9173 matches found
containerd security update
1.3.9-2 - BUILDINFO: commit=4737bd3784f16c18474a60d8678371108f995d7c - Addresses CVE-2020-15257 1.3.9-1 - Added Oracle specific build files...
Unbreakable Enterprise kernel security update
4.1.12-124.45.6 - qla2xxx: disable target reset during link reset and update version Quinn Tran Orabug: 32095664 - scsi: qla2xxx: Fix early srb free on abort Quinn Tran Orabug: 32095664 - scsi: qla2xxx: Fix comment in MODULEPARMDESC in qla2xxx Masanari Iida Orabug: 32095664 - scsi: qla2xxx: Enabl...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.51.2 - Revert 'kexec: Validate pe files against the systemlacklistkeyring' John Donnelly Orabug: 32171714 CVE-2020-26541 CVE-2020-26541 3.8.13-118.51.1 - usb: cdc-acm: make sure a refcount is taken early enough Oliver Neukum Orabug: 31351090 CVE-2019-19530 - kexec: Validate ...
libvirt security update
5.7.0-21.el7 - exadata: Fix the validation when defining domain groups Wim ten Have Orabug: 32085856 - Revert 'qemu: dont take agent and monitor job for shutdown' Menno Lageman Orabug: 32080283 - Revert 'qemu: dont hold a monitor and agent job for reboot' Menno Lageman Orabug: 32080283 - Revert...
firefox security update
78.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.5.0-1 - Update to 78.5.0 build1...
firefox security update
78.5.0-1.0.1 - Fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 78.5.0-1 - Update to 78.5.0 build1...
thunderbird security update
78.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.5.0-1 - Update to 78.5.0 build3...
thunderbird security update
78.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.5.0-1 - Update to 78.5.0 build3...
firefox security update
78.5.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.5.0-1 - Update to 78.5.0 build1...
thunderbird security update
78.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.5.0-1 - Update to 78.5.0 build3...
resource-agents security update
4.1.1-68 - azure-lb: fix redirect issue Resolves: rhbz1850778 4.1.1-67 - gcp-vpc-move-vip: add support for multiple alias IPs Resolves: rhbz1846733 4.1.1-65 - azure-events: handle exceptions in urlopen Resolves: rhbz1845574 4.1.1-64 - nfsserver: fix NFSv4-only support - azure-events: new resource...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
thunderbird security update
...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
thunderbird security update
78.4.3-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.3-1 - Update to 78.4.3...
net-snmp security update
1:5.5-60.0.1 - Add Oracle ACFS to hrStorage John Haxby orabug 18510373 1:5.5-60.el6.2 - fix CVE-2020-15862 1875960...
bluez security update
5.50-4 + bluez-5.50-4 - Fixing CVE-2020-0556...
kernel security update
...
thunderbird security update
78.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.0-1 - Update to 78.4.0 build1 - Disabled telemetry 78.3.1-1 - Update to 78.3.1 build1...
bind security and bug fix update
32:9.11.4-26.P2.2 - Fix unsupported algorithms validation rh1769876 32:9.11.4-26.P2.1 - Fix tsig-request verify CVE-2020-8622 - Prevent PKCS11 daemon crash on crafted packet CVE-2020-8623 - Correct update-policy type subdomain to match documentation CVE-2020-8624...
microcode_ctl security, bug fix and enhancement update
4:20200609-2.20201027.1.0.1 - add support for UEK6 kernels - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 4:20200609-2.20201027.1 - Update Intel CPU microcode to microcode-20201027 release, addresses CVE-2020-8694, CVE-2020-8695, CVE-2020-8696, CVE-2020-8698 1893265, 1893253,...
microcode_ctl security, bug fix, and enhancement update
3:1.17-33.31.0.1 - recognize the 'force-intel' file path available on EL7+ orabug 31655792 - disable live load during %post due to UEK4 rendezvous timeouts orabug 31655792 - merge Oracle changes for early load via dracut - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 - remove...
microcode_ctl security, bug fix, and enhancement update
2:2.1-73.2.0.1 - for Intel, do not trigger load if on-disk microcode is not an update Orabug: 30634727 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early and late load for 5.4.17-...
firefox security update
78.4.1-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.1-1 - Update to 78.4.1 78.4.0-3 - Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading 78.4.0-2 - Enable addon sideloading 78.4.0-1 - Update to...
Unbreakable Enterprise kernel security update
2.6.39-400.327.1 - USB: serial: omninet: fix reference leaks at open Johan Hovold Orabug: 30484765 CVE-2017-8925 - x8632, entry: Store badsys error code in %eax Sven Wegener Orabug: 30783266 CVE-2014-4508 CVE-2014-4508 - x8632, entry: Do syscall exit work on badsys CVE-2014-4508 Andy Lutomirski...
firefox security update
78.3.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 78.3.0 - Update to 78.3.0 build1 78.2.0-3 - Update to 78.2.0 build1...
thunderbird security update
78.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.0-1 - Update to 78.4.0 build1 - Disabled telemetry 78.3.1-1 - Update to 78.3.1 build1 78.3.0-3 - Update to 78.3.0 build1 - Remove librdp.so as long as we cannot ship it in RHEL 78.2.1-1 -...
