8967 matches found
kubernetes security update
kubernetes 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.8-2 - Updated Kubernetes package release version to 1.21.6-2 1.4.8-1 - Upgraded kubernetes-1.21.6 to 1.21.14 - Resolve Kubernetes CVE-2022-3172 for version 1.21 1.4.7-1 - Upgrade Istio from 1.13.5 t...
nodejs:14 security and bug fix update
nodejs 1:14.20.0-2 - Replace with macros with RPM confitionals - Unify configure calls into single command - Refactor bootstrap-related parts - Decouple dependency bundling from bootstrapping - Resolves: RHBZ2111417 1:14.20.0-1 - Rebase to latest version - Resolves: RHBZ2106367 - CVE fixes for...
istio security update
istio 1.13.7-1 - Added Oracle specific files for 1.13.7-1 olcne 1.4.7-1 - Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045 1.4.6-2 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over - Update gen-certs-helper script to skip printin...
grafana security update
7.5.11-3 - resolve CVE-2022-31107 grafana: OAuth account takeover...
libxml2 security update
2.9.7-13.1 - Fix CVE-2022-29824 2082297...
expat security update
2.2.10-12.2 - Improve fix for CVE-2022-25313 - Related: CVE-2022-25313 2.2.10-12.1 - Fix multiple CVEs - Resolves: CVE-2022-25314 - Resolves: CVE-2022-25313...
qt5-qtbase security update
5.15.2-4 - Fix out-of-bounds write in QOutlineMapper::convertPath Resolves: bz1996877...
virt:kvm_utils security update
qemu-kvm 4.2.1.16.el8 - Document CVE-2021-4145 as fixed Mark Kanda Orabug: 33791496 CVE-2021-4145 - migration: Tally pre-copy, downtime and post-copy bytes independently David Edmondson - migration: Introduce ramtransferredadd David Edmondson - ACPI ERST: specification for ERST support Eric...
python-pillow security update
5.1.1-18 - Fixup for CVE-2022-22817 - Security fixes for CVE-2022-22815, CVE-2022-22816 Resolves: rhbz2042522 5.1.1-17 - Fix for CVE-2022-22817 Resolves: rhbz2042527...
openssl security and bug fix update
1:1.1.1k-4 - Fixes bugs in s390x AES code. - Uses the first detected address family if IPv6 is not available - Reverts the changes in https://github.com/openssl/openssl/pull/13305 as it introduces a regression if server has a DSA key pair, the handshake fails when the protocol is not explicitly s...
firefox security update
91.3.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.3.0-1 - Update to 91.3.0 build1...
openssl security update
1.0.2k-22 - fix CVE-2021-23841 openssl: NULL pointer dereference in X509issuerandserialhash - fix CVE-2021-23840 openssl: integer overflow in CipherUpdate - Resolves: rhbz1932132, rhbz1932126...
qt5-qtimageformats security update
5.9.7-2 - libwebp security fixes: Resolves: bz1961742 Resolves: bz1961743 Resolves: bz1961744 Resolves: bz1961745...
poppler and evince security, bug fix, and enhancement update
evince 3.28.4-11 - Add remaining translations of string 'Reset form' - Resolves: 1896006 3.28.4-10 - Add available translations of string 'Reset form' - Resolves: 1896006 3.28.4-9 - Ship evince-devel - Resolves: 1919423 3.28.4-8 - Handle ResetForm action - Resolves: 1889793 poppler 20.11.0-2 -...
postgresql security update
9.2.24-6 - Patch fixing BZ1741488 CVE-2019-10208 9.2.24-5 - Patch fixing CVE-2020-25694 BZ1907894 - Patch fixing CVE-2020-25695 BZ1907895...
dotnet3.1 security and bugfix update
3.1.112-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.112-1 - Update to .NET Core SDK 3.1.112 and Runtime 3.1.12 - Resolves: RHBZ1923377...
kernel security, bug fix, and enhancement update
4.18.0-240.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 =...
dpdk security, bug fix, and enhancement update
19.11.3-1 - Rebase DPDK to 19.11.3 1868708 19.11.2-1 - Rebase DPDK to 19.11.2 1836830, 1837024, 1837030, 1837022 19.11.1-1 - Rebase DPDK to 19.11.1 1824905 - Remove dpdk-pmdinfo.py 1801361 - Add Requires: rdma-core-devel libmnl-devel on x8664 for dpdk-devel 1813252...
edk2 security, bug fix, and enhancement update
20200602gitca407c7246bf-3.el8 - edk2-UefiCpuPkg-PiSmmCpuDxeSmm-pause-in-WaitForSemaphore-.patch bz1861718 - Resolves: bz1861718 Very slow boot when overcommitting CPU 20200602gitca407c7246bf-2.el8 - edk2-OvmfPkg-QemuKernelLoaderFsDxe-suppress-error-on-no-k.patch bz1844682 -...
firefox security update
78.4.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.0-1 - Update to 78.4.0 build2...
glib2 and ibus security and bug fix update
glib2 2.56.1-7 - Backport patch to limit access to files when copying CVE-2019-12450 Resolves: 1722099 2.56.1-6 - Backport patches for GDBus auth Resolves: 1777221 ibus 1.5.17-11 - Resolves: 1750835 - Fix CVE-2019-14822 missing authorization allows...
libmspack security update
0.5-0.8.alpha - Fix for CVE-2019-1010305 resolves: rhbz1736744...
libxslt security update
1.1.28-6.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.28-6 - Fix CVE-2019-18197 1775516 - Fix CVE-2019-11068 1715731...
freeradius security and bug fix update
3.0.13-15 - Fixes EAP-PWD: DoS issues due to multithreaded BNCTX access Resolves: bz1818808 3.0.13-14 - Fixes receiving of multiple RADIUS packets under load Resolves: bz1630684 3.0.13-13 - Fixes logging of cleartext pap password Resolves: bz1677435 3.0.13-12 - Fixes paircompare with attribute...
thunderbird security update
68.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Build with rust-toolset 1.43 68.12.0-1 - Update to 68.12.0 build1...
thunderbird security update
68.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.11.0-1 - Update to 68.11.0 build1...
firefox security update
68.6.0-1.0.1.el610 - fix LDLIBRARYPATH - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.6.0-1 - Update to 68.6.0 build1 68.5.0-3 - Added fix for rhbz1805667 - Enabled mzbz@1170092 - Firefox prefs at /etc Fri...
firefox security update
68.5.0-2.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Fri Feb 07 2020 Jan Horak - Update to 68.5.0 build2 Wed Feb 05 2020 Jan Horak - Update to 68.5.0 build1 Wed Jan 08 2020 Jan Horak - Update to 68.4.1esr build1 Fri Jan 03 2020 Jan Horak ...
grafana security update
6.3.6-2 - fix CVE-2020-13379...
libreoffice security and bug fix update
6.0.6.1-20.0.1.el8 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:6.0.6.1-20 - Resolves: rhbz1743958 CVE-2019-9849, etc. - Resolves: rhbz1648281 Junk character gets added when some emojis are...
curl security and bug fix update
7.29.0-57.0.1 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitiv...
net-snmp security and bug fix update
1:5.7.2-47 - revert calculation of free space 1779609 1:5.7.2-46 - fix sha224 and sha384 declaration check 1774693 1:5.7.2-45 - fix memory leak introduced by fix of snmp v3 traps forwarding 1751195 1:5.7.2-44 - add support for glusterfs 1316386 - change services to start after network-online.targ...
