9170 matches found
glibc security update
2.5-123.0.1.el511.1 - Switch to use malloc when the input line is too long Orabug 19951108 - Use a /sys/devices/system/cpu/online for SCNPROCESSORSONLN implementation Orabug 17642251 Joe Jin 2.5-123.1 - Fix parsing of numeric hosts in gethostbynamer CVE-2015-0235, 1183532...
grub2 security update
2.02-164.0.2 - fs/ext2: Rework out-of-bounds read for inline and external extents Orabug: 37829911 2.02-164.0.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with...
libxml2 security update
2.9.7-18.2 - Fix CVE-2022-49043 RHEL-76289 2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
libX11 security update
1.7.0-9 - Fix CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms - Fix CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage - Fix CVE-2023-43787: integer overflow in XCreateImage leading to a heap overflow...
glib2 security and bug fix update
2.68.4-11 - Really fix authentication failures when sd-bus clients connect to GDBus servers - Resolves: 2217771 2.68.4-10 - Fix authentication failures when sd-bus clients connect to GDBus servers - Resolves: 2217771 2.68.4-9 - Resolve s390x crashes introduced by fixes for...
openssl security update
1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800...
firefox security update
78.10.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.10.0-1 - Update to 78.10.0...
openssl security update
1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738...
Unbreakable Enterprise kernel security update
4.14.35-2025.402.2.1 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug: 32008770 -...
gcc security and bug fix update
8.3.1-5.0.3 - Fix Orabug 29838827 - provide an option to adjust the maximum depth of nested include This is the same bug as gcc upstream PR90581 from Gcc9: gcc9-pr90581.patch - Fix Orabug 29541051 - confusing error message when there is a problem with ASANOPTIONS 'ERROR: expected '='' This is the...
Unbreakable Enterprise kernel security update
2.6.39-400.319.1 - net-sysfs: Fix mem leak in netdevregisterkobject YueHaibing Orabug: 30350265 CVE-2019-15916...
libvirt security, bug fix, and enhancement update
4.5.0-23 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections CVE-2019-10161 - api: disallow virDomainManagedSaveDefineXML on read-only connections CVE-2019-10166 - api: disallow virConnectGetDomainCapabilities on read-only connections CVE-2019-10167 - api: disallow...
libvirt security update
5.0.0-9.el7 - qemu: remove cpuhostmask and cpuguestmask from virCaps structure Wim ten Have Orabug: 29956508 5.0.0-8.el7 - api: disallow virDomainSaveImageGetXMLDesc on read-only connections Jan Tomko Orabug: 29955742 CVE-2019-10161 - domain: Define explicit flags for saved image xml Eric Blake...
Unbreakable Enterprise kernel security update
4.1.12-124.26.12 - x86/mds: Add empty commit for CVE-2019-11091 Konrad Rzeszutek Wilk Orabug: 29721935 CVE-2019-11091 - x86/microcode: Add loader version file in debugfs Boris Ostrovsky Orabug: 29754165 - x86/microcode: Fix CPU synchronization routine Borislav Petkov Orabug: 29754165 -...
kernel security and bug fix update
2.6.32-754.12.1.OL6 - Update genkey bug 25599697 2.6.32-754.12.1 - x86 vDSO: Don't generate retpoline for indirect call Waiman Long 1638552 - fs cifs: fix reparse point/symlink breakage Leif Sahlberg 1636484 - scsi qla2xxx: Mask off Scope bits in retry delay Himanshu Madhani 1588133 - net tcp: ma...
Unbreakable Enterprise kernel security update
2.6.39-400.307.1 - proc: restrict kernel stack dumps to root John Donnelly Orabug: 29114880 CVE-2018-17972 - alarmtimer: Prevent overflow for relative nanosleep Thomas Gleixner Orabug: 29269182 CVE-2018-13053 - ext4: only look at the bgflags field if it is valid Theodore Ts'o Orabug: 29409428...
Unbreakable Enterprise kernel security update
2.6.39-400.299.1 - ext4/jbd2: dont wait forever for stale tid caused by wraparound Theodore Tso Orabug: 26424268 - jbd2: dont wake kjournald unnecessarily Eric Sandeen Orabug: 26424268 - ext4: fix data corruption in inodes with journalled data Jan Kara Orabug: 26424268 - media: imon: Fix...
microcode_ctl security update
1:1.17-25.4.0.2 - Revert: early microcode load to allow updating Broadwell model 79 - Revert: Make sure 'modprobe microcode' is not executed on Broadwell model 79 - Revert: Run dracut upon microcode update - Revert updated Intel 20180108 microcode for CPUIDs: CVE-2017-5715 306c3 06-3c-03 rev 0x23...
Unbreakable Enterprise kernel security update
4.1.12-112.14.10 - x86/ia32: save and clear registers on syscall. Jamie Iles Orabug: 27355759 CVE-2017-5754 - x86/IBRS: Save current status of MSRIA32SPECCTRL Boris Ostrovsky Orabug: 27355887 - pti: Rename X86FEATUREKAISER to X86FEATUREPTI Pavel Tatashin Orabug: 27352353 CVE-2017-5754 - usb/core:...
java-1.7.0-openjdk security update
1:1.7.0.85-2.6.1.2.0.1.el71 - Update DISTRONAME in specfile 1:1.7.0.85-2.6.1.2 - Bump upstream tarball to u25b01 to fix issue with 8075374 backport. - Resolves: rhbz1235158 1:1.7.0.85-2.6.1.1 - Update OpenJDK tarball so correct version is used. - Resolves: rhbz1235158 1:1.7.0.85-2.6.1.0 - Add...
gcc security update
8.5.0-23.0.1 - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug...
glibc security update
2.17-326.0.9.3 - Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi Oracle history: June-22-2023 Cupertino Miranda - 2.17-326.0.9 - OraBug 35517820 Reworked previous patch for OraBug 35318841 and removed free of stack allocations. Reviewed-by: Jose E. Marchesi June-20-2023...
systemd security update
252-32.0.2 - Due to a new Orabug: 36564551 filed on April 29 2024, reverting from back to - previous Tony Lam patch Orabug: 25897792 until issue with Orabug: 36564551 is resolved. - Re-Added 1001-Fix-missing-netdev-for-iscsi-entry-in-fstab.patch Orabug: 25897792 - Removed the following, associate...
ruby:2.5 security update
rubygem-abrt 0.3.0-4 - Execute test suite unconditionally. - Upload correct sources. 0.3.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 0.3.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild 0.3.0-1 - Update to abrt 0.3.0. 0.2.0-2 - Rebuilt for...
libssh security update
0.10.4-11 - Fix loglevel regression - Related: rhbz2182252, rhbz2189740 0.10.4.10 - Fix null dereference issues found by covscan - Related: rhbz2182252, rhbz2189740 0.10.4-9 - Fix CVE-2023-1667 and CVE-2023-2283 - Fix issues found by cosvcan - Resolves: rhbz2182252, rhbz2189740...
gmp security and enhancement update
1:6.2.0-13 - Fix: previous commit removed one function from the library and thus broke the ABI - function gmpnpreinvdivrem1 should now not be removed Related: rhbz2044216 1:6.2.0-12 - Add SIMD optimization patches for s390x provided by the IBM Resolves: rhbz2044216 1:6.2.0-11 Fix: Integer overflo...
grafana security, bug fix, and enhancement update
7.5.11-2 - resolve CVE-2021-44716 golang: net/http: limit growth of header canonicalization cache - resolve CVE-2021-43813 grafana: directory traversal vulnerability for .md files 7.5.11-1 - update to 7.5.11 tagged upstream community sources, see CHANGELOG - resolve CVE-2021-39226 7.5.10-1 - upda...
python36:3.6 security and bug fix update
python-docs 3.6.7-2 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 3.6.7-1 - Modify for RHEL8 - Update to new Python version - Resolves: rhbz1656044 python-wheel 1:0.31.1-3 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055...
java-11-openjdk security update
1:11.0.12.0.7-0.0.1 - link atomic for ix86 build 1:11.0.12.0.7-0 - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:11.0.12.0.6-0.0.ea - Update to jdk-11.0.12.0+6...
dnsmasq security update
2.79-13.1 - Fix various issues in dnssec validation CVE-2020-25681 - Accept responses only on correct sockets CVE-2020-25684 - Use strong verification on queries CVE-2020-25685...
kernel security, bug fix, and enhancement update
3.10.0-1160.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160 - kernel modsign: Add...
java-1.8.0-openjdk security update
1:1.8.0.262.b10-0 - Update to aarch64-shenandoah-jdk8u262-b10. - Switch to GA mode for final release. - Update release notes for 8u262 release. - Fix typo in jfrarches which leads to ppc64 being wrongly excluded. - Split JDK-8042159 patch into per-repo patches as upstream. - Update JDK-8042159 JD...
Unbreakable Enterprise kernel security update
2.6.39-400.323.1 - USB: adutux: fix use-after-free on disconnect Johan Hovold Orabug: 31240297 CVE-2019-19523 - USB: core: Fix races in character device registration and deregistraion Alan Stern Orabug: 31317669 CVE-2019-19537 - USB: iowarrior: fix use-after-free on disconnect Johan Hovold Orabug...
