21 matches found
.NET 10.0 security update
10.0.109-1.0.1 - Add support for Oracle Linux 10.0.109-1 - Update to .NET SDK 10.0.109 and Runtime 10.0.9 - Resolves: RHEL-181555 10.0.106-2 - Update to .NET SDK 10.0.106 and Runtime 10.0.6 - Resolves: RHEL-163381 10.0.104-2 - Update to .NET SDK 10.0.104 and Runtime 10.0.4 - Resolves: RHEL-152949...
Oracle Linux 8 : .NET / 9.0 (ELSA-2026-25113)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-25113 advisory. 9.0.118-1.0.1 - Add support for Oracle Linux 9.0.118-1 - Update to .NET SDK 9.0.118 and Runtime 9.0.17 - Resolves: RHEL-181550 9.0.116-2 - Update to...
openssl security update
3.5.1-7.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 3.5.1.openela.0.1 - Add OpenELA specific changes 1:3.5.1-7 - Fix CVE-2025-11187 CVE-2025-15467 CVE-2025-15468...
buildah security update
1.41.6-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.6-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 https://github.com/containers/buildah/commit/2ece502 - fixes 'Minor Incident CVE-2025-52881 buildah:...
java-1.8.0-openjdk security update
1.8.0.472.b08-1.0.1 - Update to 8u472-b08 GA Orabug: 38571645 - Update release notes for 8u472-b08. - Drop local JDK-8339414 fix as this is now included upstream - Reset rpmrelease to 1 now there are no other RPM builds on RHEL 8 - Sync the copy of the portable specfile with the latest update -...
nodejs:22 security update
nodejs 1:22.16.0-2 - Patch fix for sqlite CVE-2025-6965 Resolves: RHEL-103835 1:22.15-1-1 - Update to 22.16.0 Fixes: CVE-2025-23166 - Resolves: RHEL-91596 RHEL-92859 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300...
golang security update
1.24.4-1 - Update to Go 1.24.4 fips-1 - Resolves: RHEL-101074 1.23.10-1 - Update to Go 1.23.10 - Fix for CVE-2025-4673, CVE-2025-0913, and CVE-2025-22874 - Resolves: RHEL-96000...
podman security update
5.4.0-12.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 5:5.4.0-12 - update to the latest content of...
python3.12 security update
3.12.11-1 - Update to 3.12.11 - Security fixes for CVE-2025-4517, CVE-2025-4330, CVE-2025-4138, CVE-2024-12718, CVE-2025-4435 Resolves: RHEL-98040, RHEL-98010, RHEL-97808, RHEL-98070, RHEL-98213...
Oracle Linux 10 : .NET / 8.0 (ELSA-2025-7599)
The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2025-7599 advisory. 8.0.117-1.0.1 - Add support for Oracle Linux 8.0.117-1 - Update to .NET SDK 8.0.117 and Runtime 8.0.17 - Resolves: RHEL-94416 8.0.116-2 - Update to .NET SDK...
tigervnc security update
1.15.0-7 - Additional fix to CVE-2025-49176: xorg-x11-server: Integer Overflow in Big Requests Extension Resolves: RHEL-97294 1.15.0-6 - Fix CVE-2025-49175: xorg-x11-server: Out-of-Bounds Read in X Rendering Extension Animated Cursors Resolves: RHEL-97268 - Fix CVE-2025-49176: xorg-x11-server:...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.12-2 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/cf49e7c - fixes 'CVE-2025-22871 container-tools:rhel8/buildah: Request smuggling due to acceptance of invalid chunked data in...
Oracle Linux 8 : libsoup (ELSA-2025-8132)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-8132 advisory. 2.62.3-9 - Add patches to improve test reliability - Backport patches for various CVEs Resolves: RHEL-85879 Resolves: RHEL-92280 Resolves: RHEL-93031...
nodejs:22 security update
nodejs 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches Resolves: RHEL-87319 RHEL-86586 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87319 1:22.13.1-3 - Update c-ares to newest version with fix for CVE-2025-31498 Resolves: RHEL-86586 1:22.13.1-2 - Remove obsolete lua...
libsoup security update
2.72.0-10.1 - Backport patches for various CVEs, plus test improvements Resolves: RHEL-85906 Resolves: RHEL-85912 Resolves: RHEL-85919 Resolves: RHEL-87061 Resolves: RHEL-87069 Resolves: RHEL-87102 Resolves: RHEL-87120 Resolves: RHEL-88364 Resolves: RHEL-88367...
expat security update
2.5.0-5 - Fix CVE-2024-8176 - Resolves: RHEL-57489 2.5.0-4 - Fix CVE-2024-50602 - Resolves: RHEL-65066...
Oracle Linux 9 : libsoup (ELSA-2025-7436)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2025-7436 advisory. 2.72.0-10.1 - Backport patches for various CVEs, plus test improvements Resolves: RHEL-85906 Resolves: RHEL-85912 Resolves: RHEL-85919 Resolves:...
ruby security update
3.0.7-165 - Fix Denial of Service in CGI::Cookie.parse. CVE-2025-27219 Resolves: RHEL-86104 - Fix ReDoS in CGI::UtilescapeElement. CVE-2025-27220 Resolves: RHEL-86130 3.0.7-164 - Undefine GC compaction methods on ppc64le. Resolves: RHEL-83136 - Fix printing warnings when using IRB from a script...
nodejs:20 security update
nodejs 1:20.18.2-1 - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76001 RHEL-76146 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to...
gstreamer1-plugins-base security update
1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70974, RHEL-71010, RHEL-70986...