9159 matches found
git-lfs security update
3.6.1-7 - Rebuild with new Golang - Resolves: RHEL-146860, RHEL-149620 3.6.1-6 - Rebuild with new Golang - Resolves: RHEL-147080 3.6.1-5 - Rebuild with new Golang - Resolves: RHEL-147103...
osbuild-composer security update
149-5.0.1 - Add missing dependency over dracut-config-rescue for image-installer Orabug: 38587453 - Add OL10 support - Update repository URLs for baseos, appstream and UERK - Fix the label for UEKR repository - Simplify repository names JIRA: OLDIS-35893 - Ensure build on latest golang:...
osbuild-composer security update
149-4.0.1 - Add missing dependency over dracut-config-rescue for image-installer ORABUG: 38587453 - Switch to UEKR8 repositories for OL9.6 Orabug: 37962207 - Add support to create OpenScap images JIRA: OLDIS-35301 - Simplify repository names JIRA: OLDIS-35893 - Refactor patches to fix some naming...
delve security update
1.25.2-2.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-2 - Rebuild without changes. - Resolves: RHEL-153104...
postgresql security update
Wed Feb 25 2026 Filip Janus - 13.23-2 - fix CVE-2026-2004 CVE-2026-2005 CVE-2026-2006...
delve security update
1.25.2-2.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-2 - Rebuild with latest Go...
kernel security update
3.10.0-1160.119.1.0.18 - e1000e: fix heap overflow in e1000seteeprom CVE-2025-39898 Orabug: 38904071 - i40e: fix idx validation in config queues msg CVE-2025-39971 Orabug: 38904071 - vsock: track pkt owner vsock Orabug: 38904071 - vhost-vsock: add pkt cancel capability Orabug: 38904071 - vsock:...
nginx:1.24 security update
1.24.0-5.1.0.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 1:1.24.0-5.1 - Resolves: RHEL-146526 - nginx:1.24/nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections CVE-2026-1642 1:1.24.0-5 - Resolves:...
go-rpm-macros security update
3.6.0-7 - Rebuild with latest Go 3.6.0-6 - Update CI support 3.6.0-5 - Add riscv64 to golangarches for RHEL 10+...
go-rpm-macros security update
3.6.0-13 - Rebuild with latest Go - Resolves: RHEL-146862...
udisks2 security update
2.10.90-6.0.1.el101.1 - Enable btrfs support for OL supported arches Orabug: 37464632 2.10.90-6.1 - Add missing polkit check for RestoreEncryptedHeader CVE-2026-26103 RHEL-148565 - Add missing polkit check for HeaderBackup CVE-2026-26104 RHEL-148588...
Unbreakable Enterprise kernel security update
5.4.17-2136.352.5.1 - xfrm: flush all states in xfrmstatefini Sabrina Dubroca Orabug: 39016499 - xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added Sabrina Dubroca Orabug: 39016499 - Revert 'xfrm: destroy xfrmstate synchronously on net exit path' Sabrina Dubroc...
kernel security update
5.14.0-611.36.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
valkey security update
8.0.7-1 - Rebase to 8.0.7 for CVE-2026-21863 CVE-2025-67733...
kernel security update
4.18.0-553.109.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libpng security update
2:1.6.40-8.2 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148323 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148818 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-146645...
libsoup security update
2.62.2-2.0.11 - Fixes CVE-2026-0719 CVE-2026-1761 Orabug: 38958074 2.62.2-2.0.9 - Fix CVE-2025-14523 Orabug: 38873507 2.62.2-2.0.7 - Backport patch for CVE-2025-4945 and CVE-2025-11021 Orabug: 38664275 2.62.2-2.0.5 - Fixes CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 Orabug: 38085184 - CVE-2025-329...
gnutls security update
3.8.10-3 - Fix CVE-2025-9820, CVE-2025-14831, drop unused patches - Fix PKCS11 token initialization label overflow CVE-2025-9820 - Fix name constraint processing performance issue CVE-2025-14831 - Drop unused patches...
thunderbird security update
140.8.0-2.0.1 - Add Oracle prefs 140.8.0-2 - Update to 140.8.0 ESR...
thunderbird security update
140.8.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.8.0 - Add OpenELA debranding 140.8.0-1 - Update to 140.8.0 ESR...
thunderbird security update
140.8.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.8.0 - Add OpenELA debranding 140.8.0-1 - Update to 140.8.0 ESR...
Unbreakable Enterprise kernel security update
5.15.0-317.197.5.2 - xfrm: flush all states in xfrmstatefini Sabrina Dubroca Orabug: 39016261 - xfrm: also call xfrmstatedeletetunnel at destroy time for states that were never added Sabrina Dubroca Orabug: 39016261 - Revert 'xfrm: destroy xfrmstate synchronously on net exit path' Sabrina Dubroca...
mingw-fontconfig security update
2.12.6-4 - Rebuilt with mingw-expat fix Related: RHEL-114628...
valkey security update
8.0.7-1 - Rebase to 8.0.7 for CVE-2026-21863 CVE-2025-67733...
openssl security update
1:1.1.1k-15 - Fix CVE-2025-69419: Arbitrary code execution due to out-of-bounds write in PKCS12 processing ticketlifetimehint exceed 1 week in TLSv1.3 and breaks compliant clients Resolves: RHEL-149165 Resolves: RHEL-142715 1:1.1.1k-14.1 - Backport fix for openssl: Out-of-bounds read & write in R...
container-tools:ol8 security update
aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-2 - rebuild for CVE-2025-61729 - Resolves: RHEL-140529 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon...
libpng security update
2:1.6.37-12.2 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148970 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148403 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-147343...
firefox security update
140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.8.0-2 - Update to 140.8.0 ESR...
firefox security update
140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.8.0-2 - Update to 140.8.0 ESR...
firefox security update
140.8.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.8.0-2 - Update to 140.8.0 ESR...
buildah security update
1.41.8-2.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.8-2 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146715...
runc security update
4:1.4.0-2 - Rebuild for new golang to address CVE-2025-68121 - Resolves: RHEL-149630...
freerdp security update
2:2.11.7-3 - Backport several CVE fixes Resolves: RHEL-148825, RHEL-148865, RHEL-148982...
podman security update
5.6.0-14.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-14 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146869...
buildah security update
1.41.8-2.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.8-2 - Rebuild with golang 1.25.7 to fix CVE-2025-68121 - Resolves: RHEL-149617...
skopeo security update
1:1.20.0-3 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146730...
podman security update
5.6.0-12.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 7:5.6.0-12 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146727...
skopeo security update
1:1.20.0-3 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146872...
python-pyasn1 security update
0.4.8-7 - Resolves: RHEL-148154...
kernel security update
6.12.0-124.39.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
python-pyasn1 security update
0.6.2-1 - Update to 0.6.2 - Update modules to 0.4.2 Resolves: RHEL-148142...
containernetworking-plugins security update
1:1.7.1-3 - Rebuild for new golang to address CVE-2025-61726 - Resolves: RHEL-146859 1:1.7.1-2 - rebuild for CVE-2025-22871 - Resolves: RHEL-90030...
389-ds-base security update
3.1.3-7 - Bump version to 3.1.3-7 - Resolves: RHEL-117764 - Replication online reinitialization of a large database gets stalled. rhel-10.1.z - Resolves: RHEL-123274 - LDAP high CPU usage while handling indexes with IDL scan limit at INTMAX rhel-10.1.z - Resolves: RHEL-123281 - The new...
389-ds-base security update
2.7.0-10 - Resolves: RHEL-123243 - Attribute uniqueness is not enforced upon modrdn operation rhel-9.7.z - Resolves: RHEL-123765 - 389-ds-base OpenScanHub Leaks Detected rhel-9.7.z - Resolves: RHEL-137083 - CVE-2025-14905 389-ds-base: 389-ds-base: Remote Code Execution and Denial of Service via...
gimp security update
2.8.22-1.0.5 - Fixes CVE-2025-14422 Orabug: 38904303 2:2.22-1.0.5 - Fixes CVE-2025-10922 and CVE-2025-10934 Orabug: 38739185 2:2.8.22-1.0.3 - Fixes CVE-2025-5473 GIMP ICO File Parsing Integer Overflow Orabug: 38110877 - Fixes CVE-2025-48797 Multiple heap buffer overflows in TGA parser - Fixes...
grafana-pcp security update
5.1.1-12 - Resolves RHEL-146096: CVE-2025-61726 - Resolves RHEL-149272: CVE-2025-68121...
kernel security update
4.18.0-553.107.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security update
5.14.0-611.35.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
grafana security update
9.2.10-28.0.1 - Fixes CVE-2024-1442 Add email verification when updating user email Orabug: 38550520 9.2.10-28 - Resolves RHEL-145418: CVE-2025-61728 - Resolves RHEL-146095: CVE-2025-61726 - Resolves RHEL-149271: CVE-2025-68121...
freerdp security update
2:2.11.7-1.2 - Backport several CVE fixes Resolves: RHEL-148847, RHEL-148887, RHEL-149020...