Unbreakable Enterprise kernel security update
4.14.35-1902.10.4.el7uek - kvm: Don't reference vcpu-arch.st in arch-independent code Boris Ostrovsky Orabug: 30489861 - kvm: fix compile on s390 part 2 Christian Borntraeger Orabug: 30489861 - kvm: fix compilation on s390 Paolo Bonzini Orabug: 30489861 - kvm: fix compilation on aarch64 Paolo...
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Adjust...
qemu security update
15:3.1.0-3.el7 - x86: Document CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 as fixed Mark Kanda Orabug: 29744956 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091 15:3.1.0-2.el7 - x86: Add mds feature Karl Heubaum - e1000: Never increment the RX undersize count register...
Unbreakable Enterprise kernel security update
2.6.39-400.308.1 - x86/fpu: Fix 32-bit signal frame handling Dave Hansen Orabug: 28874707 - x86/fpu: Factor out memsetxstate, 0 in fpufinit paths Oleg Nesterov Orabug: 28874707 - x86/fpu: Always allow FPU in interrupt if useeagerfpu Oleg Nesterov Orabug: 28874707 - x86/fpu: Don't do threadfpuend ...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.32.1 - x86/fpu: Factor out memsetxstate, 0 in fpufinit paths Oleg Nesterov Orabug: 29012034 - x86/fpu: Always allow FPU in interrupt if useeagerfpu Oleg Nesterov Orabug: 29012034 - x86/fpu: Fix 32-bit signal frame handling Dave Hansen Orabug: 29012034 - x86/fpu: Don't do...
Unbreakable Enterprise kernel security update
4.1.12-124.23.1 - xfs: don't call xfsdashrinkinode with NULL bp Eric Sandeen Orabug: 28898616 CVE-2018-13094 - ALSA: rawmidi: Change resized buffers atomically Takashi Iwai Orabug: 28898636 CVE-2018-10902 - md/raid5: fix a race condition in stripe batch Shaohua Li Orabug: 28917012 - xfs: don't fa...
glibc security and bug fix update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
Unbreakable Enterprise kernel security update
4.1.12-112.16.7 - mlx4: change the ICM table allocations to lowest needed size Daniel Jurgens Orabug: 27718305 - autofs: use dentry flags to block walks during expire Ian Kent Orabug: 26032471 Orabug: 27766149 - autofs races Al Viro Orabug: 27766149 Orabug: 27766149 - crypto: FIPS - allow tests t...
java-1.7.0-openjdk security update
1:1.7.0.131-2.6.9.0.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.131-2.6.9.0 - Add blacklisted.certs to installation file list. - Resolves: rhbz1410612 1:1.7.0.131-2.6.9.0 - Bump to 2.6.9 and u131b00. - Remove patch application debris in fsg.sh. - Re-generate...
kernel security, bug fix, and enhancement update
3.10.0-327.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327 - mm free compound page with correct order Andrea Arcangeli 1274867 - netdrv revert 'ixgbe: Refactor busy poll socket code to address multiple issues' John Greene 1261275 - powerpc dma: dmasetcoherentmask should not be GPL only...
kernel security, bug fix, and enhancement update
3.10.0-229 - Oracle Linux certificates Alexey Petrenko 3.10.0-229 - net rtnetlink: allow to register ops without ops-setup set Jiri Benc 1186492 3.10.0-228 - fs NFSv4.1: Fix an Oops in nfs41walkclientlist Steve Dickson 1185784 - misc redhat: dont suppress Revert patches from changelog Jarod Wilso...
Oracle Linux 6 kernel security, bug fix and enhancement update
2.6.32-220.el6 - drm i915: fix unmap race condition introduced with VT-d fix Dave Airlie 750583 - scsi iscsi: revert lockless queuecommand dispatch Rob Evers 751426 2.6.32-219.el6 - kernel KEYS: Fix a NULL pointer deref in the user-defined key type David Howells 751190 CVE-2011-4110 - scsi fc...
grub2 security update
2.02-0.87.0.27.el7.14 - Fix OOB write in grubnetsearchconfigfile CVE-2025-0624 Orabug: 37770226 - Also adds implementation of grubstrlcpy for clean backport...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81645...
openssl and openssl-fips-provider security update
openssl 1:3.0.7-27.0.3 - Enable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.2 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-27 - Use certified FIPS module instead of freshly built one ...
avahi security update
0.8-20 - Fix CVE-2023-38469 RHEL-5637 0.8-19 - Fix CVE-2023-38471 RHEL-5642 0.8-18 - Fix CVE-2023-38472 RHEL-5645 0.8-17 - Fix CVE-2023-38470 RHEL-5641 0.8-16 - Fix CVE-2023-38473 RHEL-5729...
rpm security update
4.16.1.3-27 - TOCTOU race in checks for unsafe symlinks CVE-2021-35937 - races with chown/chmod/capabilities calls during installation CVE-2021-35938 - checks for unsafe symlinks are not performed for intermediary directories CVE-2021-35939...