9182 matches found
kernel security, bug fix, and enhancement update
5.14.0-162.22.21.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
curl security update
7.61.1-25.el87.3 - fix HTTP multi-header compression denial of service CVE-2023-23916...
git security update
1.8.3.1-24 - Fixes CVE-2022-23521 and CVE-2022-41903 - Resolves: 2162067...
Unbreakable Enterprise kernel security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
go-toolset and golang security and bug fix update
golang 1.18.9-1 - Rebase to Go 1.18.9 - Enable big endian support for fips mode - Fix ppc64le linker issue - Resolves: rhbz2144547 - Resolves: rhbz2149311 go-toolset 1.18.9-1 - Rebase to Go 1.18.9 - Enable big endian support for fips mode - Fix ppc64le linker issue - Resolves: rhbz2144547 -...
java-11-openjdk security and bug fix update
11.0.18.0.10-2.0.1 - Replace upstream references Orabug: 34340155 1:11.0.18.0.10-2 - Update to jdk-11.0.18+10 GA - Update release notes to 11.0.18+10 - Switch to GA mode for release - This tarball is embargoed until 2023-01-17 @ 1pm PT. - Related: rhbz2157798 1:11.0.18.0.9-0.2.ea - Update to...
Unbreakable Enterprise kernel security update
5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-2 - Update version of bundled histogram 1:18.12.1-1 - Rebase to version 18.12.1 Resolves: rhbz2125580 CVE-2022-43548 CVE-2022-3517 1:18.9.1-1 - Rebase to version 18.9.1 Resolves: CVE-2022-35255 CVE-2022-35256 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
nodejs:14 security update
nodejs 1:14.20.1-2 - Record issues fixed in the current version Resolves: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 Resolves: CVE-2022-0235 1:14.20.1-1 - Rebase to version 14.20.1 Resolves: CVE-2022-35256 nodejs-packaging 23-3 - Updated - Removed pathfix.py 23-2 - Rebuilt for...
Unbreakable Enterprise kernel security update
5.4.17-2136.313.6 - Uninitialized variable imageext in fixupvdsoexception of extable.c Alok Tiwari Orabug: 33000550 - NFSD: fix use-after-free on source server when doing inter-server copy Dai Ngo Orabug: 34475857 - EDAC/mceamd: Do not load edacmceamd module on guests Smita Koralahalli Orabug:...
expat security update
2.0.1-13.0.2 - Ensure raw tagnames are safe exiting internalEntityParser CVE-2022-40674Orabug: 34694174...
mysql:8.0 security, bug fix, and enhancement update
mecab 0.996-2 - Rebuild to fix the issue described in 2000986 - Resolves: 2000986 mysql 8.0.30-1 - Update to MySQL 8.0.30 - Remove patches now upstream: chain certs, s390 and robin hood - Add a new plugin 'conflictingvariables.so' 8.0.29-1 - Update to MySQL 8.0.29 8.0.28-1 - Update to MySQL 8.0.2...
java-17-openjdk security and bug fix update
1:17.0.5.0.8-2 - Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173 - Update CLDR data with Europe/Kyiv JDK-8293834 - Drop JDK-8292223 patch which we found to be unnecessary - Update TestTranslations.java to use public API based on TimeZoneNamesTest upstream - Related: rhbz2133695...
squid security update
7:4.11-3.0.1...
istio security update
istio 1.13.7-1 - Added Oracle specific files for 1.13.7-1 olcne 1.5.5-1 - Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045 1.5.4-3 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over 1.5.4-2 - Istio CVE-2022-31045, CVE-2022-29225,...
open-vm-tools security update
11.3.5-1.0.1.el86.1 - Fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. Orabug: 21819156 11.3.5-1.el86.1 -...
Unbreakable Enterprise kernel-container security update
5.15.0-1.43.4.2 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981854 CVE-2022-21385...
httpd security update
2.2.15-69.0.5 - handle large writes in aprputs CVE-2022-28614Orabug: 34317854...
python-twisted-web security update
12.1.0-8 - Security fix for CVE-2022-24801: Possible http request smuggling Resolves: rhbz2073114...
xorg-x11-server and xorg-x11-server-Xwayland security update
xorg-x11-server 1.20.11-5 - Fix crash with NVIDIA proprietary driver with Present 2046329 1.20.11-4 - CVE fix for: CVE-2021-4008 2030162, CVE-2021-4009 2030172, CVE-2021-4010 2030175, CVE-2021-4011 2030181 1.20.11-3 - xf86/logind Fix drmdropmaster before vtreldis Resolves: 1771863...
libarchive security update
3.3.3-3 - Do not follow symlinks when processing the fixup list CVE-2021-31566 3.3.3-2 - Fix handling of symbolic link ACLs CVE-2021-23177...
Unbreakable Enterprise kernel security update
5.4.17-2136.302.6.1 - rds/ib: Use both iova and key in freemr socket call aru kolappan Orabug:33667276 5.4.17-2136.302.6 - Revert fs: align IOCB flags with RWF flags Prasad Singamsetty Orabug: 33627551 5.4.17-2136.302.5 - Revert drm: Initialize struct drmcrtcstate.novblank from device settings...
mailman security update
3:2.1.15-30.2 - Fix for CVE-2021-44227 - Resolves: 2026866 3:2.1.15-30.1 - Fix for CVE-2016-6893 - Fix for CVE-2021-42097 - Resolves: 2024884, 2020688...
sssd security and bug fix update
1.16.5-10.0.1 - Revert Redhat's change of disallowing duplicated incomplete gid when 'idprovider=ldap' is used, which caused regression in AD environment. Orabug: 29286774 Doc ID 2605732.1 1.16.5-10.10 - Resolves: rhbz1973796 - SSSD is NOT able to contact the Global Catalog when local site is dow...
glib2 security update
2.28.8-10.0.1 - Backport fixes for CVE-2021-27219 Orabug: 33017896...
nodejs:12 security update
nodejs 1:12.21.0-1 - Resolves: RHBZ1932315, RHBZ1932424 - remove --debug-nghttp2 option - remove ini patch - Backport patch to use getauxval...
microcode_ctl security, bug fix and enhancement update
4:20200609-2.20201027.1.0.1 - add support for UEK6 kernels - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 4:20200609-2.20201027.1 - Update Intel CPU microcode to microcode-20201027 release, addresses CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698 1893265, 1893253,...
nodejs:12 security and bug fix update
nodejs 1:12.18.4-2 - Resolves: RHBZ1883966 - nodejs-devel not installable due to missing brotli - Some spec fixes 12.18.4-1 - Rebase to 12.18.4 nodejs-nodemon nodejs-packaging...
spice and spice-gtk security update
spice 0.14.2-1.1 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355 spice-gtk 0.37-1.2 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355...
evince and poppler security and bug fix update
evince 3.28.2-10 - Do not try to use iconview widget when in tree view mode - Resolves: 1610436 poppler 0.26.5-43 - Fix crash on broken file in tilingPatternFill - Resolves: 1801340...
libwmf security and bug fix update
0.2.8.4-44 - Resolves: rhbz1840569 adapt to new urw-fonts 0.2.8.4-43 - Resolves: rhbz1679005 CVE-2019-6978 0.2.8.4-42 - Related: rhbz1239162 fix patch context...
httpd:2.4 security update
modhttp2 1.11.3-3.1 - Resolves: 1869072 - CVE-2020-9490 httpd:2.4/modhttp2: httpd: Push diary crash on specifically crafted HTTP/2 header...
java-1.8.0-openjdk security update
1:1.8.0.262.b10-0.1 - Update to aarch64-shenandoah-jdk8u262-b10. - Switch to GA mode for final release. - Update release notes for 8u262 release. - Fix typo in jfrarches which leads to ppc64 being wrongly excluded. - Split JDK-8042159 patch into per-repo patches as upstream. - Update JDK-8042159...
thunderbird security update
68.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.9.0-1 - Update to 68.9.0 build1...
.NET Core on Red Hat Enterprise Linux 8 security update
2.1.515-1 - Update to .NET Core SDK 2.1.515 and Runtime 2.1.19 - Resolves: RHBZ1843680...
thunderbird security update
68.8.0-1.0.1.el82 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.8.0-1 - Update to 68.8.0 build2...
firefox security update
68.7.0-2.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.7.0-2 - Update to 68.7.0 build3 68.6.1-1 - Update to 68.6.1 ESR Wed Mar 04 2020 Jan Hora...
libarchive security update
3.1.2-14 - Fix patch application error 3.1.2-13 - Fix CVE-2019-18408: RAR use-after-free...
nss security update
3.44.0-9 - Fix out-of-bounds write in NSCEncryptUpdate 1775912...
container-tools:ol8 security, bug fix, and enhancement update
...
python27:2.7 security and bug fix update
...
Unbreakable Enterprise kernel security update
4.1.12-124.32.3 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 26941755 CVE-2017-14991 - failover: allow name change on IFFUP slave interfaces Si-Wei Liu Orabug: 29707258 - Revert 'netfailover: delay taking over primary device to accommodate udevd renaming' Si-Wei...
http-parser security update
2.7.1-8 - Backport needed test fixes - Related: rhbz1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length header values rhel-7 2.7.1-7 - Resolves: rhbz1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length head...
thunderbird security update
60.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.0-1 - Update to 60.7.0...
thunderbird security and bug fix update
60.8.0-1.0.1 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...
thunderbird security update
60.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.5.0-1 - Update to 60.5.0...
kubernetes security update
1.9.11-2.1.1 - Fix kubeadm-registry.sh - Use golang 1.9.3 - CVE-2018-1002105 Handle error responses from backends - Bump to v1.9.11...
bind security update
32:9.9.4-61.1 - Fix CVE-2018-5740...
qemu-kvm security and bug fix update
1.5.3-156.el75.5 - kvm-multiboot-bssendaddr-can-be-zero.patch bz1549824 - kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch bz1549824 - kvm-multiboot-Use-header-names-when-displaying-fields.patch bz1549824 - kvm-multiboot-fprintf-stderr.-errorreport.patch bz1549824 -...
glibc security update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...