9180 matches found
openssl security and bug fix update
3.0.7-16.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-16 - Fix possible DoS translating ASN.1 object identifiers Resolves: CVE-2023-2650 - Release the DRBG in global default libctx early Resolves: rhbz2211396 1:3.0.7-15.1 - Re-enable DHX keys in FIPS mode, disable FIPS 186-4 paramet...
qemu-kvm security update
6.1.1-6.el9 - Update changelog Karl Heubaum Orabug: 35343538 - ebpf: fix compatibility with libbpf 1.0+ Shreesh Adiga Orabug: 35268538 - ebpf: replace deprecated bpfprogramsetsocketfilter Haochen Tong Orabug: 35268538 - CVE-2023-1544 is not applicable to Oracle QEMU 6.1.1 Karl Heubaum Orabug:...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.524.5.el7 - rds/ib: Fix the softlock-up in RDS cache GC worker Arumugam Kolappan Orabug: 35079728 4.14.35-2047.524.4.el7 - xfs: add missing cmap-brstate = XFSEXTNORM update Gao Xiang Orabug: 35202792 - x86/tsc: Disable clocksource watchdog for TSC on qualified platorms Feng Tang...
kernel security and bug fix update
4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
bind9.16 security update
32:9.16.23-0.9.1 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178 32:9.16.23-0.9 - Tighten cache protection against record from forwarders CVE-2021-25220 - Include test of...
kernel security, bug fix, and enhancement update
4.18.0-372.32.1.0.16.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
java-11-openjdk security and bug fix update
11.0.17.0.8-2.0.1 - Replace upstream references Orabug: 34340155 1:11.0.17.0.8-2 - Update in-tree tzdata to 2022e with JDK-8294357 & JDK-8295173 - Update CLDR data with Europe/Kyiv JDK-8293834 - Drop JDK-8292223 patch which we found to be unnecessary - Update TestTranslations.java to use public A...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.312.3.4 - Revert 'fs: check FMODELSEEK to control internal pipe splicing' Saeed Mirzamohammadi Orabug: 34666845 5.4.17-2136.312.3.3 cpusreadlock deadlock Tejun Heo Orabug: 34607590 - cgroup: Elide write-locking threadgrouprwsem when updating csses on an empty subtree Tejun Heo Orabug:...
kvm_utils2 security update
...
nodejs and nodejs-nodemon security and bug fix update
nodejs 16.16.0-1 - Rebase to version 16.16.0 Resolves: RHBZ2106290 Resolves: CVE-2022-32212 CVE-2022-32213 CVE-2022-32214 CVE-2022-32215 16.14.0-5 - Decouple dependency bundling from bootstrapping nodejs-nodemon...
openssl security update
3.0.1-41.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-41 - Zeroize public keys as required by FIPS 140-3 Resolves: rhbz2115861 - Add FIPS indicator for HKDF Resolves: rhbz2118388 1:3.0.1-40 - Deal with DH keys in FIPS mode according FIPS-140-3 requirements Related: rhbz2115856 - Dea...
php security update
8.0.13-2 - fix password of excessive length triggers buffer overflow leading to RCE CVE-2022-31626...
389-ds:1.4 security update
1.4.3.28-7 - Bump version to 1.4.3.28-7 - Resolves: Bug 2081008 - CVE-2022-0996 389-ds:1.4/389-ds-base: expired password was still allowed to access the database - Resolves: Bug 2081014 - CVE-2022-0918 389-ds:1.4/389-ds-base: sending crafted message could result in DoS...
expat security update
2.2.10-12.2 - Improve fix for CVE-2022-25313 - Related: CVE-2022-25313 2.2.10-12.1 - Fix multiple CVEs - Resolves: CVE-2022-25314 - Resolves: CVE-2022-25313...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.308.7.el7 - uek-rpm: Update OL7/8 Secureboot certificate and shim versions Sherry Yang Orabug: 34248329 5.4.17-2136.308.6 - mac80211hwsim: call ieee80211txprepareskb under RCU protection Johannes Berg - arm: remove CONFIGARCHHASHOLESMEMORYMODEL Mike Rapoport - x86/cpu: Load microcode...
mariadb:10.5 security, bug fix, and enhancement update
galera 26.4.9-4 - Use downstream garbd-wrapper and garbd.service to ensure compatibility - Add upstream versions of garbd-wrapper called garbd-systemd and garbd.service in case user want's to use them 26.4.9-3 - Explicitly require the 'procps-ng' package - Otherwise it will not require it in the...
xmlrpc-c security update
1.51.0-5.1 - Add missing validation of encoding CVE-2022-25235 2058114...
postgresql:12 security update
postgresql 12.9-1 - Update to 12.9 - Resolves: 2024677...
go-toolset:ol8 security and bug fix update
golang 1.16.12-1 - Rebase to Go 1.16.12 - Resolves: rhbz2031125 go-toolset 1.16.12-1 - Rebase to Go 1.16.12 - Resolves: rhbz2031125...
firefox security update
91.4.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.4.0-1 - Update to 91.4.0 build1...
python-psutil security update
5.4.3-11 - Security fix for CVE-2019-18874: double free because of refcount mishandling Resolves: rhbz1772014...
libjpeg-turbo security and bug fix update
1.5.3-12 - Add missing license file 1982572 1.5.3-11 - Fix CVE-2020-17541 1972289...
vim security update
8.0.1763-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-16 - 2004974 - CVE-2021-3796 vim: use-after-free in nvreplace in normal.c rhel-8.5.0 - 2004891 - CVE-2021-3778 vim: heap-based buffer overflow in utfptr2char in mbyte.c rhel-8.5.0...
thunderbird security update
91.3.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.3.0-2 - Update to 19.3.0 build2 91.3.0-1 - Update to 91.3.0 build1...
thunderbird security update
91.2.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.2.0-1 - Update to 91.2.0 build1 91.1.2-1 - Update to 91.1.2 build1 91.1.0-1 - Update to 91.1.0 build2...
389-ds-base security and bug fix update
1.3.10.2-13 - Bump version to 1.3.10.2-13 - Resolves: Bug 2005399 - Internal unindexed searches in syncrepl - Resolves: Bug 2005432 - CVE-2021-3652 389-ds:1.4/389-ds-base: CRYPT password hash with asterisk allows any bind attempt to succeed - Resolves: Bug 2005434 - ACIs are being evaluated again...
kernel security and bug fix update
3.10.0-1160.42.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
389-ds:1.4 security and bug fix update
1.4.3.16-16 - Bump version to 1.4.3.16-16 - Resolves: Bug 1972738 - Changelog cache can upload updates from a wrong starting point CSN - Resolves: Bug 1972721 - Large updates can reset the CLcache to the beginning of the changelog 1.4.3.16-15 - Bump version to 1.4.3.16-15 - Resolves: Bug 1970791 ...
.NET Core 3.1 security and bugfix update
3.1.116-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.116-1 - Update to .NET SDK 3.1.116 and Runtime 3.1.16 - Resolves: RHBZ1965505 3.1.115-1 - Update to .NET SDK 3.1.115 and Runtime 3.1.15 - Resolves: RHBZ1954333...
krb5 security update
1.18.2-8 - Add recursion limit for ASN.1 indefinite lengths CVE-2020-28196 - Resolves: 1906492 1.18.2-7 - Document -k option in kvno1 synopsis - Resolves: 1869055 1.18.2-6 - Enable MD5 override for FIPS RADIUS - Resolves: 1872689 1.18.2-5.2 - Unify kvno option documentation - Resolves: 1869055...
evolution security, bug fix, and enhancement update
evolution 3.28.5-16 - Resolves: 1902630 Crash on file drag into mail composer with WebKitGTK 2.30 3.28.5-15 - Resolves: 1883619 ECalendarItem: Settings loaded only when being shown evolution-data-server 3.28.5-15 - Resolves: 1862403 CVE-2020-16117: Crash on malformed server response with minimal...
