9159 matches found
vim security update
8.2.2637-21.0.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-21 - RHEL-40602 CVE-2021-3903 vim: heap-based buffer overflow vulnerability...
python3 security update
3.12.3-2 - Enable importing of hash-based .pyc files under FIPS mode Resolves: RHEL-40776 3.12.3-1 - Update to 3.12.3 Related: RHEL-33685 3.12.2-3 - Move all test modules to the python3-test package, namely: - phello - xxsubinterpreters - xxlimited - xxlimited35 - xxsubtype 3.12.2-2 - Fix tests f...
kernel security and bug fix update
3.10.0-957.12.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.12.1 - kernel locking/rwsem: Fix possible missed wakeup Waiman Long 1690323...
kernel security and bug fix update
2.6.32-696.3.1.OL6 - Update genkey bug 25599697 2.6.32-696.3.1 - netdrv be2net: Fix endian issue in logical link config command Ivan Vecera 1442979 1436527 - scsi lpfc: update for r 11.0.0.6 Maurizio Lombardi 1439636 1429881 - scsi lpfc: The lpfc driver does not issue RFFID and RFTID in the corre...
gstreamer1-plugins-base security update
1.16.1-4.0.1 - Update origin URL Orabug: 36209826 1.16.1-4 - CVE-2024-4453 gstreamer1: EXIF Metadata Parsing Integer Overflow - Resolves: RHEL-38509...
cups security update
1:2.2.6-60 - RHEL-40386 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.2.6-59 - RHEL-40386 cups: Cupsd Listen arbitrary chmod 0140777 - Require cups.socket in cupsd service file 1:2.2.6-58 -...
curl security and bug fix update
7.61.1-33.5 - cap SFTP packet size sent RHEL-5485 - when keyboard-interactive auth fails, try password 2229800 - unify the upload/method handling CVE-2023-28322 - fix cookie injection with none file CVE-2023-38546 - lowercase the domain names before PSL checks CVE-2023-46218...
kubernetes security update
1.10.5-2.5.4 - OLCNE-235 CVE-2019-9946 portmap inserts rules at the front of the iptables nat chains 1.10.5-2.4.4 - CVE-2019-1002101 kubectl fix potential directory traversal 1.10.5-2.3.4 - CVE-2019-1002100 Limit the number of operations in a single json patch to be 10,000 - Fixup kubeadm-setup.s...
python-jinja2 security update
2.11.3-6 - Security fix for CVE-2024-34064 Resolves: RHEL-35653...
qemu-kvm security update
9.0.0-10 - kvm-nbd-server-CVE-2024-7409-Avoid-use-after-free-when-c.patch RHEL-52617 - Resolves: RHEL-52617 CVE-2024-7409 qemu-kvm: Denial of Service via Improper Synchronization in QEMU NBD Server During Socket Closure rhel-9.5 9.0.0-9 -...
expat security update
2.5.0-3.1 - Fix CVE-2024-50602 - Resolves: RHEL-65064 2.5.0-3 - Fix CVE-2024-45490, CVE-2024-45491, CVE-2024-45492 - Resolves: RHEL-56761 - Resolves: RHEL-57520 - Resolves: RHEL-57511...
python3.12 security update
3.12.6-1 - Update to 3.12.6 Resolves: RHEL-57405...
Unbreakable Enterprise kernel security update
5.15.0-209.161.7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36865975 5.15.0-209.161.6 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879156 CVE-2024-41090 CVE-2024-41091 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs...
krb5 security update
1.21.1-4.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.21.1-4 - libkrad: implement support for Message-Authenticator CVE-2024-3596 Resolves: RHEL-55423 - Fix various issues detected by static analysis Resolves: RHEL-58216 - Remove RSA protocol for PKINIT Resolves: RHEL-15323...
python-jwcrypto security update
1.5.6-2 - Disable auto-generation of dependencies Related: RHEL-34809 1.5.6-1 - Rebase to version 1.5.6 Resolve: RHEL-34809...
NetworkManager security update
1.48.10-2.0.1 - disable MPTCP handling by default Orabug: 34801142 - add connectivity check via Oracle servers Orabug: 32051972 1:1.48.10-2 - cloud-setup: Allow bigger restart bursts RHEL-56740 - cloud-setup: Fix Azure swap of primary and secondary IP addresses RHEL-56387 1:1.48.10-1 - Unblock th...
Unbreakable Enterprise kernel security update
5.15.0-208.159.3.2 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755...
firefox security update
60.7.2-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.2-1 - Update to 60.7.2 ESR 60.7.1-1 - Updated to 60.7.1 ESR...
java-1.8.0-openjdk security update
1:1.8.0.201.b09-0 - Update to aarch64-shenandoah-jdk8u201-b09. - Resolves: rhbz1661577 1:1.8.0.192.b12-0 - Add port of 8189170 to AArch64 which is missing from upstream 8u version. - Resolves: rhbz1661577 1:1.8.0.192.b12-0 - Add 8160748 for AArch64 which is missing from upstream 8u version. -...
cockpit security update
323.1-1.0.1 - Replaced upstream urls in documentation with oracle links Orabug: 36528753 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in cockpit Orabug: 34030494 - Update documentation links Orabug: 30271413, Orabug: 32013095,...
kernel security update
4.18.0-553.32.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.11-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/fe85f0d - Resolves: RHEL-61853 2:1.33.10-1 - update to the latest content of...
ipa security update
4.11.0-15.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.11.0-15 - Resolves: RHEL-32231 CVE-2024-3183 ipa: freeipa: user can obtain a hash of the passwords of all domain users and perform offline brute force -...
