ELSA-2024-12225

ULN >
Oracle Linux Errata repository >
ELSA-2024-12225

ELSA-2024-12225 - conmon security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2024-03-18

Description

conmon
[2.1.3-8]
- address CVE-2023-39326

cri-o
[1.26.4-1]
- Added Oracle Specific Files for cri-o
- Cherry-picked upstream commits for OCPBUGS-17150: oci: simplify stopping code https://github.com/cri-o/cri-o/pull/7185
- Fixed CVE-2023-39325: bump golang.org/x/net to v0.17.0

cri-tools
[1.26.1-4]
- Address CVE-2023-39326

etcd
[3.5.9-3]
- Address CVE-2023-39326 by upgrading golang to version 1.20.12

flannel-cni-plugin
[1.2.0-3]
- Build for aarch64

[1.2.0-2]
- Rebuild with golang 1.20.12

[1.2.0-1]
- Added Oracle specific build files for Flannel CNI Plugins
- Address CVE-2023-44487 and CVE-2023-39325

helm
[3.12.0-4]
- address CVE-2023-39326 by updating golang version to 1.20.12

istio
[1.17.8-2]
- Address CVE-2023-39326

kata
[1.12.1-17]
- Include OL9 for kernel-uek-container (currently in UEKR7_developer_preview)

[1.12.1-16]
- Rebuild with golang 1.20.12

[1.12.1-15]
- Updated for kubernetes 1.27 and 1.28

kata-agent
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kata-image
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kata-ksm-throttler
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kata-proxy
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kata-runtime
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kata-shim
[1.12.1-11]
- Rebuild with -11 tag

[1.12.1-10]
- Updated Golang to 1.20.12 to address CVE CVE-2023-39326

kubernetes
[1.26.10-3]
- Build with golang 1.20.12

kubernetes-cni
[1.1.2-4]
- Address CVE-2023-39326, update golang version to 1.20.12

kubernetes-cni-plugins
[1.2.0-6]
- Rebuild with golang 1.20.12

[1.2.0-5]
- update flannel-cni-plugin to 1.2.0

kubevirt
[0.58.0-5]
- Updated to address CVE-2023-39326

olcne
[1.7.6-5]
- Fix OLM upgrade failure

[1.7.6-4]
- Fixed unable to deploy new module(s) using config file containing already existing modules

[1.7.6-2]
- Corrected olcne repo version in the prompt text of the 'olcnectl provision' command

[1.7.6-1]
- Update kubernetes and components to address golang CVE-2023-39326
- Update istio and components to address golang CVE-2023-39326
- Update metallb, multus-cni, kubevirt, module-operator, calico, rook to address golang CVE-2023-39326
- Update cri-o to 1.26-4 patched
- add conmon resource to kubernetes module

[1.7.5-22]
- Fix OLM upgrade failure - same version upgrade

[1.7.5-21]
- Migrate ModuleOperator from verrazzano-install to ocne-modules namespace

[1.7.5-20]
- Update module-operator to address CVE-2023-39326

[1.7.5-19]
- Updated kubevirt 0.58.0 to address CVE-2023-39326

[1.7.5-18]
- Back port rebuild of calico 3.25.1

yq
[4.34.1-4]
- Update Golang to 1.20.12 to address CVE-2023-39326

Related CVEs

CVE-2023-39326

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	conmon-2.1.3-8.el9.src.rpm	af78b9934204dce423a99815c2dbce14	-	ol9_aarch64_olcne18
	etcd-3.5.9-3.el9.src.rpm	63cf6284d51daf7562ea1fe7742ce90b	-	ol9_aarch64_olcne18
	flannel-cni-plugin-1.2.0-3.el9.src.rpm	e85b0cfc994cd7658c376042c3c00373	-	ol9_aarch64_olcne18
	helm-3.12.0-4.el9.src.rpm	ebe186ef91be7b97414b972e71cadd82	-	ol9_aarch64_olcne18
	kata-1.12.1-17.el9.src.rpm	ead715bd2705ad39fb572382c115e9db	-	ol9_aarch64_olcne18
	kata-agent-1.12.1-11.el9.src.rpm	45b9c01c13250c1a9b122a11d2d70223	-	ol9_aarch64_olcne18
	kata-ksm-throttler-1.12.1-11.el9.src.rpm	964fca7b2a081d18d2c39ffcb4eb7d05	-	ol9_aarch64_olcne18
	kata-proxy-1.12.1-11.el9.src.rpm	edb4a130b0665868c06eb6dece7b2609	-	ol9_aarch64_olcne18
	kata-runtime-1.12.1-11.el9.src.rpm	ad23af5c78f80f4ddac5f8693b101236	-	ol9_aarch64_olcne18
	kata-shim-1.12.1-11.el9.src.rpm	0f5fd46c71afdf90decbe1233b7b5f5f	-	ol9_aarch64_olcne18
	kubernetes-cni-1.1.2-4.el9.src.rpm	126252c8e43398cecb31f2579cb5ddc0	-	ol9_aarch64_olcne18
	kubernetes-cni-plugins-1.2.0-6.el9.src.rpm	9fe271632cf7186b0b13c2c3c7ea10e2	-	ol9_aarch64_olcne18
	conmon-2.1.3-8.el9.aarch64.rpm	54b2e783d0a2aa1dc3cbe324ad47ba79	-	ol9_aarch64_olcne18
	etcd-3.5.9-3.el9.aarch64.rpm	a96c170f86abe3b0754cfdb30db90705	-	ol9_aarch64_olcne18
	flannel-cni-plugin-1.2.0-3.el9.aarch64.rpm	887934dc1a5acefa656d3b8d50b88120	-	ol9_aarch64_olcne18
	helm-3.12.0-4.el9.aarch64.rpm	c4607b044069ab6d268c221a7c253a1e	-	ol9_aarch64_olcne18
	kata-1.12.1-17.el9.aarch64.rpm	f0ecd6f882e6d5091fc646ee0817227b	-	ol9_aarch64_olcne18
	kata-agent-1.12.1-11.el9.aarch64.rpm	6d091e37e6c7d56008cd0edfbb48faa3	-	ol9_aarch64_olcne18
	kata-ksm-throttler-1.12.1-11.el9.aarch64.rpm	13cf7734704ba5a2ccac1b795b9760c4	-	ol9_aarch64_olcne18
	kata-proxy-1.12.1-11.el9.aarch64.rpm	bd2fb00ee20cf8ed9b94797dde99d808	-	ol9_aarch64_olcne18
	kata-runtime-1.12.1-11.el9.aarch64.rpm	e42181c2d5399cac93ded1f4ba769238	-	ol9_aarch64_olcne18
	kata-shim-1.12.1-11.el9.aarch64.rpm	db534fe022329b48ac09cb6af3723eed	-	ol9_aarch64_olcne18
	kubernetes-cni-1.1.2-4.el9.aarch64.rpm	54f1670775cd04ec0ecebe08ea0a5d0f	-	ol9_aarch64_olcne18
	kubernetes-cni-plugins-1.2.0-6.el9.aarch64.rpm	5b4b1a90b083b7c63f4cf353cbdf344d	-	ol9_aarch64_olcne18

