8998 matches found
Unbreakable Enterprise kernel security update
4.1.12-124.40.6 - ipv4: ipv4defaultadvmss should use route mtu Eric Dumazet Orabug: 31563095 - net: ipv4: Refine the ipv4defaultadvmss Gao Feng Orabug: 31563095 4.1.12-124.40.5 - Revert 'bnxten: Remove busy poll logic in the driver.' Brian Maly Orabug: 28151475 - md: batch flush requests. NeilBro...
kernel security and bug fix update
4.18.0-193.6.32.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.6.32 - rebuild to enable xtu32 module Jiri Benc 1840800 1840799...
telnet security update
1:0.17-73.1 - Resolves: 1814473 - Arbitrary remote code execution in utility.c via short writes or urgent data...
python-reportlab security update
2.5-9.el77.1 - Do not eval strings passed to toColor - Resolves: 1788552 2.5-9 - Mass rebuild 2014-01-24 2.5-8 - Mass rebuild 2013-12-27 2.5-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora19MassRebuild 2.5-6 - Add a dep on python-imaging to process images 2.5-5 - Rebuilt for...
sudo security update
1.8.25p1-8 - RHEL-8.1.0 - fixed CVE-2019-14287 Resolves: rhbz1760696...
qemu-kvm security update
0.12.1.2-2.506.el610.5 - kvm-slirp-fix-big-little-endian-conversion-in-ident-prot.patch bz1669066 - kvm-slirp-ensure-there-is-enough-space-in-mbuf-to-null-t.patch bz1669066 - kvm-slirp-don-t-manipulate-sorcv-in-tcpemu.patch bz1669066 - kvm-qxl-check-release-info-object.patch bz1712728 -...
dotnet security, bug fix, and enhancement update
2.1.507-2 - Link against strerrorr correctly - Resolves: RHBZ1712471 2.1.507-1 - Update to .NET Core Runtime 2.1.11 and SDK 2.1.507 - Resolves: RHBZ1710068 2.1.506-1 - Update to .NET Core Runtime 2.1.10 and SDK 2.1.506 - Resolves: RHBZ1696836...
python security update
2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz1584545...
gcc security, bug fix, and enhancement update
4.8.5-28.0.1 - Orabug: 27557686 Egeyar Bagcioglu - Introduce 'oraclerelease' into .spec file. Echo it to gcc/DEV-PHASE. 4.8.5-28 - Minor testsuite fixes to clean up test results 1469697 - retpoline support for spectre mitigation 1535655 4.8.5-27 - bump for rebuild with RELRO enabled even for...
kernel security and bug fix update
2.6.32-696.10.2.OL6 - Update genkey bug 25599697 2.6.32-696.10.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil Horman 1490060 1490062 CVE-2017-1000251...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.3 - posixacl: Clear SGID bit when setting file permissions Jan Kara Orabug: 25507344 CVE-2016-7097 CVE-2016-7097...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.4 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
firefox security update
52.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.0-4 - Update to 52.0 ESR b4 52.0-3 - Added fix for rhbz1423012 - ppc64 gfx crashes 52.0-2 - Enable system nss 52.0-1 - Update to 52.0ESR B1 - Build RHEL7 package for Gtk3 52.0-0.13 - Added fix for...
kernel security update
3.10.0-327.36.3.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.36.3 - mm remove gupflags FOLLWRITE games from getuserpages Alexander Gordeev 1385123 1385124 CVE-2016-5195...
Unbreakable Enterprise kernel security update
2.6.39-400.284.2 - Btrfs: fix truncation of compressed and inlined extents Divya Indi Orabug: 22307286 CVE-2015-8374 - Btrfs: fix file corruption and data loss after cloning inline extents Divya Indi Orabug: 22307286 CVE-2015-8374 - netfilter: xtables: make sure e-nextoffset covers remaining blob...
kernel security and bug fix update
2.6.32-642.4.2 - net tcp: make challenge acks less predictable Florian Westphal 1355606 1355607 CVE-2016-5696 2.6.32-642.4.1 - ipmi Remove smimsg from waitingrcvmsgs list before handleonerecvmsg David Arcari 1355980 1347189 - fs ext4: Remove useless spinlock in ext4getattr Lukas Czerner 1355981...
openssl security update
1.0.1e-51.5 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
openssl security update
0.9.8e-39.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
java-1.7.0-openjdk security update
1.7.0.95-2.6.4.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.95-2.6.4.0 - Remove reference to jre/lib/audio. - Resolves: rhbz1295765 1:1.7.0.95-2.6.4.0 - Bump to 2.6.4 and u95b00. - Backport tarball creation script from OpenJDK 8 RPMs and update fsg.sh to work with it. - Drop 8072932or8074489 pat...
java-1.8.0-openjdk security update
1:1.8.0.71-2.b15 - Add md5sum for previous java.security file so it gets updated. - Resolves: rhbz1295753 1:1.8.0.71-1.b15 - Restore upstream version of system LCMS patch removed by 'sync with Fedora' - Add patch to turn off strict overflow on IndicRearrangementProcessor,2.cpp - Resolves:...
glibc security, bug fix, and enhancement update
2.17-105.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-105 - Fix up test case for initial-exec fix 1248208. 2.17-104 - Mark all TLS variables i...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
php security update
5.3.3-46 - fix gzfile accept paths with NUL character 1213407 - fix patch for CVE-2015-4024 5.3.3-45 - fix more functions accept paths with NUL character 1213407 5.3.3-44 - soap: missing fix for 1222538 and 1204868 5.3.3-43 - core: fix multipart/form-data request can use excessive amount of CPU...
bash security update
3.0-27.0.1 - Check for fishy environment Ondrej Oprala Resolves: 1141644...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.2uek - futex: Make lookuppistate more robust Thomas Gleixner Orabug: 18918736 CVE-2014-3153 - futex: Always cleanup owner tid in unlockpi Thomas Gleixner Orabug: 18918736 CVE-2014-3153 - futex: Validate atomic acquisition in futexlockpiatomic Thomas Gleixner Orabug:...
openssl security update
1.0.1e-16.14 - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerabilit...
gnutls security update
1.4.1-16 - added missing check for null pointer 1102355 1.4.1-15 - fix session ID length check and null pointer dereference 1102355 - fix minitasn1 issues 1102355 - Renamed gnutls-1.4.1-cve-2014-5138.patch to cve-2009-5138.patch...
java-1.7.0-openjdk security update
1.7.0.51-2.4.7.1.0.1.el65 - Update DISTRONAME in specfile 1.7.0.51-2.4.7.1.el6 - regenerated sources to fix TCK failure - Resolves: rhbz1085002 1.7.0.51-2.4.7.0.el6 - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release reset to 0 - removed upstreamed patch402...
unbreakable enterprise kernel security update
2.6.39-400.209.2 - dm snapshot: fix data corruption Mikulas Patocka Orabug: 17618492 CVE-2013-4299...
postgresql security update
8.1.23-4 - Back-port upstream fixes for CVE-2012-0866 and CVE-2012-0868 Resolves: 812070 8.1.23-3 - Back-port upstream fix for unregistering OpenSSL callbacks at close Resolves: 728828 8.1.23-2 - Back-port upstream fix for CVE-2011-2483 Resolves: 740738...
kernel security, bug fix, and enhancement update
2.6.32-71.29.1.el6 - mm Revert 'mm pdpte registers are not flushed when PGD entry is changed in x86 PAE mode' Larry Woodman 695256 691310 2.6.32-71.28.1.el6 - net bonding: fix jiffy comparison issues Andy Gospodarek 698109 696337 - drm radeon/kms: check AA resolve registers on r300 + regression f...
kvm security and bug fix update
kvm-83-224.0.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-224.el5 - kvm-kernel-KVM-x86-zero-kvmvcpuevents-interrupt.pad.patch bz665407 - Resolves: bz665407 kvmvcpuevents.interrupt.pad must be zeroed - CVE: CVE-2010-4525 kvm-83-223.e...
thunderbird security update
1.5.0.12-33.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-33 - Added fixes from 1.9.1.15...
gnutls security update
1.4.1-3.5 - fix NUL characters in DN and SAN cert fields issue, make sure gnutlsx509crtcheckhostname fails when certificate has no CN or SAN CVE-2009-2730 516231...
kernel security and bug fix update
2.6.18-92.1.22.0.1.el5 - net Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - net Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - mm shrink zone patch John Sobecki,Chris Mason orabug 6086839 - nfs nfs attribute timeout fix Trond Myklebust orabug 7156607...
firefox security update
1.5.0.12-14.0.1 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js 1.5.0.12-14 - Fix assertions from script 1.5.0.12-13 - Ensure wrappers are properly disposed of 1.5.0.12-12 - Update to latest snapshot of Mozilla 1.8.0 branch - Add patches for backported fixes from...
Important: kernel security update
2.6.18-8.1.14.0.2.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.14.el5 - Revert changes back to 2.6.18-8.1.10. - x8664 Zero extend all registers after ptrace in 32bit entry path Anton Arapov 297871...
nodejs:22 security update
nodejs 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300 1:22.13.1-3 - Update c-ares to newest version with fix for CVE-2025-31498 Resolves: RHEL-86581...
httpd:2.4 security update
httpd 2.4.37-64.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-64 - Resolves: RHEL-14448 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.37-63 - modxml2enc: fix media type handling Resolves: RHEL-14321 modhttp2 1.15.7-10 - Resolves: RHEL-29817 -...
glibc security update
2.28-225.0.4.6 - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2203-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. - CVE-2023-4813: work around RHEL-8 limitation in test RHEL-2435. Reviewed by: Jose E...
python39:3.9 and python39-devel:3.9 security update
...
Unbreakable Enterprise kernel security update
4.1.12-124.74.2 - kvm: initialize all of the kvmdebugregs structure before sending it to userspace Greg Kroah-Hartman Orabug: 35250098 CVE-2023-1513 - staging: rtl8712: fix use after free bugs Dan Carpenter Orabug: 35212876 CVE-2022-4095 - staging: rtl8712: rtl8712cmd.c: fixed comparison to null...
zlib security update
1.2.3-29.0.3 - Fix for CVE-2022-37474 Orabug: 34759428...
php:7.4 security update
php 7.4.19-3 - fix password of excessive length triggers buffer overflow leading to RCE CVE-2022-31626...
python38:3.8 and python38-devel:3.8 security update
numpy 1.17.3-6 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055 python38 3.8.12-1 - Update to 3.8.12 Resolves: rhbz2004587 3.8.11-1 - Update to 3.8.11 - Fix for CVE-2021-3733 and CVE-2021-3737 Resolves: rhbz1995234, rhbz1995162 python3x-pip 19.3.1-5 - Remove...
samba security and bug fix update
4.10.16-17 - related: 2019673 - Add missing checks for IPA DC server role 4.10.16-16 - resolves: 2019661 - Fix CVE-2016-2124 - resolves: 2019673 - Fix CVE-2020-25717 - resolves: 2021428 - Add missing PAC buffer types to krb5pac.idl...
httpd security update
2.4.6-97.0.5.2 - scoreboard: fix null pointer deference Orabug: 33561206CVE-2021-34798 - fix apescapequote logic Orabug: 33617690CVE-2021-39275...
php:7.4 security, bug fix, and enhancement update
libzip php 7.4.19-1 - rebase to 7.4.19 1944110...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-4 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz1877430 4.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 4.7.1-2 - Rebuilt for Python 3.9 4.7.1-1 - update to 4.7.1 1721376 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable...
kernel security update
2.6.32-754.35.1.0.5.OL6 - kernel futex: Use pistateupdateowner in putpistate Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Handle faults correctly for PI futexes Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Provide and use pistateupdateowner Thom...