9180 matches found
Unbreakable Enterprise kernel-container security update
5.4.17-2136.329.3.2.el7 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086...
thunderbird security update
115.9.0-1.0.1 - Add Oracle prefs 115.9.0-1 - Update to 115.9.0 build1 - Fix expat CVE-2023-52425...
kernel security update
4.18.0-513.11.1.0.19.OL8 - scsi: iscsitcp: Fix UAF during login when accessing the shost ipaddress CVE-2023-2162 - afunix: Fix null-ptr-deref in unixstreamsendpage CVE-2023-4622 - netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet CVE-2023-42753...
Unbreakable Enterprise kernel security update
4.1.12-124.81.2 - rebuild bumping release 4.1.12-124.81.1 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35923500 CVE-2023-39193 - USB: eneusb6250: Allocate enough memory for full object Kees Cook Orabug: 35924058 CVE-2023-45862 - netfilter: xtu32: validate user spa...
libpq security update
13.11-1 - Rebase to 13.11 Resolves: 2171369...
python3 security update
3.6.8-21.0.1 - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-21 - Test fixups for CVE-2023-40217 Resolves: RHEL-3139 3.6.8-20 - Security fi...
mariadb:10.5 security update
galera 26.4.14-1 - Rebase to 26.4.14 26.4.13-1 - Rebase to 26.4.13 26.4.12-1 - Rebase to 26.4.12 Judy mariadb 3:10.5.22-1 - Rebase to 10.5.22 3:10.5.21-1 - Rebase to version 10.5.21 3:10.5.20-2 - Use fortifylevel to disable fortification in debug builds 3:10.5.20-1 - Rebase to version 10.5.20...
postgresql:10 security update
10.23-2.0.1 - Fixed postgresql port binding issue during bootup Orabug: 35103668 10.23-2 - Backport fixes for CVE-2023-2454 and CVE-2023-2455 - Update postgresql-setup to 8.7 https://github.com/devexp-db/postgresql-setup/pull/35 - Resolves: 2207931 10.23-1 - Resolves: CVE-2022-2625 - Rebase to...
kernel security and bug fix update
4.18.0-477.13.18.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
poppler security update
20.11.0-6 - Check for overflow when computing number of symbols - in JBIG2 text region - Resolves: 2126361...
libguestfs-winsupport security update
9.2-1 - Rebase to ntfs-3g 2022.5.17 - Fixes: CVE-2021-46790, CVE-2022-30783, CVE-2022-30784, CVE-2022-30785, CVE-2022-30786, CVE-2022-30787, CVE-2022-30788, CVE-2022-30789 resolves: rhbz2127235 rhbz2127242 also 2127264 2127250 2127257...
curl security update
7.61.1-25.el87.3 - fix HTTP multi-header compression denial of service CVE-2023-23916...
Unbreakable Enterprise kernel security update
5.15.0-7.86.6.1 - net/rds: Delegate fan-out to a background worker Gerd Rausch Orabug: 35051226 5.15.0-7.86.6 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001044 - rds: ib: Make sure messages that errors out also get unmapped Hakon Bugge...
kernel security and bug fix update
4.18.0-425.10.1.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
podman security and bug fix update
2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related: 2061316 2:4.2.0-2 - readd catatonit - Related: 2061316 2:4.2.0-1 - update to latest content of...
bind security update
32:9.16.23-5 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178 32:9.16.23-4 - Export bind-doc package 2104863 32:9.16.23-3 - Tighten cache protection against record from...
git-lfs security and bug fix update
2.13.3-3 - Rebuild with new Golang - Resolves: rhbz2131795...
squid security update
7:3.5.20-17.0.1 - Mutiple CVE fixes for squid Orabug: 33146289 - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing 788 - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range...
Unbreakable Enterprise kernel security update
5.15.0-2.52.3 - posix-cpu-timers: Cleanup CPU timers before freeing them during exec Thadeu Lima de Souza Cascardo Orabug: 34495548 CVE-2022-2585 - fix race between exititimers and /proc/pid/timers Oleg Nesterov Orabug: 34495548 - rds: ib: Add preemption control when using per-cpu variables Hakon...
.NET 6.0 security, bug fix, and enhancement update
6.0.108-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.108-1 - Update to .NET SDK 6.0.108 and Runtime 6.0.8 - Resolves: RHBZ2112413...
Unbreakable Enterprise kernel security update
4.1.12-124.65.1.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460939 CVE-2022-2588...
Unbreakable Enterprise kernel security update
5.4.17-2136.309.5.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460937 CVE-2022-2588...
subversion:1.14 security update
subversion 1.14.1-2 - add fix for CVE-2022-24070...
maven:3.6 security and enhancement update
httpcomponents-client 4.5.10-4 - Fix incorrect handling of malformed authority component in request URIs - Resolves: CVE-2020-13956 maven 1:3.6.2-7 - Add maven-openjdk17 - Resolves: rhbz1991521...
cpio security update
2.12-11 - Fixed CVE-2021-38185 1992511...
olcne istio istio security update
olcne 1.4.3-1 - Update Istio to 1.13.2 istio 1.12.6-1 - Addresses CVE-2022-24726, CVE-2022-24921 istio 1.13.2-1 - Added Oracle specific files for 1.13.2-1...
thunderbird security update
91.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.8.0-1 - Update to 91.8.0...
aide security update
0.16.14.1 - backported fix for CVE-2021-45417 resolves: rhbz2041956...
postgresql:13 security update
postgresql 13.5-1 - Update to 13.5 - Resolves: 2024608...
container-tools:ol8 security, bug fix, and enhancement update
...
python-pip security update
9.0.3-20 - Fix for CVE-2021-3572 - pip incorrectly handled unicode separators in git references Resolves: rhbz1962856...
krb5 security update
1.15.1-50.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360...
NetworkManager and libnma security, bug fix, and enhancement update
libnma 1.8.30-2 - Rebuild with new gtk-doc to fix multilib issues rh 1853152 NetworkManager 1.30.0-7.0.1 - add connectivity check via Oracle servers Orabug: 32051972 - Disable the build of NetworkManager-config-connectivity- subpackage for 8.3 1:1.30.0-7 - initrd: set multi-connect=single for...
bash security and bug fix update
4.4.19-14 - Fix hang when limit for nproc is very high Resolves: 1890888 4.4.19-13 - Correctly drop saved UID when effective UID is not equal to its real UID Resolves: 1793943...
userspace graphics, xorg-x11, and mesa security, bug fix, and enhancement update
egl-wayland 1.1.5-3 - Add upstream patch to address rhbz1842473 1.1.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 1.1.5-1 - Update to 1.1.5 libdrm 2.4.103-1 - Update to 2.4.103 libglvnd 1.3.2-1 - Update to 1.3.2 release libinput 1.16.3-1 - libinput 1.16.3 1886648 libwacom...
xterm security update
253-1.0.1 - fix xutf8.h to work with up-to-date Xlib - fix crash in combining character support CVE-2021-27135 orabug 32496959...
bluez security update
5.50-4 + bluez-5.50-4 - Fixing CVE-2020-0556...
thunderbird security update
78.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.0-1 - Update to 78.4.0 build1 - Disabled telemetry 78.3.1-1 - Update to 78.3.1 build1...
dovecot security update
1:2.3.8-2.2 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1866755 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1866760 - fix CVE-2020-12674 crash due to assert in RPA implementation 1866767...
postgresql-jdbc security update
8.4.704-4 - require explicitly jdk-1.6 due to ABI bytecode compatibility 8.4.704-3 - fixed XXE vulnerability CVE-2020-13692...
thunderbird security update
68.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.9.0-1 - Update to 68.9.0 build1...
libexif security update
0.6.21-7 - Add patch for CVE-2020-13112 - Resolves: 1840949...
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
...
libarchive security update
3.1.2-14 - Fix patch application error 3.1.2-13 - Fix CVE-2019-18408: RAR use-after-free...
firefox security update
68.4.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.4.1-1 - Update to 68.4.1esr build1 - Update to 68.4.0esr build1 - Fix for wrong intl.acceptlang whe...
sssd security, bug fix, and enhancement update
2.2.0-19 - Resolves: rhbz1712875 - Old kerberos credentials active instead of valid new ones kcm 2.2.0-18 - Resolves: rhbz1744134 - New defect found in sssd-2.2.0-16.el8 - Also sync. kcm multihost tests with master 2.2.0-17 - Resolves: rhbz1676385 - pamsss with smartcard auth does not create gnom...
python27:2.7 security and bug fix update
...
Unbreakable Enterprise kernel security update
4.1.12-124.32.3 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 26941755 CVE-2017-14991 - failover: allow name change on IFFUP slave interfaces Si-Wei Liu Orabug: 29707258 - Revert 'netfailover: delay taking over primary device to accommodate udevd renaming' Si-Wei...
thunderbird security update
60.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.0-1 - Update to 60.7.0...
thunderbird security and bug fix update
60.8.0-1.0.1 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...