9172 matches found
nginx:1.22 security update
1.22.1-8.0.1.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 - Remove Red Hat references Orabug: 29498217 1:1.22.1-8.1 - Resolves: RHEL-84486 - nginx:1.22/nginx: specially crafted MP4 file may cause denial of service CVE-2024-7347 1:1.22.1-8 - Resolves: RHEL-49349 - nginx worker...
kernel security update
5.14.0-503.34.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel security update
4.18.0-553.46.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
container-tools:ol8 security update
aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common 1-82.0.1 - Updated removed references Orabug: 33473101 Alex Burmashev - Adjust registries.conf Nikita Gerasimov - remove references to RedHat registry Nikita Gerasimov 2:1-82 - update vendored components -...
fence-agents security update
4.10.0-76.6 - fenceibmvpc: refresh bearer-token if token data is corrupt, and avoid edge-case of writing empty token file Resolves: RHEL-83487 4.10.0-76.5 - bundled jinja2: fix CVE-2025-27516 Resolves: RHEL-82712...
libxslt security update
1.1.34-9.0.1.el95.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.34-9.1 - Fix CVE-2025-24855 RHEL-83501...
emacs security update
1:24.3-23.0.1.1 - Fix CVE-2025-1244 man.el shell injection vulnerability Orabug: 37658579...
postgresql:12 security update
pgaudit postgres-decoderbufs postgresql 12.22-3 - Fix backport for CVE-2025-1094 12.22-2 - Backport fix for CVE-2025-1094...
Unbreakable Enterprise kernel security update
5.4.17-2136.341.3.3 - ima: Fix use-after-free on a dentry's dname.name Stefan Berger Orabug: 37727037 CVE-2024-39494 5.4.17-2136.341.3.2 - ocfs2: fix slab-use-after-free due to dangling pointer dqipriv Dennis Lam Orabug: 37707634 CVE-2024-57892 - ocfs2: correct return value of ocfs2localfreeinfo...
libxml2 security update
2.9.1-6.0.5 - Fix CVE-2024-56171 Orabug: 37694105 - Fix CVE-2025-24928 Orabug: 37694105 2.9.1-6.0.3 - Rebuild to include attribution logo Orabug: 33024216 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-6.6 - Fix CVE-2016-4658 1966916...
kernel security update
4.18.0-553.45.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libreoffice security update
1:6.4.7.2-19.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-19 - Fix CVE-2025-1080 Filter out more unwanted command URIs 6.4.7.2 - Remove Red Hat branding - Change vendor to RESF...
pcs security update
0.10.18-2.0.1.el810.4 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.4 - Fixed CVE-2024-52804 by patching bundled Tornado Resolves: RHEL-81924...
webkit2gtk3 security update
2.46.6-2 - Add patch for CVE-2025-24201...
grub2 security update
2.06-94.0.1 - Rework the scripts to cover both in-place upgrade and update scenarios Orabug: 36768566 - Restore correct order of processing config files Orabug: 36758359 - Support setting custom kernels as default kernels Orabug: 36043978 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix...
webkit2gtk3 security update
2.46.6-2 - Add patch for CVE-2025-24201...
thunderbird security update
128.8.0-2.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.8.0 - Add OpenELA debranding 128.8.0-2 - Update to 128.8.0 build5 128.8.0-1 - Update to 128.8.0 build1...
thunderbird security update
128.8.0-2.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.8.0 - Add OpenELA debranding 128.8.0-2 - Update to 128.8.0 build5 128.8.0-1 - Update to 128.8.0 build1...
firefox security update
128.8.0-1.0.1 - Update to 128.8.0 build1 Orabug: 37700882CVE-2025-1930CVE-2025-1931 CVE-2025-1932CVE-2025-1933CVE-2025-1934CVE-2025-1935CVE-2025-1936 CVE-2025-1937CVE-2025-1938...
krb5 security update
1.18.2-31.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-31 - Prevent overflow when calculating ulog block size CVE-2025-24528 Resolves: RHEL-78248 - kdb5util: fix DB entry flags on modification Resolves: RHEL-56060...
python3 security update
3.6.8-21.0.3 - Fix DoS parsing crafted tarfile headers Orabug: 37626372CVE-2024-6232 - Disable testsocket in the PGO profile task...
kernel security update
3.10.0-1160.119.1.0.6.el7.OL7 - media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat Benoit Sevens CVE-2024-53104 Orabug: 37584712...
.NET 8.0 security, bug fix, and enhancement update
8.0.114-1.0.1 - Add support for Oracle Linux 8.0.114-1 - Update to .NET SDK 8.0.114 and Runtime 8.0.14 - Resolves: RHEL-81640...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81645...
