8986 matches found
Unbreakable Enterprise kernel security update
6.12.0-107.59.3.3 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38858283 CVE-2025-40248...
firefox security update
140.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.7.0-1 - Update to 140.7.0 ESR...
firefox security update
140.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.7.0-1 - Update to 140.7.0 ESR...
transfig security update
1:3.2.7b-11 - Detect nan in spline control values - CVE-2025-46397...
gnupg2 security update
2.2.20-4 - Fix CVE-2025-68973 gpg.fail/memcpy...
libpq security update
13.23-1 - Rebase to upstream release 13.23 - Resolves: RHEL-131269 CVE-2025-12818...
vsftpd security update
3.0.3-36.3 - Rebuild to test with proper configuration - Related: RHEL-134160 3.0.3-36.2 - Rebuild to test with proper configuration - Related: RHEL-134160 3.0.3-36.1 - Fix CVE-2025-14242 - Resolves: RHEL-134160...
net-snmp security update
5.9.1-17.0.1.1 - fix error index value when snmpget is used a proxy pass Orabug: 35010262 1:5.9.1-17.1 - fix out of bound access issue RHEL-137510 - enable PQC RHEL-132653...
vsftpd security update
3.0.5-6.2 - Rebuild to test with proper configuration - Related: RHEL-134169 3.0.5-6.1 - Fix CVE-2025-14242 - Resolves: RHEL-134169...
gnupg2 security update
2.3.3-5 - Fix CVE-2025-68973 gpg.fail/memcpy...
firefox security update
140.6.0-1.0.1 - Update to 140.6.0 ESR Orabug: 38813993CVE-2025-14321CVE-2025-14322 CVE-2025-14323CVE-2025-14324CVE-2025-14325CVE-2025-14328 CVE-2025-14329CVE-2025-14330CVE-2025-14331CVE-2025-14333 140.5.0-1.0.1 - Update to 140.5.0 ESR Orabug: 38708474CVE-2025-13012CVE-2025-13013...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3635 pgrepack 1.5.1-1 - Update to v1.5.1 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47604 1.4.8-1 - Resolves: RHEL-3636 - Initial import for PG 16...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
postgresql security update
13.23-1 - Update to 13.23 - Resolves: RHEL-128812 CVE-2025-12818 13.22-3 - Add sysusers configuration and complete tmpfiles.d dynamically - Related: RHEL-94905 13.22-2 - Define tmpfiles.d to enable ostree and bootc support...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.15-1 - Update to 15.15 - Resolves: RHEL-128819 CVE-2025-12818...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.23-1 - Update to 13.23 - Resolves: RHEL-128818 CVE-2025-12818...
cups security update
1:2.2.6-66 - fix use-after-free reported by OSH 1:2.2.6-65 - RHEL-129729 CVE-2025-58436 cups: Slow client communication leads to a possible DoS attack - RHEL-129720 CVE-2025-61915 cups: Local denial-of-service via cupsd.conf update and related issues...
postgresql:16 security update
pgaudit pgrepack postgres-decoderbufs postgresql 16.11-1 - Update to 16.11 - Resolves: RHEL-128820 CVE-2025-12818...
openssl security update
1:1.1.1k-14 - Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap Fix CVE-2025-9230 Resolves: RHEL-128613 - Fix bug for ticketlifetimehint exceed issue Resolves: RHEL-119891 1:1.1.1k-13 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654...
Unbreakable Enterprise kernel security update
5.15.0-316.196.4.1 - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38788585 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38788587 CVE-2025-40271 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38788594...
libsoup security update
2.62.3-11 - Backport patch for CVE-2025-14523...
kernel security update
5.14.0-611.20.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
Unbreakable Enterprise kernel security update
5.4.17-2136.351.3.1 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38787139 CVE-2025-40271 5.4.17-2136.351.3 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38715366 - fbcon: fix integer overflow in font allocation Samasth Norway Ananda Orabug: 387025...
kernel security update
4.18.0-553.92.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libsoup security update
2.72.0-12.3 - Fix patch for CVE-2025-14523 to handle comparison case-insensitively 2.72.0-12.2 - Backport patch for CVE-2025-14523 2.72.0-12.1 - Backport patch for CVE-2025-4945 and CVE-2025-11021...
libpq security update
13.23-1 - Rebase to upstream release 13.23 - Resolves: RHEL-131279 CVE-2025-12818...
podman security update
5.6.0-11.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-11 - update to the latest content of...
buildah security update
1.41.8-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.8-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 https://github.com/containers/buildah/commit/f85ff89 - fixes 'CVE-2025-47913 buildah:...
mariadb:10.11 security update
galera mariadb 3:10.11.15-1 - Rebase to 10.11.15 - Resolves: RHBZ2417697 3:10.11.14-3 - Add installation of downstream sysusers.d config file in place of the upstream one 3:10.11.14-3 - Bump release for tmpfiles.d change 3:10.11.14-2 - Revert to soft static allocation of MariaDB and MySQL...
httpd security update
2.4.6-99.0.9.1 - Fix CVE-2025-58098 Orabug: 38816066 2.4.6-99.0.7.1 - Fixed security update CVE-2024-47252 CVE-2025-49812 Orabug: 38378160 2.4.6-99.0.5.1 - Differentiate trusted sources Orabug: 37100272CVE-2024-38476 2.4.6-99.0.3.1 - Opt-ins for unsafe prefixstat and %3f Orabug:...
cups security update
1:2.3.3op2-34.2 - fix use-after-free reported by OSH 1:2.3.3op2-34.1 - RHEL-129746 CVE-2025-58436 cups: Slow client communication leads to a possible DoS attack - RHEL-129738 CVE-2025-61915 cups: Local denial-of-service via cupsd.conf update and related issues...
openssl security update
1:1.1.1k-14 - Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap Fix CVE-2025-9230 Resolves: RHEL-128613 - Fix bug for ticketlifetimehint exceed issue Resolves: RHEL-119891...
mariadb:10.3 security update
galera Judy mariadb 3:10.3.39-2 - Release bump for rebuild...
mariadb security update
3:10.5.29-3 - Release bump for rebuild...
libpng security update
2:1.6.34-9 - CVE-2025-64720: buffer overflow RHEL-131452 - CVE-2025-65018: heap buffer overflow RHEL-131465 - CVE-2025-66293: out-of-bounds read in pngimagereadcomposite RHEL-133226 2:1.6.34-8 - Remove redundant fix for CVE-2017-12652 2:1.6.34-7 - Add upstream test suite and enable it in gating...
mariadb:10.11 security update
galera Judy mariadb 3:10.11.10-2 - Release bump for rebuild...
mingw-libpng security update
1.6.34-1 - Rebase to version 1.6.34 - Fix the following CVEs CVE-2025-64720 CVE-2025-65018 CVE-2025-66293 - Resolves: RHEL-131458 - Resolves: RHEL-131471 - Resolves: RHEL-133229...
libpng security update
2:1.6.37-12.1 - CVE-2025-64720: buffer overflow RHEL-131580 - CVE-2025-65018: heap buffer overflow RHEL-131593 - CVE-2025-66293: out-of-bounds read in pngimagereadcomposite RHEL-133287...
mariadb:10.5 security update
galera Judy mariadb 3:10.5.29-3 - Release bump for rebuild...
poppler security update
20.11.0-13 - Check bitmap in combine - Resolves: RHEL-131786...
python3.12 security update
3.12.12-1 - Update to 3.12.12 - Security fix for CVE-2025-8291 and CVE-2025-12084 Resolves: RHEL-128364, RHEL-135391...
poppler security update
21.01.0-23 - Bump release for build inheritance - Resolves: RHEL-131792 21.01.0-22 - Check bitmap in combine - Resolves: RHEL-131795, RHEL-131792...
bind security update
32:9.11.4-26.0.5.P2.16 - Resolve CVE-2025-40778 Orabug: 38699863 32:9.11.4-26.0.3.P2.16 - Resolve CVE-2024-11187 Orabug: 37616907 32:9.11.4-26.0.1.P2.16 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Add ability to change runtime limits for max types and records per name 32:9.11.4-26.P2.16 -...
rsync security update
3.1.2-12.0.3 - Fix CVE-2024-12087 Orabug: 38771262 3.1.2-12.0.1 Back port fix for CVE-2024-12085 Orabug: 37524229...
thunderbird security update
140.6.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.6.0 - Add OpenELA debranding 140.6.0-1 - Update to 140.6.0 ESR...
gcc-toolset-14-binutils security update
2.41-5.1 - Fix a potential illegal memory access when linking a corrupt input file. RHEL-130669...
audiofile security update
1:0.3.6-9.0.1 - Fix null pointer dereference CVE-2025-50950Orabug: 38777980 1:0.3.6-9 - Apply security patches. CVE-2018-17095, CVE-2018-13440 - Resolves: rhbz1600369, rhbz1601014, rhbz1637128 1:0.3.6-8 - Escape macros in %changelog 1:0.3.6-7 - Merge upstream pull requests 42,43,44 from Agostino...
tar security update
2:1.34-9 - Fix the last patch to solve a regression with -x and --xattrs: RHEL-136277 also, fix another tiny mistake in the patch w/o visible consequences 2:1.34-8 - Backport upstream changes to jailify extraction directory Includes related gnulib changes to add openat2 Fixes CVE-2025-45582...
httpd:2.4 security update
httpd 2.4.37-65.0.1.7 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.7 - Resolves: RHEL-135054 - httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride FileInfo CVE-2025-66200 - Resolves: RHEL-135039 - httpd: Apache HTTP Server: CGI environment variable...
python39:3.9 security update
modwsgi numpy python39 3.9.25-2 - Add explicit BR: libxcrypt-devel - Properly apply exported CFLAGS for dtrace/systemtap builds - Update to Python 3.9.25 - Move sysconfigdatadlinux.py to the debug subpackage - Fedora contributions by: Bjorn Esser Charalampos Stratakis Karolina Surma Tomas Orsava...