8987 matches found
python39:3.9 security update
modwsgi numpy python39 3.9.25-2 - Add explicit BR: libxcrypt-devel - Properly apply exported CFLAGS for dtrace/systemtap builds - Update to Python 3.9.25 - Move sysconfigdatadlinux.py to the debug subpackage - Fedora contributions by: Bjorn Esser Charalampos Stratakis Karolina Surma Tomas Orsava...
Unbreakable Enterprise kernel security update
5.15.0-315.196.5.2 - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38786195 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38786194 CVE-2025-40271 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38786193...
Unbreakable Enterprise kernel security update
5.4.17-2136.350.3.2 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38786776 CVE-2025-40271 5.4.17-2136.350.3.1 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38744458 - fbcon: fix integer overflow in font allocation Samasth Norway Ananda Orabug:...
grafana security update
9.2.10-26.0.1 - Fixes CVE-2024-1442 Add email verification when updating user email Orabug: 38550520 9.2.10-26 - Resolves RHEL-125664: CVE-2025-58183 - Resolves RHEL-132759: Grafana-selinux prevents plugins from searching cgroups...
thunderbird security update
140.6.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.6.0 - Add OpenELA debranding 140.6.0-1 - Update to 140.6.0 ESR...
httpd security update
2.4.62-7.0.1.3 - Replace index.html with Oracle's index page oracleindex.html. 2.4.62-7.3 - Resolves: RHEL-135063 - httpd: Apache HTTP Server: moduserdir+suexec bypass via AllowOverride FileInfo CVE-2025-66200 - Resolves: RHEL-135048 - httpd: Apache HTTP Server: CGI environment variable override...
git-lfs security update
3.6.1-4 - Backport fix for CVE-2025-26625 - Resolves: RHEL-122431...
mod_md security update
1:2.4.26-1.1 - Resolves: RHEL-134496 - httpd: Apache HTTP Server: modmd ACME, unintended retry intervals CVE-2025-55753...
git-lfs security update
3.4.1-6 - Backport CVE-2025-26625 fixes - Resolves: RHEL-122423...
php:8.3 security update
php 8.3.26-1 - rebase to 8.3.26 php-pecl-apcu 5.1.23-1 - update to 5.1.23 for PHP 8.2 RHEL-14699 5.1.21-1 - update to 5.1.21 for PHP 8.1 2070040 php-pecl-redis6 6.1.0-2 - ignore 1 ONLINE test 6.1.0-1 - RHEL build 6.1.0-1 - update to 6.1.0 - drop patch merged upstream 6.1.0RC2-1 - update to 6.1.0R...
webkit2gtk3 security update
2.50.4-1 - Update to 2.50.4...
binutils security update
2.35.2-67.0.1.1 - Merge Oracle patches to 2.35.2-67.1. - CVE-2025-11083 - Reviewed-by: David Faust Oracle history: September-24-2025 Bruce McCulloch - 2.35.2-67.0.1 - Merge Oracle patches to 2.35.2-66. - Reviewed-by: Jose E. Marchesi September-5-2025 Bruce McCulloch - 2.35.2-66.0.1 - Merge Oracle...
binutils security update
2.30-128.0.1 - Forward port Oracle patches to 2.30-128 - CVE-2025-11083 Reviewed-by: TBD Oracle history: October-8-2025 Bruce McCulloch - 2.30-127.0.1 - Forward port Oracle patches to 2.30-127. - Muting some failing ld-ctf tests. Reviewed-by: Jose E. Marchesi November-14-2024 Bruce McCulloch -...
podman security update
5.6.0-9.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-9 - update to the latest content of...
webkit2gtk3 security update
2.50.4-1 - Update to 2.50.4...
python3.9 security update
3.9.25-2.0.1 - Remove upstream URL reference 3.9.25-2 - Move sysconfigdatadlinux.py to the debug subpackage 3.9.25-1 - Update to Python 3.9.25 3.9.24-1 - Update to Python 3.9.24...
python3.12 security update
3.12.12-1.0.1 - Remove upstream URL reference 3.12.12-1 - Update to 3.12.12 Resolves: RHEL-125856...
