8990 matches found
tigervnc security update
1.14.1-1.1 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79406 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-80018 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79391 - Fix...
tigervnc security update
1.13.1-15 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79397 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-79401 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79386 - Fix...
kernel security update
4.18.0-553.44.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
bind security update
32:9.11.4-26.0.3.P2.16 - Resolve CVE-2024-11187 Orabug: 37616907...
rsync security update
3.1.3-21 - Resolves: RHEL-70207 - Path traversal vulnerability in rsync...
Unbreakable Enterprise kernel security update
5.15.0-306.177.4 - Revert 'usb: gadget: userial: Disable ep before setting port to null to fix the crash caused by port being null' Greg Kroah-Hartman - drm/v3d: Assign job pointer to NULL before signaling the fence Maira Canal - scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sys...
firefox security update
128.8.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.8.0-1 - Update to 128.8.0 build1...
krb5 security update
1.15.1-55.0.9 - Fixes CVE-2025-24528 , Prevent overflow when calculating ulog block size Orabug: 37587301...
squid security update
7:3.5.20-17.0.5.13 - Fixed cve 2023-46846 for http and icap request/response smuggling Orabug: 37326730...
firefox security update
128.8.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.8.0-1 - Update to 128.8.0 build1...
python-jinja2 security update
2.7.2-4.0.1 - Fix for CVE-2024-56326 Orabug: 37576737...
webkit2gtk3 security update
2.46.6-1 - Update to 2.46.6...
webkit2gtk3 security update
2.46.6-1 - Update to 2.46.6...
emacs security update
1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025...
doxygen security update
1:1.8.5-4.0.1 - Fix CVE-2020-11022 and CVE-2022-11023 in vendored jQuery Orabug: 37577394...
kernel security update
5.14.0-503.26.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
emacs security update
1:26.1-13 - Fix man.el shell injection vulnerability RHEL-79016...
libpq security update
13.20-1 - Update to 13.20...
postgresql:15 security update
pgaudit 1.7.0-1 - Update to 1.7.0 - Support postgresql 15 - Related: 2128241 pgrepack 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 2128241 postgres-decoderbufs 1.9.7-1.Final - Iitial import for postgresql 15 stream - Related: 2128241 postgresql 15.12-1 - Update to 15....
postgresql:13 security update
pgaudit 1.5.0-1 - Update to version 1.5.0 Related: 1855776 pgrepack 1.4.6-3 - Release bump - enable gating postgres-decoderbufs 0.10.0-2 - Release bump for rebuild against libpq-12.1-3 postgresql 13.20-1 - Update to 13.20 - Fix CVE-2025-1094...
bind9.18 security update
32:9.18.29-1.el95.1 - Fix CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion - Fix CVE-2024-12705 bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
postgresql:16 security update
pgaudit pgrepack 1.5.1-1 - Update to v1.5.1 pgvector 0.6.2-1 - Initial packaging postgres-decoderbufs postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-1094...
mysql security update
8.0.41-2 - Fix patching of logrotate 8.0.41-1 - Update to MySQL 8.0.41 8.0.40-1 - Update to MySQL 8.0.40 8.0.39-1 - Rebase to version 8.0.39 8.0.37-2 - Use signal to flush logs when rotating 8.0.37-1 - Update to MySQL 8.0.37 - Remove some legacy cmake options...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack 1.5.1-1 - Update to 1.5.1 postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-10...
bind9.16 security update
32:9.16.23-0.22.2 - Fix application of patch for CVE-2024-11187 - Resolves: RHEL-77103 32:9.16.23-0.22.1 - Limit additional section records CPU processing CVE-2024-11187 - Fix test backport changes...
bind security update
32:9.16.23-24.0.1.el95.3 - Fix bind: bind9: Many records in the additional section cause CPU exhaustion CVE-2024-11187...
libpq security update
13.20-1 - Update to 13.20...
mysql:8.0 security update
mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: 2180411 mecab-ipadic 2.7.0.20070801-17.0.1 - Rename the LICENSE.Fedora to LICENSE.oracle 2.7.0.20070801-17 - Bump the release - Resolves:...
