8986 matches found
docker-engine docker-cli security update
docker-engine 19.03.11-6 - Fix for CVE-2020-15157 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 -...
Unbreakable Enterprise kernel security update
4.1.12-124.26.10 - x86/apic: Make archsetuphwirq NUMA node aware Henry Willard Orabug: 29534769 4.1.12-124.26.9 - KEYS: encrypted: fix buffer overread in validmasterdesc Eric Biggers Orabug: 29591025 CVE-2017-13305 4.1.12-124.26.8 - scsi: target: remove hardcoded T10 Vendor ID in INQUIRY response...
kernel security, bug fix, and enhancement update
3.10.0-862.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862 - netdrv i40e: Fix attach VF to VM issue Stefan Assmann 1528123 - netdrv ixgbevf:...
git-lfs security update
3.4.1-4 - Backport CVE-2024-53263 fixes - Resolves: RHEL-73931...
Unbreakable Enterprise kernel security update
5.15.0-304.171.4 - Revert 'unicode: Don't special case ignorable code points' Linus Torvalds - Revert 'mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K' Aurelien Jarno - tcp: Fix use-after-free of nreq in reqsktimerhandler. Kuniyuki Iwashima - lib/buildid: Fix build ID parsing logic Jiri...
webkit2gtk3 security update
2.46.5-1 - Update to 2.46.5...
bzip2 security update
1.0.8-10 - Revert the previous commit introduced a regression Resolves: CVE-2019-12900 1.0.8-9 - Fix out of bounds access in BZ2decompress Resolves: RHEL-65198...
ipa security update
4.12.2-1.0.1.3 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-1.3 - Resolves: RHEL-69928 add support for python cryptography 44.0.0 - Resolves: RHEL-70258 Upgrade to ipa-server-4.12.2-1.el9 OTP-based bind to LDAP...
kernel security update
2.6.32-754.35.1.0.3.OL6 - Fixes for RHSA-2021:1288 Orabug: 32809880...
Unbreakable Enterprise kernel security update
2.6.39-400.327.1 - USB: serial: omninet: fix reference leaks at open Johan Hovold Orabug: 30484765 CVE-2017-8925 - x8632, entry: Store badsys error code in %eax Sven Wegener Orabug: 30783266 CVE-2014-4508 CVE-2014-4508 - x8632, entry: Do syscall exit work on badsys CVE-2014-4508 Andy Lutomirski...
docker-engine docker-engine-selinux security and bugfix update
1.12.6-1.0.1 - Enable configuration of Docker daemon via sysconfig orabug 21804877 - Require UEK4 for docker 1.9 orabug 22235639 22235645 - Add docker.conf for prelink orabug 25147708 1.12.6 - the systemd unit file /usr/lib/systemd/system/docker.service contains local changes, or - a systemd...
libsoup security update
2.72.0-8.3 - Backport upstream patch for CVE-2024-52531 - buffer overflow via UTF-8 conversion in soupheaderparseparamliststrict Resolves: RHEL-76381...
kernel security update
5.14.0-503.22.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
tuned security update
2.11.0-12.0.3 - CVE-2024-52337 fixes Orabug: 37327384...
openssl security update
1:1.1.1k-7 - Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 - Update expired certificates used in the testsuite Resolves: rhbz2100554 - Fix CVE-2022-1292: openssl: crehash script allows command injection Resolves: rhbz2090371 - Fix CVE-2022-2068: the...
net-snmp security and bug fix update
1:5.5-41 - moved /var/lib/net-snmp fro net-snmp to net-snmp-libs package 822480 1:5.5-40 - fixed CVE-2012-2141 820100 1:5.5-39 - fixed proxying of out-of-tree GETNEXT requests 799291 1:5.5-38 - fixed snmpd crashing with many AgentX subagent 749227 - fixed SNMPv2-MIB::sysObjectID value when...
python-jinja2 security update
2.11.3-7 - Security fix for CVE-2024-56326 Resolves: RHEL-74690...
redis:6 security update
6.2.17-1.0.1 - Build with 64k pages to support redis on both UEK6 and UEK7 on aarch64 6.2.17-1 - rebase to 6.2.17 for CVE-2024-46981 6.2.16-1 - rebase to 6.2.16 RHEL-66165...
nano security update
2.9.8-3 - fix incomplete backport of the fix for the emergency file replacement vulnerability RHEL-35236 2.9.8-2 - fix emergency file replacement vulnerability RHEL-35236...
kernel security update
...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.50.1 - USB: serial: omninet: fix reference leaks at open Mark Nicholson Orabug: 30484762 CVE-2017-8925 - GFS2: don't set rgrp globject until it's inserted into rgrp tree Bob Peterson Orabug: 30254252 CVE-2016-10905 - GFS2: Fix rgrp end rounding problem for bsize page size Bo...
python-requests security update
2.20.0-5 - Security fix for CVE-2024-35195 Resolves: RHEL-37605 2.20.0-4 - Bump release to fix upgrade path from 2.20.0-2.1.el81 via 2.20.0-3.el88 to 2.20.0-4.el8 Related: rhbz2209469...
Unbreakable Enterprise kernel security update
4.14.35-2047.505.4 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044345 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32804265 - rds/ib: handle posted ACK during connection shutdown Manjunath Patil Orabug: 32863569 - rds/ib: reap tx...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.36.1 - tun: call devgetvalidname before registernetdevice Cong Wang Orabug: 29925557 CVE-2018-7191...
.NET 8.0 security update
8.0.112-1.0.1 - Add support for Oracle Linux 8.0.112-1 - Update to .NET SDK 8.0.112 and Runtime 8.0.12 - Resolves: RHEL-71554...
gstreamer1-plugins-base security update
1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70974, RHEL-71010, RHEL-70986...
Unbreakable Enterprise kernel security update
4.1.12-124.46.3 - mwifiex: fix possible heap overflow in mwifiexprocesscountryie Ganapathi Bhat Orabug: 30781859 CVE-2019-14895 CVE-2019-14895 - ext4: fix ext4emptydir for directories with holes Jan Kara Orabug: 31265320 CVE-2019-19037 CVE-2019-19037 - netlabel: cope with NULL catmap Paolo Abeni...
Unbreakable Enterprise kernel security update
4.1.12-124.19.6 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28709994 CVE-2018-14634...
tuned security update
2.22.1-5.0.1 - Fix RPS/XPS and busy polling optimization not getting applied Orabug: 32153315 - Fix error in uninstalling tuned Orabug: 351528377 - Updated patch with the more recent version Orabug: 30730976 - Set AMD CPU freq governor to ondemand when unapplying cpu tunings Orabug: 30033199 -...
ntp security update
4.2.6p5-15.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-15 - fix buffer overflow in parsing of address in ntpq and ntpdc CVE-2018-12327 4.2.6p5-14 - fix CVE-2016-7429 patch to work correctly on multicast client 1422973 4.2.6p5-13 - fix buffer overflow in datum refclock driv...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.3 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710010 CVE-2018-14634...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.19 - acpi: Disable ACPI table override if securelevel is set Linn Crosetto Orabug: 25058966 CVE-2016-3699 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060060 CVE-2016-6480 CVE-2016-6480 - audit: fix a double fetch in auditlogsingleexecvea...
mariadb:10.11 security update
galera 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 Judy mariadb 3:10.11.10-1 - Rebase to 10.11.10 3:10.11.9-1 - Rebase to 10.11.9...
systemd security update
239-45.0.2 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog...
firefox security update
68.6.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.6.1-1 - Update to 68.6.1 ESR...
Unbreakable Enterprise kernel security update
2.6.39-400.317.1 - ieee802154: enforce CAPNETRAW for raw sockets Allen Pais Orabug: 30444948 CVE-2019-17053 - mISDN: enforce CAPNETRAW for raw sockets Ori Nimron Orabug: 30445161 CVE-2019-17055 - net: sit: fix memory leak in sitinitnet Mao Wenan Orabug: 30445309 CVE-2019-16994 - media: dvb: usb:...
kubeadm-ha-setup security update
0.0.2-1.0.52 - OLCNE-678 Restore fails when trying to restore after a failed update 0.0.2-1.0.51 - OLCNE-667 Minor version update doesn't update kubeadm on all master nodes 0.0.2-1.0.50 - Make k8s 1.14 specific changes 0.0.2-1.0.49 - OLCNE-668 Remove 1.10 and 1.11 version since they are...
kernel security and bug fix update
4.18.0-477.21.18.OL8 - Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM Tamas Koczka CVE-2022-42896 - net/sched: tcindex: update imperfect hash filters respecting rcu Jamal Hadi Salim CVE-2023-1281 - net/sched: tcindex: search key must be 16 bits Jamal Hadi Salim CVE-2023-1281 ...
thunderbird security update
68.7.0-1.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.7.0-1 - Update to 68.7.0 build1...
thunderbird security update
68.4.1-2.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.4.1-2 - Update to 68.4.1 build1...
libsndfile:1.0.31 security update
1.0.31-8.2 - fix crash in ogg vorbis RHEL-65096 CVE-2024-50612...
Unbreakable Enterprise kernel security update
5.4.17-2136.304.4.1 - Revert rds/ib: Kernel upgrade to rdsibconns info displayed by rds-info Rohit Nair Orabug: 33832625 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33832582 CVE-2022-0492 5.4.17-2136.304.4 - scsi: libiscsi: Fix iscsitask use after free Mike...
systemd security update
219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default fo...
keepalived security update
2.1.5-10 - CVE-2024-41184 Resolves: RHEL-49561...
openssl security and bug fix update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
java-17-openjdk security update for RHEL 8.6, 8.8, 8.10, 9.4 and 9.5
1:17.0.14.0.7-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.14.0.7-3 - Set rpmrelease to 3 - Revert 'Require tzdata-java 2024b at runtime and for build' 1:17.0.14.0.7-2 - Do not pass nil to jvmdir macro in cjc logic - Related: RHEL-73867 1:17.0.14.0.7-2 - Adapt to newest cjc to fix...
raptor2 security update
2.0.15-17 - Resolves: CVE-2024-57823 integer underflow when normalizing a URI with the turtle parser...
java-11-openjdk security and bug fix update
1:11.0.20.0.8-1.0.1 - link atomic for ix86 build 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Switch to GA mode for release - This tarball is embargoed until 2023-07-18 @ 1pm PT. - Resolves: rhbz2221106 1:11.0.20.0.7-0.1.ea - Update to jdk-11.0.20+7 EA -...
curl security update
7.76.1-14.el90.5 - fix unpreserved file permissions CVE-2022-32207 - fix HTTP compression denial of service CVE-2022-32206 - fix FTP-KRB bad message verification CVE-2022-32208...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.404.1.1.el7 - target: fix XCOPY NAA identifier lookup David Disseldorp Orabug: 32248040 CVE-2020-28374 4.14.35-2025.404.1.el7 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253412 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch...