9177 matches found
seamonkey security update
1.0.9-50.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding RedHat ones 1.0.9-50.el4 - Added fixes from 1.9.0.15...
libtiff security update
3.8.2-7.el5.4 - Fix buffer overrun risks caused by unchecked integer overflow CVE-2009-2347 Resolves: 507725 3.8.2-7.el5.3 - Fix some more LZW decoding vulnerabilities CVE-2009-2285 Resolves: 507725 - Update upstream URL...
libvirt security update
0.3.3-14.0.1.el53.1 - Replaced docs/redhat.gif in tarball 0.3.3-14.el53.1 - Add missing readonly checks for APIs CVE-2008-5086 - Add missing buf check in proxy daemon CVE-2009-0036...
firefox security update
1.5.0.12-0.19.0.1.el4 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js 1.5.0.12-0.19.el4 - Respun for mozilla bugs 439035,439735,440308 1.5.0.12-0.18.el4 - Update patchset to fix regression as per 1.8.1.15...
Moderate: ruby security update
1.8.5-5.el51.1 - security fix for CVE-2007-5162 and CVE-2007-5770 - ruby-1.8.5-CVE-2007-5162.patch: fix issues that is insufficient verification of SSL certificate. 320331 - Fix the multilib regression issue. 1.8.5-5 - security fix release. - ruby-1.8.5-cgi-CVE-2006-6303.patch: fix a infinite loo...
openssh security and bug fix update
4.3p2-24 - fixed audit log injection problem CVE-2007-3102 248059 4.3p2-23 - document where the nss certificate and token dbs are looked for 4.3p2-22 - experimental support for PKCS11 tokens through libnss3 183423 4.3p2-21 - fix an information leak in Kerberos password authentication CVE-2006-505...
Important: kernel security update
2.6.9-55.0.9.0.1 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix for nfs open call taking longer issue Chuck Lever orabug 5580407 bz 219412 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach...
Moderate: thunderbird security update
1.5.0.12-0.3.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-0.3.el4 - Add a patch to stick with major versions 1.5.0.12 / 1.8.0.12 1.5.0.12-0.2.el4 - Update to latest snapshot of Mozilla 1.8.0 branch - Include patches for Mozilla bugs 379245, 384925, 178993, 381300...
Critical: seamonkey security update
1.0.9-4.el4.0.1 - Add mozilla-oracle-default-bookmarks.html, mozilla-oracle-default-prefs.js, and mozilla-home-page.patch for errata build 1.0.9-4.el4 - Remove broken patch for Mozilla bug 199088 1.0.9-3.el4 - Update to latest snapshot of Mozilla 1.8.0 branch - Include patches for Mozilla bugs...
Important: kernel security update
2.6.0-42.0.8.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.0-42.0.8 -fix ext2 readdir fpos revalidation logic David Milburn 193877 2.6.9-42.0.7 -re-spin 2.6.9-42.0.6 -x8664: increase nmi watchdog timeout from 5 to 30 seconds Larry Woodman 205 722 2.6.9-42.0.5...
virt:ol and virt-devel:ol security update
qemu-kvm 4.2.0-59.el85.2 - kvm-virtiofsd-Drop-membership-of-all-supplementary-group.patch bz2048627 - Resolves: bz2048627 CVE-2022-0358 virt:rhel/qemu-kvm: QEMU: virtiofsd: potential privilege escalation via CVE-2018-13405 rhel-8.5.0.z...
kernel security update
3.10.0-1160.119.1.0.7 - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices Benot Sevens CVE-2024-53197 Orabug: 37686305 - can: bcm: Fix UAF in bcmprocshow YueHaibing CVE-2023-52922 Orabug: 37686305 - HID: core: zero-initialize the report buffer Benot Sevens...
firefox security update
128.7.0-1.0.1 - Update to 128.7.0 build1 Orabug: 37564202CVE-2025-1009CVE-2025-1010 CVE-2025-1011CVE-2025-1012CVE-2025-1013CVE-2025-1014CVE-2025-1016 CVE-2025-1017...
glibc security update
2.28-251.0.2.2 - Forward port of Oracle patches over 2.28-251.2 Reviewed-by: Jose E. Marchesi Oracle history: May-23-2024 Cupertino Miranda - 2.28-251.0.2.1 - Forward port of Oracle patches over 2.28-251.1 Reviewed-by: Jose E. Marchesi May-22-2024 Cupertino Miranda - 2.28-251.0.2 - Forward port o...
python39:3.9 and python39-devel:3.9 security update
modwsgi numpy python39 3.9.19-1 - Update to 3.9.19 - Security fixes for CVE-2023-6597 and CVE-2024-0450 - Fix tests for XMLPullParser with Expat with fixed CVE Resolves: RHEL-33676, RHEL-33688 python3x-pip python3x-setuptools python3x-six python-cffi python-chardet python-cryptography python-idna...