bind security update
32:9.11.36-16.4 - Change patches applying to use -P parameter 32:9.11.36-16.3 - Limit additional section records CPU processing CVE-2024-11187 - Correct ANY queries to not have additional data appended...
postgresql security update
13.18-1 - Update to 13.18...
libsoup security update
2.62.2-2.0.3 - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in - soupheaderparseparamliststrict Orabug: 37557504...
nodejs:22 security update
nodejs 1:22.13.1-1 - Update to version 22.13.1 Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76354 1:22.11.0-1 - Update to version 22.11.0 22.4.1-4 - Initial import of nodeJS 22 nodejs-nodemon nodejs-packaging...
libxml2 security update
2.9.7-18.2 - Fix CVE-2022-49043 RHEL-76289 2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
NetworkManager security update
1:1.40.16-18.0.3 - Drop 777 permissions from Networkmanager-dispatcher drop-in directory Orabug: 37581862 1:1.40.16-18.0.2 - Add a dropin file to make Networkmanager-dispatcher persistent Orabug: 36989910 1:1.40.16-18.0.1 - disable MPTCP handling by default Orabug: 35081472 - Fix ignore-carrier...
NetworkManager security update
1.48.10-5.0.3 - Drop 777 permissions from the NetworkManager-dispatcher drop-in directory Orabug: 37581907 1.48.10-5.0.2 - Add a dropin file to make Networkmanager-dispatcher persistent Orabug: 36989910...
rsync security update
3.1.2-12.0.1 Back port fix for CVE-2024-12085 Orabug: 37524229...
nodejs:20 security update
nodejs 1:20.18.2 - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76363 RHEL-76554 RHEL-76540 1:20.18.1-1 - Update to version 20.18.1 nodejs-nodemon nodejs-packaging...
nodejs:18 security update
nodejs 1:18.20.6-1 - Update to version 18.20.6 Resolves: RHEL-76801 Fixes: CVE-2025-23085 1:18.20.4-1 - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 nodejs-nodemon nodejs-packaging...
gcc-toolset-14-gcc security update
14.2.1-7.1 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78284 14.2.1-7 - update from releases/gcc-14 branch RHEL-74062 - PRs ada/113036, ada/113868, ada/115917, ada/117328, ada/117996, analyzer/115724, c/117641, c/117745, c/117802, c++/100358, c++/101463, c++/102594, c++/109859...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.12-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/58af1cd - Resolves: RHEL-67612 cockpit-podman conmon containernetworking-plugins containers-common 1-82.0.1 - Updated removed...
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...
nodejs:20 security update
nodejs 1:20.18.2-1 - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76001 RHEL-76146 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to...
libxml2 security update
2.9.13-6.1 - Fix CVE-2022-49043 RHEL-76298...
gcc-toolset-13-gcc security update
13.3.1-2.2.0.1 - Merge Oracle patches to 13.3.1-2.2. gfortran needs install-info at installation time. Orabug: 36472775 13.3.1-2.2 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78279...
gcc-toolset-14-gcc security update
14.2.1-1.3 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78383...
terraform-provider-oci-fips security update
6.25.0-2.el9 - Rebuild on golang-boringcrypto 1.22.11 to fix CVE-2024-24790 Alex Burmashev CVE-2024-24790...
gcc-toolset-13-gcc security update
13.3.1-2.2.0.1 - Merge Oracle patches to 13.3.1-2.2. Oracle history: November-20-2024 Qing Zhao 13.3.1-2.1.0.1 - gfortran needs install-info at installation time. Orabug: 36472775 13.3.1-2.2 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78378...
firefox security update
128.7.0-1.0.1 - Update to 128.7.0 build1 Orabug: 37564202CVE-2025-1009CVE-2025-1010 CVE-2025-1011CVE-2025-1012CVE-2025-1013CVE-2025-1014CVE-2025-1016 CVE-2025-1017...
gcc security update
8.5.0-23.0.1 - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug...