9172 matches found
httpd security update
2.0.52-41.ent.6.0.1 - use oracle index page oracleindex.html - update vstring and distro in specfile 2.0.52-41.ent.6 - add security fixes for CVE-2009-3555, CVE-2009-1891, CVE-2009-3094, and CVE-2009-3095 534039...
nginx:1.24 security update
1.24.0-5.1.0.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 1:1.24.0-5.1 - Resolves: RHEL-146526 - nginx:1.24/nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 1:1.24.0-5 - Resolves:...
python-dns security update
1.15.0-12 - Security fix for CVE-2023-29483 Resolves: RHEL-32630...
openssh security update
8.0p1-19.0.1.2 - Update patches for CVE-2023-51385, CVE-2023-48795 Orabug: 36256632 8.0p1-19.2 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 - Fix Terrapin attack Resolves: CVE-2023-48795...
Unbreakable Enterprise kernel security update
5.4.17-2136.311.6 - Revert 'KVM: x86: Print error code in exception injection tracepoint iff valid' Sherry Yang Orabug: 34535896 5.4.17-2136.311.5 - netfilter: nftables: do not allow RULEID to refer to another chain Thadeu Lima de Souza Cascardo Orabug: 34495567 CVE-2022-2586 - netfilter: nftable...
Unbreakable Enterprise kernel security update
5.4.17-2136.306.1.3 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 5.4.17-2136.306.1.2 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34045203 5.4.17-2136.306.1.1 - netfilter: nftables: initialize...
Unbreakable Enterprise kernel security update
5.4.17-2136.305.5.3 - bpf: fix out-of-tree module build Alan Maguire Orabug: 33973548 - ACPICA: Enable sleep button on ACPI legacy wake Anchal Agarwal Orabug: 33973543 - Revert 'btrfs: inode: refactor the parameters of insertreservedfileextent' Srikanth C S Orabug: 33973491 - Revert 'btrfs: fix...
virt:kvm_utils security update
hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 libguestfs 1.40.2-28.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.40.2-28 -...
java-11-openjdk security and bug fix update
1:11.0.13.0.8-1.0.1 - link atomic for ix86 build 1:11.0.13.0.8-1 - Revert addition of libharfbuzz.so after its removal by JDK-8255790 - Resolves: rhbz2012332 1:11.0.13.0.8-1 - Update to jdk-11.0.12.0+8 - Update release notes to 11.0.12.0+8 - Switch to GA mode for final release. - This tarball is...
microcode_ctl security, bug fix and enhancement update
4:20210216-1.20210525.0.1 - add support for UEK6 kernels - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 4:20210216-1.20210525.1 - Update Intel CPU microcode to microcode-20210525 release, addresses CVE-2020-24489, CVE-2020-24511, CVE-2020-24512, and CVE-2020-24513 1962663,...
lz4 security update
1.8.3-3 - Fix memory corruption due to an integer overflow Resolves: CVE-2021-3520...
postgresql:12 security update
pgaudit 1.4.0-6 - Fix build requires 1.4.0-5 - Fix build requires postgresql 12.7-1 - Update to 12.7 Resolves: 1964510 Fix: CVE-2021-32027,CVE-2021-32028...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.54.1 - mwifiex: Fix possible buffer overflows in mwifiexcmd80211adhocstart Zhang Xiaohui Orabug: 32349209 CVE-2020-36158...
firefox security update
78.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.5.0-1 - Update to 78.5.0 build1...
olcne nginx security update
olcne 1.1.6-1 - support upgrading nginx - Adress CVE-2019-9511 - Adress CVE-2018-16845 - Adress CVE-2017-7529 - support upgrading flannel nginx 1.17.7-2 - Changed nginx home dir to /var/lib/nginx for consistency 1.17.7-1 - Added Oracle Specific Build Files for nginx - Adress CVE-2019-9511 - Adres...
thunderbird security update
68.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.6.0-1 - Update to 68.6.0 build2...
