9170 matches found
ntp security, bug fix, and enhancement update
4.2.6p5-28.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-28 - fix buffer overflow in datum refclock driver CVE-2017-6462 - fix crash with invalid unpeer command CVE-2017-6463 - fix potential crash with invalid server command CVE-2017-6464 - add Spectracom TSYNC...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.3 - gre: fix a possible skb leak Eric Dumazet Orabug: 26403972 CVE-2017-9074 - ipv6: Fix leak in ipv6gsosegment. David S. Miller Orabug: 26403972 CVE-2017-9074 - ipv6: xfrm: Handle errors reported by xfrm6find1stfragopt Ben Hutchings Orabug: 26403972 CVE-2017-9074 - ipv6:...
microcode_ctl security update
1:1.17-25.2 - Update Intel CPU microde for 06-3f-02, 06-4f-01, and 06-55-04 - Add amd microcodeamdfam17h.bin data file - Resolves: 1527357 1:1.17-25.1 - Update microcode data file to 20170707 revision. - Resolves: 1465143...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986990 CVE-2017-7895 3.8.13-118.18.1 - fnic: Update fnic driver version to 1.6.0.24 John Sobecki Orabug: 24448585 - xen-netfront: Rework the fix for Rx stall during OOM and network stress...
openssl security update
1.0.1e-51.5 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
expat security update
2.5.0-3.3 - Improve fix for CVE-2024-8176 - Resolves: RHEL-57488 2.5.0-3.2 - Fix CVE-2024-8176 - Resolves: RHEL-57488...
container-tools:ol8 security update
aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common 1-82.0.1 - Updated removed references Orabug: 33473101 Alex Burmashev - Adjust registries.conf Nikita Gerasimov - remove references to RedHat registry Nikita Gerasimov 2:1-82 - update vendored components -...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack 1.5.1-1 - Update to 1.5.1 postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-10...
Unbreakable Enterprise kernel security update
5.4.17-2136.320.7 - selftests: fibtests: mute cleanup error message Po-Hsu Lin - KVM: arm64: PMU: Align chained counter implementation with architecture pseudocode Marc Zyngier Orabug: 35449815 - KVM: arm64: Filter out v8.1+ events on v8.0 HW Marc Zyngier Orabug: 35449815 - KVM: arm64: Add...
virt:kvm_utils security update
libvirt 5.7.0-38.el8 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - qemu: Set default qdisc before setting bandwidth Michal...
nodejs:18 security update
nodejs 1:18.8.0-1 - Rebase to version 18.8.0 - Include sources for WASM blobs nodejs-packaging 2021.06-4 - NPM bundler: also find namespaced bundled dependencies 2021.06-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora35MassRebuild 2021.06-2 - Fix hard-coded output directory in the bundler...
java-11-openjdk security, bug fix, and enhancement update
1:11.0.16.0.8-1 - Update to jdk-11.0.16+8 - Update release notes to 11.0.16+8 - Use same tarball naming style as java-17-openjdk and java-latest-openjdk - Drop JDK-8257794 patch now upstreamed - Print release file during build, which should now include a correct SOURCE value from .src-rev - Updat...
kernel security and bug fix update
4.18.0-348.23.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
openssl security update
1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738 1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix...
java-1.8.0-openjdk security update
1:1.8.0.322.b06-1 - Update to aarch64-shenandoah-jdk8u322-b06 EA - Update release notes for 8u322-b06. - Switch to GA mode for final release. - Require tzdata 2021e as of JDK-8275766. - Update tarball generation script to use git following shenandoah-jdk8u's move to github - Resolves: rhbz2039366...
kernel security and bug fix update
4.18.0-348.7.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
nodejs:12 security, bug fix, and enhancement update
nodejs 1:12.22.3-2 - Resolves: RHBZ1980031, RHBZ1978201 - Fix typo, BR systemtap-sdt-level always, remove y18n patch 1:12.22.3-1 - Resolves: RHBZ1980031, RHBZ1978201 - Resolves 1952915 - Resolves CVE-2021-22918libuv, use system cipher list nodejs-nodemon 2.0.3-1 - Resolves: RHBZ1920692,...
container-tools:3.0 security update
buildah 1.19.7-1.0.1 - Handling redirect from the docker registry Orabug: 29874238 Nikita Gerasimov 1.19.7-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/a2854ed - Resolves: 1935376 cockpit-podman 29-2 - fix...
mariadb:10.3 security, bug fix, and enhancement update
asio 1.10.8-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 1.10.8-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 1.10.8-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild 1.10.8-4 - Rebuilt for Boost 1.64 1.10.8-3 - Rebuilt for...
microcode_ctl security, bug fix, and enhancement update
3:1.17-33.31.0.1 - recognize the 'force-intel' file path available on EL7+ orabug 31655792 - disable live load during %post due to UEK4 rendezvous timeouts orabug 31655792 - merge Oracle changes for early load via dracut - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 - remove...
tomcat6 security update
0:6.0.24-114 - Related: rhbz1806803 Update patch to remove secret attribute renaming 0:6.0.24-113 - Related: rhbz1806803 Add IIS attributes to filter pattern and update secret logic 0:6.0.24-112 - Resolves: rhbz1806803 CVE-2020-1938 tomcat6: tomcat: Apache Tomcat AJP File Read/Inclusion...
sudo security update
1.8.23-4.0.2.2 - Bump release to avoid conflict with previous Orace Linux errata 1.8.23-4.2 - RHEL 7.7.z - fixed CVE-2019-18634 Resolves: rhbz1798094 1.8.23-4.1 - RHEL-7.7.z - fixed CVE-2019-14287 Resolves: rhbz1760694...
java-1.7.0-openjdk security update
1:1.7.0.241-2.6.20.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.241-2.6.20.0 - Bump to 2.6.20 and OpenJDK 7u241-b01. - Drop PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Resolves: rhbz1753423...
pki-deps:10.6 security update
jackson-databind...
firefox security update
60.9.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.9.0-1 - Update to 60.9.0 ESR...
java-1.7.0-openjdk security update
1:1.7.0.171-2.6.13.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.171-2.6.13.0 - Bump to 2.6.13 and u171b01. - Update java-1.7.0-openjdk-java-access-bridge-security.patch to apply after 8186080 - Update RC4 patch 8076221/PR2809 to apply after 8148108 DH lower limit increase - Fix file path in...
Unbreakable Enterprise kernel security update
2.6.39-400.294.6 - RHEL: complement upstream workaround for CVE-2016-10142. Quentin Casasnovas Orabug: 25765786 CVE-2016-10142 CVE-2016-10142 2.6.39-400.294.5 - net: ping: check minimum size on ICMP header length Kees Cook Orabug: 25766914 CVE-2016-8399 - ipv6: stop sending PTB packets for MTU 12...
java-1.8.0-openjdk security update
1:1.8.0.121-0.b13 - Update to aarch64-jdk8u121-b13. - Update PR1834/RH1022017 fix to reduce curves reported by SSL to apply against u121. - Re-generate RH1393047 ObjectInputStream patch against u121. - Resolves: rhbz1410612 1:1.8.0.112-0.b16 - Update to aarch64-jdk8u112-b16. - Drop upstreamed...
openssh security, bug fix and enhancement update
6.6.1p1-11 + 0.9.3-9 - fix direction in CRYPTOSESSION audit message 1171248 6.6.1p1-10 + 0.9.3-9 - add new option GSSAPIEnablek5users and disable using /.k5users by default CVE-2014-9278 1169843 6.6.1p1-9 + 0.9.3-9 - log via monitor in chroots without /dev/log 1083482 6.6.1p1-8 + 0.9.3-9 - increa...
kernel security, bug fix, and enhancement update
2.6.18-274.17.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boot up wi...
kernel security and bug fix update
2.6.18-164.6.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug 69930...
python3 security update
3.6.8-21.0.3 - Fix DoS parsing crafted tarfile headers Orabug: 37626372CVE-2024-6232 - Disable testsocket in the PGO profile task...
kernel security update
3.10.0-1160.105.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.105.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
python3 security update
3.6.8-19.0.1 - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-19 - Security fix for CVE-2023-24329 - Fix the test suite support for Expat =...
