9160 matches found
java-21-openjdk security update
1:21.0.10.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.10.0.7-1 - Update to jdk-21.0.10+7 GA - Update release notes to 21.0.10+7 - Bump libpng version to 1.6.51 following JDK-8372534 - Update FIPS patch to include nss.fips.cfg that grants CKAENCRYPT - Handle 'upgrade' as an...
glib2 security update
2.80.4-12 - Fix NVR 2.80.4-11 - Add patch for CVE-2025-13601...
glib2 security update
2.56.4-168 - Add patch for CVE-2025-13601 - Fix GUnixMount issues - Enable testsuite during RPM check phase...
libpng security update
2:1.5.13-8.0.1 - Fix CVE-2025-64720 Orabug: 38824465...
java-17-openjdk security update
1:17.0.18.0.8-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.18.0.8-1 - Update to jdk-17.0.18+8 GA - Add to .gitignore openjdk-17.0.18+8.tar.xz - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Set buildver to 8 - Set isga to 1 - Update sources to...
pcs security update
0.10.18-2.0.1.el810.8 - Replaced HAM-logo 0.10.18 - Debrand PCS 0.10.18-2.el810.8 - Fixed CVE-2025-67725, CVE-2025-67726 by patching bundled Tornado Resolves: RHEL-136415, RHEL-136420...
golang security update
1.25.5-1 - Update to Go 1.25.5 fips-1 1.25.3-5 - gating.yaml: Add tier1 s390x tests 1.25.3-4 - Cleanup lib/ ownership - Remove legacy logic forcing lib/ into golang-tests - Move lib/wasm, lib/fips140, and lib/time to main golang package - Fixes gojswasmexec availability 1.25.3-3 - plans/tier0.fmf...
gimp security update
2:3.0.4-1.2 - fix CVE-2025-14422 - fix CVE-2025-14423 - fix CVE-2025-14424 - fix CVE-2025-14425 2:3.0.4-1.1 - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934...
glib2 security update
2.68.4-18.1 - Add patch for CVE-2025-13601...
go-toolset:rhel8 security update
delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 Sync from CentOS Stream 9 - Related: RHEL-121223 golang 1.25.5-1 - Update to Go 1.25.5 fips-1 - Resolves: RHEL-139365...
golang security update
1.25.5-2 - Rebase to rhel-9-main - Related: RHEL-139366 1.25.5-1 - Update to Go 1.25.5 fips-1 - Resolves: RHEL-139366 1.25.3-2 - Cleanup lib/ ownership...
thunderbird security update
140.7.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 140.7.0 - Add OpenELA debranding 140.7.0-1 - Update to 140.7.0 ESR...
kernel security update
6.12.0-124.28.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
mariadb-devel:10.3 security update
asio 1.10.8-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild galera 25.3.37-1.0.1 - Bump release for rebuild - x8664 and i386 need to be built the same day Judy 1.0.5-18.0.1 - Rebuild Orabug: 31667911 mariadb 3:10.3.39-2.0.1 - Bump release for rebuild - x8664 and i386 need to be...
brotli security update
1.1.0-7 - Resolves: RHEL-133984 CVE-2025-6176 Brotli decompression bomb DoS in scrapy...
kernel security update
5.14.0-611.24.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel security update
4.18.0-553.94.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
container-tools:rhel8 security update
aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...
jmc security update
8.2.0-4 - Bump LZ4 Version to 1.10.2. Related: RHEL-135478...
transfig security update
1:3.2.6a-5 - Detect nan in spline control values - Fix for CVE-2025-46397...
net-snmp security update
5.8-33.0.1 - fix error index value when snmpget is used a proxy pass Orabug: 34905643 1:5.8-33 - fix out of bound access RHEL-137501 - perl modern auth enablement RHEL-137310...
Unbreakable Enterprise kernel security update
5.4.17-2136.351.3.2 - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38855323 CVE-2025-40280 - tipc: simplify the finalize work queue Xin Long Orabug: 38855323 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38855319 CVE-2025-40248 ...
gpsd security update
1:3.26.1-1.0.1.el101.1 - Replace upstream reference Orabug: 37033219 1:3.26.1-1.el101.1 - fix buffer overflow in NMEA2000 driver CVE-2025-67268 - fix integer underflow in handling of Navcom packets CVE-2025-67269...
gpsd-minimal security update
1:3.26.1-1.0.1.el97.1 - Replaced upstream reference Orabug: 35865525...
Unbreakable Enterprise kernel security update
6.12.0-107.59.3.3 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38858283 CVE-2025-40248...
firefox security update
140.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.7.0-1 - Update to 140.7.0 ESR...
firefox security update
140.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.7.0-1 - Update to 140.7.0 ESR...
transfig security update
1:3.2.7b-11 - Detect nan in spline control values - CVE-2025-46397...
libpq security update
13.23-1 - Rebase to upstream release 13.23 - Resolves: RHEL-131269 CVE-2025-12818...
net-snmp security update
5.9.1-17.0.1.1 - fix error index value when snmpget is used a proxy pass Orabug: 35010262 1:5.9.1-17.1 - fix out of bound access issue RHEL-137510 - enable PQC RHEL-132653...
vsftpd security update
3.0.5-6.2 - Rebuild to test with proper configuration - Related: RHEL-134169 3.0.5-6.1 - Fix CVE-2025-14242 - Resolves: RHEL-134169...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3635 pgrepack 1.5.1-1 - Update to v1.5.1 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47604 1.4.8-1 - Resolves: RHEL-3636 - Initial import for PG 16...
gnupg2 security update
2.2.20-4 - Fix CVE-2025-68973 gpg.fail/memcpy...
gnupg2 security update
2.3.3-5 - Fix CVE-2025-68973 gpg.fail/memcpy...
vsftpd security update
3.0.3-36.3 - Rebuild to test with proper configuration - Related: RHEL-134160 3.0.3-36.2 - Rebuild to test with proper configuration - Related: RHEL-134160 3.0.3-36.1 - Fix CVE-2025-14242 - Resolves: RHEL-134160...
firefox security update
140.6.0-1.0.1 - Update to 140.6.0 ESR Orabug: 38813993CVE-2025-14321CVE-2025-14322 CVE-2025-14323CVE-2025-14324CVE-2025-14325CVE-2025-14328 CVE-2025-14329CVE-2025-14330CVE-2025-14331CVE-2025-14333 140.5.0-1.0.1 - Update to 140.5.0 ESR Orabug: 38708474CVE-2025-13012CVE-2025-13013...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.15-1 - Update to 15.15 - Resolves: RHEL-128819 CVE-2025-12818...
cups security update
1:2.2.6-66 - fix use-after-free reported by OSH 1:2.2.6-65 - RHEL-129729 CVE-2025-58436 cups: Slow client communication leads to a possible DoS attack - RHEL-129720 CVE-2025-61915 cups: Local denial-of-service via cupsd.conf update and related issues...
postgresql security update
13.23-1 - Update to 13.23 - Resolves: RHEL-128812 CVE-2025-12818 13.22-3 - Add sysusers configuration and complete tmpfiles.d dynamically - Related: RHEL-94905 13.22-2 - Define tmpfiles.d to enable ostree and bootc support...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.23-1 - Update to 13.23 - Resolves: RHEL-128818 CVE-2025-12818...
Unbreakable Enterprise kernel security update
5.15.0-316.196.4.1 - tipc: Fix use-after-free in tipcmonreinitself. Kuniyuki Iwashima Orabug: 38788585 CVE-2025-40280 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38788587 CVE-2025-40271 - vsock: Ignore signal/timeout on connect if already established Michal Luczaj Orabug: 38788594...
openssl security update
1:1.1.1k-14 - Backport fix for Out-of-bounds read & write in RFC 3211 KEK Unwrap Fix CVE-2025-9230 Resolves: RHEL-128613 - Fix bug for ticketlifetimehint exceed issue Resolves: RHEL-119891 1:1.1.1k-13 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654...
postgresql:16 security update
pgaudit pgrepack postgres-decoderbufs postgresql 16.11-1 - Update to 16.11 - Resolves: RHEL-128820 CVE-2025-12818...
buildah security update
1.41.8-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.8-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.41 https://github.com/containers/buildah/commit/f85ff89 - fixes 'CVE-2025-47913 buildah:...
podman security update
5.6.0-11.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 6:5.6.0-11 - update to the latest content of...
Unbreakable Enterprise kernel security update
5.4.17-2136.351.3.1 - fs/proc: fix uaf in procreaddirde Wei Yang Orabug: 38787139 CVE-2025-40271 5.4.17-2136.351.3 - Reapply 'cpuidle: menu: Avoid discarding useful information' Harshvardhan Jha Orabug: 38715366 - fbcon: fix integer overflow in font allocation Samasth Norway Ananda Orabug: 387025...
libsoup security update
2.72.0-12.3 - Fix patch for CVE-2025-14523 to handle comparison case-insensitively 2.72.0-12.2 - Backport patch for CVE-2025-14523 2.72.0-12.1 - Backport patch for CVE-2025-4945 and CVE-2025-11021...
libsoup security update
2.62.3-11 - Backport patch for CVE-2025-14523...
kernel security update
5.14.0-611.20.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...