el8.x86_64.rpm	e0d8e7e50ab38f5a02959725549208a89fdf29d26700f7dd41f29b34ae50e056	-	ol8_x86_64_olcne16
	helm-3.11.1-2.el8.x86_64.rpm	c40761cb37a4587f68b78ed1698f0eb029eacca750ca9cd7488c77176f0db910	-	ol8_x86_64_olcne16
	istio-1.16.7-2.el8.x86_64.rpm	3a1678fd12d72b05610e00bd047c69851bd65216a8f3f42d934b811614da9688	-	ol8_x86_64_olcne16
	istio-istioctl-1.16.7-2.el8.x86_64.rpm	4483e6f94b45e0764c8d6b9e169e6f2c93f861d67d9bd8dc5c520204c07ace8c	-	ol8_x86_64_olcne16
	kata-1.12.1-14.el8.x86_64.rpm	9323820c36b7630081da031525d1647343b557517a0892d899458d63bef7db9c	-	ol8_x86_64_olcne16
	kata-1.12.1-14.el8.x86_64.rpm	9323820c36b7630081da031525d1647343b557517a0892d899458d63bef7db9c	-	ol8_x86_64_olcne17
	kata-agent-1.12.1-9.el8.x86_64.rpm	ca5afdeb37983b4284033fd4e26e9bb34730e62216768b145b7ede66ce3ddf6c	-	ol8_x86_64_olcne16
	kata-agent-1.12.1-9.el8.x86_64.rpm	ca5afdeb37983b4284033fd4e26e9bb34730e62216768b145b7ede66ce3ddf6c	-	ol8_x86_64_olcne17
	kata-image-1.12.1-9.9.ol8_202311161805.x86_64.rpm	ad8a6833965149ff3fc1547717ee3eaf0db1096bcd71fda6afe59a238aabbcd4	-	ol8_x86_64_olcne16
	kata-image-1.12.1-9.9.ol8_202311161805.x86_64.rpm	ad8a6833965149ff3fc1547717ee3eaf0db1096bcd71fda6afe59a238aabbcd4	-	ol8_x86_64_olcne17
	kata-ksm-throttler-1.12.1-9.el8.x86_64.rpm	b675a937b9f9f04858d460cb788e7e2d372cb827de3d7b233de0211ce87d204a	-	ol8_x86_64_olcne16
	kata-ksm-throttler-1.12.1-9.el8.x86_64.rpm	b675a937b9f9f04858d460cb788e7e2d372cb827de3d7b233de0211ce87d204a	-	ol8_x86_64_olcne17
	kata-proxy-1.12.1-9.el8.x86_64.rpm	a8d681012fe5c7a6aeab9092117916ed14928427e516266e061f10da105b043b	-	ol8_x86_64_olcne16
	kata-proxy-1.12.1-9.el8.x86_64.rpm	a8d681012fe5c7a6aeab9092117916ed14928427e516266e061f10da105b043b	-	ol8_x86_64_olcne17
	kata-runtime-1.12.1-9.el8.x86_64.rpm	46bd3d8bba50a5520d617b6233bc022ec757b1beb471f7744947e086c4db3832	-	ol8_x86_64_olcne16
	kata-runtime-1.12.1-9.el8.x86_64.rpm	46bd3d8bba50a5520d617b6233bc022ec757b1beb471f7744947e086c4db3832	-	ol8_x86_64_olcne17
	kata-shim-1.12.1-9.el8.x86_64.rpm	f58f2e6ba19d7fe811f4fcaf5da9c70f0d877c09900613615f9a016e85e168e4	-	ol8_x86_64_olcne16
	kata-shim-1.12.1-9.el8.x86_64.rpm	f58f2e6ba19d7fe811f4fcaf5da9c70f0d877c09900613615f9a016e85e168e4	-	ol8_x86_64_olcne17
	kubeadm-1.25.15-1.el8.x86_64.rpm	387429056b2414e84aa1a4ae0160ff9e35132d4ecc65a1b7a3e6db9d4daed9ba	-	ol8_x86_64_olcne16
	kubectl-1.25.15-1.el8.x86_64.rpm	e2d6f5089a46b9d3d0c43f89dd1e6942ffcbcbd439b8c180b0e624365b1ae85a	-	ol8_x86_64_olcne16
	kubelet-1.25.15-1.el8.x86_64.rpm	efbd3ccef2e725ea543d1704fd79f1ee0b9874c4a9c2d961cb19e8d46a20ba42	-	ol8_x86_64_olcne16
