8988 matches found
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...
openssl security update
3.2.2-6.0.1.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 1:3.2.2-6.1 - RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797...
unbound:1.16.2 security update
1.16.2-8.1 - Fix unbounded name compression could lead to Denial of Service CVE-2024-8508 1.16.2-8 - Ensure group access correction reaches also updated configs CVE-2024-1488 1.16.2-7 - Ensure only unbound group can change configuration CVE-2024-1488 1.16.2-6 - Fix KeyTrap - Extreme CPU consumpti...
runc security update
4:1.1.13-4 - rebuild against new golang - Resolves: RHEL-46380 4:1.1.13-3 - rebuild against golang-1.22.4 - Resolves: RHEL-46380 4:1.1.13-2 - rebuild - Resolves: RHEL-46380 4:1.1.13-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.13 - Related: RHEL-27608 4:1.1.12-2 - Switch...
.NET 7.0 security, bug fix, and enhancement update
7.0.110-1.0.1 - Update to .NET SDK 7.0.110 and Runtime 7.0.10 - Resolves: RHBZ2228571...
Unbreakable Enterprise kernel security update
4.1.12-124.76.2 - firewire: fix potential uaf in outboundphypacketcallback Chengfeng Ye Orabug: 35493606 CVE-2023-3159 - ath9k: fix use-after-free in ath9khifusbrxcb Pavel Skripkin Orabug: 35448003 CVE-2022-1679 - dm ioctl: fix nested locking in tableclear to remove deadlock concern Mike Snitzer...
libwebp security update
1.0.0-8 - Added fix for mzbz1819244...
virt:ol and virt-devel:ol security, bug fix, and enhancement update
hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 1.3.18-22.el8 - Resolves: bz2000225 Rebase virt:rhel module:stream based on AV-8.6 libguestfs 1.44.0-5.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug:...
gcc-toolset-11-annobin security update
9.85-1.1 - Annocheck: Add test for multibyte characters in symbol names. 2017367...
httpd security update
2.4.6-97.0.1.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.1 - Resolves: 2011729 - CVE-2021-40438 httpd: modproxy: SSRF via a crafted request uri-path containing 'unix:'...
Unbreakable Enterprise kernel security update
4.1.12-124.52.5 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135634 CVE-2021-33909...
python27:2.7 security and bug fix update
python2 2.7.18-4.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 2.7.18-4 - Security fix for CVE-2021-3177 Resolves: rhbz1919163 2.7.18-3 - Fixes for bundling prefix=/app build in gimp/inkscape containers Resolves: rhbz1907592 2.7.18-2 - Security fix for CVE-2020-26116: Reject...
tomcat security update
0:7.0.76-16 - Resolves: rhbz1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling...
firefox security update
68.8.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Wed Apr 29 2020 Jan Horak - Update to 68.8.0 build1 68.7.0-3 - Added fix for rhbz1821418...
ImageMagick security, bug fix, and enhancement update
autotrace 0.31.1-38 - Resolves: 1765205 rebuild against new IM emacs 1:24.3-23 - Resolves: 1765208 rebuild against new IM ImageMagick 6.9.10.68-3 - Fixing freeze when svg file contains class='' 6.9.10.68-2 - Fixed ghostscript fonts, fixed multilib conflicts 6.9.10.68-1 - Rebase to 6.9.10.68...
kernel security, bug fix, and enhancement update
3.10.0-1062.18.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.18.1 - x86 x86/boot/64: Round memory hole size up to next PMD page Fra...
curl security update
7.19.7-54.0.2 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug:30568724 462...
java-11-openjdk security update
1:11.0.6.10-1.0.1 - link atomic for ix86 build 1:11.0.6.10-1 - Add JDK-8236039 backport to resolve OpenShift blocker - Resolves: rhbz1785753 1:11.0.6.10-0 - Update to shenandoah-jdk-11.0.6+10 GA - Switch to GA mode for final release. - Resolves: rhbz1785753 1:11.0.6.1-0.1.ea - Update to...
mysql:8.0 security update
mecab 0.996-1.9 - Release bump for rebuilding on new arches Related: 1518842 0.996-1.8 - skip %verify of /etc/opt/rh/rh-mysql57/mecabrc Resolves: 1382315 0.996-1.7 - Prefix library major number with SCL name in soname 0.996-1.6 - Require runtime package from the scl 0.996-1.5 - Convert to SCL...
qemu security update
15:3.1.0-5.el7 - Only enable the halt poll control MSR if it is supported by the host Mark Kanda Orabug: 29946722 15:3.1.0-4.el7 - kvm: i386: halt poll control MSR support Marcelo Tosatti Orabug: 29933278 - Document CVEs as fixed: CVE-2017-9524, CVE-2017-6058, CVE-2017-5931 Mark Kanda Orabug:...
Unbreakable Enterprise kernel security update
4.1.12-124.22.4 - Revert commit 8bd274934987 'block: fix bdi vs gendisk lifetime mismatch' Ashish Samant Orabug: 28968102 - KVM/x86: Add IBPB support Ashok Raj Orabug: 28703712 - x86/intel/spectrev2: Remove unnecessary retpcompiler test Boris Ostrovsky Orabug: 28814570 - x86/intel/spectrev4:...
java-1.7.0-openjdk security update
1:1.7.0.171-2.6.13.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.171-2.6.13.0 - Bump to 2.6.13 and u171b01. - Update java-1.7.0-openjdk-java-access-bridge-security.patch to apply after 8186080 - Update RC4 patch 8076221/PR2809 to apply after 8148108 DH lower limit increase - Fix file path in...
microcode_ctl security update
1:1.17-25.2 - Update Intel CPU microde for 06-3f-02, 06-4f-01, and 06-55-04 - Add amd microcodeamdfam17h.bin data file - Resolves: 1527357 1:1.17-25.1 - Update microcode data file to 20170707 revision. - Resolves: 1465143...
java-1.8.0-openjdk security update
1:1.8.0.121-0.b13 - Update to aarch64-jdk8u121-b13. - Update PR1834/RH1022017 fix to reduce curves reported by SSL to apply against u121. - Re-generate RH1393047 ObjectInputStream patch against u121. - Resolves: rhbz1410612 1:1.8.0.112-0.b16 - Update to aarch64-jdk8u112-b16. - Drop upstreamed...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.16.2 - net: avoid signed overflows for SOSND|RCVBUFFORCE Eric Dumazet Orabug: 25203623 CVE-2016-9793 3.8.13-118.16.1 - nvme: Limit command retries Ashok Vairavan Orabug: 25374794 - tcp: fix use after free in tcpxmitretransmitqueue Eric Dumazet Orabug: 25374371 CVE-2016-6828 ...
kernel security, bug fix, and enhancement update
2.6.18-274.17.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boot up wi...
kernel security and bug fix update
2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...
grub2 security update
2.06-94.0.1 - Rework the scripts to cover both in-place upgrade and update scenarios Orabug: 36768566 - Restore correct order of processing config files Orabug: 36758359 - Support setting custom kernels as default kernels Orabug: 36043978 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix...
python3 security update
3.6.8-21.0.3 - Fix DoS parsing crafted tarfile headers Orabug: 37626372CVE-2024-6232 - Disable testsocket in the PGO profile task...
kernel security update
5.14.0-503.23.25.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.521.4.el7 - tcp: Tunables for TCP delayed ack min and max timers Venkat Venkatsubra Orabug: 34883100 4.14.35-2047.521.3.el7 - Revert 'random: use expired timer rather than wq for mixing fast pool' Saeed Mirzamohammadi Orabug: 34918228 4.14.35-2047.521.2.el7 - RDS/IB: Fix the misplace...
nodejs:18 security update
nodejs 1:18.8.0-1 - Rebase to version 18.8.0 - Include sources for WASM blobs nodejs-packaging 2021.06-4 - NPM bundler: also find namespaced bundled dependencies 2021.06-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora35MassRebuild 2021.06-2 - Fix hard-coded output directory in the bundler...
qemu security update
15:4.2.1-17.el7 - arm/acpi: fix an out of spec UID for PCI root Michael S. Tsirkin - arm/acpi: fix duplicated UID of PCI interrupt link devices Heyi Guo - arm/acpi: fix PCI PRT definition Heyi Guo - docs: fix references to docs/devel/atomics.rst Stefano Garzarella Orabug: 33659123 - rcu: do not...
php:7.4 security update
libzip 1.6.1-1 - update to 1.6.1 - enable lzma support php-pear 1:1.10.12-1 - update PEAR to 1.10.12 - update ArchiveTar to 1.4.9 - update ConsoleGetopt to 1.4.3 - update XMLUtil to 1.4.5 php-pecl-apcu 5.1.18-1 - update to 5.1.18 php-pecl-rrd php-pecl-xdebug 2.9.5-1 - update to 2.9.5 php-pecl-zip...
