9172 matches found
Moderate: freetype security update
2.1.9-6.el4 - Add freetype-2.1.9-ttf-overflow.patch - Resolves: 240574...
rsyslog security update
8.2102.0-7.1 - Address CVE-2022-24903, Heap-based overflow in TCP syslog server resolves: rhbz2081400...
java-11-openjdk security update
1:11.0.15.0.9-2 - Add JDK-8284920 fix for XPath regression - Related: rhbz2073422 1:11.0.15.0.9-2 - Remove security items from release notes that were only in 17u and N/A for 11u - Related: rhbz2073422 1:11.0.15.0.9-1 - Update to jdk-11.0.15.0+9 - Update release notes to 11.0.15.0+9 - Switch to G...
log4j security update
0:1.2.17-18 - Fix Unsafe deserialization flaw in Chainsaw log viewer - Fix SQL injection when application is configured to use JDBCAppender - Fix remote code execution when application is configured to use JMSSink - Resolves: CVE-2022-23307, CVE-2022-23305, CVE-2022-23302...
annobin security update
9.72-1.2 - Bump NVR and rebuild to use the new gcc. 2017362 9.72-1.1 - Annocheck: Add test for multibyte characters in symbol names. 2017362 9.72-1 - Rebase to 9.72. 1960299 - annocheck: Accept 0 as a valid number for gcc minor versions and release numbers. - gcc-plugin: Add support for ARM and...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1...
.NET Core 2.1 security and bugfix update
2.1.525-1 - Update to .NET SDK 2.1.525 and Runtime 2.1.29 - Resolves: RHBZ1988581 2.1.524-1 - Update to .NET SDK 2.1.524 and Runtime 2.1.28 - Resolves: RHBZ1953766...
java-1.8.0-openjdk security update
1:1.8.0.302.b08-0 - Update to aarch64-shenandoah-jdk8u302-b08 EA - Update release notes for 8u302-b08. - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:1.8.0.302.b07-0.0.ea - Update to aarch64-shenandoah-jdk8u302-b07 EA - Upda...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.203.6.el7 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909...
runc security update
1.0.0-1.rc95 - Addresses CVE-2021-30465...
mariadb:10.3 and mariadb-devel:10.3 security update
galera 25.3.32-1 - Rebase to 25.3.32 mariadb 3:10.3.28-1 - Rebase to 10.3.28...
sudo security update
1.8.29-6.1 - RHEL 8.3.Z ERRATUM - CVE-2021-3156 Resolves: rhbz1917732...
libxml2 security and bug fix update
2.9.1-6.0.1.5 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.5 - Fix CVE-2019-19956 1793000 - Fix CVE-2019-20388 1810057 - Fix CVE-2020-7595 1810073 - Fix xsd:any schema validation 1812145...
qemu security update
15:3.1.0-7.el7 - qemu-img: Add --target-is-zero to convert David Edmondson 15:3.1.0-6.el7 - qemu.spec: Remove 'BuildRequires: kernel' Karl Heubaum Orabug: 30858754 - target/i386: add support for MSRIA32TSXCTRL Paolo Bonzini Orabug: 30652327 - iscsi: Cap block count from GET LBA STATUS CVE-2020-17...
Unbreakable Enterprise kernel security update
4.14.35-1902.10.4.1.el7uek - IB/mlx4: Fix use after free in RDMA CM disconnect code path Manjunath Patil Orabug: 30815818 - IB/mlx4: Fix leak in idmapfinddel Hakon Bugge Orabug: 30815811 - RDMA/cma: Relax device check in cmamatchnetdev Hakon Bugge Orabug: 30815802 - KVM: x86: fix out-of-bounds...
subversion:1.10 security update
libserf 1.3.9-9 - Resolves: 1696354 - Ensure modular RPM upgrade path subversion 1.10.2-2 - rebuild to ensure NVR ordering 1696354 1.10.2-1.1 - Resolves: 1733442 - CVE-2019-0203 subversion:1.10/subversion: remote unauthenticated denial-of-service in subversion svnserve utf8proc 2.1.1-5 - Resolves...
dbus security update
1:1.2.24-11.0.1 - fix netlink poll: error 4 Zhenzhong Duan 1:1.2.24-11 - Apply patch for CVE-2019-12749 1725574 1:1.2.24-10 - Fix CVE-2019-12749 1725574...
cloud-init security update
18.2-1.0.1 - add modified version of enable-ec2utils-to-stop-retrying-to-get-ec2-metadata.patch for 18.2: 1. Enable ec2utils.py having a way to stop retrying to get ec2 metadata 2. Apply stop retrying to get ec2 metadata to helper/openstack.py MetadataReader Resolves: Oracle-Bug:41660 Bugzilla...
Unbreakable Enterprise kernel security update
4.1.12-124.15.4 - x86/bugs/IBRS: Keep SSBD mitigation in effect if spectrev2=ibrs is selected Mihai Carabas - fs/pstore: update the backend parameter in pstore module Wang Long Orabug: 27994372 - kvm: vmx: Reinstate support for CPUs without virtual NMI Paolo Bonzini Orabug: 28041210 - dm crypt: a...
Unbreakable Enterprise kernel security update
2.6.39-400.298.1 - ocfs2/dlm: ignore cleaning the migration mle that is inuse xuejiufei Orabug: 23320090 - tty: Fix race in ptywrite leading to NULL deref Todd Vierling Orabug: 24337879 - xen-netfront: cast grant table reference first to type int Dongli Zhang Orabug: 25102637 - xen-netfront: do n...
Unbreakable Enterprise kernel security update
4.1.12-103.10.1 - mm, thp: Do not make page table dirty unconditionally in followtranshugepmd Kirill A. Shutemov Orabug: 27200879 CVE-2017-1000405 - NFS: Add static NFS I/O tracepoints Chuck Lever - storvsc: dont assume SG list is contiguous Aruna Ramakrishna Orabug: 27044692 - fix unbalanced pag...
nss security update
3.21.3-2.0.1 - Fix out-of-bound issue in base64 encoding/decoding code CVE-2017-5461...
Unbreakable Enterprise kernel security update
2.6.39-400.294.7 - udp: properly support MSGPEEK with truncated buffers Eric Dumazet Orabug: 25874741 CVE-2016-10229 - block: fix use-after-free in seq file Vegard Nossum Orabug: 25877531 CVE-2016-7910...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.16.4 - dccp: fix freeing skb too early for IPV6RECVPKTINFO Andrey Konovalov CVE-2017-6074...
kernel security and bug fix update
2.6.32-642.15.1 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes Frederic Sowa 1424626 1424628 CVE-2017-6074 2.6.32-642.14.1 - net sctp: validate chunk len before actually using it Hangbin Liu 1399456 1399457 CVE-2016-9555 - netdrv qlcnic: add wmb call in transmit data path Harish...
kernel security and bug fix update
2.6.32-573.12.1 - Revert: netdrv igb: add support for 1512 PHY Stefan Assmann 1278275 1238551 2.6.32-573.11.1 - kvm svm: unconditionally intercept DB Paolo Bonzini 1279467 1279468 CVE-2015-8104 - x86 virt: guest to host DoS by triggering an infinite loop in microcode Paolo Bonzini 1277557 1277559...
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.5.1.0.1.el71 - Update DISTRONAME in specfile 1:1.7.0.75-2.5.5.1 - repacked sources - Resolves: rhbz1209072 1:1.7.0.75-2.5.5.0 - Bump to 2.5.5 using OpenJDK 7u79 b14. - Update OpenJDK tarball creation comments - Remove test case for RH1191652 now fix has been verified. - Drop AArch6...
kernel security and bug fix update
kernel 2.6.18-348.18.1 - net be2net: enable polling prior enabling interrupts globally Ivan Vecera 1005239 987539 - kernel signals: stop info leak via tkill and tgkill syscalls Oleg Nesterov 970874 970875 CVE-2013-2141 - net ipv6: do udppushpendingframes AFINET sock pending data Jiri Benc 987647...
ImageMagick security and bug fix update
6.2.8.0-12.el5 - Add fix for CVE-2010-4167 767142 6.2.8.0-11.el5 Fix assertion failed when using 'identify -verbose' when theres no image information available 502626 6.2.8.0-10.el5 Fix memory allocation failure when using color option 616538 Fix hang when converting broken GIF 693989 Fix...
php security update
5.1.6-27.4 - add security fixes for CVE-2011-4885, CVE-2011-4566, CVE-2011-0708, CVE-2011-1148, CVE-2011-1466, CVE-2011-1469, CVE-2011-2202 769756...
gnutls security update
1.0.20-4.0.1.el48.7 - Bump release to resolve ULN up2date issue 1.0.20-4.7 - fix crash in the gnutls-cli tool needed for testing 1.0.20-4.5 - fix safe renegotiation in SSL3 protocol 1.0.20-4.4 - implement safe renegotiation - CVE-2009-3555 533125...
Unbreakable Enterprise kernel security update
4.14.35-2047.541.4.1 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37137499 4.14.35-2047.541.4 - selftests: make order checking verbose in msgzerocopy selftest Zijian Zhang Orabug: 37063821 - selftests: fix OOM in msgzerocopy selftest Zijian Zhang Orabug: 37063821 -...
Unbreakable Enterprise kernel-container security update
5.15.0-0.30.20 - floppy: use a statically allocated error counter Willy Tarreau Orabug: 34218638 CVE-2022-1652 - x86: Disable RET on kexec Konrad Rzeszutek Wilk Orabug: 34335631 CVE-2022-23816 CVE-2022-29901 - x86/bugs: do not enable IBPB-on-entry when IBPB is not supported Thadeu Lima de Souza...
kernel security and bug fix update
3.10.0-1160.71.1.0.1 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.71.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 -...
Unbreakable Enterprise kernel security update
4.14.35-2047.514.5 - x86/speculation/mmio: Fix late microcode loading Patrick Colp Orabug: 34275786 4.14.35-2047.514.4 - Add debugfs for controlling MMIO state data Kanth Ghatraju Orabug: 34202260 CVE-2022-21123 CVE-2022-21127 CVE-2022-21125 CVE-2022-21166 - KVM: x86/speculation: Disable Fill...
glibc security update
...
virt:kvm_utils security update
hivex 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release libguestfs 1:1.40.2-25.0.1 - Replace upstream references from description tag - Config supermin to...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.205.7.2.el7 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugg...
dhcp security update
12:4.1.1-63.P1.0.2 - Added dhcp-4.1.1-P1-CVE-2021-25217.patch Orabug: 33005948...
samba security, bug fix, and enhancement update
openchange 2.3-27.0.1 - Use ldconfigscriptlets 2.3-27 - Rebuild for newer samba samba 4.13.3-3 - resolves: 1924615 - Fix a memcache bug when cache is full - resolves: 1924571 - Ensure that libwbclient has been updated before restarting services 4.13.3-2 - resolves: 1909647 - Fix winbind in trust...
thunderbird security update
78.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.1-1 - Update to 78.9.1...
sudo security update
1.8.6p3-29.0.3.el610.3 - Fix a bug on CVE-2021-3156.patch backported from ol7 Orabug: 32717065...
libpq security update
12.5-1 - Rebase to upstream release 12.5 Resolves: rhbz1898228 Resolves: rhbz1901558...
libxml2 security update
2.9.7-8.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-8 - Fix CVE-2019-19956 1793001 - Fix CVE-2020-7595 1799786 - Fix CVE-2019-20388 1810058...
GNOME security, bug fix, and enhancement update
dleyna-renderer 0.6.0-3 - Add a manual Resolves: 1612579 frei0r-plugins 1.6.1-7 - Rebuild with newer annobin to fix rpmdiff problems - Fix the build with a newer opencv - Resolves: rhbz1703994 gdm 3.28.3-34 - Fix file descriptor leak Resolves: 1877853 3.28.3-33 - Fix problem with Xorg fallback...
git security update
1.8.3.1-22 - Crafted URL containing new lines can cause credential leak - Resolves: CVE-2020-5260...
openjpeg2 security update
2.3.1-3 - Fix CVE-2020-8112 resolves: 1801030...
kernel security update
4.18.0-147.0.31.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.0.31 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave...
nghttp2 security update
1.33.0-1.el800.1 - backport security fixes from nghttp2-1.39.2 CVE-2019-9511 and CVE-2019-9513...
thunderbird security update
60.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...