8984 matches found
microcode_ctl security update
2:2.1-73.19.0.3 - update 06-6a-06 to 0xd0003b9 CVE-2023-23583...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.8-4 - rebuild for golang fixes - Related: RHEL-28452 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon 3:2.1.10-1 - update to https://github.com/containers/conmon/releases/tag/v2.1.10...
python-cryptography security update
36.0.1-4.0.1 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates Orabug: 36119159 36.0.1-4 - Fix FTBFS caused by rsapkcs1implicitrejection OpenSSL feature, resolves rhbz2203840 36.0.1-3 - Fix CVE-2023-23931: Don't allow updateinto to mutate immutable objects, resolves rhbz21723...
fwupd security update
1.7.8-2.0.1 - Modify %prep to correctly apply downstream patches - Align sections to 512 bytes Orabug: 35265981 - Use objcopy to build arm/aarch64 binaries if binutils 2.30-113.0.3 or newer Orabug: 35265981 - Enabled signing for aarch64 Orabug: 35265981 - Modify meson.build for fwupd-efi Orabug:...
bind security update
32:9.11.4-26.P2.5 - Possible assertion failure on DNAME processing CVE-2021-25215...
dbus security update
1:1.10.24-15.0.1 - fix netlink poll: error 4 Zhenzhong Duan 1:1.10.24-15 - Fix CVE-2020-12049 1851992...
mariadb security and bug fix update
1:5.5.65-1 - Rebase to 5.5.65 Also fixes: CVE-2019-2737 CVE-2019-2739 CVE-2019-2740 CVE-2019-2805 Resolves: 1741357 - Revert upstream changes that make the mysqlinstalldb relocatable because it broke mysqlinstalldb when run without --rpm arg Resolves: 1731062 - Add openssl BR that was missing for...
Unbreakable Enterprise kernel security update
5.15.0-210.163.7 - crypto: qat - specify firmware files for 402xx Giovanni Cabiddu Orabug: 37030280 5.15.0-210.163.6 - Revert 'Fix userfaultfdapi to return EINVAL as expected' Vijayendra Suman Orabug: 37004422 5.15.0-210.163.5 - Revert 'bpf: Allow reads from uninit stack' Vijayendra Suman Orabug:...
c-ares security update
1.13.0-11 - Resolves: RHEL-26525 - c-ares: Out of bounds read in aresreadline rhel-8...
libxml2 security update
2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
libX11 security update
1.6.8-8 - Backport fix for Xlib lockups due to recursive XError RHEL-23452 1.6.8-7 - Fix CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms - Fix CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage - Fix CVE-2023-43787: integer overflow in XCreateImage leading to a...
shadow-utils security and bug fix update
2:4.6-19 - gpasswd: fix password leak. Resolves: 2215947 2:4.6-18 - Update patch to close label to reset libselinux state. Resolves: 1984740 - useradd: check if subid range exists for user. Resolves: 2012929 - findnewguid: Skip over IDs that are reserved for legacy reasons. Resolves: 1994269...
sssd security update
2.9.4-3.0.1 - Restore default debug level for ssscache Orabug: 32810448 2.9.4-3 - Resolves: RHEL-27205 - Race condition during authorization leads to GPO policies functioning inconsistently...
bind security update
32:9.11.36-16.2 - Rebuild after CI change 32:9.11.36-16.1 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Add ability to change runtime limits for max types and records per name 32:9.11.36-16 - Ensure incompatible dhcp is not accepted 32:9.11.36-15 - Ensure incompatible bind-dyndb-ldap is not...
cockpit security update
310.4-1.0.1 - Update documentation links Orabug: 34706402 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in cockpit Orabug: 33862832 - Update documentation links Orabug: 32795691 - Make documentation links point to Oracle Linux...
.NET 7.0 security update
7.0.119-1.0.1 - Add support for Oracle Linux 7.0.119-1 - Update to .NET SDK 7.0.119 and Runtime 7.0.19 - Resolves: RHEL-35313 7.0.118-2 - Update to .NET SDK 7.0.118 and Runtime 7.0.18 - Resolves: RHEL-31199...
python38:3.8 and python38-devel:3.8 security update
babel Cython modwsgi 4.6.8-5 - Remove rpath Resolves: rhbz2213836 4.6.8-4 - Core dumped upon file upload = 1GB Resolves: rhbz2125171 4.6.8-3 - Exclude unsupported i686 arch rhbz1779142 4.6.8-2 - Adjusted for Python 3.8 module in RHEL 8 4.6.8-1 - update to 4.6.8 1721376 4.6.6-6 - try again to drop...
log4j security update
0:1.2.17-16 - Fix socket receiver deserialization vulnerability - Resolves: CVE-2017-5645...
ruby:3.1 security, bug fix, and enhancement update
ruby 3.1.5-143 - Upgrade to Ruby 3.1.5. Resolves: RHEL-35748 - Fix buffer overread vulnerability in StringIO. Resolves: RHEL-35749 - Fix RCE vulnerability with .rdocoptions in RDoc. Resolves: RHEL-35750 - Fix arbitrary memory address read vulnerability with Regex search. Resolves: RHEL-35751...
libssh security update
0.9.6-13 - Client and Server side mitigations CVE-2023-48795 - Strip extensions from both kex lists for matching CVE-2023-48795 - tests: Adjust calculation to strict kex CVE-2023-48795...
libfastjson security update
0.99.9-2 - Address CVE-2020-12762 Resolves: rhbz2203171...
libxml2 security update
2.9.1-6.0.3 - Rebuild to include attribution logo Orabug: 33024216 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.6 - Fix CVE-2016-4658 1966916...
