9184 matches found
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-300.39.5uek - x86/msr: Add capabilities check Alan Cox Orabug: 16481233 CVE-2013-0268 ofa-2.6.32-300.39.5.el6uek mlnxen-2.6.32-300.39.5.el6uek Mon Dec 12 2011 Guru Anbalagane - version 1.5.7-0.1 Tue Nov 01 2011 Joe Jin - 1.5.7 for UEK kernel. Mon Sep 08 2008 Vladimir Sokolovsky ...
sssd security, bug fix and enhancement update
1.9.2-82 - Resolves: rhbz888614 - Failure in memberof can lead to failed database update 1.9.2-81 - Resolves: rhbz903078 - TOCTOU race conditions by copying and removing directory trees 1.9.2-80 - Resolves: rhbz903078 - Out-of-bounds read flaws in autofs and ssh services responders 1.9.2-79 -...
squirrelmail security and bug fix update
1.4.8-21.0.2.el5 - remove Redhat splash screen images from source 1.4.8-21.0.1.el5 - remove Redhat splash screen images - add README instead of README.RedHat 1.4.8-21 - change charset for zhCN and zhTW to utf-8 508686 1.4.8-20 - fix header encoding issue 241861 - fix code producing warnings in th...
postgresql and postgresql84 security update
8.4.12-1 - Update to PostgreSQL 8.4.12, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-12.html including the fixes for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-2 - Add patches for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-1 - Update to...
java-1.6.0-openjdk security update
1:1.6.0.0-1.48.1.11.3 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828751 1:1.6.0.0-1.47.1.11.3 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages...
openssl security and bug fix update
1.0.0-20.5 - fix for CVE-2012-2333 - improper checking for record length in DTLS 820686 - properly initialize tkeylen in the CVE-2012-0884 fix...
xorg-x11-server security and bug fix update
1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure vulnerability. 1.1.1-48.88 - cve-2011-4818.patch: Multiple input sanitization flaws in Render and GLX -...
glibc security update
2.5-65.el57.3 - Use correct type when casting dtag 767687 - Report write error in addmnt even for cached streams 767687 - ldd: Never run file directly 767687. - Workaround misconfigured system 767687 2.5-65.el57.2 - Check values from TZ file header 767687...
openssl security update
1.0.0-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4577 - possible DoS through malformed RFC 3779 data 771778 - fix for CVE-2011-4619 - SGC...
Oracle Linux 5.7 kernel security and bug fix update
2.6.18-274.el5 - xen svm: fix invlpg emulator regression Paolo Bonzini 719894 2.6.18-273.el5 - Revert: fs proc: Fix rmmod/read/write races in /proc entries Jarod Wilson 717068 - xen disregard trailing bytes in an invalid page Paolo Bonzini 717742 - xen prep getinstructionlengthfromlist for partia...
python security, bug fix, and enhancement update
python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...
Unbreakable Enterprise kernel security fix update
A 2.6.32-100.28.17.el6 - net Extend prot-slab size when add sock extend fields. 2.6.32-100.28.16.el6 - kernel: Fix unlimited socket backlog DoS CVE-2010-4251 - RDS: Fix congestion issues for loopback - rds: prevent BUGON triggering on congestion map updates CVE-2011-1023 - epoll: prevent creating...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.15.el6 - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge: netfilter: fix information leak CVE-2011-1080 - Bluetooth: bnep: fix buffer overflow CVE-2011-1079 - net: don't allow CAPNETADMIN to...
thunderbird security update
3.1.10-1.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.10-1 - Update to 3.1.10...
firefox security and bug fix update
firefox: 3.6.14-4.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.14-4 - Update to build3 3.6.14-3 - Update to build2 3.6.14-2 - Update to 3.6.14 xulrunner: 1.9.2.14-3.0.1.el60 - Added xulrunner-oracle-default-prefs.js and removed the corresponding...
firefox security update
firefox: 3.6.13-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js bugz 11762 3.6.13-2 - Update to 3.6.13 build3 3.6.13-1 - Update to 3.6.13 3.6.12-1 - Update to 3.6.12 3.6.11-1 - Update to 3.6.11 xulrunner: 1.9.2.13-3.0.1.el60 - Added...
kernel security and bug fix update
2.6.18-194.26.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
gnutls security update
1.4.1-3.8 - fix safe renegotiation on SSL3 protocol 1.4.1-3.7 - implement safe renegotiation - CVE-2009-3555 533125 - do not allow MD2 in certificate signatures by default - CVE-2009-2409 510197...
firefox security update
firefox: 3.0.18-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.18-1 - Update to 3.0.18 xulrunner: 1.9.0.18-1.0.1.el54...
python security update
2.4.3-24.el53.6 - Fix all of the low priority security bugs: - Resolves: rhbz486351 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...
seamonkey security update
1.0.9-38.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html and removed corresponding ones of Red Hat. 1.0.9-38.el4 - Added mising fix 1.0.9-37.el4 - Added fixes from 1.9.0.7 1.0.9-36.el4 - Fixed build ID...
kernel security and bug fix update
2.6.9-67.0.22.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
kernel security and bug fix update
2.6.18-92.1.6.0.2.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - dio fix error-path crashes Linus Torvalds orabug 6242289 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.6.el5 - x86 sanity...
kernel security and bug fix update
kernel-2.4.21-57.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - ora 5088963: io to nfs partition hangs - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli kernel-2.4.21-57.EL -...
Important: tomcat security update
jakarta-commons-modeler-1.1-8jpp.1.0.2.el5 1.1-8jpp.1.0.2.el5 - rebuild after the fix for bug 238139 made it into the build root - Resolves: bug 238694 1.1-8jpp.1.0.1.el5 - Add patch to fix jira task: MODELER-15 to allow tomcat5 5.5.23 to build against j-c-modeler - Resolves: bug 238694...
Important: php security update
4.3.9-3.22.4 - add security fixes for CVE-2007-1285, CVE-2007-1286, CVE-2007-1583, CVE-2007-1711, CVE-2007-1718 230556 - add security fixes for CVE-2007-0455, CVE-2007-1001 235028...
Unbreakable Enterprise kernel security update
5.4.17-2136.334.6 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre Orabug...
container-tools:4.0 security update
buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman 2:4.0.2-26 - rebuild with golang 1.20.12 for CVE-2023-39326 python-podman runc 1:1.1.12-1.0.1 - rebuild with golang 1.20.12 for CVE-2023-3932...
go-toolset:ol8 security update
delve 1.20.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.20.2-1 - Rebase to 1.20.2 - Resolves: rhbz2186495 golang 1.20.12-1 - Update to Go 1.20.12 - Fix CVE-2023-39326 CVE-2023-45285 go-toolset 1.20.12-1 - Update to Go 1.20.12 - CVE-2023-39326 golang: net/http/internal:...
openssh security update
7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...
java-11-openjdk security update
1:11.0.22.0.7-1.0.1 - link atomic for ix86 build 1:11.0.22.0.7-1 - Update to jdk-11.0.22+7 GA - Update release notes to 11.0.22+7 - Switch to GA mode for release - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-20966 1:11.0.22.0.6-0.1.ea - Update to jdk-11.0.22+6 EA - Updat...
edk2 security update
20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
edk2 security update
20230821 - Create new 20230821 release for OL8 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-7 - Bump release for rebuild Resolves: rhbz2213595 4.7.1-6 - Remove rpath Resolves: rhbz2213837 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055 1.19.4-2 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz187743...
podman security, bug fix, and enhancement update
2:4.6.1-5.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.6.1-5 - update to the latest content of https://github.com/containers/podman/tree/v4.6.1-rhel https://github.com/containers/podman/commit/ea33dce - Related: 2176063 2:4.6.1-4 - amend podmansh provides...
tomcat security update
1:9.0.62-5.2 - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
busybox security and bug fix update
1:1.15.1-21.0.1 - Backport fix for CVE-2022-48174 Orabug: 35819048...
glibc security update
2.28-225.0.4 - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi...
aardvark-dns security update
runc 1:1.1.4-1.0.1 - rootless: fix /sys/fs/cgroup mounts to prevent CVE-2023-25809 - rootfs: prohibit symlinks that conflicts with readonlyPaths and/or maskedPaths to prevent CVE-2023-27561 - Prohibit /proc and /sys to be symlinks to prevent CVE-2023-28642 - JIRA: OLDIS-25589...
curl security update
7.76.1-23 - fix HTTP multi-header compression denial of service CVE-2023-23916 7.76.1-22 - smb/telnet: fix use-after-free when HTTP proxy denies tunnel CVE-2022-43552 7.76.1-21 - fix POST following PUT confusion CVE-2022-32221 7.76.1-20 - control code in cookie denial of service CVE-2022-35252...
systemd security update
250-12.0.2.3 - Backport upstream pstore dmesg fix Orabug: 34868110 - Remove upstream references Orabug: 33995357 - Disable unprivileged BPF by default Orabug: 32870980 - udev rules: fix memory hot add and remove Orabug: 31310273 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 Orabug:...
Unbreakable Enterprise kernel-container security update
5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...
Unbreakable Enterprise kernel security update
5.4.17-2136.315.5 - Revert 'xfs: Lower CIL flush limit for large logs' Sherry Yang Orabug: 34917369 - Revert 'xfs: Throttle commits on delayed background CIL push' Sherry Yang Orabug: 34917369 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
kernel security update
2.6.32-754.35.1.0.7.OL6 - bluetooth: eliminate the potential race condition when removing the HCI controller Lin Ma CVE-2021-32399 Orabug: 33763116 - RDMA/ucma: Put a lock around every call to the rdmacm layer Jason Gunthorpe Orabug: 33763116 - RDMA/cma: Add missing locking to rdmaaccept Leon...
kernel security, bug fix, and enhancement update
4.18.0-372.16.1.0.16.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
olcne security update
olcne 1.5.4-3 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over 1.5.4-2 - Istio CVE-2022-31045, CVE-2022-29225, CVE-2022-29224,CVE-2022-29226,CVE-2022-29228,CVE-2022-29227 1.5.4-1 - Upgrade Kubernetes to 1.23.7 1.5.3-1 - Address qemu...
java-11-openjdk security update
1:11.0.15.0.10-1 - Update to jdk-11.0.15.0+10 - Update release notes to 11.0.15.0+10 - Switch to GA mode for release - Rebase RH1996182 FIPS patch after JDK-8254410 - Resolves: rhbz2073594...
firefox security update
91.9.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.9.1-1 - Update to 91.9.1 build1...
olcne istio istio security update
olcne 1.3.5-1 - Update Istio to 1.12.6prometheus-2.30.1, grafana-7.5.15 istio 1.12.6-1 - Addresses CVE-2022-24726, CVE-2022-24921 istio 1.11.4-1 - Added Oracle specific files for 1.11.4-1...