9182 matches found
libxslt security update
1.1.28-6.0.3 - Fix CVE-2024-55549 issue due to memory leak Orabug: 37795485 - Fix CVE-2025-24855 issue due to use after free...
idm:DL1 security update
bind-dyndb-ldap 11.6-4 - Modify empty zone conflicts under exclusive mode Resolves: rhbz2126877 11.6-3 - Rebuild against bind 9.11.36 - Resolves: rhbz2022762 11.6-2 - Rebuild against bind 9.11.26 - Resolves: rhbz1904612 11.6-1 - New upstream release - Resolves: rhbz1891735 11.3-1 - New upstream...
pki-core:10.6 and pki-deps:10.6 security update
apache-commons-collections apache-commons-lang apache-commons-net bea-stax fasterxml-oss-parent 49-1 - Rebase to upstream version 49 26-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 26-5 - Fix license tag 26-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora27MassRebuild...
libxml2 security update
2.9.13-6 - Fix CVE-2024-25062 RHEL-29196...
tigervnc security update
1.13.1-8.3 - Rebuild z-stream target Resolves: RHEL-30985 Resolves: RHEL-31015 1.13.1-8.2 - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30985 1.13.1-8.1 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents Resolves: RHEL-31015 ...
libtiff security update
4.4.0-12 - Fix CVE-2023-6228 - Resolves: RHEL-10084 4.4.0-11 - Fix CVE-2023-40090 CVE-2023-3618 CVE-2023-40745 CVE-2023-41175 - Resolves: RHEL-5458 RHEL-5455 RHEL-5405 RHEL-5450...
Unbreakable Enterprise kernel security update
4.14.35-2047.534.3.1 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36251145 CVE-2024-1086...
dnsmasq security update
2.85-14.1 - Fix CVE 2023-50387 and CVE 2023-50868 - Resolves: RHEL-25674 - Resolves: RHEL-25638...
kernel security update
5.14.0-362.18.1.el93.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
kernel security update
4.18.0-513.18.0.2.el89 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: schhfsc: upgrade 'rt' to 'sc' when it becomes a inner curve CVE-2023-4623 - x86/sev: Check for user-space IOIO pointing to kernel space CVE-2023-46813 - x86/sev: Check IOBM for IOIO...
kernel security update
5.14.0-362.18.0.2 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: schhfsc: upgrade 'rt' to 'sc' when it becomes a inner curve CVE-2023-4623 - dpll: core: Add DPLL framework base functions CVE-2023-6679 - dpll: spec: Add Netlink spec in YAML CVE-2023-6679 - dpl...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
fence-agents security update
4.10.0-55.2 - python-certifi: Removal of e-Tugra root certificate CVE-2023-37920 - python-urllib3: Cookie request header isn't stripped during cross-origin redirects CVE-2023-43804...
dnsmasq security and bug fix update
2.79-31 - Do not create and search --local and --address=/x/ domains 2233542 2.79-30 - Make create logfile writeable by root 2156789 2.79-29 - Fix also dynamically set resolvers over dbus 2186481 2.79-28 - Correct possible crashes when server=/example.net/ is used 2186481 2.79-27 - Limit offered...
python3.11-pip security update
22.3.1-4 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218247 22.3.1-3 - Fix changelog to contain Fedora contributors Resolves: RHEL-232...
nghttp2 security update
1.33.0-5 - fix HTTP/2 Rapid Reset CVE-2023-44487 1.33.0-4 - prevent DoS caused by overly large SETTINGS frames CVE-2020-11080...
Unbreakable Enterprise kernel security update
4.1.12-124.79.2 - net/sched: clsroute: No longer copy tcfresult on update to avoid use-after-free valis Orabug: 35814273 CVE-2023-4206 - net/sched: schqfq: account for stab overhead in qfqenqueue Pedro Tammela Orabug: 35636291 CVE-2023-3611 - rds: Fix lack of reentrancy for connection reset with...
gcc-toolset-12-binutils security update
2.38-17 - Fix an illegal memory access parsing a corrupt ELF file. 2153220...
mysql security update
8.0.32-1 - Update to MySQL 8.0.32 8.0.31-1 - Update to MySQL 8.0.31...
Unbreakable Enterprise kernel security update
5.4.17-2136.316.7 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001045 5.4.17-2136.316.6 - block: Change the granularity of io ticks from ms to ns Gulam Mohamed Orabug: 34780807 - powercap: intelrapl: support new layout of Psys PowerLimit...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.21.1-2 - Apply upstream fix for CVE-2022-24999 Resolves: CVE-2022-24999 - Record CVEs fixed by current or previous upstream releases Resolves: CVE-2021-44906 1:14.21.1-1 - Rebase to version 14.21.1 Resolves: rhbz2129805 CVE-2022-43548 CVE-2022-3517...
grafana-pcp security update
3.2.0-2 - resolve CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header - resolve CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working - resolve CVE-2022-30631 golang: compress/gzip: stack exhaustion in Reader.Read -...
lua security update
5.4.2-4.3 - Fix up CVE-2022-33099 patch 5.4.2-4.2 - Enable gating 5.4.2-4.1 - apply upstream fix for CVE-2022-33099...
sqlite security update
3.26.0-16 - Fixed CVE-2020-35527 - Fixed CVE-2020-35525...
curl security update
7.61.1-22.el86.4 - fix HTTP compression denial of service CVE-2022-32206 - fix FTP-KRB bad message verification CVE-2022-32208...
olcne security update
olcne 1.4.6-2 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over - Update gen-certs-helper script to skip printing olcnetransferscript execution - Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname...
firefox security update
91.11.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.11.0-2 - Update to 91.11.0 build2 91.11.0-1 - Update to 91.11.0 build1...
kernel security update
3.10.0-1160.66.1.0.2.el7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499...
.NET 6.0 security, bug fix, and enhancement update
6.0.105-1.0.1 - Add missing Oracle RIDs 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime 6.0.5 - Resolves: RHBZ2082267 6.0.104-2 - Update to .NET SDK 6.0.104 and Runtime 6.0.4 - Resolves: RHBZ2074640...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.5.1.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34018777 CVE-2022-1016...
thunderbird security update
91.7.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.7.0-2 - Update to 91.7.0 build2 91.7.0-1 - Update to 91.7.0 build1...
.NET 6.0 security and bugfix update
6.0.102-1.0.1 - Add missing Oracle RIDs 6.0.102-1 - Update to .NET SDK 6.0.102 and Runtime 6.0.2 - Resolves: RHBZ2048257...
java-11-openjdk security update
1:11.0.14.0.9-2 - Fix FIPS issues in native code and with initialisation of java.security.Security - Related: rhbz2039366 1:11.0.14.0.9-1 - Update to jdk-11.0.14.0+9 - Update release notes to 11.0.14.0+9 - Switch to GA mode for final release. - This tarball is embargoed until 2022-01-18 @ 1pm PT....
gegl04 security update
0.4.4-6.2 - spec bump because of build pipeline issues 0.4.4-6.1 - Fix CVE-2021-45463 2035423...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.302.7.2.1 - vfs: fscontext: fix up param length parsing in legacyparseparam Jamie Hill-Daniel Orabug: 33761451 CVE-2022-0185...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.302.6.1 - rds/ib: Use both iova and key in freemr socket call aru kolappan Orabug: 33667276 5.4.17-2136.302.6 - Revert fs: align IOCB flags with RWF flags Prasad Singamsetty Orabug: 33627551 5.4.17-2136.302.5 - Revert drm: Initialize struct drmcrtcstate.novblank from device settings...
samba security update
4.14.5-7 - related: rhbz2021171 - Fix CVE-2020-25717 - Fix running ktest selftest 4.14.5-6 - related: rhbz2021171 - Fix CVE-2020-25717 - Add missing checks for IPA DC server role...
Unbreakable Enterprise kernel security update
5.4.17-2136.301.1.2 - Revert 'net/rds: Allocate pages on HCA NUMA nodeid' Gerd Rausch Orabug: 33561324 - Revert 'net/rds: Allocate rdsibincoming,fragslab on HCA NUMA nodeid' Gerd Rausch Orabug: 33561324 - Revert 'net/rds: Use the same vector for send & receive' Gerd Rausch Orabug: 33561324 - Reve...
rh-postgresql10-postgresql security update
10.17-1 - Update to 10.17 Resolves: CVE-2021-32027 Also fixes: CVE-2021-32028...
linuxptp security update
2.0-5.el84.1 - validate length of forwarded messages CVE-2021-3570...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.500.9.3.el7 - net/rds: Reject error code change Ka-Cheong Poon Orabug: 32577425 - PCI: hotplug: Add module parameter to allow user control of LEDs James Puthukattukaran Orabug: 32577399 - net/rds: increase 1MB MR pool size for RDS Manjunath Patil Orabug: 32577394...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.404.1.2.el7 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280...
thunderbird security update
78.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.7.0-1 - Update to 78.7.0...
firefox security update
78.6.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.6.0-1 - Update to 78.6.0 build1...
gd security update
2.0.35-27 - Fix CVE-2016-5766 - Resolves: 1356813 - Upstream patch: https://github.com/libgd/libgd/commit/aba3db8...
xorg-x11-server security update
1.20.4-15 - CVE fix for: CVE-2020-25712 1904937, CVE-2020-14360 1904934 1.20.4-14 - CVE fix for: CVE-2020-14347 1862319...
thunderbird security update
78.3.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.3.1-1 - Update to 78.3.1 build1 78.3.0-3 - Update to 78.3.0 build1 - Remove librdp.so as long as we cannot ship it in RHEL 78.2.1-1 - Update to 78.2.1 build1...
python security update
2.7.5-89.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-89 - Security fix for CVE-2019-16935 Resolves: rhbz1797998 2.7.5-88 - Security fix for CVE-2019-16056 Resolves: rhbz1750773 2.7.5-87 - Fix CVE-2018-20852 Resolves: rhbz1741551...
firefox security update
68.8.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Wed Apr 29 2020 Jan Horak - Update to 68.8.0 build1 68.7.0-3 - Added fix for rhbz1821418 68.7.0-2 - Update to 68.7.0 build3 68.6.1-1 - Update to 68.6.1 ESR Wed Mar 04 2020 Jan Horak -...
firefox security update
68.4.1-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Wed Jan 08 2020 Jan Horak - Update to 68.4.1esr build1 Fri Jan 03 2020 Jan Horak - Update to 68.4.0esr build1 Wed Dec 18 2019 Jan Horak - Fix for wrong intl.acceptlang when using non...