ELSA-2024-8922

ULN >
Oracle Linux Errata repository >
ELSA-2024-8922

ELSA-2024-8922 - bzip2 security update

Type:	SECURITY
Severity:	LOW
Release Date:	2024-11-11

Description

[1.0.6-27.0.1]
- CVE-2019-12900: Accept as many selectors as the file format allows [Orabug: 37266061]

[1.0.6-27]
- Fixes out of bounds access in BZ2_decompress (RHEL-64929)

Related CVEs

CVE-2019-12900

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	bzip2-1.0.6-27.0.1.el8_10.src.rpm	535e3dca9ddec212f7a7d422f3b8a8ea	-	ol8_aarch64_baseos_latest
	bzip2-1.0.6-27.0.1.el8_10.src.rpm	535e3dca9ddec212f7a7d422f3b8a8ea	-	ol8_aarch64_u10_baseos_patch
	bzip2-1.0.6-27.0.1.el8_10.aarch64.rpm	f9c84ce569036a8a4e0c9cafc19f28de	-	ol8_aarch64_baseos_latest
	bzip2-1.0.6-27.0.1.el8_10.aarch64.rpm	f9c84ce569036a8a4e0c9cafc19f28de	-	ol8_aarch64_u10_baseos_patch
	bzip2-devel-1.0.6-27.0.1.el8_10.aarch64.rpm	c61f9583eb9b6a90103cc2fef996cc04	-	ol8_aarch64_baseos_latest
	bzip2-devel-1.0.6-27.0.1.el8_10.aarch64.rpm	c61f9583eb9b6a90103cc2fef996cc04	-	ol8_aarch64_u10_baseos_patch
	bzip2-libs-1.0.6-27.0.1.el8_10.aarch64.rpm	d31f705088172bc274432484ee50d270	-	ol8_aarch64_baseos_latest
	bzip2-libs-1.0.6-27.0.1.el8_10.aarch64.rpm	d31f705088172bc274432484ee50d270	-	ol8_aarch64_u10_baseos_patch

Oracle Linux 8 (x86_64)	bzip2-1.0.6-27.0.1.el8_10.src.rpm	535e3dca9ddec212f7a7d422f3b8a8ea	-	ol8_x86_64_baseos_latest
	bzip2-1.0.6-27.0.1.el8_10.src.rpm	535e3dca9ddec212f7a7d422f3b8a8ea	-	ol8_x86_64_u10_baseos_patch
	bzip2-1.0.6-27.0.1.el8_10.x86_64.rpm	dc26c63f02488ced9d086b662eb69de0	-	ol8_x86_64_baseos_latest
	bzip2-1.0.6-27.0.1.el8_10.x86_64.rpm	dc26c63f02488ced9d086b662eb69de0	-	ol8_x86_64_u10_baseos_patch
	bzip2-devel-1.0.6-27.0.1.el8_10.i686.rpm	6840504cae6ba856d856700ee897a61a	-	ol8_x86_64_baseos_latest
	bzip2-devel-1.0.6-27.0.1.el8_10.i686.rpm	6840504cae6ba856d856700ee897a61a	-	ol8_x86_64_u10_baseos_patch
	bzip2-devel-1.0.6-27.0.1.el8_10.x86_64.rpm	202d6e32eca6eb02d8d04214275e5b8c	-	ol8_x86_64_baseos_latest
	bzip2-devel-1.0.6-27.0.1.el8_10.x86_64.rpm	202d6e32eca6eb02d8d04214275e5b8c	-	ol8_x86_64_u10_baseos_patch
	bzip2-libs-1.0.6-27.0.1.el8_10.i686.rpm	e6e6ac679c920d3a81ed90e75fc51fff	-	ol8_x86_64_baseos_latest
	bzip2-libs-1.0.6-27.0.1.el8_10.i686.rpm	e6e6ac679c920d3a81ed90e75fc51fff	-	ol8_x86_64_u10_baseos_patch
	bzip2-libs-1.0.6-27.0.1.el8_10.x86_64.rpm	754cb72d4c4e2571fddfa28afe50b892	-	ol8_x86_64_baseos_latest
	bzip2-libs-1.0.6-27.0.1.el8_10.x86_64.rpm	754cb72d4c4e2571fddfa28afe50b892	-	ol8_x86_64_u10_baseos_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections:

Oracle customers - enter a support request
Vulnerability scanning tools vendors and project maintainers - follow the standard ISV process

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691