9185 matches found
Unbreakable Enterprise kernel security update
2.6.39-400.249.3 - IB/core: Prevent integer overflow in ibumemget address arithmetic Shachar Raindel Orabug: 20788393 CVE-2014-8159 CVE-2014-8159 2.6.39-400.249.2 - xen-pciback: limit guest control of command register Jan Beulich Orabug: 20704156 CVE-2015-2150 CVE-2015-2150 - net: sctp: fix slab...
kernel security and bug fix update
kernel 2.6.18-402.0.0.0.1 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.246.2 - net: sctp: fix NULL pointer dereference in af-fromaddrparam on malformed packet Daniel Borkmann Orabug: 20425333 CVE-2014-7841 2.6.39-400.246.1 - sched: Fix possible divide by zero in avgatom calculation Mateusz Guzik Orabug: 20148169 - include/linux/math64.h: add div64ul Alex...
kernel security and bug fix update
3.10.0-123.13.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.13.1 - powerpc mm: Make sure a localirqdisable prevent a parallel THP split Don Zickus 1151057 1083296 - powerpc Implement getuserpagesfast Don Zickus 1151057 1083296 - scsi vmwpvscsi: Some improvements in pvscsi driver Ewan...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.3.el7uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817785 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817747 CVE-2014-4653 CVE-2014-4654...
bash security update
3.0-27.0.1 - Check for fishy environment Ondrej Oprala Resolves: 1141644...
qemu-kvm security and bug fix update
1.5.3-60.el70.2 - kvm-pc-add-hotaddcpu-callback-to-all-machine-types.patch bz1094820 - Resolves: bz1094820 Hot plug CPU not working with RHEL6 machine types running on RHEL7 host. 1.5.3-60.el70.1 - kvm-iscsi-fix-indentation.patch bz1090978 - kvm-iscsi-correctly-propagate-errors-in-iscsiopen.patch...
kernel security update
3.10.0-123.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.1.2 - tty ntty: Fix nttywrite crash when echoing in raw mode Aristeu Rozanski 1094241 1094242 CVE-2014-0196...
kernel security and bug fix update
2.6.32-431.20.3 - kernel futex: Make lookuppistate more robust Jerome Marchand 1104516 1104517 CVE-2014-3153 - kernel futex: Always cleanup owner tid in unlockpi Jerome Marchand 1104516 1104517 CVE-2014-3153 - kernel futex: Validate atomic acquisition in futexlockpiatomic Jerome Marchand 1104516...
gnutls security update
1.4.1-16 - added missing check for null pointer 1102355 1.4.1-15 - fix session ID length check and null pointer dereference 1102355 - fix minitasn1 issues 1102355 - Renamed gnutls-1.4.1-cve-2014-5138.patch to cve-2009-5138.patch...
unbreakable enterprise kernel security update
2.6.39-400.209.2 - dm snapshot: fix data corruption Mikulas Patocka Orabug: 17618492 CVE-2013-4299...
kernel security and bug fix update
2.6.32-358.2.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871 2.6.32-358.1.1 - netdrv mlx4: Set number of msix vectors under SRIOV mode to firmware defaults Michal Schmidt 911663 904726 - netdrv mlx4: Fix bridged vSwitch...
php53 security update
5.3.3-13 - add security fix for CVE-2010-2950 5.3.3-11 - fix tests for CVE-2012-2143, CVE-2012-0789 5.3.3-10 - add security fix for CVE-2012-2336 5.3.3-9 - add security fixes for CVE-2011-4153, CVE-2012-0057, CVE-2012-0789, CVE-2012-1172, CVE-2012-2143, CVE-2012-2386...
java-1.6.0-openjdk security update
1.6.0.0-1.39.1.9.8 - Resolves: rhbz709375 - Bumped to IcedTea6 1.9.8 - Copy fontconfig files to match names for current and next release - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...
kernel security and bug fix update
2.6.18-238.9.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
thunderbird security update
1.5.0.12-33.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-33 - Added fixes from 1.9.1.15...
openssl security update
0.9.8e-12.1 - fix CVE-2009-2409 - drop MD2 algorithm from EVP tables 510197 - fix CVE-2009-4355 - do not leak memory when CRYPTOcleanupallexdata is called prematurely by application 546707...
gnutls security update
1.4.1-3.5 - fix NUL characters in DN and SAN cert fields issue, make sure gnutlsx509crtcheckhostname fails when certificate has no CN or SAN CVE-2009-2730 516231...
kernel security and bug fix update
2.6.18-92.1.22.0.1.el5 - net Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - net Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - mm shrink zone patch John Sobecki,Chris Mason orabug 6086839 - nfs nfs attribute timeout fix Trond Myklebust orabug 7156607...
kernel security and bug fix update
2.6.18-53.1.19.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin ORA 6187457 - splice Fix bad unlockpage in error case Jens Axboe ORA 6263574...
Important: kernel security update
2.6.18-8.1.14.0.2.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.14.el5 - Revert changes back to 2.6.18-8.1.10. - x8664 Zero extend all registers after ptrace in 32bit entry path Anton Arapov 297871...
ruby:3.3 security update
ruby 3.3.8-4 - Upgrade to Ruby 3.3.8. Resolves: RHEL-86933 - Fix Net::IMAP vulnerable to possible DoS by memory exhaustion. CVE-2025-25186 - Fix Denial of Service in CGI::Cookie.parse. CVE-2025-27219 Resolves: RHEL-87182 - Fix userinfo leakage in URIjoin, URImerge and URI+. CVE-2025-27221...
httpd:2.4 security update
httpd 2.4.37-65.2.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.2 - Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53022 - Regression introduced by...
bind9.16 security update
32:9.16.23-0.16.2 - Prevent crashing at masterformat system test CVE-2023-6516 32:9.16.23-0.16.1 - Prevent increased CPU load on large DNS messages CVE-2023-4408 - Prevent assertion failure when nxdomain-redirect is used with RFC 1918 reverse zones CVE-2023-5517 - Prevent assertion failure if DNS...
olcne security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building conmon for all but OL7. cri-o...
python3.9 security update
3.9.18-1 - Update to 3.9.18 - Security fix for CVE-2023-40217 Resolves: RHEL-3043 3.9.17-2 - Fix symlink handling in the fix for CVE-2023-24329 Resolves: rhbz263261 3.9.17-1 - Update to 3.9.17 - Security fix for CVE-2023-24329 Resolves: rhbz2173917 3.9.16-2 - Add filters for tarfile extraction...
python39:3.9 and python39-devel:3.9 security update
...
Unbreakable Enterprise kernel security update
5.4.17-2136.318.7.1 - KVM: arm64: Disabling disabled PMU counters wastes a lot of time Alexandre Chartre Orabug: 33312587 - KVM: arm64: Don't zero the cycle count register when PMCREL0.P is set Alexandru Elisei Orabug: 33312587 - KVM: arm64: pmu: Only handle supported event counters Eric Auger...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-1 - Rebase + CVEs - Resolves: 2142809 - Resolves: 2142830, 2142856 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
kernel security and bug fix update
3.10.0-1160.76.1.0.1.OL7 debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.76.1.OL7 Update Oracle Linux certificates Ilya Okomin Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] Update x509.genkey Orabug: 24817676 Confli...
Unbreakable Enterprise kernel security update
4.14.35-2047.516.1.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460938 CVE-2022-2588 4.14.35-2047.516.1 - KVM: x86: Avoid theoretical NULL pointer dereference in kvmirqdeliverytoapicfast Vitaly Kuznetsov Orabug: 34323860 CVE-2022-2153 - KVM: x8...
php:7.4 security update
php 7.4.19-3 - fix password of excessive length triggers buffer overflow leading to RCE CVE-2022-31626...
java-17-openjdk security update
1:17.0.3.0.7-1 - April 2022 security update to jdk 17.0.3+7 - Update to jdk-17.0.3.0+7 tarball - Update release notes to 17.0.3.0+7 - Add missing README.md and generatesourcetarball.sh - Resolves: rhbz2073578...
firefox security update
91.8.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.8.0-1 - Update to 91.8.0...
java-17-openjdk security update
1:17.0.2.0.8-4 - Fix FIPS issues in native code and with initialisation of java.security.Security - Related: rhbz2039366 1:17.0.2.0.8-3 - Update tapsets from IcedTea 6.x repository with fix for JDK-8015774 changes heap-heaps and @JAVASPECVER@ - Update icedteasync.sh with a VCS mode that retrieves...
httpd security update
2.4.6-97.0.5.2 - scoreboard: fix null pointer deference Orabug: 33561206CVE-2021-34798 - fix apescapequote logic Orabug: 33617690CVE-2021-39275...
kernel security and bug fix update
3.10.0-1160.49.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.17.3-2 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Don't use patch3 1:14.17.3-1 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Resolves CVE-2021-22918libuv, use system cipher list 1:14.16.0-3 - Resolves: RHBZ1930775 - Always build with systemtap...
olcne security update
olcne 1.2.4-5 - Updated registry-image-helper.sh to work with olcne-utils 1.2.4-4 - Fix istio template for 1.9.6 for k8s update failure 1.2.4-3 - Fixed yaml file to stop olcne-nginx and keepalived services at uninstall Orabug: 32296282 1.2.4-2 - Fix iptables issue when running on OL7 host using O...
containerd security update
containerd 1.4.8-1 - Address CVE-2021-32760 docker-cli 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760. docker-engine 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.501.2.el7 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.405.3.el7 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280 4.14.35-2025.405.2.el7 - nfs: Fix security label length not being reset Jeffrey Mitchell Orabug: 32350995 4.14.35-2025.405.1.el7 - net/rds: Fix gfpt parameter Hans Westgaard Ry Orabug: 32372162...
python3 security update
3.6.8-18.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-18 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Resolves: rhbz1856481 - Resolve hash collisions for Pv4Interface and IPv6Interface CVE-2020-14422 Resolves: rhbz1854926...
prometheus-jmx-exporter security update
0.12.0-6 - Fix CVE-2017-18640 by using updated snakeyaml...
bind security, bug fix, and enhancement update
32:9.11.20-5 - Fix tsig-request verify CVE-2020-8622 - Prevent PKCS11 daemon crash on crafted packet CVE-2020-8623 - Correct update-policy type subdomain to match documentation CVE-2020-8624 - Include available test 32:9.11.20-4 - Prevent crash on dstlib initialization failure 1859454 32:9.11.20-...
oniguruma security update
6.8.2-2 - Fix CVE-2019-13225 Resolves: 1771052...
Unbreakable Enterprise kernel security update
5.4.17-2036.100.6.1.el8uek - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040802 CVE-2020-8694 CVE-2020-8695 - KVM: ioapic: break infinite recursion on lazy EOI Vitaly Kuznetsov Orabug: 32066585 CVE-2020-27152 CVE-2020-27152 - x86/mitigations: Restore paranoid checks fo...
webkitgtk4 security, bug fix, and enhancement update
2.28.2-2 - Resolves: rhbz1817144 Rebuild to support ppc and s390 2.28.2-1 - Resolves: rhbz1817144 Rebase to 2.28.2...
grub2 security update
2.02-82.0.2.el82.1 - Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 Orabug: 31225072 - Update signing certificate for efi binaries...
sqlite security and bug fix update
3.26.0-6 - Fixed issues found by covscan 3.26.0-5 - Fixed CVE-2019-13752 1786529 - Fixed CVE-2019-13753 1786535 - Fixed CVE-2019-13734 1786509 - Fixed CVE-2019-19924 1789776 - Fixed CVE-2019-19923 1789812 - Fixed CVE-2019-19925 1789808 - Fixed CVE-2019-19959 1789823...