9173 matches found
bind9.18 security update
32:9.18.29-1.el95.1 - Fix CVE-2024-11187 bind: bind9: Many records in the additional section cause CPU exhaustion - Fix CVE-2024-12705 bind: bind9: DNS-over-HTTPS implementation suffers from multiple issues under heavy query load...
postgresql:16 security update
pgaudit pgrepack 1.5.1-1 - Update to v1.5.1 pgvector 0.6.2-1 - Initial packaging postgres-decoderbufs postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-1094...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack 1.4.8-2 - Add new build dependencies to fix build with lz4 enabled - Related: RHEL-47350 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 212841...
libpq security update
13.20-1 - Update to 13.20...
postgresql:13 security update
pgaudit 1.5.0-1 - Update to version 1.5.0 Related: 1855776 pgrepack 1.4.6-3 - Release bump - enable gating postgres-decoderbufs 0.10.0-2 - Release bump for rebuild against libpq-12.1-3 postgresql 13.20-1 - Update to 13.20 - Fix CVE-2025-1094...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack 1.5.1-1 - Update to 1.5.1 postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.8-1 - Update to 16.8 - Fix CVE-2025-10...
postgresql:15 security update
pgaudit 1.7.0-1 - Update to 1.7.0 - Support postgresql 15 - Related: 2128241 pgrepack 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 2128241 postgres-decoderbufs 1.9.7-1.Final - Iitial import for postgresql 15 stream - Related: 2128241 postgresql 15.12-1 - Update to 15....
mysql security update
8.0.41-2 - Fix patching of logrotate 8.0.41-1 - Update to MySQL 8.0.41 8.0.40-1 - Update to MySQL 8.0.40 8.0.39-1 - Rebase to version 8.0.39 8.0.37-2 - Use signal to flush logs when rotating 8.0.37-1 - Update to MySQL 8.0.37 - Remove some legacy cmake options...
bind9.16 security update
32:9.16.23-0.22.2 - Fix application of patch for CVE-2024-11187 - Resolves: RHEL-77103 32:9.16.23-0.22.1 - Limit additional section records CPU processing CVE-2024-11187 - Fix test backport changes...
bind security update
32:9.16.23-24.0.1.el95.3 - Fix bind: bind9: Many records in the additional section cause CPU exhaustion CVE-2024-11187...
bind security update
32:9.11.36-16.4 - Change patches applying to use -P parameter 32:9.11.36-16.3 - Limit additional section records CPU processing CVE-2024-11187 - Correct ANY queries to not have additional data appended...
libpq security update
13.20-1 - Update to 13.20...
postgresql security update
13.18-1 - Update to 13.18...
libsoup security update
2.62.2-2.0.3 - Fixed CVE-2024-52531 buffer overflow via UTF-8 conversion in - soupheaderparseparamliststrict Orabug: 37557504...
mysql:8.0 security update
mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: 2180411 mecab-ipadic 2.7.0.20070801-17.0.1 - Rename the LICENSE.Fedora to LICENSE.oracle 2.7.0.20070801-17 - Bump the release - Resolves:...
nodejs:22 security update
nodejs 1:22.13.1-1 - Update to version 22.13.1 Fixes CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76354 1:22.11.0-1 - Update to version 22.11.0 22.4.1-4 - Initial import of nodeJS 22 nodejs-nodemon nodejs-packaging...
NetworkManager security update
1.48.10-5.0.3 - Drop 777 permissions from the NetworkManager-dispatcher drop-in directory Orabug: 37581907 1.48.10-5.0.2 - Add a dropin file to make Networkmanager-dispatcher persistent Orabug: 36989910...
libxml2 security update
2.9.7-18.2 - Fix CVE-2022-49043 RHEL-76289 2.9.7-18.1 - Fix CVE-2024-25062 RHEL-31056...
NetworkManager security update
1:1.40.16-18.0.3 - Drop 777 permissions from Networkmanager-dispatcher drop-in directory Orabug: 37581862 1:1.40.16-18.0.2 - Add a dropin file to make Networkmanager-dispatcher persistent Orabug: 36989910 1:1.40.16-18.0.1 - disable MPTCP handling by default Orabug: 35081472 - Fix ignore-carrier...
rsync security update
3.1.2-12.0.1 Back port fix for CVE-2024-12085 Orabug: 37524229...
nodejs:18 security update
nodejs 1:18.20.6-1 - Update to version 18.20.6 Resolves: RHEL-76801 Fixes: CVE-2025-23085 1:18.20.4-1 - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 nodejs-nodemon nodejs-packaging...
nodejs:20 security update
nodejs 1:20.18.2 - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76363 RHEL-76554 RHEL-76540 1:20.18.1-1 - Update to version 20.18.1 nodejs-nodemon nodejs-packaging...
libxml2 security update
2.9.13-6.1 - Fix CVE-2022-49043 RHEL-76298...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.12-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/58af1cd - Resolves: RHEL-67612 cockpit-podman conmon containernetworking-plugins containers-common 1-82.0.1 - Updated removed...
gcc security update
11.5.0-5.0.1 - Merge Oracle patches to 11.5.0-5. Oracle history:...
gcc-toolset-14-gcc security update
14.2.1-7.1 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78284 14.2.1-7 - update from releases/gcc-14 branch RHEL-74062 - PRs ada/113036, ada/113868, ada/115917, ada/117328, ada/117996, analyzer/115724, c/117641, c/117745, c/117802, c++/100358, c++/101463, c++/102594, c++/109859...
nodejs:20 security update
nodejs 1:20.18.2-1 - Update to version 20.18.2 Fixes: CVE-2025-23083 CVE-2025-23085 CVE-2025-22150 Resolves: RHEL-76001 RHEL-76146 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to...
terraform-provider-oci-fips security update
6.25.0-2.el9 - Rebuild on golang-boringcrypto 1.22.11 to fix CVE-2024-24790 Alex Burmashev CVE-2024-24790...
firefox security update
128.7.0-1.0.1 - Update to 128.7.0 build1 Orabug: 37564202CVE-2025-1009CVE-2025-1010 CVE-2025-1011CVE-2025-1012CVE-2025-1013CVE-2025-1014CVE-2025-1016 CVE-2025-1017...
openssl security update
3.2.2-6.0.1.1 - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 1:3.2.2-6.1 - RFC7250 handshakes with unauthenticated servers don't abort as expected CVE-2024-12797...
Unbreakable Enterprise kernel security update
5.4.17-2136.340.4.1 - RDS: avoid queueing delayed work on an offlined cpu Praveen Kumar Kannoju Orabug: 37566743 5.4.17-2136.340.4 - ftrace: use preemptenable/disable notrace macros to avoid double fault Koichiro Den - nfsd: restore callback functionality for NFSv4.0 NeilBrown - i2c: pnx: Fix...
gcc-toolset-13-gcc security update
13.3.1-2.2.0.1 - Merge Oracle patches to 13.3.1-2.2. gfortran needs install-info at installation time. Orabug: 36472775 13.3.1-2.2 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78279...
gcc-toolset-13-gcc security update
13.3.1-2.2.0.1 - Merge Oracle patches to 13.3.1-2.2. Oracle history: November-20-2024 Qing Zhao 13.3.1-2.1.0.1 - gfortran needs install-info at installation time. Orabug: 36472775 13.3.1-2.2 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78378...
gcc security update
8.5.0-23.0.1 - Merge Oracle patches to 8.5.0-23. Oracle history: May-22-2024 Qing Zhao 8.5.0-22.0.1 - Merge Oracle patches to 8.5.0-22. Reviewed-by: Jose E. Marchesi March-27-2024 Qing Zhao 8.5.0-21.0.1 - Merge Oracle patches to 8.5.0-21. January-19-2024 Qing Zhao 8.5.0-20.0.3 - Fix Orabug...
gcc-toolset-14-gcc security update
14.2.1-1.3 - disable jQuery use, don't ship jquery.js CVE-2020-11023, RHEL-78383...
kernel security update
5.14.0-503.23.25.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
thunderbird security update
128.7.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.7.0 - Add OpenELA debranding 128.7.0-1 - Update to 128.2.0 build1...
firefox security update
128.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.7.0-1 - Update to 128.7.0 build1...
kernel security update
4.18.0-553.40.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
thunderbird security update
128.7.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.7.0 - Add OpenELA debranding 128.7.0-1 - Update to 128.2.0 build1...
tbb security update
2018.2-10.1 - Remove jQuery from Doxygen files RHEL-77669 2018.2-10 - Apply patches from BZ 1907561 - Bump release...
tbb security update
2020.3-8.1 - Remove jQuery from Doxygen output RHEL-77693...
Unbreakable Enterprise kernel security update
5.15.0-305.176.4 - x86/asm: Make serialize alwaysinline Juergen Gross - hwmon: tmp513 Fix division of negative numbers David Lechner - Revert 'mtd: spi-nor: core: replace dummy buswidth from addr to data' Pratyush Yadav - Revert 'regmap: detach regmap from dev on regmapexit' Greg Kroah-Hartman -...
kernel security update
4.18.0-553.37.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
firefox security update
128.7.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.7.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.7.0-1 - Update to 128.7.0 build1...
raptor2 security update
2.0.9-3.0.1 - CVE-2024-57823: memcpy integer underflow and heap read overflow Orabug: 37476410...
mariadb:10.11 security update
galera 26.4.20-1.0.1 - Drop nmap-ncat requirement. Orabug: 34116228 - Requirement to delete garbd-wrapper script and lp1184034 test case without using patches. Orabug: 34116228 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 mariadb 3:10.11.10-1 - Rebase ...
galera and mariadb security update
galera 26.4.20-1.0.1 - Drop nmap-ncat requirement. Orabug: 34116228 - Requirement to delete lp1184034 test case without using patches. 26.4.20-1 - Rebase to 26.4.20 26.4.19-1 - Rebase to 26.4.19 26.4.18-1 - Rebase to 26.4.18 mariadb 3:10.5.27-1 - Rebase to 10.5.27 3:10.5.26-1 - Rebase to 10.5.26...
podman security update
5.2.2-13.0.1 - podman: do not set rlimits to the default value Orabug: 37310981 - Add devices on container startup, not on creation - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 4:5.2.2-13 - update ...
buildah security update
1.37.6-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.37.6-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.37 https://github.com/containers/buildah/commit/fd39521 - Resolves: RHEL-67617...