8986 matches found
git security update
1.8.3.1-20 - Fix CVE-2018-17456: arbitrary code execution via .gitmodules Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
zziplib security update
0.13.62-9 - Fix covscan warning - 'Variable 'file' going out of scope leaks the storage it points to.' has been introduced by the original version of 0001-fix-CVE-2018-7725.patch - Related: 1558596 0.13.62-8 - Fix CVE-2018-7727 - Resolves: 1558891 0.13.62-7 - Fix CVE-2018-7726 - Resolves: 1558623...
python-paramiko security update
1.7.5-5 - Split handler tables for server and client side - Fix CVE-2018-1000805 - Resolves: rhbz1637365...
device-mapper-multipath security update
0.4.9-136.0.1 - mpathpersist: Fix Register and Ignore with 0x00 SARK Orabug: 32696195 - mpathpersist: update prkeys file on changing registrations Orabug: 32696195 - Keep upstream patch 0273-RHBZ-1988462-fix-disable-changed-wwids-segfault.patch fix segfault with disablechangedwwids for orabug...
java-1.8.0-openjdk security update
1:1.8.0.191.b12-0 - Update to aarch64-shenandoah-jdk8u191-b12. - Resolves: rhbz1633817 1:1.8.0.191.b10-0 - Update to aarch64-shenandoah-jdk8u191-b10. - Drop 8146115/PR3508/RH1463098 applied upstream. - Resolves: rhbz1633817 1:1.8.0.181.b16-0 - Add new Shenandoah patch PR3634 as upstream still fai...
glib2 security update
2.56.1-9 - Fix CVE-2021-27219 Resolves: 1960596...
firefox security and bug fix update
60.3.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.3.0-1 - Update to 60.3.0 ESR 60.2.2-2 - Added patch for rhbz1633932...
shim security update
shim - 15.8-2.0.3.el7 - Set shim.ol sbat generation to 3 Orabug: 36271343 - 15.8-2.0.1.el7 - Set SBATAUTOMATICDATE to 2021030218 Orabug: 36271343 - Rebuild with Oracle certificates Orabug: 36271343 - Full list of fixed CVEs: CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549,...
java-1.8.0-openjdk security, bug fix, and enhancement update
1:1.8.0.332.b09-1 - Update to shenandoah-jdk8u332-b09 GA - Update release notes for 8u332-b09. - Switch to GA mode for final release. - This tarball is embargoed until 2022-04-19 @ 1pm PT. - Resolves: rhbz2073422 1:1.8.0.332.b06-0.1.ea - Update to shenandoah-jdk8u332-b06 EA - Update release notes...
java-1.8.0-openjdk security update
1:1.8.0.191.b12-0 - Update to aarch64-shenandoah-jdk8u191-b12. - Resolves: rhbz1633817 1:1.8.0.191.b10-0 - Update to aarch64-shenandoah-jdk8u191-b10. - Drop 8146115/PR3508/RH1463098 applied upstream. - Resolves: rhbz1633817 1:1.8.0.181.b16-0 - Add new Shenandoah patch PR3634 as upstream still fai...
postgresql:12 security update
postgresql 12.5-1 - Rebase to upstream release 12.5 Resolves: rhbz1901555 Resolves: rhbz1898223 Resolves: rhbz1898329 12.1-3 - Release bump for 8.2.0 BZ1776805 12.1-2 - Release bump for rebuild against libpq-12.1-3 12.1-1 - Rebase to upstream release 12.1 12.0-1 - Rebase to upstream release 12.0...
kernel security and bug fix update
3.10.0-1160.118.1.0.1 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.118.1 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 -...
openssl security update
1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix CVE-2018-0739 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.1e-58 - fi...
container-tools:3.0 security update
podman 3.0.1-9 - update to the latest content of https://github.com/containers/podman/tree/v3.0.1-rhel https://github.com/containers/podman/commit/801b7e8 - Resolves: 2074143...
thunderbird security update
60.3.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.3.0-1 - Update to 60.3.0 60.2.1-6 - Fixed missing calendar langpacks 60.2.1-5 - Fixing minor issues...
tomcat security update
0:7.0.76-8 - Resolves: rhbz1608608 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS...
libgcrypt security update
1.8.5-7fips - Add API to provide hash calculation in RSA/DSA/ECDSA signature operations Orabug: 33081130 - Change Epoch from 1 to 10 1.8.5-7 - Fix CVE-2021-33560 2018525...
mariadb:10.5 security, bug fix, and enhancement update
galera 26.4.11-1 - Rebase to 26.4.11 mariadb 3:10.5.16-2 - Release bump for rebuild 3:10.5.16-1 - Rebase to 10.5.16 3:10.5.15-1 - Rebase to 10.5.15...
kernel security update
4.18.0-553.16.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
container-tools:ol8 security and bug fix update
aardvark-dns 2:1.7.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.7.0 - Related: 2176055 2:1.6.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.6.0 - Related: 2176055 buildah 1:1.31.3-1 - update to...
python security update
2.7.5-92.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-92 - Security fix for CVE-2021-3177 Resolves: rhbz1918168 2.7.5-91 - Security fixes for CVE-2020-26116, CVE-2020-26137 and CVE-2022-0391 - Test fixes for the latest expat security release - Update the certificates...
openssl security update
1:1.1.1k-12 - Backport implicit rejection mechanism for RSA PKCS1 v1.5 to RHEL-8 series a proper fix for CVE-2020-25659 Resolves: RHEL-17696 1:1.1.1k-11 - Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow Resolve...
virt:kvm_utils3 security update
hivex libguestfs libguestfs-winsupport 8.9-1 - Rebase to ntfs-3g 2022.10.3 - Fixes: CVE-2022-40284 - resolves: rhbz2236372 libiscsi libnbd libtpms libvirt 9.0.0-5 - Fix off-by-one error in udevListInterfacesByStatus Martin Kletzander Orabug: 36364464 CVE-2024-1441 libvirt-dbus libvirt-python...
openssh security update
7.4p1-23.0.3fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...
nginx:1.22 security update
1:1.22.1-3.0.1.1 - Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack CVE-2023-44487...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL8 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
Unbreakable Enterprise kernel security update
5.4.17-2136.328.3 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is zeroed. Gregory Herrero Orabug: 36154654 - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185207 - i2c: core: Fix atomic xfer...
sqlite security update
3.7.17-8.1 - Fixes for CVE-2019-13734 1786505...
dnsmasq security update
2.79-31.2 - Fix CVE 2023-50387 and CVE 2023-50868 - Resolves: RHEL-25628 - Resolves: RHEL-25666 2.79-31.1 - Do not crash on invalid domain in --synth-domain option RHEL-22741 2.79-31 - Do not create and search --local and --address=/x/ domains 2233542 2.79-30 - Make create logfile writeable by ro...
virt:kvm_utils3 security update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol libguestfs-winsupport...
openssl security update
1.0.2k-26fips - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1:1.0.2k-26 -...
Unbreakable Enterprise kernel security update
4.14.35-1902.2.0 - mm: account managed pages to correct zone during deferred page init Daniel Jordan Orabug: 29914836 4.14.35-1902.1.5 - CVE numbers for build v4.14.35-1902.1.3 and fixup Jack Vogel Orabug: 29890784 Orabug: 29884301 Orabug: 29884301 CVE-2019-11477 CVE-2019-11478 CVE-2019-11479...
perl security update
4:5.16.3-299 - Fix CVE-2020-10543 bug 1839272 - Fix CVE-2020-10878 bug 1839275 4:5.16.3-298 - Fix CVE-2020-12723 bug 1839278...
rsyslog security update
8.24.0-57.0.4.el79.3 - Newer gcc complains about implicit declaration of prctl. Added header file to quiesce the compiler 8.24.0-57.3 - Address CVE-2022-24903, Heap-based overflow in TCP syslog server resolves: rhbz2081395...
shim security update
15.8-4.0.1 - Add support for Oracle signed shim Orabug: 36540084 - Add shim binaries signed with Oracle Secure Boot Signing key 1 Orabug: 36540084 15.8-1.0.3 - Update shimx64.efi, shimia32.efi and shimaa64.efi v15.8 signed by Microsoft Orabug: 36072863 15.8-1.0.2 - Use binaries with correct shim....
glibc security update
2.17-325.0.6 - OraBug 33968985 Security Patches - This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi 2.17-325.0.3 - OraBug 33968985 Security Patches This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi...
openssh security update
8.7p1-38.0.2 - Restore dropped earlier ifdef condition for safe exit1 call in sshsigdie Orabug: 36783468 Resolves CVE-2024-6387...
container-tools:4.0 security and bug fix update
buildah 1:1.24.6-7 - rebuild for CVE-2023-29406 - Related: 2176055 1:1.24.6-6 - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539 CVE-2023-24540 CVE-2023-29400 - Resolves: 2179943 - Resolves: 2187341 - Resolves:...
kernel security and bug fix update
4.18.0-513.9.19.OL8 - media: dvb-core: Fix use-after-free due to race at dvbregisterdevice Mauro Carvalho Chehab CVE-2022-45884 - cifs: Fix UAF in cifsdemultiplexthread Zhang Xiaoxu CVE-2023-1192 - nvmet-tcp: Fix a possible UAF in queue intialization setup Sagi Grimberg CVE-2023-5178 - net: tun:...
zlib security update
1.2.7-20.0.1 - Resolves: CVE-2022-37434 Orabug: 34752508...
bind and dhcp security update
bind 32:9.11.36-11.1 - Speed up parsing of DNS messages with many different names CVE-2023-4408 - Prevent increased CPU consumption in DNSSEC validator CVE-2023-50387 CVE-2023-50868 - Do not use headerprev in expirelruheaders dhcp 4.3.6 - Change bug tracker path 12:4.3.6-49.1 - Rebuild because of...
maven:3.6 security update
maven-shared-utils 3.2.1-0.4 - Build with OpenJDK 8...
python-pip security update
9.0.3-23 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218241...
polkit security update
0.112-26.0.1 - Increase timeout to avoid defunct processes Orabug: 26930744 0.112-26.1 - pkexec: argv overflow results in local privilege esc. - Resolves: CVE-2021-4034...
binutils security update
2.27-44.base.0.3.1 - Forward-port patches to 2.27-44.base.1 - Reviewed-by: Jose E. Marchesi 2.27-44.base.0.2.1 - Forward-port patches to 2.27-44.base.1 - Reviewed-by: Jose E. Marchesi 2.27-44.base.1 - Add ability to control the display of unicode characters. 2009168...
grub2 security update
2.02-156.0.1 - Restore correct SBAT entries - Replaced bugzilla.oracle.com references Orabug: 35475894 - efinet: Close and reopen card on failure Orabug: 35126950 - Fix CVE-2022-3775 Orabug: 34867710 - Bump SBAT metadata for grub to 3 Orabug: 34871758 - Enable signing on aarch64 - Don't try to...
idm:DL1 security update
bind-dyndb-ldap custodia ipa 4.9.13-10.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.13-10 - kdb: apply combinatorial logic for ticket flags CVE-2024-3183 Resolves: RHEL-29927 - kdb: fix vulnerability in GCD rules handling CVE-2024-2698 Resolves: RHEL-29692...
krb5 security update
1.21.1-2.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.21.1-2 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45401 RHEL-45390...
gnutls security update
3.8.3-4fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35925409 - Update FIPS module name for Oracle Linux Orabug: 35925409 3.8.3-4 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-3 - Bump release to ensure el9 package is greater than...
Unbreakable Enterprise kernel security update
5.15.0-203.146.5.1 - Revert 'selftests/bpf: Test tail call counting with bpf2bpf and data on stack' Samasth Norway Ananda Orabug: 36277693 - Revert 'tcp: fix excessive TLP and RACK timeouts from HZ rounding' Sherry Yang Orabug: 36277684 5.15.0-203.146.5 - i2c: core: Fix atomic xfer check for...