SDL security update
1.2.15-15 - Fix CVE-2019-13616 a heap buffer over-read in BlitNtoN bug 1747237 - Resolves: rhbz1756276...
curl security and bug fix update
7.61.1-11 - rebuild with updated annobin to prevent Execshield RPMDiff check from failing 7.61.1-10 - fix SMTP end-of-response out-of-bounds read CVE-2019-3823 - fix NTLMv2 type-3 header stack buffer overflow CVE-2019-3822 - fix NTLM type-2 out-of-bounds buffer read CVE-2018-16890 - xattr: strip...
libarchive security update
3.1.2-12 - fixed use after free in RAR decoder 1700749 - fixed double free in RAR decoder 1700748 3.1.2-11 - fix out-of-bounds read within lhareaddatanone CVE-2017-14503 - fix crash on crafted 7zip archives CVE-2019-1000019 - fix infinite loop in ISO9660 CVE-2019-1000020...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.37.1 - Input: gtco - bounds check collection indent level Grant Hernandez Orabug: 30074414 CVE-2019-13631...
firefox security update
60.7.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.0-1 - Manaul CentOS Debranding 60.7.0-1 - Updated to 60.7.0 ESR 60.6.3-1 - Updated to 60.6.3 ESR 60.6.2-1 - Updated to 60.6....
systemd security and bug fix update
239-13.0.1.3 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug: 25897792 - set RemoveIPC=no in logind.conf as default for OL7.2 Orabug: 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry...
oraclelinux-release-el6 security update
1.0-5 - Fix olyumconfigure.sh OraBug 29241080...
keepalived security update
1.3.5-8 - Fixed patch that was incorrectly removed 1652694 1.3.5-7 - Fix buffer overflow when parsing HTTP status codes 1652694...
qemu security update
15:3.0.0-3.el7 - monitor: guard iothread access by mon-useiothread Wolfgang Bumiller Orabug: 29046045 - monitor: delay monitor iothread creation Wolfgang Bumiller Orabug: 29010480 - Revert 'qmp: isolate responses into io thread' Marc-Andre Lureau Orabug: 29010480 - usb-mtp: outlaw slashes in...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
libvirt security and bug fix update
3.9.0-14.el75.4 - lxc: Drop useless check in live device update rhbz1557922 - Pass oldDev to virDomainDefCompatibleDevice on device update rhbz1557922 - qemu: Fix updating device with boot order rhbz1557922 - conf: Fix crash in virDomainDefCompatibleDevice rhbz1557922 - vmx: check for...
libvorbis security update
1.2.3-5.1 - Backport fix for CVE-2018-5146 1.2.3-5 - fix CVE-2012-0444 787077...
libvirt security update
0.10.2-62.0.1.el69.1 - Replace docs/et.png in tarball with blank image 0.10.2-62.el69.1 - util: Implement virFileReadHeaderFD CVE-2017-5715 - util: add virFileReadHeaderQuiet wrapper around virFileReadHeaderFD CVE-2017-5715 - util: introduce virHostCPUGetMicrocodeVersion CVE-2017-5715 - conf:...
pidgin security, bug fix, and enhancement update
2.10.11-5 - Drop MXit support in RHEL Resolves: 1439296 2.10.11-4 - Silence -Wsign-compare - Rename the previous patch for consistency Resolves: 1445921, 1446368 2.10.11-3 - Avoid a use-after-free in an error path Resolves: 1445921 2.10.11-2 - Add patch for CVE-2017-2640 Resolves: 1431022 2.10.11...
sudo security update
1.7.2p1-29.0.1 - Fix CVE-2017-1000367...
qemu-kvm security update
0.12.1.2-2.491.el68.7 - kvm-cirrus-fix-patterncopy-checks.patch bz1420486 bz1420488 - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch bz1420486 bz1420488 - kvm-cirrus-add-blitisunsafe-call-to-cirrusbitbltcput.patch bz1420486 bz1420488 - Resolves: bz1420486 EMBARGOED CVE-2017-2620...
bind security update
32:9.9.4-38.2 - Fix CVE-2017-3135 ISC change 4557 - Fix and test caching CNAME before DNAME ISC change 4558...
util-linux security, bug fix, and enhancement update
2.23.2-33.0.1 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33 - improve patch for 1007734 libblkid realpaths 2.23.2-32 - improve patch for chrt1 deadline support 1298384 - fix 1007734 - blkid shows devices as...