gcc-toolset-13-binutils security update
2.40-21.0.1.1 - Forward-port Oracle patches to 2.40-21.1. - CVE-2025-11083 - Reviewed-by: David Faust Oracle history: April-02-2024 Jose E. Marchesi - 2.40-21.0.1 - Forward-port Oracle patchs to 2.40-21. - Reviewed-by: Cupertino Miranda December-15-2023 Jose E. Marchesi - 2.40-13.0.1 - libctf,...
libssh security update
0.10.4-17 - Bump spec to resolve build tagging issues 0.10.4-16 - Fix CVE-2025-5987 Resolves: RHEL-130051 - Workaround sshd failure rate limiting in tests Resolves: RHEL-135506...
openssh security update
8.7p1-47.0.1 - Upstream references found with /usr/bin/ssh Orabug: 37814929 - upstream: fix AuthorizedPrincipalsCommand when AuthorizedKeysCommand Orabug: 37647064 - Update upstream references Orabug: 36564626 8.7p1-47 - CVE-2025-61984: Reject usernames with control characters Resolves: RHEL-1284...
gimp security update
2:2.22-1.0.5 - Fixes CVE-2025-10922 and CVE-2025-10934 Orabug: 38739185 2:2.8.22-1.0.3 - Fixes CVE-2025-5473 GIMP ICO File Parsing Integer Overflow Orabug: 38110877 - Fixes CVE-2025-48797 Multiple heap buffer overflows in TGA parser - Fixes CVE-2025-48798 Multiple use after free in XCF parser...
python-kdcproxy security update
0.3.2-3.0.1 - Use DNS discovery for declared realms only CVE-2025-59088 Orabug: 38745300 - Fix DoS vulnerability based on unbounded TCP buffering CVE-2025-59089...
curl security update
7.61.1-34.el810.9 - cookie: don't treat the leading slash as trailing CVE-2025-9086 Resolves: RHEL-121655...
kernel security update
5.14.0-611.16.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
skopeo security update
1:1.20.0-2 - rebuild for CVE-2025-58183 - Resolves: RHEL-125717...
openssh security update
8.0p1-27.0.1 - Update upstream references Orabug: 36587718 8.0p1-27 - CVE-2025-61984: Reject usernames with control characters Resolves: RHEL-128400 - CVE-2025-61985: Reject URL-strings with NULL characters Resolves: RHEL-128390...
glibc security update
2.28-251.0.3.27 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: August-5-2025 Cupertino Miranda - 2.28-251.0.3.25 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi June-9-2025 Cupertino Miranda - 2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by:...
kernel security update
3.10.0-1160.119.1.0.14 - HID: core: fix shift-out-of-bounds in hidreportrawevent CVE-2022-48978 Orabug: 38644370 - crypto: seqiv - Handle EBUSY correctly CVE-2023-53373 Orabug: 38644370 - nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 Orabug: 38644370 - netsched: hfsc: Fix a...
keylime security update
7.12.1-11.3 - Registrar allows identity takeover via duplicate UUID registration Resolves: RHEL-130760 7.12.1-11.2 - Properly fix the malformed certificate workaround Resolves: RHEL-111244...
firefox security update
140.5.0-1.0.1 - Update to 140.5.0 ESR Orabug: 38708474CVE-2025-13012CVE-2025-13013 CVE-2025-13014CVE-2025-13015CVE-2025-13016CVE-2025-13017 CVE-2025-13018CVE-2025-13019CVE-2025-13020...
firefox security update
140.3.0-1.0.1 - Update to 140.3.0 Orabug: 38509157CVE-2025-10527CVE-2025-10528 CVE-2025-10529CVE-2025-10532CVE-2025-10533CVE-2025-10536 CVE-2025-10537 - Disable SVE parts of libyuv if not supported Orabug: 38509157...
firefox security update
140.4.0-4.0.1 - Update to 140.4.0 ESR Orabug: 38595697CVE-2025-11708CVE-2025-11709 CVE-2025-11710CVE-2025-11711CVE-2025-11712CVE-2025-11714 CVE-2025-11715...
mysql:8.4 security update
mecab mecab-ipadic mysql 8.4.7-1 - Rebase to 8.4.7...
mysql:8.4 security update
mecab mecab-ipadic mysql 8.4.7-1 - Rebase to 8.4.7 rapidjson...
mysql:8.0 security update
mecab mecab-ipadic mysql 8.0.44-1 - Rebase to MySQL 8.0.44...
