8998 matches found
firefox security update
91.5.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.5.0-1 - Update to 91.5.0 build1...
python27:2.7 security update
...
olcne security update
olcne 1.3.1-5 - Updated registry-image-helper.sh to work with olcne-utils 1.3.1-4 - Fix istio template for 1.9.6 and 1.10.2 for k8s update failure 1.3.1-3 - Added ENDVERSIONBLOCK for OLM image 1.3.1-2 - Fix iptables issue when running on OL7 host using OL8 image for 1.19.8 - Fix iptables issue wh...
Unbreakable Enterprise kernel security update
5.4.17-2102.201.3uek - locking/qrwlock: Fix ordering in queuedwritelockslowpath Ali Saidi Orabug: 32805544 5.4.17-2102.201.2uek - md/bitmap: wait for external bitmap writes to complete during tear down Sudhakar Panneerselvam Orabug: 32764237 - ocfs2: fix deadlock between setattr and dioendiowrite...
Unbreakable Enterprise kernel security update
4.14.35-2047.501.1.el7uek - ovl: restore creds in all return paths of ovliterate Somasundaram Krishnasamy Orabug: 32620381 4.14.35-2047.501.0 - block/diskstats: accumulate all per-cpu counters in one pass Konstantin Khlebnikov Orabug: 32531559 - uek-rpm: config-aarch-embedded2 update for Jan 2021...
openssl security and bug fix update
1.1.1g-12 - Fix CVE-2020-1971 ediparty null pointer dereference 1.1.1g-11.1 - Implemented new FIPS requirements in regards to KDF and DH selftests - Disallow certificates with explicit EC parameters...
Unbreakable Enterprise kernel security update
2.6.39-400.326.1 - ath9khtc: release allocated buffer if timed out Navid Emamdoost Orabug: 31351574 CVE-2019-19073 - USB: serial: ioti: fix information leak in completion handler Johan Hovold Orabug: 31352086 CVE-2017-8924 - mm/hugetlb: fix a race between hugetlb sysctl handlers Muchun Song Orabu...
thunderbird security update
68.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.8.0-1 - Update to 68.8.0 build2...
samba security, bug fix, and enhancement update
openchange 2.3-24.0.1 - Add patch to build against samba 4.11 2.3-24 - Rebuild for newer samba and libldb samba 4.11.2-13 - resolves: 1802182 - Fix join using netbios name 4.11.2-12 - related: 1781232 - Improve debug output of smbclient - resolves: 1794461 - Do not return bogus inode numbers in...
git security update
2.18.2-2 - Crafted URL containing new lines can cause credential leak - Resolves: CVE-2020-5260...
virt:ol security and bug fix update
qemu-kvm 2.12.0-88.0.1.el810.3 - Added bug30251155-remove-upstream-reference Orabug: 30251155 2.12.0-88.el810.3 - kvm-tcpemu-Fix-oob-access.patch bz1791565 - kvm-slirp-use-correct-size-while-emulating-IRC-commands.patch bz1791565 - kvm-slirp-use-correct-size-while-emulating-commands.patch bz17915...
nodejs:10 security update
nodejs 1:10.19.0-2 - Resolves: RHBZ1811498 1:10.19.0-1 - Rebase to 10.19.0 to fix CVE-2019-15604 to CVE-2019-15606 1:10.16.3-1 - Rebase to 10.16.3 to fix CVE-2019-9511 to CVE-2019-9518 1:10.14.1-1 - Resolves: RHBZ1644207 - fixes node-gyp permissions - rebase 1:10.11.0-2 - BuildRequire...
qemu-kvm security update
1.5.3-173.el78.1 - kvm-util-add-slirpfmt-helpers.patch bz1798970 - kvm-tcpemu-fix-unsafe-snprintf-usages.patch bz1798970 - Resolves: bz1798970 CVE-2020-8608 qemu-kvm: QEMU: Slirp: potential OOB access due to unsafe snprintf usages rhel-7.8.z...
ksh security update
20120801-38 - Do not evaluate arithmetic expressions from environment variables at startup Resolves: 1790542...
dhcp security and bug fix update
12:4.2.5-77.0.1 - Direct users to Oracle Linux support site. 12:4.2.5-77 - Resolves: 1712414 - Reset signal handlers set by isclib 12:4.2.5-76 - Resolves: 1704675 - Fix crash of dhcpd6 triggered by bind rebase 12:4.2.5-75 - Resolves: 1672308 - Do not restart dhcp on NetworkManagers up events...
python security update
2.7.5-77.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-77 - Security fix for CVE-2019-9636 Resolves: rhbz1689316...
java-1.7.0-openjdk security update
1:1.7.0.211-2.6.17.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.211-2.6.17.1 - Produce debug symbols for libpulse-java.so - Set ITCFLAGS=-g so that debug symbols for the pulse audio - native library are being produced. This is needed to fix - rpmdiff errors of missing .debuginfo in...
mariadb security and bug fix update
1:5.5.60-1 - Rebase to 5.5.60 - CVE's fixed: 1558256, 1558260, 1559060 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-10379 CVE-2017-10384 CVE-2017-10378 CVE-2017-10268 CVE-2018-2562 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2819 CVE-2018-2817 CVE-2018-276...
firefox security update
52.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.8.0-1 - Update to 52.8.0 ESR...
Unbreakable Enterprise kernel security update
4.1.12-103.9.4 - thp: run vmaadjusttranshuge outside immaprwsem Kirill A. Shutemov Orabug: 27026180 4.1.12-103.9.3 - selinux: fix off-by-one in setprocattr Stephen Smalley Orabug: 27001717 CVE-2017-2618 CVE-2017-2618 CVE-2017-2618 - sysctl: Drop reference added by grabheader in procsysreaddir Zho...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.13.3 - mm, gup: close FOLL MAPPRIVATE race Linus Torvalds Orabug: 24928591 CVE-2016-5195...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.6.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393865 CVE-2016-4470 - ovl: fix permission checking for setattr Miklos Szeredi Orabug: 24393742 CVE-2015-8660...
ntp security and bug fix update
4.2.6p5-10 - don't accept server/peer packets with zero origin timestamp CVE-2015-8138 - fix crash with reslist command CVE-2015-7977, CVE-2015-7978 4.2.6p5-9 - fix crash with invalid logconfig command CVE-2015-5194 - fix crash when referencing disabled statistic type CVE-2015-5195 - don't hang i...
php54 security and bug fix update
php54 2.0-1 - fix incorrect selinux contexts 1194332 php54-php 5.4.40-1 - rebase to PHP 5.4.40 for various security fix 1209887 5.4.37-1 - rebase to PHP 5.4.37 5.4.36-1 - rebase to PHP 5.4.36 1168193 - fix package name in description - php-fpm own session dir php54-php-pecl-zendopcache 7.0.4-3 -...
bash security update
3.2-33.1.0.1 - Preliminary fix for CVE-2014-7169...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.21.1 - SPEC: v2.6.39-400.21.1 Maxim Uvarov - xen/mmu: On early bootup, flush the TLB when changing RO-RW bits Xen provided pagetables. Konrad Rzeszutek Wilk 2.6.39-400.20.1 - SPEC: v2.6.39-400.20.1 Maxim Uvarov - PCI: Set device power state to PCID0 for device without native PM support...
httpd security, bug fix, and enhancement update
2.2.15-26.0.1.el6 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-26 - htcacheclean: exit with code 4 also for 'restart' action 805810 2.2.15-25 - htcacheclean: exit with code 4 if nonprivileged user runs initscript 805810 - rotatelogs: omit the...
Unbreakable Enterprise kernel security update
2.6.32-300.39.1 - hugepages: fix use after free bug in 'quota' handling 15842385 CVE-2012-2133 - mm: Hold a file reference in madviseremove 15842884 CVE-2012-3511 - udf: Fortify loading of sparing table 15843730 CVE-2012-3400 - udf: Avoid run away loop when partition table length is corrupt...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek: 2.6.32-300.27.1.el6uek - net: sock: validate datalen before allocating skb Jason Wang Bugdb: 13966CVE-2012-2136 - fcaps: clear the same personality flags as suid when fcaps are used Eric Paris Bugdb: 13966 CVE-2012-2123 - Revert 'nfs: when attempting to open a directory, fall back on...
Unbreakable Enterprise kernel security update
2.6.39-100.7.1.el6uek - KVM: Ensure all vcpus are consistent with in-kernel irqchip settings Avi Kivity Bugdb: 13871 CVE-2012-1601 - jbd2: clear BHDelay & BHUnwritten in journalunmapbuffer Eric Sandeen Bugdb: 13871 CVE-2011-4086...
php53 security update
5.3.3-7 - correct detection of = in CVE-2012-1823 fix 818607 5.3.3-6 - add security fix for CVE-2012-1823 818607...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.11.el6 - fs/partitions: Validate mapcount in Mac partition tables CVE-2011-1010 - nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab v3 CVE-2011-1090 2.6.32-100.28.10.el6 - Use cciss for some Smart Array controller for OL5 orabug 11899706 - CVEs from...
kernel security, bug fix, and enhancement update
2.6.9-89.0.25.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
kernel security and bug fix update
2.6.18-92.1.17.0.1.el5 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NFS nfs attribute timeout fix Trond Myklebust orabug 7156607 RHBZ 446083 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.17.el5...
kernel security and bug fix update
2.6.9-67.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
libxslt security update
1.1.34-9.0.1.el95.2 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-9.2 - Fix CVE-2024-55549 RHEL-83515 1.1.34-9.1 - Fix CVE-2025-24855 RHEL-83501...
httpd security update
2.4.57-11.0.1.el94.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-11.1 - Resolves: RHEL-46047 - httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53021 - Regression introduced by...
java-21-openjdk security update
1:21.0.3.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.3.0.9-1 - Update to jdk-21.0.3+9 GA - Update release notes to 21.0.3+9 - Switch to GA mode. - Sync the copy of the portable specfile with the latest update - This tarball is embargoed until 2024-04-16 @ 1pm PT. - Resolves:...
conmon security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build cri-o 1.26.3-3 - Resolve CVE-2023-39325 1.26.3-2 - Add support for ARM build cri-tools 1.26.1-3 - Resolve...
edk2 security update
20230821 - Create new 20230821 release for OL8 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
Unbreakable Enterprise kernel security update
5.15.0-0.30.19 - net/mlx4: Increase numsrq in lowmemprofile Dave Kleikamp Orabug: 34052160 5.15.0-0.30.18 - Revert ocfs2: mount shared volume without ha stack Junxiao Bi Orabug: 33701900 - KVM: x86/speculation: Disable Fill buffer clear within guests Pawan Gupta Orabug: 34202258 CVE-2022-21123...
microcode_ctl security update
4:20220207-1.0.4 - ensure UEK also rebuilds initramfs Orabug: 34280058...
Unbreakable Enterprise kernel security update
4.14.35-2047.511.5.8.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34048826 CVE-2022-1016...
openssl security update
1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...
Unbreakable Enterprise kernel security update
4.1.12-124.60.1 - xfs: map unwritten blocks in XFSIOCALLOC,FREESP just like fallocate Darrick J. Wong Orabug: 33699627 Orabug: 33762471 CVE-2021-4155 - fix regression in 'epoll: Keep a reference on files added to the check list' Al Viro Orabug: 33679854 Orabug: 33762505 CVE-2021-1048 CVE-2021-104...
thunderbird security update
91.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.5.0-1 - Update to 91.5.0 build1...
kernel security update
4.18.0-348.2.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
redis:6 security update
6.0.9-5 - fix denial of service via Redis Standard Protocol RESP request CVE-2021-32675 6.0.9-4 - fix lua scripts can overflow the heap-based Lua stack CVE-2021-32626 - fix integer overflow issue with Streams CVE-2021-32627 - fix integer overflow bug in the ziplist data structure CVE-2021-32628 -...