9151 matches found
webkit2gtk3 security update
2.52.4-1 - Update to 2.52.4...
kernel security update
4.18.0-553.132.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
firefox security update
140.10.1-1.0.1 - Update to 140.10.1 ESR Orabug: 39481850CVE-2026-7320CVE-2026-7321 CVE-2026-7322CVE-2026-7323 140.10.0-1.0.1 - Update to 140.10.0 ESR Orabug: 39499844CVE-2026-6746CVE-2026-6747 CVE-2026-6748CVE-2026-6749CVE-2026-6750CVE-2026-6751CVE-2026-6752...
firefox security update
140.9.0-1.0.1 - Update to 140.9.0 ESR Orabug: 39361657CVE-2026-4684CVE-2026-4685 CVE-2026-4686CVE-2026-4687CVE-2026-4688CVE-2026-4689CVE-2026-4690 CVE-2026-4691CVE-2026-4692CVE-2026-4693CVE-2026-4694CVE-2026-4695 CVE-2026-4696CVE-2026-4697CVE-2026-4698CVE-2026-4699CVE-2026-4700...
firefox security update
140.9.1-1.0.1 - Update to 140.9.1 ESR Orabug: 39324689CVE-2026-5731CVE-2026-5732 CVE-2026-5734CVE-2026-33416CVE-2026-33636 140.9.0-1.0.1 - Update to 140.9.0 ESR Orabug: 39361657CVE-2026-4684CVE-2026-4685 CVE-2026-4686CVE-2026-4687CVE-2026-4688CVE-2026-4689CVE-2026-4690...
.NET 10.0 security update
10.0.109-1.0.1 - Add support for Oracle Linux 10.0.109-1 - Update to .NET SDK 10.0.109 and Runtime 10.0.9 - Resolves: RHEL-181555 10.0.106-2 - Update to .NET SDK 10.0.106 and Runtime 10.0.6 - Resolves: RHEL-163381 10.0.104-2 - Update to .NET SDK 10.0.104 and Runtime 10.0.4 - Resolves: RHEL-152949...
.NET 9.0 security update
9.0.118-1.0.1 - Add support for Oracle Linux 9.0.118-1 - Update to .NET SDK 9.0.118 and Runtime 9.0.17 - Resolves: RHEL-181550 9.0.116-2 - Update to .NET SDK 9.0.116 and Runtime 9.0.15 - Resolves: RHEL-163389 9.0.115-2 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152941...
.NET 8.0 security update
8.0.128-1.0.1 - Add support for Oracle Linux 8.0.128-1 - Update to .NET SDK 8.0.128 and Runtime 8.0.28 - Resolves: RHEL-181052 8.0.126-2 - Update to .NET SDK 8.0.126 and Runtime 8.0.26 - Resolves: RHEL-163413 8.0.125-2 - Update to .NET SDK 8.0.125 and Runtime 8.0.25 - Resolves: RHEL-152929...
poppler security update
20.11.0-14 - Fix integer overflow in tilingPatternFill CVE-2026-10118 - Resolves: RHEL-180567...
postgresql-jdbc security update
42.2.14-4 - Limit SCRAM PBKDF2 iterations to prevent DoS via malicious server - Resolves: CVE-2026-42198...
firefox security update
140.8.0-2.0.1 - Update to 140.8.0 ESR Orabug: 39361647CVE-2026-2447CVE-2026-2757 CVE-2026-2758CVE-2026-2759CVE-2026-2760CVE-2026-2761CVE-2026-2762 CVE-2026-2763CVE-2026-2764CVE-2026-2765CVE-2026-2766CVE-2026-2767 CVE-2026-2768CVE-2026-2769CVE-2026-2770CVE-2026-2771CVE-2026-2772...
freerdp security update
2.1.1-5.0.7 - Fixed CVE-2026-22852 CVE-2026-22854 CVE-2026-22856 CVE-2026-23732 CVE-2026-23948 CVE-2026-24491 CVE-2026-24675 CVE-2026-24676 CVE-2026-24679 CVE-2026-24684 CVE-2026-31806 Orabug: 39272429 2.1.1-5.0.5 - Fixed CVE-2026-26955 CVE-2026-26956 Orabug: 39189643 2:2.2.0-5.0.3 - Fixed...
nodejs24 security update
1:24.14.1-2.0.2 - Rebuild to correct NVR 1:24.14.1-2.0.1 - Update upstream references...
java-1.8.0-openjdk security update
1.8.0.492.b09-1.0.1 - Update to 8u492-b09 GA Orabug: 39247147CVE-2026-22007CVE-2026-22013 CVE-2026-22016CVE-2026-22018CVE-2026-22021CVE-2026-23865CVE-2026-34268 1.8.0.482.b08-1.0.1 - Update to 8u482-b08 GA. Orabug: 38893614 - Update release notes for 8u482-b08. - Resolves: RHEL-142689 - Resolves:...
libyang security update
1.0.184-2 - DoS or arbitrary code execution via maliciously crafted LYB binary blob - Resolves: RHEL-177017 - CVE-2026-44673...
frr security update
7.5.1-24.0.1 - Fix POSTIN scriptlet Orabug: 34712485 7.5.1-24 - Fix off-by-one error in FlowSpec operator array bounds checking CVE-2026-37457 - Resolves: RHEL-174676...
unbound security update
1.16.2-5.11 - Fix CVE-2026-42944 RHEL-177909 - Fix CVE-2026-42959 RHEL-177809...
bind security update
32:9.11.36-16.8 - Fix GSS-API resource leak CVE-2026-3039 - Invalid handling of CLASS != IN CVE-2026-5946...
Unbreakable Enterprise kernel security update
5.15.0-321.202.5.1 - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017590 CVE-2025-10263 - arm64: tlb: Add ARM64WORKAROUNDREPEATTLBISYNC Mark Rutland Orabug: 39017590 - ARM: uek: Disable CONFIGNVIDIACARMELCNPERRATUM Boris Ostrovsky Orabug: 39017590 - arm64: tlb:...
Unbreakable Enterprise kernel security update
5.4.17-2136.356.4.2 - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017592 CVE-2025-10263 - arm64: tlb: Add ARM64WORKAROUNDREPEATTLBISYNC Mark Rutland Orabug: 39017592 - ARM: uek: Disable CONFIGQCOMFALKORERRATUM1003 Boris Ostrovsky Orabug: 39017592 - arm64: tlb:...
Unbreakable Enterprise kernel security update
6.12.0-203.76.7.3 - arm64: errata: Mitigate TLBI errata on various Arm CPUs Mark Rutland Orabug: 39017589 CVE-2025-10263 - arm64: tlb: Add ARM64WORKAROUNDREPEATTLBISYNC Mark Rutland Orabug: 39017589 - arm64: tlb: allow XZR argument to TLBI ops Mark Rutland Orabug: 39017589 - arm64: cputype: Add...
ImageMagick security update
6.9.10.68-7.0.11 - Fix CVE-2026-32636 Orabug: 39375225 6.9.10.68-7.0.9 - Fix CVE-2026-28691 and CVE-2026-28693 Orabug: 39174244 6.9.10.68-7.0.7 - Fixes Local File Disclosure via Path Traversal CVE-2026-25965 Orabug: 39118995 - Fixes Memory allocation with excessive without limits in the internal...
kernel security update
4.18.0-553.129.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
vim security update
8.0.1763-23.0.1 - Remove upstream references Orabug: 31197557 - Added glibc-gconv-extra to common requires to provide ISO-8859-2 Orabug: 34114984 2:8.0.1763-23 - RHEL-170126 CVE-2026-35177 vim: Vim zip.vim plugin: Arbitrary file overwrite via path traversal bypass 2:8.0.1763-22.3 - Relates:...
bind9.16 security update
32:9.16.23-0.22.6 - Fix GSS-API resource leak CVE-2026-3039 - Invalid handling of CLASS != IN CVE-2026-5946...
php:8.2 security update
libzip php 8.2.31-1 - rebase to 8.2.31 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip...
samba security update
4.19.4-16.0.1 - s3: winbindd: winbinddpam: fix leak in extractpacvrfysigs Orabug: 36518285 - s3:passdb: Do not leak memory in pdbtdb Orabug: 36371377 - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 Orabug: 30205755 4.19.4-16 - resolves: RHEL-156322 - Fix...
Unbreakable Enterprise kernel security update
5.15.0-321.202.5 - Revert 'ip6tunnel: Fix usage of skbvlaninetprepare' Harshit Mogalapalli Orabug: 39476647 - smb: client: reject userspace cifs.spnego descriptions Asim Viladi Oglu Manizada Orabug: 39463672 5.15.0-321.202.4 - tun: free page on buildskb failure in tunxdpone Weiming Shi Orabug:...
thunderbird security update
140.11.0-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.11.0 - Add OpenELA debranding 140.11.0-1 - Update to 140.11.0 ESR...
Unbreakable Enterprise kernel security update
5.4.17-2136.356.4.1 - smb: client: reject userspace cifs.spnego descriptions Asim Viladi Oglu Manizada Orabug: 39463669 5.4.17-2136.356.4 - tun: free page on buildskb failure in tunxdpone Weiming Shi Orabug: 39429147 - tap: free page on error paths in tapgetuserxdp Weiming Shi Orabug: 39429147 -...
expat security update
2.5.0-2 - Fix CVE-2026-45186 - Resolves: RHEL-177979...
compat-openssl10 security update
1.1.0.2o-4.2 - Fixes CVE-2026-28390: Denial of Service due to NULL pointer dereference in CMS EnvelopedData processing Resolves: RHEL-165754...
go-toolset:ol8 security update
delve golang 1.25.9-1.0.1 - EXPERIMENTAL: Introduce fipsnoenforceems GODEBUG var - Backported from OL9u7 - Resolves: OLDIS-53586...
Unbreakable Enterprise kernel security update
6.12.0-203.76.7.1 - smb: client: reject userspace cifs.spnego descriptions Asim Viladi Oglu Manizada Orabug: 39474418 6.12.0-203.76.7 - tun: free page on buildskb failure in tunxdpone Weiming Shi Orabug: 39456024 - tap: free page on error paths in tapgetuserxdp Weiming Shi Orabug: 39456024 - tun:...
httpd:2.4 security update
httpd 2.4.37-65.0.1.7 - Replace index.html with Oracle's index page oracleindex.html modhttp2 1.15.7-10.5 - Resolves: RHEL-166277 - httpd:2.4/httpd: Apache HTTP Server: HTTP/2 DoS by Memory Increase CVE-2025-53020 modmd 1:2.0.8-8.2 - Resolves: RHEL-134487 - httpd:2.4/httpd: Apache HTTP Server:...
freerdp security update
2.1.1-5.0.5 - Fixed CVE-2026-26955 CVE-2026-26956 Orabug: 39189643 2:2.2.0-5.0.3 - Fixed CVE-2026-22855 CVE-2026-22858 CVE-2026-22859 Orabug: 39075086 2:2.2.0-5.0.1 - fixed CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23884 Orabug: 38971897 2:2.2.0-5 - Update: Refactored R...
flatpak security update
1.12.9-4 - Fix arbitrary code execution via crafted symlinks in sandbox-expose options Resolves: RHEL-165633 - Fix arbitrary file deletion on host via improper cache file path validation Resolves: RHEL-170160...
cockpit security update
310.8-1.0.1 - Fixed cockpitwst selinux issue for tmpfs Orabug: 36013589 - Move update-motd out of cockpitwst context Orabug: 36013589 - Update documentation links Orabug: 34706402 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in...
glibc security update
2.28-251.0.4.37 - Forward port of Oracle patches Reviewed-by: David Faust Oracle history: May-7-2026 Cupertino Miranda - 2.28-251.0.4.34 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi March-18-2026 Cupertino Miranda - 2.28-251.0.4.31 - Forward port of Oracle patches Reviewed-by:...
.NET 8.0 security update
8.0.127-1.0.1 - Add support for Oracle Linux 8.0.127-1 - Update to .NET SDK 8.0.127 and Runtime 8.0.27 - Resolves: RHEL-173920...
firefox security update
140.11.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 - diable wasisdk to prevent build failure with newer llvm 140.11.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.11.0-1 - Update to 140.11.0 ESR...
kernel security update
4.18.0-553.126.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libexif security update
0.6.22-6 - Fix integer underflow in MakerNote decoding CVE-2026-40386 - Fix integer overflow in Nikon MakerNote handling CVE-2026-40385 Resolves: RHEL-170243, RHEL-170220...
.NET 10.0 security update
10.0.108-1.0.1 - Add support for Oracle Linux 10.0.108-1 - Update to .NET SDK 10.0.108 and Runtime 10.0.8 - Resolves: RHEL-173906...
.NET 9.0 security update
9.0.117-1.0.1 - Add support for Oracle Linux 9.0.117-1 - Update to .NET SDK 9.0.117 and Runtime 9.0.16 - Resolves: RHEL-173915...
thunderbird security update
140.10.1-1.0.1 - Fix prefs for new nss Orabug: 37079820 - Add Oracle prefs file 140.10.1 - Add OpenELA debranding 140.10.1-1 - Update to 140.10.1 ESR...
ruby:3.3 security update
ruby 3.3.10-6 - Fix arbitrary code execution via deserialization bypass in ERB. CVE-2026-41316 Resolves: RHEL-171247 rubygem-abrt 0.4.0-1 - Update to abrt 0.4.0. Resolves: rhbz1842476 rubygem-mysql2 0.5.5-1 - Upgrade to mysql2 0.5.5. Related: RHEL-17090 rubygem-pg 1.5.4-1 - Upgrade to pg 1.5.4...
dnsmasq security update
2.79-36 - Prevent overflow in extractname function CVE-2026-2291 - Prevent DoS in DNSSEC validation CVE-2026-4890 - Prevent out-of-bounds read in DNSSEC validation CVE-2026-4891 - Prevent out-of-bounds write in DHCPv6 server CVE-2026-4892 - Prevent source check avoidance by RFC 7871 client-subnet...
freeipmi security update
1.6.17-1 - Update to 1.6.17, fixes CVE-2026-33554...
compat-libtiff3 security update
3.9.4-15 - fix CVE-2026-4775: signed integer overflow in putcontig8bitYCbCr44tile RHEL-159315...