Announcing the release of Oracle Linux 8 Update 5

November 16, 2021 | 4 minute read
Simon Coter
Director, Oracle Linux and Virtualization Product Management
Text Size 100%:

Oracle is pleased to announce the availability of the Oracle Linux 8 Update 5 for the 64-bit Intel and AMD (x86_64) and 64-bit Arm (aarch64) platforms.  

This release includes the Unbreakable Enterprise Kernel (UEK) Release 6 Update 3 on the installation image, along with the Red Hat Compatible Kernel (RHCK) for x86_64 platform. For new installations, UEK R6 is enabled and installed by default and is the default kernel on first boot. UEK R6, the kernel developed, built, and tested by Oracle is based on the mainline Linux Kernel 5.4, and delivers more innovation than other commercial Linux kernels. 

Oracle Linux brings the latest open source innovations, business-critical performance, and security optimizations for cloud and on-premises deployment. Oracle Linux maintains user space compatibility with Red Hat Enterprise Linux (RHEL), which is independent of the kernel version that underlies the operating system. Existing applications in user space will continue to run unmodified on Oracle Linux 8 Update 5 with Unbreakable Enterprise Kernel Release 6 (UEK R6) and applications already certified on  previous releases of Red Hat Enterprise Linux 8 or Oracle Linux 8 do not require a certification with this new release.

Oracle Linux 8 Update 5 release delivers many enhancements, including:

  • Software Management
    • Read-only support for the RPM sqlite database back end. This update introduces support to query the packages that are installed in a container from the Oracle Linux 8 host.
    • libmodulemd updated to version 2.13.0. This update includes various fixes and improvements.
    • sslverifystatus added to dnf configuration. With sslverifystatus option enabled, downloads from yum channels with a revoked certificate will be refused.
  • Shell and Command Line Tools
    • LVM restoring with thin pools. This enhancement enables Relax-and-Recover (ReaR) to detect when thin pools and other logical volume types with kernel metadata are used in a volume group.
    • FCoE option changed to rd.fcoe. Starting with this release, you should use the rd.fcoe=0 command to disable FCoE.
    • modulemd-tools package added. This package provides tools for parsing and generating modulemd YAML files.
  • Compilers and Development Toolsets
    • GCC Toolset updated to release 11
    • Go Toolset updated to version 1.16.6.
    • Rust Toolset updated to version 1.54.0.
    • LLVM Toolset updated to version 12.0.1.
    • CMake updated to version 3.20.2.
    • Valgrind updated to version 3.17.0.
    • grafana and grafana-container packages updated to version 7.5.9.
  • Dynamic Programming Languages
    • ruby:3.0 module stream added.
    • php:7.4 module stream updated to version 7.4.19.
    • squid:4 module updated to version 4.15.
    • quota command supports HPE XFS. This change enables users of HPE XFS to monitor and manage user and group disk usage by using the quota.
  • Infrastructure Services
    • linuxptp updated to version 3.1.
    • chrony updated to version 4.1.
    • PowerTop updated to version 2.14.
  • Security
    • crypto-policies updated to 20210617. This version of crypto-policies includes numerous bug fixes and improvements over the previous version.
    • crypto-policies support for AES-192 ciphers in custom policies. With this update, AES-192-GCM and AES-192-CBC ciphers are available for the Libreswan application; AES-192-CTR and AES-192-CBC ciphers are supported for the libssh library and the OpenSSH suite through crypto-policies.
    • CBC ciphers are disabled in the FUTURE cryptographic policy. With this update, system components that respect crypto-policies cannot use CBC mode when the FUTURE policy is active.
    • gnutls, updated to version 3.6.16, provides numerous bug fixes and other enhancements over the previous version.
    • Kernel AVC tracepoint added. This enhancement introduces a new avc:selinux_audited kernel tracepoint that triggers when an SELinux denial is to be audited.
    • libreswan, updated to version 4.4, introduces important enhancements and bug fixes, including several IKEv2 and pluto IKE daemon enhancements.
    • SCAP Security Guide, updated to version 0.1.57, provides several bug fixes and improvements over the previous version.
    • OpenSCAP, updated to version 1.3.5, includes numerous fixes and other enhancements over the previous version.
    • Rsyslog, updated to version 8.2102.0-5, provides numerous improvements over the previous version.
    • socat updated to version 1.7.4.
    • firewalld, updated to 0.9.3, includes numerous upstream bug fixes and improvements over version 0.8.2.

Oracle Linux 8 Update 5 includes the following kernel packages:

  • kernel-uek-5.4.17-2136.300.7 for x86_64 and aarch64 platforms - The Unbreakable Enterprise Kernel Release 6 Update 3, which is the default kernel.
  • kernel-4.18.0-348 for x86_64 platform - The latest Red Hat Compatible Kernel (RHCK).

For more details about these and other new features and changes, please consult the Oracle Linux 8 Update 5 Release Notes and Oracle Linux 8 Documentation.

Oracle Linux downloads

Individual RPM packages are available on the Unbreakable Linux Network (ULN) and the Oracle Linux yum server. ISO installation images are available from the Oracle Linux yum server and Oracle Software Delivery Cloud and container images are available via Oracle Container RegistryGitHub Container Registry and Docker Hub.

Oracle Linux can be downloaded, used, and distributed free of charge and all updates and errata are freely available. Customers decide which of their systems require a support subscription. This makes Oracle Linux an ideal choice for development, testing, and production systems, since support coverage can be optimized for each individual system, while keeping all systems up to date and secure.

Resources

Simon Coter

Director, Oracle Linux and Virtualization Product Management

A 20-years Oracle veteran, Simon Coter is an experienced product manager and open source community member. He leads a team responsible for several Oracle Linux and Virtualization offerings, including Oracle Linux, the Unbreakable Enterprise Kernel for Oracle Linux, Oracle Cloud Native Environment, Oracle Linux KVM, Oracle Linux Virtualization Manager, Oracle Linux Automation Manager, Gluster, Oracle VM, and VirtualBox. Prior to this, Simon was a technical consultant focused on project management, architectures definition, sizing and implementation, best practices, and technical references for customers.


Previous Post

Live Debugging Techniques for the Linux Kernel, Part 3 of 3

Alex Thorlton | 18 min read

Next Post


Virtual Machine Secure Boot Database Updates Made Easy with Oracle Linux

Aaron Young | 6 min read