9172 matches found
firefox security update
102.11.0-2.0.1 - Updated homepages to use https Orabug: 34648274 102.11.0-2 - Update to 102.11.0 build2 102.11.0-1 - Update to 102.11.0 build1...
nodejs and nodejs-nodemon security, bug fix, and enhancement update
nodejs 1:16.19.1-1 - Rebase to 16.19.1 - Resolves: rhbz2153714 - Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920 - Resolves: CVE-2022-25881 CVE-2022-4904 nodejs-nodemon 2.0.20-3 - Patch bundled glob-parent - Resolves: CVE-2021-35065...
buildah security and bug fix update
1.29.1-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 1:1.29.1-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.29 https://github.com/containers/buildah/commit/7fa17a8 - Related: 2124478 1:1.29.0-3 - update to the lates...
libtiff security update
4.0.9-26 - Fix various CVEs - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 CVE-2022-2953 4.0.9-25 - Fix CVE-2022-2867 2118857 - Fix CVE-2022-2868 2118882 - Fix CVE-2022-2869 2118878 4.0.9-24 - Fix CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 - Resolves: 2103222...
webkit2gtk3 security update
2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153735...
bcel security update
0:5.2-19 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
krb5 security update
1.18.2-22.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1. - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140967...
Unbreakable Enterprise kernel security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
libvirt security, bug fix, and enhancement update
8.5.0-7.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 8.5.0-7 - securityselinux: Dont ignore NVMe disks when setting image label rhbz2121441 8.5.0-6 - qemuprocess: Destroy domains namespace after killing QEMU rhbz2121141 8.5.0-5 - rpc: Pass OPENSSLCONF through to ssh invocations...
libtiff security update
4.4.0-2 - Update to version 4.4.0 - Resolves: CVE-2022-0561 CVE-2022-0562 CVE-2022-22844 CVE-2022-0865 CVE-2022-0891 CVE-2022-0924 CVE-2022-0909 CVE-2022-0908 CVE-2022-1354 CVE-2022-1355...
ol8addon security update
golang 1.17.13-1.0.1 - Update tarball to 1.17.12 - Add patches between Go 1.17.12 and Go 1.17.13 - Reviewed-by: David Faust 1.17.12-1 - Update Go to version 1.17.12 - Resolves: rhbz2109182 go-toolset 1.17.13-1 - Set version to correspond to the matching build golang version...
Unbreakable Enterprise kernel security update
4.1.12-124.68.3 - Orabug: 34733462 Alok Tiwari 4.1.12-124.68.2 - ptp: fix the race between the release of ptpclock and cdev Vladis Dronov Orabug: 31350707 CVE-2020-10690 - ptp: Fix pass zero to ERRPTR in ptpclockregister YueHaibing Orabug: 31350707 - chardev: add helper function to register char...
firefox security update
102.4.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.4.0-1 - Update to 102.4.0 build1...
thunderbird security update
102.3.0-4.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.3.0-4 - Fix for expat CVE-2022-40674...
.NET 6.0 security and bugfix update
6.0.110-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.110-1 - Update to .NET SDK 6.0.110 and Runtime 6.0.10 - Resolves: RHBZ2131328...
php:7.4 security update
php-pear 1:1.10.13-1 - update PEAR to 1.10.13 - update ArchiveTar to 1.4.14...
.NET 6.0 security and bugfix update
6.0.109-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.109-1 - Update to .NET SDK 6.0.109 and Runtime 6.0.9 - Resolves: RHBZ2123791...
firefox security update
91.13.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.13.0-1 - Update to 91.13.0 build1...
thunderbird security update
91.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.13.0-1 - Update to 91.13.0 build1...
cups security update
1:2.3.3op2-13.1 - CVE-2022-26691 cups: authorization bypass when using 'local' authorization...
thunderbird security update
91.10.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Reference oracle-indexhtml within Requires Orabug: 33802044 91.10.0-1 - Update to 91.10.0 build1...
.NET 5.0 security and bugfix update
5.0.212-1.0.1 - Support AArch64 on Oracle Linux Orabug: 32738620 - Include new Oracle Linux runtime IDs Add 1000-Add-missing-OL-RIDs.patch 5.0.212-1 - Update to .NET SDK 5.0.212 and Runtime 5.0.15 - Resolves: RHBZ2060496...
aide security update
0.14-11.0.1 - precalculate buffer size in base64 functions Orabug: 33835910CVE-2021-45417...
rpm security update
4.14.3-19.2 - Address covscan issues in binding sigs validation patch 2022537 4.14.3-19.1 - Validate and require subkey binding sigs on PGP pubkeys 2022537 - Fixes CVE-2021-3521...
jasper security update
2.0.14-5 - Fix CVE-2021-26927 1933860 - Fix CVE-2021-26926 1922316 - Fix CVE-2021-3272 1922283 - Fix CVE-2020-27828 1905692...
firefox security update
91.2.0-4.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.2.0-4 - Disable webrender on the s390x due to wrong colors: rhbz2009503 91.2.0-3 - Update to 91.2.0...
curl security update
7.61.1-18.el84.1 - fix bad connection reuse due to flawed path name checks CVE-2021-22924 - disable metalink support to fix the following vulnerabilities CVE-2021-22923 - metalink download sends credentials CVE-2021-22922 - wrong content via metalink not discarded...
poppler and evince security, bug fix, and enhancement update
evince 3.28.4-11 - Add remaining translations of string 'Reset form' - Resolves: 1896006 3.28.4-10 - Add available translations of string 'Reset form' - Resolves: 1896006 3.28.4-9 - Ship evince-devel - Resolves: 1919423 3.28.4-8 - Handle ResetForm action - Resolves: 1889793 poppler 20.11.0-2 -...
postgresql security update
9.2.24-6 - Patch fixing BZ1741488 CVE-2019-10208 9.2.24-5 - Patch fixing CVE-2020-25694 BZ1907894 - Patch fixing CVE-2020-25695 BZ1907895...
dotnet3.1 security and bugfix update
3.1.112-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.112-1 - Update to .NET Core SDK 3.1.112 and Runtime 3.1.12 - Resolves: RHBZ1923377...
xorg-x11-server security update
1.17.4-18.0.1 - Fix regression from the patch for Orabug 27204421 which crashes Xvfb Orabug: 28485058 - Fix X consumes 100% CPU if messagebus restarted Orabug: 27204421 - Fix X server failure in FIPS mode Orabug: 22866111 1.17.4-18 - CVE fixes for: CVE-2020-14345 1872388, CVE-2020-14346 1872392,...
containerd security update
1.2.14-1.0.1 - BUILDINFO: commit=259ae80da592d4f6b5e3cdc87202d36bc86a3579 - Addresses CVE-2020-15157 1.2.14-1.0.0 - Added Oracle specific build files...
firefox security update
78.4.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.0-1 - Update to 78.4.0 build2...
libxslt security update
1.1.28-6.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.28-6 - Fix CVE-2019-18197 1775516 - Fix CVE-2019-11068 1715731...
cloud-init security, bug fix, and enhancement update
19.4-7.0.3 - Add conditional restart of NetworkManager for cloud-final. Orabug: 31965645 - Correct postinstall upgrade cloud-init.service mismerge order. 19.4-7.0.1 - Add Oracle Linux variant to known distros - Add cloud-init hotplug event handling support Orabug: 30485135 - Oracle data source...
python-pillow security update
2.0.0-21gitd1c6db8 - Fix for CVE-2020-5313 Resolves: rhbz1789532 2.0.0-20gitd1c6db8 - Combined fixes for CVE-2020-5312 and CVE-2019-16865 Resolves: rhbz1789533 Resolves: rhbz1774066 2.0.0-19gitd1c6db8 - Reenabled webp support on little endian archs. 2.0.0-18gitd1c6db8 - Disabled webp support on...
thunderbird security update
68.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Build with rust-toolset 1.43 68.12.0-1 - Update to 68.12.0 build1...
firefox security update
68.3.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 68.3.0-1 - Update to 68.3.0 ESR 68.2.0-4 - Added patch for TLS 1.3 support. 68.2.0-3 - Rebuild 68.2.0-2 - Rebuild 68.2.0-1 - Update to 68.2.0 ESR 68.1.0-6 - Enable system nss on RHEL6...
curl security update
7.61.1-12 - double free due to subsequent call of realloc CVE-2019-5481 - fix heap buffer overflow in function tftpreceivepacket CVE-2019-5482 - fix TFTP receive buffer overflow CVE-2019-5436...
rsyslog security, bug fix, and enhancement update
8.1911.0-3 RHEL 8.2.0 ERRATUM - added patch reverting rejecting expired certs by default resolves: rhbz1782353 - added patch silencing false errors on config.enabled statement resolves: rhbz1659383 8.1911.0-2 RHEL 8.2.0 ERRATUM - cleaned old patches, fixed patch names resolves: rhbz1740683...
libjpeg-turbo security update
1.5.3-10 - Fix CVE-2018-14498 1687477 1.5.3-9 - Fix LDFLAGS 1688397 1.5.3-8 - Support running with Intel CET 1688397...
squid:4 security update
libecap 1.0.1-2 - Resolves: 1696354 - Ensure modular RPM upgrade path squid 7:4.4-5 - Resolves: 1744672 - CVE-2019-12527 squid:4/squid: heap-based buffer overflow in HttpHeader::getAuth...
libarchive security update
3.1.2-12 - fixed use after free in RAR decoder 1700749 - fixed double free in RAR decoder 1700748 3.1.2-11 - fix out-of-bounds read within lhareaddatanone CVE-2017-14503 - fix crash on crafted 7zip archives CVE-2019-1000019 - fix infinite loop in ISO9660 CVE-2019-1000020...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.37.1 - Input: gtco - bounds check collection indent level Grant Hernandez Orabug: 30074414 CVE-2019-13631...
ruby:2.5 security update
ruby 2.5.3-104 - Prohibit arbitrary code execution when installing a malicious gem. Resolves: CVE-2019-8324 rubygem-mongo 2.5.1-2 - Disable tests to fix FTBFS by dropped MongoDB module. Resolves: rhbz1710863 rubygem-pg 1.0.0-2 - Assign a random testing port...
firefox security update
60.7.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.0-1 - Manaul CentOS Debranding 60.7.0-1 - Updated to 60.7.0 ESR 60.6.3-1 - Updated to 60.6.3 ESR 60.6.2-1 - Updated to 60.6....
X.org X11 security, bug fix, and enhancement update
freeglut 3.0.0-8 - HTTPS URLs - Pin soname to libglut.so.3 in the %files glob 3.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 3.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 3.0.0-5 - Rebuilt for...
spamassassin security update
3.4.0-4 - Add missing Requires for perlXSLoader and perlExtUtils::MakeMaker, - which are no longer auto-generated due to a expected change in rpm-build - Related: rhbz1632998 3.4.0-3 - Fix CVE-2018-11781 - Local user code injection in the meta rule syntax - Fix CVE-2017-15705 - Certain unclosed...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
firefox security update
52.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.7.0-1 - Update to 52.7.0 ESR...