8998 matches found
ovirt-engine security update
4.5.5-1.21 - Fix external providers properties observability...
net-snmp security update
5.9.1-13.0.1 - fix error index value when snmpget is used a proxy pass Orabug: 35010262 1:5.9.1-13.3 - fix CVE-2022-24805, CVE-2022-24806, CVE-2022-24807, CVE-2022-24808, CVE-2022-24809 and CVE-2022-24810 RHEL-32062...
git-lfs security update
3.4.1-3 - Rebuild with new Golang - Resolves: RHEL-57900...
firefox security update
115.12.0-1.0.3 - Security fixes Orabug: 36904311Orabug: 36948200CVE-2024-6601 CVE-2024-6603CVE-2024-6604CVE-2024-7519CVE-2024-7520CVE-2024-7521 CVE-2024-7522CVE-2024-7524CVE-2024-7525CVE-2024-7526CVE-2024-7527 CVE-2024-7529...
git-lfs security update
3.4.1-4 - Rebuild with new Golang - Resolves: RHEL-57920...
python3.12 security update
3.12.5-2 - Security fix for CVE-2024-8088 Resolves: RHEL-55939 3.12.5-1 - Update to 3.12.5 - Security fix for CVE-2024-6923 Resolves: RHEL-53075 3.12.4-3 - Properly propagate the optimization flags to C extensions 3.12.4-2 - Build Python with -O3 -...
expat security update
2.2.5-15.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314 2.2.5-15 - Rebuild for test reconfiguration 2.2.5-14 - Fix multiple CVEs - Fix CVE-2024-45492 integer overflow - Fix CVE-2024-45491 Integer Overflow or Wraparound - Fix CVE-2024-45490 Negative Length Parsing...
kernel security update
5.14.0-427.37.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
gtk3 security update
3.22.30-12 - Stop loading modules from cwd CVE-2024-6655 - Resolves: RHEL-46988...
kernel security update
4.18.0-553.22.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
dovecot security update
1:2.3.16-6 - fix CVE-2024-23185: very large headers can cause resource exhaustion when parsing message RHEL-55219 - fix CVE-2024-23184: using a large number of address headers may trigger a denial of service RHEL-55206...
nano security update
2.9.8-3 - fix incomplete backport of the fix for the emergency file replacement vulnerability RHEL-35236 2.9.8-2 - fix emergency file replacement vulnerability RHEL-35236...
virt:ol and virt-devel:rhel security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd 1.6.0-6 - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52728 libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.2.0-53 - kvm-nbd-server-Favor-qemuaiocontext-over-iohandler-con.patc...
python3 security update
3.6.8-67.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-67 - Security fix for CVE-2024-6232 Resolves: RHEL-57399 3.6.8-66 - Security fix for CVE-2024-6923 Resolves: RHEL-53065 3.6.8-65 - Build Python with -O3 - https://fedoraproject.org/wiki/Changes/PythonbuiltwithgccO3...
container-tools:ol8 security update
aardvark-dns buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp netavark oci-seccomp-bpf-hook podman 4.9.4-13.0.1 - Fixes issue of container created in cgroupv2 not start in cgroupv1 Orabug: 36136813 - Fixes container...
python3.11 security update
3.11.9-7.0.1 - Update rpm-macros description Orabug: 36024572 3.11.9-7 - Security fix for CVE-2024-8088 Resolves: RHEL-55934 3.11.9-6 - Security fix for CVE-2024-6923 Resolves: RHEL-53089 3.11.9-5 - Properly propagate the optimization flags to C extensions 3.11.9-4 - Build Python with -O3 -...
emacs security update
1:26.1-12 - org-file-contents: Consider all remote files unsafe CVE-2024-30205 - org-link-expand-abbrev: Do not evaluate arbitrary unsafe Elisp code CVE-2024-39331 - Make Gnus treats inline MIME contents as untrusted CVE-2024-30203 - Disable xwidgets RHEL-14549...
kernel security update
3.10.0-1160.119.1.0.4.el7.OL7 - fuse: fix pipe buffer lifetime for directio Miklos Szeredi 3.10.0-1160.119.1.0.4.el7.OL7...
openssl security update
3.0.7-28.0.1 - Drop OpenELA branding, apply Oracle branding patches - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 1:3.0.7-28 - Patch for CVE-2024-6119 Resolves:...
grafana-pcp security update
5.1.1-3 - Resolves RHEL-57930: CVE-2024-34156...