firefox security update
78.4.1-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Tue Nov 10 2020 [email protected] - 78.4.1-1 - Update to 78.4.1 - Filtering nss/nspr libs 78.4.0-3 - Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading 78.4.0-2 ...
firefox security update
78.4.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file Tue Nov 10 2020 [email protected] - 78.4.1-1 - Update to 78.4.1 - Filtering nss/nspr libs 78.4.0-3 -...
kernel security update
4.18.0-240.1.13.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64...
fence-agents security and bug fix update
4.2.1-41.2 - Upgrade bundled python-httplib2 to fix CVE-2020-11078 Resolves: rhbz1850114 4.2.1-41.1 - fencelpar: fix issue with long username, hostname, etc not working when the command run by the agent exceeds 80 characters - fenceevacuate: enable evacuation of instances using private flavors...
freetype security update
2.9.1-4.el83.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891905...
python security update
2.7.5-90.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-90 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Resolves: rhbz1856481...
python3 security update
3.6.8-18.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-18 - Avoid infinite loop when reading specially crafted TAR files CVE-2019-20907 Resolves: rhbz1856481 - Resolve hash collisions for Pv4Interface and IPv6Interface CVE-2020-14422 Resolves: rhbz1854926...
curl security update
7.29.0-59.0.1.1 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case...
tomcat security update
0:7.0.76-16 - Resolves: rhbz1814315 CVE-2020-1935 tomcat: Mishandling of Transfer-Encoding header allows for HTTP request smuggling...
qt and qt5-qtbase security update
qt 1:4.8.7-9 - Fix buffer overflow in XBM parser Resolves: bz1870297 qt5-qtbase 5.9.7-5 - Fix buffer overflow in XBM parser Resolves: bz1870365...
librepo security update
1.8.1-8 - Validate paths read from repomd.xml RhBug: 1866500...
Unbreakable Enterprise kernel security update
4.1.12-124.45.2 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32137965 CVE-2020-8694 CVE-2020-8695 4.1.12-124.45.1 - Revert 'x86/efi: Initialize and display UEFI secure boot state a bit later during init' Eric Snowberg Orabug: 31887248 - xfs: fix xfsinode use after free...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.402.2.1.el7 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2.el7 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug:...
Unbreakable Enterprise kernel-container security update
4.14.35-2025.402.2.1.el7 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2.el7 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug:...
libvirt security and bug fix update
4.5.0-36.el79.3 - rpc: gendispatch: handle empty flags CVE-2020-25637 - rpc: add support for filtering @acls by uint params CVE-2020-25637 - rpc: require write acl for guest agent in virDomainInterfaceAddresses CVE-2020-25637 - qemu: agent: set ifname to NULL after freeing CVE-2020-25637 - conf:...
kernel security and bug fix update
3.10.0-1160.6.1.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.6.1 - net netfilter:...
libssh security, bug fix, and enhancement update
0.9.4-2 - Do not return error when server properly closed the channel 1849071 - Add a test for CVE-2019-14889 - Do not parse configuration file in tortureknownhosts test 0.9.4-1 - Update to version 0.9.4 https://www.libssh.org/2020/04/09/libssh-0-9-4-and-libssh-0-8-9-security-release/ - Fixed...
varnish:6 security, bug fix, and enhancement update
varnish 6.0.6-2 - new version 6.0.6 - Resolves: 1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS - Resolves: 1790907 - CVE-2019-20637 varnish: not clearing pointer between two client requests leads to information disclosure - Resolves: 1763958 - CVE-2019-15892 varnish:6/varnish: denial of...
targetcli security and enhancement update
2.1.53-1 - Update to new upstream version 2.1.52-1 - Update to new upstream version...
cyrus-sasl security, bug fix, and enhancement update
2.1.27-5 - Reduce excessive GSSAPI plugin logging - Resolves: rhbz1274734 2.1.27-4 - Add support for setting maxssf=0 in GSS-SPNEGO - Resolves: rhbz1822133 2.1.27-3 - Backport GSSAPI Channel Bindings support - Resolves: rhbz1817054 2.1.27-2 - Backport fix for CVE-2019-19906 - Resolves: rhbz180403...
evolution security and bug fix update
bogofilter 1.2.5-2 - Bump version to have OSCI/gating tests rerun with updated tests 1.2.5-1 - Resolves: 1836279 Update to 1.2.5 evolution 3.28.5-14 - Related: 1817143 Add a small patch to behave better with WebKitGTK 2.28 3.28.5-13 - Resolves: 1836165 Cannot type the date of a meeting...
edk2 security, bug fix, and enhancement update
20200602gitca407c7246bf-3.el8 - edk2-UefiCpuPkg-PiSmmCpuDxeSmm-pause-in-WaitForSemaphore-.patch bz1861718 - Resolves: bz1861718 Very slow boot when overcommitting CPU 20200602gitca407c7246bf-2.el8 - edk2-OvmfPkg-QemuKernelLoaderFsDxe-suppress-error-on-no-k.patch bz1844682 -...
poppler security update
0.66.0-27 - Fix crash on broken file in tilingPatternFill - Resolves: 1801341...