[Oraclevm-errata] OVMSA-2010-0015 Important: Oracle VM 2.2 ovs-agent security and bug fix update
Errata Announcements for Oracle VM
oraclevm-errata at oss.oracle.com
Mon Oct 18 13:36:20 PDT 2010
Oracle VM Security Advisory OVMSA-2010-0015
The following updated rpms for Oracle VM 2.2 have been uploaded to the
Unbreakable Linux Network:
i386:
ovs-agent-2.3-42.noarch.rpm
SRPMS:
http://oss.oracle.com/oraclevm/server/2.2/SRPMS-updates/ovs-agent-2.3-42.src.rpm
Description of changes:
[2.3-42]
- Update changelog, fill CVE number.
[2.3-41]
- Fix config-file access mode issue.
[2.3-40]
- Fix file access vulnerability [orabug 10142417] {CVE-2010-3582}
- Fix local privilege escalation [orabug 10142476] {CVE-2010-3584}
- Fix ovs agent command injection [orabug 10146644] {CVE-2010-3585}
- Fix validate master ip command injection [orabug 10142448] {CVE-2010-3583}
- Add excutable mode to utils/upgrade.py.
More information about the Oraclevm-errata
mailing list