Oracle Linux 9 (x86_64)	conmon-2.1.3-8.el9.src.rpm	af78b9934204dce423a99815c2dbce14	-	ol9_x86_64_olcne18
	conmon-2.1.3-8.el9.src.rpm	f3c026368bdd5d77ebce740376f986ec	-	ol9_x86_64_olcne17
	cri-o-1.26.4-1.el9.src.rpm	9fd673680ae798deb46f0518d0dd9441	-	ol9_x86_64_olcne17
	cri-tools-1.26.1-4.el9.src.rpm	25f60bbd1ca89d64cee1fd4ac39067e7	-	ol9_x86_64_olcne17
	etcd-3.5.9-3.el9.src.rpm	63cf6284d51daf7562ea1fe7742ce90b	-	ol9_x86_64_olcne18
	etcd-3.5.9-3.el9.src.rpm	85084f80059c35d01a89fe70fa29c2b7	-	ol9_x86_64_olcne17
	flannel-cni-plugin-1.2.0-3.el9.src.rpm	7493e6cab1f29fba944bf959ad60ddb9	-	ol9_x86_64_olcne17
	flannel-cni-plugin-1.2.0-3.el9.src.rpm	e85b0cfc994cd7658c376042c3c00373	-	ol9_x86_64_olcne18
	helm-3.12.0-4.el9.src.rpm	b408938082efb6a0a55a685fd27040f3	-	ol9_x86_64_olcne17
	helm-3.12.0-4.el9.src.rpm	ebe186ef91be7b97414b972e71cadd82	-	ol9_x86_64_olcne18
	istio-1.17.8-2.el9.src.rpm	d27150fa8fa99bd19c2bf59b955fc3d5	-	ol9_x86_64_olcne17
	kata-1.12.1-17.el9.src.rpm	021e6e6a07d437ef62c2eb2616d7ea3f	-	ol9_x86_64_olcne17
	kata-1.12.1-17.el9.src.rpm	ead715bd2705ad39fb572382c115e9db	-	ol9_x86_64_olcne18
	kata-agent-1.12.1-11.el9.src.rpm	45b9c01c13250c1a9b122a11d2d70223	-	ol9_x86_64_olcne18
	kata-agent-1.12.1-11.el9.src.rpm	9508d3659db8894130b2c5d8435e8465	-	ol9_x86_64_olcne17
	kata-image-1.12.1-11.11.ol9_202312212316.src.rpm	56deebea090c2a6884ab7927270d4a17	-	ol9_x86_64_olcne17
	kata-image-1.12.1-11.11.ol9_202312212316.src.rpm	56deebea090c2a6884ab7927270d4a17	-	ol9_x86_64_olcne18
	kata-ksm-throttler-1.12.1-11.el9.src.rpm	06591d4f8e9dc8a64ad339d1a2d2b087	-	ol9_x86_64_olcne17
	kata-ksm-throttler-1.12.1-11.el9.src.rpm	964fca7b2a081d18d2c39ffcb4eb7d05	-	ol9_x86_64_olcne18
	kata-proxy-1.12.1-11.el9.src.rpm	ea4f31a4b7fe9fa761fc41a1eaea1f67	-	ol9_x86_64_olcne17
	kata-proxy-1.12.1-11.el9.src.rpm	edb4a130b0665868c06eb6dece7b2609	-	ol9_x86_64_olcne18
	kata-runtime-1.12.1-11.el9.src.rpm	7d10f55a4e0b5f89e3d65f4dff690a28	-	ol9_x86_64_olcne17
	kata-runtime-1.12.1-11.el9.src.rpm	ad23af5c78f80f4ddac5f8693b101236	-	ol9_x86_64_olcne18
	kata-shim-1.12.1-11.el9.src.rpm	0f5fd46c71afdf90decbe1233b7b5f5f	-	ol9_x86_64_olcne18
	kata-shim-1.12.1-11.el9.src.rpm	b0686ffd8f0be3320acd316c0de3198a	-	ol9_x86_64_olcne17
	kubernetes-1.26.10-3.el9.src.rpm	9c053c951a9f81c441c5209b5339ccf8	-	ol9_x86_64_olcne17
	kubernetes-cni-1.1.2-4.el9.src.rpm	126252c8e43398cecb31f2579cb5ddc0	-	ol9_x86_64_olcne18
	kubernetes-cni-1.1.2-4.el9.src.rpm	51f489c42352ac645152928adabd2d7e	-	ol9_x86_64_olcne17
	kubernetes-cni-plugins-1.2.0-6.el9.src.rpm	9fe271632cf7186b0b13c2c3c7ea10e2	-	ol9_x86_64_olcne18
	kubernetes-cni-plugins-1.2.0-6.el9.src.rpm	efbf7af6e26cda9256a921172fd10b4d	-	ol9_x86_64_olcne17
	kubevirt-0.58.0-5.el9.src.rpm	76ec9e904c8b5ab6cdf7adde0ae70c72	-	ol9_x86_64_olcne17
	olcne-1.7.6-5.el9.src.rpm	43b1bcb4830ad092f536730b2c92d0f7	-	ol9_x86_64_olcne17
	yq-4.34.1-4.el9.src.rpm	133e96723c8815190507ceac2551d884	-	ol9_x86_64_olcne17
	conmon-2.1.3-8.el9.x86_64.rpm	279334151600489d737e54744ee2776a	-	ol9_x86_64_olcne17
	conmon-2.1.3-8.el9.x86_64.rpm	279334151600489d737e54744ee2776a	-	ol9_x86_64_olcne18
	cri-o-1.26.4-1.el9.x86_64.rpm	b93aa4fa54a986f32daa0377ae854c60	-	ol9_x86_64_olcne17
	cri-tools-1.26.1-4.el9.x86_64.rpm	ab2ea55e911a22e4815c73ad4ec141a3	-	ol9_x86_64_olcne17
	etcd-3.5.9-3.el9.x86_64.rpm	438e36afae151a2edd24345a4acb4e18	-	ol9_x86_64_olcne17
	etcd-3.5.9-3.el9.x86_64.rpm	b358a0d30fa0c4ea029ef4df7476e008	-	ol9_x86_64_olcne18
	flannel-cni-plugin-1.2.0-3.el9.x86_64.rpm	7f87412c1a0161c0f9ba0770e03c656b	-	ol9_x86_64_olcne17
	flannel-cni-plugin-1.2.0-3.el9.x86_64.rpm	7f87412c1a0161c0f9ba0770e03c656b	-	ol9_x86_64_olcne18
	helm-3.12.0-4.el9.x86_64.rpm	05302455ab9b9f51356e988a933b4831	-	ol9_x86_64_olcne17
	helm-3.12.0-4.el9.x86_64.rpm	05302455ab9b9f51356e988a933b4831	-	ol9_x86_64_olcne18
	istio-1.17.8-2.el9.x86_64.rpm	1d7eefa93d19e7f4a96a08d04d64a9c9	-	ol9_x86_64_olcne17
	istio-istioctl-1.17.8-2.el9.x86_64.rpm	3d464952feabd7ac15098c0ef6347a6a	-	ol9_x86_64_olcne17
	kata-1.12.1-17.el9.x86_64.rpm	8dc4d5cec4bcae85bed0db3354dc5b1a	-	ol9_x86_64_olcne17
	kata-1.12.1-17.el9.x86_64.rpm	8dc4d5cec4bcae85bed0db3354dc5b1a	-	ol9_x86_64_olcne18
	kata-agent-1.12.1-11.el9.x86_64.rpm	3c04584fe25f7e03df3192e5152036e3	-	ol9_x86_64_olcne17
	kata-agent-1.12.1-11.el9.x86_64.rpm	3c04584fe25f7e03df3192e5152036e3	-	ol9_x86_64_olcne18
	kata-image-1.12.1-11.11.ol9_202312212316.x86_64.rpm	9720c2dd10b47e814adc3f4be94591e2	-	ol9_x86_64_olcne17
	kata-image-1.12.1-11.11.ol9_202312212316.x86_64.rpm	9720c2dd10b47e814adc3f4be94591e2	-	ol9_x86_64_olcne18
	kata-ksm-throttler-1.12.1-11.el9.x86_64.rpm	2d3a4fb965cc971f5a424a70b4f99e47	-	ol9_x86_64_olcne17
	kata-ksm-throttler-1.12.1-11.el9.x86_64.rpm	2d3a4fb965cc971f5a424a70b4f99e47	-	ol9_x86_64_olcne18
	kata-proxy-1.12.1-11.el9.x86_64.rpm	7a1ec2c445ac76400ea7204e1b117379	-	ol9_x86_64_olcne17
	kata-proxy-1.12.1-11.el9.x86_64.rpm	7a1ec2c445ac76400ea7204e1b117379	-	ol9_x86_64_olcne18
	kata-runtime-1.12.1-11.el9.x86_64.rpm	75945b604a98221d0a095edab197fed8	-	ol9_x86_64_olcne17
	kata-runtime-1.12.1-11.el9.x86_64.rpm	75945b604a98221d0a095edab197fed8	-	ol9_x86_64_olcne18
	kata-shim-1.12.1-11.el9.x86_64.rpm	01fe652d50dbe3950bb95e7772c74d7b	-	ol9_x86_64_olcne17
	kata-shim-1.12.1-11.el9.x86_64.rpm	01fe652d50dbe3950bb95e7772c74d7b	-	ol9_x86_64_olcne18
	kubeadm-1.26.10-3.el9.x86_64.rpm	e83dfd29b50188e8c3b84d0ff53dec9e	-	ol9_x86_64_olcne17
	kubectl-1.26.10-3.el9.x86_64.rpm	92a3c3eb54f756c318b928b6e2e3359d	-	ol9_x86_64_olcne17
	kubelet-1.26.10-3.el9.x86_64.rpm	bee45efb62f89e4797a2a3c6152aa652	-	ol9_x86_64_olcne17
	kubernetes-cni-1.1.2-4.el9.x86_64.rpm	0065519ff0e6277a2d62a727a4427ede	-	ol9_x86_64_olcne17
	kubernetes-cni-1.1.2-4.el9.x86_64.rpm	0065519ff0e6277a2d62a727a4427ede	-	ol9_x86_64_olcne18
	kubernetes-cni-plugins-1.2.0-6.el9.x86_64.rpm	346dbe8b6870995e4f2eff9c720e976c	-	ol9_x86_64_olcne17
	kubernetes-cni-plugins-1.2.0-6.el9.x86_64.rpm	346dbe8b6870995e4f2eff9c720e976c	-	ol9_x86_64_olcne18
	olcne-agent-1.7.6-5.el9.x86_64.rpm	39ee71c88b43520d2d9d348e3613647b	-	ol9_x86_64_olcne17
	olcne-api-server-1.7.6-5.el9.x86_64.rpm	85e87081fd4c67782d63b6c156a10ef6	-	ol9_x86_64_olcne17
	olcne-calico-chart-1.7.6-5.el9.x86_64.rpm	ba26ad9be05ef4cf0b1572a5a0b9db16	-	ol9_x86_64_olcne17
	olcne-gluster-chart-1.7.6-5.el9.x86_64.rpm	e1d2a7b9d9a3233d971027a7bc9e3a14	-	ol9_x86_64_olcne17
	olcne-grafana-chart-1.7.6-5.el9.x86_64.rpm	297e9882618d3a3401e42f78237200ef	-	ol9_x86_64_olcne17
	olcne-istio-chart-1.7.6-5.el9.x86_64.rpm	1c976d139540e6aeef41f305085832b3	-	ol9_x86_64_olcne17
	olcne-kubevirt-chart-1.7.6-5.el9.x86_64.rpm	d15709c2c4cf68a5eea7182fc438615c	-	ol9_x86_64_olcne17
	olcne-metallb-chart-1.7.6-5.el9.x86_64.rpm	f820b26affd07b9347b6a9c13b52fba7	-	ol9_x86_64_olcne17
	olcne-multus-chart-1.7.6-5.el9.x86_64.rpm	73383166f19e4f33e0ddd4cbe070f73b	-	ol9_x86_64_olcne17
	olcne-nginx-1.7.6-5.el9.x86_64.rpm	41ed308f4228aac8f5368914c82536a9	-	ol9_x86_64_olcne17
	olcne-oci-ccm-chart-1.7.6-5.el9.x86_64.rpm	296dbb3e31be7c7af3cae8426ae3b92a	-	ol9_x86_64_olcne17
	olcne-olm-chart-1.7.6-5.el9.x86_64.rpm	4b7bd53389c608bb538ad1ea6b4da5b2	-	ol9_x86_64_olcne17
	olcne-prometheus-chart-1.7.6-5.el9.x86_64.rpm	e3a49c33ce2194fc6e23696b519d9f68	-	ol9_x86_64_olcne17
	olcne-rook-chart-1.7.6-5.el9.x86_64.rpm	c427a885e9a3f15e0624cba64e291f30	-	ol9_x86_64_olcne17
	olcne-utils-1.7.6-5.el9.x86_64.rpm	81e1686c4860c1167eb461f146e57fc9	-	ol9_x86_64_olcne17
	olcnectl-1.7.6-5.el9.x86_64.rpm	270f85e2454ce39d9fb1d28597630bbc	-	ol9_x86_64_olcne17
	virtctl-0.58.0-5.el9.x86_64.rpm	16a8a4c871bff832334969e057a7ca54	-	ol9_x86_64_olcne17
	yq-4.34.1-4.el9.x86_64.rpm	e00a717f00db24e5d69596c5c470ab82	-	ol9_x86_64_olcne17

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691