Oracle Linux Security Advisory ELSA-2024-3667

http://linux.oracle.com/errata/ELSA-2024-3667.html

The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

x86_64:
cockpit-310.4-1.0.1.el8_10.x86_64.rpm
cockpit-bridge-310.4-1.0.1.el8_10.x86_64.rpm
cockpit-doc-310.4-1.0.1.el8_10.noarch.rpm
cockpit-system-310.4-1.0.1.el8_10.noarch.rpm
cockpit-ws-310.4-1.0.1.el8_10.x86_64.rpm

aarch64:
cockpit-310.4-1.0.1.el8_10.aarch64.rpm
cockpit-bridge-310.4-1.0.1.el8_10.aarch64.rpm
cockpit-doc-310.4-1.0.1.el8_10.noarch.rpm
cockpit-system-310.4-1.0.1.el8_10.noarch.rpm
cockpit-ws-310.4-1.0.1.el8_10.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol8/SRPMS-updates//cockpit-310.4-1.0.1.el8_10.src.rpm

Related CVEs:

CVE-2024-2947




Description of changes:

[310.4-1.0.1]
- Update documentation links [Orabug: 34706402]
- Drop subscription-manager-cockpit requirement for ol [Orabug: 34681110]
- Remove duplicate reference to server in cockpit [Orabug: 33862832]
- Update documentation links [Orabug: 32795691]
- Make documentation links point to Oracle Linux information [Orabug: 30271413] [Orabug: 32013095]
- Fix rendering of hwinfo page on systems with some empty memory slots [Orabug: 32826970]

[310.4-1]
- sosreport: Fix command injection with crafted report names [CVE-2024-2947]
  (jira#RHEL-30452)


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata