9166 matches found
Unbreakable Enterprise kernel security update
5.4.17-2136.349.3.2 - crypto: essiv - Check ssize for decryption and in-place encryption Herbert Xu Orabug: 38705546 CVE-2025-40019...
kernel security update
4.18.0-553.37.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
4.14.35-2025.404.1.2 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280...
ghostscript security update
9.25-2.2 - Resolves: 1744008 - CVE-2019-14811 ghostscript: Safer Mode Bypass by .forceput Exposure in .pdfhookDSCCreator 701445 - Resolves: 1744012 - CVE-2019-14812 ghostscript: Safer Mode Bypass by .forceput Exposure in setuserparams 701444 - Resolves: 1744003 - CVE-2019-14813 ghostscript: Safer...
Unbreakable Enterprise kernel security update
4.1.12-124.26.10 - x86/apic: Make archsetuphwirq NUMA node aware Henry Willard Orabug: 29534769 4.1.12-124.26.9 - KEYS: encrypted: fix buffer overread in validmasterdesc Eric Biggers Orabug: 29591025 CVE-2017-13305 4.1.12-124.26.8 - scsi: target: remove hardcoded T10 Vendor ID in INQUIRY response...
bzip2 security update
1.0.8-10 - Revert the previous commit introduced a regression Resolves: CVE-2019-12900 1.0.8-9 - Fix out of bounds access in BZ2decompress Resolves: RHEL-65198...
git-lfs security update
3.4.1-4 - Backport CVE-2024-53263 fixes - Resolves: RHEL-73931...
libsoup security update
2.72.0-8.3 - Backport upstream patch for CVE-2024-52531 - buffer overflow via UTF-8 conversion in soupheaderparseparamliststrict Resolves: RHEL-76381...
ipa security update
4.12.2-1.0.1.3 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-1.3 - Resolves: RHEL-69928 add support for python cryptography 44.0.0 - Resolves: RHEL-70258 Upgrade to ipa-server-4.12.2-1.el9 OTP-based bind to LDAP...
Unbreakable Enterprise kernel security update
5.15.0-304.171.4 - Revert 'unicode: Don't special case ignorable code points' Linus Torvalds - Revert 'mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K' Aurelien Jarno - tcp: Fix use-after-free of nreq in reqsktimerhandler. Kuniyuki Iwashima - lib/buildid: Fix build ID parsing logic Jiri...
Unbreakable Enterprise kernel security update
2.6.39-400.327.1 - USB: serial: omninet: fix reference leaks at open Johan Hovold Orabug: 30484765 CVE-2017-8925 - x8632, entry: Store badsys error code in %eax Sven Wegener Orabug: 30783266 CVE-2014-4508 CVE-2014-4508 - x8632, entry: Do syscall exit work on badsys CVE-2014-4508 Andy Lutomirski...
docker-engine docker-engine-selinux security and bugfix update
1.12.6-1.0.1 - Enable configuration of Docker daemon via sysconfig orabug 21804877 - Require UEK4 for docker 1.9 orabug 22235639 22235645 - Add docker.conf for prelink orabug 25147708 1.12.6 - the systemd unit file /usr/lib/systemd/system/docker.service contains local changes, or - a systemd...
python-jinja2 security update
2.11.3-7 - Security fix for CVE-2024-56326 Resolves: RHEL-74690...
redis:6 security update
6.2.17-1.0.1 - Build with 64k pages to support redis on both UEK6 and UEK7 on aarch64 6.2.17-1 - rebase to 6.2.17 for CVE-2024-46981 6.2.16-1 - rebase to 6.2.16 RHEL-66165...
tuned security update
2.11.0-12.0.3 - CVE-2024-52337 fixes Orabug: 37327384...
Unbreakable Enterprise kernel security update
4.14.35-2047.505.4 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044345 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32804265 - rds/ib: handle posted ACK during connection shutdown Manjunath Patil Orabug: 32863569 - rds/ib: reap tx...
kernel security update
2.6.32-754.35.1.0.3.OL6 - Fixes for RHSA-2021:1288 Orabug: 32809880...
net-snmp security and bug fix update
1:5.5-41 - moved /var/lib/net-snmp fro net-snmp to net-snmp-libs package 822480 1:5.5-40 - fixed CVE-2012-2141 820100 1:5.5-39 - fixed proxying of out-of-tree GETNEXT requests 799291 1:5.5-38 - fixed snmpd crashing with many AgentX subagent 749227 - fixed SNMPv2-MIB::sysObjectID value when...
kernel security update
5.14.0-503.22.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
nano security update
2.9.8-3 - fix incomplete backport of the fix for the emergency file replacement vulnerability RHEL-35236 2.9.8-2 - fix emergency file replacement vulnerability RHEL-35236...
openssl security update
1:1.1.1k-7 - Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 - Update expired certificates used in the testsuite Resolves: rhbz2100554 - Fix CVE-2022-1292: openssl: crehash script allows command injection Resolves: rhbz2090371 - Fix CVE-2022-2068: the...
kernel security update
...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.50.1 - USB: serial: omninet: fix reference leaks at open Mark Nicholson Orabug: 30484762 CVE-2017-8925 - GFS2: don't set rgrp globject until it's inserted into rgrp tree Bob Peterson Orabug: 30254252 CVE-2016-10905 - GFS2: Fix rgrp end rounding problem for bsize page size Bo...
python-requests security update
2.20.0-5 - Security fix for CVE-2024-35195 Resolves: RHEL-37605 2.20.0-4 - Bump release to fix upgrade path from 2.20.0-2.1.el81 via 2.20.0-3.el88 to 2.20.0-4.el8 Related: rhbz2209469...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.36.1 - tun: call devgetvalidname before registernetdevice Cong Wang Orabug: 29925557 CVE-2018-7191...
ntp security update
4.2.6p5-15.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-15 - fix buffer overflow in parsing of address in ntpq and ntpdc CVE-2018-12327 4.2.6p5-14 - fix CVE-2016-7429 patch to work correctly on multicast client 1422973 4.2.6p5-13 - fix buffer overflow in datum refclock driv...
