8967 matches found
virt:ol security update
qemu-kvm 2.12.0-99.0.1.el82.4 - Added bug30251155-remove-upstream-reference Orabug: 30251155 2.12.0-99.el82.4 - kvm-usb-fix-setuplen-init-CVE-2020-14364.patch bz1869708 - Resolves: bz1869708 CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets rhel-8.2.0...
qemu-kvm security update
0.12.1.2-2.506.el610.8 - kvm-qemu-kvm-QEMU-usb-check-RNDIS-message-length.patch bz1869684 - kvm-qemu-kvm-QEMU-usb-fix-setuplen-init-CVE-2020-14364.patch bz1869684 - Resolves: bz1869684 CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets rhel-6.10.z...
edk2 security update
1:1.3.2-1.el7 - Updates for OVMF/AAVMF Version 1.3.2 including: Fri Jul 31 2020 Aaron Young - Create new 1.3.2 release for OL7 Fri May 01 2020 Aaron Young - Create new 1.3.1 release for OL7 Wed Feb 05 2020 Aaron Young - Create new 1.3 release for OL7 which includes the following fixed CVEs:...
olcne nginx security update
olcne 1.0.8-2 - Added nginx-image resource in module definitions to ensure nginx image upgrading 1.0.8-1 - support upgrading nginx - Adress CVE-2019-9511 - Adress CVE-2018-16845 - Adress CVE-2017-7529 - support upgrading flannel nginx 1.17.7-2 - Changed nginx home dir to /var/lib/nginx for...
firefox security update
78.3.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.3.0-1 - Update to 78.3.0 build1...
olcne nginx security update
olcne 1.1.6-1 - support upgrading nginx - Adress CVE-2019-9511 - Adress CVE-2018-16845 - Adress CVE-2017-7529 - support upgrading flannel nginx 1.17.7-2 - Changed nginx home dir to /var/lib/nginx for consistency 1.17.7-1 - Added Oracle Specific Build Files for nginx - Adress CVE-2019-9511 - Adres...
thunderbird security update
68.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Build with rust-toolset 1.43 68.12.0-1 - Update to 68.12.0 build1...
mysql:8.0 security update
mysql 8.0.21-1 - Rebase to 8.0.21 - Use bundled libzstd and libevent for RHSCL and RHEL-8.0.0 - Check that we have correct versions in bundled Provides - Remove re2 bundled dependency 8.0.20-1 - Rebase to 8.0.20 8.0.19-2 - Specify all perl dependencies 8.0.19-1 - Rebase to 8.0.19 8.0.18-1 - Rebas...
Unbreakable Enterprise kernel security update
5.4.17-2011.6.2 - Revert 'aarch64/BM: config failed, hub doesnt have any ports' Thomas Tai Orabug: 31838351 Orabug: 31844671 - kvm: ioapic: Restrict lazy EOI update to edge-triggered interrupts Paolo Bonzini Orabug: 31839185 Orabug: 31844556 5.4.17-2011.6.1 - nfsd: apply umask on fs without ACL...
Unbreakable Enterprise kernel security update
4.14.35-2025.400.9 - btrfs: merge btrfsfinddevice and finddevice Anand Jain Orabug: 31867382 CVE-2019-18885 - sctp: implement memory accounting on tx path Xin Long Orabug: 31867387 CVE-2019-3874 - Revert 'zram: convert remaining CLASSATTR to CLASSATTRRO' Wade Mealing Orabug: 31867403 CVE-2020-107...
Unbreakable Enterprise kernel security update
4.14.35-1902.306.2 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783150 - sched/fair: Fix low cpu usage with high throttling by removing expiration of cpu-local slices Dave Chiluk Orabug: 31350999 CVE-2019-19922 - sched/fair: Fix throttlelist starvation with low CFS quota Phil Auld...
.NET Core 3.1 security and bugfix update
3.1.108-2.0.1.el82 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.108-2 - Rebuild to fix tests - Resolves: RHBZ1874512 3.1.108-1 - Update to .NET Core Runtime 3.1.8 and SDK 3.1.108 - Resolves: RHBZ1874512...
dovecot security update
1:2.3.8-2.2 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1866755 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1866760 - fix CVE-2020-12674 crash due to assert in RPA implementation 1866767...
go-toolset:ol8 security update
golang 1.13.15-1 - Rebase to 1.13.15 - Related: rhbz1865875 - Related: rhbz1865873 go-toolset 1.13.15-1 - Rebase to 1.13.15 - Related: rhbz1865875 - Related: rhbz1865873...
httpd:2.4 security update
modhttp2 1.11.3-3.1 - Resolves: 1869072 - CVE-2020-9490 httpd:2.4/modhttp2: httpd: Push diary crash on specifically crafted HTTP/2 header...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.49.1 - sunrpc: use SVCNET in svcauthgss functions Vasily Averin Orabug: 31351996 CVE-2018-16884 - sunrpc: use-after-free in svcprocesscommon Vasily Averin Orabug: 31351996 CVE-2018-16884 - afpacket: set defaule value for tmo Mao Wenan Orabug: 31439108 CVE-2019-20812 - vgacon...
librepo security update
1.11.0-3 - Validate paths read from repomd.xml RhBug:1866498...
thunderbird security update
68.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.12.0-1 - Update to 68.12.0 build1...
libcroco security update
0.6.12-4.1 - Fix CVE-2020-12825 Resolves: 1866484...
php:7.3 security, bug fix, and enhancement update
php 7.3.20-1 - update to 7.3.20 1856655 php-pear 1:1.10.9-1 - update PEAR to 1.10.9 - update ArchiveTar to 1.4.7 - update ConsoleGetopt to 1.4.2...
postgresql:10 security and bug fix update
10.14-1 - Rebase to upstream release 10.14 Fixes RHBZ1727803 Fixes RHBZ1741489 Fixes RHBZ1709196 10.13-1 - Rebase to upstream release 10.13 Fixes RHBZ1727803 Fixes RHBZ1741489 Fixes RHBZ1709196...
thunderbird security update
68.12.0-1.0.1 Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.12.0-1 - Update to 68.12.0 build1...
firefox security update
68.12.0-1.0.3 - Build with rust-toolset 1.43 68.12.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Improve bindgen configuration wrt clang bmo1526857 -...
squid:4 security update
libecap squid 7:4.4-8.2 - Resolves: 1872345 - CVE-2020-15811 squid:4/squid: HTTP Request Splitting could result in cache poisoning - Resolves: 1872330 - CVE-2020-15810 squid:4/squid: HTTP Request Smuggling could result in cache poisoning 7:4.4-8.1 - Resolves: 1828368 - CVE-2019-12519 squid:...
dovecot security update
1:2.2.36-6.1 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1871841 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1871843 - fix CVE-2020-12674 crash due to assert in RPA implementation 1871842...
Unbreakable Enterprise kernel security update
4.1.12-124.42.3 - can: peakusb: pcanusbfd: Fix info-leaks to USB devices Tomas Bortoli Orabug: 31351221 CVE-2019-19535 - media: hdpvr: Fix an error handling path in hdpvrprobe Arvind Yadav Orabug: 31352053 CVE-2017-16644 - fs/binfmtmisc.c: do not allow offset overflow Thadeu Lima de Souza Cascard...
coredns cri-o cri-tools etcd flannel kata kata-agent kata-image kata-ksm-throttler kata-proxy kata-runtime kata-shim kubernetes kubernetes-cni kubernetes-cni-plugins kubernetes-dashboard olcne yq security update
coredns 1.3.1-1.0.6 - Address CVE-2020-16845 1.3.1-1.0.5 - Fix image location cri-o 1.14.7-1.0.8 - Address CVE-2020-16845 cri-tools 1.14.0-1.0.6 - Address CVE-2020-16845 etcd 3.3.10-1.0.5 - Address CVE-2020-16845 3.3.10-1.0.4 - Fix image location flannel 0.10.0-2.1.12 - Address CVE-2020-16845...
olcne conmon coredns cri-o cri-tools etcd flannel grafana helm istio kata kata-agent kata-image kata-ksm-throttler kata-proxy kata-runtime kata-shim kubernetes kubernetes-cni kubernetes-cni-plugins kubernetes-dashboard prometheus yq security update
olcne 1.1.5-2 - kubernetes pod subnet flag not honored in flannel configuration 1.1.5-1 - Address CVE-2020-16845 conmon 2.0.10-3 - Address CVE-2020-16845 coredns 1.6.5-1.0.3 - Address CVE-2020-16845 cri-o 1.17.0-1.0.5 - Address CVE-2020-16845 cri-tools 1.17.0-1.0.2 - Address CVE-2020-16845...
firefox security update
78.2.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.2.0-2 - Update to 78.2.0 build1...
firefox security update
68.12.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Thu Aug 20 2020 Jan Horak - Update to 68.12.0 build1...
kernel security and bug fix update
2.6.32-754.33.1.OL6 - Update genkey bug 25599697 2.6.32-754.33.1 - message scsi: mptscsih: Fix read sense data size Tomas Henzl 1824907 2.6.32-754.32.1 - wireless libertas: make lbsibssjoinexisting return error code on rates overflow Jarod Wilson 1776569 - wireless libertas: don't exit from...
