8998 matches found
Unbreakable Enterprise kernel security fix update
A 2.6.32-100.28.17.el6 - net Extend prot-slab size when add sock extend fields. 2.6.32-100.28.16.el6 - kernel: Fix unlimited socket backlog DoS CVE-2010-4251 - RDS: Fix congestion issues for loopback - rds: prevent BUGON triggering on congestion map updates CVE-2011-1023 - epoll: prevent creating...
firefox security and bug fix update
firefox: 3.6.14-4.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.14-4 - Update to build3 3.6.14-3 - Update to build2 3.6.14-2 - Update to 3.6.14 xulrunner: 1.9.2.14-3.0.1.el60 - Added xulrunner-oracle-default-prefs.js and removed the corresponding...
firefox security update
firefox: 3.6.13-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js bugz 11762 3.6.13-2 - Update to 3.6.13 build3 3.6.13-1 - Update to 3.6.13 3.6.12-1 - Update to 3.6.12 3.6.11-1 - Update to 3.6.11 xulrunner: 1.9.2.13-3.0.1.el60 - Added...
gnutls security update
1.4.1-3.8 - fix safe renegotiation on SSL3 protocol 1.4.1-3.7 - implement safe renegotiation - CVE-2009-3555 533125 - do not allow MD2 in certificate signatures by default - CVE-2009-2409 510197...
firefox security update
firefox: 3.0.18-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.18-1 - Update to 3.0.18 xulrunner: 1.9.0.18-1.0.1.el54...
kernel security and bug fix update
2.6.9-89.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...
kdelibs security update
3.5.4-22.0.1.el53 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm in tarball 3.5.4-22 - Resolves: 505621, CVE-2009-1687, integer overflow in KJS JavaScript garbage collector CVE-2009-1698, KHTML CSS parser - incorrect handling CSS style attribute content...
seamonkey security update
1.0.9-38.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html and removed corresponding ones of Red Hat. 1.0.9-38.el4 - Added mising fix 1.0.9-37.el4 - Added fixes from 1.9.0.7 1.0.9-36.el4 - Fixed build ID...
kernel security and bug fix update
2.6.18-92.1.6.0.2.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - dio fix error-path crashes Linus Torvalds orabug 6242289 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.6.el5 - x86 sanity...
Moderate: php security update
5.1.6-15.el5 - improve fix for CVE-2007-3997 278411 5.1.6-14.el5 - fix backport for CVE-2007-3996 278411 5.1.6-13.el5 - add security fixes for CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658, CVE-2007-4670 278411...
Important: php security update
4.3.9-3.22.4 - add security fixes for CVE-2007-1285, CVE-2007-1286, CVE-2007-1583, CVE-2007-1711, CVE-2007-1718 230556 - add security fixes for CVE-2007-0455, CVE-2007-1001 235028...
Unbreakable Enterprise kernel security update
5.15.0-308.179.6.2 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920681 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920681 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920681 - selftest/x86/bugs: Add selftests f...
ruby security update
ruby 2.5.9-112 - Fix ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755. CVE-2023-36617 Resolves: RHEL-5614 - Fix Buffer overread vulnerability in StringIO. CVE-2024-27280 Resolves: RHEL-34125 - Fix RCE vulnerability with .rdocoptions in RDoc. CVE-2024-27281 Resolves: RHEL-34117 -...
bind security update
bind 32:9.16.23-14.4 - Rebuild with correct z-stream tag again 32:9.16.23-14.3 - Rebuild together with bind-dyndb-ldap to adjust ABI changes 32:9.16.23-14.2 - Import tests for large DNS messages fix - Add downstream change complementing CVE-2023-50387 32:9.16.23-14.1 - Prevent increased CPU load ...
kernel security update
5.14.0-362.24.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
4.1.12-124.83.2 - Input: add bounds checking to inputsetcapability Jeff LaBundy Orabug: 36192120 CVE-2022-48619 - netfilter: ctnetlink: fix possible refcount leak in ctnetlinkcreateconntrack Hangyu Hua Orabug: 36155598 CVE-2023-7192 4.1.12-124.83.1 - ext4: improve error recovery code paths in...
kernel security update
5.14.0-362.13.1.el93.OL9 - x86/retpoline: Document some thunk handling aspects Borislav Petkov CVE-2023-20569 - objtool: Fix return thunk patching in retpolines Josh Poimboeuf CVE-2023-20569 - x86/srso: Remove unnecessary semicolon Yang Li CVE-2023-20569 - x86/calldepth: Rename x86returnskl to...
webkit2gtk3 security and bug fix update
2.40.5-1 - Upgrade to 2.40.5. Also, disable JIT Resolves: 2176269 Resolves: 2185742 Resolves: 2209728 Resolves: 2209745 Resolves: 2218649 Resolves: 2218651 Resolves: 2224611 2.38.5-1.4 - Add patch for CVE-2023-28204 Resolves: 2209744 - Add patch for CVE-2023-32373 Resolves: 2209727 2.38.5-1.3 -...
grafana security and enhancement update
9.2.10-7 - bump release number for rebuild with fixed gating.yaml file 9.2.10-6 - resolve RHEL-12665 - resolve CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work - testing is turned off due to test failures caused by testing date mismatch 9.2.10-5 - resolve CVE-2023-3128...
microcode_ctl security update
4:20230214-2.0.3 - update 06-55-04 to 0x2007006 - update 06-55-06 to 0x4003604 - update 06-55-07 to 0x5003604 - update 06-6a-06 to 0xd0003a5 - Resolves for Oracle hardware: CVE-2022-40982 Orabug: 35692741...
python-pip security update
9.0.3-8.0.3 - CVE-2021-3572 Orabug: 35240686...
git-lfs security and bug fix update
3.2.0-1 - Update to 3.2.0 - Resolves: 2139383 2.13.3-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 2.13.3-3 - Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz1971065 2.13.3-2 - Fixed name of source tarball - Fixed date in the latest changelog entry - Related: 19525...
libtiff security update
4.4.0-5 - Bump release - Resolves: CVE-2022-2953 4.4.0-4 - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 4.4.0-3 - Fix CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 - Resolves: 2106768...
bind9.16 security update
32:9.16.23-0.7.1 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178...
kernel security update
2.6.32-754.35.1.0.6.OL6 :digitoepollctl: clean the failure exits up a bit Marc Zyngier CVE-2020-0466 Orabug: 34086960 - epoll: Keep a reference on files added to the check list Al Viro CVE-2020-0466 Orabug: 34086960 - fix regression in 'epoll: Keep a reference on files added to the check list Al...
Unbreakable Enterprise kernel-container security update
r 5.4.17-2136.310.7 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34480880 CVE-2022-2588 - x86/specctrl: limit IBRSFW to retpoline only Ankur Arora Orabug: 34450896 - x86/bugs: display dynamic retbleed state Ankur Arora Orabug: 34450896 - x86/bugs:...
bind security, bug fix, and enhancement update
32:9.11.36-2 - Reduce memory used per-view on machine with few processors 2030239 32:9.11.36-2 - Rebuilt on a new side-tag 2013993 32:9.11.36-1 - Update to 9.11.36 32:9.11.26-9 - Correct tsig system test 32:9.11.26-8 - Propagate ephemeral port ranges to chroot 1950714 32:9.11.26-7 - Do not reques...
olcne istio istio security update
olcne 1.3.5-1 - Update Istio to 1.12.6prometheus-2.30.1, grafana-7.5.15 istio 1.12.6-1 - Addresses CVE-2022-24726, CVE-2022-24921 istio 1.11.4-1 - Added Oracle specific files for 1.11.4-1...
openssl security update
1:1.0.2k-25 - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates - Related: rhbz2067160...
vim security update
8.0.1763-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-16.12 - CVE-2022-0361 vim: Heap-based Buffer Overflow in GitHub repository 2:8.0.1763-16.11 - CVE-2022-0413 vim: use after free in src/excmds.c - Fix specfile problems - Resolves: rhbz2048525 2:8.0.1763-16.10 - CVE-2022-04...
ruby:2.5 security update
ruby 2.5.9-109.0.1 - Rebuild with a dependency containing fix for Orabug: 33921593 2.5.9-109 - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 2.5.9-108 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799 - Fix StartTLS stripping vulnerability in...
openssl security update
1.0.2k-23.0.1 - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1.0.2k-23 -...
Unbreakable Enterprise kernel security update
5.4.17-2136.302.7.2 - xfs: map unwritten blocks in XFSIOCALLOC,FREESP just like fallocate Darrick J. Wong Orabug: 33699625 CVE-2021-4155 5.4.17-2136.302.7.1 - fget: check that the fd still exists after getting a ref to it Linus Torvalds Orabug: 33691332 CVE-2021-0920 5.4.17-2136.302.7 - rds: ib:...
resource-agents security update
4.1.1-98 - storage-mon: new resource agent Resolves: rhbz1509319 4.1.1-97 - podman: fix possible race during container creation Resolves: rhbz1972743 4.1.1-96 - LVM-activate: fix drop-in check to avoid re-creating drop-in Resolves: rhbz1972035 4.1.1-95 - lvmlockd: remove cmirrord support, as...
cloud-init security update
20.3-10.0.1 - Added missing services in rhel/systemd/cloud-init.service Orabug: 32183938 - Added missing services in cloud-init.service.tmpl for sshd Orabug: 32183938 - Forward port applicable cloud-init 18.4-2.0.3 changes to cloud-init-18-5 Orabug: 30435672 - limit permissions Orabug: 31352433 -...
container-tools:2.0 security update
runc 1.0.0-65.rc10 - fix CVE-2021-30465 - Resolves: 1955650...
python38:3.8 security update
python38 3.8.3-3.0.1 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
nss security and bug fix update
3.53.1-17 - Fix various corner cases with ike v1 app b support. 3.53.1-16 - Fix the following CVE - CVE-2020-12403 chacha-poly issues - CVE-2020-12400 constant time ECC. - CVE-2020-6829 constant time ECC. 3.53.1-15 - Revert some policy changes the generate ABI runtime issues. 3.53.1-14 - Add...
thunderbird security update
78.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.6.0-1 - Update to 78.6.0...
firefox security update
78.2.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.2.0-2 - Update to 78.2.0 build1...
java-11-openjdk security update
1:11.0.8.10-0.0.1 - link atomic for ix86 build 1:11.0.8.10-0 - Update to shenandoah-jdk-11.0.8+10 GA - Switch to GA mode for final release. - Update release notes with last minute fix JDK-8248505. - This tarball is embargoed until 2020-07-14 @ 1pm PT. - Resolves: rhbz1838811 1:11.0.8.9-0.0.ea -...
kernel security and bug fix update
3.10.0-1127.13.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1127.13.1 - x86 x86/speculation: Support old struct x86cpuid & x86matchcpu...
tomcat6 security update
0:6.0.24-115 - Resolves: CVE-2020-9484 tomcat6: tomcat: Apache Tomcat Remote Code Execution via session persistence...
unbound security update
1.6.6-4 - Fix amplifying an incoming query into a large number of queries directed to a target - Resolves: rhbz1839172 CVE-2020-12662, rhbz1840258 CVE-2020-12663...
python-pip security update
9.0.3-16 - Add four new patches for CVEs in bundled urllib3 and requests CVE-2018-20060, CVE-2019-11236, CVE-2019-11324, CVE-2018-18074 Resolves: rhbz1649153 Resolves: rhbz1700824 Resolves: rhbz1702473 Resolves: rhbz1643829...
libxml2 security update
2.9.1-6.0.1.4 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.4 - Fix CVE-2015-8035 1595697 - Fix CVE-2018-14404 1602817 - Fix CVE-2017-15412 1729857 - Fix CVE-2016-5131 1714050 - Fix CVE-2017-18258 1579211 - Fix CVE-2018-1456 1622715...
Unbreakable Enterprise kernel security update
4.1.12-124.36.1 - iscsi-target: graceful disconnect on invalid mapping to iovec Imran Haider Orabug: 30459537 - x86/microcode: Issue update message only once Borislav Petkov Orabug: 30528904 - x86/microcode/intel: Issue the revision updated message only on the BSP Borislav Petkov Orabug: 30528904...
Unbreakable Enterprise kernel security update
4.1.12-124.32.3.2 - x86/tsx: Add config options to set tsx=on|off|auto Michal Hocko Orabug: 30419233 CVE-2019-11135 - x86/speculation/taa: Add documentation for TSX Async Abort Pawan Gupta Orabug: 30419233 CVE-2019-11135 - x86/tsx: Add 'auto' option to the tsx= cmdline parameter Pawan Gupta Orabu...
java-1.8.0-openjdk security update
1:1.8.0.232.b09-0 - Update to aarch64-shenandoah-jdk8u232-b09. - Switch to GA mode for final release. - Remove PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Resolves: rhbz1753423 1:1.8.0.232.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u232-b08. - Resolves: rhbz1753423...
firefox security update
60.9.0-1.0.1 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.9.0-1 - Update to 60.9.0 ESR...