8986 matches found
grafana security update
10.2.6-17 - Resolves RHEL-125692: CVE-2025-58183 - Resolves RHEL-120426: Grafana-selinux prevents plugins from searching cgroups...
kernel security update
5.14.0-611.13.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel security update
4.18.0-553.89.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
webkit2gtk3 security update
2.50.3-1 - Update to 2.50.3...
webkit2gtk3 security update
2.50.3-1 - Update to 2.50.3...
sssd security update
1.16.5-10.0.5.16 - krb5: disable Kerberos localauth an2ln plugin for AD/IPA Orabug: 38621159...
abrt security update
2.10.9-25.0.1 - Replaces sosreport to sos report in sosreport-event.conf Orabug: 38590929 - abrt-dump-oops-Fix-vmcore-call-trace-parsing-arm Orabug: 34184473 - Disable autoreporting on Oracle Linux Orabug: 32890748 - Add orabug32082455-Upstreamreferenceinpython3-abrt-addon.patch Orabug: 32082455 ...
go-toolset:rhel8 security update
delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 Sync from CentOS Stream 9 - Related: RHEL-121223 golang 1.25.3-1 - Update to Go 1.25.3 sync from CentOS Stream 9 - Build go-toolset as a subpackage - Preserve GOAMD64=v1 for RHEL 8 -...
systemd security update
252-55.0.3.7 - serialize: don't allocate 1M on the stack just like that LINUX-16166 - Route logs from container mapped uids to the system journal Orabug: 38135007 - Drop delay when nspawn fails to reset loginuid Orabug: 37793135 - Improve logging for api bus connection and subscribers Orabug:...
edk2 security update
20250905-4.el8 - Create new 20250905 release for OL8 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability in BIOS where an attacker may cause "Protection Mechanism Failure" by local access Orabug: 38381983 CVE-2025-3770 - EDK2: EDK2 contains a vulnerability in BIOS where...
Unbreakable Enterprise kernel security update
5.15.0-314.193.5.5 - crypto: essiv - Check ssize for decryption and in-place encryption Herbert Xu Orabug: 38705933 CVE-2025-40019...
Unbreakable Enterprise kernel security update
5.4.17-2136.349.3.2 - crypto: essiv - Check ssize for decryption and in-place encryption Herbert Xu Orabug: 38705546 CVE-2025-40019...
kernel security update
5.14.0-611.11.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
firefox security update
140.5.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.5.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.5.0-1 - Update to 140.5.0 ESR...
libtiff security update
4.0.3-35.0.1 - fix CVE-2025-8176: prevent skipping first line in tiffdither and tiffmedian tools Orabug: 38658716 - fix CVE-2025-8177: buffer overflow thumbnail setrow Orabug: 38658716 - fix CVE-2025-9900: buffer underflow crash in TIFFReadRGBAImageOriented Orabug: 38658716...
kernel security update
4.18.0-553.87.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libxml2 security update
2.9.13-14 - Rebuilt for the correct target in RHEL 9.7-z RHEL-119283 2.9.13-13 - Fix CVE-2025-9714 RHEL-119283...
openssl security update
3.5.1-4.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 3.5.1.openela.0.1 - Add OpenELA specific changes 1:3.5.1-4 - Fix CVE-2025-9230 Resolves: RHEL-115929 1:3.5.1-...
gimp:2.8 security update
gimp 2:2.8.22-26.3 - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934 2:2.8.22-26.2 - fix CVE-2025-5473 RHEL-95696 2:2.8.22-26.1 - fix CVE-2025-48797 RHEL-93503 - fix CVE-2025-48798 RHEL-93506...
postgresql security update
12.22-5.0.1 - Add backport of CVE-2025-8714 Orabug: 38667546 12.22-5 - Fix previous Backport 12.22-4 - Backport CVE-2025-8715 12.22-3 - Fix backport for CVE-2025-1094 12.22-2 - Backport fix for CVE-2025-1094 12.22-1 - Update to 12.22 - Fixes: CVE-2024-10976 CVE-2024-10978 12.20-1 - Update to 12.2...
expat security update
2.5.0-5.1 - Fix CVE-2025-59375 - Resolves: RHEL-114644...
kernel security update
5.14.0-611.7.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 248176...
libtiff security update
4.4.0-15.2 - fix CVE-2025-8176: tiffdither and tiffmedian skip first line of input images RHEL-120239 4.4.0-15.1 - fix CVE-2025-9900: buffer underflow crash in TIFFReadRGBAImageOriented RHEL-112545...
libssh security update
0.10.4-15 - Bump spec to make the 9.7 NVR higher than the 9.6 one 0.10.4-14 - Fix CVE-2025-5318 Resolves: RHEL-111732...
openssl security update
3.5.1-4.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 3.5.1.openela.0.1 - Add OpenELA specific changes 1:3.5.1-4 - Fix CVE-2025-9230 Resolves: RHEL-115929...
redis:7 security update
7.2.11-1.0.1 - Build with 64k pages to support redis on UEK on aarch64 7.2.11-1 - rebase to 7.2.11 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 7.2.10-1 - rebase to 7.2.10 for CVE-2025-27151 CVE-2025-32023 and CVE-2025-48367 7.2.8-1 - rebase to 7.2.8 for CVE-2025-21605 7.2.7-1 ...
bind security update
32:9.16.23-34.0.1.1 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-34.1 - Prevent cache poisoning due to weak PRNG CVE-2025-40780 - Replace downstream fixes with upstream changes - Address various spoofing attacks CVE-2025-40778 32:9.16.23-34 - Fix failures in idn...
valkey security update
8.0.6-2 - rebase to 8.0.6 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819...
buildah security update
1.41.6-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.6-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 https://github.com/containers/buildah/commit/2ece502 - fixes 'Minor Incident CVE-2025-52881 buildah:...
ipa security update
4.12.2-22.0.1.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-22.1 - Resolves: RHEL-118449 ipa: Privilege escalation from host to domain admin in FreeIPA 4.12.2-22 - Resolves: RHEL-107483 ipa-ca-install fails on...
qt5-qt3d security update
5.15.9-2.1 - Assimp: Fix heap-based overflow in Q3DLoader::InternReadFile Resolves: RHEL-120986...
pcs security update
0.11.10-1.el97.1 - Fixed CVE-2025-59830, CVE-2025-61770, CVE-2025-61771, CVE-2025-61772, CVE-2025-61919 by updating bundled rubygem rack Resolves: RHEL-120945, RHEL-121035, RHEL-123630, RHEL-123642, RHEL-124938 0.11.10-1 - Rebased pcs to the latest sources see CHANGELOG.md Resolves: RHEL-77194,...
cups security update
1:2.2.6-64 - RHEL-122666 CVE-2025-58364 cups: Null Pointer Dereference in CUPS ippreadio Leading to Remote DoS...
webkit2gtk3 security update
2.50.1-1 - Update to 2.50.1 2.50.0-1 - Update to 2.50.0 2.48.5-1 - Update to 2.48.5 2.48.3-1 - Update to 2.48.3 2.48.2-1 - Update to 2.48.2 - Reenable JIT 2.48.1-1 - Update to 2.48.1 2.48.0-1 - Update to 2.48.0 2.46.6-1 - Update to 2.46.6 2.46.5-1 - Update to 2.46.5 2.46.4-1 - Update to 2.46.4...
kernel security update
5.14.0-611.9.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 248176...
sqlite security update
3.34.1-9 - Fixes CVE-2025-6965...
lasso security update
2.7.0-11.3 - Fix CVE-2025-47151 lasso: Type confusion in Entr'ouvert Lasso Resolves: RHEL-126684...
redis security update
6.2.20-2 - rebase to 6.2.20 for CVE-2025-49844 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 6.2.19-2 - fix ownership of /usr/lib64/redis RHEL-6784 6.2.19-1 - rebase to 6.2.19 for CVE-2025-32023 and CVE-2025-48367 6.2.18-1 - rebase to 6.2.18 for CVE-2025-21605 6.2.17-1 - rebase to 6.2.17 for...
xorg-x11-server security update
1.20.11-32 - CVE fix for: CVE-2025-62229 RHEL-119960, CVE-2025-62230 RHEL-120033, CVE-2025-62231 RHEL-125002...
haproxy security update
2.8.14-1.1 - Fix denial of service vulnerability in mjson library CVE-2025-11230 Resolves: RHEL-126664...
gimp security update
2:3.0.4-1.1 - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934...
go-rpm-macros security update
3.6.0-12 - Rebuilt to include Go1.25.3 to address CVE-2025-47906 - Resolves: RHEL-125569...
runc security update
4:1.3.0-4 - rename errors.go to errorslinux.go - Related: RHEL-122400 4:1.3.0-3 - Add relevant patches to CVEs - Resolves: RHEL-122400 4:1.3.0-2 - fix CVE-2025-31133 CVE-2025-52565 CVE-2025-52881 - Resolves: RHEL-122400 - Resolves: RHEL-122403 - Resolves: RHEL-122414...
python-kdcproxy security update
1.0.0-9 - Use DNS discovery for declared realms only CVE-2025-59088 Resolves: RHEL-122779 - Fix DoS vulnerability based on unbounded TCP buffering CVE-2025-59089 Resolves: RHEL-122778...
tigervnc security update
1.15.0-6 - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Resolves: RHEL-119986 - Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal Resolves: RHEL-120007 - Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb...
xorg-x11-server-Xwayland security update
23.2.7-5 - CVE fix for: CVE-2025-62229 RHEL-119974, CVE-2025-62230 RHEL-120021, CVE-2025-62231 RHEL-125017...
libsoup security update
2.72.0-12.1 - Backport patch for CVE-2025-4945 and CVE-2025-11021 2.72.0-12 - Backport patches for various CVEs Resolves: RHEL-84797 Resolves: RHEL-85888 Resolves: RHEL-87080 Resolves: RHEL-92284 2.72.0-11 - Backport patches for various CVEs, plus test improvements Resolves: RHEL-85909 Resolves:...
podman security update
5.6.0-7.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-7 - update to the latest content of...
sssd security update
2.9.7-4.0.1.1 - Restore default debug level for ssscache Orabug: 32810448 Fri Oct 17 2025 Tomas Halman - Resolves: RHEL-120298 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux systems...
openssl security update
3.5.1-4.0.2fips - Update additional upstream references 3.5.1-4.0.1fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35824276 - Update FIPS module name Orabug: 35824276 3.5.1-4.0.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable...