Oracle Releases This Week’s Crop of OEL Security Updates
Oracle Corporation (NasdaqGS: ORCL) has released a trio of updates to the database giant’s Enterprise Linux distribution [essentially Red Hat Inc.'s (NYSE: RHT) Enterprise Linux]. The three updates, entitled ELSA-2009-0308, ELSA-2009-0275 and ELBA-2009-0309 deal with cups, imap and strace respectively. Detailed descriptions of each update appears after the jump.
Oracle Security Advisories
Enterprise Linux Security Advisory ELSA-2009-0308
The following updated rpms for Enterprise Linux 3 have been uploaded to the Unbreakable Linux Network:
i386:cups-1.1.17-13.3.56.i386.rpm, cups-devel-1.1.17-13.3.56.i386.rpm, cups-libs-1.1.17-13.3.56.i386.rpm
x86_64:cups-1.1.17-13.3.56.x86_64.rpm, cups-devel-1.1.17-13.3.56.x86_64.rpm, cups-libs-1.1.17-13.3.56.i386.rpm, cups-libs1.1.17-13.3.56.x86_64.rpm
SRPMS:http://oss.oracle.com/el3/SRPMS-updates/cups-1.1.17-13.3.56.src.rpm
Description of changes: [1.1.17-13.3.56] – Applied patch to fix CVE-2008-3640 (STR #2919, bug #486052), which was not fixed in previous attempt.
—
Enterprise Linux Security Advisory ELSA-2009-0275
https://rhn.redhat.com/errata/RHSA-2009-0275.html
The following updated rpms for Enterprise Linux 3 have been uploaded to the Unbreakable Linux Network:
i386:imap-2002d-15.i386.rpm, imap-devel-2002d-15.i386.rpm, imap-utils-2002d-15.i386.rpm
x86_64:imap-2002d-15.x86_64.rpm, imap-devel-2002d-15.x86_64.rpm, imap-utils-2002d-15.x86_64.rpm
SRPMS:http://oss.oracle.com/el3/SRPMS-updates/imap-2002d-15.src.rpm
Description of changes: [2002d-15] – Backport patch for buffer overflows in dmail and tmail from upstream version 2007d (CVE-2008-5005, #469667)
—–
Enterprise Linux Bug Fix Advisory ELBA-2009-0309
The following updated rpms for Enterprise Linux 5 have been uploaded to the Unbreakable Linux Network:
i386:strace-4.5.18-2.el5_3.3.i386.rpm
x86_64:strace-4.5.18-2.el5_3.3.x86_64.rpm
SRPMS:http://oss.oracle.com/el5/SRPMS-updates/strace-4.5.18-2.el5_3.3.src.rpm
Description of changes: [4.5.18-2.el5_3.3]
- Partial sync up with upsteam #1: whitespace changes
- Partial sync up with upsteam #2: trivial changes (comments etc)
- Partial sync up with upsteam #3: flock reporting, fix network ops selection
- Partial sync up with upsteam #4: support -D option, blackfin cpu support
- Partial sync up with upsteam #5: update SIGKILL detection machinery
- Improve fairness – do not allow a few threads to usurp strace’s attention
- Resolves: RHBZ #484074
—-
- Red Hat to help liberate Oracle ‘hostages’ (theregister.co.uk)
- Cuba launches its own version of Linux called Nova: No more depending on Windows (crunchgear.com)
- Silverlight shines on Linux (vnunet.com)
![Reblog this post [with Zemanta]](http://img.zemanta.com/reblog_b.png?x-id=9574c0ec-b0f9-420c-aacd-62e77c505c90)