libgcrypt security update
1.8.5-6fips - Add API to provide hash calculation in RSA/DSA/ECDSA signature operations Orabug: 33081130 - Change Epoch from 1 to 10 1.8.5-6 - Fix for CVE-2021-33560 1971421 - Enable HW optimizations in FIPS 1976137 - Performance enchancements for ChaCha20 and Poly1305 1855231 1.8.5-5 - Performan...
container-tools:3.0 security update
buildah 1.19.7-1.0.1 - Handling redirect from the docker registry Orabug: 29874238 Nikita Gerasimov 1.19.7-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/a2854ed - Resolves: 1935376 cockpit-podman 29-2 - fix...
dotnet5.0 security and bugfix update
5.0.203-1.0.1 - Add support for new Oracle release 5.0.203-1 - Update to .NET SDK 5.0.203 and Runtime 5.0.6 - Resolves: RHBZ1954328 5.0.202-1 - Update to .NET SDK 5.0.202 and Runtime 5.0.5 - Resolves: RHBZ1947662...
perl security update
4:5.26.3-417 - Fix CVE-2020-12723 bug 1909860 - Fix Time-Local tests to pass after year 2019 bug 1807120...
mariadb:10.3 security, bug fix, and enhancement update
asio 1.10.8-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 1.10.8-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 1.10.8-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild 1.10.8-4 - Rebuilt for Boost 1.64 1.10.8-3 - Rebuilt for...
microcode_ctl security, bug fix, and enhancement update
3:1.17-33.31.0.1 - recognize the 'force-intel' file path available on EL7+ orabug 31655792 - disable live load during %post due to UEK4 rendezvous timeouts orabug 31655792 - merge Oracle changes for early load via dracut - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 - remove...
Unbreakable Enterprise kernel security update
4.14.35-1902.303.4.1 - x86/speculation: Add SRBDS vulnerability and mitigation documentation Mark Gross Orabug: 31422209 CVE-2020-0543 - x86/speculation: Add Special Register Buffer Data Sampling SRBDS mitigation Mark Gross Orabug: 31422209 CVE-2020-0543 - x86/cpu: Add 'table' argument to...
tomcat6 security update
0:6.0.24-114 - Related: rhbz1806803 Update patch to remove secret attribute renaming 0:6.0.24-113 - Related: rhbz1806803 Add IIS attributes to filter pattern and update secret logic 0:6.0.24-112 - Resolves: rhbz1806803 CVE-2020-1938 tomcat6: tomcat: Apache Tomcat AJP File Read/Inclusion...
pki-deps:10.6 security update
jackson-databind...
thunderbird security update
60.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.9.0-1 - Update to 60.9.0...
libwmf security update
0.2.9-8 - Related: rhbz1717799 fix clang warning 0.2.9-7 - Related: rhbz1717799 bump n-v-r 0.2.9-6 - Related: rhbz1679006 bump n-v-r 0.2.9-5 - Resolves: rhbz1679006 libgd CVE-2019-6978...
firefox security update
60.9.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.9.0-1 - Update to 60.9.0 ESR...
polkit security and bug fix update
0.112-22.0.1 - Increase timeout to avoid defunct processes Orabug: 26930744 0.112-22 - pkttyagent: polkit-agent-helper-1 timeout leaves tty echo disabled - Resolves: rhbz1325512 0.112-21 - Mitigation of regression caused by fix of CVE-2018-19788 - Resolves: rhbz1656377 0.112-20 - Fix of...
systemd security update
219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default fo...
Unbreakable Enterprise kernel security update
4.1.12-124.25.1 - x86/bugs: Fix the AMD SSBD usage of the SPECCTRL MSR Tom Lendacky Orabug: 28870524 CVE-2018-3639 - x86/bugs: Add AMD's SPECCTRL MSR usage Konrad Rzeszutek Wilk Orabug: 28870524 CVE-2018-3639 - x86/cpufeatures: rename X86FEATUREAMDSSBD to X86FEATURELSCFGSSBD Mihai Carabas Orabug:...
ntp security, bug fix, and enhancement update
4.2.6p5-28.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-28 - fix buffer overflow in datum refclock driver CVE-2017-6462 - fix crash with invalid unpeer command CVE-2017-6463 - fix potential crash with invalid server command CVE-2017-6464 - add Spectracom TSYNC...