8987 matches found
kernel security and bug fix update
2.6.32-754.3.5.OL6 - Update genkey bug 25599697 2.6.32-754.3.5 - kernel cpu/hotplug: Enable 'nosmt' as late as possible Frantisek Hrbata 1593376 CVE-2018-3620 2.6.32-754.3.4 - x86 x86/mm: Simplify pg4umdpage macros Josh Poimboeuf 1593376 CVE-2018-3620 - x86 x86/mm: Fix regression with huge pages ...
kernel security and bug fix update
2.6.32-696.20.1.OL6 - Update genkey bug 25599697 2.6.32-696.20.1 - x86 kaiser/efi: unbreak tboot Waiman Long 1519799 1519802 CVE-2017-5754 - x86 pti/mm: Fix trampoline stack problem with XEN PV Waiman Long 1519799 1519802 CVE-2017-5754 - x86 pti/mm: Fix XEN PV boot failure Waiman Long 1519799...
kernel security and bug fix update
kernel 2.6.18-416 - mm Fix Privilege escalation via MAPPRIVATE Larry Woodman 1385112 CVE-2016-5195 2.6.18-415 - fs gfs2: Initialize atime of INEW inodes Andreas Grunbacher 1374861 - fs gfs2: Update file times after grabbing glock Andreas Grunbacher 1374861 - Revert: fs gfs2: Only refresh newer...
libxslt security update
1.1.32-6.1.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-6.1 - Fix CVE-2024-55549 RHEL-83506 - Fix CVE-2025-24855 RHEL-83492...
libreoffice security update
7.1.8.1-8.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:7.1.8.1-8 - Resolves: rhbz2134759 Untrusted Macros - Resolves: rhbz2134757 Weak Master Keys - Resolves: rhbz2134755 Static...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.309.5 - lockdown: Fix kexec lockdown bypass with ima policy Eric Snowberg Orabug: 34386637 CVE-2022-21505...
rsyslog security update
8.2102.0-101.1 - Address CVE-2022-24903, Heap-based overflow in TCP syslog server resolves: rhbz2081402...
Unbreakable Enterprise kernel security update
5.4.17-2136.307.3.5 - KVM: x86: avoid calling x86 emulator without a decoded instruction Sean Christopherson Orabug: 34211496 CVE-2022-1852 CVE-2022-1852...
grafana security update
7.3.6-3 - resolve CVE-2021-39226 - resolve CVE-2021-27358...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: Fix /proc/kcore Henry...
kernel security and bug fix update
4.18.0-305.7.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security and bug fix update
2.6.32-754.28.1.OL6 - Update genkey bug 25599697 2.6.32-754.28.1 - netdrv ixgbevf: Use cached link state instead of re-reading the value for ethtool Ken Cox 1795404 - isdn mISDN: enforce CAPNETRAW for raw sockets Andrea Claudi 1779473 CVE-2019-17055 - net cfg80211: wext: avoid copying malformed...
Xorg security and bug fix update
gdm 3.28.2-16 - Dont bring up login screen if background session gets killed Related: 1680120 3.28.2-15 - sync AllowMultipleSessionsPerUser patch from 7.6 branch Resolves: 1664353 - Create dconf dirs by default Resolves: 1664284 3.28.2-14 - Fix unlock on XDMCP sessions Resolves: 1693060 3.28.2-13...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.2 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Extend 64bit swap file size...
glibc security update
2.5-123.0.2.el511.3 - Mitigation for CVE-2017-1000366 glibc: heap/stack gap jumping via unbounded stack allocations...
freetype security update
2.9.1-10 - Fix CVE-2025-27363 Out-of-bounds Write - Resolves: RHEL-83094...
Unbreakable Enterprise kernel security update
5.15.0-306.177.4 - Revert 'usb: gadget: userial: Disable ep before setting port to null to fix the crash caused by port being null' Greg Kroah-Hartman - drm/v3d: Assign job pointer to NULL before signaling the fence Maira Canal - scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sys...
bind security update
32:9.16.23-24.0.1.el95.3 - Fix bind: bind9: Many records in the additional section cause CPU exhaustion CVE-2024-11187...
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
hivex libguestfs 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 1:1.44.0-8 -...
dbus security update
1.12.20-7.0.1 - fix netlink poll: error 4 Zhenzhong Duan 1:1.12.20-7 - Fix CVE-2022-42010 2133647 - Fix CVE-2022-42011 2133641 - Fix CVE-2022-42012 2133635...
openssl security update
1:1.1.1k-7 - Fix CVE-2022-2097: AES OCB fails to encrypt some bytes on 32-bit x86 Resolves: CVE-2022-2097 - Update expired certificates used in the testsuite Resolves: rhbz2100554 - Fix CVE-2022-1292: openssl: crehash script allows command injection Resolves: rhbz2090371 - Fix CVE-2022-2068: the...
gzip security update
1.10-9 - fix an arbitrary-file-write vulnerability in zgrep Resolves: CVE-2022-1271...
httpd:2.4 security update
httpd 2.4.37-43.0.2.3 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-43.3 - Resolves: 2065247 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier...
thunderbird security update
78.12.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.12.0-2 - Update to 78.12.0 build2 78.12.0-1 - Update to 78.12.0 build1...
microcode_ctl security, bug fix and enhancement update
2:2.1-73.9.0.1 - for Intel, do not trigger load if on-disk microcode is not an update Orabug: 30634727 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early and late load for 5.4.17-...
httpd:2.4 security, bug fix, and enhancement update
httpd 2.4.37-39.0.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracles index page oracleindex.html 2.4.37-39 - prevent htcacheclean from while break when first file processed 2.4.37-38 - Resolves: 1918741 - Thousands of /tmp/modproxy.tmp. files created by...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.402.2.1.el7 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2.el7 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug:...
Unbreakable Enterprise kernel security update
2.6.39-400.319.1 - net-sysfs: Fix mem leak in netdevregisterkobject YueHaibing Orabug: 30350265 CVE-2019-15916...
microcode_ctl security update
2:2.1-53.3.0.4 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 2:2.1-53.3.0.1 - do not late load prior to 3.10.0 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early loading on 06-4f-01 - update 06-55-04 to 0x2000065 - update...
kernel security and bug fix update
2.6.32-754.12.1.OL6 - Update genkey bug 25599697 2.6.32-754.12.1 - x86 vDSO: Don't generate retpoline for indirect call Waiman Long 1638552 - fs cifs: fix reparse point/symlink breakage Leif Sahlberg 1636484 - scsi qla2xxx: Mask off Scope bits in retry delay Himanshu Madhani 1588133 - net tcp: ma...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.6.2 - KEYS: Fix ASN.1 indefinite length object parsing This fixes CVE-2016-0758. David Howells Orabug: 23279020 CVE-2016-0758 - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267997 CVE-2015-8543 CVE-2015-8543 - ipv6: addrconf:...
glibc security update
2.5-123.0.1.el511.1 - Switch to use malloc when the input line is too long Orabug 19951108 - Use a /sys/devices/system/cpu/online for SCNPROCESSORSONLN implementation Orabug 17642251 Joe Jin 2.5-123.1 - Fix parsing of numeric hosts in gethostbynamer CVE-2015-0235, 1183532...
emacs security update
1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025...
glib2 security and bug fix update
2.68.4-11 - Really fix authentication failures when sd-bus clients connect to GDBus servers - Resolves: 2217771 2.68.4-10 - Fix authentication failures when sd-bus clients connect to GDBus servers - Resolves: 2217771 2.68.4-9 - Resolve s390x crashes introduced by fixes for...
thunderbird security update
78.12.0-3.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.12.0-3 - Rebuild to pickup older nss 78.12.0-2 - Update to 78.12.0 build2 78.12.0-1 - Update to 78.12.0 build1...
docker-engine docker-cli security update
docker-engine 19.03.11-11 - Addresses CVE-2021-30465 - updated runc minimum version to runc = 3:1.0.0-1.rc95. 19.03.11-10 - Addresses runc CVE-2021-30465 - updated runc versions in cli/vendor.conf and docker-engine/vendor.conf to 1.0.0-rc95...
openssl security update
1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738...
java-11-openjdk security and bug fix update
1:11.0.9.11-0 - Update to jdk-11.0.9+11 - Update release notes for 11.0.9 release. - Add backport of JDK-8254177 to update to tzdata 2020b - Require tzdata 2020b due to resource changes in JDK-8254177 - Delay tzdata 2020b dependency until tzdata update has shipped. - This tarball is embargoed unt...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.49.1 - sunrpc: use SVCNET in svcauthgss functions Vasily Averin Orabug: 31351996 CVE-2018-16884 - sunrpc: use-after-free in svcprocesscommon Vasily Averin Orabug: 31351996 CVE-2018-16884 - afpacket: set defaule value for tmo Mao Wenan Orabug: 31439108 CVE-2019-20812 - vgacon...
java-1.8.0-openjdk security update
1:1.8.0.262.b10-0 - Update to aarch64-shenandoah-jdk8u262-b10. - Switch to GA mode for final release. - Update release notes for 8u262 release. - Fix typo in jfrarches which leads to ppc64 being wrongly excluded. - Split JDK-8042159 patch into per-repo patches as upstream. - Update JDK-8042159 JD...
virt:ol security update
hivex libguestfs 1:1.38.4-14.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-14 - v2v: use -T as argument of scp when copying vmx files via ssh resolves: rhbz1738886 Fri Jun 28 2019 Danilo de Paula - Rebuild all virt package...
java-1.7.0-openjdk security update
1:1.7.0.241-2.6.20.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.241-2.6.20.0 - Bump to 2.6.20 and OpenJDK 7u241-b01. - Drop PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Drop JDK-8226318/RH1738637 which is now included upstream. - Resolves: rhbz1753423...
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Adjust...
java-1.7.0-openjdk security update
1:1.7.0.131-2.6.9.0.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.131-2.6.9.0 - Add blacklisted.certs to installation file list. - Resolves: rhbz1410612 1:1.7.0.131-2.6.9.0 - Bump to 2.6.9 and u131b00. - Remove patch application debris in fsg.sh. - Re-generate...
java-1.7.0-openjdk security update
1:1.7.0.85-2.6.1.2.0.1.el71 - Update DISTRONAME in specfile 1:1.7.0.85-2.6.1.2 - Bump upstream tarball to u25b01 to fix issue with 8075374 backport. - Resolves: rhbz1235158 1:1.7.0.85-2.6.1.1 - Update OpenJDK tarball so correct version is used. - Resolves: rhbz1235158 1:1.7.0.85-2.6.1.0 - Add...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649...
libsoup security update
2.62.2-2.0.3 - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in - soupheaderparseparamliststrict Orabug: 37557504...
libxml2 security update
2.9.7-18.2 - Fix CVE-2022-49043 RHEL-76289 2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
systemd security update
252-32.0.2 - Due to a new Orabug: 36564551 filed on April 29 2024, reverting from back to - previous Tony Lam patch Orabug: 25897792 until issue with Orabug: 36564551 is resolved. - Re-Added 1001-Fix-missing-netdev-for-iscsi-entry-in-fstab.patch Orabug: 25897792 - Removed the following, associate...
libX11 security update
1.7.0-9 - Fix CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms - Fix CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage - Fix CVE-2023-43787: integer overflow in XCreateImage leading to a heap overflow...