29 matches found
Oracle Linux 10 : firefox (ELSA-2026-3361)
The remote Oracle Linux 10 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2026-3361 advisory. 140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Re...
java-21-openjdk security update
1:21.0.10.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.10.0.7-1 - Update to jdk-21.0.10+7 GA - Update release notes to 21.0.10+7 - Bump libpng version to 1.6.51 following JDK-8372534 - Update FIPS patch to include nss.fips.cfg that grants CKAENCRYPT - Handle 'upgrade' as an...
java-1.8.0-openjdk security update
1:1.8.0.472.b08-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.472.b08-1 - Update to 8u472-b08 GA. - Update release notes for 8u472-b08. - Drop local JDK-8339414 fix as this is now included upstream - Reset rpmrelease to 1 now there are no other RPM builds on RHEL 9 - Sync the copy of...
java-17-openjdk security update
1:17.0.17.0.10-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.17.0.10-1 - Update to jdk-17.0.17+10 GA - Add to .gitignore openjdk-17.0.17+10.tar.xz - Set buildver to 10 - Set rpmrelease to 1, remove 'must start at 2' comment - Set isga to 1 - Update sources to openjdk-17.0.17+10.tar.xz...
libxml2 security update
2.9.1-6.0.7.6 - Fix CVE-2025-6021, CVE-2025-32414, CVE-2025-49794, CVE-2025-49796 - Orabug: 38255814...
java-21-openjdk security update
1:21.0.8.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.8.0.9-1.1 - Update to jdk-21.0.8+9 GA - Update release notes to 21.0.8+9 - Switch to GA mode - Sync the copy of the portable specfile with the latest update - This tarball is embargoed until 2025-07-15 @ 1pm PT. - Resolves:...
java-17-openjdk security update
1:17.0.15.0.6-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.15.0.6-2 - Update to jdk-17.0.15+6 GA - Add to .gitignore openjdk-17.0.15+6.tar.xz - Set updatever to 15 - Set buildver to 6 - Set rpmrelease to 2 - Update sources to openjdk-17.0.15+6.tar.xz - Set bundled freetype provide...
firefox security update
128.5.1-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.5.1 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.5.1-1 - Update to 128.5.1 128.5.0-1 - Update to 128.5.0 build1...
java-1.8.0-openjdk security update
1.8.0.432.b06-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.432.b06-1 - Update to shenandoah-jdk8u432-b06 GA - Update release notes for shenandoah-8u432-b06. - Drop JDK-8281096,7,8/PR3836 patch following integration of upstream version - Regenerate JDK-8199936/PR3533 patch following...
java-11-openjdk security update
1:11.0.23.0.9-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.23.0.9-2 - Fix 11.0.22 release date in NEWS 1:11.0.23.0.9-1 - Update to jdk-11.0.23+9 GA - Update release notes to 11.0.23+9 - Switch to GA mode for release - Require tzdata 2024a due to upstream inclusion of JDK-8322725 - On...
java-17-openjdk security update
17.0.11.0.9-2.0.1 - Add Oracle vendor bug URL 1:17.0.11.0.9-2 - Update to jdk-17.0.11+9 GA - Add openjdk-17.0.11+9.tar.xz to .gitignore - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Update buildver from 7 to 9 - Update portablerelease from 1 to 3 - Change isga from 0 to ...
kernel security update
5.14.0-362.18.1.el93.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.326.6.el7 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5.el7 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang...
gcc security update
gcc el8 8.5.0-18.0.5 - CVE-2023-4039 GCC mitigation. Orabug 35751743. Includes removal of aarch64-preserve-args.patch. - CVE-2022-40982 'Intel Downfall' mitigation. Orabug 35751810. Add two patches originally from GCC upstream releases/gcc-11 branch. with major adjustment...
kernel security and bug fix update
5.14.0-162.23.11.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
openSUSE Security Update : roundcubemail (openSUSE-2020-1516)
This update for roundcubemail fixes the following issues : roundcubemail was upgraded to 1.3.15 This is a security update to the LTS version 1.3. boo1175135 - Security: Fix cross-site scripting XSS via HTML messages with malicious svg content CVE-2020-16145 - Security: Fix cross-site scripting XS...
python3 security update
3.6.8-13.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-13 - Security fix for CVE-2019-16056 Resolves: rhbz1750774 3.6.8-12 - Add support for OpenSSL FIPS mode - Fix faulthandler stack size Resolves: rhbz1732908 3.6.8-11 - Security fix for CVE-2018-20852 Resolves:...
openssl security update
1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix CVE-2018-0739 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.1e-58 - fi...
cloud-init security update
18.2-1.0.1 - add modified version of enable-ec2utils-to-stop-retrying-to-get-ec2-metadata.patch for 18.2: 1. Enable ec2utils.py having a way to stop retrying to get ec2 metadata 2. Apply stop retrying to get ec2 metadata to helper/openstack.py MetadataReader Resolves: Oracle-Bug:41660 Bugzilla...
openssl security update
1.0.2k-12.0.3 - Oracle bug 28672370: backport CVE-2018-0732 - Oracle bug 28672351: backport CVE-2018-0737...