Stay Connected:

OLAMSA-2025-0002

OLAMSA-2025-0002 - OLAM 2.2 security update

Type:SECURITY
Impact:IMPORTANT
Release Date:2025-02-14

Description


ol-automation-manager
[2.2.0-25.el8]
- OLAM-683 Apply patch for CVE-2024-56201 (Jinja2-3.1.2 patched)

[2.2.0-24.el8]
- OLAM-600 Upgrade virtualenv>=20.26.6 to fix CVE-2024-53899
- OLAM-657 Apply patch for CVE-2024-53908 (Django 4.2.6 patched)

[2.2.0-23.el8]
- OLAM-597 Upgrade setuptools>=70.0 to fix CVE-2024-6345

[2.2.0-22.el8]
- OLAM-518 Patch for CVE-2024-26130
- OLAM-519 Patch for CVE-2023-49083

[2.2.0-21.el8]
- OLAM-521 Patch for sqlparse-0.4.4 - CVE-2024-4340

[2.2.0-20.el8]
- OLAM-616 Bump venvctrl to 0.9.0 (python 3.11.11 compatible)

python-django
[4.2.17-1.0.0]
- OLAM 658 Bump version to mitigate CVE-2024-53908

python3.11-cryptography
[41.0.7-1.0.1]
- OLAM-518 Apply patch for CVE-2024-26130

python-jinja2
[3.1.3-1.0.3]
- Apply patch for CVE-2024-56201 [JIRA: OLAM-683]


Related CVEs


CVE-2024-26130
CVE-2023-49083
CVE-2024-6345
CVE-2024-4340
CVE-2024-5620
CVE-2024-53899
CVE-2024-53908

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 8 (x86_64) ol-automation-manager-2.2.0-25.el8.src.rpma3a215e2e0156838dfeb74d57723930de07fdfc0fc35e146561b28af56eb9b15-ol8_x86_64_automation2.2
python-django-4.2.17-1.0.0.el8.src.rpm1749262fef0c3fcca58f99c478cabfb7d60db1e2599e298ebc9572a778cbe56b-ol8_x86_64_automation2.2
python-jinja2-3.1.3-1.0.3.el8.src.rpmf247fbc7b16ceadc50b0bb42b0c89948e004ab123d77a9431404d43b6826d87e-ol8_x86_64_automation2.2
python3.11-cryptography-41.0.7-1.0.1.el8.src.rpm0fcdd66c4f0d3f80cc86987ed9aa3554b5ee6f54685acdbf42b541105e547259-ol8_x86_64_automation2.2
ol-automation-manager-2.2.0-25.el8.x86_64.rpmf4aeb1c032a28a0372a89a41958a299658797a8bc2d6926815cdf699d9156cb8-ol8_x86_64_automation2.2
ol-automation-manager-cli-2.2.0-25.el8.noarch.rpm6bb6944081b6cd4ab92a3f372b7ce62e11254940806e8c6ad440a9ba0553926f-ol8_x86_64_automation2.2
python3.11-cryptography-41.0.7-1.0.1.el8.x86_64.rpmecbc8eb029689eae549e3208fb93f2d02d7d021897a2ead635e3faafa466c271-ol8_x86_64_automation2.2
python3.11-django-4.2.17-1.0.0.el8.noarch.rpm18b89c05bee5425ef080a177c1783f4baa115db4a116a23726d909416f56426c-ol8_x86_64_automation2.2
python3.11-jinja2-3.1.3-1.0.3.el8.noarch.rpm1bbe6fe0f991a11a4e85007ec97db84ce31a4e5d47fc1a557e14406231c4c96f-ol8_x86_64_automation2.2
python311-olamkit-2.2.0-25.el8.noarch.rpm0d9043fdfde266452130472201a099a61f69b7f093bd8ee6607dc9b07d8c951d-ol8_x86_64_automation2.2



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights