8967 matches found
Important: kernel security and bug fix update
2.6.9-67.0.4.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 - remove patch sysrq-b that queues upto keventd thread orab...
Moderate: httpd security update
2.0.52-38.ent.2.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent.2 - add security fix for CVE-2007-6388 427236 - add security fix for modproxyftp UTF-7 XSS 427743 2.0.52-38.ent.1 - add security fixes for CVE-2007-4465, CVE-2007-5000 421611...
Moderate: httpd security update
2.2.3-12.el51.3.0.1 - use oracle index page oracleindex.html, update vstring and distro 2.2.3-12.el51.3 - further update to backport for CVE-2007-6421 427240 2.2.3-12.el51.2 - updated backport for CVE-2007-6421 427240 2.2.3-11.el51.1 - add security fixes for CVE-2007-6388, CVE-2007-6421 and...
Important: xpdf security update
2.02-11.el3 - Resolves: 356791, CVE-2007-4033 CVE-2007-4352 CVE-2007-5392 CVE-2007-5393 xpdf various flaws 2.02-10.RHEL3 - Resolves: bz248198, CVE-2007-3387 xpdf integer overflow...
Important: openssl security update
0.9.8b-8.3.2 - more DTLS fixes 321211 0.9.8b-8.3.1 - fix CVE-2007-3108 - side channel attack on private keys 322891 - fix CVE-2007-5135 - off-by-one in SSLgetsharedciphers 309871 - fix CVE-2007-4995 - out of order DTLS fragments buffer overflow 321211...
Important: xen security update
3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest escape - CVE-2007-4993 rhbz 302821...
Moderate: tar security update
1.14-12.5.1.RHEL4 - CVE-2007-4131 tar directory traversal vulnerability 251921...
Moderate: bind security update
9.2.4-27.0.1.el4 - fixed cryptographically weak query id generator CVE-2007-2926...
Important: xorg-x11 security update
6.8.2-1.EL.13.37.0.1 - Add Enterprise Linux detection 6.8.2-1.EL.13.37.7 - Add cve-2007-1351.patch 234056 6.8.2-1.EL.13.37.6 - Add cve-2007-1003.patch 233000 - Add int-overflow.patch 231693 6.8.2-1.EL.13.37.5 - Add xorg-x11-6.8.2-sorted-xkbcomp-dirs.patch to fix rpmdiff multilib failure...
Critical seamonkey security update
1.0.7-0.1.el4.1 - Replace default bookmarks and prefs 1.0.7-0.1.el4 - Update to 1.0.7 RC...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
kernel security update
5.14.0-427.28.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
python3.11-urllib3 security update
1.26.12-2 - Security fix for CVE-2023-43804 Resolves: RHEL-11996...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.331.7.el7 - Revert 'tracing/trigger: Fix to return error if failed to alloc snapshot' Siddh Raman Pant - Revert 'selftests: mm: fix maphugetlb failure on 64K page size systems' Harshit Mogalapalli Orabug: 36584568 - Revert 'net/mlx5: Enable SW-defined RoCEv2 UDP source port' Arumugam...
python3.11 security update
3.11.7-1 - Rebase to 3.11.7 Resolves: RHEL-20233 3.11.5-2 - Security fix for CVE-2023-27043 Resolves: RHEL-21325...
java-11-openjdk security update
1:11.0.23.0.9-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.23.0.9-2 - Fix 11.0.22 release date in NEWS 1:11.0.23.0.9-1 - Update to jdk-11.0.23+9 GA - Update release notes to 11.0.23+9 - Switch to GA mode for release - Require tzdata 2024a due to upstream inclusion of JDK-8322725 - On...
java-11-openjdk security update
1:11.0.23.0.9-2.0.1 - link atomic for ix86 build 1:11.0.23.0.9-2 - Fix 11.0.22 release date in NEWS - Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds 1:11.0.23.0.9-1 - Update to jdk-11.0.23+9 GA - Update release notes to 11.0.23+9 - Switch to GA mode for release - Require tzdat...
squid security update
7:3.5.20-17.0.1 - Mutiple CVE fixes for squid Orabug: 33146289 - Resolves: CVE-2021-28651 squid: Bug 5104: Memory leak in RFC 2169 response parsing 778 - Resolves: CVE-2021-28652 squid: Bug 5106: Broken cache manager URL parsing 788 - Resolves: CVE-2021-31806,31807,31808 squid: Handle more Range...
varnish security update
6.6.2-4.1 - Resolves: RHEL-30387 - varnish: HTTP/2 Broken Window Attack may result in denial of service CVE-2024-30156 6.6.2-4 - Add parameters h2rstallowance and h2rstallowanceperiod to mitigate CVE-2023-44487 - Resolves: RHEL-12817...
thunderbird security update
115.9.0-1.0.1 - Add Oracle prefs 115.9.0-1 - Update to 115.9.0 build1 - Fix expat CVE-2023-52425...
squid security update
7:5.5-6.0.1.8 - Rebuild with release bump 7:5.5-6.8 - Resolves: RHEL-19555 - squid: denial of service in HTTP request parsing CVE-2023-50269 7:5.5-6.7 - Resolves: RHEL-28614 - squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 7:5.5-6.6 - Resolves: RHEL-26091 - squid: denial of...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 cri-o 1.26.4-1 - Added Oracle Specific Files for cri-o - Cherry-picked upstream commits for OCPBUGS-17150: oci: simplify stopping code https://github.com/cri-o/cri-o/pull/7185 - Fixed CVE-2023-39325: bump golang.org/x/net to v0.17.0 cri-tools 1.26.1-4 -...
golang security update
1.20.12-1 - Rebase to 1.20.12 - Fix CVE-2023-45285 CVE-2023-39326...
edk2 security update
20220126gitbb1bba3d77-6.el89.6 - edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch RHEL-21840 RHEL-21842 - edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Un.patch RHEL-21840 RHEL-21842 - Resolves: RHEL-21842 CVE-2023-45230 edk2: Buffer overflow in the DHCPv6 client via a lon...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 cri-o 1.25.5-1 - Added Oracle Specifile Files for cri-o cri-tools 1.25.0-3 - Resolve CVE-2023-39326 flannel-cni-plugin 1.0.1-4 - Resolve CVE-2023-39326 helm 3.11.1-3 - address CVE-2023-39326 istio 1.16.7-3 - Updated Golang to 1.20.12 to address CVE...
gnutls security update
3.6.16-8.1fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 - Allow bigger known RSA modulus sizes when calling rsageneratefips1864keypair directly Orabug: 33200526 - Change Epoch from 1 to 10...
sqlite security update
3.34.1-7 - Fixes CVE-2023-7104...
squid:4 security update
libecap squid 7:4.15-7.5 - Fix squid: Denial of Service in SSL Certificate validation CVE-2023-46724 - Fix squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728 - Fix squid: Buffer over-read in the HTTP Message processing feature CVE-2023-49285 - Fix squid: Incorrect Check of...
xorg-x11-server security update
1.20.4-25 - CVE fix for: CVE-2023-6377, CVE-2023-6478 Resolves: https://issues.redhat.com/browse/RHEL-18416 Resolves: https://issues.redhat.com/browse/RHEL-18428...
libxml2 security update
2.9.13-5 - Fix CVE-2023-39615 RHEL-5180...
containernetworking-plugins security update
1:1.3.0-6 - rebuild for following CVEs: CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 1:1.3.0-5 - fix path to dhcp service - Resolves: RHEL-3140...
firefox security update
115.5.0-1.0.1 - Update to 115.5.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
python3.11 security update
3.11.5-1 - Rebase to 3.11.5 - Security fixes for CVE-2023-40217 and CVE-2023-41105 Resolves: RHEL-3047, RHEL-3267 3.11.4-4 - Add the importallmodulespy311.py file for the python3.11-rpm-macros subpackage Resolves: rhbz2207631 3.11.4-3 - Fix symlink handling in the fix for CVE-2023-24329 Resolves:...
