8988 matches found
unbound security update
1.16.2-19.1 - Fix RebirthDay Attack CVE-2025-5994 - Resolves: RHEL-104128...
nodejs:22 security update
nodejs 1:22.16.0-2 - Patch fix for sqlite CVE-2025-6965 Resolves: RHEL-103835 1:22.15-1-1 - Update to 22.16.0 Fixes: CVE-2025-23166 - Resolves: RHEL-91596 RHEL-92859 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300...
sqlite security update
3.34.1-8 - Fixes CVE-2025-6965...
unbound security update
1.16.2-5.9 - Fix RebirthDay Attack CVE-2025-5994 - Resolves: RHEL-104123...
java-1.8.0-openjdk security update
1:1.8.0.462.b08-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.462.b08-1 - Update to 8u462-b08 GA - Update release notes for 8u462-b08. - Require tzdata 2025b due to upstream inclusion of JDK-8352716 - Add early backport of JDK-8339414 - Sync the copy of the portable specfile with the...
sqlite security update
3.26.0-20 - Fixes CVE-2025-6965...
perl security update
4:5.26.3-423 - Fix CVE-2025-40909 - Clone dirhandles without fchdir - Fix test broken by update in zlib on s390x...
firefox security update
128.13.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.13.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.13.0-1 - Update to 128.13.0 build1...
firefox security update
128.13.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.13.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.13.0-1 - Update to 128.13.0 build1...
xorg-x11-server security update
1.20.4-29.0.3 - Fix CVE-2025-49175, CVE-2025-49176, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 Orabug: 38157695 1.20.4-29.0.1 - Fixed CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 - CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 - CVE-2025-26601 Orabug: 37712847...
tigervnc security update
1.8.0-33.0.7 - Fix CVE-2025-49175, CVE-2025-49176, CVE-2025-49178, CVE-2025-49179, CVE-2025-49180 Orabug: 38157695...
apache-commons-vfs security update
2.0-11.0.1 - Simplify UriParser Orabug: 38161936CVE-2025-27553...
sudo security update
1.8.23-10.0.1.3 - CVE-2025-32462 sudo: LPE via host option Orabug: 38187299...
git security update
2.43.7-1 - update to 2.43.7 - Resolves: RHEL-102440, RHEL-102454, RHEL-102674, RHEL-102680...
redis security update
6.2.19-1 - rebase to 6.2.19 for CVE-2025-32023 and CVE-2025-48367 6.2.18-1 - rebase to 6.2.18 for CVE-2025-21605 6.2.17-1 -- rebase to 6.2.17 for CVE-2024-46981 6.2.16-1 - rebase to 6.2.16 RHEL-26627...
kernel security update
5.14.0-570.28.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
avahi security update
0.8-22.1 - Fix CVE-2024-52615 RHEL-94847...
cloud-init security update
23.4-7.0.2.el810.10 - Fixes regression in cloud-init with module ccwritefilesdeferred Orabug: 37382965 - Update IPv6 IMDS endpoint to ULA and drop NIC identifier Orabug: 35965980 - Enable IPv6 Orabug: 36502414 - Added missing services in rhel/systemd/cloud-init.service Orabug: 32183938 - Increase...
git security update
2.47.3-1 - update to 2.47.3 - Resolves: RHEL-102449, RHEL-102463, RHEL-102675, RHEL-102681...
fence-agents security update
4.10.0-86.7 - bundled setuptools: fix CVE-2025-47273 Resolves: RHEL-95903 4.10.0-86.6 - fencekubevirt: use hard poweroff Resolves: RHEL-96183...
kernel security update
4.18.0-553.63.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
6.12.0-101.33.4.3 - Revert 'Add normal counters' Boris Ostrovsky Orabug: 38171405 6.12.0-101.33.4.2 - sunrpc: handle SVCGARBAGE during svc auth processing as auth error Jeff Layton Orabug: 38178286 CVE-2025-38089 - mm: memcontrol: remove memcg from LRU on release instead of offline Harry Yoo...
tomcat security update
1:9.0.87-3.el96.1 - Resolves: RHEL-91765 tomcat: DoS via malformed HTTP/2 PRIORITYUPDATE frame CVE-2025-31650 - Resolves: RHEL-71981 tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation CVE-2024-56337 1:9.0.87-3 - Resolves: RHEL-82945 tomcat: Potential RCE and/or...
java-17-openjdk security update
1:17.0.16.0.8-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.16.0.8-2 - Update to jdk-17.0.16+8 - Add to .gitignore openjdk-17.0.16+8.tar.xz - Set updatever to 16 - Set buildver to 8 - Update sources to openjdk-17.0.16+8.tar.xz - Resolves: RHEL-101793 - Resolves: RHEL-102273 - Require...
tomcat security update
1:9.0.87-1.el810.4 - Resolves: RHEL-91761 tomcat: DoS via malformed HTTP/2 PRIORITYUPDATE frame CVE-2025-31650 - Resolves: RHEL-71971 tomcat: Incomplete fix for CVE-2024-50379 - RCE due to TOCTOU issue in JSP compilation CVE-2024-56337...
kernel security update
4.18.0-553.62.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
glib2 security update
2.56.4-166 - Add patches for CVE-2024-34397, CVE-2024-52533, CVE-2025-4373 - Update GDateTime test for new tzdata - Resolves: RHEL-67084 - Resolves: RHEL-94286 - Resolves: RHEL-94848...
glib2 security update
2.68.4-16.2 - Add patches for CVE-2024-52533 and CVE-2025-4373 - Update GDateTime test for new tzdata - Resolves: RHEL-94290 - Resolves: RHEL-102845...
go-toolset:rhel8 security update
delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev golang 1.24.4-1 - Update to Go 1.24.4 fips-1 - Resolves: RHEL-85264 go-toolset 1.24.4-1 - Update to Go 1.24.4 fips-1 - Resolves: RHEL-85264...
pcs security update
0.10.18-2.0.1.6 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.6 - Fixed CVE-2024-49761 by updating rubygem rexml Resolves: RHEL-98708...
kernel security update
5.14.0-570.26.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
python3.12-setuptools security update
68.2.2-5 - Security fix for CVE-2025-47273 Resolves: RHEL-101131...
emacs security update
1:26.1-15 - Restore definition of variable 'enable-dir-local-variables' RHEL-92830 1:26.1-14 - Fix arbitrary code execution via Lisp macro expansion RHEL-69394...
socat security update
1.7.4.1-2 - add fix for CVE-2024-54661 Resolves: RHEL-70095 - switch to autopatch, remove unused patches...
lz4 security update
1.8.3-5 - Fix a renamed variable in one of the patches - Since the variable was used in an assert, the regular build did not fail, but the QA builds did. - Related: RHEL-87362 1.8.3-4 - Fix CVE-2019-17543 - Resolves: RHEL-87362...
python3.11-setuptools security update
65.5.1-4 - Security fix for CVE-2025-47273 Resolves: RHEL-101126...
Unbreakable Enterprise kernel security update
5.4.17-2136.345.5.3 - x86/bpf: Classic BPF program can fail when BHB barrier is used Alexandre Chartre Orabug: 38167806 5.4.17-2136.345.5.2 - Add Zen34 clients Borislav Petkov AMD Orabug: 38023241 CVE-2024-36350 CVE-2024-36357 - x86/process: Move the buffer clearing before MONITOR Kim Phillips...
python-setuptools security update
39.2.0-9 - Security fix for CVE-2025-47273 Resolves: RHEL-96802...
Unbreakable Enterprise kernel security update
5.15.0-310.184.5.2 - sunrpc: handle SVCGARBAGE during svc auth processing as auth error Jeff Layton CVE-2025-38089 - netsched: schsfq: move the limit validation Octavian Purdila CVE-2025-37752 - netsched: schsfq: use a temporary work area for validating configuration Octavian Purdila - netsched:...
firefox security update
128.12.0-1.0.1 - Update to 128.12.0 Orabug: 38141310CVE-2025-6424CVE-2025-6425 CVE-2025-6429CVE-2025-6430...
perl-File-Find-Rule security update
0.33-5.0.1 - Use 3 arg open in grep Orabug: 38120380CVE-2011-10007...
gnome-remote-desktop security update
0.1.8-4 - Backport connection throttling Resolves: RHEL-92791...
kernel security update
4.18.0-553.60.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libxml2 security update
2.9.13-10 - Fix CVE-2025-6021 RHEL-96507 - Fix CVE-2025-49794 RHEL-96405 - Fix CVE-2025-49796 RHEL-96431...
libxml2 security update
2.9.7-21.1 - Fix CVE-2025-6021 RHEL-96498 - Fix CVE-2025-49794 RHEL-96398 - Fix CVE-2025-49796 RHEL-96424 2.9.7-21 - Fix integer overflow RHEL-74345...
gnome-remote-desktop security update
40.0-11 - Backport connection throttling Resolves: RHEL-92795...
mpfr security update
3.1.1-4.0.1 - Fixes buffer overflow in mpfrstrtofr CVE-2014-9474 Orabug: 38103811...
container-tools:rhel8 security update
aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp netavark oci-seccomp-bpf-hook podman 4.9.4-22.0.1 - Fixes issue of container created in cgroupv2 not start in cgroupv1 Orabug: 36136813 - Fixes container...
jq security update
1.6-11 - Fix CVE-2025-48060 AddressSanitizer: stack-buffer-overflow in jqfuzzexecute jvstringvfmt - Resolves: RHEL-92987 1.6-10 - Fix CVE-2024-23337 jq has signed integer overflow in jv.c:jvparraywrite - Resolves: RHEL-92968...
perl-File-Find-Rule-Perl security update
1.13-2.0.1 - Use 3 arg open in grep Orabug: 38120371CVE-2011-10007...