Unbreakable Enterprise kernel security update
5.15.0-300.163.18 - crypto: qat - specify firmware files for 402xx Giovanni Cabiddu Orabug: 37044631 5.15.0-300.163.17 - KVM/x86: Do not clear SIPI while in SMM Boris Ostrovsky Orabug: 36955051 - Revert 'Fix userfaultfdapi to return EINVAL as expected' Vijayendra Suman Orabug: 36992217...
go-toolset:ol8 security update
delve 1.21.2-4.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.21.2-4 - Skip tests in %check due to incompatible Go version in buildroot temporary. - Resolves: RHEL-59518 golang 1.21.13-2 - Rebuild Go with CVE Fixes - Remove fix-memleak-setupRSA.patch exists upstream - Resolves:...
golang security update
1.21.13-3 - Related: RHEL-58226 1.21.13-2 - Rebuild Go with CVE Fixes - Remove fix-memleak-setupRSA.patch exists upstream - Resolves: RHEL-58226 - Resolves: RHEL-57962 - Resolves: RHEL-57848 - Resolves: RHEL-57865 1.21.13-1 - Rebase to Go1.21.13 to pick the fix for CVE-2024-24791 - Technically...
grafana security update
9.2.10-17 - Resolves RHEL-57925: CVE-2024-34156...
thunderbird security update
128.2.0-1.0.2 - Fix prefs for new nss Orabug: 37079820 128.2.0-1.0.1 - Add Oracle prefs file 128.2.0 - Add OpenELA debranding 128.2.0-1 - Update to 128.2.0 128.1.1-2 - Update to 128.1.1 128.0-1 - Update to 128.0 final 128.0b4-1 - Update to 128.0b4...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.335.4.1.el7 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035558...
firefox security update
128.2.0-1.0.2 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 128.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 128.2.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.2.0-1 - Update to 128.2.0...
thunderbird security update
128.2.0-1.0.2 - Fix prefs for new nss Orabug: 37079813 128.2.0-1.0.1 - Add Oracle prefs 128.2.0 - Add OpenELA debranding 128.2.0-1 - Update to 128.2.0 128.1.1-2 - Update to 128.1.1 128.0-1 - Update to 128.0 final 128.0b4-1 - Update to 128.0b4...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.335.4.1.el8 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035558...
firefox security update
128.2.0-1.0.2 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 128.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding OpenELA file 128.2.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 128.2.0-1 - Update to 128.2.0...
Unbreakable Enterprise kernel bug fix update
5.4.17-2136.335.4.1 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035558...
openssl security update
3.0.7-28.0.1fips - Replace upstream references in fips man pages Orabug: 35824276 - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35824276 - Update FIPS module name and remove upstream references from fipsmoduleindicators manpage Orabug: 35824276 3.0.7-28.0.1 -...
pcp security update
6.2.0-5.0.1 - Fixed libpcp derived metric issue for ol9 Orabug: 36538820 6.2.0-5 - Fix buffer sizing checks in pmstore PDU handling RHEL-57805 - Guard against symlink attacks in pmpost program RHEL-57810 - Fix libpcpweb webgroup slow request refcounting RHEL-58306 - Updated pmdahacluster for newe...
openssl security update
3.0.7-28.0.1 - Drop OpenELA branding, apply Oracle branding patches - Enable openssl-fips-provider dependency Orabug: 36504822 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 - Replace upstream references Orabug: 34340177 1:3.0.7-28 - Patch for CVE-2024-6119 Resolves:...
ruby:3.3 security update
ruby 3.3.5-3 - Upgrade to Ruby 3.3.5 Resolves: RHEL-57576 - Fix DoS vulnerability in rexml. CVE-2024-39908 CVE-2024-41946 CVE-2024-43398 Resolves: RHEL-57573 Resolves: RHEL-57570 Resolves: RHEL-57578 - Fix REXML DoS when parsing an XML having many specific characters such as whitespace character,...
libvirt security update
libvirt 9.0.0-6.el9 - rpc: ensure temporary GSource is removed from client event loop Daniel P. Berrange Orabug: 36821472 CVE-2024-4418 - rpc: Don't warn about 'maxclientrequests' in single-threaded daemons Peter Krempa Orabug: 36422853 libvirt-python 9.0.0-6.el9 - Update to libvirt 9.0.0-6 Karl...
ruby:3.3 security update
ruby 3.3.5-3 - Upgrade to Ruby 3.3.5 Resolves: RHEL-55409 - Fix DoS vulnerability in rexml. CVE-2024-39908 CVE-2024-41946 CVE-2024-43398 Resolves: RHEL-57049 Resolves: RHEL-57054 Resolves: RHEL-57069 - Fix REXML DoS when parsing an XML having many specific characters such as whitespace character,...
Unbreakable Enterprise kernel bug fix update
4.14.35-2047.540.4.2 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37035559...
pcp security update
5.3.7-22.0.1 - pcp-zoneinfo fix to replay ol7 archives Orabug: 35903733 - Backporting of python tool pcp-meminfo Orabug: 35759707 - Backporting of python tool pcp-slabinfo Orabug: 35560940 - Backporting of python tool pcp-buddyinfo Orabug: 35660932 - Backporting of python tool pcp-netstat Orabug:...
qemu-kvm security update
7.2.0-15.el9 - migration: abort on destination if switchover limit exceeded Elena Ufimtseva - migration: introduce strict switchover SLA Elena Ufimtseva - migration: add error to MigrationIncomingState Elena Ufimtseva - migration: Set migration status early in incoming side Fabiano Rosas -...
libnbd security update
1.18.1-4.0.1 - Add new content to nbdconnecturi.pod 1.18.1-4 - Fix CVE-2024-7383 NBD server improper certificate validation resolves: RHEL-52730...
expat security update
2.5.0-2.1 - Fix multiple CVEs - Fix CVE-2024-45492 integer overflow - Fix CVE-2024-45491 Integer Overflow or Wraparound - Fix CVE-2024-45490 Negative Length Parsing Vulnerability - Resolves: RHEL-57510 - Resolves: RHEL-57497 - Resolves: RHEL-56763...
kernel security update
3.10.0-1160.119.1.0.3.el7.OL7 - net: fix dstnegativeadvice race Eric Dumazet Orabug: 36947298 3.10.0-1160.119.1.0.2.el7.OL7 - md/raid5: fix oops during stripe resizing Ritika Srivastava Orabug: 34048726 - blk-mq: Remove generation seqeunce Ritika Srivastava Orabug: 33964689 - block: init flush rq...
java-1.8.0-openjdk security update
1:1.8.0.412.b08-1.0.1 - Fixes openjdk below given CVE issues - CVE-2024-21131 Improve-UTF8-String-supports - CVE-2024-21138 Better-symbol-storage - Fixes bad immediate dominator info openjdk bug8262017 - Fixes malformed control flow openjdk bug8303466 - CVE-2024-21140 Improved-loop-handling -...
ghostscript security update
9.25-5.0.1 - Fixes CVE-2024-33871 OPVP device arbitrary code execution via custom Driver library...
fence-agents security update
4.10.0-62.5 - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-49657...
pcs security update
0.10.18-2.0.1.el810.2 - Replace HAM-logo.png with a generic one 0.10.18-2.el810.2 - Updated rubygem rexml Resolves: RHEL-52409, RHEL-52788, RHEL-55997...
httpd security update
2.4.6-99.0.3.1 - Opt-ins for unsafe prefixstat and %3f Orabug: 36904263CVE-2024-38474CVE-2024-38475 - modproxy: validate hostname Orabug: 36904263CVE-2024-38477...
389-ds:1.4 security update
1.4.3.39-8 - Bump version to 1.4.3.39-8 - Resolves: RHEL-40943 - CVE-2024-5953 389-ds:1.4/389-ds-base: Malformed userPassword hash may cause Denial of Service rhel-8.10.z - Resolves: RHEL-58069 - perf search result investigation for many large static groups and members rhel-8.10.0.z...
Unbreakable Enterprise kernel security update
5.15.0-210.163.7 - crypto: qat - specify firmware files for 402xx Giovanni Cabiddu Orabug: 37030280 5.15.0-210.163.6 - Revert 'Fix userfaultfdapi to return EINVAL as expected' Vijayendra Suman Orabug: 37004422 5.15.0-210.163.5 - Revert 'bpf: Allow reads from uninit stack' Vijayendra Suman Orabug:...