[Oraclevm-errata] OVMSA-2017-0110 Important: Oracle VM 3.4 sudo security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Tue May 30 16:35:43 PDT 2017


Oracle VM Security Advisory OVMSA-2017-0110

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
sudo-1.8.6p3-28.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.4/SRPMS-updates/sudo-1.8.6p3-28.el6_9.src.rpm



Description of changes:

[1.8.6p3-28]
- Fixes CVE-2017-1000367
   Resolves: rhbz#1455399

[1.8.6p3-27]
- Update noexec syscall blacklist
- Fixes CVE-2016-7032 and CVE-2016-7076
   Resolves: rhbz#1391938

[1.8.6p3-26]
- RHEL-6.9 erratum
   - Fix race condition when creating /var/log/sudo-io direcotry
   Resolves: rhbz#1365156




More information about the Oraclevm-errata mailing list