8984 matches found
nodejs and nodejs-nodemon security, bug fix, and enhancement update
nodejs 1:16.18.1-3 - Update sources of undici WASM blobs Resolves: rhbz2151617 1:16.18.1-2 - Add back libs and v8-devel subpackages - Related: RHBZ2121126 - Record previously fixed CVE - Resolves: CVE-2021-44906 1:16.18.1-1 - Rebase + CVEs - Resolves: 2142808 - Resolves: 2142826, 2131745, 2142855...
ipa security and bug fix update
4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.4 - Resolves: 1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing - wgi/plugins.py: ignore empty plugin directories - Resolves: 1895197...
Unbreakable Enterprise kernel security update
2.6.39-400.312.2 - tcp: enforce tcpminsndmss in tcpmtuprobing Eric Dumazet Orabug: 29886601 CVE-2019-11477 - tcp: add tcpminsndmss sysctl Eric Dumazet Orabug: 29884308 CVE-2019-11479 - tcp: tcpfragment should apply sane memory limits Eric Dumazet Orabug: 29884308 CVE-2019-11478 - tcp: fix fackcou...
curl security update
7.29.0-51.0.1 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison https://curl.haxx.se/docs/CVE-2016-8616.html - CVE-2016-8617 OOB write via unchecked multiplication...
libsoup security update
2.62.3-7 - Backport upstream patch for CVE-2024-52531 - buffer overflow via UTF-8 conversion in soupheaderparseparamliststrict Resolves: RHEL-76376...
libssh2 security update
1.4.2-3.0.1.el610.1 - Orabug: 29909723 Added patch CVE-2019-3862. [email protected] Added Additional length checks to prevent out-of-bounds CVE-2019-3862 1.4.2-3.el610.1 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix integer overflow...
Unbreakable Enterprise kernel security update
4.1.12-124.32.1 - NFSv4: Don't try to reclaim unused state owners Trond Myklebust Orabug: 30124013 - x86/microcode: Update late microcode in parallel Ashok Raj Orabug: 30302412 - floppy: fix out-of-bounds read in copybuffer Denis Efremov Orabug: 30318219 CVE-2019-14283 - xen-netback: stop netif T...
Unbreakable Enterprise kernel security update
4.1.12-124.27.2 - x86/speculation/mds: Check for the right microcode before setting mitigation Kanth Ghatraju Orabug: 29797118 - vxlan: test dev-flags & IFFUP before accessing vxlan-dev-devaddr Venkat Venkatsubra Orabug: 29710939 - vxlan: test dev-flags & IFFUP before calling grocellsreceive Eric...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.25.1 - x86/spectrev2: Don't check microcode versions when running under hypervisors Konrad Rzeszutek Wilk Orabug: 27959785 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28552792 CVE-2018-7492 - cdrom: Fix info leak/OOB read in...
unbound security update
1.6.6-5.0.1 - Fix CVE-2023-50387 and CVE-2023-50868 Orabug: 37387426...
Unbreakable Enterprise kernel security update
5.15.0-303.171.5.2 - build: populate modulesthick.builtin for dirs containing only modules Nick Alcock Orabug: 37393454 - x86/pkeys: Ensure updated PKRU value is XRSTOR'd Aruna Ramakrishna Orabug: 37384237 - x86/pkeys: Change caller of updatepkruinsigframe Aruna Ramakrishna Orabug: 37384237 -...
Unbreakable Enterprise kernel security update
4.14.35-2047.504.2 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.102.0.2.el7 - xen-blkback: set ring-xenblkd to NULL after kthreadstop Pawel Wieczorkiewicz Orabug: 32260252 CVE-2020-29569 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253409 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch SeongJae...
openssl security update
1.0.2k-19.0.1 - Bump release for rebuild. 1.0.2k-19 - close the RSA decryption 9 lives of Bleichenbacher cat timing side channel 1649568 1.0.2k-18 - fix CVE-2018-0734 - DSA signature local timing side channel - fix CVE-2019-1559 - 0-byte record padding oracle - close the RSA decryption One & done...
kernel security, bug fix, and enhancement update
3.10.0-514.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514 - mm remove gupflags FOLLWRITE games from getuserpages Larry Woodman 1385124...
kvm_utils3 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt 9.0.0-3.el8 - storage: Fix returning of locked objects from 'virStoragePoolObjListSearch' Peter Krempa Orabug: 35644221 CVE-2023-3750 - virpci: Resolve leak in virPCIVirtualFunctionList cleanup Tim Shearer Orabug: 35395469...
java-1.8.0-openjdk security, bug fix, and enhancement update
1.8.0.342.b07-1.0.1 - Replace upstream references Orabug: 34340145 1:1.8.0.342.b07-1 - Update to shenandoah-jdk8u342-b07 - Update release notes for shenandoah-8u342-b07. - Print release file during build, which should now include a correct SOURCE value from .src-rev - Update tarball script with...
httpd security update
2.4.6-97.0.7.5 - modproxy: approxyhttprequest to clear hop-by-hop first and fixup last CVE-2022-31813Orabug: 34381850...
Unbreakable Enterprise kernel security update
5.4.17-2036.101.2uek - vt: Disable KDFONTOPCOPY Daniel Vetter Orabug: 32187738 CVE-2020-28974 - pagefrag: Recover from memory pressure Dongli Zhang Orabug: 32177966 - Fonts: Support FONTEXTRAWORDS macros for built-in fonts Peilin Ye Orabug: 32176254 CVE-2020-28915 - fbdev, newportcon: Move...
java-1.7.0-openjdk security update
1:1.7.0.231-2.6.19.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.231-2.6.19.1 - Add missing hyphen in tapset filename. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Update tapset filename matching pattern. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Bump to 2.6.19 including tapsets and OpenJD...
java-21-openjdk security update for RHEL 8.10, 9.4 and 9.5
1:21.0.6.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.6.0.7-1 - Update to jdk-21.0.6+7 GA - Update release notes to 21.0.6+7 - Sync the copy of the portable & devkit specfiles with the latest update - Include the latest devkit patches - Update README.md to list an easier way of...
java-1.8.0-openjdk security update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters for internal libs. See RHBZ1590796 ...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.505.4.el7 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044345 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32804265 - rds/ib: handle posted ACK during connection shutdown Manjunath Patil Orabug: 32863569 - rds/ib: reap...
thunderbird security update
60.7.2-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.2-2 - Update to 60.7.2 build2 60.7.2-1 - Update to 60.7.2 60.7.1-1 - Update to 60.7.1...
unbound security update
1.16.2-5.8 - Prevent unbounded name compression CVE-2024-8508 1.16.2-5.7 - Rebuild to propagate to CentOS Stream RHEL-25500...
perl security update
4:5.10.1-144.0.1 - Backport patch for CVE-2020-10543 Orabug: 32855589 - Backport patch for CVE-2020-10878 Orabug: 32855589 - Backport patch for CVE-2020-12723 Orabug: 32855589...
php:7.2 security update
php 7.2.11-4 - fix underflow in envpathinfo in fpmmain.c CVE-2019-11043...
kernel security update
kernel - 2.6.18-419.0.0.0.14 - x86/speculation/mds: Conditionally clear CPU buffers on idle entry Thomas Gleixner orabug 29821515 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 - x86/speculation/mds: Call VERW on NMI path when returning to user Patrick Colp orabug 29821515...
mariadb:10.11 security update
galera 26.4.20-1.0.1 - Drop nmap-ncat requirement. Orabug: 34116228 - Requirement to delete garbd-wrapper script and lp1184034 test case without using patches. Orabug: 34116228 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 mariadb 3:10.11.10-1 - Rebase ...
python-setuptools security update
39.2.0-8 - Security fix for CVE-2024-6345 Resolves: RHEL-50470...
kernel security, bug fix, and enhancement update
3.10.0-1160.15.2.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.15.2 - fs nfs: Fix...
Unbreakable Enterprise kernel security update
4.1.12-124.29.3 - mlx4core: change lognumqp,rdmarc with scaleprofile Mukesh Kacker Orabug: 30064080 4.1.12-124.29.2 - scsi: storvsc: Fix scsicmd error assignments in storvschandleerror Cathy Avery Orabug: 30052805 4.1.12-124.29.1 - USB: check usbgetextradescriptor for proper size Mathias Payer...
