8998 matches found
olcne security update
olcne 1.4.6-2 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over - Update gen-certs-helper script to skip printing olcnetransferscript execution - Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname...
firefox security update
91.11.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.11.0-2 - Update to 91.11.0 build2 91.11.0-1 - Update to 91.11.0 build1...
389-ds-base security, bug fix, and enhancement update
1.3.10.2-16 - Bump version to 1.3.10.2-16 - Resolves: Bug 2077395 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS - Resolves: Bug 2014768 - Log the Auto Member invalid regex rules in the LDAP errors log - Resolves: Bug 2018153 - RFE - Provide an option to abort...
kernel security update
3.10.0-1160.66.1.0.2.el7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499...
olcne security update
1.5.3-1 - Address qemu CVE-2022-26353, CVE-2021-3748...
Unbreakable Enterprise kernel security update
4.14.35-2047.514.3 - uek-rpm: Update OL7 SecureBoot certificate files Saeed Mirzamohammadi Orabug: 34219958 4.14.35-2047.514.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043 CVE-2022-21499...
firefox security update
91.10.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.10.0-1 - Update to 91.10.0 build1...
Unbreakable Enterprise kernel security update
4.14.35-2047.513.2.2 - debug: Lock down kgdb Stephen Brennan Orabug: 34152700 CVE-2022-21499...
.NET 6.0 security, bug fix, and enhancement update
6.0.105-1.0.1 - Add missing Oracle RIDs 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime 6.0.5 - Resolves: RHBZ2082267 6.0.104-2 - Update to .NET SDK 6.0.104 and Runtime 6.0.4 - Resolves: RHBZ2074640...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.5.1.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34018777 CVE-2022-1016...
openssl security update
1:1.0.2k-25 - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates - Related: rhbz2067160...
thunderbird security update
91.7.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.7.0-2 - Update to 91.7.0 build2 91.7.0-1 - Update to 91.7.0 build1...
.NET 6.0 security and bugfix update
6.0.102-1.0.1 - Add missing Oracle RIDs 6.0.102-1 - Update to .NET SDK 6.0.102 and Runtime 6.0.2 - Resolves: RHBZ2048257...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.302.7.2.1 - vfs: fscontext: fix up param length parsing in legacyparseparam Jamie Hill-Daniel Orabug: 33761451 CVE-2022-0185...
ipa security and bug fix update
4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.10 - Resolves: 2025848 - RHEL 8.6 IPA Replica Failed to configure PKINIT setup against a RHEL 7.9 IPA server - Fix certrequest for KDC cert - Resolves: 2021444 - CVE-2020-25719...
gcc security and bug fix update
8.5.0-3.0.2 - Fix Orabug 33451471 and backport CTF/BTF enhancements ctfc: Free CTF container elements in ctfcdeletecontainer ctf: Do not warn for CTF not supported for GNU GIMPLE ICE in btffinalize when compiling with -gbtf PR debug/102507, Orabug 33451471 Reviewed-by: Jose E. Marchesi 8.5.0-3.0....
Unbreakable Enterprise kernel security update
4.1.12-124.57.1 - target; fix print statement warning John Donnelly Orabug: 33495661 - enic;: fix warning on moduleparam disablevlan0, John Donnelly Orabug: 33495661 - bnx2fc: correct BNX2FCTMTIMEOUT to be 60 sec John Donnelly Orabug: 33495661 - target: Fix linux-4.1.y specific compile warning...
rh-postgresql10-postgresql security update
10.17-1 - Update to 10.17 Resolves: CVE-2021-32027 Also fixes: CVE-2021-32028...
cpio security update
2.12-10 - Fixed improper input validation when writing tar header fields 1766223 2.12-9 - Extract: retain times for symlinks 1487673...
openssl security update
1.1.1g-15 - version bump 1.1.1g-14 - CVE-2021-3450 openssl: CA certificate check bypass with X509VFLAGX509STRICT 1.1.1g-13 - Fix CVE-2021-3449 NULL pointer deref in signaturealgorithms processing...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.404.1.2.el7 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
resource-agents security update
4.1.1-68 - azure-lb: fix redirect issue Resolves: rhbz1850778 4.1.1-67 - gcp-vpc-move-vip: add support for multiple alias IPs Resolves: rhbz1846733 4.1.1-65 - azure-events: handle exceptions in urlopen Resolves: rhbz1845574 4.1.1-64 - nfsserver: fix NFSv4-only support - azure-events: new resource...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
freetype security update
2.9.1-4.el83.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891905...
grafana security, bug fix, and enhancement update
6.7.4-3 - apply patch for CVE-2020-13430 also to sources, not only to compiled webpack 6.7.4-2 - security fix for CVE-2020-13430 6.7.4-1 - update to 6.7.4 tagged upstream community sources, see CHANGELOG - security fix for CVE-2020-13379 6.7.3-1 - update to 6.7.3 tagged upstream community sources...
gnupg2 security, bug fix, and enhancement update
2.2.20-2 - fixes for issues found in Coverity scan 2.2.20-1 - upgrade to 2.2.20...
firefox security update
68.11.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.11.0-1 - Update to 68.11.0 build1...
unbound security update
1.4.20-29.1 - Fix segfault in unbound-1.4.20-amplifying-an-incoming-query.patch - Resolves: rhbz1839171 CVE-2020-12662, rhbz1840257 CVE-2020-12663 1.4.20-28.1 - Fix unbound-1.4.20-amplifying-an-incoming-query.patch patch so it won't produce compiler warnings - Resolves: rhbz1839171 CVE-2020-12662...
firefox security update
68.6.1-1.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.6.1-1 - Update to 68.6.1 ESR...
ppp security update
2.4.5-11 - Fixed buffer overflow in the eaprequest and eapresponse functions Resolves: CVE-2020-8597...
kernel security and bug fix update
3.10.0-1062.7.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.7.1 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave Airlie...
docker-engine security update
17.06.2.ol-1.0.7 - update for CVE-2018-20699...
sssd and ding-libs security and bug fix update
ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...
xmlrpc security update
1:3.1.3-9 - Disallow deserialization of tags by default - Resolves: CVE-2016-5003...
qemu-kvm security update
0.12.1.2-2.503.el69.5 - kvm-cirrus-fix-oob-access-in-mode4and5-write-functions.patch bz1501296 - Resolves: bz1501296 CVE-2017-15289 qemu-kvm: Qemu: cirrus: OOB access issue in mode4and5 write functions rhel-6.9.z...
samba security update
3.6.23-45.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-45 - resolves: 1491210 - CVE-2017-2619 CVE-2017-12150 CVE-2017-12163...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.7 - mm: fix new crash in unmappedareatopdown Hugh Dickins Orabug: 26326143 CVE-2017-1000364 - mm: larger stack guard gap, between vmas Hugh Dickins Orabug: 26326143 CVE-2017-1000364...
libguestfs and virt-p2v security, bug fix, and enhancement update
libguestfs 1:1.32.7-3 - Rebase to libguestfs 1.32 in RHEL 7.3 resolves: rhbz1218766 - The full tests are now run after the package has been built. - New tool and subpackage: virt-dib safe diskimage-builder replacement. - New subpackage libguestfs-inspect-icons to reduce dependencies of main pkg s...
java-1.7.0-openjdk security update
1:1.7.0.111-2.6.7.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.111-2.6.7.1 - Bump to jdk7u111 b01 to fix TCK regressions 7081817 & 8162344 - Resolves: rhbz1350038 1:1.7.0.111-2.6.7.0 - Bump to 2.6.7 and u111b00. - Update SystemTap bundle with fix for...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.5.1 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23520741 - ocfs2: bump up o2cb network protocol version Junxiao Bi Orabug: 23515810 - IB/security: Restrict use of the write interface Jason Gunthorpe Orabug: 23283954 CVE-2016-4565...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.5.2 - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145600 CVE-2015-5156 3.8.13-98.5.1 - netdev: fix NETIFFGSOUDPTUNNELBIT enum shift in i40e driver import Todd Vierling Orabug: 22066176...
httpd security update
2.2.15-47.0.1 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-47 - fix regressions caused by fix for CVE-2015-3183 2.2.15-46 - core: fix chunk header parsing defect CVE-2015-3183...
krb5 security update
1.10.3-37 - fix for CVE-2014-5355 1193939 'krb5: unauthenticated denial of service in recvauthcommon and others' 1.10.3-36 - fix for CVE-2014-5353 1174543 'Fix LDAP misused policy name crash' 1.10.3-35 - Changelog fixes to make errata subsystem happy. 1.10.3-34 - fix for CVE-2014-5352 1179856...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.13uek - net: guard tcpsetkeepalive to tcp sockets Eric Dumazet Orabug: 20224099 CVE-2012-6657 - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224061 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski...
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
nss 3.16.2.3-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2.3-2 - Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 3.16.2.3-1 - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3...
Unbreakable Enterprise kernel Security update
kernel-uek 3.8.13-44.1.4.el7uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849334 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849317 CVE-2014-3181 - kvm: vmx: handle invvpid vm exit gracefully Petr Matousek Orabug: 19906300...
bash security update
3.0-27.0.3 - Rework env function definition for safety Florian Weimer CVE-2014-7169...
bash security update
4.1.2-15.1.0.1 - Preliminary fix for CVE-2014-7169...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-35.1.1.el6uek - futex: Make lookuppistate more robust Thomas Gleixner Orabug: 18918552 CVE-2014-3153 - futex: Always cleanup owner tid in unlockpi Thomas Gleixner Orabug: 18918552 CVE-2014-3153 - futex: Validate atomic acquisition in futexlockpiatomic Thomas Gleixner Orabug:...