9182 matches found
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL9 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
virt:ol and virt-devel:rhel security and enhancement update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...
webkit2gtk3 security update
2.42.5-1 - Update to 2.42.5 Resolves: RHEL-3961 2.42.4-1 - Update to 2.42.4 Resolves: RHEL-3961 Resolves: RHEL-19365 2.42.3-1 - Update to 2.42.3 Resolves: RHEL-3961 2.42.2-1 - Update to 2.42.2 Resolves: RHEL-3961 2.42.1-1 - Update to 2.42.1 Resolves: RHEL-3961 2.42.0-1 - Upgrade to 2.42.0 Resolve...
libreoffice security fix update
1:5.3.6.1-26.0.1 - adjust color palette to match Redwood style. - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.3.6.1-26 - Fix CVE-2022-38745 Empty entry in Java class path - Fix CVE-2023-09...
podman security and bug fix update
4.9.4-3.0.1 - Add devices on container startup, not on creation - Backport fast gzip for compression Orabug: 36420418 - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 4:4.9.4-3 - rebuild - Related:...
skopeo security update
2:1.13.3-4 - Rebuild with golang 1.20.12: golang:net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326...
mysql:8.0 security update
mecab mecab-ipadic mysql 8.0.36-1 - Update to MySQL 8.0.36 8.0.35-2 - Fix int-conversion type error in memcached 8.0.35-1 - Update to MySQL 8.0.35 - Remove patches now upstream 8.0.34-1 - Update to MySQL 8.0.34 - Add patch from upstream bug110569 - Add patch to fix binlog format issue - Use...
gimp security update
2:2.99.8-4 - fix CVE-2023-44441 - fix CVE-2023-44442 - fix CVE-2023-44443 - fix CVE-2023-44444...
python3 security update
3.6.8-56.0.1.2 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-56.2 - Security fix for CVE-2022-48560 Resolves: rhbz2249755 - Security fix for CVE-2022-48564 Resolves: rhbz2249750...
samba security, bug fix, and enhancement update
evolution-mapi 3.40.1-6 - Related: 2190415 Rebuild against samba 4.18 openchange 2.3-41 - Related: 2190415 Rebuild against samba 4.18 samba 4.18.6-100 - related: rhbz2190415 - Update to version 4.18.6 - resolves: rhbz2211617 - Fix the rpcclient dfsgetinfo command 4.18.5-100 - resolves: rhbz222289...
varnish security update
6.6.2-3.el92.1 - Add parameters h2rstallowance and h2rstallowanceperiod to mitigate CVE-2023-44487 - Resolves: RHEL-12818...
tomcat security update
1:9.0.62-11.3 - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
grafana security update
7.5.15-5 - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work...
java-11-openjdk security and bug fix update
1:11.0.21.0.9-1.0.1 - link atomic for ix86 build 1:11.0.21.0.9-1 - Update to jdk-11.0.21+9 GA - Update release notes to 11.0.21+9 - Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies - Update generatetarball.sh to be closer to upstream vanilla script inc. no...
dotnet6.0 security update
6.0.123-1.0.1 - Update to .NET SDK 6.0.123 and Runtime 6.0.23 - Resolves: RHEL-11696...
bind security update
32:9.11.4-26.P2.15 - Limit the amount of recursion possible in control channel CVE-2023-3341...
.NET 6.0 security, bug fix, and enhancement update
6.0.121-1.0.1 - Update to .NET SDK 6.0.121 and Runtime 6.0.21 - Resolves: RHBZ2228567...
iperf3 security update
3.5-7 - Fixes CVE-2023-38403 Resolves: rhbz2223729...
linux-firmware security update
20230516-999.22.git6c9e0ed5.el7 - remove amd-ucode/README Orabug: 35645306 - Resolves 'Zenbleed' Orabug: 35650345 CVE-2023-20593...
.NET 7.0 security, bug fix, and enhancement update
7.0.107-1.0.1 - Set TargetRid based on os release major version, add OL arm64 RuntimeIdentifier Orabug: 34671152 7.0.107-1 - Update to .NET SDK 7.0.107 and Runtime 7.0.7 - Resolves: RHBZ2211877 7.0.106-1 - Update to .NET SDK 7.0.106 and Runtime 7.0.6 - Resolves: RHBZ2190269...
container-tools:4.0 security and bug fix update
...
containernetworking-plugins security and bug fix update
1:1.2.0-1 - update to https://github.com/containernetworking/plugins/releases/tag/v1.2.0 - Related: 2124478...
vim security update
8.2.2637-20.0.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-20 - CVE-2022-47024 vim: no check if the return value of XChangeGC is NULL 2:8.2.2637-19 - CVE-2022-1785 vim: Out-of-bounds Write - CVE-2022-1897 vim: out-of-bounds write in vimregsubboth in regexp.c - CVE-2022-1927 vim:...
php:8.0 security update
php 8.0.27-1 - rebase to 8.0.27...
grub2 security update
2.02-142.0.3.el87.1 - Fix CVE-2022-3775, CVE-2022-2601 Orabug: 34867710 - Bump SBAT metadata for grub to 3 Orabug: 34871758 - Enable signing on aarch64 - Don't try to switch to a BLS config if GRUBENABLEBLSCFG is already set Javier Martinez Canillas Orabug: 34375996 - Enable back btrfs module by...
Unbreakable Enterprise kernel security update
4.14.35-2047.521.4 - tcp: Tunables for TCP delayed ack min and max timers Venkat Venkatsubra Orabug: 34883100 4.14.35-2047.521.3 - Revert 'random: use expired timer rather than wq for mixing fast pool' Saeed Mirzamohammadi Orabug: 34918228 4.14.35-2047.521.2 - RDS/IB: Fix the misplaced counter...
Unbreakable Enterprise kernel security update
5.4.17-2136.314.6.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883034 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883034 CVE-2022-4378 5.4.17-2136.314.6.1 - RDMA/uverbs: Move IBEVENTDEVICEFATAL to...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
virt:ol and virt-devel:ol security, bug fix, and enhancement update
libguestfs 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix CVE-2022-2211 Denial of Service in --key parameter resolves: rhbz2101280 1:1.44.0-8 - Obsolete ol...
expat security update
2.2.5-8.0.1.3 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-8.3 - Ensure raw tagnames are safe exiting internalEntityParser - Resolves: CVE-2022-40674...
mysql security, bug fix, and enhancement update
8.0.30-3 - Release bump for rebuild 8.0.30-1 - Update to MySQL 8.0.30 - Remove patches now upstream: chain certs, OpenSSL 3, s390 and robin hood - Add a new plugin 8.0.29-1 - Update to MySQL 8.0.29...
rsync security update
3.1.2-11 - Resolves: 2111170 - remote arbitrary files write inside the directories of connecting peers...
java-11-openjdk security, bug fix, and enhancement update
1:11.0.16.0.8-1.0.1 - Replace upstream references Orabug: 34340155 1:11.0.16.0.8-1 - Update to jdk-11.0.16+8 - Update release notes to 11.0.16+8 - Use same tarball naming style as java-17-openjdk and java-latest-openjdk - Drop JDK-8257794 patch now upstreamed - Print release file during build,...
Unbreakable Enterprise kernel-container security update
5.15.0-0.30.20.1 - lockdown: Fix kexec lockdown bypass with ima policy Eric Snowberg Orabug: 34386636 CVE-2022-21505...
zlib security update
1.2.3-29.0.1 - Fix a bug that can crash deflate when using ZFIXED CVE-2018-25032Orabug: 34161396...
compat-openssl11 security and bug fix update
1:1.1.1k-4.0.1 - Backport upstream PRs 18446 and 18481 which update certificates used for the self-tests Orabug: 34326055 1:1.1.1k-4 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates Resolves: rhbz2063147 - Disable FIPS mode; it does not work and will n...
microcode_ctl security update
2:2.1-73.13.0.5 - ensure UEK also rebuilds initramfs Orabug: 34280052 2:2.1-73.13.0.3 - update 06-55-04 to 0x2006d05 - update 06-55-07 to 0x5003302 - update 06-6a-04 to 0xb000280 - update 06-6a-06 to 0xd000375 2:2.1-73.13.0.2 - roll back 06-6a-06 to 0xd0002a0 due to PCIe issues on reset Orabug:...
xz security update
5.2.4-4 - Fix arbitrary file write vulnerability Resolves: CVE-2022-1271...
Unbreakable Enterprise kernel security update
5.4.17-2136.307.3.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34172709 CVE-2022-1729...
vim security update
8.0.1763-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-16.13 - CVE-2022-1154 vim: use after free in utfptr2char...
ruby:2.5 security update
ruby 2.5.9-109 - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 2.5.9-108 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799 - Fix StartTLS stripping vulnerability in Net::IMAP Resolves: CVE-2021-32066 - Fix FTP PASV command response can cause...
python-pillow security update
2.0.0-23gitd1c6db8 - Fixup for CVE-2022-22817 - Security fixes for CVE-2022-22815, CVE-2022-22816 Resolves: rhbz2042522 2.0.0-22gitd1c6db8 - Fix for CVE-2022-22817 Resolves: rhbz2042527...
libreswan security update
4.4-4.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.4-4 - Resolves: rhbz2036902 rebuild to enable rpminspect 4.4-3 - Resolves: rhbz2036902: fix patch application 4.4-2 - Resolves: rhbz2036902 ikev1: disable diagnostics logging on receiving malformed packets...
openssl security update
1:1.1.1k-5 - CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings - Resolves: rhbz2005400...
nss security update
3.44.0-7.0.2 - Fix CVE-2021-43527 Orabug: 33627334...
glib2 security and bug fix update
2.56.4-15 - Fix test failure introduced in previous update - Related: 1971533 2.56.4-14 - Refresh GHmac patchset - Resolves: 1971533 2.56.4-13 - Rename and consolidate existing patches for better maintainability - Refresh CVE-2021-27219 patcheset, using better-targeted fixes Resolves: 1939108...
binutils security update
2.30-108.0.2 - Forward-port the following update: 2.30-93.0.4 - Backport fix for fencepost bug in CTF pptrtab usage causing coredumps - Backport test result fixes for new GCC-based CTF generation Orabug: 33344570 - Reviewed-by: David Faust - Reviewed-by: Jose E. Marchesi 2.30-108.0.1 - Forward-po...
sqlite security update
3.26.0-15 - Removing fix for CVE-2019-19645 unaffected - Removing fix for CVE-2019-19880 unaffected 3.26.0-14 - Fixed CVE-2019-5827 1710184 - Fixed CVE-2019-13750 1786510 - Fixed CVE-2019-13751 1786522 - Fixed CVE-2019-19603 1792013 - Fixed CVE-2020-13435 1841233...
python38:3.8 and python38-devel:3.8 security update
...
krb5 security update
1.18.2-8.3 - Fix KDC null deref on TGS inner body null server CVE-2021-37750 - Resolves: 1997600 1.18.2-8.2 - Rebuild for rpminspect; no code changes - Resolves: 1983728 1.18.2-8.1 - Fix KDC null deref on bad encrypted challenge CVE-2021-36222 - Resolves: 1983728...