java-11-openjdk security update
1:11.0.19.0.7-1 - Update to jdk-11.0.19.0+7 - Update release notes to 11.0.19.0+7 - Require tzdata 2023c due to local inclusion of JDK-8274864 & JDK-8305113 - Update generatetarball.sh to add support for passing a boot JDK to the configure run - Add POSIX-friendly error codes to generatetarball.s...
php security update
8.0.27-1 - rebase to 8.0.27...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.521.4.el7 - tcp: Tunables for TCP delayed ack min and max timers Venkat Venkatsubra Orabug: 34883100 4.14.35-2047.521.3.el7 - Revert 'random: use expired timer rather than wq for mixing fast pool' Saeed Mirzamohammadi Orabug: 34918228 4.14.35-2047.521.2.el7 - RDS/IB: Fix the misplace...
Unbreakable Enterprise kernel security update
5.4.17-2136.309.5 - lockdown: Fix kexec lockdown bypass with ima policy Eric Snowberg Orabug: 34386637 CVE-2022-21505...
expat security update
2.2.5-4.3 - Improve fix for CVE-2022-25236 - Related: CVE-2022-25236 2.2.5-4.2 - Fix multiple CVEs - Resolves: CVE-2022-25236 - Resolves: CVE-2022-25235 - Resolves: CVE-2022-25315 2.2.5-4.1 - Fix multiple CVEs - CVE-2022-23852 expat: integer overflow in function XMLGetBuffer - CVE-2021-45960 expa...
NetworkManager security, bug fix, and enhancement update
1.32.10-4.0.1 - add connectivity check via Oracle servers Orabug: 32051972 - Disable the build of NetworkManager-config-connectivity- subpackage for 8.3 1:1.32.10-4 - revert unapproved patches part of 'cloud-setup' change rh 1977984 1:1.32.10-3 - preserve the IPv6 multicast route added by kernel ...
kernel security and bug fix update
4.18.0-305.17.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
dotnet5.0 security and bugfix update
5.0.203-1.0.1 - Add support for new Oracle release 5.0.203-1 - Update to .NET SDK 5.0.203 and Runtime 5.0.6 - Resolves: RHBZ1954328 5.0.202-1 - Update to .NET SDK 5.0.202 and Runtime 5.0.5 - Resolves: RHBZ1947662...
idm:DL1 and idm:client security, bug fix, and enhancement update
bind-dyndb-ldap 11.6-2 - Rebuild against bind 9.11.26 - Resolves: rhbz1904612 11.6-1 - New upstream release - Resolves: rhbz1891735 ipa 4.9.2-3.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.2-3 - ipa-client-install displays false message 'sudo binary does not seem to ...
Unbreakable Enterprise kernel security update
5.4.17-2036.104.4.el8uek - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el8uek - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empt...
dnsmasq security update
2.76-16.1 - Accept responses only on correct sockets CVE-2020-25684 - Use strong verification on queries CVE-2020-25685 - Handle multiple identical DNS queries better CVE-2020-25686 - Link against nettle for sha256 hash implementation...
gnome-software and fwupd security, bug fix, and enhancement update
appstream-data 8-20200724 - Regenerate the RHEL metadata to include the EPEL apps too - Resolves: 1844488 8-20200630 - Regenerate the RHEL metadata - Resolves: 1844488 fwupd 1.4.2-4.0.1 - Build with the updated Oracle certificate - Use oraclesecureboot301 as certdir Orabug: 29881368 - Use new...
qt security update
1:4.8.7-8 - Fix QImage allocation failure in qgifhandler Resolves: bz1667863 - Fix QTgaFile CPU exhaustion Resolves: bz1667879 - Fix QBmpHandler segmentation fault on malformed BMP file Resolves: bz1667862 1:4.8.7-7 - Fix crash when parsing malformed url reference in svg Resolves: bz1667882...
libwmf security update
0.2.9-8 - Related: rhbz1717799 fix clang warning 0.2.9-7 - Related: rhbz1717799 bump n-v-r 0.2.9-6 - Related: rhbz1679006 bump n-v-r 0.2.9-5 - Resolves: rhbz1679006 libgd CVE-2019-6978...
kubernetes security update
1.12.7-1.2.3 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.12.7-1.1.3 - OCNE-372 kubeadm: properly umount dirs in /var/lib/kubelet...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...