python3.11 security update

3.11.2-2.2 - Security fix for CVE-2023-40217 Resolves: rhbz2235789...

CVE-2023-27533 affecting package rust for versions less than 1.72.0-2

CVE-2023-27533 affecting package rust for versions less than 1.72.0-2. An upgraded version of the package is available that resolves this issue...

Description of the security update for Microsoft Exchange Server 2019 and 2016: October 10, 2023 (KB5030877)

Description of the security update for Microsoft Exchange Server 2019 and 2016: October 10, 2023 KB5030877 This security update rollup resolves vulnerabilities in Microsoft Exchange Server. To learn more about these vulnerabilities, see the following Common Vulnerabilities and Exposures CVE:...

ghostscript security update

9.54.0-10 - fix for CVE-2023-36664 - Resolves: rhbz2217798...

CVE-2023-1672 affecting package tang for versions less than 14-1

CVE-2023-1672 affecting package tang for versions less than 14-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-4781 affecting package vim for versions less than 9.0.1897-1

CVE-2023-4781 affecting package vim for versions less than 9.0.1897-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-30589 affecting package nodejs18 for versions less than 18.17.1-2

CVE-2023-30589 affecting package nodejs18 for versions less than 18.17.1-2. An upgraded version of the package is available that resolves this issue...

nodejs:18 security, bug fix, and enhancement update

nodejs 1:18.16.1-1 - Rebase to 18.16.1 Resolves: rhbz2188290 rhbz2166926 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 - Replace /usr/etc/npmrc symlink with builtin configuration Resolves: rhbz2222287 nodejs-nodemon nodejs-packaging 2021.06-4 - NPM bundler: also find...

2023-08 Cumulative Update for Windows 11 for x64-based Systems (KB5029253)

Install this update to resolve issues in Windows. For a complete listing of the issues that are included in this update, see the associated Microsoft Knowledge Base article for more information. After you install this item, you may have to restart your computer...

CVE-2023-0425

ABB is aware of vulnerabilities in the product versions listed below. An update is available that resolves the reported vulnerabilities in the product versions under maintenance. An attacker who successfully exploited one or more of these vulnerabilities could cause the product to stop or make th...

linux-firmware security update

20230516-999.22.git6c9e0ed5.el8 - remove amd-ucode/README Orabug: 35645306 - Resolves 'Zenbleed' Orabug: 35650345 CVE-2023-20593...

java-11-openjdk security and bug fix update

1:11.0.20.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.20.0.8-2 - Bump release number so we are newer than 9.0 - Related: rhbz2221106 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Drop local inclusion of JDK-8274864 & JDK-8305113 as they a...

java-11-openjdk security and bug fix update

1:11.0.20.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 - Fix tzdata requirement copy-and-paste error that led to two BuildRequires and no Requires 1:11.0.20.0.8-2 - Bump release number so we are newer than 9.0 - Related: rhbz2221106 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Updat...

CVE-2022-48424 affecting package kernel 5.10.181.1-1

CVE-2022-48424 affecting package kernel 5.10.181.1-1. An upgraded version of the package is available that resolves this issue...

postgresql security update

13.11-1.0.1 - Fixed postgresql port binding issue during bootup Orabug: 35420628 13.11-1 - Update to 13.11 - Resolves: 2207935...

python3.11 security update

3.11.2-2.1 - Security fix for CVE-2023-24329 Resolves: rhbz2173917...

CVE-2023-28320

A denial of service vulnerability exists in curl v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using alarm and siglongjmp. When doi...

CVE-2023-28320

A denial of service vulnerability exists in curl v8.1.0 in the way libcurl provides several different backends for resolving host names, selected at build time. If it is built to use the synchronous resolver, it allows name resolves to time-out slow operations using alarm and siglongjmp. When doi...

libreswan security update

4.9-3.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.9-3 - Fix CVE-2023-30570: Malicious IKEv1 Aggressive Mode packets can crash libreswan - Resolves: rhbz2187179...

git security update

1.8.3.1-25 - Fixes CVE-2023-25652 and CVE-2023-29007 - Resolves: 2188354, 2188365...