Unbreakable Enterprise kernel security update
5.15.0-206.153.7 - mmc: core: Initialize mmcblkiocdata Mikko Rapeli - ahci: asm1064: asm1166: don't limit reported ports Conrad Kostecki - mmc: core: Fix switch on gp3 partition Dominique Martinet - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of memory Michael Kelley -...
Unbreakable Enterprise kernel security update
4.14.35-2047.536.5 - mmc: core: Fix switch on gp3 partition Dominique Martinet - Revert 'Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d'' Song Liu - mm/memory-failure: fix an incorrect use of tail pages Liu Shixin - Revert 'x86/mm/identmap: Use gbpages only where full GB page should be...
kernel security update
5.14.0-362.24.1.0.13.OL9 - netfilter: nftables: reject QUEUE/DROP verdict parameters Orabug: 36461940 CVE-2024-1086 - 5.14.0-362.24.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel...
squid:4 security update
libecap squid 7:4.15-7.10 - Resolves: RHEL-19551 - squid:4/squid: denial of service in HTTP request parsing CVE-2023-50269 7:4.15-7.9 - Resolves: RHEL-28611 - squid:4/squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 7:4.15-7.6 - Resolves: RHEL-26087 - squid:4/squid: denial of...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.14-1.0.1 - update to 13.14 - Fixes CVE-2024-0985...
php:8.1 security update
php 8.1.27-1 - rebase to 8.1.27 RHEL-19093 8.1.14-1 - rebase to 8.1.14 8.1.8-1 - update to 8.1.8 2070040 8.1.7-2 - clean unneeded dependency on useradd command 8.1.7-1 - update to 8.1.7 2070040 8.1.6-2 - add upstream patch to initialize pcre before mbstring - add upstream patch to use more sha256...
bind security update
32:9.16.23-11.2 - stack exhaustion in control channel code may lead to DoS CVE-2023-3341...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.17.1-1 - Rebase to version 18.17.1 Resolves: rhbz2228940 Resolves: CVE-2023-32002 CVE-2023-32006 CVE-2023-32559 - Specify proper OpenSSL configuration section build Related: rhbz2226726 nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 nodejs-packaging...
postgresql:12 security update
pgaudit pgrepack postgres-decoderbufs postgresql 12.15-1.0.1 - Fixed postgresql port binding issue during bootup Orabug: 35103668 12.15-1 - Update postgresql-setup to 8.7 https://github.com/devexp-db/postgresql-setup/pull/35 - Resolves: 2207932 - Update to version 12.15...
18 security, bug fix, and enhancement update
nodejs 1:18.16.1-1 - Rebase to 18.16.1 Resolves: rhbz2188292 rhbz2187683 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 - Replace /usr/etc/npmrc symlink with builtin configuration Resolves: rhbz2222285 nodejs-nodemon nodejs-packaging...
java-11-openjdk security and bug fix update
1:11.0.20.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.20.0.8-2 - Bump release number so we are newer than 9.0 - Related: rhbz2221106 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Drop local inclusion of JDK-8274864 & JDK-8305113 as they a...
kernel security and bug fix update
5.14.0-284.18.12 - cifs: fix wrong unlock before return from cifstreeconnect - docs: Remove the unnecessary unicode character - perf vendor events intel: Refresh ivytown metrics and events - perf vendor events: Update Intel ivytown - perf vendor events intel: Refresh jaketown metrics and events -...
bind9.16 security update
32:9.16.23-14.1 - Improve RBT overmem cache cleaning CVE-2023-2828...
openssl security and bug fix update
3.0.7-16.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-16 - Fix possible DoS translating ASN.1 object identifiers Resolves: CVE-2023-2650 - Release the DRBG in global default libctx early Resolves: rhbz2211396 1:3.0.7-15.1 - Re-enable DHX keys in FIPS mode, disable FIPS 186-4 paramet...
qemu-kvm security update
6.1.1-6.el9 - Update changelog Karl Heubaum Orabug: 35343538 - ebpf: fix compatibility with libbpf 1.0+ Shreesh Adiga Orabug: 35268538 - ebpf: replace deprecated bpfprogramsetsocketfilter Haochen Tong Orabug: 35268538 - CVE-2023-1544 is not applicable to Oracle QEMU 6.1.1 Karl Heubaum Orabug:...
