9172 matches found
libxslt security update
1.1.28-6.0.3 - Fix CVE-2024-55549 issue due to memory leak Orabug: 37795485 - Fix CVE-2025-24855 issue due to use after free...
thunderbird security update
128.9.0-2.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.9.0 - Add OpenELA debranding 128.9.0-2 - Update to 128.9.0 build3 128.9.0-1 - Update to 128.9.0 build1...
thunderbird security update
128.9.0-2.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.9.0 - Add OpenELA debranding 128.9.0-2 - Update to 128.9.0 build3 128.9.0-1 - Update to 128.9.0 build1...
gnutls security update
3.6.16-8.3fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 - Allow bigger known RSA modulus sizes when calling rsageneratefips1864keypair directly Orabug: 33200526 - Change Epoch from 1 to 10...
ruby:3.1 security update
ruby 3.1.7-145 - Upgrade to Ruby 3.1.7. Resolves: RHEL-55408 - Fix DoS vulnerability in REXML. CVE-2024-39908 Resolves: RHEL-57051 - Fix DoS vulnerability in REXML. CVE-2024-43398 Resolves: RHEL-56002 3.1.5-144 - Fix REXML ReDoS vulnerability. CVE-2024-49761 Resolves: RHEL-68520 3.1.5-143 - Upgra...
mod_auth_openidc:2.3 security update
cjose modauthopenidc 2.4.9.4-7 - Resolves: RHEL-86218 - modauthopenidc allows OIDCProviderAuthRequestMethod POSTs to leak protected data CVE-2025-31492...
firefox security update
128.9.0-2.0.1 - Update to 128.9.0 build2 Orabug: 37796786CVE-2025-3028CVE-2025-3029 CVE-2025-3030...
grub2 security update
2.02-164.0.2 - fs/ext2: Rework out-of-bounds read for inline and external extents Orabug: 37829911 2.02-164.0.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with...
bluez security update
5.63-5 + bluez-5.63-5 - Resolves: RHEL-35371 - Fixing CVE-2023-27349 - Resolves: RHEL-35492 - Fixing CVE-2023-51589 5.63-4 + bluez-5.63-4 - Resolves: RHEL-35501 - Fixing CVE-2023-50230 - Resolves: RHEL-35504 - Fixing CVE-2023-50229...
libtasn1 security update
4.13.0-5 - Backport the fix for CVE-2024-12133...
xmlrpc-c security update
1.51.0-11 - Restrict XML Entity Expansion Depth in libexpat CVE-2024-8176...
libxslt security update
1.1.34-9.0.1.el95.2 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-9.2 - Fix CVE-2024-55549 RHEL-83515 1.1.34-9.1 - Fix CVE-2025-24855 RHEL-83501...
webkit2gtk3 security update
2.48.1-1 - Update to 2.48.1...
kernel security update
5.14.0-503.38.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
java-1.8.0-openjdk security update
1:1.8.0.452.b09-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.452.b09-1 - Update to 8u452-b09 GA - Update release notes for 8u452-b09. - Remove long option documentation from JDK-8335912/JDK-8337499 as not present in 8u - Require tzdata 2025a due to upstream inclusion of JDK-8347965 ...
java-17-openjdk security update
1:17.0.15.0.6-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.15.0.6-2 - Update to jdk-17.0.15+6 GA - Add to .gitignore openjdk-17.0.15+6.tar.xz - Set updatever to 15 - Set buildver to 6 - Set rpmrelease to 2 - Update sources to openjdk-17.0.15+6.tar.xz - Set bundled freetype provide...
java-21-openjdk security update
1:21.0.7.0.6-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.7.0.6-1 - Update to jdk-21.0.7+6 GA - Update release notes to 21.0.7+6 - Rebase FIPS support against 21.0.7+5 - Require tzdata 2025a due to upstream inclusion of JDK-8347965 - Sync the copy of the portable specfile with the...
libreoffice security update
5.3.6.1-26.0.3 - Fix CVE-2025-1080, do not process macros in exotic uri schemes Orabug: 37770225...
kernel security update
4.18.0-553.50.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
expat security update
2.2.5-17.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-17 - Fix CVE-2024-8176 - Resolves: RHEL-57477...
Unbreakable Enterprise kernel security update
5.4.17-2136.342.5 - ima: Fix use-after-free on a dentry's dname.name Stefan Berger Orabug: 36835558 CVE-2024-39494 5.4.17-2136.342.4 - sched: schcake: add bounds checks to host bulk flow fairness counts Toke Hoiland-Jorgensen - udf: Fix use of checkaddoverflow with mixed type arguments Ben...
glibc security update
2.28-251.0.3.16 - Forward port of Oracle patches Reviewed-by: Elena Zannoni Oracle history: March-26-2025 Cupertino Miranda - 2.28-251.0.3.14 - OraBug: 36625686 Add MTE support on string functions Reviewed-by: Jose E. Marchesi March-17-2025 Cupertino Miranda - 2.28-251.0.2.14 - Forward port of...
gvisor-tap-vsock security update
6:0.8.5-1 - Fix CVE-2025-22869 by updating to 0.8.5 - Resolves: RHEL-81312...
grub2 security update
2.02-0.87.0.27.el7.14 - Fix OOB write in grubnetsearchconfigfile CVE-2025-0624 Orabug: 37770226 - Also adds implementation of grubstrlcpy for clean backport...
Unbreakable Enterprise kernel security update
5.15.0-307.178.5 - net/mlx5: DR, prevent potential error pointer dereference Dan Carpenter Orabug: 37434242 CVE-2024-56660 - uek-rpm: Set CONFIGIP6NFIPTABLES for ol9/ol8 container kernels Jonah Palmer Orabug: 37703179 - net: hsr: fix fillframeinfo regression vs VLAN packets Eric Dumazet - f2fs:...
freetype security update
2.8-14.0.1.el79.1 - Fix CVE-2025-27363 Out-of-bounds Write Orabug: 37770275CVE-2025-27363...
go-toolset:ol8 security update
delve 1.24.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.24.1-1 - Rebase to 1.24.1 - Skip unsupported tests - Resolves: RHEL-83451 golang 1.23.6-1 - Update to Go 1.23.6 - Resolves: RHEL-83824 1.22.11-1 - Rebase to Go1.22.11 to pick up fixes for CVE 2024-45341 and 2024-4533...
delve and golang security update
delve 1.24.1-2.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.24.1-2 - Fix 3 test failures - Resolves: RHEL-83939 - Resolves: RHEL-83958 - Resolves: RHEL-7373 1.24.1-1 - Rebase to Delve 1.24.1 - Resolves: RHEL-64445 golang 1.23.6-2 - Fix runtime usleep issue on s390x...
tomcat security update
1:9.0.87-1.el810.3 - Resolves: RHEL-82934 tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT CVE-2025-24813 - Resolves: RHEL-71708 tomcat: RCE due to TOCTOU issue in JSP compilation CVE-2024-50379...
webkit2gtk3 security update
2.48.1-1 - Update to 2.48.1 2.48.0-1 - Update to 2.48.0...
python3.12 security update
3.12.5-2.3 - Security fix for CVE-2024-7592 Resolves: RHEL-85300...
xorg-x11-server security update
1.20.4-29.0.1 - Fixed CVE-2025-26594 CVE-2025-26595 CVE-2025-26596 - CVE-2025-26597 CVE-2025-26598 CVE-2025-26599 CVE-2025-26600 - CVE-2025-26601 Orabug: 37712847...
gimp security update
2:2.99.8-4 - Applying fixes for vulnerabilities that led to possible RCE conditions. - Fixes: CVE-2023-44441 CVE-2023-44442 CVE-2023-44443 CVE-2023-44444 - Resolves: RHEL-86048 RHEL-86045 RHEL-86042 RHEL-86039...
tomcat security update
1:9.0.87-2.el95.1 - Resolves: RHEL-82946 tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT CVE-2025-24813 - Resolves: RHEL-71719 tomcat: RCE due to TOCTOU issue in JSP compilation CVE-2024-50379...
libxslt security update
1.1.32-6.1.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-6.1 - Fix CVE-2024-55549 RHEL-83506 - Fix CVE-2025-24855 RHEL-83492...
python3.11 security update
3.11.9-7.3 - Security fix for CVE-2024-7592 Resolves: RHEL-85299...
firefox security update
128.9.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.9.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.9.0-2 - Update to 128.9.0 build2 128.9.0...
firefox security update
128.9.0-2.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.9.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.9.0-2 - Update to 128.9.0 build2 128.9.0-1 - Update to 128.9.0 build1...
kernel security update
5.14.0-503.35.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
expat security update
2.5.0-3.3 - Improve fix for CVE-2024-8176 - Resolves: RHEL-57488 2.5.0-3.2 - Fix CVE-2024-8176 - Resolves: RHEL-57488...
python-jinja2 security update
2.10.1-7 - Security fix for CVE-2025-27516 Resolves: RHEL-85066...
python-jinja2 security update
2.11.3-8 - Security fix for CVE-2025-27516 Resolves: RHEL-85064...
tigervnc security update
1.8.0-33.0.5 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Orabug: 37712725 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms - Fix CVE-2025-26597 xorg-x11-server Buffer overflow i...
libreoffice security update
1:7.1.8.1-15.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Added the --with-hamcrest option to configure. 1:7.1.8.1-15 - Fix CVE-2025-1080 Filter out more unwanted command URIs...
freetype security update
2.9.1-10 - Fix CVE-2025-27363 Out-of-bounds Write - Resolves: RHEL-83094...
freetype security update
2.10.4-10 - Fix for CVE-2025-27363 out-of-bound write vulnerability - Patch initially by Marc Deslauriers of Canonical - https://www.openwall.com/lists/oss-security/2025/03/14/3 - Adjusted for EL9 by Jonathan Wright of AlmaLinux - and a member of the Meta security team - Resolves: RHEL-83105...
kernel security update
3.10.0-1160.119.1.0.7 - ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices Benot Sevens CVE-2024-53197 Orabug: 37686305 - can: bcm: Fix UAF in bcmprocshow YueHaibing CVE-2023-52922 Orabug: 37686305 - HID: core: zero-initialize the report buffer Benot Sevens...
grafana security update
10.2.6-9 - Resolves RHEL-84634: CVE-2025-30204...
nginx:1.24 security update
1.24.0-4.0.1.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 1:1.24.0-4.1 - Resolves: RHEL-84480 - nginx:1.24/nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 1:1.24.0-4 - Resolves: RHEL-49350 - nginx worker...
nginx:1.22 security update
1.22.1-8.0.1.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 1:1.22.1-8.1 - Resolves: RHEL-84486 - nginx:1.22/nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 1:1.22.1-8 - Resolves: RHEL-49349 - nginx worker...