runc bug fix update
1.0.0-92.rc92 - Add epoch value of 2 to allow upgrade to 1.0.0-92.rc92 from 1.0.0-93.rc93. 1.0.0-92.rc92 - Build for https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc92...
olcne security update
kata-runtime 1.7.3-1.0.7 - Address CVE-2020-28914 kata 1.7.3-1.0.12 - UEKR6 guest kernel support 1.7.3-1.0.11 - Address CVE-2020-28914 kubernetes 1.17.9-1.0.6 - Kata CVE-2020-28914 olcne 1.1.10-1 - Address CVE-2020-28914: An improper file permissions vulnerability affects Kata Containers prior to...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.404.1.2.el7 - Revert 'rds: Deregister all FRWR mr with freemr' aru kolappan Orabug: 32426280...
librsvg2 security update
2.42.7-4 - Resolves: rhbz1804519 Add patch for CVE-2019-20446...
dovecot security update
1:2.3.8-4 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1866756 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1866761 - fix CVE-2020-12674 crash due to assert in RPA implementation 1866768 1:2.3.8-3 - fix CVE-2020-10957 dovecot: malformed NOOP...
qt5-qtbase security update
5.9.7-4 - Fix: Files placed by attacker can influence the working directory and lead to malicious code execution Resolves: bz1814740 Resolves: bz1814685 5.9.7-3 - Fix multilib issue with qtcore-config.h header file Resolves: bz1534528 - Move libQt5EglFSDeviceIntegration lib into correct subpackag...
squid:4 security update
libecap squid 7:4.4-8.2 - Resolves: 1872345 - CVE-2020-15811 squid:4/squid: HTTP Request Splitting could result in cache poisoning - Resolves: 1872330 - CVE-2020-15810 squid:4/squid: HTTP Request Smuggling could result in cache poisoning 7:4.4-8.1 - Resolves: 1828368 - CVE-2019-12519 squid:...
grub2 security update
2.02-81.0.4 - Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 Orabug: 31225072 - Update signing certificate for efi binaries 2.02-0.81.0.2 - Enable common subpackage build for aarch64 - Disable RHEL patch...
thunderbird security update
68.4.1-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.4.1-2 - Update to 68.4.1 build1...
firefox security update
68.9.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Fri May 29 2020 Jan Horak - Update to 68.9.0 build1 - Added patch for pipewire 0.3 Mon May 11 2020 Jan Horak - Added s390x specific patches Wed Apr 29 2020 Jan Horak - Update to 68.8.0...
systemd security, bug fix, and enhancement update
239-29.0.1.el8 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog entries Orabug: 30853009 - fix to generate systemd-pstore.service file Orabug: 30230056 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug:...
dovecot security and bug fix update
1:2.2.36-6 - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes 1741787 1:2.2.36-5 - fix CVE-2019-3814: improper certificate validation 1674369 - fix CVE-2019-7524: buffer overflow in...
python security update
2.7.5-88.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-88 - Security fix for CVE-2019-16056 Resolves: rhbz1750773 2.7.5-87 - Fix CVE-2018-20852 Resolves: rhbz1741551...
ppp security update
2.4.7-26 - Fixed buffer overflow in the eaprequest and eapresponse functions Resolves: CVE-2020-8597...
sudo security update
1.8.25p1-8.1 - RHEL 8.1.0.Z ERRATUM - CVE-2019-18634 Resolves: rhbz1798092...
ipa security and bug fix update
4.6.5-11.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.5-11.el77.4 - Resolves: 1781153 - After upgrade AD Trust Agents were removed from LDAP - trust upgrade: ensure that host is member of adtrust agents - Resolves: 1777303 - CVE-2019-10195...
virt:ol security, bug fix, and enhancement update
...
firefox security update
60.8.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.8.0-1.0.1 Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
systemd security and bug fix update
239-13.0.1.3 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug: 25897792 - set RemoveIPC=no in logind.conf as default for OL7.2 Orabug: 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry...