8998 matches found
Unbreakable Enterprise kernel security update
5.4.17-2136.315.5 - Revert 'xfs: Lower CIL flush limit for large logs' Sherry Yang Orabug: 34917369 - Revert 'xfs: Throttle commits on delayed background CIL push' Sherry Yang Orabug: 34917369 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369...
cri-o security update
1.21.7-2 - Addresses CVE-2022-1708 1.21.7-1 - Added Oracle Specifile Files for cri-o...
kernel security, bug fix, and enhancement update
4.18.0-372.16.1.0.16.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
firefox security update
91.11.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.11.0-2 - Update to 91.11.0 build2 91.11.0-1 - Update to 91.11.0 build1...
kernel security and bug fix update
5.14.0-70.17.1.0.10.OL9 - lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 5.14.0-70.17.10.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted...
postgresql security update
9.2.24-8 - Resolves: CVE-2022-1552 - Backport upstrem fix: a117cebd638dd02e5c2e791c25e43745f233111b...
firefox security update
91.9.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.9.1-1 - Update to 91.9.1 build1...
thunderbird security update
91.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.6.0-1 - Update to 91.6.0 build1...
Unbreakable Enterprise kernel security update
4.1.12-124.59.1.2 - fix regression in 'epoll: Keep a reference on files added to the check list' Al Viro Orabug: 33679854 CVE-2021-1048 - fget: check that the fd still exists after getting a ref to it Linus Torvalds Orabug: 33679806 CVE-2021-0920 - fs: add fgetmany and fputmany Jens Axboe Orabug:...
firefox security update
91.4.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.4.0-1 - Update to 91.4.0 build1...
gcc-toolset-11-binutils security update
2.36.1-1.0.1.1 - Forward port Oracle patches from 2.36.1-1.0.1 - Reviewed-by: Jose E. Marchesi 2.36.1-1.1 - Add ability to control the display of unicode characters. 2009172...
httpd:2.4 security update
httpd 2.4.37-39.0.2.1 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690...
thunderbird security update
78.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.11.0-1 - Update to 78.11.0 build1...
ghostscript security, bug fix, and enhancement update
9.27-1 - Rebase to 9.27 - Resolves: rhbz1874523...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.49.0-1 - Update to 1.49.0. 1.48.0-1 - Update to 1.48.0. rust-toolset 1.49.0-1 - Update to Rust and Cargo 1.49.0. 1.48.0-1 - Update to Rust and Cargo 1.48.0...
Unbreakable Enterprise kernel security update
4.1.12-124.49.3.1 - SecureBoot Digicert 2021 certificates update Brian Maly Orabug: 32532671 4.1.12-124.49.3 - xen/netback: avoid race in xenvifrxringslotsavailable Juergen Gross Orabug: 32485156 - audit: fix error handling in auditdatatoentry Paul Moore Orabug: 32608451 CVE-2020-0444...
firefox security update
78.9.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.9.0-1 - Update to 78.9.0 build1...
grub2 security update
2.02-90.0.2.el83.1 - Fix various coverity issues Orabug: 32530657 - Add SBAT metadata to grubx64.efi Orabug: 32530657 - Set proper blsdir if /boot is on btrfs rootfs Orabug: 32063327 - Add CVE-2020-15706, CVE-2020-15707 to the list Orabug: 31225072 - Update signing certificate for efi binaries -...
stunnel security update
5.56-5 - Fix CVE-2021-20230 stunnel: client certificate not correctly verified when redirect and verifyChain options are used...
Unbreakable Enterprise kernel security update
2.6.39-400.330.1 - mwifiex: Fix possible buffer overflows in mwifiexcmd80211adhocstart Zhang Xiaohui Orabug: 32349211 CVE-2020-36158 2.6.39-400.329.1 - Fonts: Support FONTEXTRAWORDS macros for built-in fonts Peilin Ye Orabug: 32176268 CVE-2020-28915 - fbdev, newportcon: Move FONTEXTRAWORDS macros...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
python security update
2.7.5-90.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-90 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Resolves: rhbz1856481...
glibc security, bug fix, and enhancement update
2.28-127.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
docker-cli docker-engine security update
docker-cli 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable...
kernel security and bug fix update
4.18.0-193.1.22.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.1.22 - net netlabel: cope with NULL catmap Paolo Abeni 1827249...
wireshark security and bug fix update
1.10.14-24.0.1 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.10.14-24 - Related: 1613034 - Typo in the previous patch discovered by covscan 1.10.14-23 - Related: 1613034 - Fixing an infinite loop created by previous update 1.10.14-22 - Related: 1633330 - fixing a...
thunderbird security update
68.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.5.0-1 - Update to 68.5.0 build1...
thunderbird security update
68.4.1-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.4.1-2 - Update to 68.4.1 build1...
python-requests security update
2.6.0-5 - Fix CVE-2018-18074 Resolves: rhbz1647368...
