8998 matches found
Unbreakable Enterprise kernel security update
5.4.17-2011.3.2.1uek - x86/speculation: Add Ivy Bridge to affected list Josh Poimboeuf Orabug: 31352779 CVE-2020-0543 - x86/speculation: Add SRBDS vulnerability and mitigation documentation Mark Gross Orabug: 31352779 CVE-2020-0543 - x86/speculation: Add Special Register Buffer Data Sampling SRBD...
firefox security update
68.9.0-1.0.1.el82 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 Fri May 29 2020 Jan Horak - Update to 68.9.0 build1 - Added patch for pipewire 0.3 Mon May ...
haproxy security update
1.8.15-6.1 - - Fix hapack zero byte input causing overwrite CVE-2020-11100, 1819518 1.8.15-6 - Add gating tests 1682106...
bind security, bug fix, and enhancement update
32:9.11.4-9.P2 - Fix CVE-2019-6471 32:9.11.4-8.P2 - Fix scriptlet errors when selinux-policy is not installed 1647659 32:9.11.4-7.P2 - Fix inefective limit of TCP clients CVE-2018-5743 32:9.11.4-6.P2 - Use /sbin/nologin again 1676661 32:9.11.4-5.P2 - Make sure selinux-policy is installed soon...
container-tools:rhel8 security and bug fix update
container-selinux 2:2.94-1.git1e99f1d - Resolves: 1690286 - bump to v2.94 - Resolves: 1693806, 1689255 2:2.89-1.git2521d0d - bump to v2.89 runc 1.0.0-55.rc5.dev.git2abd837 - Resolves: CVE-2019-5736...
java-1.8.0-openjdk security update
1:1.8.0.212.b04-0 - Update to aarch64-shenandoah-jdk8u212-b04. - Resolves: rhbz1693468 1:1.8.0.212.b03-0 - Update to aarch64-shenandoah-jdk8u212-b03. - Resolves: rhbz1693468 1:1.8.0.212.b02-0 - Update to aarch64-shenandoah-jdk8u212-b02. - Remove patches included upstream -...
libssh2 security update
1.4.3-12.el76.2 - sanitize public header file detected by rpmdiff 1.4.3-12.el76.1 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix integer overflow in SSH packet processing channel resulting in out of bounds write CVE-2019-3857 - fix...
Unbreakable Enterprise kernel security update
4.1.12-124.18.9 - rebuild bumping release 4.1.12-124.18.8 - Cipso: cipsov4optptr enter infinite loop yujuan.qi Orabug: 28563992 CVE-2018-10938 - Btrfs: fix listadd corruption and soft lockups in fsync Liu Bo Orabug: 28119834 - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests Peter...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.22.1 - dm: fix race between dmgetfromkobject and dmdestroy Hou Tao CVE-2017-18203 - drm: udl: Properly check framebuffer mmap offsets Greg Kroah-Hartman Orabug: 27986407 CVE-2018-8781 - kernel/exit.c: avoid undefined behaviour when calling wait4 wait4-2147483648, 0x20, 0,...
kernel security and bug fix update
2.6.32-696.6.3.OL6 - Update genkey bug 25599697 2.6.32-696.6.3 - mm allow JVM to implement its own stack guard pages Larry Woodman 1466667 1464237 - mm enlarge stack guard gap Larry Woodman 1466667 1464237 - Revert: mm enlarge stack guard gap Larry Woodman 1466667 1464237 2.6.32-696.6.2 - mm...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.4 - ipv6: catch a null skb before using it in a DTRACE Shannon Nelson Orabug: 26075879 - sparc64: Do not retain old VMSPARCADI flag when protection changes on page Khalid Aziz Orabug: 26038830 4.1.12-94.3.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Field...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR...
bind security update
32:9.9.4-38.1 - Fix CVE-2016-9131 ISC change 4508 - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530 - Fix CVE-2016-9444 ISC change 4517...
Unbreakable Enterprise kernel security update
2.6.39-400.293.1 - logging errors that get masked to EIO inside drivers/block/loop.c Manjunath Patil Orabug: 21962821 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23518650 - bio allocation failure due to biogetnrvecs Darrick J. Wong Orabug: 23852442 - mlx4:...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.22 - ocfs2: fix trans extend while free cached blocks Junxiao Bi Orabug: 25136991 - ocfs2: fix trans extend while flush truncate log Junxiao Bi Orabug: 25136991 - ocfs2: extend enough credits for freeing one truncate record while replaying truncate records Xue jiufei Orabug...
python security, bug fix, and enhancement update
2.7.5-48.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-48 - Fix for CVE-2016-1000110 HTTPoxy attack Resolves: rhbz1359164 2.7.5-47 - Fix for CVE-2016-5636: possible integer overflow and heap corruption in zipimporter.getdata Resolves: rhbz1356364 2.7.5-46 - Drop patch 2...
httpd security and bug fix update
2.4.6-40.0.1.4 - replace index.html with Oracle's index page oracleindex.html 2.4.6-40.4 - add security fix for CVE-2016-5387 2.4.6-40.3 - add 451 Unavailable For Legal Reasons response status-code 1353269 2.4.6-40.2 - modcache: treat cache as valid with changed Expires in 304 1347648...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.17 - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267965 CVE-2015-8543 CVE-2015-8543 - ext4: Fix null dereference in ext4fillsuper Ben Hutchings Orabug: 23263398 CVE-2015-8324 CVE-2015-8324 - ipv6: addrconf: validate new MTU...
java-1.8.0-openjdk security update
1:1.8.0.91-0.b14 - Add additional fix to Zero patch to properly handle result on 64-bit big-endian - Resolves: rhbz1325422 1:1.8.0.91-0.b14 - Revert settings to production defaults so we can at least get a build. - Resolves: rhbz1325422 1:1.8.0.91-0.b14 - Switch to a slowdebug build to try and...
kernel security and bug fix update
2.6.32-573.3.1 - md Revert 'dm: don't schedule delayed run of the queue if nothing to do' Mike Snitzer 1246095 1240767 - md Revert 'dm: only run the queue on completion if congested or no requests pending' Mike Snitzer 1246095 1240767 2.6.32-573.2.1 - net udp: fix behavior of wrong checksums Deny...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.9uek - x86, tls: Interpret an all-zero struct userdesc as 'no segment' Andy Lutomirski Orabug: 21518750 - x86, tls, ldt: Stop checking lm in LDTempty Andy Lutomirski Orabug: 21518750 2.6.32-400.37.8uek - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502741...
Unbreakable Enterprise kernel security update
2.6.39-400.248.3 - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687314 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 - Revert 'mm: Fix NULL pointer dereference in madviseMADVWILLNEED support' Guangyu Sun Orabug: 20673281 CVE-2014-8173 2.6.39-400.248.2 -...
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.4.0.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.75-2.5.4.0 - Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz1180294...
Unbreakable Enterprise kernel security update
2.6.39-400.215.13 - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010591 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010578 CVE-2014-3673...
php security update
5.4.16-23.1 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression incomplete fix for CVE-2013-7345. CVE-2014-3538 - fileinfo: fix mconvert incorrect handling ...
java-1.7.0-openjdk security update
1.7.0.55-2.4.7.1.0.1.el510 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.55-2.4.7.1.el5 - regenerated sources to fix TCK failure - Resolves: rhbz1085000 1.7.0.55-2.4.7.0.el5 - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release rese...
Unbreakable Enterprise Kernel security update
3.8.13-16.2.2.el6uek - HID: pantherlord: validate output report details Kees Cook Orabug: 17841973 CVE-2013-2892 - HID: zeroplus: validate output report details Kees Cook Orabug: 17841968 CVE-2013-2889 - HID: provide a helper for validating hid reports Kees Cook Orabug: 17841968 CVE-2013-2889 -...
Unbreakable Enterprise kernel Security update
2.6.32-400.29.1 - KVM: add missing void user COPYING CREDITS Documentation Kbuild MAINTAINERS Makefile README REPORTING-BUGS arch block crypto drivers firmware fs include init ipc kernel lib mm net samples scripts security sound tools uek-rpm usr virt cast to accessok call Heiko Carstens Orabug:...
1
kernel 2.6.18-348.3.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
1
kernel 2.6.18-308.24.1.0.1.el5 - kernel Initialize the local uninitialized variable stats. orabug 14051367 - fs JBD:make jbd support 512B blocks correctly for ocfs2. orabug 13477763 - x86 fix fpu context corrupt when preempt in signal context orabug 14038272 - mm fix hugetlb page leak Dave...
kernel security and bug fix update
2.6.9-89.35.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
kernel security update
2.6.18-164.10.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
Important: kernel security and bug fix update
2.6.18-8.1.4.0.1.el5 -Fix bonding primary=ethX so it picks correct network Bert Barbe IT 101532 ORA 5136660 -Add entropy module option to e1000 John Sobecki ORA 6045759 -Add entropy module option to bnx2 John Sobecki ORA 6045759 2.6.18.8.1.4.el5 - ipv6 Fix routing regression. David S. Miller 2380...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
virt:ol and virt-devel:ol security and bug fix update
hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 libvirt 6.0.0-35.1.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 - Add runtime deps for pkg librbd1 = 1:10.2.5 Keshav Sharma - Disable parallel builds Karl Heubaum 6.0.0-35.1.el8 -...
libtiff security update
4.0.9-34 - fix CVE-2017-17095: heap-based buffer overflow in pal2rgb RHEL-87363...
qemu-kvm security update
9.0.0-10.el95.3 - kvm-target-i386-fix-feature-dependency-for-WAITPKG.patch RHEL-84866 - Resolves: RHEL-84866 Live migration after workload update fails with operation failed: guest CPU doesn't match specification: missing features: waitpkg rhel-9.5.z...
libsoup security update
2.62.3-8 - Backport patches for various CVEs, plus test improvements Resolves: RHEL-85887 Resolves: RHEL-85900 Resolves: RHEL-85901 Resolves: RHEL-87039 Resolves: RHEL-87094 Resolves: RHEL-87114 Resolves: RHEL-88348 Resolves: RHEL-88351...
Unbreakable Enterprise kernel security update
5.15.0-204.147.6.3 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36464807 CVE-2024-1086...
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...
edk2 security update
20220126gitbb1bba3d77-4 - edk2-openssl-update.patch bz2164531 bz2164543 bz2164558 bz2164581 - edk2-rh-openssl-add-crypto-bn-rsasupmul.c-to-file-list.patch bz2164531 bz2164543 bz2164558 bz2164581 - Resolves: bz2164531 CVE-2023-0286 edk2: openssl: X.400 address type confusion in X.509 GeneralName...
Unbreakable Enterprise kernel security update
5.4.17-2136.318.7.1 - KVM: arm64: Disabling disabled PMU counters wastes a lot of time Alexandre Chartre Orabug: 33312587 - KVM: arm64: Don't zero the cycle count register when PMCREL0.P is set Alexandru Elisei Orabug: 33312587 - KVM: arm64: pmu: Only handle supported event counters Eric Auger...
kernel security, bug fix, and enhancement update
4.18.0-425.19.27.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.516.1.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460938 CVE-2022-2588 4.14.35-2047.516.1 - KVM: x86: Avoid theoretical NULL pointer dereference in kvmirqdeliverytoapicfast Vitaly Kuznetsov Orabug: 34323860 CVE-2022-2153 - KVM: x8...
squid security update
7:3.5.20-17.0.1 - Mutiple CVE fixes for squid Orabug: 33146289 - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing 788 - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range...
java-17-openjdk security update
1:17.0.3.0.7-1 - April 2022 security update to jdk 17.0.3+7 - Update to jdk-17.0.3.0+7 tarball - Update release notes to 17.0.3.0+7 - Add missing README.md and generatesourcetarball.sh - Resolves: rhbz2073578...
openssl security update
1:1.1.1k-4 - Fixes bugs in s390x AES code. - Uses the first detected address family if IPv6 is not available - Reverts the changes in https://github.com/openssl/openssl/pull/13305 as it introduces a regression if server has a DSA key pair, the handshake fails when the protocol is not explicitly s...
python3 security update
3.6.8-39.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-39 - Security fix for CVE-2021-3733: Denial of service when identifying crafted invalid RFCs Resolves: rhbz1995234...
postgresql:10 security update
10.17-1 - Update to 10.17 Resolves: 1964520 Fix: CVE-2021-32027, CVE-2021-32028...