8990 matches found
Unbreakable Enterprise kernel-container security update
5.4.17-2102.205.7.2.el7 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugg...
exiv2 security update
0.27.3-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990355...
nodejs:10 security update
nodejs 1:10.24.0-1 - Resolves: RHBZ1932373, RHBZ1932426 - Resolves CVE-2021-22883 and CVE-2021-22884 - remove -debug-nghttp2 flag 1930775 - remove ini patch merged upstream...
firefox security update
78.7.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.7.0-2 - Update to 78.7.0 build2 78.7.0-1 - Update to 78.7.0 build1...
dotnet3.1 security and bugfix update
3.1.111-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.111-1 - Update to .NET Core SDK 3.1.111 and Runtime 3.1.11 - Resolves: RHBZ1907633...
go-toolset:ol8 security update
delve 1.4.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.4.1-1 - Rebase to 1.4.1 - Resolves: rhbz1821281 - Related: rhbz1820596 1.4.0-2 - Change i686 to a better macro - Related: rhbz1820596 1.4.0-1 - Rebase to 1.4.0 - Remove Patch1781 - Related: rhbz1820596 1.3.2-3 -...
nginx:1.16 security update
1:1.16.1-1.0.1.1 - Remove Red Hat references Orabug: 29498217 1:1.16.1-1.1 - Resolves: 1898952 - CVE 2019-20372 nginx:1.16/nginx: HTTP request smuggling via error pages in http/ngxhttpspecialresponse.c...
sqlite security update
3.26.0-11 - Fixed bug in CVE-2019-20218 1791592 3.26.0-10 - Fixed CVE-2020-13632 1845572 - Fixed CVE-2020-13631 1845474 - Fixed CVE-2020-13630 1845153 3.26.0-9 - Fixed CVE-2019-5018 1721509 3.26.0-8 - Fixed CVE-2019-16168 1826897 3.26.0-7 - Fixed CVE-2019-20218 1791592 - Fixed CVE-2020-6405 18048...
Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes kubernetes istio olcne security update
kernel-uek-container 4.14.35-1902.303.5.3.el7 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' Gerd Rausch Orabug: 31475329 - Revert 'rds: Introduce rdsconntopath helper' Gerd Rausch Orabug: 31475329 ...
squid security update
7:3.5.20-15.1 - Resolves: 1828359 - CVE-2020-11945 squid: improper access restriction upon Digest Authentication nonce replay could lead to remote code execution - Resolves: 1828360 - CVE-2019-12519 squid: improper check for new member in ESIExpression::Evaluate allows for stack buffer overflow -...
xerces-c security update
3.1.1-10 - add security fix for CVE-2018-1311...
openjpeg2 security update
2.3.1-3 - Fix CVE-2020-8112 1801033...
git security update
1.8.3.1-21 - Fix CVE-2019-1387...
python security update
...
httpd:2.4 security update
httpd 2.4.37-12.0.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-12 - Resolves: 1744997 - CVE-2019-9511 httpd:2.4/modhttp2: HTTP/2: large amount of data request leads to denial of service - Resolves: 1745084 -...
python security and bug fix update
2.7.5-86.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-86 - Security fix for CVE-2019-10160 Resolves: rhbz1718388 2.7.5-85 - Security fix for CVE-2019-9948 Resolves: rhbz1704174 2.7.5-84 - Disallow control chars in http URLs - Fixes CVE-2019-9740 and CVE-2019-9947...
libjpeg-turbo security update
1.2.90-8 - Fix CVE-2018-14498 1687475 1.2.90-7 - Fix CVE-2018-11212 1586062 - Fix CVE-2016-3616 1318509, CVE-2018-11213 1589091 and CVE-2018-11214 1589110 - Fix CVE-2018-11813 1591203...
nss, nss-softokn, nss-util, and nspr security, bug fix, and enhancement update
nspr 4.21.0-1 - Rebase to NSPR 4.21 nss 3.44.0-4 - Fix certutil man page - Fix extracting a public key from a private key for dh, ec, and dsa 3.44.0-3 - Disable TLS 1.3 under FIPS mode - Disable RSASSA-PKCS1-v15 in TLS 1.3 - Fix post-handshake auth transcript calculation if SSLENABLESESSIONTICKET...
Unbreakable Enterprise kernel security update
4.1.12-124.24.1 - pinctrl: amd: Use devmpinctrlregister for pinctrl registration Laxman Dewangan Orabug: 27539246 CVE-2017-18174 - mlock: fix mlock count can not decrease in race condition Yisheng Xie Orabug: 27677611 CVE-2017-18221 - perf/core: Fix the perfcputimemaxpercent check Tan Xiaojun...
qemu-kvm security, bug fix, and enhancement update
1.5.3-156.el7 - kvm-vnc-Fix-qemu-crashed-when-vnc-client-disconnect-sudd.patch bz1527405 - kvm-fix-full-frame-updates-for-VNC-clients.patch bz1527405 - kvm-vnc-update-fix.patch bz1527405 - kvm-vnc-return-directly-if-no-vnc-client-connected.patch bz1527405 - kvm-buffer-add-buffermoveempty.patch...
Unbreakable Enterprise kernel security update
2.6.39-400.297.12 - xsigo: backport Fix race in freeing aged Forwarding tables Pradeep Gopanapalli Orabug: 24823234 - ocfs2: fix deadlock issue when taking inode lock at vfs entry points Eric Ren Orabug: 25671723 - ocfs2/dlmglue: prepare tracking logic to avoid recursive cluster lock Eric Ren...
openssl security update
1.0.1e-60.1 - fix CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher - fix CVE-2016-8610 - DoS of single-threaded servers via excessive alerts...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.15.1 - Revert 'i40e: Set defport behavior for the Main VSI when in promiscuous mode' Jack Vogel Orabug: 22683573 - mlx4: avoid multiple free on idmapent Wengang Wang - xen-netfront: cast grant table reference first to type int Dongli Zhang - xen-netfront: do not cast grant...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.91-2.6.2.1 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271918 1:1.7.0.91-2.6.2.0 - Drop patch for PR2521/RH1242587 now resolved upstream. - Resolves:...
nss security update
nss 3.19.1-3.0.1 - Added nss-vendor.patch to change vendor 3.19.1-3 - Additional NULL initialization. 3.19.1-2 - Updated the patch to keep old cipher suite order - Resolves: Bug 1224449 3.19.1-1 - Rebase to nss-3.19.1 - Resolves: Bug 1224449 nss-util 3.19.0-1 - Rebase to nss-3.19.1 - Resolves: Bu...
kernel security, bug fix, and enhancement update
2.6.32-504.23.4 - crypto drbg: fix maximum value checks on 32 bit systems Herbert Xu 1225950 1219907 - crypto drbg: remove configuration of fixed values Herbert Xu 1225950 1219907 2.6.32-504.23.3 - netdrv bonding: fix locking in enslave failure path Nikolay Aleksandrov 1222483 1221856 - netdrv...
openssl security update
1.0.1e-30.9 - fix CVE-2015-4000 - prevent the logjam attack on client - restrict the DH key size to at least 768 bits limit will be increased in future...
php53 security, bug fix and enhancement update
5.3.3-21 - add security fix for CVE-2013-4248 5.3.3-20 - add security fix for CVE-2013-4113 5.3.3-19 - add upstream reproducer for errorhandler 951075 5.3.3-18 - add security fixes for CVE-2006-7243 5.3.3-17 - reorder security patches - add security fixes for CVE-2012-2688, CVE-2012-0831,...
busybox security and bug fix update
1:1.15.1-15 - Fix btrfs support to findfs and related applets - Resolves: 751927 1:1.15.1-14 - Resolves: 790335 'busybox various flaws' Added a fix for SEGV on empty command in hush 1:1.15.1-13 - Resolves: 790335 'busybox various flaws' including: 'buffer underflow in decompression' 'udhcpc...
kernel security and bug fix update
2.6.18-238.19.1.0.1.el5 - scsi remove printk's when doing I/O to a dead device John Sobecki, Chris Mason orabug 12342275 - char ipmi: Fix IPMI errors due to timing problems Joe Jin orabug 12561346 - scsi Fix race when removing SCSI devices Joe Jin orabug 12404566 - bonding: reread information abo...
