Oracle alert ELSA-2025-9178 (kea)
| From: | Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2025-9178 Important: Oracle Linux 10 kea security update | |
| Date: | Fri, 27 Jun 2025 16:24:23 -0700 | |
| Message-ID: | <mailman.652.1751066671.37250.el-errata@oss.oracle.com> |
Oracle Linux Security Advisory ELSA-2025-9178 http://linux.oracle.com/errata/ELSA-2025-9178.html The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network: x86_64: kea-2.6.3-1.el10_0.x86_64.rpm kea-doc-2.6.3-1.el10_0.noarch.rpm kea-hooks-2.6.3-1.el10_0.x86_64.rpm kea-keama-2.6.3-1.el10_0.x86_64.rpm kea-libs-2.6.3-1.el10_0.x86_64.rpm aarch64: kea-2.6.3-1.el10_0.aarch64.rpm kea-doc-2.6.3-1.el10_0.noarch.rpm kea-hooks-2.6.3-1.el10_0.aarch64.rpm kea-keama-2.6.3-1.el10_0.aarch64.rpm kea-libs-2.6.3-1.el10_0.aarch64.rpm SRPMS: http://oss.oracle.com/ol10/SRPMS-updates/kea-2.6.3-1.el10... Related CVEs: CVE-2025-32801 CVE-2025-32802 CVE-2025-32803 Description of changes: [2.6.3-1] - New version 2.6.3 - Fix for: CVE-2025-32801, CVE-2025-32802, CVE-2025-32803 - kea.conf: Remove /tmp/ from socket-name for existing configurations - kea.conf: Set pseudo-random password for default config to secure fresh install and allow CA startup without user intervention - kea.conf: Restrict directory permissions - Sync service files with upstream - Fix leases ownership when switching from root to kea user [2.6.1-9] - Update location of fmf plans [2.6.1-8] - Properly check valgrind arches [2.6.1-7] - Use autoreconf more (fixes riscv64 build) _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata