8991 matches found
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Adjust...
Unbreakable Enterprise kernel security update
4.1.12-112.14.5 - x86/ibrs: Remove 'ibrsdump' and remove the prdebug Konrad Rzeszutek Wilk Orabug: 27350825 4.1.12-112.14.4 - kABI: Revert kABI: Make the bootcpudata look normal Konrad Rzeszutek Wilk CVE-2017-5715 4.1.12-112.14.3 - userns: prevent speculative execution Elena Reshetova Orabug:...
java-1.7.0-openjdk security update
1:1.7.0.131-2.6.9.0.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.131-2.6.9.0 - Add blacklisted.certs to installation file list. - Resolves: rhbz1410612 1:1.7.0.131-2.6.9.0 - Bump to 2.6.9 and u131b00. - Remove patch application debris in fsg.sh. - Re-generate...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649...
libsoup security update
2.62.2-2.0.3 - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in - soupheaderparseparamliststrict Orabug: 37557504...
avahi security update
0.8-20 - Fix CVE-2023-38469 RHEL-5637 0.8-19 - Fix CVE-2023-38471 RHEL-5642 0.8-18 - Fix CVE-2023-38472 RHEL-5645 0.8-17 - Fix CVE-2023-38470 RHEL-5641 0.8-16 - Fix CVE-2023-38473 RHEL-5729...
gmp security and enhancement update
1:6.2.0-13 - Fix: previous commit removed one function from the library and thus broke the ABI - function gmpnpreinvdivrem1 should now not be removed Related: rhbz2044216 1:6.2.0-12 - Add SIMD optimization patches for s390x provided by the IBM Resolves: rhbz2044216 1:6.2.0-11 Fix: Integer overflo...
xz security update
5.2.5-8 - Fix arbitrary file write vulnerability Resolves: CVE-2022-1271...
Unbreakable Enterprise kernel security update
4.14.35-2047.507.7.4 - KVM: x86: Check kvmrebooting in kvmspuriousfault Sean Christopherson Orabug: 33362693 4.14.35-2047.507.7.3 - arm64: Reserve elfcorehdr before scanning reserved memory from device tree Dave Kleikamp Orabug: 33354710 4.14.35-2047.507.7.2 - net: geneve: modify IP header check ...
qemu security update
15:4.2.1-11.el7 - pvrdma: Fix the ring init error flow CVE-2021-3608 Marcel Apfelbaum Orabug: 33120142 CVE-2021-3608 - pvrdma: Ensure correct input on ring init CVE-2021-3607 Marcel Apfelbaum Orabug: 33120146 CVE-2021-3607 - hw/rdma: Fix possible mremap overflow in the pvrdma device CVE-2021-3582...
java-11-openjdk security update
1:11.0.12.0.7-0.0.1 - link atomic for ix86 build 1:11.0.12.0.7-0 - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:11.0.12.0.6-0.0.ea - Update to jdk-11.0.12.0+6...
dnsmasq security update
2.79-13.1 - Fix various issues in dnssec validation CVE-2020-25681 - Accept responses only on correct sockets CVE-2020-25684 - Use strong verification on queries CVE-2020-25685...
container-tools:ol8 security, bug fix, and enhancement update
buildah 1.14.9-1.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.14.9-1 - update to https://github.com/containers/buildah/releases/tag/v1.14.9 - Related: RHELPLAN-39206 1.14.8-2 - make container-selinux a soft dependency - Related: 1806044 1.14.8-1 - update to...
java-11-openjdk security update
1:11.0.6.10-1 - Update to shenandoah-jdk-11.0.6+10 GA - Switch to GA mode for final release. - Add JDK-8236039 backport to resolve OpenShift blocker - Resolves: rhbz1785753 1:11.0.6.1-0.0.ea - Update to shenandoah-jdk-11.0.6+1 EA - Switch to EA mode for 11.0.6 pre-release builds. - Add support fo...
libvirt security update
5.0.0-9.el7 - qemu: remove cpuhostmask and cpuguestmask from virCaps structure Wim ten Have Orabug: 29956508 5.0.0-8.el7 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections Jan Tomko Orabug: 29955742 CVE-2019-10161 - domain: Define explicit flags for saved image xml Eric Blake...
Unbreakable Enterprise kernel security update
2.6.39-400.308.1 - x86/fpu: Fix 32-bit signal frame handling Dave Hansen Orabug: 28874707 - x86/fpu: Factor out memsetxstate, 0 in fpufinit paths Oleg Nesterov Orabug: 28874707 - x86/fpu: Always allow FPU in interrupt if useeagerfpu Oleg Nesterov Orabug: 28874707 - x86/fpu: Don't do threadfpuend ...
Unbreakable Enterprise kernel security update
2.6.39-400.307.1 - proc: restrict kernel stack dumps to root John Donnelly Orabug: 29114880 CVE-2018-17972 - alarmtimer: Prevent overflow for relative nanosleep Thomas Gleixner Orabug: 29269182 CVE-2018-13053 - ext4: only look at the bgflags field if it is valid Theodore Ts'o Orabug: 29409428...
Unbreakable Enterprise kernel security update
4.1.12-124.23.1 - xfs: don't call xfsdashrinkinode with NULL bp Eric Sandeen Orabug: 28898616 CVE-2018-13094 - ALSA: rawmidi: Change resized buffers atomically Takashi Iwai Orabug: 28898636 CVE-2018-10902 - md/raid5: fix a race condition in stripe batch Shaohua Li Orabug: 28917012 - xfs: don't fa...
microcode_ctl security update
1:1.17-25.4.0.2 - Revert: early microcode load to allow updating Broadwell model 79 - Revert: Make sure 'modprobe microcode' is not executed on Broadwell model 79 - Revert: Run dracut upon microcode update - Revert updated Intel 20180108 microcode for CPUIDs: CVE-2017-5715 306c3 06-3c-03 rev 0x23...
Unbreakable Enterprise kernel security update
5.15.0-307.178.5 - net/mlx5: DR, prevent potential error pointer dereference Dan Carpenter Orabug: 37434242 CVE-2024-56660 - uek-rpm: Set CONFIGIP6NFIPTABLES for ol9/ol8 container kernels Jonah Palmer Orabug: 37703179 - net: hsr: fix fillframeinfo regression vs VLAN packets Eric Dumazet - f2fs:...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81645...
glibc security update
2.17-326.0.9.3 - Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi Oracle history: June-22-2023 Cupertino Miranda - 2.17-326.0.9 - OraBug 35517820 Reworked previous patch for OraBug 35318841 and removed free of stack allocations. Reviewed-by: Jose E. Marchesi June-20-2023...
rpm security update
4.16.1.3-27 - TOCTOU race in checks for unsafe symlinks CVE-2021-35937 - races with chown/chmod/capabilities calls during installation CVE-2021-35938 - checks for unsafe symlinks are not performed for intermediary directories CVE-2021-35939...
libssh security update
0.10.4-11 - Fix loglevel regression - Related: rhbz2182252, rhbz2189740 0.10.4.10 - Fix null dereference issues found by covscan - Related: rhbz2182252, rhbz2189740 0.10.4-9 - Fix CVE-2023-1667 and CVE-2023-2283 - Fix issues found by cosvcan - Resolves: rhbz2182252, rhbz2189740...
device-mapper-multipath security update
0.8.7-7.1 - Add 0044-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz 2133997...
.NET Core 3.1 security, bug fix, and enhancement update
3.1.419-1.0.1 - Add missing Oracle Linux Runtime IDs - Update to .NET SDK 3.1.417 and Runtime 3.1.23 - Resolves: RHBZ2060566 3.1.419-1 - Update to .NET SDK 3.1.419 and Runtime 3.1.25 - Resolves: RHBZ2081443 3.1.418-1 - Update to .NET SDK 3.1.418 and Runtime 3.1.24 - Resolves: RHBZ2074654...
grafana security, bug fix, and enhancement update
7.5.11-2 - resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache - resolve CVE-2021-43813 grafana: directory traversal vulnerability for .md files 7.5.11-1 - update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226 7.5.10-1 - upda...
openssl security update
1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800...
kernel security and bug fix update
4.18.0-80.11.10.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.11.10 - wireless mwifiex: Don't abort on small, spec-compliant...
Unbreakable Enterprise kernel security update
4.1.12-124.26.12 - x86/mds: Add empty commit for CVE-2019-11091 Konrad Rzeszutek Wilk Orabug: 29721935 CVE-2019-11091 - x86/microcode: Add loader version file in debugfs Boris Ostrovsky Orabug: 29754165 - x86/microcode: Fix CPU synchronization routine Borislav Petkov Orabug: 29754165 -...
java-1.7.0-openjdk security update
1:1.7.0.221-2.6.18.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.221-2.6.18.0 - Bump to 2.6.18 and OpenJDK 7u221-b02. - Resolves: rhbz1693468...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.32.1 - x86/fpu: Factor out memsetxstate, 0 in fpufinit paths Oleg Nesterov Orabug: 29012034 - x86/fpu: Always allow FPU in interrupt if useeagerfpu Oleg Nesterov Orabug: 29012034 - x86/fpu: Fix 32-bit signal frame handling Dave Hansen Orabug: 29012034 - x86/fpu: Don't do...
glibc security and bug fix update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
Unbreakable Enterprise kernel security update
2.6.39-400.299.1 - ext4/jbd2: dont wait forever for stale tid caused by wraparound Theodore Tso Orabug: 26424268 - jbd2: dont wake kjournald unnecessarily Eric Sandeen Orabug: 26424268 - ext4: fix data corruption in inodes with journalled data Jan Kara Orabug: 26424268 - media: imon: Fix...
Unbreakable Enterprise kernel security update
4.1.12-124.14.1 - ctf: drop the run-as-root error Nick Alcock Orabug: 27852654 - rds: Node crashes when trace buffer is opened Ka-Cheong Poon Orabug: 27846191 - xfs: fix accidental reversion of aa6a6227435cb Darrick J. Wong Orabug: 27845869 4.1.12-124.13.1 - net: cdcether: fix divide by 0 on bad...
Unbreakable Enterprise kernel security update
4.1.12-112.16.7 - mlx4: change the ICM table allocations to lowest needed size Daniel Jurgens Orabug: 27718305 - autofs: use dentry flags to block walks during expire Ian Kent Orabug: 26032471 Orabug: 27766149 - autofs races Al Viro Orabug: 27766149 Orabug: 27766149 - crypto: FIPS - allow tests t...
Unbreakable Enterprise kernel security update
4.1.12-112.14.10 - x86/ia32: save and clear registers on syscall. Jamie Iles Orabug: 27355759 CVE-2017-5754 - x86/IBRS: Save current status of MSRIA32SPECCTRL Boris Ostrovsky Orabug: 27355887 - pti: Rename X86FEATUREKAISER to X86FEATUREPTI Pavel Tatashin Orabug: 27352353 CVE-2017-5754 - usb/core:...
httpd security update
2.2.15-60.0.1.6 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.6 - Resolves: 1493061 - CVE-2017-9798 httpd: various flaws...
kernel security and bug fix update
2.6.32-642.13.1 - net Fix use after free in the recvmmsg exit path Davide Caratti 1390805 1390046 CVE-2016-7117 - net vlan: Propagate MAC address to VLANs Jarod Wilson 1396479 1381585 - net tcp: fix use after free in tcpxmitretransmitqueue Mateusz Guzik 1379527 1379529 CVE-2016-6828 - net...
grub2 security update
2.02-164.0.2 - fs/ext2: Rework out-of-bounds read for inline and external extents Orabug: 37829911 2.02-164.0.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with...
libxml2 security update
2.9.13-6.1 - Fix CVE-2022-49043 RHEL-76298...
gcc security update
8.5.0-23.0.1 - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug...
containernetworking-plugins security update
1:1.4.0-6 - rebuild for CVE-2024-34156 - Resolves: RHEL-57915...
ruby:2.5 security update
rubygem-abrt 0.3.0-4 - Execute test suite unconditionally. - Upload correct sources. 0.3.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 0.3.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild 0.3.0-1 - Update to abrt 0.3.0. 0.2.0-2 - Rebuilt for...
ncurses security and bug fix update
6.2-10.20210508 - ignore TERMINFO and HOME only if setuid/setgid/capability 2211666 6.2-9.20210508 - fix buffer overflow on terminfo with too many capabilities CVE-2023-29491 - ignore TERMINFO and HOME environment variables if running as root 2211666...
rsync security and bug fix update
3.2.3-18 - Resolves: 2111177 - remote arbitrary files write inside the directories of connecting peers 3.2.3-17 - Resolves: 2116669 - zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field 3.2.3-16 - Related: 2081296 - Adding ci.fmf for...
libksba security update
1.5.1-5 - Fix for CVE-2022-3515 2135703...
httpd security update
2.2.15-69.0.3 - core: Simpler connection close logic CVE-2022-22720Orabug: 33991577...
python36:3.6 security and bug fix update
python-docs 3.6.7-2 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 3.6.7-1 - Modify for RHEL8 - Update to new Python version - Resolves: rhbz1656044 python-wheel 1:0.31.1-3 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055...
mysql:8.0 security, bug fix, and enhancement update
mysql 8.0.26-1 - Update to MySQL 8.0.26 8.0.25-1 - Update to MySQL 8.0.25 8.0.24-1 - Update to MySQL 8.0.24 - Upstreamed patch: mysql-main-cast.patch 8.0.23-1 - Update to MySQL 8.0.23 - Created mysql-fix-includes-robin-hood.patch - Created mysql-main-cast.patch 8.0.22-1 - Update to MySQL 8.0.22 -...