docker-cli docker-engine security update
docker-cli 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03 18.09.1-1.0.6 - disable...
kubernetes kubeadm-ha-setup kubernetes-cni kubernetes-cni-plugins security update
kubernetes 1.12.10-1.0.15 - Address CVE-2020-16845 kubeadm-ha-setup 0.0.2-1.0.73 - Fix update to coredns image tag 0.0.2-1.0.72 - Address CVE-2020-16845 kubernetes-cni 0.7.1-1.0.3 - Pin min version of cni-plugins kubernetes-cni-plugins 0.8.6-1.0.3 - Address CVE-2020-16845...
.NET Core 3.1 security and bugfix update
3.1.107-1.0.1 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.107-1 - Update to .NET Core Runtime 3.1.7 and SDK 3.1.107 - Resolves: RHBZ1862593 - Resolves: RHBZ1861113...
Unbreakable Enterprise kernel security update
5.4.17-2011.5.3uek - misc: pvpanic: add crash loaded event zhenwei pi Orabug: 31677096 - misc: pvpanic: move bit definition to uapi header file zhenwei pi Orabug: 31677096 - RDMA/netlink: Do not always generate an ACK for some netlink operations Hakon Bugge Orabug: 31666971 - bnxten: Fix statisti...
Unbreakable Enterprise kernel security update
4.14.35-1902.305.4 - ptp: free ptp device pin descriptors properly Vladis Dronov Orabug: 31710994 4.14.35-1902.305.3 - fs/binfmtelf.c: allocate initialized memory in fillthreadcoreinfo Alexander Potapenko Orabug: 31350638 CVE-2020-10732 - PCI: vmd: Filter resource type bits from shadow register J...
libvncserver security update
0.9.11-15.1 - Fix NVR Related: 1852356 0.9.11-15 - Fix CVE-2017-18922 Resolves: 1852356...
thunderbird security update
68.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.11.0-1 - Update to 68.11.0 build1...
thunderbird security update
68.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.11.0-1 - Update to 68.11.0 build1...
container-tools:ol8 security, bug fix, and enhancement update
buildah 1.14.9-1.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.14.9-1 - update to https://github.com/containers/buildah/releases/tag/v1.14.9 - Related: RHELPLAN-39206 1.14.8-2 - make container-selinux a soft dependency - Related: 1806044 1.14.8-1 - update to...
Unbreakable Enterprise kernel security update
4.1.12-124.41.4 - uek-rpm: Add OL6 shim conflict for new signing key Eric Snowberg Orabug: 31688239 - Revert 'certs: Add Oracle's new X509 cert into the kernel keyring' Eric Snowberg Orabug: 31688223 - blk-mq: don't overwrite rq-mqctx Jens Axboe Orabug: 31457304 - blk-mq: mark ctx as pending at...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.48.1 - crypto: user - fix memory leak in cryptoreport Navid Emamdoost Orabug: 31351641 CVE-2019-19062 - media: rc: prevent memory leak in cx23888irprobe Navid Emamdoost Orabug: 31351673 CVE-2019-19054...
thunderbird security update
68.11.0-1.0.1.el82 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.11.0-1 - Update to 68.11.0 build1...
libvncserver security update
0.9.9-14.1 - Fix CVE-2017-18922 Resolves: 1852509...
postgresql-jdbc security update
9.2.1002-8 - require explicitly jdk-1.7 due to ABI bytecode compatibility 9.2.1002-7 - fixed XXE vulnerability CVE-2020-13692...
postgresql-jdbc security update
8.4.704-4 - require explicitly jdk-1.6 due to ABI bytecode compatibility 8.4.704-3 - fixed XXE vulnerability CVE-2020-13692...
nss and nspr security, bug fix, and enhancement update
nspr 4.25.0-2 - Rebuild 4.25.0-1 - Update to NSPR 4.25 nss 3.53.1-11 - Fix issue with upgradedb where upgradedb expects standard to generate dbm databases, not sql databases default in RHEL8 3.53.1-10 - Disable dh timing test because it's unreliable on s390 3.53.1-9 - Explicitly enable...
firefox security update
68.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Thu Jul 23 2020 Jan Horak - Update to 68.11.0 build1...
firefox security update
68.11.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Thu Jul 23 2020 Jan Horak - Update to 68.11.0 build1...
kernel security and bug fix update
3.10.0-1127.18.2.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 setlease be called without ilock Jeff Layton...