9172 matches found
glibc security update
2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: April-14-2025 Cupertino Miranda - 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string...
gimp:2.8 security update
gimp 2:2.8.22-26.2 - fix CVE-2025-5473 RHEL-95696 2:2.8.22-26.1 - fix CVE-2025-48797 RHEL-93503 - fix CVE-2025-48798 RHEL-93506 pygobject2 2.28.7-5 - bump spec to fix NVR pygtk2 2.24.0-25 - Fix shebang mangling for prefix=app 1907579 - disable numpy for flatpak 1907579 python2-pycairo 1.16.3-7 -...
gimp security update
2:2.99.8-4.2 - fix CVE-2025-5473 RHEL-95700 2:2.99.8-4.1 - fix CVE-2025-48797 RHEL-93521 - fix CVE-2025-48798 RHEL-93522...
kernel security update
5.14.0-570.22.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
gvisor-tap-vsock security update
6:0.8.5-2 - rebuild for CVE-2025-22871 - Resolves: RHEL-90038...
skopeo security update
2:1.18.1-2 - rebuild to fix CVE-2025-22871 skopeo: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-89329...
git-lfs security update
3.6.1-2 - Rebuild with new Golang - Resolves: RHEL-89304...
git-lfs security update
3.4.1-5 - Rebuild with new Golang - Resolves: RHEL-89264...
libvpx security update
1.7.0-12 - Add patch for double free Resolves: RHEL-93914...
libvpx security update
1.9.0-9 - Add patch for double free Resolves: RHEL-93908...
containernetworking-plugins security update
1:1.6.2-2 - rebuild to fix CVE-2025-22871 containernetworking-plugins: Request smuggling due to acceptance of invalid chunked data in net/http - Resolves: RHEL-90031...
.NET 9.0 security update
9.0.107-1.0.1 - Add support for Oracle Linux 9.0.107-1 - Update to .NET SDK 9.0.107 and Runtime 9.0.6 - Resolves: RHEL-94424...
mod_security security update
2.9.6-2 - add fix for CVE-2025-47947 - Resolves: RHEL-93016...
nodejs:20 security update
nodejs 1:20.19.2-1 - Update to version 20.19.2 Fixes: CVE-2025-23166 Resolves: RHEL-91595 RHEL-89598 RHEL-92854 1:20.19.1-1 - Update to version 20.19.1 Resolves: RHEL-78763 1:20.18.2-4 - Update c-ares to 1.34.5 to address CVE-2025-31498 1:20.18.2-3 - Remove obsolete lua pretransaction script from...
grafana-pcp security update
5.1.1-11 - Resolves RHEL-89314: CVE-2025-22871...
Unbreakable Enterprise kernel security update
5.4.17-2136.344.4.1 - certs: Reference revocation list for all keyrings Eric Snowberg Orabug: 38052126 5.4.17-2136.344.4 - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967555 5.4.17-2136.344.3 - net/mlx5e: Don't call cleanup on profile rollback failure Cosmin...
mod_security security update
2.9.6-2 - add fix for CVE-2025-47947 - Resolves: RHEL-93005...
.NET 8.0 security update
8.0.117-1.0.1 - Add support for Oracle Linux 8.0.117-1 - Update to .NET SDK 8.0.117 and Runtime 8.0.17 - Resolves: RHEL-94420...
.NET 9.0 security update
9.0.107-1.0.1 - Add support for Oracle Linux 9.0.107-1 - Update to .NET SDK 9.0.107 and Runtime 9.0.6 - Resolves: RHEL-94422...
.NET 8.0 security update
8.0.117-1.0.1 - Add support for Oracle Linux 8.0.117-1 - Update to .NET SDK 8.0.117 and Runtime 8.0.17 - Resolves: RHEL-94415...
grafana-pcp security update
5.1.1-10 - Resolves RHEL-89274: CVE-2025-22871...
libxml2 security update
2.9.7-20 - Fix CVE-2025-32414 RHEL-88198...
glibc security update
2.28-251.0.3.22 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: April-14-2025 Cupertino Miranda - 2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string...
kernel security update
4.18.0-553.56.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security update
5.14.0-570.21.1.0.16.OL9 - nvme-pci: remove two deallocate zeroes quirks Orabug: 37756650 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
thunderbird security update
128.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.11.0 - Add OpenELA debranding 128.11.0-1 - Update to 128.11.0 128.10.1-1 - Update to 128.10.1...
glibc security update
2.34-168.0.1.19 - Forward-port Oracle patches for ol9-u6 Reviewed-by: David Faust Oracle history:...
Unbreakable Enterprise kernel security update
6.12.0-100.28.2 - sched/eevdf: Fix se-slice being set to U64MAX and resulting crash Omar Sandoval - certs: Add new Oracle Linux Driver Signing key 1 certificate Sherry Yang Orabug: 37967533 - Revert 'block: sysfs option to change ioticks granularity' Gulam Mohamed Orabug: 37921776 - RDS: use...
perl-FCGI security update
1:0.79-8.1 - Fix CVE-2025-40907 integer overflow when parsing FastCGI parameters...
grafana security update
9.2.10-25 - Resolves RHEL-89269: CVE-2025-22871...
grafana security update
10.2.6-14 - Resolves RHEL-89309: CVE-2025-22871...
libxslt security update
1.1.32-6.2.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-6.2 - Fix CVE-2023-40403 aka 2022-4909 RHEL-89374...
Unbreakable Enterprise kernel security update
5.15.0-309.180.4 - nvme: unblock ctrl state transition for firmware update Daniel Wagner - nfsd: decrease sccount directly if fail to queue dlrecall Li Lingfeng - cpufreq/sched: Fix the usage of CPUFREQNEEDUPDATELIMITS Rafael J. Wysocki - ice: Check VF VSI Pointer Value in icevcaddfdirfltr...
zlib security update
1.2.7-21.0.1 - Resolves: CVE-2025-4638 Orabug: 38010977...
python3.12-cryptography security update
41.0.7-1.0.1 - CVE-2024-26130 Orabug: 37982815...
firefox security update
128.10.1-1.0.1 - Update to 128.10.1 Orabug: 38028280CVE-2025-4918CVE-2025-4919...
thunderbird security update
128.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.11.0 - Add OpenELA debranding 128.11.0-1 - Update to 128.11.0...
go-toolset:ol8 security update
delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev golang 1.23.9-1 - Update to Go 1.23.9 - Resolves: RHEL-94636 go-toolset 1.23.9-1 - Update to Go 1.23.9 - Resolves: RHEL-94636...
nodejs:22 security update
nodejs 1:22.16.0-1 - Update to 22.16.0 Resolves: RHEL-89600 RHEL-92872 RHEL-92420...
nodejs:20 security update
nodejs 1:20.19.2-1 - Update to version 20.19.2 Resolves: RHEL-92865 RHEL-88876 RHEL-91597 nodejs-nodemon nodejs-packaging...
golang security update
1.23.9-1 - Update to Go 1.23.9 - Remove runtime-usleep-s390x.patch, already merged - Resolves: RHEL-93212...
nodejs:22 security update
nodejs 1:22.15-1-1 - Update to 22.16.0 Fixes: CVE-2025-23166 - Resolves: RHEL-91596 RHEL-92859 1:22.15.0-1 - Update to 22.15.0 - Drop upstream patches 1:22.13.1-4 - Patch fix for sqlite CVE-2025-31498 Resolves: RHEL-87300 1:22.13.1-3 - Update c-ares to newest version with fix for CVE-2025-31498...
ghostscript security update
9.27-17 - RHEL-88965 CVE-2025-27832 ghostscript: NPDL device: Compression buffer overflow...
python36:3.6 security update
python36 python-distro python-docs python-docutils python-nose python-pygments python-pymongo 3.7.0-2 - Backport CVE-2024-5629...
git security update
2.43.5-3 - add the option to sanitize sideband channel messages - Resolves: RHEL-74177...
krb5 security update
1.18.2-32.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-32 - Do not block HMAC-MD4/5 in FIPS mode Resolves: RHEL-86786 - Don't issue RC4 session keys by default CVE-2025-3576 Resolves: RHEL-88049 - Add PKINIT paChecksum2 from MS-PKCA v20230920 Resolves: RHEL-82648...
perl-CPAN security update
2.18-402 - Resolves: RHEL-9605 - Add 2022 PAUSE public key. - Change default value for urllist to https://www.cpan.org - Use gpg --verify --output ... to disentangle data and signature...
rsync security update
3.1.3-23 - Resolves: RHEL-52004 - Slowness in rsync due to extra validation steps 3.1.3-22 - Resolves: RHEL-91519 - Improper Pointer Arithmetic in pcl...
varnish:6 security update
varnish 6.0.13-1.1 - Resolves: RHEL-89695 - varnish: request smuggling attacks CVE-2025-47905 varnish-modules...
varnish security update
6.6.2-6.1 - Resolves: RHEL-89700 - varnish: request smuggling attacks CVE-2025-47905...