Oracle Linux Security Advisory ELSA-2024-6681

http://linux.oracle.com/errata/ELSA-2024-6681.html

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

x86_64:
firefox-128.2.0-1.0.1.el9_4.x86_64.rpm
firefox-x11-128.2.0-1.0.1.el9_4.x86_64.rpm

aarch64:
firefox-128.2.0-1.0.1.el9_4.aarch64.rpm
firefox-x11-128.2.0-1.0.1.el9_4.aarch64.rpm


SRPMS:
http://oss.oracle.com/ol9/SRPMS-updates//firefox-128.2.0-1.0.1.el9_4.src.rpm

Related CVEs:

CVE-2024-7652
CVE-2024-8381
CVE-2024-8382
CVE-2024-8383
CVE-2024-8384
CVE-2024-8385
CVE-2024-8386
CVE-2024-8387




Description of changes:

[128.2.0-1.0.1]
- Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file

[128.2.0]
- Add debranding patches (Mustafa Gezen)
- Add OpenELA default preferences (Louis Abel)

[128.2.0-1]
- Update to 128.2.0

[115.10.0-1]
- Update to 115.10.0 build1

[115.9.1-2]
- Removed expat CVE fix

[115.9.1-1]
- Update to 115.9.1

[115.9.0-2]
- Update to 115.9.0 build2

[115.9.0-1]
- Update to 115.9.0 build1
- Fix expat CVE-2023-52425

[115.8.0-1]
- Update to 115.8.0 build1

[115.7.0-1]
- Update to 115.7.0 build1

[115.6.0-1]
- Update to 115.6.0 build1

[115.5.0-1]
- Update to 115.5.0 build1

[115.4.0-1]
- Update to 115.4.0 build1
- Add fix for CVE-2023-44488
- Set homepage from os-release HOME_URL

[115.3.1-1]
- Update to 115.3.1

[115.3.0-1]
- Update to 115.3.0 ESR

[115.2.0-3]
- Update to 115.2.0 ESR

[115.1.0-1]
- Update to 115.1.0 ESR

[115.0.2-1]
- Update to 115.0.2 ESR

[115.0b8-1]
- Update to 115.0b8

[102.11.0-2]
- Update to 102.11.0 build2

[102.11.0-1]
- Update to 102.11.0 build1

[102.10.0-1]
- Update to 102.10.0 build1

[102.9.0-4]
- Update to 102.9.0 build2

[102.9.0-2]
- removed disable-openh264-download

[102.9.0-1]
- Update to 102.9.0 build1

[102.8.0-2]
- Update to 102.8.0 build2

[102.8.0-1]
- Update to 102.8.0 build1

[102.7.0-1]
- Update to 102.7.0 build1

[102.6.0-2]
- Add firefox-x11 subpackage to allow explicit run of firefox under x11 on RHEL9

[102.6.0-1]
- Update to 102.6.0 build1

[102.5.0-2]
- Added libwebrtc screencast patch for newer features

[102.5.0-1]
- Update to 102.5.0 build1

[102.4.0-1]
- Update to 102.4.0 build1

[102.3.0-7]
- Fix for expat CVE-2022-40674 and non functional webrtc


_______________________________________________
El-errata mailing list
El-errata@oss.oracle.com
https://oss.oracle.com/mailman/listinfo/el-errata

Oracle9: ELSA-2024-6681: firefox security Important Security Advisory Updates

The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[128.2.0-1.0.1] - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file [128.2.0] - Add debranding patches (Mustafa Gezen) - Add OpenELA default preferences (Louis Abel) [128.2.0-1] - Update to 128.2.0 [115.10.0-1] - Update to 115.10.0 build1 [115.9.1-2] - Removed expat CVE fix [115.9.1-1] - Update to 115.9.1 [115.9.0-2] - Update to 115.9.0 build2 [115.9.0-1] - Update to 115.9.0 build1 - Fix expat CVE-2023-52425 [115.8.0-1] - Update to 115.8.0 build1 [115.7.0-1] - Update to 115.7.0 build1 [115.6.0-1] - Update to 115.6.0 build1 [115.5.0-1] - Update to 115.5.0 build1 [115.4.0-1] - Update to 115.4.0 build1 - Add fix for CVE-2023-44488 - Set homepage from os-release HOME_URL [115.3.1-1] - Update to 115.3.1 [115.3.0-1] - Update to 115.3.0 ESR [115.2.0-3] - Update to 115.2.0 ESR [115.1.0-1] - Update to 115.1.0 ESR [115.0.2-1] - Update to 115.0.2 ESR [115.0b8-1] - Update to 115.0b8 [102.11.0-2] - Update to 102.11.0 build2 [102.11.0-1] - Update t...

Read the Full Advisory

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates//firefox-128.2.0-1.0.1.el9_4.src.rpm

x86_64

firefox-128.2.0-1.0.1.el9_4.x86_64.rpm firefox-x11-128.2.0-1.0.1.el9_4.x86_64.rpm

aarch64

firefox-128.2.0-1.0.1.el9_4.aarch64.rpm firefox-x11-128.2.0-1.0.1.el9_4.aarch64.rpm

i386

Severity
Related CVEs: CVE-2024-7652 CVE-2024-8381 CVE-2024-8382 CVE-2024-8383 CVE-2024-8384 CVE-2024-8385 CVE-2024-8386 CVE-2024-8387

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved