5323 matches found
Important: container-tools:1.0 security update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcpemu CVE-2020-7039 For more details about the security issues, including the impact, a CVSS score,...
Important: virt:rhel security and bug fix update
Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...
gcc-toolset-9-binutils bug fix update
GCC Toolset is a compiler toolset that provides recent versions of development tools. GCC Toolset is an Application Stream packaged as a Software Collection. The binutils packages provide a collection of binary utilities for the manipulation of object code in various object file formats. It...
Important: container-tools:rhel8 security and bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: QEMU: Slirp: potential OOB access due to unsafe snprintf usages CVE-2020-8608 For more details about the security issues, including the impact, a CVSS score,...
Important: nodejs:10 security update
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 For more details about the security issues, including the impact, a CVSS score,...
Important: nodejs:12 security update
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. Security Fixes: ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 For more details about the security issues, including the impact, a CVSS score,...
Important: zsh security update
The zsh shell is a command interpreter usable as an interactive login shell and as a shell script command processor. Zsh resembles the ksh shell the Korn shell, but includes many enhancements. Zsh supports command-line editing, built-in spelling correction, programmable command completion, shell...
Important: icu security update
The International Components for Unicode ICU library provides robust and full-featured Unicode services. Security Fixes: ICU: Integer overflow in UnicodeString::doAppend CVE-2020-10531 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other relat...
Important: ppp security update
The ppp packages contain the Point-to-Point Protocol PPP daemon and documentation for PPP support. The PPP protocol provides a method for transmitting datagrams over serial point-to-point links. PPP is usually used to dial in to an Internet Service Provider ISP or other organization over a modem...
Important: nodejs:12 security update
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 12.16.1. Security Fixes: nodejs: HTTP request smuggling using malformed...
Important: nodejs:10 security update
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. The following packages have been upgraded to a later upstream version: nodejs 10.19.0. Security Fixes: nodejs: HTTP request smuggling using malformed...
new module: jmc:rhel8
This enhancement update adds the jmc:rhel8 module to AlmaLinux BZ1716452 For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Important: container-tools:rhel8 security, bug fix, and enhancement update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: QEMU: slirp: OOB buffer access while emulating tcp protocols in tcpemu CVE-2020-7039 For more details about the security issues, including the impact, a CVSS score,...
perl-DBD-Pg:3.7 bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
new module: postgresql:12
This enhancement update adds the postgresql:12 module stream to AlmaLinux BZ1721822 For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
nodejs:12 enhancement update
The following packages have been upgraded to a later upstream version: nodejs 12.14.1. BZ1791067...
Moderate: virt:rhel security update
Kernel-based Virtual Machine KVM offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the...
Important: libyang security update
The libyang package provides a library for YANG data modeling language. libyang is a YANG data modelling language parser and toolkit written and providing API in C. The library is used e.g. in libnetconf2, Netopeer2, sysrepo and FRRouting projects. Security Fixes: libyang: stack-based buffer...
nodejs:12 bug fix update
The following packages have been upgraded to a later upstream version: nodejs 12.13.1. BZ1776116...
virt:rhel bug fix update
Bug Fixes: AlmaLinux8.1 Snapshot3 - Passthrough PCI card goes into error state if used in domain kvm BZ1764829 HPE 8.1 BUG Icelake: KVM missing .pconfig BZ1775133 Failed to create a VM via virt-manager or web console in AlmaLinux8.1 snapshot-2.1 BZ1775134 Intel 8.2 Bug Icelake-Server host,...
Important: container-tools:1.0 security update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: HTTP/2: flood using PING frames results in unbounded memory growth CVE-2019-9512 HTTP/2: flood using HEADERS frames results in unbounded memory growth CVE-2019-9514 Fo...
Important: container-tools:rhel8 security and bug fix update
The container-tools module contains tools for working with containers, notably podman, buildah, skopeo, and runc. Security Fixes: HTTP/2: flood using PING frames results in unbounded memory growth CVE-2019-9512 HTTP/2: flood using HEADERS frames results in unbounded memory growth CVE-2019-9514...
idm:DL1 bug fix update
Bug Fixes: IPA upgrade fails for latest ipa package when adtrust is installed BZ1773516...
inkscape:0.92.3 bug fix update
Bug Fixes: New inkscape rpm is actually older than current BZ1773655...
libcacard bug fix and enhancement update
The libcacard packages contain the Common Access Card CAC emulation library. This update fixes the following bug: Backport the patch removing key caching to unbreak libcacard for CI usage BZ1750477. Users of libcacard are advised to upgrade to these updated packages, which fix this bug...
Critical: php:7.3 security update
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: underflow in envpathinfo in fpmmain.c CVE-2019-11043 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to...
Critical: php:7.2 security update
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: underflow in envpathinfo in fpmmain.c CVE-2019-11043 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other related information, refer to...
Moderate: lua security and bug fix update
The lua packages provide support for Lua, a powerful light-weight programming language designed for extending applications. Lua is also frequently used as a general-purpose, stand-alone language. Security Fixes: lua: use-after-free in luaupvaluejoin in lapi.c resulting in denial of service...
Moderate: libjpeg-turbo security update
The libjpeg-turbo packages contain a library of functions for manipulating JPEG images. They also contain simple client programs for accessing the libjpeg functions. These packages provide the same functionality and API as libjpeg but with better performance. Security Fixes: libjpeg-turbo:...
Moderate: numpy security update
The numpy packages provide NumPY. NumPY is an extension to the Python programming language, which adds support for large, multi-dimensional arrays and matrices, and a library of mathematical functions that operate on such arrays. Security Fixes: numpy: crafted serialized object passed in numpy.lo...
Low: libvorbis security update
The libvorbis package contains runtime libraries for use in programs that support Ogg Vorbis, a fully open, non-proprietary, patent- and royalty-free, general-purpose compressed format for audio and music at fixed and variable bitrates. Security Fixes: libvorbis: heap buffer overflow in...
python-requests bug fix update
The python-requests package contains a library designed to make HTTP requests easy for developers. Bug fix: The fix CVE-2018-18074 leads to a regression BZ1758261...
mingw-virt-viewer and dependencies bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
gnu-efi bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
doxygen bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
parted bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
isns-utils bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
hwloc bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
squashfs-tools bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Low: lldpad security and bug fix update
The lldpad packages provide the Linux user space daemon and configuration tool for Intel's Link Layer Discovery Protocol LLDP Agent with Enhanced Ethernet support. Security Fixes: lldptool: improper sanitization of shell-escape codes CVE-2018-10932 For more details about the security issues,...
syslinux bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
irqbalance bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
mtr bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
libtirpc bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
nfs4-acl-tools bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
iputils bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
libuser bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
gmp bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
Low: gettext security update
The gettext packages provide a documentation for producing multi-lingual messages in programs, set of conventions about how programs should be written, a runtime library, and a directory and file naming organization for the message catalogs. Security Fixes: gettext: double free in defaultaddmessa...
trousers bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...