8988 matches found
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2.6.18-194.el5 - net mlx4: pass attributes down to vlan interfaces Doug Ledford 573098 - block cfq-iosched: fix sequential read perf regression Jeff Moyer 571818 2.6.18-193.el5 - fs gfs2: locking fix for potential dos Steven Whitehouse 572390 CVE-2010-0727 - acpi powermeter: avoid oops on driver...
expat security update
2.2.5-17.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-17 - Fix CVE-2024-8176 - Resolves: RHEL-57477...
python-jwcrypto security update
0.8-5 - Address potential DoS with high compression ratio Resolves: RHEL-28698...
kernel security update
4.18.0-513.18.1.el89.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
podman security and bug fix update
4.4.1-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.4.1-3 - update to the latest content of https://github.com/containers/podman/tree/v4.4.1-rhel https://github.com/containers/podman/commit/e1703bb - Related: 2124478 2:4.4.1-2 - update to the latest...
logrotate security update
3.18.0-7 - lockState: do not print error: when exit code is unaffected 2090926 3.18.0-6 - fix potential DoS from unprivileged users via the state file CVE-2022-1348 Mon Aug 09 2021 Mohan Boddu - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 3.18.0-4 - make renamecopy and...
grub2 security, bug fix, and enhancement update
2.02-123.0.1 - backport arm64: Fix EFI loader kernel image allocation Orabug: 33702462 - backport Arm: check for the PE magic for the compiled arch Orabug: 33702462 - Backport some better script logic for BTRFS support Orabug: 32448171 - Do not add shim and grub certificate deps for aarch64...
Unbreakable Enterprise kernel security update
4.14.35-2047.510.5.2.el7uek - xfs: map unwritten blocks in XFSIOCALLOC,FREESP just like fallocate Darrick J. Wong Orabug: 33722441 CVE-2021-4155 4.14.35-2047.510.5.1.el7uek - fget: check that the fd still exists after getting a ref to it Linus Torvalds Orabug: 33679805 CVE-2021-0920 - fs: add...
perl security and bug fix update
4:5.26.3-419 - Fix CVE-2020-10543 bug 1839273 - Fix CVE-2020-10878 bug 1839276 - Fix a file mode of a perl-example.stp example bug 1913693 4:5.26.3-418 - Fix CVE-2020-12723 bug 1839279...
systemd security, bug fix, and enhancement update
239-40.0.1 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog entries Orabug: 30853009 - fix to generate...
Unbreakable Enterprise kernel security update
2.6.39-400.325.1 - media: rc: prevent memory leak in cx23888irprobe Navid Emamdoost Orabug: 31351676 CVE-2019-19054 - vgacon: Fix for missing check in scrollback handling Yunhai Zhang Orabug: 31705125 CVE-2020-14331 CVE-2020-14331 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783153...
kernel security and bug fix update
4.18.0-147.8.11.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.8.11 - rebuild, due infrastructure issues last kernel build wasn'...
firefox security update
68.4.1-1.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.4.1-1 - Update to 68.4.1esr build1 - Update to 68.4.0esr build1 - Fix for wrong...
kernel security update
3.10.0-1062.4.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.4.3 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave Airlie...
nodejs:10 security update
nodejs-packaging 17-3 - Change Requires to Recommends on nodejs dependency, so it is usable for building nodejs...
.NET Core on Red Hat Enterprise Linux security and bug fix update
2.1.509-1 - Update to .NET Core Runtime 2.1.13 and SDK 2.1.509 - Resolves: RHBZ1747874...
Unbreakable Enterprise kernel security update
2.6.39-400.310.1 - x86/speculation/mds: Make cpumatches cpuinit Patrick Colp Orabug: 29752091 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127 CVE-2019-11091 - x86/speculation/mds: Only worry about firmware loaded microcode Patrick Colp Orabug: 29641786 CVE-2018-12126 CVE-2018-12130 CVE-2018-12127...
freeradius security update
3.0.13-10 - Fixes two EAP-PWD security issues Resolves: bz1699413 authentication bypass with an invalid curve attack...
kernel security update
2.6.18-419.0.0.0.11 - x8664/entry: Don't use IST entry for BP stack orabug 28452062 CVE-2018-8897...
Unbreakable Enterprise kernel security update
2.6.39-400.286.3 - mm, gup: close FOLL MAPPRIVATE race Linus Torvalds Orabug: 24928646 CVE-2016-5195...
php security update
5.4.16-23 - fileinfo: cdfunpacksummaryinfo excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdfcheckstreamoffset insufficient boundary check. CVE-2014-3479 - fileinfo: cdfcountchain insufficient boundary check...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.36.6uek - filter: prevent nla extensions to peek beyond the end of the message Mathias Krause Orabug: 19315783 CVE-2014-3144 CVE-2014-3145 - futex: Forbid uaddr == uaddr2 in futexwaitrequeuepi Darren Hart Orabug: 19315318 CVE-2012-6647 2.6.32-400.36.5uek - ntty: Fix nttywrit...
Oracle Linux 6 kernel update
2.6.32-431 - md Disabling of TRIM on RAID5 for RHEL6.5 was too aggressive Jes Sorensen 1028426 2.6.32-430 - x86 Revert 'efi: be more paranoid about available space when creating variables' Rafael Aquini 1012370 1023173 - x86 Revert 'efivars: firmware bug workarounds should be in platform code'...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-100.10.1.el6uek - thp: avoid atomic64read in pmdreadatomic for 32bit PAE Andrea Arcangeli Orabug: 14217003 2.6.39-100.9.1.el6uek - mm: pmdreadatomic: fix 32bit PAE pmd walk vs pmdpopulate SMP race condition Andrea Arcangeli Bugdb: 13966 CVE-2012-2373 - mm: thp: fix pmdbad triggering in cod...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.3.1.el6uek - proc: fix oops on invalid /proc/ /maps access Linux Torvalds - Revert 'capabilities: do not grant full privs for setuid w/ file caps + no effective caps' Joe Jin - mm: Use MMFCOMPAT instead ia32compat to prevent kabi be broken Joe Jin - proc: enable writing to /proc/pid/me...
kernel security and bug fix update
2.6.18-164.2.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug 69930...
kernel security update
5.14.0-503.38.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
python-jinja2 security update
2.11.3-8 - Security fix for CVE-2025-27516 Resolves: RHEL-85064...
kernel security update
5.14.0-427.26.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel update
4.18.0-553.5.1.el810.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
httpd security update
2.4.57-8.0.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-8 - modxml2enc: fix media type handling Resolves: RHEL-17686 - moddav: add DavBasePath Resolves: RHEL-6600 2.4.57-7 - Resolves: RHEL-14447 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.57-...
java-1.8.0-openjdk security update
1:1.8.0.392.b08-2 - Revert jcmd move as jcmd will not operate without tools.jar - Related: RHEL-13577 1:1.8.0.392.b08-1 - Update to shenandoah-jdk8u392-b08 GA - Update release notes for shenandoah-8u392-b08. - Update generatetarball.sh to be closer to upstream vanilla script inc. no more ECC...
kernel security and bug fix update
3.10.0-1160.102.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.102.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
libarchive security update
3.3.3-5 - Fix for CVE-2022-36227...
compat-expat1 security update
1.95.8-8.0.1 - Ensure raw tagnames are safe exiting internalEntityParser CVE-2022-40674Orabug: 34708578...
prometheus-jmx-exporter security update
0.12.0-8 - Bump snakeyaml version to 1.32 to collect fix for CVE-2022-25857 BZ 2128477...
Unbreakable Enterprise kernel security update
5.4.17-2136.302.7.2.1 - vfs: fscontext: fix up param length parsing in legacyparseparam Jamie Hill-Daniel Orabug: 33761451 CVE-2022-0185...
openssh security update
7.4p1-22.0.1fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-22.0.1 - enlarge format buffer size for certificate serial number so the log message can record any 64-bit integer without...
firefox security update
78.11.0-3.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.11.0-3 - Update to 78.11.0 build2 release 78.11.0-2 - Fix rhelminorversion for dist .el84 and .el8...
icu security update
60.3-2 - Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch - Apply ICU-20958-Prevent-SEGVMAPERR-in-append.patch - Resolves: rhbz1808238...
python security update
2.7.5-86.0.3 - Prefix dot in domain for proper subdomain validation CVE-2018-20852Orabug: 30114725...
Unbreakable Enterprise kernel security update
4.1.12-124.28.6 - scsi: libfc: Fixup discmutex handling in fcoe module Hannes Reinecke Orabug: 29511036 - scsi: libfc: sanitize EDTOV and RATOV setting in fcp Hannes Reinecke Orabug: 29511036 - sysctl: Fix kabi breakage Shuning Zhang Orabug: 29689925 - proc: Fix procsysprunedcache to hold a sb...
qemu-kvm security update
0.12.1.2-2.506.el610.4 - kvm-target-i386-Sanitize-the-XSAVE-related-feature-bits.patch bz1673779 - kvm-slirp-check-sscanf-result-when-emulating-ident.patch bz1689790 - Resolves: bz1673779 RHEL8 VM's do not install on RHEL6 KVM hypervisor - Resolves: bz1689790 CVE-2019-9824 qemu-kvm: QEMU: Slirp:...
kernel security and bug fix update
2.6.32-754.14.2.OL6 - Update genkey bug 25599697 2.6.32-754.14.2 - x86 x86/speculation/mds: Add SMT warning message Waiman Long 1692386 1692387 1692388 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 - x86 x86/speculation/mds: Add mds=full, nosmt cmdline option Waiman Long 1692386 1692387 1692388...
Unbreakable Enterprise kernel security update
2.6.39-400.301.1 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Exempt zeroed PTEs from inversion Sean Christopherson Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF...
kernel security and bug fix update
2.6.32-754.2.1.OL6 - Update genkey bug 25599697 2.6.32-754.2.1 - x86 entry/64: Don't use IST entry for BP stack Waiman Long 1596113 CVE-2018-10872 - fs gfs2: Flush delayed work earlier in gfs2inodelookup Andreas Grunbacher 1506281 - mm mempolicy: fix use after free when calling getmempolicy Augus...
kernel security and bug fix update
3.10.0-693.17.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.17.1 - s390 locking/barriers: remove old gmb macro definition Denys Vlasenko...
Unbreakable Enterprise kernel security update
2.6.39-400.297.11 - mqueue: fix a use-after-free in sysmqnotify Cong Wang Orabug: 26643562 CVE-2017-11176 - ipv6: avoid overflow of offset in ip6find1stfragopt Sabrina Dubroca Orabug: 27011278 CVE-2017-7542 - packet: fix tpreserve race in packetsetring Willem de Bruijn Orabug: 27002453...
samba security update
3.6.23-43.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-43 - resolves: 1450782 - Fix CVE-2017-7494...
kernel security, bug fix, and enhancement update
2.6.32-642 - scsi fc: revert - ensure scanwork isnt active when freeing fcrport Ewan Milne 1326447 - netdrv ixgbe: Update ixgbe driver to use netdevpicktx in ixgbeselectqueue John Greene 1310749 - netdrv mlx5e: Fix adding vlan rule with vid zero twice Kamal Heib 1322809 2.6.32-641 - netdrv ixgbe:...