8988 matches found
Unbreakable Enterprise kernel security update
5.15.0-312.187.5.1 - x86/vmscape: Warn when STIBP is disabled with SMT Pawan Gupta Orabug: 38343660 - x86/bugs: Move cpubugssmtupdate down Pawan Gupta Orabug: 38343660 - x86/vmscape: Enable the mitigation Pawan Gupta Orabug: 38343660 - x86/vmscape: Add conditional IBPB mitigation Pawan Gupta...
Unbreakable Enterprise kernel security update
5.4.17-2136.347.6.1 - x86/vmscape: Warn when STIBP is disabled with SMT Pawan Gupta Orabug: 38343661 - x86/bugs: Move cpubugssmtupdate down Pawan Gupta Orabug: 38343661 - x86/vmscape: Enable the mitigation Pawan Gupta Orabug: 38343661 - x86/vmscape: Add conditional IBPB mitigation Pawan Gupta...
Unbreakable Enterprise kernel security update
5.4.17-2136.347.6 - netsched: schsfq: move the limit validation Octavian Purdila Orabug: 38377926 CVE-2025-37752 - netsched: schsfq: use a temporary work area for validating configuration Octavian Purdila Orabug: 38377926 - netsched: schsfq: don't allow 1 packet limit Octavian Purdila Orabug:...
libxml2 security update
2.9.1-6.0.11.6 - Fix CVE-2025-32415: Fix heap buffer overflow Orabug: 38310750...
Unbreakable Enterprise kernel security update
5.15.0-312.187.5 - Revert 'mm: hugetlb: independent PMD page table shared count' Harshit Mogalapalli Orabug: 38327655 5.15.0-312.187.4 - rds: Fix NULL ptr deref in xasstart Hakon Bugge Orabug: 38166374 - KVM: x86: use arrayindexnospec with indices that come from guest Thijs Raymakers Orabug:...
httpd:2.4 security update
httpd 2.4.37-65.5.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.5 - Resolves: RHEL-99944 - CVE-2025-49812 httpd: HTTP Session Hijack via a TLS upgrade - Resolves: RHEL-99969 - CVE-2024-47252 httpd: insufficient escaping of user-supplied data in modssl - Resolves:...
kernel security update
4.18.0-553.72.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security update
5.14.0-570.39.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
resource-agents security update
4.9.0-54.16 - bundled requests: fix CVE-2024-47081 Resolves: RHEL-104761 4.9.0-54.15 - ocf-shellfuncs/AWS agents: dont sleep after the final try in curlretry Resolves: RHEL-102731 4.9.0-54.13 - Filesystem: add support for aznfs Resolves: RHEL-91257 4.9.0-54.12 - tomcat: fix CATALINAPID not set, a...
postgresql:12 security update
pgaudit pgrepack postgres-decoderbufs postgresql 12.22-5 - Fix previous Backport 12.22-4 - Backport CVE-2025-8715...
pam security update
1.5.1-26.0.1 - pamlimits: fix use after free in pamsmopensession Orabug: 36406534 1.5.1-26 - pamnamespace: fix potential privilege escalation. Resolves: CVE-2025-6020 and RHEL-96729...
python3.9 security update
3.9.21-2.2 - Security fix for CVE-2025-8194 Resolves: RHEL-106375...
python3.11 security update
3.11.11-2.2 - Security fix for CVE-2025-8194 Resolves: RHEL-106366...
udisks2 security update
2.9.0-16.1 - udiskslinuxmanager: Add lower bounds check to fdindex CVE-2025-8067 RHEL-109408...
pam security update
1.1.8-23.0.3 - pamnamespace: fix potential privilege escalation CVE-2025-6020 Orabug: 38156729...
postgresql:13 security update
pgaudit 1.5.0-1 - Update to version 1.5.0 Related: 1855776 pgrepack 1.4.6-3 - Release bump - enable gating 1.4.6-2 - Rebuild - Resolves:1954442 1.4.6-1 - Rebase to upstream release 1.4.6 1.4.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 1.4.5-1 - Initial packaging...
python3.12 security update
3.12.9-1.2 - Security fix for CVE-2025-8194 Resolves: RHEL-106370...
udisks2 security update
2.9.4-11.0.1.1 - Enable btrfs support for OL supported arches Orabug: 37464632 2.9.4-11.1 - udiskslinuxmanager: Add lower bounds check to fdindex CVE-2025-8067 RHEL-109417 2.9.4-11 - udiskslinuxblockobject: Try issuing BLKRRPART ioctl harder - lvm2: Refactor udisksdaemonutillvm2wipeblock 2.9.4-10...
postgresql:15 security update
pgaudit 1.7.0-1 - Update to 1.7.0 - Support postgresql 15 - Related: 2128241 pgrepack 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 2128241 1.4.6-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 postgres-decoderbufs 1.9.7-1.Final - Iitial import...
httpd security update
2.4.62-4.0.1.4 - Replace index.html with Oracle's index page oracleindex.html. 2.4.62-4.4 - Resolves: RHEL-99949 - CVE-2025-49812 httpd: HTTP Session Hijack via a TLS upgrade 2.4.62-4.1 - Resolves: RHEL-99972 - CVE-2024-47252 httpd: insufficient escaping of user-supplied data in modssl - Resolves...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
mod_http2 security update
2.0.26-4.1 - Resolves: RHEL-99956 - CVE-2025-49630 httpd: untrusted input from a client causes an assertion to fail in the Apache modproxyhttp2 module...
python39:3.9 security update
modwsgi numpy python39 3.9.20-2 - Security fix for CVE-2025-8194 Resolves: RHEL-106359 python3x-pip python3x-setuptools 50.3.2-7 - Security fix for CVE-2025-47273 Resolves: RHEL-104339 python3x-six python-cffi python-chardet python-cryptography python-idna python-lxml python-ply python-psutil...
postgresql security update
13.22-1 - Update to 13.22 13.18-1 - Update to 13.18...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack 1.5.1-1 - Update to 1.5.1 postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.10-1 - Update to 16.10...
python3.11 security update
3.11.13-2.0.1 - Update rpm-macros description Orabug: 36024572 3.11.13-2 - Security fix for CVE-2025-8194 Resolves: RHEL-106338...
postgresql:16 security update
pgaudit pgrepack pgvector 0.6.2-2 - Enable Portable build - Resolves: RHEL-84405 postgres-decoderbufs postgresql 16.10-1 - Update to 16.10...
thunderbird security update
128.14.0-3.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.14.0 - Add OpenELA debranding 128.14.0-3 - Update to 128.14.0 build2 128.14.0-2 - Add missing translations 128.14.0-1 - Update to 128.14.0 build1...
fence-agents security update
4.2.1-129.14 - fenceaws: add skiposshutdown parameter Resolves: RHEL-109814 4.2.1-129.13 - bundled requests: fix CVE-2024-47081 Resolves: RHEL-104741 4.2.1-129.12 - fenceibmvpc: add apikey file support Resolves: RHEL-107506...
aide security update
0.16.15.2 - CVE-2025-54389 aide: improper output neutralization enables bypassing resolves: RHEL-109907...
pam security update
1.3.1-38.0.1 - pamlimits: fix use after free in pamsmopensession Orabug: 36272695 1.3.1-38 - pamnamespace: fix potential privilege escalation. Resolves: CVE-2025-6020 and RHEL-96724...
python-cryptography security update
3.2.1-8 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates, resolves RHEL-97452...
thunderbird security update
128.14.0-3.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.14.0 - Add OpenELA debranding 128.14.0-3 - Update to 128.14.0 build2 128.14.0-2 - Add missing translations 128.14.0-1 - Update to 128.14.0 build1...
python3 security update
3.6.8-71.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-71 - Security fix for CVE-2025-8194 Resolves: RHEL-106333...
libxml2 security update
2.9.1-6.0.9.6 - Fix CVE-2025-7425: heap-use-after-free in xmlFreeID Orabug: 38290330...
firefox security update
128.14.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.14.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.14.0-2 - Add missing translations 128.14.0-1 - Update to 128.14.0 build1...
kernel security update
4.18.0-553.71.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
aide security update
0.16-103.2 RHEL 9.6.Z ERRATUM - CVE-2025-54389 aide: improper output neutralization enables bypassing Resolves: RHEL-109910...
kernel security update
5.14.0-570.37.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
glibc security update
2.17-326.0.11.3 - Back port fix for CVE-2025-4802 Orabug: 38144086...
firefox security update
128.14.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.14.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.14.0-2 - Add missing translations...
python3.12 security update
3.12.11-2 - Security fix for CVE-2025-8194 Resolves: RHEL-106343...
pki-deps:10.6 security update
apache-commons-collections apache-commons-lang apache-commons-net bea-stax fasterxml-oss-parent 69-1 - Rebase to version 69 - Resolves: RHEL-103106 glassfish-fastinfoset glassfish-jaxb glassfish-jaxb-api jackson-annotations 2.19.1-1 - Rebase to upstream version 2.19.1 - Resolves: RHEL-103106...
tomcat security update
1:9.0.87-1.el810.6 - Resolves: RHEL-102193 tomcat: http/2 'MadeYouReset' DoS attack through HTTP/2 control frames CVE-2025-48989 1:9.0.87-1.el810.5 - Resolves: RHEL-108486 tomcat: Apache Commons FileUpload DOS via part headers CVE-2025-48976 - Resolves: RHEL-108494 tomcat: Dos in multipart upload...
libarchive security update
3.5.3-6 - Resolves: CVE-2025-5914...
libarchive security update
3.3.3-6 - Resolves: CVE-2025-5914 - Skip compression-level=1 size check on s390x. - Related to https://github.com/libarchive/libarchive/issues/1515...
tomcat security update
1:9.0.87-3.el96.3 - Resolves: RHEL-102200 tomcat: http/2 'MadeYouReset' DoS attack through HTTP/2 control frames CVE-2025-48989 1:9.0.87-3.el96.2 - Resolves: RHEL-108491 tomcat: Apache Commons FileUpload DOS via part headers CVE-2025-48976 - Resolves: RHEL-108499 tomcat: Dos in multipart upload...
python-zipp security update
3.20.1-2 - Make package buildable for epel=9 3.20.1-1 - Update to 3.20.1 rhbz2307990 3.20.0-1 - Update to 3.20.0 rhbz2304028 3.19.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora41MassRebuild 3.19.2-2 - Rebuilt for Python 3.13 3.19.2-1 - Update to 3.19.2 rhbz2290429 3.19.1-1 - Update to...
xterm security update
366-12 - Rebuild because of build failure - Resolves: RHEL-94699 - Resolves: RHEL-103430 366-11 - Fix CVE-2022-24130 - Resolves: RHEL-94699 - Resolves: RHEL-103430...
mingw-sqlite security update
3.26.0.0-2 - Fix CVE-2019-5827 CVE-2019-13750 CVE-2019-13751 - Fix CVE-2019-19603 CVE-2020-13435 CVE-2020-35527 - Fix CVE-2020-35525 CVE-2022-35737 CVE-2020-24736 - Fix CVE-2023-7104 - Fix CVE-2025-6965 Resolves: RHEL-103830...