Unbreakable Enterprise kernel security update
5.4.17-2136.350.3.1 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38744458 - fbcon: fix integer overflow in font allocation Samasth Norway Ananda Orabug: 38744453 5.4.17-2136.350.3 - net/rds: Fix rsrecvpending counting issue Gerd Rausch Orabug: 38506370...
Unbreakable Enterprise kernel security update
5.15.0-315.196.5.1 - netfilter: nftables: reject duplicate device on updates Pablo Neira Ayuso Orabug: 38744086 CVE-2025-38678 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38744084 - rtc: expose RTCFEATUREUPDATEINTERRUPT Alexandre Belloni Orabug: 3874408...
mysql security update
8.0.44-1 - Rebase to MySQL 8.0.44...
xorg-x11-server security update
1.20.4-29.0.5 - Security update for CVE-2025-62229 CVE-2025-62230 CVE-2025-62231 Orabug: 38691191 1.20.4-29.0.3 - Fix CVE-2025-49175, CVE-2025-49176, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 Orabug: 38157695 1.20.4-29.0.1 - Fixed CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 - CVE-2025-26597...
ruby:3.3 security update
ruby 3.3.10-5 - Upgrade to Ruby 3.3.10. Resolves: RHEL-127912 - Fix possible denial of service in resolv gem CVE-2025-24294 - Fix URI Credential Leakage Bypass previous fixes. CVE-2025-61594 - Fix REXML denial of service. CVE-2025-58767 Resolves: RHEL-122015 rubygem-mysql2 rubygem-pg...
edk2 security update
20250905-4 - Create new 20250905 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability in BIOS where an attacker may cause 'Protection Mechanism Failure' by local access Orabug: 38381983 CVE-2025-3770 - EDK2: EDK2 contains a vulnerability in BIOS where a...
wireshark security update
1:3.4.10-8.1 - Resolves: RHEL-130438 - Access of Uninitialized Pointer in Wireshark...
ruby:3.3 security update
ruby 3.3.10-5 - Upgrade to Ruby 3.3.10. Resolves: RHEL-106820 - Fix possible denial of service in resolv gem CVE-2025-24294 - Fix URI Credential Leakage Bypass previous fixes. CVE-2025-61594 - Fix REXML denial of service. CVE-2025-58767 Resolves: RHEL-122012 rubygem-abrt rubygem-mysql2 rubygem-pg...
firefox security update
140.6.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.6.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.6.0-1 - Update to 140.6.0 ESR...
tomcat security update
1:9.0.87-1.7 - Resolves: RHEL-124507 tomcat: Directory traversal via rewrite with possible RCE CVE-2025-55752 - Resolves: RHEL-91743 tomcat: Bypass of rules in Rewrite Valve CVE-2025-31651...
firefox security update
140.6.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.6.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.6.0-1 - Update to 140.6.0 ESR...
tigervnc security update
1.8.0-33.0.9 - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Orabug: 38694278 - Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal - Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb extension XkbSetCompatMap...
libsoup security update
2.62.2-2.0.7 - Backport patch for CVE-2025-4945 and CVE-2025-11021 Orabug: 38664275 2.62.2-2.0.5 - Fixes CVE-2025-2784 CVE-2025-4948 CVE-2025-32049 Orabug: 38085184 - CVE-2025-32906 CVE-2025-32911 CVE-2025-32913 CVE-2025-32914 2.62.2-2.0.3 - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversi...
luksmeta security update
9-4.1 - Fix handling of large metadata Resolves: RHEL-122138...
lasso security update
2.5.1-8.0.1 - Fixes CVE-2025-47151 lasso: Type confusion in Entr'ouvert Lasso Orabug: 38658691...