8998 matches found
Unbreakable Enterprise kernel security update
4.1.12-124.66.3 - fuse: fix pipe buffer lifetime for directio Miklos Szeredi Orabug: 33981149 CVE-2022-1011 - vt: drop old FONT ioctls Jiri Slaby Orabug: 34408794 CVE-2021-33656 - video: ofdisplaytiming.h: include errno.h Hsin-Yi Wang Orabug: 34408910 CVE-2021-33655 - fbcon: Disallow setting font...
php:7.4 security update
php 7.4.19-4 - fix uninitialized array in pgqueryparams leading to RCE CVE-2022-31625...
kernel security, bug fix, and enhancement update
5.14.0-70.22.1.0.10.OL9 lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 5.14.0-70.22.10.OL9 Update Oracle Linux certificates Kevin Lyons Disable signing for aarch64 Ilya Okomin Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
Unbreakable Enterprise kernel security update
5.15.0-0.30.20 - floppy: use a statically allocated error counter Willy Tarreau Orabug: 34218638 CVE-2022-1652 - x86: Disable RET on kexec Konrad Rzeszutek Wilk Orabug: 34335631 CVE-2022-29901 CVE-2022-23816 - x86/bugs: do not enable IBPB-on-entry when IBPB is not supported Thadeu Lima de Souza...
expat security update
2.2.5-8.0.1.2 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-8.2 - Improve fix for CVE-2022-25313 - Related: CVE-2022-25313 2.2.5-8.1 - Fix multiple CVEs - Resolves: CVE-2022-25314 - Resolves: CVE-2022-25313...
httpd:2.4 security update
httpd 2.4.37-47.0.1.2 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-47.2 - Resolves: 2097247 - CVE-2020-13950 httpd:2.4/httpd: modproxy NULL pointer dereference...
firefox security and bug fix update
91.7.0-3.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.7.0-3 - Update to 91.7.0 build3 91.7.0-2 - Added expat backports of...
kernel security and bug fix update
4.18.0-348.12.25.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
java-17-openjdk security update
1:17.0.2.0.8-4 - Fix FIPS issues in native code and with initialisation of java.security.Security - Related: rhbz2039366 1:17.0.2.0.8-3 - Update tapsets from IcedTea 6.x repository with fix for JDK-8015774 changes heap-heaps and @JAVASPECVER@ - Update icedteasync.sh with a VCS mode that retrieves...
firefox security update
91.5.0-1.0.2 - Enabled aarch64 builds 91.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.5.0-1 - Update to 91.5.0 build1...
httpd:2.4 security update
httpd 2.4.37-43.0.2 - scoreboard: fix null pointer deference Orabug: 33690670CVE-2021-34798 - fix apescapequote logic Orabug: 33690686CVE-2021-39275...
java-17-openjdk security update
1:17.0.1.0.12-2 - Extend LTS check to exclude EPEL. - Related: rhbz2013841 1:17.0.1.0.12-2 - Set LTS designator. - Related: rhbz2013841 1:17.0.1.0.12-1 - Drop JDK-8272332/RH2004078 patch which is upstream in 17.0.1 - Resolves: rhbz2013841 1:17.0.1.0.12-1 - October CPU update to jdk 17.0.1+12 -...
grafana security, bug fix, and enhancement update
7.5.9-4 - resolve CVE-2021-39226 7.5.9-3 - rebuild to resolve CVE-2021-34558 7.5.9-2 - remove unused dependency property-information - always include FIPS patch in SRPM 7.5.9-1 - update to 7.5.9 tagged upstream community sources, see CHANGELOG 7.5.8-1 - update to 7.5.8 tagged upstream community...
hivex security update
1.3.10-6.12 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976193...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.52.1-1 - Update to 1.52.1. Includes security fixes for CVE-2020-36323, CVE-2021-28876, CVE-2021-28878, CVE-2021-28879, and CVE-2021-31162. 1.51.0-1 - Update to 1.51.0. Update to 1.51.0. Includes security fixes for CVE-2021-28875 and CVE-2021-28877. 1.50.0-1 - Update to 1.50.0. rust-toolset...
dhcp security update
12:4.2.5-83.0.1 - Direct users to Oracle Linux support site. 12:4.2.5-83.1 - Fix for CVE-2021-25217 12:4.2.5-83 - Revert fix for 1668696...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.103.3.1.el7 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 -...
olcne security update
kubernetes 1.18.10-3 - Kata CVE-2020-28914 kata-proxy 1.11.5-1 - Added Oracle Specific Build Files for kata-proxy kata-shim 1.11.5-1 - Added Oracle Specific Build Files for kata-shim kata-ksm-throttler 1.11.5-1 - Added Oracle Specific Build Files for kata-ksm-throttler kata-runtime 1.11.5-1 - Add...
bind security update
32:9.8.2-0.68.rc1.8 - Fix tsig-request verify CVE-2020-8622...
expat security update
2.1.0-12 - add security fixes for CVE-2018-20843, CVE-2019-15903...
.NET Core 3.1 security and bugfix update
3.1.108-2.0.1.el82 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.108-2 - Rebuild to fix tests - Resolves: RHBZ1874512 3.1.108-1 - Update to .NET Core Runtime 3.1.8 and SDK 3.1.108 - Resolves: RHBZ1874512...
bind security update
32:9.8.2-0.68.rc1.7 - Correct tests covering CVE-2020-8617 32:9.8.2-0.68.rc1.6 - Add additional fix to limit recursions 32:9.8.2-0.68.rc1.5 - Add CVE tests to codebase 32:9.8.2-0.68.rc1.4 - Limit number of queries triggered by a request CVE-2020-8616 - Fix invalid tsig request CVE-2020-8617...
glibc security, bug fix, and enhancement update
2.28-101.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
spice-gtk security update
0.26-8.2 - Fix insufficient encoding checks for LZ Resolves: rhbz1598651 0.26-8.1 - Fix flexible array buffer overflow Resolves: rhbz1596008...
git security update
2.18.2-1 - Update to release 2.18.2 - Remote code execution in recursive clones with nested submodules Resolves: CVE-2019-1387 - Fixes CVE-2019-1348, CVE-2019-1349, CVE-2019-1350, CVE-2019-1351, CVE-2019-1352, CVE-2019-1353, CVE-2019-1354...
openslp security update
1:2.0.0-8 - Fix a heap-based buffer overflow vulnerability leading to remote code execution, CVE-2019-5544 Resolves: 1781701...
firefox security update
68.2.0-2.0.1 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.2.0-2 - Rebuild 68.2.0-1 - Update to 68.2.0 ESR 68.1.0-6 - Enable system nss on RHEL6 68.1.0-2 - Enable building langpacks...
kernel security and bug fix update
4.18.0-80.4.20.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.4.20 - net tcp: enforce tcpminsndmss in tcpmtuprobing Florian...
java-1.8.0-openjdk security update
1:1.8.0.201.b09-0 - Update to aarch64-shenandoah-jdk8u201-b09. - Resolves: rhbz1661577 1:1.8.0.192.b12-1 - Add 8160748 for AArch64 which is missing from upstream 8u version. - Add port of 8189170 to AArch64 which is missing from upstream 8u version. - Resolves: rhbz1661577 1:1.8.0.192.b12-0 -...
qemu security update
...
Unbreakable Enterprise kernel security update
2.6.39-400.299.3 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156175 CVE-2018-3665 - ALSA: hrtimer: Fix stall by hrtimercancel Takashi Iwai Orabug: 22876528 CVE-2016-2549 - ALSA: timer: Harden slave timer list handling Takashi Iwai Orabug: 22876528 CVE-2016-2547 CVE-2016-2548 - ALSA:...
tomcat6 security update
0:6.0.24-111 - Resolves: rhbz1498345 CVE-2017-12615 CVE-2017-12617 tomcat6: various flaws 0:6.0.24-110 - Resolves: rhbz1461292 CVE-2017-5664 tomcat6: tomcat: Security constrained bypass in error page mechanism 0:6.0.24-109 - Resolves: rhbz1461851 The tomcat6 build is incompatible with the ECJ...
firefox security update
52.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.4.0-1 - Update to 52.4.0 ESR 52.3.0-3 - Update to 52.3.0 ESR b2 - Require correct nss version...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.6 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
libreoffice security and bug fix update
1:5.0.6.2-5.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-5.1 - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer 1:5.0.6.2-5 - Resolves:...
samba security and bug fix update
3.6.23-41.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-41 - resolves: 1413672 - Auth regression after secret changed 3.6.23-40 - resolves: 1405356 - CVE-2016-2125 CVE-2016-2126 3.6.23-39 - resolves: 1297805 - Fix issues with printer unpublishing...
bind security update
30:9.3.6-25.P1.10 - Fix CVE-2016-2848 30:9.3.6-25.P1.9 - Fix CVE-2016-2776 30:9.3.6-25.P1.8 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite 30:9.3.6-25.P1.7 - Fix CVE-2016-1285 and CVE-2016-1286 30:9.3.6-25.P1.6 - Fix CVE-2015-8704 30:9.3.6-25.P1.5 - Fix CVE-2015-80...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 4.1.12-61.1.13 - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24803597 CVE-2016-5829 4.1.12-61.1.12 - ocfs2: Fix start offset to ocfs2zerorangefortruncate Ashish Samant Orabug: 24790230 4.1.12-61.1.11 - ocfs2: Fix double put of recount...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-118.13.2 - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24798695 CVE-2016-5829 3.8.13-118.13.1 - Revert 'rds: skip rx/tx work when destroying connection' Brian Maly Orabug: 24790116 3.8.13-118.12.1 - scsisysfs: protect against...
openssl security update
1.0.1e-48.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in DTLS - fix CVE-2016-2180 - OOB read in TSOBJprintbio - fix CVE-2016-2181 - DTLS1 replay protection and unprocessed records issue - fix...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.6.3 - tcp: make challenge acks less predictable Eric Dumazet Orabug: 24010103 Orabug: 2401010 CVE-2016-5696...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.9.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393864 CVE-2016-4470...
Unbreakable Enterprise kernel security update
2.6.39-400.280.1 - Fix cpu bootup stall with large cpu count Zhenzhong Duan Orabug: 23481040 - megaraidsas : Update threshold based reply post host index register [email protected] Orabug: 23536267 2.6.39-400.279.1 - IPoIB: increase send queue size to 4 times Ajaykumar Hotchandani Orabug...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.2.1 - ipc/sem.c: fully initialize semarray before making it visible Manfred Spraul Orabug: 22277382 CVE-2015-7613 - ipc: fix msg newqueue add Guru Anbalagane Orabug: 22277382 CVE-2015-7613 3.8.13-118.1.1 - sctp: fix race on protocol/netns initialization Marcelo Ricardo Leitn...
krb5 security, bug fix, and enhancement update
1.13.2-9 - Add patch and test case for 'KDC does not return proper client principal for client referrals' - Resolves: 1259846 1.13.2-9 - Ammend patch for RedHat bug 1252454 'testsuite complains 'Lifetime has increased by 32436 sec while 0 sec passed!', while rhel5-libkrb5 passes' to handle the...
kernel security, bug fix, and enhancement update
3.10.0-229.20.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.20.1 - Revert: crypto nx - Check for bogus firmware properties Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving NX-AES-CBC to be processed logic Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.11uek - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628852 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-68.2.2 - crypto: aesni - fix memory usage in GCM decryption Stephan Mueller Orabug: 21077385 CVE-2015-3331 3.8.13-68.2.1 - xen/pciback: Don't disable PCICOMMAND on PCI device reset. Konrad Rzeszutek Wilk Orabug: 20807438 CVE-2015-2150 - xen-blkfront: fix accounting of reqs when...
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.5.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.75-2.5.5.1 - Repacked sources - Resolves: rhbz1209069 1:1.7.0.79-2.5.5.0 - Bump to 2.5.5 using OpenJDK 7u79 b14. - Resolves: rhbz1209069...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55.1.8 - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687313 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 3.8.13-55.1.7 - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673376 CVE-2014-8884 - mm: Fix NULL pointer dereferen...