9185 matches found
kernel security and bug fix update
3.10.0-1160.80.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.80.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 2481767...
virt:ol and virt-devel:ol security, bug fix, and enhancement update
libvirt 8.0.0-5.2.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma 8.0.0-5.2.el8 - cpumap: Disable cpu64-rhel for host-model and baseline rhbz2084030 - cputest: Drop some old artificial baseline tests rhbz2084030 - cputest: Give...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.514.3.el7 - uek-rpm: Update OL7 SecureBoot certificate files Saeed Mirzamohammadi Orabug: 34219958 4.14.35-2047.514.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043 CVE-2022-21499...
samba security, bug fix, and enhancement update
4.15.5-5 - resolves: rhbz2064325 - Fix 'create krb5 conf = yes' when a KDC has a single IP address. 4.15.5-4 - resolves: rhbz2057503 - Fix winbind kerberos ticket refresh 4.15.5-3 - related: rhbz1979959 - Fix typo in testparm output 4.15.5-2 - resolves: rhbz1979959 - Improve idmap autorid sanity...
expat security update
2.0.1-13.0.1 - Prevent integer overflow in storeRawNames CVE-2022-25315Orabug: 34059442 - Add missing validation of encoding CVE-2022-25235Orabug: 34059442 - Protect against malicious namespace declarations CVE-2022-25236Orabug: 34059442...
gcc security update
8.5.0-4.0.1 - Merge oracle patches to security errata 8.5.0-4. Reviewed-by: Jose E. Marchesi 8.5.0-4 - add -Wbidirectional patch 2008391...
Unbreakable Enterprise kernel security update
5.4.17-2136.300.7 - KVM: SVM: Fix mismerge in svmupdatepiirte Liam Merwick Orabug: 33446526 - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page Liam Merwick Orabug: 33450675 5.4.17-2136.300.6 - Revert scsi: core: Cap scsihost cmdperlun at canqueue Jack Vogel Orabug:...
Unbreakable Enterprise kernel security update
5.4.17-2102.205.7.2 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugge...
Unbreakable Enterprise kernel security update
4.14.35-2047.506.10 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario' Manjunath...
Unbreakable Enterprise kernel security update
4.14.35-2047.505.4.3 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33142065 CVE-2021-33909...
qemu-kvm security and bug fix update
1.5.3-175.el79.3 - kvm-Suppress-prototype-warning-for-nss-headers.patch bz1884997 - Resolves: bz1884997 qemu-kvm FTBFS on rhel7.9 1.5.3-175.el79.2 - kvm-hw-net-vmxnettxpkt-fix-assertion-failure-in-vmxnet.patch bz1860960 - kvm-hw-core-loader-Fix-possible-crash-in-romcopy.patch bz1842923 - Resolves...
samba security and bug fix update
4.10.17-9 - related: 1853272 - Add back missing patch hunks 4.10.16-8 - resolves: 1878205 - Fix restarting winbind on package upgrade - resolves: 1892632 - Fix CVE-2020-14318 - resolves: 1891687 - Fix CVE-2020-14323 - resolves: 1879834 - Fix CVE-2020-1472 - resolves: 1892313 - Fix memory leak in...
python3 security and bug fix update
3.6.8-31.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-31 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Resolves: rhbz1856481 - Resolve hash collisions for Pv4Interface and IPv6Interface CVE-2020-14422 Resolves: rhbz1854926 3.6.8-30 -...
kernel security and bug fix update
4.18.0-193.6.32.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.6.32 - rebuild to enable xtu32 module Jiri Benc 1840800 1840799...
kernel security and bug fix update
2.6.32-754.30.2.OL6 - Update genkey bug 25599697 2.6.32-754.30.2 - x86/speculation: Provide SRBDS late microcode loading support Waiman Long - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add SRBDS vulnerability...
kernel security update
2.6.32-754.29.2.OL6 - Update genkey bug 25599697 2.6.32-754.29.2 - net netlabel: cope with NULL catmap Paolo Abeni 1827226 CVE-2020-10711...
icu security update
50.2-4 - Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch - Apply ICU-20958-Prevent-SEGVMAPERR-in-append.patch - Resolves: rhbz1808235...
glibc security, bug fix, and enhancement update
2.28-72.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
elfutils security, bug fix, and enhancement update
0.176-2 - Add elfutils-0.176-xlate-note.patch 1704754 0.176-1 - New upstream release 1676504 CVE-2019-7146, CVE-2019-7148, CVE-2019-7149, CVE-2019-7150, CVE-2019-7664, CVE-2019-7665, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18521, CVE-2018-18520...
kernel security and bug fix update
4.18.0-80.1.20.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.1.20 - arm64 arm64/speculation: Support 'mitigations=' cmdline opti...
dotnet security, bug fix, and enhancement update
2.1.507-2 - Link against strerrorr correctly - Resolves: RHBZ1712471 2.1.507-1 - Update to .NET Core Runtime 2.1.11 and SDK 2.1.507 - Resolves: RHBZ1710068 2.1.506-1 - Update to .NET Core Runtime 2.1.10 and SDK 2.1.506 - Resolves: RHBZ1696836...
thunderbird security update
60.6.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.6.1-1 - Update to 60.6.1 60.6.0-1 - Update to 60.6.0...
libvncserver security update
0.9.9-13 - Fix CVE-2018-15127 Heap out-of-bounds write in rfbserver.c:rfbProcessFileTransferReadBuffer bug 1662995...
procps security update
3.2.8-45.0.1.el69.3 - vmstat: fix invalid CPU utilization stats after vCPU hot-plug/unplug Konrad Rzeszutek Wilk bug 18011019 3.2.8-45.el69.3 - drop leftover assignment in fix for CVE-2018-1124 causing a severe regression - Resolves: CVE-2018-1124 3.2.8-45.el69.2 - fix integer overflows leading t...
procps-ng security update
3.3.10-17.el75.2 - check for truncation after calling snprintf - Related: CVE-2018-1124 3.3.10-17.el75.1 - fix integer overflows leading to heap overflow in file2strvec - Resolves: CVE-2018-1124...
openssl security update
1.0.1e-48.4 - fix CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher - fix CVE-2016-8610 - DoS of single-threaded servers via excessive alerts...
java-1.8.0-openjdk security update
1:1.8.0.91-1.b03 - Update to u91b14. - Resolves: rhbz1325420...
glibc security, bug fix, and enhancement update
2.17-105.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-105 - Fix up test case for initial-exec fix 1248208. 2.17-104 - Mark all TLS variables i...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.3 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308309 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307919 CVE-2015-1593 CVE-2015-1593...
kernel security and bug fix update
3.10.0-123.20.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.20.1 - fs seqfile: don't include mm.h in genksyms calculation Ian Kent 1184152 1183280 3.10.0-123.19.1 - mm shmem: fix splicing from a hole while it's punched Denys Vlasenko 1118244 1118245 CVE-2014-4171 - mm shmem: fix faulti...
kernel security and bug fix update
kernel 2.6.18-400 - net bridge: disable snooping if there is no querier Frantisek Hrbata 902454 - s390 kernel: sysinfo: convert /proc/sysinfo to seqfile Alexander Gordeev 1131283 - net netlink: verify permisions of socket creator Jiri Benc 1094266 CVE-2014-0181 - net netlink: store effective caps...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.33-1.13.5.0 - Update to IcedTea 1.13.5 - Remove upstreamed patches. - Regenerate add-final-location-rpaths patch against new release. - Change versioning to match java-1.7.0-openjdk so revisions work. - Use xz for tarballs to reduce file size. - No need to explicitly disable system LCMS a...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.1.2.el6uek - floppy: don't write kernel-only members to FDRAWCMD ioctl output Matthew Daley Orabug: 19028443 CVE-2014-1738 - floppy: ignore kernel-only members in FDRAWCMD ioctl input Matthew Daley Orabug: 19028436 CVE-2014-1737...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.2uek - futex: Make lookuppistate more robust Thomas Gleixner Orabug: 18918736 CVE-2014-3153 - futex: Always cleanup owner tid in unlockpi Thomas Gleixner Orabug: 18918736 CVE-2014-3153 - futex: Validate atomic acquisition in futexlockpiatomic Thomas Gleixner Orabug:...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.23.1 - Parallel mtrr init between cpus Zhenzhong Duan Orabug: 16777774 - Merge tag 'v2.6.39-400.21.1.16748891' of git://ca-git.us.oracle.com/linux-uek-2.6.39-ofed into uek-2.6.39-400 Maxim Uvarov Orabug: 16748891 - xen-blkfront: use a different scatterlist for each request Roger Pau...
java-1.7.0-openjdk security update
1.7.0.19-2.3.9.1.0.1.el64 - Update DISTRONAME in specfile 1.7.0.19-2.3.9.1.el6 - updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz950380 1.7.0.9-2.3.9.0.el6 - updated to IcedTea 2.3.9 with latest security patches - buildver sync to b19 -...
Oracle Linux 6 kernel security and bugfix update
2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...
kernel security and bug fix update
2.6.32-279.22.1 - virt kvm: invalid opcode oops on SETSREGS with OSXSAVE bit set Petr Matousek 862903 862904 CVE-2012-4461 - fs fuse: optimize fusedirectio Brian Foster 865305 858850 - fs fuse: optimize fusegetuserpages Brian Foster 865305 858850 - fs fuse: use getuserpagesfast Brian Foster 86530...
kernel security and bug fix update
kernel 2.6.18-348.1.1 - pci intel-iommu: reduce max num of domains supported Don Dutile 886876 885125 - fs gfs2: Fix leak of cached directory hash table Steven Whitehouse 886124 831330 - x86 mm: randomize SHLIBBASE Petr Matousek 804953 804954 CVE-2012-1568 - net be2net: create RSS rings even in...
java-1.7.0-openjdk security update
1.7.0.9-2.3.3.0.1.el63.1 - Update DISTRONAME in specfile 1.7.0.9-2.3.3.el6.1 - Changed permissions of sa-jdi.jar to correct 644 - Resolves: rhbz865050 1.7.0.9-2.3.3.el6 - Updated to 2.3.3 - Updated java-1.7.0-openjdk-java-access-bridge-security.patch - Resolves rhbzs 856124, 865346, 865348, 86535...
perl security update
4:5.10.1-119.1 - 731246 CVE-2011-2939CVE-2011-2939 heap overflow - decoding Unicode string - 743010 - perl: code injection vulnerability in Digest-new - Resolves: rhbz743090, rhbz743092...
firefox security update
firefox: 3.0.9-1.0.1.el5 - Update firstrun and homepage URLs - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones - Added patch oracle-firefox-branding.patch 3.0.9-1 - Update to Firefox 3.0.9 - Gnome crash dialog disabled 493455...
kernel security and bug fix update
2.6.18-92.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.13.el5 - md fix crashes in iteraterdev Doug Ledford 460128 455471 - sound...
Updated kernel packages for Oracle Enterprise Linux 4.7
2.6.9-78 -alsa: Fix mic not working for HP XW series Brian Maly 453783 2.6.9-77 -alsa: Add missing quirks for alc262 Brian Maly 453783 -Revert 'i8042: remove polling timer support - Original bz 246233' Vivek Goyal 450918 2.6.9-76 -tty: fix tty holes Vivek Goyal 453155 CVE-2008-2812 -xen: fix use ...
Important:kernel security update
2.6.18-8.1.15.0.1.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.15.el5 - dlm A TCP connection to DLM port blocks DLM operations Patrick Caulfield 245922 CVE-2007-3380 - ppc 4k page mapping support for...
nodejs:22 security update
nodejs 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300 1:22.13.1-3 - Update c-ares to newest version with fix for CVE-2025-31498 Resolves: RHEL-86581...
httpd:2.4 security update
httpd 2.4.37-64.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-64 - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.37-63 - modxml2enc: fix media type handling Resolves: RHEL-14321 modhttp2 1.15.7-10 - Resolves: RHEL-29817 -...
unbound security update
1.16.2-3.1 - Fix DNSSEC validation vulnerabilities which can lead to DoS in trivially orchestrated attacks CVE-2023-50387 and CVE-2023-50868...
grafana security and enhancement update
9.2.10-7 - resolve RHEL-12649 - resolve CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work - testing is turned off due to test failures caused by testing date mismatch 9.2.10-6 - Add /usr/share/grafana to systemd-sysusers --replace 9.2.10-5 - resolve CVE-2023-3128 grafana:...
glibc security update
2.28-225.0.4.6 - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2203-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. - CVE-2023-4813: work around RHEL-8 limitation in test RHEL-2435. Reviewed by: Jose E...