8988 matches found
xorg-x11-server and xorg-x11-server-Xwayland security update
xorg-x11-server 1.20.11-26 - CVE fix for: CVE-2025-49175 RHEL-97273, CVE-2025-49176 RHEL-97329, CVE-2025-49178 RHEL-97369, CVE-2025-49179 RHEL-97422, CVE-2025-49180 RHEL-97235 xorg-x11-server-Xwayland 21.1.3-18 - CVE fix for: CVE-2025-49175 RHEL-97278, CVE-2025-49176 RHEL-97299, CVE-2025-49178...
perl-FCGI security update
1:0.74-8.0.1 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters Orabug: 38047531...
kernel security update
5.14.0-570.23.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
firefox security update
128.11.0-1.0.1 - Update to 128.11.0 Orabug: 38077559CVE-2025-5263CVE-2025-5264 CVE-2025-5266CVE-2025-5267CVE-2025-5268CVE-2025-5269...
libblockdev security update
2.28-14.0.1 - enable btrfs support Orabug: 30792917 2.28-14 - Don't allow suid and dev set on fs resize CVE-2025-6019 Resolves: RHEL-96038...
perl-YAML-LibYAML security update
1:0.82-6.1 - Use 3-arg form of open in LoadFile CVE-2025-40908...
xorg-x11-server and xorg-x11-server-Xwayland security update
xorg-x11-server 1.20.11-31 - CVE fix for: CVE-2025-49175 RHEL-97289, CVE-2025-49176 RHEL-97311, CVE-2025-49178 RHEL-97388, CVE-2025-49179 RHEL-97410, CVE-2025-49180 RHEL-97255 1.20.11-30 - xfree86: Fix potentially NULL reference to platform device's PCI device Resolves:...
idm:DL1 security update
bind-dyndb-ldap 11.6-6 - Fix rpminspect warnings Resolves: RHEL-22497 custodia ipa 4.9.13-18.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 4.9.13-18 - Set krbCanonicalName admin@REALM on the admin user Resolves: RHEL-89895 4.9.13-17 - kdb: keeep ipadbgetconnection from...
postgresql security update
9.2.24-9.0.5 - Resolves CVE-2025-1094: Improper neutralization of quoting syntax in certain - libpq functions Orabug: 37843176...
perl-FCGI:0.78 security update
perl-FCGI 1:0.78-12 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters perl-FCGI 1:0.78-12 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters perl-FCGI 1:0.78-12 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters perl-FCGI 1:0.78-12 - Fix...
apache-commons-beanutils security update
Fri Jun 13 2025 Mikolaj Izdebski - Fix improper access control vulnerability - Resolves: CVE-2025-48734...
buildah security update
1.39.4-2.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.39.4-2 - rebuild to fix CVE-2025-22871 buildah: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-89294...
gimp:2.8 security update
gimp 2:2.8.22-26.2 - fix CVE-2025-5473 RHEL-95696 2:2.8.22-26.1 - fix CVE-2025-48797 RHEL-93503 - fix CVE-2025-48798 RHEL-93506 pygobject2 2.28.7-5 - bump spec to fix NVR pygtk2 2.24.0-25 - Fix shebang mangling for prefix=app 1907579 - disable numpy for flatpak 1907579 python2-pycairo 1.16.3-7 -...
kernel security update
3.10.0-1160.119.1.0.9.el7.OL7 - netfilter: ipset: add missing range check in bitmapipuadt Jeongjun Park CVE-2024-53141 Orabug: 37964173 - Update OL SB certificates - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985797...
gimp security update
2:2.99.8-4.2 - fix CVE-2025-5473 RHEL-95700 2:2.99.8-4.1 - fix CVE-2025-48797 RHEL-93521 - fix CVE-2025-48798 RHEL-93522...
kernel security update
5.14.0-570.22.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
ipa security update
4.12.2-14.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 - Add bind to ipa-server-common Requires Orabug: 36518596 4.12.2-14.1 - Resolves: RHEL-89908 EMBARGOED CVE-2025-4404 ipa: Privilege escalation from host to domain admin in FreeIPA - Resolves: RHEL-89144 kdb:...
glibc security update
2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: April-14-2025 Cupertino Miranda - 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.12-2 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/cf49e7c - fixes 'CVE-2025-22871 container-tools:rhel8/buildah: Request smuggling due to acceptance of invalid chunked data in...
podman security update
5.4.0-10.0.1 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 5:5.4.0-10 - rebuild to fix CVE-2025-22871 podman: Request smuggling due to acceptance ...
git-lfs security update
3.6.1-2 - Rebuild with new Golang - Resolves: RHEL-89304...
gvisor-tap-vsock security update
6:0.8.5-2 - rebuild for CVE-2025-22871 - Resolves: RHEL-90038...
libvpx security update
1.7.0-12 - Add patch for double free Resolves: RHEL-93914...
containernetworking-plugins security update
1:1.6.2-2 - rebuild to fix CVE-2025-22871 containernetworking-plugins: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-90031...
skopeo security update
2:1.18.1-2 - rebuild to fix CVE-2025-22871 skopeo: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-89329...
git-lfs security update
3.4.1-5 - Rebuild with new Golang - Resolves: RHEL-89264...
libvpx security update
1.9.0-9 - Add patch for double free Resolves: RHEL-93908...
.NET 9.0 security update
9.0.107-1.0.1 - Add support for Oracle Linux 9.0.107-1 - Update to .NET SDK 9.0.107 and Runtime 9.0.6 - Resolves: RHEL-94424...
Unbreakable Enterprise kernel security update
5.4.17-2136.344.4.1 - certs: Reference revocation list for all keyrings Eric Snowberg Orabug: 38052126 5.4.17-2136.344.4 - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967555 5.4.17-2136.344.3 - net/mlx5e: Don't call cleanup on profile rollback failure Cosmin...
.NET 8.0 security update
8.0.117-1.0.1 - Add support for Oracle Linux 8.0.117-1 - Update to .NET SDK 8.0.117 and Runtime 8.0.17 - Resolves: RHEL-94415...
.NET 9.0 security update
9.0.107-1.0.1 - Add support for Oracle Linux 9.0.107-1 - Update to .NET SDK 9.0.107 and Runtime 9.0.6 - Resolves: RHEL-94422...
grafana-pcp security update
5.1.1-10 - Resolves RHEL-89274: CVE-2025-22871...
grafana-pcp security update
5.1.1-11 - Resolves RHEL-89314: CVE-2025-22871...
mod_security security update
2.9.6-2 - add fix for CVE-2025-47947 - Resolves: RHEL-93016...
.NET 8.0 security update
8.0.117-1.0.1 - Add support for Oracle Linux 8.0.117-1 - Update to .NET SDK 8.0.117 and Runtime 8.0.17 - Resolves: RHEL-94420...
nodejs:20 security update
nodejs 1:20.19.2-1 - Update to version 20.19.2 Fixes: CVE-2025-23166 Resolves: RHEL-91595 RHEL-89598 RHEL-92854 1:20.19.1-1 - Update to version 20.19.1 Resolves: RHEL-78763 1:20.18.2-4 - Update c-ares to 1.34.5 to address CVE-2025-31498 1:20.18.2-3 - Remove obsolete lua pretransaction script from...
mod_security security update
2.9.6-2 - add fix for CVE-2025-47947 - Resolves: RHEL-93005...
libxml2 security update
2.9.7-20 - Fix CVE-2025-32414 RHEL-88198...
kernel security update
5.14.0-570.21.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
thunderbird security update
128.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.11.0 - Add OpenELA debranding 128.11.0-1 - Update to 128.11.0 128.10.1-1 - Update to 128.10.1...
kernel security update
4.18.0-553.56.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
glibc security update
2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: April-14-2025 Cupertino Miranda - 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string...
Unbreakable Enterprise kernel security update
6.12.0-100.28.2 - sched/eevdf: Fix se-slice being set to U64MAX and resulting crash Omar Sandoval - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967533 - Revert 'block: sysfs option to change ioticks granularity' Gulam Mohamed Orabug: 37921776 - RDS: use...
perl-FCGI security update
1:0.79-8.1 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters...
grafana security update
9.2.10-25 - Resolves RHEL-89269: CVE-2025-22871...
glibc security update
2.34-168.0.1.19 - Forward-port Oracle patches for ol9-u6 Reviewed-by: David Faust Oracle history:...
libxslt security update
1.1.32-6.2.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-6.2 - Fix CVE-2023-40403 aka 2022-4909 RHEL-89374...
grafana security update
10.2.6-14 - Resolves RHEL-89309: CVE-2025-22871...
Unbreakable Enterprise kernel security update
5.15.0-309.180.4 - nvme: unblock ctrl state transition for firmware update Daniel Wagner - nfsd: decrease sccount directly if fail to queue dlrecall Li Lingfeng - cpufreq/sched: Fix the usage of CPUFREQNEEDUPDATELIMITS Rafael J. Wysocki - ice: Check VF VSI Pointer Value in icevcaddfdirfltr...
zlib security update
1.2.7-21.0.1 - Resolves: CVE-2025-4638 Orabug: 38010977...