java-1.7.0-openjdk security update
1:1.7.0.251-2.6.21.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.251-2.6.21.0 - Bump to 2.6.21 and OpenJDK 7u251-b02. - Resolves: rhbz1785753...
thunderbird security update
68.2.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.2.0-1 - Update to 68.2.0 68.1.1-2 - Update to 68.1.1...
firefox security update
68.2.0-1.0.1 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.2.0-1 - Update to 68.2.0 ESR 68.1.0-6 - Enable system nss on RHEL6...
kubernetes security update
1.10.5-2.7.4 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.10.5-2.6.4 - OLCNE-383 CVE-2019-11243 Authentication information exposure in rest.AnonymousClientConfig...
firefox security update
60.7.2-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.7.2-1 - Update to 60.7.2 ESR 60.7.1-1 - Updated to 60.7.1 ESR...
openssl security update
1.0.1e-57.0.6 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737...
Unbreakable Enterprise kernel security update
4.1.12-124.19.5 - nsfs: mark dentry with DCACHERCUACCESS Cong Wang Orabug: 28576290 CVE-2018-5873 - dm crypt: add middle-endian variant of plain64 IV Konrad Rzeszutek Wilk Orabug: 28604628 - IB/ipoib: Improve filtering log message Yuval Shaia Orabug: 28655409 - IB/ipoib: Fix wrong update of...
Unbreakable Enterprise kernel security update
4.1.12-124.18.6 - qla2xxx: Update the version to 9.00.00.00.41.0-k1. Giridhar Malavali Orabug: 28172611 - qla2xxx: Utilize complete local DMA buffer for DIF PI inforamtion. Giridhar Malavali Orabug: 28172611 - qla2xxx: Correction to total data segment count when local DMA buffers used for DIF PI...
openssl security update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
java-1.8.0-openjdk security update
1:1.8.0.131-0.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update generatesourcetarball.sh to remove patch remnants. - Cleanup tarball creation documentation to avoid duplication. - Resolves: rhbz1438751 1:1.8.0.121-2.b13 - Add...
openssh security, bug fix, and enhancement update
5.3p1-117 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317817 5.3p1-116 - Restore functionallity of pamsshagentauth in FIPS mode 1278315 - Initialize devicesdone variable for challenge response 1281468 - Update behaviour of X11 forwarding to match upstream 1299048 5.3p1-115 ...
php55 security and bug fix update
php55 2.0-1 - fix incorrect selinux contexts 1194336 php55-php 5.5.21-2.0.1 - add dtrace-utils as build dependency 5.5.21-2 - core: fix use-after-free vulnerability in the processnesteddata function unserialize CVE-2015-2787 - core: fix NUL byte injection in file name argument of moveuploadedfile...
openssl security update
0.9.8e-32.0.1 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix CVE-2014-3571 - DTLS segmentation fault in dtls1getrecord - fix CVE-2014-3572 - ECDHE silently downgrades to ECDH Client - fix...
kernel security, bug fix, and enhancement update
kernel 2.6.18-371.6.1 - net be2net: don't use skbgetqueuemapping Ivan Vecera 1066302 1063955 - ipc change refcount to atomict Phillip Lougher 1024866 1024868 CVE-2013-4483 - s390 qeth: buffer overflow in snmp ioctl Jacob Tanenbaum 1034402 1034404 CVE-2013-6381 - scsi AACRAID Driver compat IOCTL...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-200.19.1.el6uek - Apply new fix for CVE-2011-1576. 2.6.32-200.18.1.el6uek - Revert 'proc: fix a race in doioaccounting' 2.6.32-200.17.1.el6uek - net: Fix memory leak/corruption on VLAN GRODROP CVE-2011-1576 - iommu-api: Extension to check for interrupt remapping CVE-2011-1898 - KVM: IOMMU:...
kernel security, bug fix, and enhancement update
2.6.18-194.32.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security and bug fix update
2.6.18-128.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
xmlrpc-c security update
1.51.0-11 - Restrict XML Entity Expansion Depth in libexpat CVE-2024-8176...
mysql:8.0 security, bug fix, and enhancement update
mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: 2180411 mecab-ipadic mysql 8.0.32-1 - Update to MySQL 8.0.32 8.0.31-1 - Update to MySQL 8.0.31...
kernel security and bug fix update
3.10.0-1160.66.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
libpq security update
13.5-1 - Rebase to 13.5 Resolves: 2023294...
openssl security update
1.0.2k-23 - fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings - Resolves: rhbz1996054...
gcc-toolset-10-gcc security update
10.3.1-1.2.0.1 - Fix Orabug 32423691- gcc10 SEGV for every test in sregress: ORA-7445ksmplruaddbatchksm same bug as PR tree-optimization/100053: gcc11-pr100053.patch - Fix Orabug 31197798 Profile data size way too big same bug as PR gcov-profile/95348: gcc11-pr95348.patch - Introduce...
httpd:2.4 security update
httpd 2.4.37-39.1.0.1.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-39.1 - Resolves: 2007234 - CVE-2021-40438 httpd:2.4/httpd: modproxy: SSRF via a crafted request uri-path - Resolves: 2007646 - CVE-2021-26691...
389-ds:1.4 security and bug fix update
1.4.3.16-19 - Bump version to 1.4.3.16-19 - Resolve: Bug 1984091 - persistent search returns entries even when an error is returned by content-sync-plugin 1.4.3.16-18 - Bump version to 1.4.3.16-18 - Resolve: Bug 1983121 - CRYPT password hash with asterisk allows any bind attempt to succeed...
hivex security update
1.3.10-6.11 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950500...
Unbreakable Enterprise kernel security update
4.14.35-2047.500.9.3.el7uek - net/rds: Reject error code change Ka-Cheong Poon Orabug: 32577425 - PCI: hotplug: Add module parameter to allow user control of LEDs James Puthukattukaran Orabug: 32577399 - net/rds: increase 1MB MR pool size for RDS Manjunath Patil Orabug: 32577394...
Unbreakable Enterprise kernel-container security update
...
thunderbird security update
78.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.0-1 - Update to 78.4.0 build1 - Disabled telemetry 78.3.1-1 - Update to 78.3.1 build1 78.3.0-3 - Update to 78.3.0 build1 - Remove librdp.so as long as we cannot ship it in RHEL 78.2.1-1 -...
curl security update
7.29.0-59.0.1.1 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case...
Unbreakable Enterprise kernel security update
4.14.35-2025.401.4 - KVM: x86: always expose VIRTSSBD to guests Paolo Bonzini Orabug: 31957046 4.14.35-2025.401.3 - iommu/amd: Restore IRTE.RemapEn bit after programming IRTE Suravee Suthikulpanit Orabug: 31931371 - oracleasm: Access dbdev before dropping inode Stephen Brennan Orabug: 31901948 -...
Unbreakable Enterprise kernel security update
4.1.12-124.40.6 - ipv4: ipv4defaultadvmss should use route mtu Eric Dumazet Orabug: 31563095 - net: ipv4: Refine the ipv4defaultadvmss Gao Feng Orabug: 31563095 4.1.12-124.40.5 - Revert 'bnxten: Remove busy poll logic in the driver.' Brian Maly Orabug: 28151475 - md: batch flush requests. NeilBro...
libvirt security update
5.7.0-13.el7 - domain groups: Fix multiple Domain Group vCPU administration flaws Wim ten Have Orabug: 31145304 - qemu: fix missing if definedENABLEEXADATA Menno Lageman - build: Fix qemu-submodule-init syntax-check issue Wim ten Have - libvirt: Fix various introduced Fedora/RHEL build violations...
firefox security update
68.6.0-1.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.6.0-1.0.1 - Update to 68.6.0 build1 68.5.0-3 - Added fix for rhbz1805667 - Enabled...