9170 matches found
openssl security update
1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
glibc security and bug fix update
2.17-78.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-78 - Fix ppc64le builds 1077389. 2.17-77 - Fix parsing of numeric hosts in gethostbynamer...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-35.el6uek - ntty: Fix nttywrite crash when echoing in raw mode Peter Hurley Orabug: 18754908 CVE-2014-0196 CVE-2014-0196 3.8.13-34.el6uek - aacraid: missing capable check in compat ioctl Dan Carpenter Orabug: 18721960 CVE-2013-6383 - vhost: fix total length when packets are too...
kernel security and bug fix update
2.6.18-238.5.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
kernel security update
5.14.0-503.38.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel security update
3.10.0-1160.119.1.0.6.el7.OL7 - media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat Benoit Sevens CVE-2024-53104 Orabug: 37584712...
rsync security update
3.1.3-21 - Resolves: RHEL-70207 - Path traversal vulnerability in rsync...
openssl security update
3.2.2-6.0.1.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 1:3.2.2-6.1 - RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797...
shadow-utils security and bug fix update
2:4.9-8 - gpasswd: fix password leak. Resolves: 2215948 2:4.9-7 - useradd: check if subid range exists for user. Resolves: 2179987 - findnewguid: Skip over IDs that are reserved for legacy reasons. Resolves: 2179988...
libarchive security update
3.5.3-4 - Resolves: CVE-2022-36227...
qemu security update
15:4.2.1-17.el7 - arm/acpi: fix an out of spec UID for PCI root Michael S. Tsirkin - arm/acpi: fix duplicated UID of PCI interrupt link devices Heyi Guo - arm/acpi: fix PCI PRT definition Heyi Guo - docs: fix references to docs/devel/atomics.rst Stefano Garzarella Orabug: 33659123 - rcu: do not...
Unbreakable Enterprise kernel security update
4.14.35-2047.513.2.1 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34175592 CVE-2022-1729...
php:7.4 security update
libzip 1.6.1-1 - update to 1.6.1 - enable lzma support php-pear 1:1.10.12-1 - update PEAR to 1.10.12 - update ArchiveTar to 1.4.9 - update ConsoleGetopt to 1.4.3 - update XMLUtil to 1.4.5 php-pecl-apcu 5.1.18-1 - update to 5.1.18 php-pecl-rrd php-pecl-xdebug 2.9.5-1 - update to 2.9.5 php-pecl-zip...
container-tools:ol8 security, bug fix, and enhancement update
buildah 1:1.24.2-4 - update to the latest content of https://github.com/containers/buildah/tree/release-1.24 https://github.com/containers/buildah/commit/7b559a3 - Related: 2059296 1:1.24.2-3 - switch to RHEL maintenance branch which fixes CVE-2022-27651 - Resolves: 2067559 1:1.24.2-2 - Add patch...
libgcrypt security update
1.8.5-6fips - Add API to provide hash calculation in RSA/DSA/ECDSA signature operations Orabug: 33081130 - Change Epoch from 1 to 10 1.8.5-6 - Fix for CVE-2021-33560 1971421 - Enable HW optimizations in FIPS 1976137 - Performance enchancements for ChaCha20 and Poly1305 1855231 1.8.5-5 - Performan...
expat security update
2.2.5-4.0.1.3 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314...
httpd security update
2.4.6-97.0.1.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.1 - Resolves: 2011729 - CVE-2021-40438 httpd: modproxy: SSRF via a crafted request uri-path containing 'unix:'...
go-toolset:ol8 security, bug fix, and enhancement update
golang 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-4 - Related: rhbz1978567 go-toolset 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-2 - Related: rhbz1978567...
Unbreakable Enterprise kernel security update
4.1.12-124.52.5 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135634 CVE-2021-33909...
python27:2.7 security and bug fix update
python2 2.7.18-4.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 2.7.18-4 - Security fix for CVE-2021-3177 Resolves: rhbz1919163 2.7.18-3 - Fixes for bundling prefix=/app build in gimp/inkscape containers Resolves: rhbz1907592 2.7.18-2 - Security fix for CVE-2020-26116: Reject...
tomcat security update
0:7.0.76-16 - Resolves: rhbz1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling...
ImageMagick security, bug fix, and enhancement update
autotrace 0.31.1-38 - Resolves: 1765205 rebuild against new IM emacs 1:24.3-23 - Resolves: 1765208 rebuild against new IM ImageMagick 6.9.10.68-3 - Fixing freeze when svg file contains class='' 6.9.10.68-2 - Fixed ghostscript fonts, fixed multilib conflicts 6.9.10.68-1 - Rebase to 6.9.10.68...
curl security update
7.29.0-54.0.5.el77.2 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug:30568724...
python-pillow security update
5.1.1-10 - Bump and rebuild for gating to deliver CVE fixes Resolves: rhbz1789535 5.1.1-9 - Fix for CVE-2020-5311 - out-of-bounds write in expandrow Resolves: rhbz1789535 5.1.1-8 - Combined fixes for CVE-2020-5312 and CVE-2019-16865 Resolves: rhbz1789533 Resolves: rhbz1774066...
kernel security and bug fix update
4.18.0-147.5.11.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.5.11 - powerpc powerpc/shared: Use static key to detect shared...
container-tools:1.0 security and bug fix update
...
kernel security update
2.6.32-754.23.1.OL6 - Update genkey bug 25599697 2.6.32-754.23.1 - vhost vhost: make sure lognum innum Eugenio Perez 1750869 1750869 CVE-2019-14835...
systemd security update
219-62.0.4 - do not create utmp update symlinks for reboot and poweroff Orabug: 27854896 - OL7 udev rule for virtio net standby interface Orabug: 28826743 - fix netdev is missing for iscsi entry in /etc/fstab Orabug: 25897792 [email protected] - set 'RemoveIPC=no' in logind.conf as default fo...
docker-engine security update
17.06.2.ol-1.0.6 - update the version string of runc to show the CVE fixed 17.06.2.ol-1.0.4 - build using Go 1.10.8 - apply fix for runc CVE-2019-5736 17.06.2.ol-1.0.3 - spec: do not replace config files Jacob Wen Orabug: 28235986...
Unbreakable Enterprise kernel security update
4.1.12-124.25.1 - x86/bugs: Fix the AMD SSBD usage of the SPECCTRL MSR Tom Lendacky Orabug: 28870524 CVE-2018-3639 - x86/bugs: Add AMD's SPECCTRL MSR usage Konrad Rzeszutek Wilk Orabug: 28870524 CVE-2018-3639 - x86/cpufeatures: rename X86FEATUREAMDSSBD to X86FEATURELSCFGSSBD Mihai Carabas Orabug:...
firefox security update
60.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.4.0-1 - Update to 60.4.0 ESR 60.3.0-2 - Added firefox-gnome-shell-extension 60.3.0-1 - Update to 60.3.0 ESR...
Unbreakable Enterprise kernel security update
4.1.12-124.22.4 - Revert commit 8bd274934987 'block: fix bdi vs gendisk lifetime mismatch' Ashish Samant Orabug: 28968102 - KVM/x86: Add IBPB support Ashok Raj Orabug: 28703712 - x86/intel/spectrev2: Remove unnecessary retpcompiler test Boris Ostrovsky Orabug: 28814570 - x86/intel/spectrev4:...
kernel security, bug fix, and enhancement update
3.10.0-514.6.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.6.1 - net sctp: validate chunk len before actually using it Hangbin Liu...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.16.2 - net: avoid signed overflows for SOSND|RCVBUFFORCE Eric Dumazet Orabug: 25203623 CVE-2016-9793 3.8.13-118.16.1 - nvme: Limit command retries Ashok Vairavan Orabug: 25374794 - tcp: fix use after free in tcpxmitretransmitqueue Eric Dumazet Orabug: 25374371 CVE-2016-6828 ...
apache-commons-collections security update
3.2.1-22 - Fix Java object de-serialization vulnerability - Resolves: CVE-2015-7501...
ntp security update
4.2.6p5-5.el67.2 - check origin timestamp before accepting KoD RATE packet CVE-2015-7704 - allow only one step larger than panic threshold with -g CVE-2015-5300...
java-1.6.0-openjdk security update
1:1.6.0.0-1.57.1.11.9 - Updated to icedtea6 1.11.9 - Resolves: rhbz917179...
kernel security and bug fix update
2.4.21-63.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-63.EL - fs: fix pipe nul...
grub2 security update
2.06-94.0.1 - Rework the scripts to cover both in-place upgrade and update scenarios Orabug: 36768566 - Restore correct order of processing config files Orabug: 36758359 - Support setting custom kernels as default kernels Orabug: 36043978 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix...
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...
kernel security update
5.14.0-503.23.25.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
unbound:1.16.2 security update
1.16.2-8.1 - Fix unbounded name compression could lead to Denial of Service CVE-2024-8508 1.16.2-8 - Ensure group access correction reaches also updated configs CVE-2024-1488 1.16.2-7 - Ensure only unbound group can change configuration CVE-2024-1488 1.16.2-6 - Fix KeyTrap - Extreme CPU consumpti...
libwebp security update
1.0.0-8 - Added fix for mzbz1819244...
gcc-toolset-11-annobin security update
9.85-1.1 - Annocheck: Add test for multibyte characters in symbol names. 2017367...
perl security update
4:5.26.3-417 - Fix CVE-2020-12723 bug 1909860 - Fix Time-Local tests to pass after year 2019 bug 1807120...
Unbreakable Enterprise kernel security update
5.4.17-2011.7.4 - iommu/amd: Restore IRTE.RemapEn bit for amdiommuactivateguestmode Suravee Suthikulpanit Orabug: 31931369 - iommu/amd: Fix potential @entry null deref Joao Martins Orabug: 31931369 - iommu/amd: Restore IRTE.RemapEn bit after programming IRTE Suravee Suthikulpanit Orabug: 31931369...
firefox security update
68.8.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Wed Apr 29 2020 Jan Horak - Update to 68.8.0 build1 68.7.0-3 - Added fix for rhbz1821418...
curl security update
7.19.7-54.0.2 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug:30568724 462...
java-11-openjdk security update
1:11.0.6.10-1.0.1 - link atomic for ix86 build 1:11.0.6.10-1 - Add JDK-8236039 backport to resolve OpenShift blocker - Resolves: rhbz1785753 1:11.0.6.10-0 - Update to shenandoah-jdk-11.0.6+10 GA - Switch to GA mode for final release. - Resolves: rhbz1785753 1:11.0.6.1-0.1.ea - Update to...
thunderbird security update
60.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.9.0-1 - Update to 60.9.0...