[Oraclevm-errata] OVMSA-2018-0023 Important: Oracle VM 3.4 dhcp security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Thu Mar 8 13:58:51 PST 2018

Oracle VM Security Advisory OVMSA-2018-0023

The following updated rpms for Oracle VM 3.4 have been uploaded to the 
Unbreakable Linux Network:



Description of changes:

- Added oracle-errwarn-message.patch

- Resolves: #1550085 - CVE-2018-5733 Avoid reference overflow

- Resolves: #1550083 - CVE-2018-5732 Avoid options buffer overflow

- Resolves: #1063217 - failover hangs with both potential-conflict

- Resolves: #1363790 - dhclient does not update routing table after the 

- Resolves: #1321945 - dhclient hook script for Azure cloud

- send unicast request/release via correct interface (#1297445)

- Lease table overflow crash. (#1133917)
- Add ignore-client-uids option. (#1196768)
- dhclient-script: it's OK if the arping reply comes from our system. 
- VLAN ID is only bottom 12-bits of TCI. (#1259552)
- dhclient: Make sure link-local address is ready in stateless mode. 
- dhclient-script: make_resolv_conf(): Keep old nameservers
   if server sends domain-name/search, but no nameservers. (#1269595)

More information about the Oraclevm-errata mailing list