	kubernetes-cni-1.0.1-3.el8.x86_64.rpm	a981ceaa449a6804067b502374af602d33248061988fe0662d3ffae48315b277	-	ol8_x86_64_olcne16
	kubernetes-cni-plugins-1.0.1-4.el8.x86_64.rpm	f937c02dbeba9dfb7c3129c0edb7f93ee9f9215800003785d3f381b2562409cb	-	ol8_x86_64_olcne16
	olcne-agent-1.6.5-10.el8.x86_64.rpm	54cfd4a104062b954cf6dca971a100f3f4da6339cb6be898448ab33ea1329098	-	ol8_x86_64_olcne16
	olcne-api-server-1.6.5-10.el8.x86_64.rpm	2dd5bf930b038619ff5bb15a09c5737aaa82c4f2a2489af8418ef802b3cf33e1	-	ol8_x86_64_olcne16
	olcne-calico-chart-1.6.5-10.el8.x86_64.rpm	e13009759afa8cca52f26374a9659a8965c5df3eef51e43f7bd58661867d5980	-	ol8_x86_64_olcne16
	olcne-gluster-chart-1.6.5-10.el8.x86_64.rpm	ce40d974163b7676733e29e279a89584a56475bd9abdd22d003a8e122d427121	-	ol8_x86_64_olcne16
	olcne-grafana-chart-1.6.5-10.el8.x86_64.rpm	0af0c70f02d6858de9f6d6e068682017b071121f9f5ea6a8b16ecc3463cc7d7d	-	ol8_x86_64_olcne16
	olcne-istio-chart-1.6.5-10.el8.x86_64.rpm	795955473b642a2dedc30c2c3fb04b37d52b98ee83a9db0e8ef161b3c3d083f8	-	ol8_x86_64_olcne16
	olcne-metallb-chart-1.6.5-10.el8.x86_64.rpm	fee5dc1beff6474670c2c8092fc8546a8592fda3d4e3dff5e163519abeda32e6	-	ol8_x86_64_olcne16
	olcne-multus-chart-1.6.5-10.el8.x86_64.rpm	f10eed56bd3da1d61a8dbe2a11f0c8f280173bca5e9dc8dc34e94e29fb6bf984	-	ol8_x86_64_olcne16
	olcne-nginx-1.6.5-10.el8.x86_64.rpm	fa1e97ac6a8812396d6f1533564aa626b1b5a93047bfdcd3e75335dd2a921671	-	ol8_x86_64_olcne16
	olcne-oci-ccm-chart-1.6.5-10.el8.x86_64.rpm	3913184d6cdc29084617898af8612527c96cdcf53eae755f1d246328aded4924	-	ol8_x86_64_olcne16
	olcne-olm-chart-1.6.5-10.el8.x86_64.rpm	56677fdf26f010581b12e5be2e2141565123eb24161a792c4464d144ca80bbd8	-	ol8_x86_64_olcne16
	olcne-prometheus-chart-1.6.5-10.el8.x86_64.rpm	27904e0467615dcafd32fc6b54305331af73e6b3ee11d43fbd285d3c8938fe68	-	ol8_x86_64_olcne16
	olcne-utils-1.6.5-10.el8.x86_64.rpm	89fdc4d6c72d488f3f85f09a18576a86a40bd53a60a72611f6ad89161d6bc8b6	-	ol8_x86_64_olcne16
	olcnectl-1.6.5-10.el8.x86_64.rpm	8b198189e3b18c3b87e6eaa6877750620cb9543c5fd5e2847c87bfe9e6cdc28a	-	ol8_x86_64_olcne16
	yq-4.34.1-3.el8.x86_64.rpm	a14e9c0540fdc29ab9d21e8ee87dcd70f5ed48a8b1a380f79740d4e057cbf4e3	-	ol8_x86_64_olcne16
	yq-4.34.1-3.el8.x86_64.rpm	a14e9c0540fdc29ab9d21e8ee87dcd70f5ed48a8b1a380f79740d4e057cbf4e3	-	ol8_x86_64_olcne17
	yq-4.34.1-3.el8.x86_64.rpm	a14e9c0540fdc29ab9d21e8ee87dcd70f5ed48a8b1a380f79740d4e057cbf4e3	-	ol8_x86_64_olcne18

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691