8998 matches found
curl security update
7.61.1-34.el810.2 - provide common cleanup method for push headers CVE-2024-2398 7.61.1-34.el810.1 - fix incorrect backport of bz2229800 RHEL-44684...
python-setuptools security update
53.0.0-12.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50466...
curl security update
7.76.1-29.el94.1 - provide common cleanup method for push headers CVE-2024-2398...
python3.12-setuptools security update
68.2.2-3.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50481...
bind security update
32:9.11.36-16.2 - Rebuild after CI change 32:9.11.36-16.1 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Add ability to change runtime limits for max types and records per name 32:9.11.36-16 - Ensure incompatible dhcp is not accepted 32:9.11.36-15 - Ensure incompatible bind-dyndb-ldap is not...
python3.11-setuptools security update
65.5.1-3 - Security fix for CVE-2024-6345 Resolves: RHEL-50484...
python-setuptools security update
39.2.0-8 - Security fix for CVE-2024-6345 Resolves: RHEL-50470...
pcs security update
0.10.18-2.0.1 - Replace HAM-logo.png with a generic one 0.10.18-2 - Updated rubygem rexml Resolves: RHEL-37883...
poppler security update
20.11.0-12 - Fix crash in broken documents when using -dests - Fix versions in changelog - Resolves: RHEL-44330...
mod_auth_openidc:2.3 security update
cjose modauthopenidc 2.4.9.4-6 - Resolves: RHEL-36492 Race condition in modauthopenidc filecache - Resolves: RHEL-25421 modauthopenidc: DoS when using OIDCSessionType client-cookie and manipulating cookies CVE-2024-24814...
thunderbird security update
115.14.0-1.0.1 - Add Oracle prefs 115.14.0 - Add OpenELA debranding 115.14.0-1 - Update to 115.14.0 build1...
thunderbird security update
115.14.0-1.0.1 - Add Oracle prefs file 115.14.0 - Add OpenELA debranding 115.14.0-1 - Update to 115.14.0 build1...
firefox security update
115.14.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding OpenELA file 115.14.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 115.14.0-2 - Update to 115.14.0 build2 115.14.0-1 - Update to 115.14.0 build1...
bind9.16 security update
32:9.16.23-0.22 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-0.21 - Backport addition of max-records-per-type and max-records-per-type options CVE-2024-1737 32:9.16.23-0.20 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Resolve CVE-2024-4076 - Add ability to change runtime...
kernel security update
5.14.0-427.31.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
orc security update
0.4.28-4 - Add patch for CVE-2024-40897 - Resolves: RHEL-50710...
edk2 security update
20220126gitbb1bba3d77-13.el810.2 20220126gitbb1bba3d77-13.el810.1 - edk2-MdeModulePkg-Change-use-of-EFID-to-DEBUG.patch RHEL-21854 RHEL-21856 RHEL-40099 - edk2-MdeModulePkg-Potential-UINT32-overflow-in-S3-ResumeC.patch RHEL-21854 RHEL-21856 RHEL-40099 - edk2-MdePkg-Apply-uncrustify-changes.patch...
gnome-shell security update
3.32.2-56 - Only open portal login in response to user action Resolves: RHEL-39097...
krb5 security update
1.18.2-29.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-29 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45398 RHEL-45386...
.NET 8.0 security update
8.0.108-1.0.1 - Add support for Oracle Linux 8.0.108-1 - Update to .NET SDK 8.0.108 and Runtime 8.0.8 - Resolves: RHEL-52389 8.0.107-2 - Fix ownership of some missed directories - Resolves: RHEL-47080...
python3.11-setuptools security update
65.5.1-2.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50490...
jose security update
10-2.3 - Backport fix for CVE-2024-28176 Resolves: RHEL-28719 10-2.2 - Fix tests on s390x Related: RHEL-29857 10-2.1 - Fixes CVE-2023-50967...
.NET 8.0 security update
8.0.108-1.0.1 - Add support for Oracle Linux 8.0.108-1 - Update to .NET SDK 8.0.108 and Runtime 8.0.8 - Resolves: RHEL-52388...
grafana security update
9.2.10-17 - Allow for mssql datasource in selinux policy - Resolves RHEL-43435...
python-urllib3 security update
1.24.2-8 - Security fix for CVE-2024-37891 Resolves: RHEL-45334...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.8-4 - rebuild for golang fixes - Related: RHEL-28452 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon 3:2.1.10-1 - update to https://github.com/containers/conmon/releases/tag/v2.1.10...
wget security update
1.19.5-12.0.1 - SSLv3 support dropped from openssl, v3 test certificates need to be replaced Orabug: 29613455 1.19.5-12 - Resolves: RHEL-43559 - Misinterpretation of input may lead to improper behavior...
httpd:2.4 security update
httpd 2.4.37-65.2.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.2 - Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53022 - Regression introduced by...
firefox security update
115.14.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.14.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 115.14.0-2 - Update to 115.14.0 build2 115.14.0-1 - Update to 115.14.0 build1...
bind and bind-dyndb-ldap security update
bind 9.16.23-18.0.1.6 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.6 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-18.5 - Backport addition of max-records-per-type and max-records-per-type options 32:9.16.23-18.2 - Resolve CVE-2024-1975 -...
Unbreakable Enterprise kernel security update
4.14.35-2047.539.5 - Revert 'mm/writeback: fix possible divide-by-zero in wbdirtylimits, again' Jan Kara - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879158 CVE-2024-41090 CVE-2024-41091 4.14.35-2047.539.4 - Fix parsing error in UEK5 kernel-uek-spec Yifei Liu Orabug: 368471...
Unbreakable Enterprise kernel security update
5.4.17-2136.334.6 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre Orabug...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.334.6.el8 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre...
Unbreakable Enterprise kernel security update
5.15.0-209.161.7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36865975 5.15.0-209.161.6 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879156 CVE-2024-41090 CVE-2024-41091 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.334.6.el7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre...
389-ds-base security update
2.4.5-9 - Bump version to 2.4.5-9 - Resolves: RHEL-44323 - unauthenticated user can trigger a DoS by sending a specific extended search request - Resolves: RHEL-40945 - Malformed userPassword hash may cause Denial of Service - Resolves: RHEL-49457 - perf search result investigation for many large...
linux-firmware security update
20240715-999.34.git4c8fb21e.el7 - Rebase to latest upstream Orabug: 36826157...
linux-firmware security update
20240715-999.34.git4c8fb21e.el9 - Rebase to latest upstream Orabug: 36826157...
linux-firmware security update
20240715-999.34.git4c8fb21e.el8 - Rebase to latest upstream Orabug: 36826157...
httpd security update
2.4.57-11.0.1.el94.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-11.1 - Resolves: RHEL-46047 - httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53021 - Regression introduced by...
kernel security update
4.18.0-553.16.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
qemu-kvm security update
7.2.0-13.el9 - vfio/migration: Enhance VFIO migration state tracing Avihai Horon - vfio/migration: Don't emit STOPCOPY VFIO migration QAPI event twice Avihai Horon - vfio/migration: Emit VFIO migration QAPI event Avihai Horon - qapi/vfio: Add VFIO migration QAPI event Avihai Horon -...
libtiff security update
4.0.9-32 - Fix CVE-2023-6228 CVE-2023-52356 CVE-2023-25433 CVE-2018-15209 - Resolves: RHEL-30682 RHEL-30520 RHEL-30474 RHEL-5406...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
kernel security update
5.14.0-427.28.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
freeradius security update
3.0.21-40 - Backport fixes for BlastRADIUS CVE Resolves: RHEL-46566...
freeradius:3.0 security update
3.0.20-15 - Backport BlastRADIUS CVE fix Resolves: RHEL-46572...
squid security update
7:5.5-13 - Resolves: RHEL-45056 - squid: Out-of-bounds write error may lead to Denial of Service CVE-2024-37894 - Resolves: RHEL-45643 - squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638...
containernetworking-plugins security update
1:1.4.0-4 - rebuild for CVE-2024-1394 - Resolves: RHEL-40809...