java-1.8.0-openjdk security update
1:1.8.0.212.b04-1 - Remove additions to EXTRACFLAGS and EXTRACPPFLAGS which are now made by upstream. - Resolves: rhbz1693468 1:1.8.0.212.b04-1 - Add JDK-8223219 to avoid -fstack-protector overriding -fstack-protector-strong - Resolves: rhbz1693468 1:1.8.0.212.b04-0 - Update to...
firefox security update
60.7.2-3.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.7.2-3.0.1 Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.2-3 - Update to 60.7.2 ESR 60.7.1-1 - Updated to 60.7.1 ESR...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
policycoreutils security, bug fix, and enhancement update
2.5-22.0.1 - Lazy unmount private, shared entry Joe Jin orabug 12560705 2.5-22 - semanage: Fix fcontext help message 1499259 - semanage: Improve semanage-user.8 man page 1079946 - semodule: Improve man page 1337192 2.5-21 - Update translations 2.5-20 - setfiles: Mention customizable types in...
dnsmasq security update
2.76-2.2 - Small correction of CVE-2017-14491 2.76-2.1 - Fix CVE-2017-14491 - Fix CVE-2017-14492 - Fix CVE-2017-14493 - Fix CVE-2017-14494 - Fix CVE-2017-14496 - Fix CVE-2017-14495 - extra fixes...
bind security and bug fix update
32:9.8.2-0.62.rc1.4 - Fix CVE-2017-3142 and CVE-2017-3143 32:9.8.2-0.62.rc1.3 - Update root servers and trust anchors 1458234...
glibc security update
2.17-157.4 - Avoid large allocas in the dynamic linker 1452720 2.17-157.2 - Fix use of uninitialized data in getaddrinfo with nscd 1436312 2.17-157.1 - Do not set initgroups in default nsswitch.conf 1388638 - nssdb: Request larger buffers for long group entries 1388637 - nssdb: Fix getent crash...
quagga security and bug fix update
0.99.15-14 - Resolves: 1416013 - CVE-2017-5495 quagga: Telnet interface input buffer allocates unbounded amounts of memory 0.99.15-13 - fix path of ripd pid file 842308 0.99.15-12 - fix start function in watchqugga initscript 862826, 1208617 0.99.15-11 - fix for CVE-2013-2236 1391918 - fix for...
kernel security update
kernel - 2.6.18-419.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
firefox security update
45.5.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.5.0-1 - Update to 45.5.0 ESR 45.4.0-3 - Added upcoming upstream patches mozbz1018486 45.4.0-2 - Added Laszlo Ersek patch for aarch64 crashes...
tomcat6 security and bug fix update
0:6.0.24-98 - Resolves: rhbz1362210 CVE-2016-5388 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368119 0:6.0.24-97 - Resolves: rhbz1367051 CVE-2015-5174 URL Normalization issue - Resolves: rhbz1367054 CVE-2016-0706 Security Manager bypass via...
nss, nspr, nss-softokn, and nss-util security, bug fix, and enhancement update
nspr 4.11.0-1 - Rebase to NSPR 4.11 nss 3.21.0-9.0.1 - Added nss-vendor.patch to change vendor 3.21.0-9 - Rebuild to require the latest nss-util build and nss-softokn build. 3.21.0-8 - Update the minimum nss-softokn build required at runtime. 3.21.0-7 - Delete duplicates from one table 3.21.0-6 -...
openssh security update
6.6.1p1-23 + 0.9.3-9 - Disable undocumented feauture Roaming for good 1298218 - prevents CVE-2016-0777 and CVE-2016-0778...
samba security update
4.2.3-11 - resolves: 1290710 - CVE-2015-3223 Remote DoS in Samba AD LDAP server - CVE-2015-5299 Missing access control check in shadow copy code - CVE-2015-5252 Insufficient symlink verification in smbd - CVE-2015-5296 Samba client requesting encryption vulnerable to downgrade attack...
openssl security update
0.9.8e-37.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
java-1.6.0-openjdk security update
1:1.6.0.36-1.13.8.1 - Update tarball to fix TCK regression PR2565 - Resolves: rhbz1235153 1:1.6.0.36-1.13.8.0 - Update to IcedTea 1.13.8 - Update nopr2125.patch to work against new version. - Resolves: rhbz1235153...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.6 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308307 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307917 CVE-2015-1593 CVE-2015-1593...
firefox security and bug fix update
31.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 31.4.0-1 - Update to 31.4.0 ESR 31.3.0-9 - Fixed problems with dictionaries mozbz1097550 - Fixed rhbz1164855 - firefox.desktop is missing x-scheme-handler MimeTy...
Unbreakable Enterprise kernel security update
2.6.39-400.215.14 - HID: magicmouse: sanity check report size in rawevent callback Jiri Kosina Orabug: 19849355 CVE-2014-3181 - ALSA: control: Protect user controls against concurrent access Lars-Peter Clausen Orabug: 20192542 CVE-2014-4652 - target/rd: Refactor rdbuilddevicespace +...
kernel security and bug fix update
2.6.32-431.29.2 - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc 1114549 1096351 CVE-2014-3535 2.6.32-431.29.1 - mm hugetlb: ensure hugepage access is denied if hugepages are not supported Gustav...
glibc security update
2.12-1.132.4 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475,...