kernel security, bug fix, and enhancement update
3.10.0-1062.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062 - fs revert 'xfs: disable copyfilerange to avoid broken splice copy' Eric...
bubblewrap and flatpak security update
bubblewrap 0.4.1-8 - Backport upstream fix to help address CVE-2024-42472 in flatpak flatpak 1.12.9-3 - Fix previous changelog entry 1.12.9-2 - Backport upstream patches for CVE-2024-42472 - Require bubblewrap version that has new --bind-fd option backported for addressing CVE-2024-42472...
python3.9 security update
3.9.19-8 - Security fix for CVE-2024-8088 Resolves: RHEL-55967 3.9.19-7 - Security fix for CVE-2024-6923 Resolves: RHEL-53045 3.9.19-6 - Ensure 3rd party extension modules for the debug build use the -O0 flag 3.9.19-5 - Properly propagate the optimization flags to C extensions 3.9.19-4 - Build...
python-idna security update
2.10-7.0.1.1 - Rebuild with release bump 2.10-7.1 - Security fix for CVE-2024-3651 Resolves: RHEL-33464...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.202.5 - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860491 CVE-2021-31916 - uek-rpm: update kABI lists for the new symbols Saeed Mirzamohammadi...
Unbreakable Enterprise kernel security update
4.14.35-1844.4.5 - x86/apic/x2apic: set back affinity of a single interrupt to one cpu Mridula Shastry Orabug: 29510342 4.14.35-1844.4.4 - ext4: fix data corruption caused by unaligned direct AIO Lukas Czerner Orabug: 29598590 - swiotlb: checking whether swiotlb buffer is full with iotlbused Dong...
cups security update
1:2.3.3op2-31 - RHEL-60343 CVE-2024-47175 cups: remote command injection via attacker controlled data in PPD file...
nano security update
5.6.1-6 - fix emergency file replacement vulnerability RHEL-35237...
libreswan security update
4.12-2.0.1.4 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-2.4 - Fix CVE-2024-3652 RHEL-32482...
kernel security update
5.14.0-503.16.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
tpm2-tools security update
5.2-4 - Backport upstream fixes. - tpm2checkquote: Fix check of magic number. CVE-2024-29038 - tpm2checkquote: Add comparison of pcr selection. CVE-2024-29039 - Fix check of magic number. Resolves: RHEL-23198 Resolves: RHEL-41031 Resolves: RHEL-41035...
poppler security update
21.01.0-21 - Fix crash in broken documents when using -dests - Resolves: RHEL-44333 21.01.0-20 - Fix a crash during signing - Resolves: RHEL-31934...
python3.9 security update
3.9.18-3.6 - Fix: CVE-2024-6232 - Resolves: RHEL-57421...
vim security update
2:8.0.1763-11 - 1719812 - CVE-2019-12735 vim: vim/neovim: arbitrary command execution in getchar.c rhel-8.1.0...
python3.12 security update
3.12.8-1 - Update to 3.12.8 - Security fix for CVE-2024-9287 and CVE-2024-12254 Resolves: RHEL-64880, RHEL-70315...
python3.9:3.9.21 security update
3.9.21-1 - Update to 3.9.21 - Security fix for CVE-2024-11168 and CVE-2024-9287 Resolves: RHEL-64888 Resolves: RHEL-67259...
python3.9 security update
3.9.19-8.1 - Security fix for CVE-2024-6232 Resolves: RHEL-57420...
jose security update
14-1 - Rebase jose-14 upstream version Resolves: RHEL-38079...
gtk3 security update
3.24.31-5 - Stop looking for modules in cwd CVE-2024-6655 - Resolves: RHEL-46993 3.24.31-4 - Actually reduce the height of window titlebars 3.24.31-3 - Reduce the height of window titlebars...
cups security update
1:2.3.3op2-27 - Revert the cups-libs license identifier to the 'legacy' format 1:2.3.3op2-26 - RHEL-40388 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.3.3op2-25 - CVE-2024-35235 cups: Cupsd Listen...
c-ares security update
1.19.1-2 - Resolves: RHEL-26529 - Out of bounds read in aresreadline rhel-9...
krb5 security update
1.18.2-27.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-27 - Fix memory leak in GSSAPI interface Resolves: RHEL-27250 - Fix memory leak in PMAP RPC interface Resolves: RHEL-27244 - Make TCP waiting time configurable Resolves: RHEL-17131...
kernel security, bug fix, and enhancement update
3.10.0-957.27.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.27.2 - x86 hyper-v: fix hyperv.h UAPI header Vitaly Kuznetsov 1727109 169249...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack 1.5.1-1 - Update to 1.5.1 postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.6-1 - Update to 16.6 - Fixes:...
redis:7 security update
7.2.6-1 - rebase to 7.2.6 RHEL-26628 7.0.12-1 - rebase to 7.0.12 2221899 7.0.11-1 - rebase to 7.0.11 for new redis:7 stream 2129826 7.0.11-1 - Upstream 7.0.11 release. 7.0.10-2 - fix modules directory ownership and permissions 2176173 - drop redis-shutdown helper and rely on systemd 2181181...
python3:3.6.8 security update
3.6.8-69.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-69 - Security fix for CVE-2024-11168 Resolves: RHEL-67252 3.6.8-68 - Security fix for CVE-2024-9287 Resolves: RHEL-64878...
webkit2gtk3 security update
2.46.3-2 - Add patch for CVE-2024-44309...