8986 matches found
java-11-openjdk security update
1:11.0.4.11-0.0.1 - link atomic for ix86 build 1:11.0.4.11-0 - Update to shenandoah-jdk-11.0.4+11 GA - Switch to GA mode for final release. - Resolves: rhbz1724452 1:11.0.4.10-0.0.ea - Update to shenandoah-jdk-11.0.4+10 EA - Resolves: rhbz1724452 1:11.0.4.9-0.0.ea - Update to...
Unbreakable Enterprise kernel security update
4.14.35-1844.3.2 - uek-rpm: Remove hardcoded 'kernelgitcommit' macro from specfile Victor Erminpour Orabug: 29357695 - mm: cleancache: fix corruption on missed inode invalidation Pavel Tikhomirov Orabug: 29364665 CVE-2018-16862 - l2tp: fix reading optional fields of L2TPv3 Jacob Wen Orabug:...
kernel security and bug fix update
3.10.0-693.11.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.11.1 - powerpc perf: Fix book3s kernel to userspace backtraces Gustavo...
galera and mariadb security update
galera 26.4.20-1.0.1 - Drop nmap-ncat requirement. Orabug: 34116228 - Requirement to delete lp1184034 test case without using patches. 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 mariadb 3:10.5.27-1 - Rebase to 10.5.27 3:10.5.26-1 - Rebase to 10.5.26...
iperf3 security update
3.5-11 - Resolves: RHEL-72924 - Denial of Service in iperf Due to Improper JSON Handling...
libsndfile security update
1.0.28-16 - fix prerequisit patch RHEL-65093 1.0.28-15 - fix crash in ogg vorbis RHEL-65093 CVE-2024-50612...
sqlite security update
3.34.1-6 - Fixes CVE-2022-35737...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.500.10.el7 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...
Unbreakable Enterprise kernel security update
2.6.39-400.314.1 - x86/speculation: Exclude ATOMs from speculation through SWAPGS Thomas Gleixner Orabug: 30165287 CVE-2019-1125 - x86/speculation: Enable Spectre v1 swapgs mitigations Josh Poimboeuf Orabug: 30165287 CVE-2019-1125 - x86/speculation: Prepare entry code for Spectre v1 swapgs...
libvirt security update
5.0.0-4.el7 - logging: restrict sockets to mode 0600 Daniel P. Berrange Orabug: 29861433 CVE-2019-10132 - locking: restrict sockets to mode 0600 Daniel P. Berrange Orabug: 29861433 CVE-2019-10132 - admin: reject clients unless their UID matches the current UID Daniel P. Berrange Orabug: 29861433...
olcne security update
olcne 1.5.4-3 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over 1.5.4-2 - Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227 1.5.4-1 - Upgrade Kubernetes to 1.23.7 1.5.3-1 - Address qemu...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.35.1 - Bluetooth: hidp: fix buffer overflow Young Xiao Orabug: 29786787 CVE-2011-1079 CVE-2019-11884 - x86/speculation/mds: Fix verw usage to use memory operand Patrick Colp Orabug: 29791038 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 - x86/speculation/mds:...
kernel security update
kernel - 2.6.18-419.0.0.0.4 - fs fix bug in loading of PIE binaries Michael Davidson orabug 26916951 CVE-2017-1000253 - 2.6.18-419.0.0.0.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields orabug 26586706 CVE-2017-7895...
idm:DL1 and idm:client security, bug fix, and enhancement update
bind-dyndb-ldap 11.3-1 - New upstream release - Resolves: rhbz1845211 ipa 4.8.7-12.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.8.7-12 - Require selinux sub package in the proper version Related: RHBZ1868432 - SELinux: do not double-define nodet and pkitomcatcertt...
firefox security update
68.8.0-1.0.1.el82 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 Wed Apr 29 2020 Jan Horak - Update to 68.8.0 build1 68.7.0-3 - Added fix for rhbz1821418...
kernel security and bug fix update
3.10.0-1062.12.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.12.1 - powerpc powerpc/pseries: Remove confusing warning message Gusta...
