8988 matches found
openssh security update
4.3p2-82.0.2 - CVE-2015-5600: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices John Haxby orabug 22985024 - CVE-2016-3115: missing sanitisation of input for X11 forwarding John Haxby orabug 22985024...
php55-php security update
5.5.21-4 - fix more functions accept paths with NUL character 1213407 5.5.21-3 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026, 1213407 - fileinfo: fix denial of servic...
Oracle Enterprise Linux 5.4 kernel security and bug fix update
2.6.18-164.el5 - misc information leak in sigaltstack Vitaly Mayatskikh 515396 - misc execve: must clear current-clearchildtid Oleg Nesterov 515429 - net igb: set lan id prior to configuring phy Stefan Assmann 508870 - net udp: socket NULL ptr dereference Vitaly Mayatskikh 518043 CVE-2009-2698...
ruby security update
1.8.5-5.el52.5 - Build with -fno-strict-aliasing. 1.8.5-5.el52.4 - security fixes. 461590 - CVE-2008-3655: multiple insufficient safe mode restrictions. - CVE-2008-3656: WEBrick DoS vulnerability CPU consumption. - CVE-2008-3657: missing taintness checks in dl module. - CVE-2008-3905: use of...
webkit2gtk3 security update
2.48.1-1 - Update to 2.48.1 2.48.0-1 - Update to 2.48.0...
python3.12 security update
3.12.5-2.3 - Security fix for CVE-2024-7592 Resolves: RHEL-85300...
python-jinja2 security update
2.10.1-7 - Security fix for CVE-2025-27516 Resolves: RHEL-85066...
gcc security update
4.8.5-45.0.1 - Orabug: 37603707 ELSA-2025-1601 Moderate: gcc security update CVE-2020-11023 rebuild for CVE-2020-11023 - Reviewed-by: Jose E. Marchesi 4.8.5-44.0.5 - fix arm cross building inline issue. gcc48-cfns-fix-protos.patch - Reviewed-by: Jose E. Marchesi 4.8.5-44.0.3 - Orabug: 31505739...
kernel security update
5.14.0-503.31.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
bind security update
32:9.11.36-16.4 - Change patches applying to use -P parameter 32:9.11.36-16.3 - Limit additional section records CPU processing CVE-2024-11187 - Correct ANY queries to not have additional data appended...
gcc-toolset-13-gcc security update
13.3.1-2.2.0.1 - Merge Oracle patches to 13.3.1-2.2. gfortran needs install-info at installation time. Orabug: 36472775 13.3.1-2.2 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78279...
openssl and openssl-fips-provider security update
openssl 1:3.0.7-27.0.3 - Enable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.2 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-27 - Use certified FIPS module instead of freshly built one ...
libfastjson security update
0.99.9-5 - Rebuild Resolves: rhbz2227786 0.99.9-4 - Address CVE-2020-12762 Resolves: rhbz2203172...
procps-ng security and bug fix update
3.3.17-13.0.1 - ps: remove uptime integer conversion Orabug: 35909347 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909347 3.3.17-13 - ps: mitigation of possible buffer overflow - Resolves: rhbz2228504 3.3.17-12 - sysctl: '-N' option shows values instead of names if '-p' -...
libcap security update
2.48-9 - Fix integer overflow in libcapstrdup CVE-2023-2603 Resolves: rhbz2210638 - Correctly check pthreadcreate return value to avoid memory leak CVE-2023-2602 Resolves: rhbz2222198...
curl security update
7.61.1-30.el88.3 - GSS delegation too eager connection re-use CVE-2023-27536 - fix host name wildcard checking CVE-2023-28321 - rebuild certs with 2048-bit RSA keys...
emacs security update
1:27.2-8.1 - Fix etags local command injection vulnerability 2184369 - Fix htmlfontify.el command injection vulnerability 2184368 - Fix ruby-mode.el local command injection vulnerability 2184367 - Fix ob-latex.el command injection vulnerability 2184377 1:27.2-8 - Use a 64KB page size for pdump...
e2fsprogs security update
1.46.5-3 - Add sanity check to extent manipulation 2073549...
fapolicyd security, bug fix, and enhancement update
1.1-6.0.1 - Increase dbmaxsize to 100M 1.1-6 - CVE-2022-1117 fapolicyd: fapolicyd wrongly prepares ld.so path Resolves: rhbz2069120 1.1-4 RHEL 8.6.0 ERRATUM - fapolicyd denies access to /usr/lib64/ld-2.28.so Resolves: rhbz2066300 1.1-1 RHEL 8.6.0 ERRATUM - rebase to 1.1 Resolves: rhbz1939379 -...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 5.4.17-2102.204.4.1 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: F...
thunderbird security update
78.10.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.10.0-1 - Update to 78.10.0...
squid security update
7:3.5.20-17.6 - Resolves: 1944256 - CVE-2020-25097 squid: improper input validation may allow a trusted client to perform HTTP Request Smuggling...
nettle security update
2.7.1-9 - Port fixes for potential miscalculation in ecdsaverify 1943156...
qemu security update
15:4.2.1-5.el7 - qemu.spec: use --tls-priority=NORMAL for OL7 Elena Ufimtseva - hostmem: fix default 'prealloc-threads' count Mark Kanda Orabug: 32472127 - hostmem: introduce 'prealloc-threads' property Igor Mammedov - qom: introduce objectregistersugarprop Paolo Bonzini - migration/multifd: Do...
Unbreakable Enterprise kernel security update
5.4.17-2011.2.2uek - scsi: qla2xxx: Move free of fcport out of interrupt context Joe Carnuccio Orabug: 31225231 - xfs: move inode flush to the sync workqueue Darrick J. Wong Orabug: 31132665 - arm64: Kconfig: Enable NODESSPANOTHERNODES config for NUMA Hoan Tran Orabug: 31049202 - scsi: bnx2fc:...
Unbreakable Enterprise kernel security update
2.6.39-400.318.1 - x86/speculation: Determine swapgs before alternative instructions are set Patrick Colp Orabug: 30379640 - scsi: libsas: delete sas port if expander discover failed Jason Yan Orabug: 30580689 CVE-2019-15807...
kernel security update
4.18.0-147.0.21.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.0.21 - drm drm/i915: Lower RM timeout to avoid DSI hard hangs Dav...
kernel security update
3.10.0-1062.1.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.1.2 - vhost vhost: make sure lognum innum Eugenio Perez 1750879 1750880...
poppler security update
0.66.0-11.el80.12 - Ignore dict Length if it is broken - Resolves: 1741146 0.66.0-11.el80.11 - Check whether input is RGB in PSOutputDev::checkPageSlice - also when using '-optimizecolorspace' flag - Resolves: 1741145 0.66.0-11.el80.10 - Fail gracefully if not all components of JPEG2000Stream -...
kernel security, bug fix, and enhancement update
3.10.0-957.5.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.5.1 - fs revert 'fs sunrpc: Ensure we always close the socket after a...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.17.5 - block: fix use-after-free in seq file Vegard Nossum Orabug: 25877530 CVE-2016-7910...
nss and nss-util security update
nss 3.21.3-2.0.1 - Added nss-vendor.patch to change vendor 3.21.3-2 - Mozilla 1314604 / Red Hat CVE-2016-8635 3.21.3-1.1 - rebuild 3.21.3-1 - Rebase to NSS 3.21.3 - Resolves: 1383887 nss-util 3.21.3-1.1 - rebuild 3.21.3-1 - Rebase to nss-3.21.3 - Remove patch for CVE-2016-1950, which is included ...
libxml2 security update
2.9.1-6.0.1.3 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball libxml2-2.9.1-6.3 - Heap-based buffer overread in xmlNextChar CVE-2016-1762 - Bug 763071: Heap-buffer-overflow in xmlStrncat CVE-2016-1834 - Bug 757711: Heap-buffer-overflow in...
firefox security update
38.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.7.0-1 - Update to 38.7.0 ESR...
php security update
5.1.6-44 - add security fixes for CVE-2006-7243, CVE-2009-0689...
glibc security update
2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni Oracle history: March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string functions Reviewed-by: Jose E. Marchesi March-17-2025 Cupertino Miranda - 2.28-251.0.2.14 - Forward port of...
.NET 8.0 security, bug fix, and enhancement update
8.0.114-1.0.1 - Add support for Oracle Linux 8.0.114-1 - Update to .NET SDK 8.0.114 and Runtime 8.0.14 - Resolves: RHEL-81639...
libxml2 security update
2.9.13-6.2 - Fix CVE-2024-56171 RHEL-80128 - Fix CVE-2025-24928 RHEL-80143...
mysql:8.0 security update
mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: 2180411 mecab-ipadic 2.7.0.20070801-17.0.1 - Rename the LICENSE.Fedora to LICENSE.oracle 2.7.0.20070801-17 - Bump the release - Resolves:...
samba security, bug fix, and enhancement update
evolution-mapi 3.28.3-8 - Related: 2190417 - Rebuild for samba rebase to 4.18.x openchange 2.3-32.0.1 - Use ldconfigscriptlets 2.3-32 - Related: 2190417 Rebuild for samba rebase to 4.18.x samba 4.18.6-1 - related: rhbz2190417 - Update to version 4.18.6 - resolves: rhbz2232564 - Fix the rpc...
c-ares security, bug fix, and enhancement update
1.19.1-1 - Resolves: rhbz2209564 - CVE-2023-31124 c-ares: AutoTools does not set CARESRANDOMFILE during cross compilation rhel-9 - Resolves: rhbz2209556 - CVE-2023-31130 c-ares: Buffer Underwrite in aresinetnetpton rhel-9 - Resolves: rhbz2209550 - CVE-2023-31147 c-ares: Insufficient randomness in...
libtirpc security update
1.3.3 - Rebased to libtirpc-1.3.3 bz 2118157...
gnupg2 security update
2.3.3-2 - Fix CVE-2022-34903 2108449...
cairo and pixman security and bug fix update
cairo 1.15.12-6 - Fix CVE reference test 1908113 1.15.12-5 - Add reference test to CVE fix 1908113 1.15.12-4 - Fix CVE-2020-35492 1908113 pixman 0.38.4-2 - Backport the pixman part of cairo CVE-2020-35492...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.304.4.5 - lib/ioviter: initialize 'flags' in new pipebuffer Max Kellermann Orabug: 33942329 CVE-2022-0847 - bpf: Disallow unprivileged bpf by default Pawan Gupta Orabug: 33942374...
Unbreakable Enterprise kernel security update
5.4.17-2102.203.6.el8uek - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.55-1 - Rebase to 0.6.55 Resolves: 1846376 atkmm 2.24.2-7 - Rebuild for annobin fixes - Resolves: rhbz1703969 cairomm 1.12.0-8 - Rebuild for the annobin fixes - Resolves: rhbz1703971 chrome-gnome-shell 10.1-7 - Disable updates support Resolves: 1802105 dleyna-core 0.6.0-3 - Don...
kernel security and bug fix update
3.10.0-1160.6.1.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.6.1 - net netfilter:...
php:7.3 security, bug fix, and enhancement update
php 7.3.20-1 - update to 7.3.20 1856655 php-pear 1:1.10.9-1 - update PEAR to 1.10.9 - update ArchiveTar to 1.4.7 - update ConsoleGetopt to 1.4.2...
nodejs:12 security update
nodejs 1:12.16.1-2 - Fix CVE-2020-10531 1:12.16.1-1 - Resolves: RHBZ1800393, RHBZ1800394, RHBZ1800380 - Rebase to 12.16.1 1:12.14.1-1 - Rebase to 12.14.1 1:12.13.1-1 - Resolves: RHBZ 1773503, update to 12.13.1 - minor clean up and sync with Fedora spec - turn off debug builds 1:12.4.0-2 -...