Unbreakable Enterprise kernel security update
4.1.12-124.26.1 - NFS: commit direct writes even if they fail partially J. Bruce Fields Orabug: 28212440 - rds: update correct congestion map for loopback transport Mukesh Kacker Orabug: 29175685 - ext4: only look at the bgflags field if it is valid Theodore Tso Orabug: 29316684 CVE-2018-10876...
python-jinja2 security update
2.10.1-6 - Security fix for CVE-2024-56326 Resolves: RHEL-74677...
libssh2 security update
1.8.0-4.el79.1 - fix use-of-uninitialized-value CVE-2020-22218...
microcode_ctl security update
4:20220207-1.0.3 - update 06-55-04 to 0x2006d05 - update 06-55-07 to 0x5003302 - update 06-6a-04 to 0xb000280 - update 06-6a-06 to 0xd000375 4:20220207-1.0.2 - roll back 06-6a-06 to 0xd0002a0 due to PCIe issues on reset Orabug: 34076995 4:20220207-1.0.1 - add support for UEK6 and UEK7 kernels -...
glibc security and bug fix update
2.12-1.209.0.1 - Update newmode size to fix a possible corruption 2.12-1.209 - Fix AFINET6 getaddrinfo with nscd 1416496 2.12-1.208 - Update tests for struct sockaddrstorage changes 1338673 2.12-1.207 - Use FLCLOEXEC in internal calls to fopen 1012343. 2.12-1.206 - Fix CVE-2015-8779 glibc:...
Unbreakable Enterprise kernel security update
5.15.0-304.171.4.3 - NFSD: Limit the number of concurrent async COPY operations Chuck Lever Orabug: 37516381 CVE-2024-49974 - NFSD: Async COPY result needs to return a write verifier Chuck Lever Orabug: 37516381 CVE-2024-49974 - security/keys: fix slab-out-of-bounds in keytaskpermission Chen Rido...
Unbreakable Enterprise kernel security update
4.14.35-2025.404.1.2 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280...
telnet security update
1:0.17-65 - Resolves: 1814475 - Arbitrary remote code execution in utility.c via short writes or urgent data...
ghostscript security update
9.25-2.2 - Resolves: 1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfhookDSCCreator 701445 - Resolves: 1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams 701444 - Resolves: 1744003 - CVE-2019-14813 ghostscript: Safer...
Unbreakable Enterprise kernel security update
2.6.39-400.301.2 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710024 CVE-2018-14634...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13 and aarch64-shenandoah-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters...
kernel security update
4.18.0-553.37.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
gstreamer1-plugins-base and gstreamer1-plugins-good security update
gstreamer1-plugins-base 1.10.4-2.0.1 - Fixed CVE-2024-47607,CVE-2024-47538 and CVE-2024-47615 Orabug: 37407070 gstreamer1-plugins-good 1.10.4-2.0.1 - Fixes CVE-2024-47537, CVE-2024-47540, CVE-2024-47613 and - CVE-2024-47607 Orabug: 37407070...
bzip2 security update
1.0.6-28 - The previous fix caused some regressions - Use an updated patch that deals with the original issue+the regressions Resolves: RHEL-71140...
.NET 9.0 security update
9.0.102-1.0.1 - Add support for Oracle Linux 9.0.102-1 - Update to .NET SDK 9.0.102 and Runtime 9.0.1 - Resolves: RHEL-71551...
bubblewrap and flatpak security update
bubblewrap 0.4.0-2 - Backport upstream fix to help address CVE-2024-42472 in flatpak flatpak 1.12.9-3 - Fix previous changelog entry 1.12.9-2 - Backport upstream patches for CVE-2024-42472 - Require bubblewrap version that has new --bind-fd option backported for addressing CVE-2024-42472...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.313.6 - Uninitialized variable imageext in fixupvdsoexception of extable.c Alok Tiwari Orabug: 33000550 - NFSD: fix use-after-free on source server when doing inter-server copy Dai Ngo Orabug: 34475857 - EDAC/mceamd: Do not load edacmceamd module on guests Smita Koralahalli Orabug:...
Unbreakable Enterprise kernel security update
4.14.35-2047.500.9.1 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: dont 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: dont 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...