curl security and bug fix update
7.29.0-54.0.1 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison https://curl.haxx.se/docs/CVE-2016-8616.html - CVE-2016-8617 OOB write via unchecked multiplication...
edk2 security update
1:1.2-5.el7 - Update spec file to remove 'modprobe kvm-intel' and remove --enable-kvm arg to ovmfvarsgenerator so qemu will not require kvm kernel module. Aaron Young - Update spec file to modprobe kvmintel module prior to running qemu to enroll default keys. Aaron Young - Enroll Oracle cert/key...
java-1.8.0-openjdk security update
1:1.8.0.161-0.b14 - Update to b14 with updated Zero fix for 8174962 S8194828 - Resolves: rhbz1528233 1:1.8.0.161-0.b13 - Update to b13 including Zero fix for 8174962 S8194739 and restoring tzdata2017c update - Resolves: rhbz1528233 1:1.8.0.161-0.b12 - Add new file cmsalpha.c to...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-103.3.8 - fs/exec.c: account for argv/envp pointers Kees Cook Orabug: 26638900 CVE-2017-1000365 CVE-2017-1000365 4.1.12-103.3.7 - i40e/i40evf: check for stopped admin queue Mitch Williams Orabug: 26654222 4.1.12-103.3.6 - xen: fix bio vec merging Roger Pau Monne Orabug: 26645497...
cups security update
1:2.2.6-62 - RHEL-60338 CVE-2024-47175 cups: remote command injection via attacker controlled data in PPD file...
nginx:1.20 security update
1:1.20.1-1.0.1.1 - Resolves: RHEL-12732 - nginx:1.20/nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
Unbreakable Enterprise kernel security update
4.1.12-124.26.5 - scsi: scsitransportiscsi: modify detected conn err to KERNERR Fred Herard Orabug: 29487790 - xen/blkfront: avoid NULL blkfrontinfo dereference on device removal Vasilis Liaskovitis Orabug: 29469740 4.1.12-124.26.4U - bnxten: Fix race conditions in .ndogetstats64. Michael Chan...
openssl security update
1.0.1e-59.0.4 - Backport fixes for CVE-2023-0286 Orabug: 35212597 1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738 1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug...
openssh security, bug fix, and enhancement update
8.0p1-13 - Upstream: ClientAliveCountMax=0 disable the connection killing behaviour 2015828 8.0p1-12 - Add support for 'Include' directive in sshdconfig file 1926103 8.0p1-11 - CVE-2021-41617 upstream fix 2008885...
kernel security and bug fix update
3.10.0-1062.4.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.4.1 - vhost vhost: make sure lognum innum Eugenio Perez 1750879 1750880...
openssl security and bug fix update
1.0.2k-16.0.1.el76.1 - Bump release for rebuild. 1.0.2k-16.1 - use SHA-256 in FIPS RSA pairwise key check - fix CVE-2018-5407 - EC signature local timing side-channel key extraction...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-118 - Update ql2400/ql2500 firmware version to 8.02.00 Dan Duval Orabug: 22159505 - update qla2400/ql2500 firmware version to 8.02.00 Dan Duval Orabug: 22159505 3.8.13-117 - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145600 CVE-2015-5156 - team: check return value of...
keepalived security update
2.2.8-3 - Validate vrrp ipset names for CVE-2024-41184 Resolves: RHEL-49557...
python27:2.7 security update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...
Unbreakable Enterprise kernel security update
4.14.35-1902.11.3 - xfs: do async inactivation only when fs freezed Junxiao Bi Orabug: 31013775 4.14.35-1902.11.2 - ib/core: Cancel fmr delayedworker when in shutdown phase of reboot system Hans Westgaard Ry Orabug: 30967501 - Revert 'printk: Default console logging level should be set to 4' Cesa...
polkit security update
0.112-18.0.1 - Increase timeout to avoid defunct processes bug26930744 0.112-18.el76.1 - Fix of CVE-2019-6133, PID reuse via slow fork - Resolves: rhbz1667311...
systemd security update
219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default fo...
kernel security, bug fix, and enhancement update
3.10.0-957.1.3.el7.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel olkmodsigning [email protected] - Update x509.genkey bug 24817676 3.10.0-957.1.3.el7 - x86 Mark Intel Cascade Lake supported Steve Best 1650213 16399...
kernel security update
kernel 2.6.18-419 - net dccp: Use AF-independent rebuildheader routine Hannes Frederic Sowa 1424751 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424633 CVE-2017-6074 - redhat kernel.spec.template: disable autoloading for dccp proto Hannes Frederic Sowa 1425177...
java-11-openjdk security, bug fix, and enhancement update
1:11.0.15.0.9-2.0.1 - link atomic for ix86 build 1:11.0.15.0.9-2 - Add JDK-8284920 fix for XPath regression - Related: rhbz2073422 1:11.0.15.0.9-2 - Remove security items from release notes that were only in 17u and N/A for 11u - Related: rhbz2073422 1:11.0.15.0.9-1 - Update to jdk-11.0.15.0+9 -...
kernel security update
4.18.0-240.1.13.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-400.17.1 - This is a fix on dlmcleanmasterlist Xiaowei.Hu - RDS: fix rds-ping spinlock recursion jeff.liu Orabug: 16223050 - vhost: fix length for cross region descriptor Michael S. Tsirkin Orabug: 16387183 CVE-2013-0311 - kabifix: block/scsi: Allow request and error handling timeouts to b...
log4j security update
0:1.2.17-17 - Fix remote code execution vulnerability - Resolves: CVE-2021-4104...
firefox security update
68.7.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.7.0-2 - Update to 68.7.0 build3...
Unbreakable Enterprise kernel security update
2.6.39-400.313.1 - ACPI: sbshc: remove raw pointer from printk message Greg Kroah-Hartman Orabug: 27987133 CVE-2018-5750 - dm: fix race between dmgetfromkobject and dmdestroy Hou Tao Orabug: 27987143 CVE-2017-18203 - tcp: enforce tcpminsndmss in tcpmtuprobing Eric Dumazet Orabug: 29886601...
ruby security update
2.0.0.648-35 - Introduce method as precondition to fix CVE-2019-8321. rubygems-2.3.0-refactor-checking-reallyverbose.patch - Fix escape sequence injection vulnerability in verbose. - Fix escape sequence injection vulnerability in gem owner. - Fix escape sequence injection vulnerability in API...
docker-engine security update
18.03.1.ol-0.0.12 - correct the version string of containerd 18.03.1.ol-0.0.11 - update runc for CVE-2019-5736 18.03.1.ol-0.0.10 - update Go to version 1.10.8 18.03.1.ol-0.0.9 - correct changelog 18.03.1.ol-0.0.8 - fix orabug 28452214 and orabug 28461404 18.03.1.ol-0.0.6 - obsolete/provide the...
kernel security and bug fix update
3.10.0-1160.31.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 vmmm after calling handleuserfault Phili...
kernel security and bug fix update
3.10.0-1160.21.1.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.21.1 - pinctrl devicetre...
nghttp2 security update
1.33.0-3.el82.1 - prevent DoS caused by overly large SETTINGS frames CVE-2020-11080 1.33.0-3 - rebuild to trigger gating 1681044 1.33.0-2 - backport security fixes from nghttp2-1.39.2 CVE-2019-9511 and CVE-2019-9513...
httpd security and bug fix update
2.4.6-90.0.1 - replace index.html with Oracles index page oracleindex.html Resolves: 1566317 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in modauthdigest - Resolves: 1696141 - CVE-2019-0217 httpd: modauthdigest: access control bypass due to race condition - Resolves: 1696096 -...
openssh security update
5.3p1-124 - Fix for CVE-2018-15473: User enumeration via malformed packets in authentication requests...
openssl security update
1.0.2k-24.0.3 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt...
polkit security update
0.115-11.0.1 - Increase timeout to avoid defunct processes Orabug: 26930744 0.115-11.1 - early disconnection from D-Bus results in privilege esc. - Resolves: CVE-2021-3560...