freeradius security and bug fix update
3.0.21-37 - Fix defect found by covscan Resolves: 2151705 3.0.21-36 - Fix multiple CVEs Resolves: 2151705 Resolves: 2151703 Resolves: 2151707 3.0.21-35 - Rebuild to add subpackages to CRB report Resolves: 2126380...
grafana security and enhancement update
9.0.9-2 - resolve CVE-2022-39229 grafana: Using email as a username can prevent other users from signing in - resolve CVE-2022-2880 CVE-2022-41715 grafana: various flaws 9.0.9-1 - update to 9.0.9 tagged upstream community sources, see CHANGELOG - resolve CVE-2022-35957 grafana: Escalation from...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.524.5.el7 - rds/ib: Fix the softlock-up in RDS cache GC worker Arumugam Kolappan Orabug: 35079728 4.14.35-2047.524.4.el7 - xfs: add missing cmap-brstate = XFSEXTNORM update Gao Xiang Orabug: 35202792 - x86/tsc: Disable clocksource watchdog for TSC on qualified platorms Feng Tang...
kernel security and bug fix update
4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libxml2 security update
2.9.13-3 - Fix CVE-2022-40303 2136564 - Fix CVE-2022-40304 2136569...
.NET 6.0 security, bug fix, and enhancement update
6.0.113-1.0.1 - Add missing Oracle Linux Runtime IDs 6.0.113-1 - Update to .NET SDK 6.0.113 and Runtime 6.0.13 - Resolves: RHBZ2154458...
bind9.16 security update
32:9.16.23-0.9.1 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178 32:9.16.23-0.9 - Tighten cache protection against record from forwarders CVE-2021-25220 - Include test of...
kernel security, bug fix, and enhancement update
4.18.0-372.32.1.0.16.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
java-11-openjdk security and bug fix update
11.0.17.0.8-2.0.1 - Replace upstream references Orabug: 34340155 1:11.0.17.0.8-2 - Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173 - Update CLDR data with Europe/Kyiv JDK-8293834 - Drop JDK-8292223 patch which we found to be unnecessary - Update TestTranslations.java to use public A...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.312.3.4 - Revert 'fs: check FMODELSEEK to control internal pipe splicing' Saeed Mirzamohammadi Orabug: 34666845 5.4.17-2136.312.3.3 cpusreadlock deadlock Tejun Heo Orabug: 34607590 - cgroup: Elide write-locking threadgrouprwsem when updating csses on an empty subtree Tejun Heo Orabug:...
nodejs and nodejs-nodemon security and bug fix update
nodejs 16.16.0-1 - Rebase to version 16.16.0 Resolves: RHBZ2106290 Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 16.14.0-5 - Decouple dependency bundling from bootstrapping nodejs-nodemon...
rsync security update
3.2.3-9.2 - Resolves: 2111176 - remote arbitrary files write inside the directories of connecting peers...
.NET 6.0 security, bug fix, and enhancement update
6.0.108-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.108-1 - Update to .NET SDK 6.0.108 and Runtime 6.0.8 - Resolves: RHBZ2112413...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.308.7.el7 - uek-rpm: Update OL7/8 Secureboot certificate and shim versions Sherry Yang Orabug: 34248329 5.4.17-2136.308.6 - mac80211hwsim: call ieee80211txprepareskb under RCU protection Johannes Berg - arm: remove CONFIGARCHHASHOLESMEMORYMODEL Mike Rapoport - x86/cpu: Load microcode...
mariadb:10.5 security, bug fix, and enhancement update
galera 26.4.9-4 - Use downstream garbd-wrapper and garbd.service to ensure compatibility - Add upstream versions of garbd-wrapper called garbd-systemd and garbd.service in case user want's to use them 26.4.9-3 - Explicitly require the 'procps-ng' package - Otherwise it will not require it in the...
xmlrpc-c security update
1.51.0-5.1 - Add missing validation of encoding CVE-2022-25235 2058114...
postgresql:12 security update
postgresql 12.9-1 - Update to 12.9 - Resolves: 2024677...
go-toolset:ol8 security and bug fix update
golang 1.16.12-1 - Rebase to Go 1.16.12 - Resolves: rhbz2031125 go-toolset 1.16.12-1 - Rebase to Go 1.16.12 - Resolves: rhbz2031125...
python-psutil security update
5.4.3-11 - Security fix for CVE-2019-18874: double free because of refcount mishandling Resolves: rhbz1772014...
libjpeg-turbo security and bug fix update
1.5.3-12 - Add missing license file 1982572 1.5.3-11 - Fix CVE-2020-17541 1972289...