Oracle Linux 4.9 kernel security and bug fix update
2.6.9-100 -cxgb3: prevent reading uninitialized stack memory to fix xgbextensionioctl infoleak Eugene Teo 633153 CVE-2010-3296 -mlx4: disable MSI-X by default Andy Gospodarek 530596 -ext3: call fs invalidatepage instead of blockinvalidatepage Josef Bacik 488611 -av7110: check for negative array...
firefox security update
firefox: 3.6.9-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.9-2 - Fixed xulrunner version 3.6.9-1 - Update to 3.6.9 nspr: 4.8.6-1 - update to 4.8.6 nss: 3.12.7-2.0.1.el55 - Update clean.gif in the...
kernel security and bug fix update
2.6.18-164.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
iperf3 security update
3.9-13 - Resolves: RHEL-29579 - vulnerable to marvin attack if the authentication option is used 3.9-12 - Resolves: RHEL-39975 - possible denial of service 3.9-11 - Related: 2223676 - bumping version for correct update path...
kernel security, bug fix, and enhancement update
4.18.0-513.24.19.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security and bug fix update
3.10.0-1160.90.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.90.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 2481767...
thunderbird security update
102.7.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.7.1-1 - Update to 102.7.1 build1 102.7.0-1 - Update to 102.7.0 build1...
python-lxml security update
4.2.3-4 - Security fix for CVE-2021-43818 Resolves: rhbz2032569...
kernel security, bug fix, and enhancement update
4.18.0-348.20.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1 78.12.0-3 - Rebuild to pickup older nss...
.NET Core on OL 8 security and bugfix update
5.0.104-1.0.1 - Add support for new Oracle release 5.0.104-1 - Update to .NET SDK 5.0.104 and Runtime 5.0.4 - Resolves: RHBZ1934247...
libvirt security update
5.7.0-21.el7 - exadata: Fix the validation when defining domain groups Wim ten Have Orabug: 32085856 - Revert 'qemu: dont take agent and monitor job for shutdown' Menno Lageman Orabug: 32080283 - Revert 'qemu: dont hold a monitor and agent job for reboot' Menno Lageman Orabug: 32080283 - Revert...
thunderbird security update
78.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.5.0-1 - Update to 78.5.0 build3...
microcode_ctl security, bug fix, and enhancement update
2:2.1-73.2.0.1 - for Intel, do not trigger load if on-disk microcode is not an update Orabug: 30634727 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early and late load for 5.4.17-...
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
...
java-1.8.0-openjdk security update
1:1.8.0.252.b09-2 - Add release notes. - Resolves: rhbz1810557 1:1.8.0.252.b09-1 - Make use of --with-extra-asflags introduced in jdk8u252-b01. - Resolves: rhbz1810557 1:1.8.0.252.b09-0 - Update to aarch64-shenandoah-jdk8u242-b09. - Switch to GA mode for final release. - Resolves: rhbz1810557...
kubernetes kubeadm-ha-setup kubeadm-upgrade security update
kubernetes 1.12.10-1.0.11 - CVE-2019-11254 kube-apiserver Denial of Service vulnerability from malicious YAML payloads 1.12.10-1.0.10 - CVE-2019-16276 Kubernetes Vulnerabilities Allow Authentication Bypass, DoS 1.12.10-1.0.9 - Define rolling update for flannel 1.12.10-1.0.8 - Modify...
python-virtualenv security update
15.1.0-4 - Bump Resolves: rhbz1649153 Resolves: rhbz1700824 Resolves: rhbz1643829 15.1.0-3 - Add three new patches for CVEs in bundled urllib3 and requests CVE-2018-20060, CVE-2019-11236, CVE-2018-18074 Resolves: rhbz1649153 Resolves: rhbz1700824 Resolves: rhbz1643829...
thunderbird security update
68.3.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.3.0-1 - Update to 68.3.0 build2 68.2.0-2 - Added patch for TLS 1.3 support...
firefox security update
68.3.0-1.0.1 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.3.0-1 - Update to 68.3.0 ESR 68.2.0-4 - Added patch for TLS 1.3 support. 68.2.0-3 - Rebuild...