8990 matches found
kernel security update
4.18.0-553.27.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
go-toolset:ol8 security update
delve 1.22.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.22.1-1 - Rebase to 1.22.1 - Resolves: RHEL-54307 golang 1.22.7-1 - Update to Go 1.22.7 - Resolves: RHEL-58223 - Resolves: RHEL-57961 - Resolves: RHEL-57847 - Resolves: RHEL-57860 1.22.5-3 - Update fix that loads...
haproxy security update
1.8.27-5.1 - Reject '' as part of URI path component CVE-2023-45539, RHEL-18168...
python3.11-urllib3 security update
1.26.12-4 - Fix testssltransport for changes in ssl.SSLSocket in Python 3.11.3 Related: RHEL-59995 1.26.12-3 - Security fix for CVE-2024-37891 Resolves: RHEL-59995...
libtiff security update
4.0.9-33 - fix CVE-2024-7006 a null pointer dereference in tifdirinfo RHEL-52927...
python3.11 security update
3.11.10-1.0.1 - Update rpm-macros description Orabug: 36024572 3.11.10-1 - Update to 3.11.10 Resolves: RHEL-57400...
python3.12-urllib3 security update
1.26.19-1 - Rebase to 1.26.19 to fix CVE-2024-37891 Resolves: RHEL-59989...
xmlrpc-c security update
1.51.0-10 - Prevent integer overflow or wraparound, CVE-2024-4549 RHEL-57519...
xorg-x11-server and xorg-x11-server-Xwayland security update
xorg-x11-server 1.20.11-25 - CVE fix for CVE-2024-9632 xorg-x11-server-Xwayland 21.1.3-17 - Fix for CVE-2024-9632 - RHEL-61995...
openexr security update
3.1.1-2.1 - fix CVE-2023-5481 RHEL-64162...
thunderbird security update
128.4.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 128.4.0 - Add OpenELA debranding 128.4.0-1 - Update to 128.4.0 build1...
thunderbird security update
128.4.0-1.0.1 - Fix prefs for new nss Orabug: 37079813 - Add Oracle prefs 128.4.0 - Add OpenELA debranding 128.4.0-1 - Update to 128.4.0 build1...
firefox security update
128.4.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.4.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.4.0-1 - Update to 128.4.0 build1...
firefox security update
128.4.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.4.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.4.0-1 - Update to 128.4.0 build1...
Unbreakable Enterprise kernel security update
4.1.12-124.91.3 - nfsatomicopen: prevent parallel nfslookup on a negative hashed Al Viro Orabug: 37006239 4.1.12-124.91.2 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035560 4.1.12-124.91.1 - vtioctl: fix arrayindexnospec in vtsetactivate Jakob Koschel Orabug:...
Oracle Linux Automation Manager 2.2
Oracle Linux Automation Manager 2.2...
mod_http2 security update
2.0.26-2.1 - Resolves: RHEL-45803 - modhttp2: DoS by null pointer in websocket over HTTP/2 CVE-2024-36387...
grafana security update
9.2.10-19 - Resolves RHEL-62309: CVE-2024-47875 9.2.10-18 - Resolves RHEL-61049: CVE-2024-9355...
kernel security update
5.14.0-427.42.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
buildah security update
1.33.10-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.10-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/bd85c17 - Resolves: RHEL-61842...
firefox update
128.2.0-1.0.1 - Remove nomerge annotation from abort calls Orabug: 37079143 - Update to 128.2.0 Orabug: 37079143...
firefox security update
128.3.0-1.0.1 - Update to 128.3.0 Orabug: 37139909...
firefox security update
128.3.1-2.0.1 - Update to 128.3.1 Orabug: 37168934...
python3.9 security update
3.9.18-3.6 - Fix: CVE-2024-6232 - Resolves: RHEL-57421...
python3.12 security update
3.12.1-4.4 - Security fix for CVE-2024-6232 Resolves: RHEL-57416...
python39:3.9 and python39-devel:3.9 security update
modwsgi numpy python39 3.9.20-1 - Update to 3.9.20 Resolves: RHEL-60007 python3x-pip python3x-setuptools python3x-six python-cffi python-chardet python-cryptography python-idna python-lxml python-ply python-psutil python-psycopg2 python-pycparser python-PyMySQL python-pysocks python-requests...
virt:kvm_utils1 security update
hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.15...
python3.11 security update
3.11.7-1.6 - Security fix for CVE-2024-6232 Resolves: RHEL-57411...
NetworkManager-libreswan security update
1.2.10-7 - Unbreak validation of unknown keys 1.2.10-6 - Fix improper escaping of Libreswan configuration CVE-2024-9050...
linux-firmware security update
20241003-999.35.git95bfe086.el8 - Rebase to latest upstream Orabug: 37132142 - Fix build error in ol7 due to linking in copy-firmware.sh Orabug: 37132515 - Bring back drirectory structure qcom/sc8280xp Orabug: 37132142...
openssl security update
1:1.1.1k-14 - Backport fix SSLselectnext proto from OpenSSL 3.2 Fix CVE-2024-5535 Resolves: RHEL-45654...
grafana security update
9.2.10-20 - Resolves RHEL-62307: CVE-2024-47875 9.2.10-19 - Resolves RHEL-61779: CVE-2024-9355...
virt:kvm_utils3 security update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 libguestfs-winsupport libiscsi libnbd 1.6.0-6.el8 - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 1.6.0-5.el8 - Fix CVE-2022-0485: Fail nbdcopy if NBD read or wri...
Unbreakable Enterprise kernel security update
5.15.0-301.163.5.2 - mm: avoid leaving partial pfn mappings around in error case Linus Torvalds Orabug: 37174198 CVE-2024-47674 - Revert 'Documentation/admin-guide/acpi: Move information out of shell script comments' Dave Kleikamp Orabug: 37144820 - Revert 'irqchip/gic-v3: Move partitioncreatedes...
edk2 security update
20240909 - Create new 20240909 release for OL8 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK2: In the Linux...
edk2 security update
1.7.1 - Create new 1.7.1 release for OL7 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK2: In the Linux kernel...
389-ds-base security update
1.3.11.1-5.0.3 - Security fix for CVE-2024-8445 Orabug: 37119399CVE-2024-8445...
edk2 security update
20240909-2 - Create new 20240909 release for OL8 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK2: In the Linux...
edk2 security update
1.7.1 - Create new 1.7.1 release for OL7 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability when S3 sleep is activated where an Attacker may cause a Division-By-Zero due to a UNIT32 overflow via local access Orabug: 36990130 CVE-2024-1298 - EDK2: In the Linux kernel...
java-21-openjdk security update
1:21.0.5.0.10-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.5.0.10-3 - Sync the copy of the portable specfile with the latest update - This tarball is embargoed until 2024-10-15 @ 1pm PT. - Related: RHEL-61346 1:21.0.5.0.10-2 - Update to jdk-21.0.5+10 GA - Update release notes to...
java-1.8.0-openjdk security update
1.8.0.432.b06-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.432.b06-1 - Update to shenandoah-jdk8u432-b06 GA - Update release notes for shenandoah-8u432-b06. - Drop JDK-8281096,7,8/PR3836 patch following integration of upstream version - Regenerate JDK-8199936/PR3533 patch following...
java-17-openjdk security update
17.0.13.0.11-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.13.0.11-3 - Correct version suffix in 'Update to jdk-17.0.13+11 GA' changelog entry - Related: RHEL-58781 1:17.0.13.0.11-2 - Update to jdk-17.0.13+11 GA - Update .gitignore to ignore openjdk-17.0.13+11.tar.xz - Sync...
java-11-openjdk security update
1:11.0.25.0.9-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.25.0.9-2 - Update to jdk-11.0.25+9 GA - Update release notes to 11.0.25+9 - Switch to GA mode for release - Related: RHEL-58772 - This tarball is embargoed until 2024-10-15 @ 1pm PT. 1:11.0.25.0.8-0.2.ea - Update to...
httpd security update
2.4.6-99.0.5.1 - Differentiate trusted sources Orabug: 37100272CVE-2024-38476...
webkit2gtk3 security update
2.46.1-1 - Update to 2.46.1...
python-setuptools security update
0.9.8-7.0.1 - Fixes CVE-2024-6345 security issue Orabug: 37054994...
kernel security update
5.14.0-427.40.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
buildah security update
1.33.9-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.9-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/4dc26b9 - Resolves: RHEL-61116 2:1.33.7-5 - rebuild to...
skopeo security update
2:1.14.5-2 - rebuild for CVE-2024-34156 - Resolves: RHEL-57955...
containernetworking-plugins security update
1:1.4.0-6 - rebuild for CVE-2024-34156 - Resolves: RHEL-57915...