.NET 8.0 security, bug fix, and enhancement update
8.0.114-1.0.1 - Add support for Oracle Linux 8.0.114-1 - Update to .NET SDK 8.0.114 and Runtime 8.0.14 - Resolves: RHEL-81639...
.NET 9.0 security, bug fix, and enhancement update
9.0.104-1.0.1 - Add support for Oracle Linux 9.0.104-1 - Update to .NET SDK 9.0.104 and Runtime 9.0.3 - Resolves: RHEL-81649...
pcs security update
0.11.8-1.el95.2 - Fixed CVE-2024-52804 by patching bundled Tornado Resolves: RHEL-81924...
libxml2 security update
2.9.7-19 - Fix CVE-2024-56171 RHEL-80122 - Fix CVE-2025-24928 RHEL-80137 2.9.7.18.2 - Fix CVE-2022-49043 RHEL-76289 2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
libxml2 security update
2.9.13-6.2 - Fix CVE-2024-56171 RHEL-80128 - Fix CVE-2025-24928 RHEL-80143...
gcc security update
4.8.5-45.0.1 - Orabug: 37603707 ELSA-2025-1601 Moderate: gcc security update CVE-2020-11023 rebuild for CVE-2020-11023 - Reviewed-by: Jose E. Marchesi 4.8.5-44.0.5 - fix arm cross building inline issue. gcc48-cfns-fix-protos.patch - Reviewed-by: Jose E. Marchesi 4.8.5-44.0.3 - Orabug: 31505739...
kernel security update
5.14.0-503.31.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
tigervnc security update
1.14.1-1.1 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79406 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-80018 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79391 - Fix...
tigervnc security update
1.13.1-15 - Fix CVE-2025-26594 xorg-x11-server Use-after-free of the root cursor Resolves: RHEL-79397 - Fix CVE-2025-26595 xorg-x11-server Buffer overflow in XkbVModMaskText Resolves: RHEL-79401 - Fix CVE-2025-26596 xorg-x11-server Heap overflow in XkbWriteKeySyms Resolves: RHEL-79386 - Fix...
Unbreakable Enterprise kernel security update
5.4.17-2136.341.3.1 - Revert 'NFSD: Limit the number of concurrent async COPY operations' Sherry Yang Orabug: 37667080 5.4.17-2136.341.3 - iouring: fix possible deadlock in ioregisteriowqmaxworkers Hagar Hemdan Orabug: 37565787 - iouring/rw: fix missing NOWAIT check for ODIRECT start write Jens...
kernel security update
4.18.0-553.44.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
5.15.0-306.177.4 - Revert 'usb: gadget: userial: Disable ep before setting port to null to fix the crash caused by port being null' Greg Kroah-Hartman - drm/v3d: Assign job pointer to NULL before signaling the fence Maira Canal - scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sys...
bind security update
32:9.11.4-26.0.3.P2.16 - Resolve CVE-2024-11187 Orabug: 37616907...
rsync security update
3.1.3-21 - Resolves: RHEL-70207 - Path traversal vulnerability in rsync...
krb5 security update
1.15.1-55.0.9 - Fixes CVE-2025-24528 , Prevent overflow when calculating ulog block size Orabug: 37587301...
firefox security update
128.8.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.8.0-1 - Update to 128.8.0 build1...
squid security update
7:3.5.20-17.0.5.13 - Fixed cve 2023-46846 for http and icap request/response smuggling Orabug: 37326730...
firefox security update
128.8.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.8.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.8.0-1 - Update to 128.8.0 build1...
python-jinja2 security update
2.7.2-4.0.1 - Fix for CVE-2024-56326 Orabug: 37576737...
webkit2gtk3 security update
2.46.6-1 - Update to 2.46.6...
webkit2gtk3 security update
2.46.6-1 - Update to 2.46.6...
emacs security update
1:27.2-11.1 - Eliminate use of obsolete patch syntax RHEL-80443 1:27.2-11 - Fix man.el shell injection vulnerability RHEL-79025...
kernel security update
5.14.0-503.26.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
doxygen security update
1:1.8.5-4.0.1 - Fix CVE-2020-11022 and CVE-2022-11023 in vendored jQuery Orabug: 37577394...
emacs security update
1:26.1-13 - Fix man.el shell injection vulnerability RHEL-79016...
postgresql:16 security update
pgaudit pgrepack 1.5.1-1 - Update to v1.5.1 pgvector 0.6.2-1 - Initial packaging postgres-decoderbufs postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-1094...