8988 matches found
kernel security update
3.10.0-957.12.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.12.2 - x86 x86/speculation/mds: Add SMT warning message Waiman Long 1692597...
ghostscript security and bug fix update
9.07-31.el76.6 - Resolves: 1657822 - ghostscript: Regression: Warning: Dropping incorrect smooth shading object Error: /rangecheck in --run-- 9.07-31.el76.5 - Resolves: 1654621 - CVE-2018-16541 ghostscript: incorrect free logic in pagedevice replacement 699664 - Resolves: 1650210 - CVE-2018-17183...
ntp security update
4.2.6p5-25.0.1.el73.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-25.el73.1 - don't limit rate of packets from sources CVE-2016-7426 - don't change interface from received packets CVE-2016-7429 - fix calculation of root distance again CVE-2016-7433 - require...
glibc security update
2.5-123.0.1.el511.3 - Switch to use malloc when the input line is too long Orabug 19951108 Jason Luan - Use a /sys/devices/system/cpu/online for SCNPROCESSORSONLN implementation Orabug 17642251 Joe Jin 2.5-123.3 - Fix invalid-free when using getaddrinfo and AIIDN CVE-2013-7424, 2.5-123.1 - Fix...
glibc security and bug fix update
2.17-78.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-78 - Fix ppc64le builds 1077389. 2.17-77 - Fix parsing of numeric hosts in gethostbynamer...
openssh security, bug fix, and enhancement update
5.3p1-104 - ignore SIGXFSZ in postauth monitor child 1133906 5.3p1-103 - don't try to generate DSA keys in the init script in FIPS mode 1118735 5.3p1-102 - ignore SIGPIPE in ssh-keyscan 1108836 5.3p1-101 - ssh-add: fix fatal exit when removing card 1042519 5.3p1-100 - fix race in backported...
Oracle Linux 6 Unbreakable Enterprise kernel security and bug fix update
2.6.32-200.16.1.el6uek - Revert change to restore DEFAULTKERNEL 2.6.32-200.15.1.el6uek - Add -u parameter to kernelvariantpost to make it work properly for uek orabug 12819958 2.6.32-200.14.1.el6uek - Restore DEFAULTKERNEL value to kernel-uek orabug 12819958 2.6.32-200.13.1.el6uek - make default...
device-mapper-multipath security and bug fix update
0.8.4-37 - Fix bugzilla linked to the changes was previously linked to the wrong bug, 2162537 - Resolves: bz 2166468 0.8.4-36 - Add 0129-libmultipath-select-resize-action-even-if-reload-is-.patch - Add 0130-libmultipath-cleanup-ACTCREATE-code-in-selectactio.patch - Add...
python-lxml security update
4.6.5-3 - Security fix for CVE-2022-2309 - Resolves: rhbz2107571...
Unbreakable Enterprise kernel security update
4.14.35-2047.513.2.1 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34175592 CVE-2022-1729...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653 CVE-2021-3653...
dhcp security update
12:4.3.6-44.1 - Fix for CVE-2021-25217...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.104.5.el7 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
Unbreakable Enterprise kernel security update
4.14.35-2025.403.3 - RDMA/umem: Move to allocate SG table from pages Maor Gottlieb Orabug: 32005117 - lib/scatterlist: Add support in dynamic allocation of SG table from pages Maor Gottlieb Orabug: 32005117 - lib/scatterlist: Add SGCHAIN and SGEND macros for LSB encodings Anshuman Khandual Orabug...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.46.1 - ipv6: only static routes qualify for equal cost multipathing Hannes Frederic Sowa Orabug: 30977687 CVE-2013-4125 - USB: adutux: fix use-after-free on disconnect Johan Hovold Orabug: 31240296 CVE-2019-19523 - USB: core: Fix races in character device registration and...
firefox security update
68.3.0-1.0.1 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.3.0-1 - Update to 68.3.0 ESR 68.2.0-4 - Added patch for TLS 1.3 support. 68.2.0-3 - Rebuild 68.2.0-2 - Rebuild...
libssh2 security, bug fix, and enhancement update
1.8.0-3 - sanitize public header file detected by rpmdiff 1.8.0-2 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix out-of-bounds memory comparison with specially crafted message channel request CVE-2019-3862 - fix out-of-bounds reads wit...
docker-engine security update
17.06.2.ol-1.0.6 - update the version string of runc to show the CVE fixed 17.06.2.ol-1.0.4 - build using Go 1.10.8 - apply fix for runc CVE-2019-5736 17.06.2.ol-1.0.3 - spec: do not replace config files Jacob Wen Orabug: 28235986...
Unbreakable Enterprise kernel security update
4.14.35-1818.5.4 - RDS: null pointer dereference in rdsatomicfreeop Mohamed Ghannam Orabug: 28020694 CVE-2018-5333 - x86/speculation: Make enhanced IBRS the default spectre v2 mitigation Alejandro Jimenez Orabug: 28474853 - x86/speculation: Enable enhanced IBRS usage Alejandro Jimenez Orabug:...
openssl security update
1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
kernel security and bug fix update
3.10.0-327.10.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.10.1 - of return NUMANONODE from fallback ofnodetonid Thadeu Lima de Souza Cascardo 1300614 1294398 - net openvswitch: do not allocate memory from offline numa node Thadeu Lima de Souza Cascardo 1300614 1294398...
php54-php security update
5.4.40-3 - fix more functions accept paths with NUL character 1213407 5.4.40-2 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026 - ftp: fix integer overflow leading to he...
kernel security and bug fix update
2.6.18-238.5.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
kernel security update
4.18.0-553.44.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security update
4.18.0-553.40.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
squashfs-tools security update
4.4-10.git1 - CVE-2021-41072 squashfs-tools: additional write outside destination directory exploit fix CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination rhbz2007304 RHEL-7763 4.4-9.git1 - CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing...
nss security update
3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...
shadow-utils security and bug fix update
2:4.9-8 - gpasswd: fix password leak. Resolves: 2215948 2:4.9-7 - useradd: check if subid range exists for user. Resolves: 2179987 - findnewguid: Skip over IDs that are reserved for legacy reasons. Resolves: 2179988...
libarchive security update
3.5.3-4 - Resolves: CVE-2022-36227...
Unbreakable Enterprise kernel security update
4.14.35-2047.524.5 - rds/ib: Fix the softlock-up in RDS cache GC worker Arumugam Kolappan Orabug: 35079728 4.14.35-2047.524.4 - xfs: add missing cmap-brstate = XFSEXTNORM update Gao Xiang Orabug: 35202792 - x86/tsc: Disable clocksource watchdog for TSC on qualified platorms Feng Tang Orabug:...
expat security update
2.2.5-4.0.1.3 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314...
nginx:1.20 security update
1.20.1-1.0.1 - Remove Red Hat references Orabug: 29498217 1:1.20.1-1 - rebase to 1.20.1 addressing CVE-2021-23017...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.507.7.4.el7 - KVM: x86: Check kvmrebooting in kvmspuriousfault Sean Christopherson Orabug: 33362693 4.14.35-2047.507.7.3 - arm64: Reserve elfcorehdr before scanning reserved memory from device tree Dave Kleikamp Orabug: 33354710 4.14.35-2047.507.7.2 - net: geneve: modify IP header...
kernel security, bug fix, and enhancement update
4.18.0-305.19.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security and bug fix update
3.10.0-1160.41.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
ruby:2.6 security, bug fix, and enhancement update
ruby 2.6.7-107 - Upgrade to Ruby 2.6.7. Resolves: rhbz1952627 - Resolv::DNS: timeouts if multiple IPv6 name servers are given an address containing leading zero Resolves: rhbz1954968 - Fix: Rubygem-bundler: Don't use insecure tmp directory as home allows for execution of malicious code. Resolves:...
kernel security and bug fix update
4.18.0-240.8.13.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64...
curl security update
7.29.0-54.0.5.el77.2 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug:30568724...
python-pillow security update
5.1.1-10 - Bump and rebuild for gating to deliver CVE fixes Resolves: rhbz1789535 5.1.1-9 - Fix for CVE-2020-5311 - out-of-bounds write in expandrow Resolves: rhbz1789535 5.1.1-8 - Combined fixes for CVE-2020-5312 and CVE-2019-16865 Resolves: rhbz1789533 Resolves: rhbz1774066...
kernel security and bug fix update
4.18.0-147.5.11.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.5.11 - powerpc powerpc/shared: Use static key to detect shared...
container-tools:1.0 security and bug fix update
...
kernel security update
2.6.32-754.23.1.OL6 - Update genkey bug 25599697 2.6.32-754.23.1 - vhost vhost: make sure lognum innum Eugenio Perez 1750869 1750869 CVE-2019-14835...
firefox security update
60.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.4.0-1 - Update to 60.4.0 ESR 60.3.0-2 - Added firefox-gnome-shell-extension 60.3.0-1 - Update to 60.3.0 ESR...
Unbreakable Enterprise kernel security update
4.1.12-124.19.2 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: avoid...
Unbreakable Enterprise kernel security update
2.6.39-400.298.3 - ext4: limit group search loop for non-extent files Lachlan McIlroy Orabug: 17488415 - ext4: fixup 64-bit divides in 3.0-stable backport of upstream fix Todd Poynor Orabug: 17488415 - ext4: use atomic64t for the per-flexbg freeclusters count Theodore Ts'o Orabug: 17488415 - ext4...
ntp security update
4.2.6p5-5.el67.2 - check origin timestamp before accepting KoD RATE packet CVE-2015-7704 - allow only one step larger than panic threshold with -g CVE-2015-5300...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-35.el6uek - ntty: Fix nttywrite crash when echoing in raw mode Peter Hurley Orabug: 18754908 CVE-2014-0196 CVE-2014-0196 3.8.13-34.el6uek - aacraid: missing capable check in compat ioctl Dan Carpenter Orabug: 18721960 CVE-2013-6383 - vhost: fix total length when packets are too...
kernel security update
3.10.0-1160.119.1.0.6.el7.OL7 - media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat Benoit Sevens CVE-2024-53104 Orabug: 37584712...
rsync security update
3.1.3-21 - Resolves: RHEL-70207 - Path traversal vulnerability in rsync...
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...