9166 matches found
freerdp and vinagre security, bug fix, and enhancement update
freerdp 2:2.1.1-1 - Update to 2.1.1 rhbz1834287. 2:2.0.0-47.rc4 - Fix SCARDINSUFFICIENTBUFFER error rhbz1803054 - Do not advertise /usb in help output rhbz1761144 vinagre 3.22.0-23 - Remove unused variable CovScan - Related: 1839744 3.22.0-22 - Rebuild due to new version of FreeRDP - Fix an issue...
Unbreakable Enterprise kernel security update
4.1.12-124.39.5 - Input: ff-memless - kill timer in destroy Oliver Neukum Orabug: 31213691 CVE-2019-19524 - libertas: Fix two buffer overflows at parsing bss descriptor Wen Huang Orabug: 31351307 CVE-2019-14896 CVE-2019-14897 CVE-2019-14897 - binfmtelf: use ELFETDYNBASE only for PIE Kees Cook...
kernel security update
4.18.0-80.7.20.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.7.20 - x86 x86/entry/64: Use JMP instead of JMPQ Josh Poimboeuf...
Unbreakable Enterprise kernel security update
4.1.12-124.16.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28135099 CVE-2018-3665...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.18uek - IB/security: Restrict use of the write interface Jason Gunthorpe Orabug: 23641666 CVE-2016-4565...
xorg-x11-server security update
1.20.4-29.0.1 - Fixed CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 - CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 - CVE-2025-26601 Orabug: 37712847...
kernel security update
4.18.0-553.45.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
krb5 security update
1.15.1-55.0.9 - Fixes CVE-2025-24528 , Prevent overflow when calculating ulog block size Orabug: 37587301...
Unbreakable Enterprise kernel security update
5.15.0-305.176.4 - x86/asm: Make serialize alwaysinline Juergen Gross - hwmon: tmp513 Fix division of negative numbers David Lechner - Revert 'mtd: spi-nor: core: replace dummy buswidth from addr to data' Pratyush Yadav - Revert 'regmap: detach regmap from dev on regmapexit' Greg Kroah-Hartman -...
dnsmasq security and bug fix update
2.85-5 - Prevent endless loop in forwardquery 2120711 2.85-4 - Prevent use after free in dhcp6norelay CVE-2022-0934...
qemu-kvm security update
1.5.3-175.el79.4 - kvm-ide-atapi-check-logical-block-address-and-read-size-.patch bz1917449 - Resolves: bz1917449 CVE-2020-29443 qemu-kvm: QEMU: ide: atapi: OOB access while processing read commands rhel-7.9.z...
Unbreakable Enterprise kernel security update
5.4.17-2036.104.5 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.42.1 - scsi: libsas: delete sas port if expander discover failed Jason Yan Orabug: 30580688 CVE-2019-15807...
procps-ng security and bug fix update
3.3.10-26 - free: unreclaimable slabs counted into free memory, used mem incorrect - Resolves: rhbz1699264 3.3.10-25 - ps: recognize SCHEDDEADLINE in CLS field, upstream backport - Resolves: rhbz1692843 3.3.10-24 - top: Do not default to the cwd in configsread - Resolves: rhbz1577023...
Unbreakable Enterprise kernel security update
4.1.12-124.17.1 - block: update integrity interval after queue limits change Ritika Srivastava Orabug: 27586756 - dccp: check sk for closed state in dccpsendmsg Alexey Kodanev Orabug: 28001529 CVE-2017-8824 CVE-2018-1130 - net/rds: Implement ARP flushing correctly Hakon Bugge Orabug: 28219857 -...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.3.2 - x86/nmi/64: Use DF to avoid userspace RSP confusing nested NMI detection Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Reorder nested NMI checks Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Improve nested NMI comments Andy Lutomirski...
java-17-openjdk security and bug fix update
1:17.0.8.0.7-2.0.1 - OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 - OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 - OpenJDK: improper handling of slash characters in URI-to-path conversion 8305312 CVE-2023-22049 - harfbuzz: OpenJDK: On^2 growth via consecutive...
vim security update
8.2.2637-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.2.2637-16.2 - CVE-2022-1621 vim: heap buffer overflow - CVE-2022-1629 vim: buffer over-read 2:8.2.2637-16.1 - CVE-2022-0554 vim: Use of Out-of-range Pointer Offset in vim prior - CVE-2022-0943 vim: Heap-based Buffer Overflow occu...
httpd:2.4 security and bug fix update
modhttp2 1.15.7-5 - Resolves: 2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations 1.15.7-4 - Resolves: 1966728 - CVE-2021-33193 httpd:2.4/modhttp2: httpd: Request splitting via HTTP/2 method injection and modproxy modmd...
container-tools:3.0 security and bug fix update
buildah 1.19.9-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/c1d6200 - fixes CVE-2021-3602 - Related: 1977943...
dotnet3.1 security and bugfix update
3.1.115-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.115-1 - Update to .NET SDK 3.1.115 and Runtime 3.1.15 - Resolves: RHBZ1954333 3.1.114-2 - Rebuild to tag into the correct location - Resolves: RHBZ1947455...
bind security and bug fix update
32:9.11.4-26.P2.2 - Fix unsupported algorithms validation rh1769876 32:9.11.4-26.P2.1 - Fix tsig-request verify CVE-2020-8622 - Prevent PKCS11 daemon crash on crafted packet CVE-2020-8623 - Correct update-policy type subdomain to match documentation CVE-2020-8624...
firefox security update
60.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.0-1 - Updated to 60.7.0 ESR 60.6.3-1 - Updated to 60.6.3 ESR 60.6.2-1 - Updated to 60.6.2 ESR 60.6.1-2 - Added fix for mozbz526293 - show remote locations on file chooser dialog...
Unbreakable Enterprise kernel security update
4.14.35-1844.4.5.2 - x86/mds: Add empty commit for CVE-2019-11091 Konrad Rzeszutek Wilk Orabug: 29721848 CVE-2019-11091 - x86/speculation/mds: Make mdsmitigation mutable after init Konrad Rzeszutek Wilk Orabug: 29721835 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 4.14.35-1844.4.5.1 -...
kernel security and bug fix update
2.6.32-754.OL6 - Update genkey bug 25599697 2.6.32-754 - powerpc 64s: Add support for a store forwarding barrier at kernel entry/exit Mauricio Oliveira 1581053 CVE-2018-3639 - x86 amd: Disable AMD SSBD mitigation in a VM Waiman Long 1580360 - x86 specctrl: Fix late microcode problem with AMD Waim...
kernel security and bug fix update
2.6.32-696.20.1.OL6 - Update genkey bug 25599697 2.6.32-696.20.1 - x86 kaiser/efi: unbreak tboot Waiman Long 1519799 1519802 CVE-2017-5754 - x86 pti/mm: Fix trampoline stack problem with XEN PV Waiman Long 1519799 1519802 CVE-2017-5754 - x86 pti/mm: Fix XEN PV boot failure Waiman Long 1519799...
kernel security, bug fix, and enhancement update
2.6.32-696.OL6 - Update genkey bug 25599697 2.6.32-696 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424628 CVE-2017-6074 2.6.32-695 - block nvme: Dont poll device being removed David Milburn 1422521 2.6.32-694 - fs posixacl: Clear SGID bit when setting file...
Oracle linux 5 kernel update
kernel 2.6.18-371 - net be2net: enable polling prior enabling interrupts globally Ivan Vecera 987539 2.6.18-370 - net be2net: Fix to avoid hardware workaround when not needed Ivan Vecera 995961 - kernel signals: stop info leak via tkill and tgkill syscalls Oleg Nesterov 970875 CVE-2013-2141...
freetype security update
2.10.4-10 - Fix for CVE-2025-27363 out-of-bound write vulnerability - Patch initially by Marc Deslauriers of Canonical - https://www.openwall.com/lists/oss-security/2025/03/14/3 - Adjusted for EL9 by Jonathan Wright of AlmaLinux - and a member of the Meta security team - Resolves: RHEL-83105...
nss and nspr security, bug fix, and enhancement update
nspr 4.32.0-1 - Update to NSPR 4.32 4.31.0-1 - Update to NSPR 4.31 4.30.0-1 - Update to NSPR 4.30 nss 3.67.0-6 - Fix ssl alert issue 3.67.0-5 - Fix issue with reading databases that were updated using unpatched versions of nss 3.67.0-4 - Better fix for the sdb timeout. The issue wasn't a race, it...
python38:3.8 and python38-devel:3.8 security update
PyYAML 5.4.1-1 - Rebase to version 5.4.1 to fix CVE-2020-14343 - Resolves: rhbz1860466...
git security update
1.8.3.1-23 - Prevent crafted URL containing new lines, empty host or lacks a scheme to cause credential leak. Resolves: CVE-2020-11008...
python security update
2.7.5-86.0.3 - Prefix dot in domain for proper subdomain validation CVE-2018-20852Orabug: 30114725...
samba security, bug fix, and enhancement update
4.6.2-8 - resolves: 1459936 - Fix regression with 'follow symlinks = no' 4.6.2-7 - resolves: 1461336 - Fix smbclient username parsing - resolves: 1460937 - Fix username normalization with winbind 4.6.2-6 - resolves: 1459179 - Fix smbclient session setup printing 4.6.2-5 - related: 1277999 - Add...
openssl098e security update
0.9.8e-20.0.1.1 - Updated the description 0.9.8e-20.1 - fix CVE-2015-0293 - triggerable assert in SSLv2 server - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generic TLS method 0.9.8e-20 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability...
freetype security update
2.9.1-10 - Fix CVE-2025-27363 Out-of-bounds Write - Resolves: RHEL-83094...
less security update
590-4 - Fix CVE-2024-32487 - Resolves: RHEL-33773...
gnutls and nettle security, bug fix, and enhancement update
gnutls 3.7.6-12 - fips: mark PBKDF2 with short key and output sizes non-approved - fips: only mark HMAC as approved in PBKDF2 - fips: mark gnutlskeygenerate with short key sizes non-approved - fips: fix checking on hash algorithm used in ECDSA - fips: preserve operation context around FIPS...
go-toolset:ol8 security and bug fix update
delve 1.7.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.7.2-1 - Rebase to 1.7.2 - Related: rhbz2014088 golang 1.17.7-1 - Rebase to Go 1.17.7 - Remove fips memory leak patch fixed in tree - Resolves: rhbz2015930 go-toolset 1.17.7-1 - Rebase to Go 1.17.7 - Remove fips memory...
kernel security and bug fix update
4.18.0-305.7.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
qemu security update
15:4.2.1-9.el7 - Revert 'oslib-posix: refactor memory prealloc threads' Mark Kanda Orabug: 32903662 - Revert 'oslib-posix: initialize backend memory objects in parallel' Mark Kanda Orabug: 32903662 15:4.2.1-8.el7 - i386/pc: let iterator handle regions below 4G Joao Martins 15:4.2.1-7.el7 -...
Unbreakable Enterprise kernel security update
5.4.17-2036.102.0.2uek - xen-blkback: set ring-xenblkd to NULL after kthreadstop Pawel Wieczorkiewicz Orabug: 32260252 CVE-2020-29569 - xenbus/xenbusbackend: Disallow pending watch messages SeongJae Park Orabug: 32253409 CVE-2020-29568 - xen/xenbus: Count pending messages for each watch SeongJae...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.402.2.1.el7 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2.el7 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug:...
kernel security, bug fix, and enhancement update
4.18.0-80.7.10.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.7.10 - x86 Update stepping values for Whiskey Lake U/Y David Arcari...
Unbreakable Enterprise kernel security update
4.1.12-124.24.5 - rds: congestion updates can be missed when kernel low on memory Mukesh Kacker Orabug: 28425811 - net/rds: ib: Fix endless RNR Retries caused by memory allocation failures Venkat Venkatsubra Orabug: 28127993 - net: rds: fix excess initialization of the recv SGEs Zhu Yanjun Orabug...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.17.4 - Revert 'fix minor infoleak in getuserex' Brian Maly Orabug: 25790392 CVE-2016-9644 3.8.13-118.17.3 - net: ping: check minimum size on ICMP header length Kees Cook Orabug: 25766911 CVE-2016-8399 3.8.13-118.17.2 - ipv6: stop sending PTB packets for MTU 1280 Hagen Paul...
kernel security and bug fix update
2.6.32-71.24.1.el6 - fs Revert 'fs inotify: stop kernel memory leak on file creation failure' Eric Paris 656831 656832 CVE-2010-4250 2.6.32-71.23.1.el6 - x86 Revert 'x86 mtrr: Assume SYSCFGTom2ForceMemTypeWB exists on all future AMD CPUs' Frank Arnold 683813 652208 2.6.32-71.22.1.el6 - rebuild...
java-17-openjdk security and bug fix update
1:17.0.8.0.7-2.0.1 - OpenJDK: ZIP file parsing infinite loop 8302483 CVE-2023-22036 - OpenJDK: weakness in AES implementation 8308682 CVE-2023-22041 - OpenJDK: improper handling of slash characters in URI-to-path conversion 8305312 CVE-2023-22049 - harfbuzz: OpenJDK: On^2 growth via consecutive...
rsyslog security update
8.2102.0-101.1 - Address CVE-2022-24903, Heap-based overflow in TCP syslog server resolves: rhbz2081402...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: Fix /proc/kcore Henry...