9173 matches found
xorg-x11-server security update
1.20.4-25 - CVE fix for: CVE-2023-6377, CVE-2023-6478 Resolves: https://issues.redhat.com/browse/RHEL-18416 Resolves: https://issues.redhat.com/browse/RHEL-18428...
thunderbird security update
115.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.6.0-1 - Update to 115.6.0 build2...
skopeo security update
2:1.13.3-3 - Rebuild with golang 1.20.10 - Related: Jira:RHEL-2786 2:1.13.3-2 - Rebuild with golang 1.21.3 - Related: Jira:RHEL-2786...
firefox security update
115.5.0-1.0.1 - Update to 115.5.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
curl security update
7.76.1-26 - unify the upload/method handling CVE-2023-28322 - fix host name wildcard checking CVE-2023-28321 7.76.1-25 - adapt the fix of CVE-2023-27535 for RHEL 9 curl 7.76.1-24 - fix SSH connection too eager reuse still CVE-2023-27538 - fix GSS delegation too eager connection re-use...
thunderbird security update
115.4.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.4.1-1 - Update to 115.4.1 build1 115.4.0-3 - Update to 115.4.0 build3 115.4.0-2 - Update to 115.4.0 build2 115.4.0-1 - Update to 115.4.0 build1...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.2.el7 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.3-1 - Update to upstream version 15.3 - Fixes: CVE-2023-2454 CVE-2023-2455 - Resolves: 2207934...
libwebp security update
1.2.0-7 - Added fix for CVE-2023-4863...
openssl security update
3.0.7-16.0.1 - Replace upstream references Orabug: 34340177...
.NET 7.0 security, bug fix, and enhancement update
7.0.110-1.0.1 - Update to .NET SDK 7.0.110 and Runtime 7.0.10 - Resolves: RHBZ2228571...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.11-1.0.1 - Update to 13.11 - Resolves: 2212815 - Update postgresql-setup to 8.7 https://github.com/devexp-db/postgresql-setup/pull/35 - Resolves: 2207933 - Update 1001-Fixed-postgresql-service-network-binding-issue.patch for postgresql-setup...
linux-firmware security update
20230516-999.25.git6c9e0ed5.el9 - Add missing amd-ucode/ files to nano and core rpm Orabug: 35642190 - Add posttrans scriptlet to reload microcode on AMD Orabug: 35636951 - Recreate initramfs for AMD systems Orabug: 35636951 20230516-999.24.git6c9e0ed5.el7 - 8a07fa49 linux-firmware: Update AMD...
linux-firmware security update
20230516-999.25.git6c9e0ed5.el8 - Add missing amd-ucode/ files to nano and core rpm Orabug: 35642190 - Add posttrans scriptlet to reload microcode on AMD Orabug: 35636951 - Recreate initramfs for AMD systems Orabug: 35636951 20230516-999.24.git6c9e0ed5.el7 - 8a07fa49 linux-firmware: Update AMD...
nodejs security, bug fix, and enhancement update
1:16.20.1-1 - Rebase to 16.20.1 Resolves: rhbz2188291 Resolves: CVE-2023-30581 CVE-2023-30588 CVE-2023-30589 CVE-2023-30590 - Replace /usr/etc/npmrc symlink with builtin configuration Resolves: rhbz2177781...
Unbreakable Enterprise kernel security update
4.1.12-124.77.2 - media: dm1105: Fix use after free bug in dm1105remove due to race condition Zheng Wang Orabug: 35514108 CVE-2023-35824 - media: dvb-core: Fix kernel WARNING for blocking operation in waitevent Takashi Iwai Orabug: 35477742 CVE-2023-31084 - media: dvbfrontend: fix locking issues ...
linux-firmware security update
20230516-999.20.git6c9e0ed5.el7 - cd72938cb480 linux-firmware: Update AMD fam17h cpu microcode - 92624e57af69 linux-firmware: Update AMD cpu microcode...
kernel security, bug fix, and enhancement update
4.18.0-477.15.18.OL8 - net: tls: fix possible race condition between dotlsgetsockoptconf and dotlssetsockoptconf Hangyu Hua CVE-2023-28466...
buildah security update
runc 1:1.1.4-1.0.1 - rootless: fix /sys/fs/cgroup mounts to prevent CVE-2023-25809 - rootfs: prohibit symlinks that conflicts with readonlyPaths and/or maskedPaths to prevent CVE-2023-27561 - Prohibit /proc and /sys to be symlinks to prevent CVE-2023-28642 - JIRA: OLDIS-25589...
firefox security update
102.13.0-2.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.13.0-2 - Update to 102.13.0 build2 102.13.0-1 - Update to 102.13.0 build1...
open-vm-tools security update
12.1.5-1.0.2 - CISA Major Incident CVE-2023-20867 open-vm-tools: authentication bypass vulnerability in the vgauth module...
emacs security update
1:24.3-23.1 - Fix htmlfontify.el command injection vulnerability 2175177...
emacs security update
1:26.1-10.2 - Bump release 1:26.1-10.1 - Bump release 1:26.1-10 - Fix ob-latex.el command injection vulnerability 2180586 1:26.1-9 - Fix MH-E mail composition with GNU Mailutils 1991156 1:26.1-8 - Fix ctags local command execute vulnerability 2149386...
go-toolset and golang security update
golang 1.19.9-2 - Fix TestEncryptOAEP and TLS failures in FIPS mode - Resolves: rhbz2204476 1.19.9-1 - Rebase to Go 1.19.9 - Resolves: rhbz2204476 go-toolset 1.19.9-1 - Update to Go 1.19.9 - Related: rhbz2204476...
emacs security and bug fix update
1:26.1-9 - Fix MH-E mail composition with GNU Mailutils 1991156 1:26.1-8 - Fix ctags local command execute vulnerability 2149386...
git security update
2.39.3-1 - Update to 2.39.3 - Resolves: 2188364, 2188373, 2190157, 2190158...
git security update
2.39.3-1 - Update to 2.39.3 - Resolves: 2188352, 2188361, 2189976, 2189977...
frr security, bug fix, and enhancement update
8.3.1-5 - Resolves: 2147522 - It is not possible to run FRR as a non-root user 8.3.1-4 - Resolves: 2144500 - AVC error when reloading FRR with provided reload script 8.3.1-3 - Related: 2129743 - Adding missing rules for vtysh and other daemons 8.3.1-2 - Resolves: 2128738 - out-of-bounds read in t...
dhcp security and enhancement update
12:4.4.2-18.b1 - Fix for CVE-2022-2928 - Fix for CVE-2022-2929 - Use systemd-sysusers for dhcp user and group 2095396...
openssl security update
1.0.1e-59.0.4 - Backport fixes for CVE-2023-0286 Orabug: 35212597...
emacs security update
1:26.1-7.1 - Fix ob-latex.el command injection vulnerability 2180585...
openssl security update
1:1.0.2k-26 - Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName - Resolves: rhbz2176790...
bcel security update
0:5.2-19 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
Unbreakable Enterprise kernel security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
podman security, bug fix, and enhancement update
4.2.0-7.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-7 - update to the latest content of https://github.com/containers/podman/tree/v4.2.0-rhel https://github.com/containers/podman/commit/35c0df3 - Resolves: 2120436 2:4.2.0-6 - update to the latest...
firefox security update
102.5.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-7 - Fix for expat CVE-2022-40674 and non functional webrtc...
libvirt security, bug fix, and enhancement update
8.5.0-7.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 8.5.0-7 - securityselinux: Dont ignore NVMe disks when setting image label rhbz2121441 8.5.0-6 - qemuprocess: Destroy domains namespace after killing QEMU rhbz2121141 8.5.0-5 - rpc: Pass OPENSSLCONF through to ssh invocations...
libtiff security update
4.4.0-2 - Update to version 4.4.0 - Resolves: CVE-2022-0561 CVE-2022-0562 CVE-2022-22844 CVE-2022-0865 CVE-2022-0891 CVE-2022-0924 CVE-2022-0909 CVE-2022-0908 CVE-2022-1354 CVE-2022-1355...
skopeo security and bug fix update
2:1.9.2-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.2 - Related: 2061316 2:1.9.1-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.1 - Related: 2061316 2:1.9.0-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.0 - Related: 2061316...
freetype security update
2.10.4-9 - Guard face-size - Resolves: 2079280 2.10.4-8 - Properly guard faceindex - Resolves: 2079262 2.10.4-7 - Avoid invalid face index - Resolves: 2079271...
Unbreakable Enterprise kernel security update
4.1.12-124.68.3 - Orabug: 34733462 Alok Tiwari 4.1.12-124.68.2 - ptp: fix the race between the release of ptpclock and cdev Vladis Dronov Orabug: 31350707 CVE-2020-10690 - ptp: Fix pass zero to ERRPTR in ptpclockregister YueHaibing Orabug: 31350707 - chardev: add helper function to register char...
gnutls security update
3.6.16-5 - Fix double-free in gnutlspkcs7verify 2109787...
.NET 6.0 security and bugfix update
6.0.110-1.0.1 - Add missing Oracle RIDs 6.0.110-1 - Update to .NET SDK 6.0.110 and Runtime 6.0.10 - Resolves: RHBZ2131327...
squid security update
7:5.2-1.2 - Resolves: 2130251 - CVE-2022-41318 squid: buffer-over-read in SSPI and SMB authentication...
webkit2gtk3 security update
2.36.7-1 - Update to 2.36.7 Related: 2123429...
php:7.4 security update
php-pear 1:1.10.13-1 - update PEAR to 1.10.13 - update ArchiveTar to 1.4.14...
.NET 6.0 security and bugfix update
6.0.109-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.109-1 - Update to .NET SDK 6.0.109 and Runtime 6.0.9 - Resolves: RHBZ2123791...
thunderbird security update
91.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.13.0-1 - Update to 91.13.0 build1...
thunderbird security update
91.10.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Reference oracle-indexhtml within Requires Orabug: 33802044 91.10.0-1 - Update to 91.10.0 build1...
aide security update
0.14-11.0.1 - precalculate buffer size in base64 functions Orabug: 33835910CVE-2021-45417...