8998 matches found
glibc security, bug fix, and enhancement update
2.28-72.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
elfutils security, bug fix, and enhancement update
0.176-2 - Add elfutils-0.176-xlate-note.patch 1704754 0.176-1 - New upstream release 1676504 CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18521, CVE-2018-18520...
firefox security update
60.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
thunderbird security update
60.6.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.6.1-1 - Update to 60.6.1 60.6.0-1 - Update to 60.6.0...
libvncserver security update
0.9.9-13 - Fix CVE-2018-15127 Heap out-of-bounds write in rfbserver.c:rfbProcessFileTransferReadBuffer bug 1662995...
Unbreakable Enterprise kernel security update
2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730 CVE-2018-7566 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28539910...
kernel security update
2.6.18-419.0.0.0.8 - Backport CVEs to RHCK/OL5 orabug 27547712 CVE-2017-5753 CVE-2017-5754 - 2.6.18-419.0.0.0.5 - fs fix kernel panic on boot on ia64 guests Honglei Wang orabug 26934100...
java-1.8.0-openjdk security update
1:1.8.0.151-1.b12 - repack policies adapted to new counts and paths - note that also c-j-c is needed to make this apply in next update - Resolves: rhbz1499207 1:1.8.0.151-0.b12 - Correct fix to RH1191652 root patch so existing COMMONCCXXFLAGSJDK is not lost. - Resolves: rhbz1499207...
httpd security update
2.4.6-67.0.1.el74.5 - replace index.html with Oracle's index page oracleindex.html 2.4.6-67.5 - Resolves: 1493064 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method...
kernel security, bug fix, and enhancement update
3.10.0-514.10.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.10.2 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes...
Unbreakable Enterprise kernel security update
2.6.39-400.294.3 - dccp: fix freeing skb too early for IPV6RECVPKTINFO Andrey Konovalov Orabug: 25598277 CVE-2017-6074...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.25 - KEYS: Fix short sprintf buffer in /proc/keys show function David Howells Orabug: 25306361 CVE-2016-7042 - nvme: Limit command retries Keith Busch Orabug: 25374751 - fs/proc/taskmmu.c: fix mmaccess mode parameter in pagemapread Kenny Keslar Orabug: 25374977 - tcp: fix u...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.14.1 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971919 CVE-2016-1583 - RDS: IB: fix panic with handlers running post teardown Santosh Shilimkar Orabug: 24395795...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.3 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307919 CVE-2015-1593 CVE-2015-1593...
kernel security and bug fix update
kernel 2.6.18-402 - block virtio: Reset device after blkcleanupqueue Stefan Hajnoczi 1006536 - block virtio: Call delgendisk before disable guest kick Stefan Hajnoczi 1006536 - block virtio: Drop unused request tracking list Stefan Hajnoczi 1006536 - fs cifs: setfacl removes part of ACL when...
kernel security and bug fix update
3.10.0-123.20.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.20.1 - fs seqfile: don't include mm.h in genksyms calculation Ian Kent 1184152 1183280 3.10.0-123.19.1 - mm shmem: fix splicing from a hole while it's punched Denys Vlasenko 1118244 1118245 CVE-2014-4171 - mm shmem: fix faulti...
kernel security and bug fix update
kernel 2.6.18-400 - net bridge: disable snooping if there is no querier Frantisek Hrbata 902454 - s390 kernel: sysinfo: convert /proc/sysinfo to seqfile Alexander Gordeev 1131283 - net netlink: verify permisions of socket creator Jiri Benc 1094266 CVE-2014-0181 - net netlink: store effective caps...
php53 security update
5.3.3-26 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.3.3-25 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
kernel security and bug fix update
3.10.0-123.6.3 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.6.3 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.6.2.el7 - s390 ptrace: correct insufficient sanitization when setting psw mask Hendrik Brueckner 1114090...
polkit security update
0.96-5 - Actually apply the patch, and modify it to apply to 0.96 - Resolves: 1006262 0.96-4.el64 - Include fix for CVE-2013-4288 - Resolves: 1006262 0.96-3.el64 - Include fixes for CVE-2011-1485 - Resolves: 692942...
kernel security, bug fix, and enhancement update
2.6.32-358.11.1 - kernel perf: fix perfsweventenabled array out-of-bound access Petr Matousek 962793 962794 CVE-2013-2094 2.6.32-358.10.1 - scsi be2iscsi : Fix the NOP-In handling code path Nikola Pajkovsky 955504 947550 - scsi be2iscsi: Fix memory leak in control path of driver Rob Evers 955504...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.23.1 - Parallel mtrr init between cpus Zhenzhong Duan Orabug: 16777774 - Merge tag 'v2.6.39-400.21.1.16748891' of git://ca-git.us.oracle.com/linux-uek-2.6.39-ofed into uek-2.6.39-400 Maxim Uvarov Orabug: 16748891 - xen-blkfront: use a different scatterlist for each request Roger Pau...
java-1.7.0-openjdk security update
1.7.0.19-2.3.9.1.0.1.el64 - Update DISTRONAME in specfile 1.7.0.19-2.3.9.1.el6 - updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz950380 1.7.0.9-2.3.9.0.el6 - updated to IcedTea 2.3.9 with latest security patches - buildver sync to b19 -...
kernel security and bug fix update
2.6.32-279.22.1 - virt kvm: invalid opcode oops on SETSREGS with OSXSAVE bit set Petr Matousek 862903 862904 CVE-2012-4461 - fs fuse: optimize fusedirectio Brian Foster 865305 858850 - fs fuse: optimize fusegetuserpages Brian Foster 865305 858850 - fs fuse: use getuserpagesfast Brian Foster 86530...
mysql security update
5.0.95-5 - Rebuild to fix wrong package tag Related: 892679 5.0.95-4 - Add patches for CVE-2012-2122, CVE-2012-2749, CVE-2012-5611 Resolves: 892679...
kernel security and bug fix update
kernel 2.6.18-348.1.1 - pci intel-iommu: reduce max num of domains supported Don Dutile 886876 885125 - fs gfs2: Fix leak of cached directory hash table Steven Whitehouse 886124 831330 - x86 mm: randomize SHLIBBASE Petr Matousek 804953 804954 CVE-2012-1568 - net be2net: create RSS rings even in...
java-1.7.0-openjdk security update
1.7.0.9-2.3.3.0.1.el63.1 - Update DISTRONAME in specfile 1.7.0.9-2.3.3.el6.1 - Changed permissions of sa-jdi.jar to correct 644 - Resolves: rhbz865050 1.7.0.9-2.3.3.el6 - Updated to 2.3.3 - Updated java-1.7.0-openjdk-java-access-bridge-security.patch - Resolves rhbzs 856124, 865346, 865348, 86535...
perl security update
4:5.10.1-119.1 - 731246 CVE-2011-2939CVE-2011-2939 heap overflow - decoding Unicode string - 743010 - perl: code injection vulnerability in Digest-new - Resolves: rhbz743090, rhbz743092...
firefox security update
firefox: 3.0.9-1.0.1.el5 - Update firstrun and homepage URLs - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones - Added patch oracle-firefox-branding.patch 3.0.9-1 - Update to Firefox 3.0.9 - Gnome crash dialog disabled 493455...
Updated kernel packages for Oracle Enterprise Linux 4.7
2.6.9-78 -alsa: Fix mic not working for HP XW series Brian Maly 453783 2.6.9-77 -alsa: Add missing quirks for alc262 Brian Maly 453783 -Revert 'i8042: remove polling timer support - Original bz 246233' Vivek Goyal 450918 2.6.9-76 -tty: fix tty holes Vivek Goyal 453155 CVE-2008-2812 -xen: fix use ...
bind security update
bind: 9.3.4-6.0.1.P1 - CVE-2008-1447 selinux-policy: 2.4.6-137.1 - Allow named to bind to any udp port Resolves: 451971...
Important:kernel security update
2.6.18-8.1.15.0.1.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.15.el5 - dlm A TCP connection to DLM port blocks DLM operations Patrick Caulfield 245922 CVE-2007-3380 - ppc 4k page mapping support for...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building...
unbound security update
1.16.2-3.1 - Fix DNSSEC validation vulnerabilities which can lead to DoS in trivially orchestrated attacks CVE-2023-50387 and CVE-2023-50868...
.NET 6.0 security, bug fix, and enhancement update
6.0.118-1.0.1 - Add missing Oracle Linux Runtime IDs 6.0.118-1 - Update to .NET SDK 6.0.118 and Runtime 6.0.18 - Resolves: RHBZ2212379 6.0.117-1 - Update to .NET SDK 6.0.117 and Runtime 6.0.17 - Resolves: RHBZ2190264...
kernel security and bug fix update
3.10.0-1160.80.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.80.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 2481767...
Unbreakable Enterprise kernel-container security update
5.15.0-1.43.4.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460936 CVE-2022-2588 5.15.0-1.43.4 - Revert selftests/bpf: add tests verifying unprivileged bpf behaviour Alan Maguire Orabug: 34399286 - Revert selftests/bpf: Add test for reg2btfids o...
virt:ol and virt-devel:ol security, bug fix, and enhancement update
libvirt 8.0.0-5.2.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma 8.0.0-5.2.el8 - cpumap: Disable cpu64-rhel for host-model and baseline rhbz2084030 - cputest: Drop some old artificial baseline tests rhbz2084030 - cputest: Give...
microcode_ctl security update
2:2.1-73.13.0.3 - update 06-55-04 to 0x2006d05 - update 06-55-07 to 0x5003302 - update 06-6a-04 to 0xb000280 - update 06-6a-06 to 0xd000375 2:2.1-73.13.0.2 - roll back 06-6a-06 to 0xd0002a0 due to PCIe issues on reset Orabug: 34076312 2:2.1-73.13.0.1 - for Intel, do not trigger load if on-disk...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.514.3.el7 - uek-rpm: Update OL7 SecureBoot certificate files Saeed Mirzamohammadi Orabug: 34219958 4.14.35-2047.514.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043 CVE-2022-21499...
samba security, bug fix, and enhancement update
4.15.5-5 - resolves: rhbz2064325 - Fix 'create krb5 conf = yes' when a KDC has a single IP address. 4.15.5-4 - resolves: rhbz2057503 - Fix winbind kerberos ticket refresh 4.15.5-3 - related: rhbz1979959 - Fix typo in testparm output 4.15.5-2 - resolves: rhbz1979959 - Improve idmap autorid sanity...
openssl security update
1:1.1.1k-5.0.1 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt Orabug: 33974871...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.312.b07-1 - Update to aarch64-shenandoah-jdk8u312-b07 EA - Update release notes for 8u312-b07. - Switch to GA mode for final release. - This tarball is embargoed until 2021-10-19 @ 1pm PT. - Resolves: rhbz2011826 1:1.8.0.312.b05-0.3.ea - Add patch to improve performance of common separato...
Unbreakable Enterprise kernel security update
4.14.35-2047.508.3 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33392821 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33352735 4.14.35-2047.508...
exiv2 security update
0.27.0-4 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990352...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.506.10.el7 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario'...
net-snmp security and bug fix update
1:5.8-18.1 - revert permission of config files to 600 1902662 1:5.8-18 - fix CVE-2020-15862 1886100 - fix bulk responses for invalid PID 1896760...
containerd security update
1.3.9-2 - BUILDINFO: commit=4737bd3784f16c18474a60d8678371108f995d7c - Addresses CVE-2020-15257 1.3.9-1 - Added Oracle specific build files...
mysql:8.0 security update
mysql 8.0.21-1 - Rebase to 8.0.21 - Use bundled libzstd and libevent for RHSCL and RHEL-8.0.0 - Check that we have correct versions in bundled Provides - Remove re2 bundled dependency 8.0.20-1 - Rebase to 8.0.20 8.0.19-2 - Specify all perl dependencies 8.0.19-1 - Rebase to 8.0.19 8.0.18-1 - Rebas...
kernel security, bug fix, and enhancement update
4.18.0-193.13.22.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.13.22 - Rebuild to get kernel image properly signed Bruno...