.NET 8.0 security update
8.0.112-1.0.1 - Add support for Oracle Linux 8.0.112-1 - Update to .NET SDK 8.0.112 and Runtime 8.0.12 - Resolves: RHEL-71554...
gstreamer1-plugins-base security update
1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70974, RHEL-71010, RHEL-70986...
tuned security update
2.22.1-5.0.1 - Fix RPS/XPS and busy polling optimization not getting applied Orabug: 32153315 - Fix error in uninstalling tuned Orabug: 351528377 - Updated patch with the more recent version Orabug: 30730976 - Set AMD CPU freq governor to ondemand when unapplying cpu tunings Orabug: 30033199 -...
Unbreakable Enterprise kernel security update
4.1.12-124.46.3 - mwifiex: fix possible heap overflow in mwifiexprocesscountryie Ganapathi Bhat Orabug: 30781859 CVE-2019-14895 CVE-2019-14895 - ext4: fix ext4emptydir for directories with holes Jan Kara Orabug: 31265320 CVE-2019-19037 CVE-2019-19037 - netlabel: cope with NULL catmap Paolo Abeni...
Unbreakable Enterprise kernel security update
2.6.39-400.314.1 - x86/speculation: Exclude ATOMs from speculation through SWAPGS Thomas Gleixner Orabug: 30165287 CVE-2019-1125 - x86/speculation: Enable Spectre v1 swapgs mitigations Josh Poimboeuf Orabug: 30165287 CVE-2019-1125 - x86/speculation: Prepare entry code for Spectre v1 swapgs...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.19 - acpi: Disable ACPI table override if securelevel is set Linn Crosetto Orabug: 25058966 CVE-2016-3699 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060060 CVE-2016-6480 CVE-2016-6480 - audit: fix a double fetch in auditlogsingleexecvea...
mariadb:10.11 security update
galera 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 Judy mariadb 3:10.11.10-1 - Rebase to 10.11.10 3:10.11.9-1 - Rebase to 10.11.9...
kernel security and bug fix update
4.18.0-477.21.18.OL8 - Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM Tamas Koczka CVE-2022-42896 - net/sched: tcindex: update imperfect hash filters respecting rcu Jamal Hadi Salim CVE-2023-1281 - net/sched: tcindex: search key must be 16 bits Jamal Hadi Salim CVE-2023-1281 ...
Unbreakable Enterprise kernel security update
4.1.12-124.19.6 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28709994 CVE-2018-14634...
Unbreakable Enterprise kernel security update
5.4.17-2136.304.4.1 - Revert rds/ib: Kernel upgrade to rdsibconns info displayed by rds-info Rohit Nair Orabug: 33832625 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33832582 CVE-2022-0492 5.4.17-2136.304.4 - scsi: libiscsi: Fix iscsitask use after free Mike...
systemd security update
239-45.0.2 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog...
firefox security update
68.6.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.6.1-1 - Update to 68.6.1 ESR...
Unbreakable Enterprise kernel security update
2.6.39-400.317.1 - ieee802154: enforce CAPNETRAW for raw sockets Allen Pais Orabug: 30444948 CVE-2019-17053 - mISDN: enforce CAPNETRAW for raw sockets Ori Nimron Orabug: 30445161 CVE-2019-17055 - net: sit: fix memory leak in sitinitnet Mao Wenan Orabug: 30445309 CVE-2019-16994 - media: dvb: usb:...
kubeadm-ha-setup security update
0.0.2-1.0.52 - OLCNE-678 Restore fails when trying to restore after a failed update 0.0.2-1.0.51 - OLCNE-667 Minor version update doesn't update kubeadm on all master nodes 0.0.2-1.0.50 - Make k8s 1.14 specific changes 0.0.2-1.0.49 - OLCNE-668 Remove 1.10 and 1.11 version since they are...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.3 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710010 CVE-2018-14634...
thunderbird security update
68.7.0-1.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.7.0-1 - Update to 68.7.0 build1...
systemd security update
219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default fo...
thunderbird security update
68.4.1-2.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.4.1-2 - Update to 68.4.1 build1...
openssl security and bug fix update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
keepalived security update
2.1.5-10 - CVE-2024-41184 Resolves: RHEL-49561...
java-17-openjdk security update for RHEL 8.6, 8.8, 8.10, 9.4 and 9.5
1:17.0.14.0.7-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.14.0.7-3 - Set rpmrelease to 3 - Revert 'Require tzdata-java 2024b at runtime and for build' 1:17.0.14.0.7-2 - Do not pass nil to jvmdir macro in cjc logic - Related: RHEL-73867 1:17.0.14.0.7-2 - Adapt to newest cjc to fix...
libsndfile:1.0.31 security update
1.0.31-8.2 - fix crash in ogg vorbis RHEL-65096 CVE-2024-50612...
java-11-openjdk security and bug fix update
1:11.0.20.0.8-1.0.1 - link atomic for ix86 build 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Switch to GA mode for release - This tarball is embargoed until 2023-07-18 @ 1pm PT. - Resolves: rhbz2221106 1:11.0.20.0.7-0.1.ea - Update to jdk-11.0.20+7 EA -...
kernel security and bug fix update
3.10.0-1062.4.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.4.1 - vhost vhost: make sure lognum innum Eugenio Perez 1750879 1750880...