9173 matches found
kernel security update
4.18.0-553.34.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
iperf3 security update
3.9-13.1 - Resolves: RHEL-72929 - Denial of Service in iperf Due to Improper JSON Handling...
Unbreakable Enterprise kernel security update
4.1.12-124.93.1 - cachefiles: fix memory leak in cachefilesaddcache Baokun Li Orabug: 36544657 CVE-2024-26840...
kernel security update
5.14.0-503.19.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
python-requests security update
2.20.0-5 - Security fix for CVE-2024-35195 Resolves: RHEL-37605 2.20.0-4 - Bump release to fix upgrade path from 2.20.0-2.1.el81 via 2.20.0-3.el88 to 2.20.0-4.el8 Related: rhbz2209469...
postgresql security update
9.2.24-9.0.3 - Fixes CVE-2024-10979 where environment variable mutations Orabug: 37370704 - are incorrectly allowed from trusted PL/Perl code...
libsndfile:1.0.31 security update
1.0.31-8.2 - fix crash in ogg vorbis RHEL-65096 CVE-2024-50612...
edk2:20240524 security update
20240524-6.0.1.el95.3 - edk2-OvmfPkg-Rerun-dispatcher-after-initializing-virtio-r.patch RHEL-58631 - Resolves: RHEL-58631 Regression HTTP Boot fails to work with edk2-ovmf-20231122-6.el94.2 and greater - edk2-OvmfPkg-ArmVirtPkg-Add-a-Fallback-RNG-RH-only.patch RHEL-66230 - Resolves: RHEL-66230...
pam security update
1.5.1-21.0.1 - pamaccess: clean up the remote host matching code Orabug: 36771903 - pamlimits: fix use after free in pamsmopensession Orabug: 36406534 1.5.1-21 - pamunix: always run the helper to obtain shadow password file entries. CVE-2024-10041. Resolves: RHEL-62880 1.5.1-20 - libpam: support...
mpg123:1.32.9 security update
1.32.9-1 - Rebase to 1.32.9, includes patch for CVE-2024-10573 Resolves: RHEL-65445 1.26.2-6 - Add patch for CVE-2024-10573 Resolves: RHEL-65445...
containernetworking-plugins security update
1:1.5.1-3 - rebuild to fix CVE-2024-34156...
skopeo security update
2:1.16.1-2 - rebuild to fix CVE-2024-34156...
unbound:1.16.2 security update
1.16.2-8.1 - Fix unbounded name compression could lead to Denial of Service CVE-2024-8508 1.16.2-8 - Ensure group access correction reaches also updated configs CVE-2024-1488 1.16.2-7 - Ensure only unbound group can change configuration CVE-2024-1488 1.16.2-6 - Fix KeyTrap - Extreme CPU consumpti...
gstreamer1-plugins-base security update
1.16.1-5.0.1 - Update origin URL Orabug: 36209826 1.16.1-5 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70974, RHEL-71010, RHEL-70986...
python3.11-urllib3 security update
1.26.12-2.2 - Security fix for CVE-2023-45803 Resolves: RHEL-66551...
Unbreakable Enterprise kernel security update
5.15.0-303.171.5.2 - build: populate modulesthick.builtin for dirs containing only modules Nick Alcock Orabug: 37393454 - x86/pkeys: Ensure updated PKRU value is XRSTOR'd Aruna Ramakrishna Orabug: 37384237 - x86/pkeys: Change caller of updatepkruinsigframe Aruna Ramakrishna Orabug: 37384237 -...
tuned security update
2.22.1-5.0.1 - Fix RPS/XPS and busy polling optimization not getting applied Orabug: 32153315 - Fix error in uninstalling tuned Orabug: 351528377 - Updated patch with the more recent version Orabug: 30730976 - Set AMD CPU freq governor to ondemand when unapplying cpu tunings Orabug: 30033199 -...
bluez security update
5.63-3 + bluez-5.63-3 - Add back the tests for OSCI. 5.63-2 + bluez-5.63-2 - Change default of ClassicBondedOnly to true to align with HID specification. - Resolves: RHEL-18429 - Fixing CVE-2021-41229...
mpg123 security update
1.25.10-2 - Rebase to 1.32.9, includes patch for CVE-2024-10573 - Resolves: RHEL-65443...
edk2:20220126gitbb1bba3d77 security update
20220126gitbb1bba3d77-13.el8.4 - edk2-MdePkg-Fix-overflow-issue-in-BasePeCoffLib.patch RHEL-60830 - Resolves: RHEL-60830 CVE-2024-38796 edk2: Integer overflows in PeCoffLoaderRelocateImage rhel-8.10.z...
libsndfile security update
1.0.28-16 - fix prerequisit patch RHEL-65093 1.0.28-15 - fix crash in ogg vorbis RHEL-65093 CVE-2024-50612...
gstreamer1-plugins-good security update
1.16.1-5 - CVE-2024-47537, CVE-2024-47539, CVE-2024-47540, CVE-2024-47606, CVE-2024-47613 Resolves: RHEL-70949, RHEL-70962, RHEL-70936, RHEL-71022 Resolves: RHEL-70998...
python3.11-urllib3 security update
1.26.12-5 - Security fix for CVE-2023-45803 Resolves: RHEL-66562...
Unbreakable Enterprise kernel security update
5.4.17-2136.338.4.1 - Revert 'ocfs2: fix the la space leak when unmounting an ocfs2 volume' Sherry Yang Orabug: 37383196 5.4.17-2136.338.4 - devlink: fix possible use-after-free and memory leaks in devlinkinit Vasiliy Kovalev Orabug: 37284641 CVE-2024-26734 - mm: avoid leaving partial pfn mapping...
gimp:2.8.22 security update
2:2.8.22-1.0.1 - Fix CVE-2023-44442 Orabug: 37344570 - Fix CVE-2023-44444...
gstreamer1-plugins-good security update
1.22.1-3 - CVE-2024-47537, CVE-2024-47539, CVE-2024-47540, CVE-2024-47606, CVE-2024-47613 Resolves: RHEL-70954, RHEL-70967, RHEL-70941, RHEL-71027, Resolves: RHEL-71003...
tuned security update
2.11.0-12.0.3 - CVE-2024-52337 fixes Orabug: 37327384...
postgresql security update
9.2.24-9.0.1 - Backport fix for CVE-2023-7348 Orabug: 37220738 - Adds restriction on non-system views...
firefox security update
128.5.1-1.0.1 - Update to 128.5.1 Orabug: 37370369CVE-2024-11692CVE-2024-11694 CVE-2024-11695CVE-2024-11696CVE-2024-11697CVE-2024-11699...
python3.11 security update
3.11.9-7.2 - Security fix for CVE-2024-9287 Resolves: RHEL-64882...
gstreamer1-plugins-base security update
1.22.1-3 - Fixes for CVE-2024-47538, CVE-2024-47607, CVE-2024-47615 Resolves: RHEL-70979, RHEL-71015, RHEL-70991...
pcs security update
0.10.18-2.0.1.el810.3 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.3 - Prevented any future HTTP header-based attacks on puma/sinatra by removing any headers not recognized by pcsd Resolves: RHEL-65595...
python36:3.6 security update
python36 python-distro python-docs python-docutils python-nose python-pygments python-pymongo python-PyMySQL python-sqlalchemy python-virtualenv 15.1.0-23 - Security fix for CVE-2024-53899 Resolves: RHEL-68876 python-wheel scipy...
python3.9:3.9.21 security update
3.9.21-1 - Update to 3.9.21 - Security fix for CVE-2024-11168 and CVE-2024-9287 Resolves: RHEL-64888 Resolves: RHEL-67259...
php:8.1 security update
php 8.1.30-1 - rebase to 8.1.30 RHEL-64144 php-pecl-apcu 5.1.21-1 - update to 5.1.21 for PHP 8.1 2070040 php-pecl-rrd php-pecl-xdebug3 3.1.4-1 - update to 3.1.4 for PHP 8.1 2070040 php-pecl-zip 1.20.1-1 - update to 1.20.1 for PHP 8.1 2070040...
python3.11 security update
3.11.11-1.0.1 - Update rpm-macros description Orabug: 36024572 3.11.11-1 - Update to 3.11.11 Resolves: RHEL-64879...
php:7.4 security update
libzip 1.6.1-1 - update to 1.6.1 - enable lzma support php 7.4.33-2 - fix low/moderate CVEs RHEL-66589 - Fix cgi.forceredirect configuration is bypassable due to the environment variable collision CVE-2024-8927 - Fix Logs from childrens may be altered CVE-2024-9026 - Fix Erroneous parsing of...
python3.12 security update
3.12.5-2.2 - Security fix for CVE-2024-9287 and CVE-2024-12254 Resolves: RHEL-64885, RHEL-70316...
python3.12 security update
3.12.8-1 - Update to 3.12.8 - Security fix for CVE-2024-9287 and CVE-2024-12254 Resolves: RHEL-64880, RHEL-70315...
kernel security update
5.14.0-503.16.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
php:8.2 security update
php 8.2.25-1 - rebase to 8.2.25 RHEL-65837 php-pecl-apcu 5.1.23-1 - update to 5.1.23 for PHP 8.2 RHEL-14699 php-pecl-rrd php-pecl-xdebug3 3.2.2-2 - drop inetntoa usage using upstream patch 3.2.2-1 - update to 3.2.2 for PHP 8.2 RHEL-14699 php-pecl-zip 1.22.3-1 - update to 1.22.3 for PHP 8.2...
php:8.2 security update
libzip php 8.2.25-1 - rebase to 8.2.25 RHEL-66166 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip...
kernel security update
4.18.0-553.32.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
postgresql security update
13.18-1 - Update to 13.18...
ruby security update
3.0.7-163 - Fix REXML ReDoS vulnerability. CVE-2024-49761 Resolves: rbhz2322153 3.0.7-162 - Upgrade to Ruby 3.0.7. Resolves: RHEL-35740 - Fix HTTP response splitting in CGI. Resolves: RHEL-35741 - Fix ReDoS vulnerability in URI. Resolves: RHEL-35742 - Fix ReDoS vulnerability in Time. Resolves:...
libsoup security update
2.62.2-2.0.1 - Fixed CVE-2024-52530 for smuggling nullbytes in header names Orabug: 37289659...
ruby:2.5 security update
ruby 2.5.9-113.0.1 - Fix REXML ReDoS vulnerability CVE-2024-49761. rubygem-abrt 0.3.0-4 - Execute test suite unconditionally. - Upload correct sources. rubygem-bson rubygem-bundler rubygem-mongo 2.5.1-2 - Disable tests to fix FTBFS by dropped MongoDB module. Resolves: rhbz1710863 rubygem-mysql2...
redis:7 security update
7.2.6-1 - rebase to 7.2.6 RHEL-26628 7.0.12-1 - rebase to 7.0.12 2221899 7.0.11-1 - rebase to 7.0.11 for new redis:7 stream 2129826 7.0.11-1 - Upstream 7.0.11 release. 7.0.10-2 - fix modules directory ownership and permissions 2176173 - drop redis-shutdown helper and rely on systemd 2181181...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.10-1 - Update to 15.10 - Fixes: CVE-2024-10976 CVE-2024-10978 CVE-2024-10979...
postgresql:12 security update
pgaudit pgrepack postgres-decoderbufs postgresql 12.22-1 - Update to 12.22 - Fixes: CVE-2024-10976 CVE-2024-10978...