8998 matches found
java-11-openjdk security update
1:11.0.22.0.7-1.0.1 - link atomic for ix86 build 1:11.0.22.0.7-1 - Update to jdk-11.0.22+7 GA - Update release notes to 11.0.22+7 - Switch to GA mode for release - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-20966 1:11.0.22.0.6-0.1.ea - Update to jdk-11.0.22+6 EA - Updat...
tomcat security update
1:9.0.62-5.2 - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
qemu security update
15:4.2.1-28.el7 - virtio-crypto: verify src&dst buffer length for sym request Zhenwei Pi Orabug: 35724113 CVE-2023-3180 - hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller CVE-2023-0330 Thomas Huth Orabug: 35724112 CVE-2023-0330 - kvm: Atomic memslot updates David Hildenbrand Orabug...
open-vm-tools security update
12.1.5-2.0.2.3 - Resolves: RHEL-4584 CVE-2023-20900 open-vm-tools: SAML token signature bypass...
curl security update
7.76.1-23.el92.2 - unify the upload/method handling CVE-2023-28322 - fix host name wildcard checking CVE-2023-28321...
libtar security update
1.2.20-17 - fix use-after-free bugs introduced by incorrect memleak fixes CVE-2021-33640 1.2.20-16 - fix memory leaks through gnulongname,link CVE-2021-33645 CVE-2021-33646 - fix out-of-bounds read in gnulongname,link CVE-2021-33643 CVE-2021-33644...
python3-setuptools security update
39.2.0-10.0.1 - Back port fix for CVE-2022-40897 Orabug: 35034581...
python-mako security update
1.1.4-6 - Fix CVE-2022-40023 2133606...
libtpms security update
0.9.1-3.20211126git1ff6fe1f43 - Backport 'tpm2: Check size of buffer before accessing it' CVE-2023-1017 & CVE-2023-1018 Resolves: rhbz2173960 Resolves: rhbz2173967...
bind security and bug fix update
32:9.16.23-11 - Correct backport issue in statistics rendering fix 2126912 32:9.16.23-10 - Handle subtle difference between upstream and rhel CVE-2022-3094 32:9.16.23-9 - Prevent flooding with UPDATE requests CVE-2022-3094 - Handle RRSIG queries when server-stale is active CVE-2022-3736 - Fix cra...
curl security update
7.76.1-23 - fix HTTP multi-header compression denial of service CVE-2023-23916 7.76.1-22 - smb/telnet: fix use-after-free when HTTP proxy denies tunnel CVE-2022-43552 7.76.1-21 - fix POST following PUT confusion CVE-2022-32221 7.76.1-20 - control code in cookie denial of service CVE-2022-35252...
Unbreakable Enterprise kernel security update
4.1.12-124.73.2 - netfilter: nftables: fix null deref due to zeroed list head Florian Westphal Orabug: 35181628 CVE-2023-1095 - sctp: fail if no bound addresses can be used for a given scope Marcelo Ricardo Leitner Orabug: 35181461 CVE-2023-1074 - HID: check empty reportlist in hidvalidatevalues...
Unbreakable Enterprise kernel security update
5.15.0-8.91.4.1 - uek-rpm: Add opbmc to core rpm Somasundaram Krishnasamy Orabug: 35157130 5.15.0-8.91.4 - selftests/vm: remove ARRAYSIZE define from individual tests Shuah Khan Orabug: 35088471 - selftests: Provide local define of cpuidcount Reinette Chatre Orabug: 35088471 - tools: fix ARRAYSIZ...
openssl security update
3.0.1-47.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-47 - Fixed X.509 Name Constraints Read Buffer Overflow Resolves: CVE-2022-4203 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
rsync security and enhancement update
3.1.3-19 - Resolves: 2116668 - zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field 3.1.3-18 - Resolves: 2111175 - remote arbitrary files write inside the directories of connecting peers 3.1.3-17 - Related: 2043753 - New option should...
expat security update
2.2.10-12.3 - Ensure raw tagnames are safe exiting internalEntityParser - Resolves: CVE-2022-40674...
kernel security, bug fix, and enhancement update
5.14.0-70.26.1.0.10.OL9 - lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 5.14.0-70.26.10.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted...
ruby:2.7 security, bug fix, and enhancement update
ruby 2.7.6-138 - Upgrade to Ruby 2.7.6. Resolves: rhbz2109424 - Fix FTBFS due to an incompatible load directive. Related: rhbz2109424 - Fix a fiddle import test on an optimized glibc on Power 9. Related: rhbz2109424 - Fix regular Expression Denial of Service Vulnerability of Date Parsing Methods...
Unbreakable Enterprise kernel security update
4.1.12-124.65.1 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33825689 CVE-2022-0492 - ocfs2: kill EBUSY from dlmfsevictinode Junxiao Bi Orabug: 34091904 - ocfs2: dlmfs: fix error handling of userdlmdestroylock Junxiao Bi via Ocfs2-devel Orabug: 34091904 - ocfs2:...
grub2 security update
2.02-123.0.7.el86.8 - Enable back btrfs module by default Orabug: 34377188 2.02-123.0.6.el86.8 - Backport upstream SNP protocol fixes Orabug: 34195100 2.02-123.0.5.el86.8 - Rebase Fix EFI loader kernel image allocation patch, adapt it to new NX code Orabug: 34352232 2.02-123.0.4.el86.8 - enable...
olcne security update
1.5.3-1 - Address qemu CVE-2022-26353, CVE-2021-3748...
go-toolset:ol8addon security update
go-toolset 1.16.15-1 - Rebase to Go 1.16.15 golang 1.16.15-1.0.1 - Add patches from 1.16.12 to 1.16.15 - Add Sources for 3 binary files that changed between 1.16.12 and 1.16.15 - Rename basevrsn to baseversion - Reviewed-by: XXX XXX...
go-toolset:ol8addon security update
go-toolset 1.17.10-1 - Set version to correspond to the matching build golang version - delve can be now added to aarch64 as well, remove ifarch. golang 1.17.10-1.0.1 - Add patches between Go 1.17.7 and Go 1.17.10 - Rename baseversn to baseversion - Remove unneeded patches from previous version -...
udisks2 security and bug fix update
2.9.0-9 - Fix LVM-VDO statistics tests 2023880,2025483 - Fix GError ownership 1999149 2.9.0-8 - CVE-2021-3802: Harden the default mount options for ext filesystems 2004422...
thunderbird security update
91.7.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.7.0-2 - Update to 91.7.0 build2 91.7.0-1 - Update to 91.7.0 build1...
firefox security update
91.7.0-3.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.7.0-3 - Update to 91.7.0 build3 91.7.0-2 - Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315 91.7.0-1 - Update to 91.7.0 build2 91.6.0-2 - Install...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.6.el7 - lib/ioviter: initialize 'flags' in new pipebuffer Max Kellermann Orabug: 33942242 CVE-2022-0847...
rust-toolset:ol8 security update
rust 1.54.0-3 - Lint against Unicode control codepoints. rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0...
Unbreakable Enterprise kernel security update
4.1.12-124.56.1 - ocfs2: subsystem.sumutex is required while accessing the item-ciparent alex chen Orabug: 29184589 CVE-2017-18216 - bcache: fix potential deadlock problem in btreegccoalesce Zhiqiang Liu CVE-2020-12771 - filldir64: remove WARNONONCE for bad directory entries Linus Torvalds Orabug...
Unbreakable Enterprise kernel security update
4.14.35-2047.507.7.6 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33406810 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33406819 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33406814 - net/mlx5: Ra...
linuxptp security update
2.0-2.el79.1 - validate length of forwarded messages CVE-2021-3570...
postgresql:9.6 security update
9.6.22-1 - Rebase to 9.6.22 Resolves: 1964516 Fix: CVE-2021-32027, CVE-2021-32028...
go-toolset:ol8 security, bug fix, and enhancement update
delve 1.5.0-2.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.5.0-2 - Add golang-1.15.4 related patch - Resolves: rhbz1901189 1.5.0-1 - Rebase to 1.5.0 - Related: rhbz1870531 golang 1.15.7-1 - Rebase to 1.15.7 - Resolves: rhbz1870531 - Resolves: rhbz1919261 1.15.5-1 - Rebase to...
python27:2.7 security update
python2 2.7.17-2.0.2 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
Unbreakable Enterprise kernel security update
4.14.35-2047.501.2 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
grub2 security update
2.02-90.0.2 - Fix CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 Orabug: 32530657 - Fix various coverity issues Orabug: 32530657 - Disable os-prober by default Orabug: 32530657 - Add SBAT metadata to grubx64.efi Orabug: 32530657...
firefox security update
78.8.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.8.0-1 - Update to 78.8.0 build2 78.7.1-1 - Update to 78.7.1 78.7.0-3 - Fixing install prefix for the homepage...
ImageMagick security update
6.9.10.68-5 - Adding CTV-2020-29599 fix...
firefox security update
78.4.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Tue Nov 10 2020 [email protected] - 78.4.1-1 - Update to 78.4.1 - Filtering nss/nspr libs 78.4.0-3 -...
librepo security update
1.8.1-8 - Validate paths read from repomd.xml RhBug: 1866500...
expat security update
2.2.5-4 - add security fixes for CVE-2018-20843, CVE-2019-15903...
java-11-openjdk security update
1:11.0.9.11-0.0.1 - link atomic for ix86 build 1:11.0.9.11-0 - Delay tzdata 2020b dependency until tzdata update has shipped. - Resolves: rhbz1876665 1:11.0.9.11-0 - Update to jdk-11.0.9+11 - Update release notes for 11.0.9 release. - Add backport of JDK-8254177 to update to tzdata 2020b - Requir...
postgresql-jdbc security update
9.2.1002-8 - require explicitly jdk-1.7 due to ABI bytecode compatibility 9.2.1002-7 - fixed XXE vulnerability CVE-2020-13692...
firefox security update
68.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Thu Jul 23 2020 Jan Horak - Update to 68.11.0 build1...
nodejs:12 security update
nodejs 12.18.2-1 - Rebase to 12.18.2 1:12.18.1-1 - Rebase - Spec clean up - Provide i18n package, bundle icu - Resolves: RHBZ1845310, RHBZ1845691 1:12.18.0-1 - Security update to 12.18.0 - Resolves: RHBZ1845310, RHBZ1845691 1:12.16.1-2 - Fix CVE-2020-10531 1:12.16.1-1 - Resolves: RHBZ1800395,...
freerdp security update
1.0.2-7 - CVE-2020-13398: Fix out-of-bounds write in crypto.c 1841980...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.40.1 - USB: check usbgetextradescriptor for proper size Mathias Payer Orabug: 30045797 CVE-2018-20169 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 30393902 CVE-2017-14991 - usb: misc: legousbtower: Fix NULL pointer deference Greg...
kernel security update
2.6.32-754.24.3.OL6 - Update genkey bug 25599697 2.6.32-754.24.3 - drm drm/i915/cmdparser: Fix jump whitelist clearing Denys Vlasenko 1756891 CVE-2019-0155...
dovecot security update
1:2.2.36-5.1 - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes 1741788...