java-17-openjdk security and bug fix update
1:17.0.9.0.9-2.0.1 - Update to jdk-17.0.9+9 GA - Update release notes to 17.0.9+9 - OpenJDK: memory corruption issue on x8664 with AVX-512 JDK-8317121 CVE-2023-22025 - OpenJDK: certificate path validation issue during client authentication JDK-8309966 CVE-2023-22081 - OpenJDK: Additional zip64...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.2.el7 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...
Unbreakable Enterprise kernel security update
5.15.0-106.131.4 - jbd2: check 'jh-btransaction' before removing it from checkpoint Zhihao Cheng - jbd2: fix checkpoint cleanup performance regression Zhang Yi - scsi: qla2xxx: Fix TMF leak through Quinn Tran - scsi: qla2xxx: Fix command flush during TMF Quinn Tran - scsi: qla2xxx: Limit TMF to 8...
bind security update
32:9.11.36-8.2 - stack exhaustion in control channel code may lead to DoS CVE-2023-3341...
Unbreakable Enterprise kernel security update
5.15.0-105.125.6.2.2 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824297 - netfilter: nftables: exthdr: fix 4-byte stack OOB write Florian Westphal Orabug: 35824297 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824297 - netfilter: xtu3...
libwebp security update
1.2.0-7 - Added fix for CVE-2023-4863...
openssl security update
3.0.7-16.0.1 - Replace upstream references Orabug: 34340177...
kernel security update
2.6.32-754.35.1.0.10.el6.OL6 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds CVE-2022-4378 Orabug: 35304147 - proc: avoid integer type confusion in getproclong Linus Torvalds CVE-2022-4378 Orabug: 35304147...
firefox security update
102.14.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.14.0-1 - Update to 102.14.0 build1...
java-11-openjdk security and bug fix update
1:11.0.20.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.20.0.8-2 - Bump release number so we are newer than 9.0 - Related: rhbz2221106 1:11.0.20.0.8-1 - Update to jdk-11.0.20.0+8 GA - Update release notes to 11.0.20.0+8 - Drop local inclusion of JDK-8274864 & JDK-8305113 as they a...
ruby:2.7 security, bug fix, and enhancement update
ruby 2.7.8-139 - Upgrade to Ruby 2.7.8. Resolves: rhbz2149262 - Fix HTTP response splitting in CGI. Resolves: CVE-2021-33621 - Fix ReDoS vulnerability in URI. Resolves: CVE-2023-28755 - Fix ReDoS vulnerability in Time. Resolves: CVE-2023-28756 rubygem-abrt 0.4.0-1 - Update to abrt 0.4.0. Resolves...
open-vm-tools security update
12.1.5-1.0.2 - CISA Major Incident CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module...
emacs security update
1:24.3-23.1 - Fix htmlfontify.el command injection vulnerability 2175177...
grafana-pcp security update
3.2.0-3 - resolve CVE-2022-27664 grafana-pcp: golang: net/http: handle server errors after sending GOAWAY...
git security update
2.39.3-1 - Update to 2.39.3 - Resolves: 2188352, 2188361, 2189976, 2189977...
buildah security and bug fix update
1.29.1-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 1:1.29.1-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.29 https://github.com/containers/buildah/commit/7fa17a8 - Related: 2124478 1:1.29.0-3 - update to the lates...
Image Builder security, bug fix, and enhancement update
cockpit-composer 45-1.0.1 - Make per page documentation links point to Oracle Linux Orabug: 32013095, Orabug:34398922 45-1 - New upstream release 44-1 - New upstream release 43-1 - New upstream release 42-1 - New upstream release osbuild 81-1 - New upstream release 80-1 - New upstream release 79-...