9185 matches found
unbound security update
1.16.2-5.2 - bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 - bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868...
olcne security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building conmon for all but OL7. cri-o...
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...
qemu-kvm security, bug fix, and enhancement update
8.0.0-16.el93 - kvm-migration-Add-migration-prefix-to-functions-in-targe.patch bz2229868 - kvm-migration-Move-more-initializations-to-migrateinit.patch bz2229868 - kvm-migration-Add-.saveprepare-handler-to-struct-SaveVM.patch bz2229868 -...
openssh security update
5.3p1-124.0.2 - Fix for CVE-2016-6210 incomplete fix Orabug: 29375502CVE-2016-6210 5.3p1-124.0.1 - Fix for CVE-2023-38408 Orabug: 35672523...
kernel security, bug fix, and enhancement update
4.18.0-425.19.27.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.315.5 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369 5.4.17-2136.315.4 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888473 - uek-rpm: Add ptpkvm.ko to nano rpm Somasundaram Krishnasamy Orabug: 33487655 - block: fix RO...
python39:3.9 security update
python39 3.9.13-2 - Fix for CVE-2022-42919 Resolves: rhbz2138705...
Unbreakable Enterprise kernel security update
5.15.0-1.43.4.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460936 CVE-2022-2588 5.15.0-1.43.4 - Revert selftests/bpf: add tests verifying unprivileged bpf behaviour Alan Maguire Orabug: 34399286 - Revert selftests/bpf: Add test for reg2btfids o...
httpd security update
2.4.51-7.0.2 - modproxy: approxyhttprequest to clear hop-by-hop first and fixup last CVE-2022-31813Orabug: 34381949...
webkit2gtk3 security, bug fix, and enhancement update
2.34.6-1 - Update to 2.34.6 Related: 1985042 2.34.5-1 - Update to 2.34.5 - Related: 1985042 2.34.4-1 - Update to 2.34.4 - Resolves: 1985042 2.32.4-1 - Update to 2.32.4 - Related: 1985042 - Resolves: 2006429...
zlib security update
1.2.7-20 - Resolves: CVE-2018-25032...
kernel security and bug fix update
3.10.0-1160.53.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
binutils security update
2.30-108.0.2.1 - Forward-port Oracle patches from 2.30-108.0.2 to 2.30-108.0.2.1 - Reviewed-by: Jose E. Marchesi 2.30-108.0.2 - Forward-port the following update: Thu Oct 07 2021 Nick Alcock - 2.30-93.0.4 - Backport fix for fencepost bug in CTF pptrtab usage causing coredumps - Backport test resu...
compat-exiv2-026 security update
0.26-11 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990397...
kernel security and bug fix update
3.10.0-1160.36.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
postgresql security update
9.2.24-7 - Fix CVE-2021-32027 - Resolves: 1964507...
python38:3.8 security update
python38 3.8.6-3 - Security fix for CVE-2021-3177 Resolves: rhbz1919161 3.8.6-2 - Add support for upstream architecture names https://fedoraproject.org/wiki/Changes/PythonUpstreamArchitectureNames Resolves: rhbz1868006 3.8.6-1 - Update to 3.8.6 - Security fix for CVE-2020-26116 python-requests...
Unbreakable Enterprise kernel security update
4.14.35-2047.503.1 - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. Somasundaram Krishnasamy Orabug: 32781585 - ext4: handle error of ext4setupsystemzone on remount J...
openssl bug fix update
1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference 1.0.2k-19 - close the RSA decryption 9 lives of Bleichenbacher cat timing side channel 1649568 1.0.2k-18 - fix CVE-2018-0734 - DSA signatu...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.53.1 - Fonts: Support FONTEXTRAWORDS macros for built-in fonts Peilin Ye Orabug: 32176267 - fbdev, newportcon: Move FONTEXTRAWORDS macros into linux/font.h Peilin Ye Orabug: 32176267 CVE-2020-28915 - vt: Disable KDFONTOPCOPY Daniel Vetter Orabug: 32187751 CVE-2020-28974...
openssl security update
1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference...
libvpx security update
1.3.0-8 - Fix for CVE-2020-0034 - Resolves: rhbz1823909 1.3.0-7 - Fix for CVE-2019-9232 and CVE-2019-9433 - Resolves: rhbz1796085, rhbz1796099 1.3.0-6 - Fix for CVE-2017-0393 - Resolves: rhbz1779498 1.3.0-4 - fix Illegal Instruction abort 1.3.0-3 - update library symbol list for 1.3.0 from Debian...
Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes olcne security update
kernel-uek-container 4.14.35-1902.303.5.3.el7 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' Gerd Rausch Orabug: 31475329 - Revert 'rds: Introduce rdsconntopath helper' Gerd Rausch Orabug: 31475329 ...
.NET Core 3.1 security and bugfix update
3.1.106-1.0.1 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.106-1 - Update to .NET Core Runtime 3.1.6 and SDK 3.1.106 - Resolves: RHBZ1854137...
virt:ol security update
qemu-kvm 2.12.0-99.0.1.el82.2 - Added bug30251155-remove-upstream-reference Orabug: 30251155 2.12.0-99.el82.2 - kvm-vnc-add-magic-cookie-to-VncState.patch bz1816763 - kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch bz1816763 - Resolves: bz1816763 CVE-2019-20382 virt:rhel/qemu-kvm: QEMU: vnc:...
freerdp security update
2.0.0-4.rc4.1 - CVE-2020-13398: Fix out-of-bounds write in crypto.c 1841974...
bind security update
32:9.11.13-5 - Limit number of queries triggered by a request CVE-2020-8616 32:9.11.13-4 - Fix invalid tsig request CVE-2020-8617...
haproxy security update
1.8.15-6.1 - - Fix hapack zero byte input causing overwrite CVE-2020-11100, 1819518 1.8.15-6 - Add gating tests 1682106...
ppp security update
2.4.5-34.0.2 - Userland headers should always appear before kernel - Orabug: 27656836 [email protected] 2.4.5-34 - Fixed buffer overflow in the eaprequest and eapresponse functions Resolves: CVE-2020-8597...
pango security update
1.42.4-5 - Fixes crash in pangofcfontkeygetvariations when key is null 1.42.4-4 - Fixes bidi crash - Security fix for CVE-2019-1010238 - Resolves: 1738461 1.42.4-3 - rebuild 1.42.4-2 - rebuild...
freerdp and vinagre security, bug fix, and enhancement update
freerdp 2.0.0-1.rc4 - Update to 2.0.0-rc4 1291254 vinagre 3.22.0-12 - Apply the patch - Resolves: 1569552 3.22.0-11 - Set maximum length of RDP password to 255 characters - Resolves: 1569552 3.22.0-10 - Make vinagre build with FreeRDP 2 library - Resolves: 1680229...
glibc security and bug fix update
aarch64: 2.17-292.0.2 - CR29749550 armv5 build failure - Add 3 arm patches to aarch64 tree to avoid future build/merge failures. - Rebase aarch64 patches at 30000 to avoid future conflicts. - Reviewed-by: Jose E. Marchesi - EL Errata - Add BUSMCEERRAR, BUSMCEERRAO to...
pki-deps:10.6 security update
apache-commons-collections 3.2.2-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora29MassRebuild 3.2.2-9 - Remove workaround for symlink-directory rpm bug jackson-bom 2.9.8-1 - Update to latest upstream release 2.9.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 2.9.4-1 -...
libvirt security update
0.10.2-64.0.1 - Replace docs/et.png in tarball with blank image 0.10.2-64.el610.1 - cpux86: Do not cache microcode version CVE-2018-12126, CVE-2018-12130, CVE-2018-12127 - cpumap: Define md-clear CPUID bit CVE-2018-12126, CVE-2018-12130, CVE-2018-12127...
qemu-kvm security update
1.5.3-156.el75.3 - kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch bz1584363 - kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch bz1584363 - Resolves: bz1584363 CVE-2018-3639 qemu-kvm: hw: cpu: AMD: speculative store bypass rhel-7.5.z...
kernel security, bug fix, and enhancement update
...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.4 - ipv6: catch a null skb before using it in a DTRACE Shannon Nelson Orabug: 26075879 - sparc64: Do not retain old VMSPARCADI flag when protection changes on page Khalid Aziz Orabug: 26038830 4.1.12-94.3.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Field...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR 52.0-5 - Added fix for...
bind security update
32:9.9.4-38.1 - Fix CVE-2016-9131 ISC change 4508 - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530 - Fix CVE-2016-9444 ISC change 4517...
Unbreakable Enterprise kernel security update
2.6.39-400.293.1 - logging errors that get masked to EIO inside drivers/block/loop.c Manjunath Patil Orabug: 21962821 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23518650 - bio allocation failure due to biogetnrvecs Darrick J. Wong Orabug: 23852442 - mlx4:...
ntp security update
4.2.6p5-10.0.1.el68.1 - add disable monitor to default ntp.conf CVE-2013-5211...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.17 - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267965 CVE-2015-8543 CVE-2015-8543 - ext4: Fix null dereference in ext4fillsuper Ben Hutchings Orabug: 23263398 CVE-2015-8324 CVE-2015-8324 - ipv6: addrconf: validate new MTU...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444792 CVE-2015-2922...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.1.3 - isofs: Fix unchecked printing of ER records Jan Kara Orabug: 20930551 CVE-2014-9584 - KEYS: close race between key lookup and freeing Sasha Levin Orabug: 20930548 CVE-2014-9529 CVE-2014-9529 - mm: memcg: do not allow task about to OOM kill to bypass the limit Johannes...
glibc security update
2.3.4-2.57.0.1.el4.1 - CVE-2015-0235 Fix parsing of numeric hosts in gethostbynamer John Haxby orabug 20439586...
Unbreakable Enterprise kernel security update
3.8.13-26.2.4.el6uek - aacraid: missing capable check in compat ioctl Dan Carpenter Orabug: 18721961 CVE-2013-6383 - vhost: fix total length when packets are too short Michael S. Tsirkin Orabug: 18721976 CVE-2014-0077...
Unbreakable Enterprise kernel security and bug fix update (Unbreakable Enterprise Kernel Release 3 QU1)
3.8.13-26.el6uek - spec: Don't remove crashkernel=auto setting Jerry Snitselaar Orabug: 18137993 3.8.13-25.el6uek - ocfs2: fix imutex deadlock between aiowrite and syncfile Darrick J. Wong Orabug: 18068931 - Revert 'x86, mm: Revert back goodend setting for 64bit' Jerry Snitselaar Orabug: 18128986...