8988 matches found
java-1.7.0-openjdk security update
1:1.7.0.121-2.6.8.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.121-2.6.8.0 - Turn off HotSpot bootstrap to see if it resolves build issues. - Resolves: rhbz1381990 1:1.7.0.121-2.6.8.0 - Bump to 2.6.8 and u121b00. - Drop patches S7081817, S8140344, S8145017 and S8162344 applied upstream. - Update...
openssl097a security update
0.9.7a-9.2 - CVE-2009-3555 - support the secure renegotiation RFC 533125...
expat security update
2.5.0-3.3 - Improve fix for CVE-2024-8176 - Resolves: RHEL-57488 2.5.0-3.2 - Fix CVE-2024-8176 - Resolves: RHEL-57488...
openssh security update
8.7p1-29 - Resolve possible self-DoS with some clients Resolves: rhbz2186473...
Unbreakable Enterprise kernel security update
5.4.17-2136.309.5 - lockdown: Fix kexec lockdown bypass with ima policy Eric Snowberg Orabug: 34386637 CVE-2022-21505...
expat security update
2.2.5-4.3 - Improve fix for CVE-2022-25236 - Related: CVE-2022-25236 2.2.5-4.2 - Fix multiple CVEs - Resolves: CVE-2022-25236 - Resolves: CVE-2022-25235 - Resolves: CVE-2022-25315 2.2.5-4.1 - Fix multiple CVEs - CVE-2022-23852 expat: integer overflow in function XMLGetBuffer - CVE-2021-45960 expa...
samba security and bug fix update
4.14.5-9 - resolves: rhbz2046174 - Fix username map script regression of CVE-2020-25717 - resolves: rhbz2046160 - Fix possible segfault while joining a domain - resolves: rhbz2046152 - Fix CVE-2021-44142 4.14.5-8 - resolves: rhbz2026717 - Dir containing dangling symlinks cannot be deleted...
java-1.8.0-openjdk security update
1:1.8.0.322.b06-1 - Update to aarch64-shenandoah-jdk8u322-b06 EA - Update release notes for 8u322-b06. - Switch to GA mode for final release. - Require tzdata 2021e as of JDK-8275766. - Update tarball generation script to use git following shenandoah-jdk8u's move to github - Resolves: rhbz2039366...
log4j security update
0:1.2.14-6.4.1 - Fix remote code execution vulnerability - Resolves: CVE-2021-4104 Orabug: 33689748...
krb5 security update
1.15.1-51.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360 1.15.1-51 - Fix KDC null deref on TGS inner body null server CVE-2021-37750 - Resolves: 1997599...
kernel security, bug fix, and enhancement update
4.18.0-305.25.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
bind security update
32:9.11.4-26.P2.7 - Apply again patch 172, got removed by mistake 32:9.11.4-26.P2.6 - Insufficient IXFR checks could lead to assertion failure CVE-2021-25214...
.NET 5.0 security and bugfix update
5.0.206-1.0.1 - Add support for new Oracle release 5.0.206-1 - Update to .NET SDK 5.0.206 and Runtime 5.0.9 - Resolves: RHBZ1990965...
nodejs:12 security, bug fix, and enhancement update
nodejs 1:12.22.3-2 - Resolves: RHBZ1980031, RHBZ1978201 - Fix typo, BR systemtap-sdt-level always, remove y18n patch 1:12.22.3-1 - Resolves: RHBZ1980031, RHBZ1978201 - Resolves 1952915 - Resolves CVE-2021-22918libuv, use system cipher list nodejs-nodemon 2.0.3-1 - Resolves: RHBZ1920692,...
idm:DL1 and idm:client security, bug fix, and enhancement update
bind-dyndb-ldap 11.6-2 - Rebuild against bind 9.11.26 - Resolves: rhbz1904612 11.6-1 - New upstream release - Resolves: rhbz1891735 ipa 4.9.2-3.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.2-3 - ipa-client-install displays false message 'sudo binary does not seem to ...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.501.0.el7 - block/diskstats: accumulate all per-cpu counters in one pass Konstantin Khlebnikov Orabug: 32531559 - uek-rpm: config-aarch-embedded2 update for Jan 2021 Elba patches Dave Kleikamp Orabug: 32532588 - dts/pensando: Fix compatile - compatible typeo. David Clear Orabug:...
postgresql:9.6 security update
9.6.20-1 - Rebase to upstream release 9.6.20 Resolves: rhbz1901563 Resolves: rhbz1898218 Resolves: rhbz1898334 9.6.19-1 - Rebase to 9.6.19 Also fixes: CVE-2019-10208, CVE-2020-14350, CVE-2019-10130 Resolves: 1741490 Resolves: 1867111 Resolves: 1845074...
libcroco security update
0.6.12-6 - Rebuild with 7.9-z target Related: 1835951 0.6.12-5 - Fix CVE-2020-12825 Resolves: 1835951...
openssl security and bug fix update
1.0.2k-19.0.1 - Bump release for rebuild. 1.0.2k-19 - close the RSA decryption 9 lives of Bleichenbacher cat timing side channel 1649568 1.0.2k-18 - fix CVE-2018-0734 - DSA signature local timing side channel - fix CVE-2019-1559 - 0-byte record padding oracle - close the RSA decryption One & done...
libssh2 security update
1.4.2-2.0.1.el67.1 - Orabug: 29909723 Added patch CVE-2019-3862. Added Additional length checks to prevent out-of-bounds CVE-2019-3862...
docker-engine security update
18.03.1.ol-0.0.14 - rebuild 18.03.1.ol-0.0.13 - update for CVE-2018-20699...
kernel security and bug fix update
3.10.0-862.14.4.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.14.4 - scsi Revert: lpfc: Fix port initialization failure Radomir Vrbovsky...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
python27 security, bug fix, and enhancement update
python27 1.1-17 - Require python-pip and python-wheel note: in rh-python34 this is not necessary, because 'python' depends on these. python27-python 2.7.8-3 - Add httplib fix for CVE-2013-1752 Resolves: rhbz1187779 2.7.8-2 - Fix %check unset DISPLAY setion not failing properly on failed test -...
kernel security update
4.18.0-553.50.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libxslt security update
1.1.34-9.0.1.el95.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-9.1 - Fix CVE-2025-24855 RHEL-83501...
cockpit security update
311.2-1.0.1 - Replaced upstream urls in documentation with oracle links Orabug: 36528753 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in cockpit Orabug: 34030494 - Update documentation links Orabug: 30271413, Orabug: 32013095,...
pixman security update
0.40.0-6 - Backport fix for CVE-2022-44638...
kernel security update
3.10.0-1160.105.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.105.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.318.7.1.el7 - KVM: arm64: Disabling disabled PMU counters wastes a lot of time Alexandre Chartre Orabug: 33312587 - KVM: arm64: Don't zero the cycle count register when PMCREL0.P is set Alexandru Elisei Orabug: 33312587 - KVM: arm64: pmu: Only handle supported event counters Eric Auge...
tar security update
2:1.34-6 - Fix CVE-2022-48303 - Resolves: CVE-2022-48303...
container-tools:ol8 security, bug fix, and enhancement update
buildah 1:1.24.2-4 - update to the latest content of https://github.com/containers/buildah/tree/release-1.24 https://github.com/containers/buildah/commit/7b559a3 - Related: 2059296 1:1.24.2-3 - switch to RHEL maintenance branch which fixes CVE-2022-27651 - Resolves: 2067559 1:1.24.2-2 - Add patch...
NetworkManager security, bug fix, and enhancement update
1.32.10-4.0.1 - add connectivity check via Oracle servers Orabug: 32051972 - Disable the build of NetworkManager-config-connectivity- subpackage for 8.3 1:1.32.10-4 - revert unapproved patches part of 'cloud-setup' change rh 1977984 1:1.32.10-3 - preserve the IPv6 multicast route added by kernel ...
Unbreakable Enterprise kernel security update
5.4.17-2036.104.4.el8uek - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el8uek - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empt...
sudo security update
1.8.6p3-29.0.2.el610.3 - backport the fix CVE-2021-3156.patch from ol7...
Unbreakable Enterprise kernel security update
4.14.35-1902.303.5.3 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert rds: Do not cancel RDMAs that have been posted to the HCA Gerd Rausch Orabug: 31475329 - Revert rds: Introduce rdsconntopath helper Gerd Rausch Orabug: 31475329 - Revert rds: Three cancel...
python-twisted-web security update
12.1.0-7 - Fix CVE-2020-10108 and CVE-2020-10109 multiple HTTP request smuggling vulnderabilities Resolves: rhbz1813439 rhbz1813447 - Remove useless macros definitions...
qt security update
1:4.8.7-8 - Fix QImage allocation failure in qgifhandler Resolves: bz1667863 - Fix QTgaFile CPU exhaustion Resolves: bz1667879 - Fix QBmpHandler segmentation fault on malformed BMP file Resolves: bz1667862 1:4.8.7-7 - Fix crash when parsing malformed url reference in svg Resolves: bz1667882...
java-1.7.0-openjdk security update
1:1.7.0.251-2.6.21.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.251-2.6.21.0 - Bump to 2.6.21 and OpenJDK 7u251-b02. - Resolves: rhbz1785753...
wget security update
1.14-18.1 - Fix CVE-2019-5953 1696733...
runc security update
1.0.0-19.rc5.git4bb1fe4.0.3.el7 - Apply patch for CVE-2019-5736 Wiekus Beukes 1.0.0-19.rc5.git4bb1fe4.0.2.el7 - update Go version to 1.10.8, fix version string Laszlo Laca Peter 1.0.0-19.rc5.git4bb1fe4.0.1.el7 - Tuning .spec file 2:1.0.0-19.rc5.git4bb1fe4 - release v1.0.0rc5...
spice security update
0.14.0-6.0.2.1 - Add ARM support 0.14.0-6.1 - Fix off-by-one error during guest-to-host memory address conversion Resolves: CVE-2019-3813...
Unbreakable Enterprise kernel security update
4.1.12-124.20.1 - bnxten: xdp: don't make drivers report attachment mode partial backport Somasundaram Krishnasamy Orabug: 27988326 - bpf: make bnxt compatible w/ bpfxdpadjusttail Nikita V. Shirokov Orabug: 27988326 - bnxten: add meta pointer for direct access partial backport Somasundaram...
Unbreakable Enterprise kernel security update
4.1.12-103.7.4 - ipv6: avoid overflow of offset in ip6find1stfragopt Sabrina Dubroca Orabug: 27011255 CVE-2017-7542 - udp: consistently apply ufo or fragmentation Willem de Bruijn Orabug: 26921320 CVE-2017-1000112...
httpd security update
2.2.15-60.0.1.5 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.5 - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer dereference - Resolves: 1463207 ...
java-1.7.0-openjdk security update
1:1.7.0.141-2.6.10.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.141-2.6.10.1 - Bump to u141b02 to include S8011123 fix for TCK failure. - Resolves: rhbz1438751 1:1.7.0.141-2.6.10.0 - Bump to 2.6.10 and u141b00. - Adjust RH1022017 following application of 8173783 - Add more detailed output to...
kernel security update
kernel 2.6.18-409.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.4 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444790 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444687 CVE-2015-3636...
openssl security and bug fix update
1.0.1e-42.4 - update fix for CVE-2015-0287 to what was released upstream 1.0.1e-42.3 - fix CVE-2015-0209 - potential use after free in d2iECPrivateKey - fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-68 - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673373 CVE-2014-8884 - mm: Fix NULL pointer dereference in madviseMADVWILLNEED support Kirill A. Shutemov Orabug: 20673279 CVE-2014-8173 - netfilter: conntrack: disable generic tracking for known protocols Florian...