python-urllib3 security update
1.24.2-8 - Security fix for CVE-2024-37891 Resolves: RHEL-45334...
nss security update
3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...
dotnet6.0 security update
6.0.132-1.0.1 - Add support for Oracle Linux 6.0.132-1 - Update to .NET SDK 6.0.132 and Runtime 6.0.32 - Resolves: RHEL-45319...
evolution security and bug fix update
atk 2.28.1-2 - Remove patch to fix invalid unref at atkgobjectaccessibleobjectgonecb - Resolves: 1753123 evolution 3.28.5-8 - Update patch for RH bug 1686408 CVE-2018-15587: Reposition signature bar 3.28.5-7 - Add patch for RH bug 1686408 CVE-2018-15587: Reposition signature bar 3.28.5-6 - Add...
wget security update
1.19.5-12.0.1 - SSLv3 support dropped from openssl, v3 test certificates need to be replaced Orabug: 29613455 1.19.5-12 - Resolves: RHEL-43559 - Misinterpretation of input may lead to improper behavior...
linux-firmware security update
20240415-999.32.git5da74b16.el8 - Rebase to latest upstream Orabug: 36482906...
procps-ng security update
3.3.15-14.0.1 - ps: remove uptime integer conversion Orabug: 35909165 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909165 - Set TZ to avoid repeated stat'/etc/localtime' Orabug: 32769816 3.3.15-14 - CVE-2023-4016: ps: possible buffer overflow - Resolves: rhbz2228503...
avahi security update
0.6.31-20 - multicast DNS no longer responds to unicast queries outside of local network 1663410...
python-urllib3 security update
1.26.5-5.1 - Security fix for CVE-2024-37891 - Backport upstream patch to fix TypeError for http connection if the PoolManager - is instantiated with serverhostname Resolves: RHEL-49853...
python39:3.9 and python39-devel:3.9 security update
modwsgi numpy python39 3.9.19-7 - Security fix for CVE-2024-8088 Resolves: RHEL-55954 3.9.19-6 - Security fix for CVE-2024-6923 Resolves: RHEL-53102 3.9.19-5 - Properly propagate the optimization flags to C extensions 3.9.19-4 - Build Python with -O3 -...
tpm2-tss security and enhancement update
2.3.2-5 - Ensure layer number is in bounds Resolves: rhbz2160302 Resolves: rhbz2162611...
protobuf-c security update
1.3.0-8 - Rebuild for gating test 1.3.0-7 - Applied patch for for CVE-2022-48468 2186678...
linux-firmware security update
20240715-999.34.git4c8fb21e.el7 - Rebase to latest upstream Orabug: 36826157...
kernel security update
5.14.0-427.35.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
qt5-qtbase security update
5.15.3-8 - HTTP2: Delay any communication until encrypted can be responded to Resolves: RHEL-46340...
libmaxminddb security update
1.2.0-10.1 - Resolves: RHEL-20594 - improper initialization in dumpentrydatalist in maxminddb.c...
dotnet7.0 security update
7.0.114-1.0.1 - Update to .NET SDK 7.0.114 and Runtime 7.0.14...
libndp security update
1.2-10.0.1 - Increasing release number as per Oracle package release policy...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.4-1 - Update to 16.4 - Fix CVE-2024-7348...
java-1.8.0-openjdk security update
1:1.8.0.412.b08-1.0.1 - Fixes openjdk below given CVE issues - CVE-2024-21131 Improve-UTF8-String-supports - CVE-2024-21138 Better-symbol-storage - Fixes bad immediate dominator info openjdk bug8262017 - Fixes malformed control flow openjdk bug8303466 - CVE-2024-21140 Improved-loop-handling -...
openssh security update
8.7p1-38.0.2.1 - Update upstream references Orabug: 36564626 8.7p1-38.1 - Possible remote code execution due to a race condition CVE-2024-6387 Resolves: RHEL-45347...
openldap security update
2.4.44-25 - Fix CVE-2020-25709 openldap: assertion failure in Certificate List syntax validation 2040539 - Fix CVE-2020-25710 openldap: assertion failure in CSN normalization with invalid input 2040538...
java-11-openjdk security update
1:11.0.25.0.9-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.25.0.9-2 - Update to jdk-11.0.25+9 GA - Update release notes to 11.0.25+9 - Switch to GA mode for release - Related: RHEL-58772 - This tarball is embargoed until 2024-10-15 @ 1pm PT. 1:11.0.25.0.8-0.2.ea - Update to...
bind and bind-dyndb-ldap security update
bind 9.16.23-18.0.1.6 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.6 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-18.5 - Backport addition of max-records-per-type and max-records-per-type options 32:9.16.23-18.2 - Resolve CVE-2024-1975 -...
openssl-fips security update
1.0.1m-2.0.1 - update to upstream 1.0.1m - update to fips canister 2.0.9 - regenerated below patches openssl-1.0.1-beta2-rpmbuild.patch openssl-1.0.1m-rhcompat.patch openssl-1.0.1m-ecc-suiteb.patch openssl-1.0.1m-fips-mode.patch openssl-1.0.1m-version.patch openssl-1.0.1m-evp-devel.patch...
zlib security update
1.2.7-21 - Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c - Resolves: CVE-2022-37434...
Oracle Linux Automation Manager 2.2
Oracle Linux Automation Manager 2.2...
expat security update
2.2.5-15.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-15 - Rebuild for test reconfiguration 2.2.5-14 - Fix multiple CVEs - Fix CVE-2024-45492 integer overflow - Fix CVE-2024-45491 Integer Overflow or Wraparound - Fix CVE-2024-45490 Negative Length Parsing...