Oracle alert ELSA-2024-9449 (bubblewrap and flatpak)
| From: | Errata Announcements for Oracle Linux via El-errata <el-errata@oss.oracle.com> | |
| To: | el-errata@oss.oracle.com | |
| Subject: | [El-errata] ELSA-2024-9449 Important: Oracle Linux 9 bubblewrap and flatpak security update | |
| Date: | Thu, 21 Nov 2024 06:43:04 -0800 | |
| Message-ID: | <mailman.897.1732200194.5621.el-errata@oss.oracle.com> |
Oracle Linux Security Advisory ELSA-2024-9449 http://linux.oracle.com/errata/ELSA-2024-9449.html The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network: x86_64: bubblewrap-0.4.1-8.el9_5.x86_64.rpm flatpak-1.12.9-3.el9_5.x86_64.rpm flatpak-libs-1.12.9-3.el9_5.i686.rpm flatpak-libs-1.12.9-3.el9_5.x86_64.rpm flatpak-selinux-1.12.9-3.el9_5.noarch.rpm flatpak-session-helper-1.12.9-3.el9_5.x86_64.rpm flatpak-1.12.9-3.el9_5.i686.rpm flatpak-devel-1.12.9-3.el9_5.i686.rpm flatpak-devel-1.12.9-3.el9_5.x86_64.rpm flatpak-session-helper-1.12.9-3.el9_5.i686.rpm aarch64: bubblewrap-0.4.1-8.el9_5.aarch64.rpm flatpak-1.12.9-3.el9_5.aarch64.rpm flatpak-libs-1.12.9-3.el9_5.aarch64.rpm flatpak-selinux-1.12.9-3.el9_5.noarch.rpm flatpak-session-helper-1.12.9-3.el9_5.aarch64.rpm flatpak-devel-1.12.9-3.el9_5.aarch64.rpm SRPMS: http://oss.oracle.com/ol9/SRPMS-updates//bubblewrap-0.4.1... http://oss.oracle.com/ol9/SRPMS-updates//flatpak-1.12.9-3... Related CVEs: CVE-2024-42472 Description of changes: bubblewrap [0.4.1-8] - Backport upstream fix to help address CVE-2024-42472 in flatpak flatpak [1.12.9-3] - Fix previous changelog entry [1.12.9-2] - Backport upstream patches for CVE-2024-42472 - Require bubblewrap version that has new --bind-fd option backported for addressing CVE-2024-42472 _______________________________________________ El-errata mailing list El-errata@oss.oracle.com https://oss.oracle.com/mailman/listinfo/el-errata