8987 matches found
mingw-expat security update
2.5.0-1 - Rebase to version 2.5.0 - Fix the following CVEs CVE-2023-52425 CVE-2024-28757 CVE-2024-45490 CVE-2024-45491 CVE-2024-45492 CVE-2024-50602 CVE-2024-8176 CVE-2025-59375 - Resolves: RHEL-114628...
podman security update
5.6.0-6.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-6 - update to the latest content of...
xorg-x11-server-Xwayland security update
23.2.7-5 - CVE fix for: CVE-2025-62229 RHEL-119974, CVE-2025-62230 RHEL-120021, CVE-2025-62231 RHEL-125017...
tigervnc security update
1.15.0-6 - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Resolves: RHEL-119986 - Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal Resolves: RHEL-120007 - Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb...
vim security update
8.2.2637-23.0.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-23 - RHEL-112005 CVE-2025-53905 vim: Vim path traversial - RHEL-112009 CVE-2025-53906 vim: Vim path traversal...
delve and golang security update
delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 - Resolves: RHEL-111801 golang 1.25.3-1 - Update to Go 1.25.3 - Resolves: RHEL-121220 1.25.1-1 - Update to Go 1.25.1 - Resolves: RHEL-116850 1.25.0-2 - Revert DWARF5 defaults - Add elf...
thunderbird security update
140.5.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.5.0-1 - Update to 140.5.0 ESR...
firefox security update
140.5.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.5.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.5.0-1 - Update to 140.5.0 ESR...
squid security update
7:5.5-22.1 - Resolves: RHEL-122492 - squid: Squid vulnerable to information disclosure via authentication credential leakage in error handling CVE-2025-62168 7:5.5-22 - Resolves: RHEL-77084 - squid crashes with noteDestinationsEnd check failed...
kernel security update
4.18.0-553.85.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libssh security update
0.9.6-16 - Fix CVE-2025-5372 Resolves: RHEL-121232...
thunderbird security update
140.5.0-2.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.5.0 - Add OpenELA debranding 140.5.0-2 - Update to 140.5.0 ESR...
expat security update
2.5.0-1 - Rebase to version 2.5.0 - Fix CVE-2025-59375 - Resolves: RHEL-114618...
postgresql security update
9.2.24-9.0.7 - Restrict psql meta-commands in plain-text dumps Orabug: 38442031CVE-2025-8714 9.2.24-9.0.5 - Resolves CVE-2025-1094: Improper neutralization of quoting syntax in certain - libpq functions Orabug: 37843176...
lasso security update
2.6.0-14 - Fixing CVE-2025-47151 Resolves: RHEL-126687 CVE-2025-47151 lasso: Type confusion in Entr'ouvert Lasso...
squid security update
7:3.5.20-17.0.9.13 - Fixes CVE-2025-62168, squid: Squid vulnerable to information disclosure via - authentication credential leakage in error handling Orabug: 38587551 7:3.5.20-17.0.7.13 - Fixes CVE-2025-54574, add URN access disabling config options Orabug: 38350105 7:3.5.20-17.0.5.13 - Fixed cv...
kernel security update
4.18.0-553.84.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
container-tools:rhel8 security update
slirp4netns 1.2.3-1 - update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.3 - Related: Jira:RHEL-2110 1.2.2-1 - update to https://github.com/rootless-containers/slirp4netns/releases/tag/v1.2.2 - Related: Jira:RHEL-2110 1.2.1-1 - update to...
idm:DL1 security update
bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-20.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 ipa-healthcheck opendnssec 2.1.7-2 - Don't creat /var/run/opendnssec directory - Resolves: RHEL-12163 python-jwcrypto python-kdcproxy...
java-1.8.0-openjdk security update
1.8.0.472.b08-1.0.1 - Update to 8u472-b08 GA Orabug: 38571645 - Update release notes for 8u472-b08. - Drop local JDK-8339414 fix as this is now included upstream - Reset rpmrelease to 1 now there are no other RPM builds on RHEL 8 - Sync the copy of the portable specfile with the latest update -...
ipa security update
4.6.8-5.0.5.el79.17 - Fixes CVE-2025-7493 Enforce uniqueness across krbprincipalname - and krbcanonicalname Orabug: 38520120 4.6.8-5.0.3.el79.17 - Fix privilege escalation from host to domain vulnerability - CVE-2025-4404 Orabug: 38085890...
Unbreakable Enterprise kernel security update
5.15.0-314.193.5.3 - Revert 'cpufreq: Introduce an optional cpuinfoavgfreq sysfs entry' Samasth Norway Ananda Orabug: 38633525 5.15.0-314.193.5.2 - i40e: add validation for ringlen param Lukasz Czapnik Orabug: 38607608 CVE-2025-39973 - i40e: increase max descriptors for XL710 Justin Bronder Orabu...
kernel security update
4.18.0-553.83.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libtiff security update
4.0.9-36 - fix CVE-2025-8176: prevent skipping first line in tiffdither and tiffmedian tools RHEL-120230...
bind security update
9.16.23-31.0.1 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-31.2 - Replace downstream fixes with upstream changes 32:9.16.23-31.1 - Prevent cache poisoning due to weak PRNG CVE-2025-40780 - Address various spoofing attacks CVE-2025-40778...
Unbreakable Enterprise kernel security update
5.4.17-2136.349.3.1 - i40e: add validation for ringlen param Lukasz Czapnik Orabug: 38604171 CVE-2025-39973 - i40e: increase max descriptors for XL710 Justin Bronder Orabug: 38604171 CVE-2025-39973 5.4.17-2136.349.3 - Revert 'net/mlx5e: Update and set Xon/Xoff upon MTU set' Jakub Kicinski Orabug:...
kernel security update
5.14.0-570.62.1.0.1 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
bind9.18 security update
32:9.18.29-4.2 - Fix upstream reported regression in recent CVE fix CVE-2025-8677 - Add upstream created test to this regression 32:9.18.29-4.1 - Refuse malformed DNSKEY records CVE-2025-8677 - Address various spoofing attacks CVE-2025-40778 - Prevent cache poisoning due to weak PRNG CVE-2025-407...
runc security update
4:1.2.5-3 - Add relevant patches to CVEs - Resolves: RHEL-122402 4:1.2.5-2 - fix CVE-2025-31133 CVE-2025-52565 CVE-2025-52881 - Resolves: RHEL-122402 - Resolves: RHEL-122404 - Resolves: RHEL-122415 4:1.2.5-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.2.5 - Related: RHEL-60...
mingw-libtiff security update
4.0.9-3 - Fix CVE-2018-5784 CVE-2018-7456 CVE-2017-9935 CVE-2017-9935 - Fix CVE-2017-18013 CVE-2018-8905 CVE-2018-10963 CVE-2018-17100 - Fix CVE-2018-18557 CVE-2018-18661 RHBZ 1602597 CVE-2018-12900 - Fix CVE-2019-14973 CVE-2019-17546 CVE-2020-35521 CVE-2020-35522 - Fix CVE-2020-35523...
pcs security update
0.10.18-2.0.1.7 - Replaced HAM-logo...
linux-firmware security update
20251030-999.44.1.gite9292517.el8 - Include AMD ucode fix Orabug: 38523856 CVE-2025-62626...
tigervnc security update
1.15.0-8 - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Resolves: RHEL-119979 - Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal Resolves: RHEL-120001 - Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb...
qt5-qt3d security update
5.15.9-2.1 - Assimp: Fix heap-based overflow in Q3DLoader::InternReadFile Resolves: RHEL-120988...
linux-firmware security update
20251030-999.44.1.gite9292517.el7 - Include AMD ucode fix Orabug: 38523856 CVE-2025-62626...
linux-firmware security update
20251030-999.44.1.gite9292517.el9 - Include AMD ucode fix Orabug: 38523856 CVE-2025-62626...
osbuild-composer security update
132.2-3.0.1 - Switch to UEKR8 repositories for OL9.6 Orabug: 37962207 - Add support to create OpenScap images JIRA: OLDIS-35301 - Simplify repository names JIRA: OLDIS-35893 - Refactor patches to fix some naming and set a correct kernel for Oracle Linux Orabug: 37253643 - Support using OCI...
bind9.16 security update
32:9.16.23-0.22.4 - Prevent cache poisoning due to weak PRNG CVE-2025-40780 - Address various spoofing attacks CVE-2025-40778 - Replace downstream fixes with upstream changes 32:9.16.23-0.22.3 - Update addresses of b.root-servers.net RHEL-18449...
galera and mariadb security update
galera 26.4.22-1 - Rebase to 26.4.22 mariadb 3:10.5.29-2 - Release bump for rebuild 3:10.5.29-1 - Rebase to 10.5.29...
bind security update
32:9.11.36-16.6 - Address various spoofing attacks CVE-2025-40778 32:9.11.36-16.5 - Add support for max-records-per-type and max-types-per-name options RHEL-61936 - Support reading of new options also in named-checkconf -z, v2...
mariadb:10.5 security update
galera 26.4.22-1 - Rebase to 26.4.22 Judy 1.0.5-18 - Remove README.Fedora; no longer needed since 1.0.5 version - Resolves: 1638717 1.0.5-17 - ldconfig scriptlets replaced by RPM File Triggers from Fedora 28 - Drop legacy BuildRoot: and Group: tags - Drop redundant explicit buildroot cleaning -...
libsoup security update
2.72.0-10.3 - Backport patch for CVE-2025-4945 and CVE-2025-11021 2.72.0-10.2 - Backport patches for various CVEs Resolves: RHEL-85888 Resolves: RHEL-87081 Resolves: RHEL-88332 Resolves: RHEL-92285 2.72.0-10.1 - Backport patches for various CVEs, plus test improvements Resolves: RHEL-85906...
xorg-x11-server-Xwayland update
23.2.7-5 - CVE fix for: CVE-2025-62229 RHEL-119975, CVE-2025-62230 RHEL-120020, CVE-2025-62231 RHEL-125016...
sssd security update
2.9.4-5.0.2.3 - Missing ntohs to service port Orabug: 37389651 - Restore default debug level for ssscache Orabug: 32810448 2.9.4-5.3 - Resolves: RHEL-112455 - p11child currently has an infinite timeout rhel-8.10.z - Resolves: RHEL-120292 - CVE-2025-11561 sssd: SSSD default Kerberos configuration...
xorg-x11-server-Xwayland security update
21.1.3-19 - CVE fix for: CVE-2025-62229 RHEL-119967, CVE-2025-62230 RHEL-120015, CVE-2025-62231 RHEL-125007...
Unbreakable Enterprise kernel security update
5.15.0-313.189.5.3 - i40e: add validation for ringlen param Lukasz Czapnik Orabug: 38603025 CVE-2025-39973 - i40e: increase max descriptors for XL710 Justin Bronder Orabug: 38603025...
kernel security update
5.14.0-570.60.1.0.1 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
tigervnc security update
1.14.1-9 - Fix CVE-2025-62229: xorg-x11-server: Use-after-free in XPresentNotify structures creation Resolves: RHEL-119987 - Fix CVE-2025-62230: xorg-x11-server: Use-after-free in Xkb client resource removal Resolves: RHEL-120006 - Fix CVE-2025-62231: xorg-x11-server: Value overflow in Xkb...
pcs security update
0.11.9-2.el96.2 - Fixed CVE-2025-59830, CVE-2025-61770, CVE-2025-61771, CVE-2025-61772, CVE-2025-61919 by updating bundled rubygem rack Resolves: RHEL-120943, RHEL-121036, RHEL-123631, RHEL-123644, RHEL-124942...
xorg-x11-server security update
1.20.11-27 - CVE fix for: CVE-2025-62229 RHEL-119953, CVE-2025-62230 RHEL-120027, CVE-2025-62231 RHEL-124993...