9001 matches found
Unbreakable Enterprise kernel security update
5.15.0-0.30.19 - net/mlx4: Increase numsrq in lowmemprofile Dave Kleikamp Orabug: 34052160 5.15.0-0.30.18 - Revert ocfs2: mount shared volume without ha stack Junxiao Bi Orabug: 33701900 - KVM: x86/speculation: Disable Fill buffer clear within guests Pawan Gupta Orabug: 34202258 CVE-2022-21123...
microcode_ctl security update
4:20220207-1.0.4 - ensure UEK also rebuilds initramfs Orabug: 34280058...
Unbreakable Enterprise kernel security update
4.14.35-2047.511.5.8.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34048826 CVE-2022-1016...
openssl security update
1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...
thunderbird security update
91.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.5.0-1 - Update to 91.5.0 build1...
kernel security update
4.18.0-348.2.15.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
redis:6 security update
6.0.9-5 - fix denial of service via Redis Standard Protocol RESP request CVE-2021-32675 6.0.9-4 - fix lua scripts can overflow the heap-based Lua stack CVE-2021-32626 - fix integer overflow issue with Streams CVE-2021-32627 - fix integer overflow bug in the ziplist data structure CVE-2021-32628 -...
redis:5 security update
5.0.3-5 - fix denial of service via Redis Standard Protocol RESP request CVE-2021-32675 5.0.3-4 - fix lua scripts can overflow the heap-based Lua stack CVE-2021-32626 - fix integer overflow issue with Streams CVE-2021-32627 - fix integer overflow bug in the ziplist data structure CVE-2021-32628 -...
Unbreakable Enterprise kernel security update
4.1.12-124.54.6.1 - fs/namespace.c: fix mountpoint reference counter race Piotr Krysiuk Orabug: 33369433 CVE-2020-12114 CVE-2020-12114 - btrfs: only search for leftinfo if there is no rightinfo in trymergefreespace Josef Bacik Orabug: 33369414 CVE-2019-19448 CVE-2019-19448 - cfg80211: wext: avoid...
microcode_ctl security, bug fix and enhancement update
4:20210216-1.20210608.0.1 - add support for UEK6 kernels - enable early update for 06-4f-01 - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 - enable early and late load on RHCK 4:20210216-1.20210608.1 - Update Intel CPU microcode to microcode-20210608 release: - Fixes in...
kernel security update
2.6.32-754.35.1.0.4.OL6 - seqfile: disallow extremely large seq buffer allocations CVE-2021-33909 Eric Sandeen Orabug: 33137331...
containerd security update
containerd 1.4.8-1 - Address CVE-2021-32760 docker-cli 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760. docker-engine 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760...
pki-core:10.6 security update
pki-core 10.10.5-3.0.1 - Remove upstream reference. 10.10.5-3 - Bug 1960146 - CVE-2021-3551 Dogtag installer 'pkispawn' logs admin credentials into a world-readable log file...
389-ds:1.4 security and bug fix update
1.4.3.8-7 - Bump version to 1.4.3.8-7 - Resolves: Bug 1908705 - CVE-2020-35518 389-ds:1.4/389-ds-base: information disclosure during the binding of a DN - Resolves: Bug 1936461 - A failed re-indexing leaves the database in broken state. - Resolves: Bug 1912481 - Server-Cert.crt created using...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.272.b10-1 - Add backport of JDK-8215727: 'Restore JFR thread sampler loop to old / previous behaviour' - Resolves: rhbz1876665 1:1.8.0.272.b10-0 - Update to aarch64-shenandoah-jdk8u272-b10. - Switch to GA mode for final release. - Update release notes for 8u272 release. - Add backport of...
kubernetes-cni-plugins kubernetes-cni kubernetes olcne security update
kubernetes-cni-plugins 0.8.6-1.0.1 - Added Oracle specific build files for Kubernetes CNI Plugins kubernetes-cni 0.7.1-1.0.1 - Added Oracle specific build files for Kubernetes CNI kubernetes 1.14.9-1.0.4 - CVE-2020-10749: IPv4 only clusters susceptible to MitM attacks via IPv6 rogue router...
tomcat security update
0:7.0.76-12 - Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Execution via session persistence...
freerdp security update
2.0.0-4.rc4 - CVE-2020-11521: Fix out-of-bounds write in planar.c 1837621 - CVE-2020-11523: Fix integer overflow in region.c 1837622 - CVE-2020-11524: Fix out-of-bounds write in interleaved.c 1837623...
firefox security update
68.9.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Fri May 29 2020 Jan Horak - Update to 68.9.0 build1 - Added patch for pipewire 0.3 Mon May 11 2020 Jan...
container-tools:ol8 security and bug fix update
buildah 1.11.6-6.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-6 - fix COPY command takes long time with buildah - Resolves: 1806119 1.11.6-5 - fix Podman support for FIPS Mode requires a bind mount inside the container - Resolves: 1804188 cockpit-podman 11-1 - Fix Alert...
Unbreakable Enterprise kernel security update
4.14.35-1902.10.8 - KVM: nVMX: Check IO instruction VM-exit conditions Oliver Upton Orabug: 30847136 CVE-2020-2732 - KVM: nVMX: Refactor IO bitmap checks into helper function Oliver Upton Orabug: 30847136 CVE-2020-2732 - KVM: nVMX: Dont emulate instructions in guest mode Paolo Bonzini Orabug:...
bind security update
32:9.9.4-73 - Fixes debug level comments 1647539...
Unbreakable Enterprise kernel security update
4.14.35-1818.3.3 - net: netfailover: fix typo in netfailoverslaveregister Liran Alon Orabug: 28122110 - virtionet: Extend virtio to use VF datapath when available Sridhar Samudrala Orabug: 28122110 - virtionet: Introduce VIRTIONETFSTANDBY feature bit Sridhar Samudrala Orabug: 28122110 - net:...
java-1.8.0-openjdk security update
1:1.8.0.171-3.b10 - Cleanup from previous commit. - Resolves: rhbz1559766 1:1.8.0.171-2.b10 - Backported from fedora: aarch64BuildFailure.patch, rhbz1536622-JDK8197429-jdk8.patch, rhbz1540242.patch - Resolves: rhbz1559766 1:1.8.0.171-0.b10 - Update to aarch64-jdk8u171-b10. - Resolves: rhbz1559766...
samba security update
4.6.2-12 - resolves: 1514314 - Fix CVE-2017-14746 and CVE-2017-15275...
kernel security, bug fix, and enhancement update
...
bind security and bug fix update
32:9.9.4-50.1 - Bump again above RHEL-7.4 32:9.9.4-38.5 - Fix CVE-2017-3142 and CVE-2017-3143 32:9.9.4-38.4 - Update root servers and trust anchor 1459649...
kernel security and bug fix update
3.10.0-514.26.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security update
2.6.32-642.6.2 - mm close FOLL MAPPRIVATE race Larry Woodman 1385116 1385117 CVE-2016-5195...
kernel security and bug fix update
3.10.0-327.22.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.22.2 - infiniband security: Restrict use of the write interface Don Dutile 1332553 1316685 CVE-2016-4565 3.10.0-327.22.1 - mm mmunotifier: fix memory corruption Jerome Glisse 1335727 1307042 - misc cxl: Increase timeout...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.6.1 - skbuff: skbsegment: orphan frags before copying Dongli Zhang Orabug: 23018911 - RDS/IB: VRPC DELAY / OSS RECONNECT CAUSES 5 MINUTE STALL ON PORT FAILURE Venkat Venkatsubra Orabug: 22888920 - mlx4core: Introduce restrictions for PD update Ajaykumar Hotchandani - filenam...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.5 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502739 CVE-2015-0239 CVE-2015-0239 - fs: take imutex during preparebinprm for setugid executables Jann Horn Orabug: 21502254 CVE-2015-3339 - eCryptfs: Remove buggy and unnecessary write in file name decode...
bash security update
4.2.45-5.2.0.1 - Preliminary fix for CVE-2014-7169...
unbreakable enterprise kernel security bug fix update
2.6.39-400.215.10 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590597 CVE-2014-3917 2.6.39-400.215.9 - oracleasm: Add support for new error return codes from block/SCSI Martin K. Petersen Orabug: 18438934 2.6.39-400.215.8 - ibipoib: CSUM support in connected...
kernel security and bug fix update
3.10.0-123.6.3 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.6.3 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.6.2.el7 - s390 ptrace: correct insufficient sanitization when setting psw mask Hendrik Brueckner 1114090...
kernel security and bug fix update
kernel 2.6.18-371.9.1 - nfs sunrpc: don't use a credential with extra groups Mateusz Guzik 1095062 976201 - scsi lpfc: Remove NDLP reference put in lpfccmplelslogoacc Rob Evers 1096061 1075228 - infiniband rds: dereference of a NULL device Jacob Tanenbaum 1079216 1079217 CVE-2013-7339 - kernel...
samba security update
3.0.33-3.40.el5 - Security Release, fixes CVE-2013-0213 and CVE-2013-4124 - resolves: 1073350...
java-1.7.0-openjdk security update
1.7.0.51-2.4.4.1.0.1.el65 - Update DISTRONAME in specfile 1.7.0.51-2.4.4.1.el6 - restored java7 provides - bumped release builds exists - Resolves: rhbz1050935 1.7.0.51-2.4.4.0.el6 - updated to security icedtea 2.4.4 - icedteaversion set to 2.4.4 - updatever bumped to 51 - release reset to 0 - sy...
kernel security and bug fix update
kernel 2.6.18-348.18.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
mysql security update
5.0.95-5 - Rebuild to fix wrong package tag Related: 892679 5.0.95-4 - Add patches for CVE-2012-2122, CVE-2012-2749, CVE-2012-5611 Resolves: 892679...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-300.4.1.el6uek - pci intel-iommu: Default to non-coherent for domains unattached to iommus Joe Jin - dm do not forward ioctls from logical volumes to the underlying device Joe Jin CVE-2011-4127 - block fail SCSI passthrough ioctls on partition devices Joe Jin CVE-2011-4127 - blo...
kernel security and bug fix update
2.6.32-71.14.1.0.1.el6 - replace Red Hat with Oracle in files genkey and kernel.spec 2.6.32-71.14.1.el6 - kvm x86: zero kvmvcpuevents-interrupt.pad Marcelo Tosatti 665471 665409 CVE-2010-4525 2.6.32-71.13.1.el6 email6.RHSA-2011-0007 178L, 11970C written - scsi lpfc: Fixed crashes for NULL pnode...
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
Following security bugs are fixed in this errata CVE-2010-3904 When copying data to userspace, the RDS protocol failed to verify that the user-provided address was a valid userspace address. A local unprivileged user could issue specially crafted socket calls to write arbitrary values into kernel...
kernel security update
2.6.18-194.11.4.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
firefox security update
firefox: 3.0.19-1.0.1.el55 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.19-1 - Update to 3.0.19 xulrunner: 1.9.0.19-1.0.1.el55...
kernel security and bug fix update
2.6.9-89.0.23.0.1 - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL8 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building...
go-toolset:ol8 security update
delve 1.9.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.9.1-1 - Rebase to 1.9.1 - Related: rhbz2131026 golang 1.19.10-1.0.1 - New Go version 1.19.10 CVE-2023-29402 CVE-2023-29403 CVE-2023-29404 CVE-2023-29405 go-toolset 1.19.10-1.0.1 - Update for Go 1.19.10 CVE-2023-29402...
libgcrypt security update
1.8.5-7 - Fix CVE-2021-33560 2018525...