8984 matches found
PackageKit security update
1.2.6-2.0.1 - remove RHEL vendor patch PackageKit-0.3.8-RHEL-Vendor.conf.patch 1.2.6-2 - Backport fix for CVE-2026-41651. - Resolves: RHEL-170502...
grafana-pcp security update
5.1.1-14 - Resolves RHEL-166520: CVE-2026-32282 - Resolves RHEL-167381: CVE-2026-32280 - Resolves RHEL-167543: CVE-2026-32283...
grafana security update
9.2.10-30.0.1 - Fixes CVE-2024-1442 Add email verification when updating user email Orabug: 38550520 9.2.10-30 - Resolves RHEL-166519: CVE-2026-32282 - Resolves RHEL-167380: CVE-2026-32280 - Resolves RHEL-167542: CVE-2026-32283...
LibRaw security update
0.21.1-2 - Fix CVE-2026-21413 and CVE-2026-24450 Resolves: RHEL-165373, RHEL-165456...
python3 security update
3.6.8-76.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-76 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-167890, RHEL-168128...
libxml2 security update
2.9.7-21.4 - Fix CVE-2025-9714 RHEL-119279 2.9.7.21.3 - Fix CVE-2025-32415 RHEL-100177 2.9.7.21.2 - Fix CVE-2025-7425 RHEL-102797 2.9.7-21.1 - Fix CVE-2025-6021 RHEL-96498 - Fix CVE-2025-49794 RHEL-96398 - Fix CVE-2025-49796 RHEL-96424...
oci-utils security update
-- 0.14.0-21 - Update the debugging log file path. Orabug: 39250938...
vim security update
9.1.083-6.0.1.el101.4 - Remove upstream references Orabug: 31197557 2:9.1.083-6.4 - Resolves: RHEL-164951 vim: arbitrary command execution via modeline sandbox bypass 2:9.1.083-6.3 - RHEL-159615 CVE-2026-33412 vim: Vim: Arbitrary code execution via command injection in glob function 2:9.1.083-6.2...
pcs security update
0.12.1-1.el101.3 - Fixed CVE-2026-4800 by updating HA Cluster Management add-on to 0.1.23.2 Resolves: RHEL-164062...
xorg-x11-server-Xwayland security update
23.2.7-6 - CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001 CVE-2026-34002, CVE-2026-34003 Resolves: https://redhat.atlassian.net/browse/RHEL-163198 Resolves: https://redhat.atlassian.net/browse/RHEL-163294 Resolves: https://redhat.atlassian.net/browse/RHEL-163252...
xorg-x11-server security update
1.20.11-33 - CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001 CVE-2026-34002, CVE-2026-34003 Resolves: https://redhat.atlassian.net/browse/RHEL-163225 Resolves: https://redhat.atlassian.net/browse/RHEL-163307 Resolves: https://redhat.atlassian.net/browse/RHEL-163238...
yggdrasil-worker-package-manager security update
0.2.3-5 - Bump release for rebuild...
yggdrasil security update
0.4.8-4 - Bump release for rebuild...
xorg-x11-server-Xwayland security update
24.1.5-6 - CVE fix for: CVE-2026-33999, CVE-2026-34000, CVE-2026-34001 CVE-2026-34002, CVE-2026-34003 Resolves: https://redhat.atlassian.net/browse/RHEL-163188 Resolves: https://redhat.atlassian.net/browse/RHEL-163284 Resolves: https://redhat.atlassian.net/browse/RHEL-163242...
gdk-pixbuf2 security update
Tue Apr 21 2026 Benjamin Otte - Backport fixes for CVE-2026-5201 - Related: RHEL-163067...
python3.11 security update
3.11.13-5.3.0.1 - Remove upstream URL reference Orabug: 36073032 3.11.13-5.3 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-167913, RHEL-168155...
sudo security update
1.9.15-10.p5 - Resolves: RHEL-164619 - CVE-2026-35535 sudo: Sudo: Privilege escalation due to failure in privilege drop calls...
gdk-pixbuf2 security update
Wed Apr 22 2026 Benjamin Otte - Backport fixes for CVE-2026-5201 - Related: RHEL-163056...
python3.11 security update
3.11.13-7.0.1 - Update rpm-macros description Orabug: 36024572 3.11.13-7 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-168129, RHEL-167891...
python3.9 security update
3.9.25-3.0.1.el97.3 - Remove upstream URL reference 3.9.25-3.3 - Security fixes for CVE-2026-4786 and CVE-2026-6100 Resolves: RHEL-168157, RHEL-167915 3.9.25-3.2 - Security fix for CVE-2026-4519 Resolves: RHEL-158052 3.9.25-3.1 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 an...
python3.12 security update
3.12.13-2 - Security fixes for CVE-2026-1502, CVE-2026-4786, CVE-2026-6100, CVE-2026-2297, CVE-2026-3644, CVE-2026-4224 Resolves: RHEL-168130, RHEL-167892 3.12.13-1 - Update to 3.12.13 - Security fixes for CVE-2025-6075, CVE-2025-13837, CVE-2025-15282, CVE-2025-59375, CVE-2026-0672 Related:...
webkit2gtk3 security update
2.52.3-1 - Update to 2.52.3...
go-toolset:ol8 security update
delve 1.25.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.25.2-1 - Update to Delve 1.25.2 Sync from CentOS Stream 9 - Related: RHEL-121223 golang 1.25.9-1 - Update to Go 1.25.9 fips-2 - Resolves: RHEL-169932 1.25.7-2 - Update to Go 1.25.8 fips-1 - Resolves: RHEL-156551...
python security update
2.6.6-68.0.5 - Fix CVE-2025-15366 and CVE-2025-15367 Orabug: 39141391 2.6.6-68.0.4 - Fix CVE-2025-12084 Orabug: 38902317...
firefox security update
140.10.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079789 140.10.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.10.0-1 - Update to 140.10.0 ESR...
tigervnc security update
1.15.0-6.1 - Fix CVE-2026-33999, CVE-2026-34000, CVE-2026-34001, CVE-2026-34002, CVE-2026-34003 xorg-x11-server: various XKB and XSYNC vulnerabilities Resolves: RHEL-163212 Resolves: RHEL-163280 Resolves: RHEL-163266 - Fix CVE-2026-34352 Resolves: RHEL-167769...
firefox security update
140.10.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.10.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 140.10.0-1 - Update to 140.10.0 ESR...
python3.12-wheel security update
0.41.2-3.1 - Security fix for CVE-2026-24049 Resolves: RHEL-143652...
firefox security update
140.10.0-1.0.1 - Fix firefox-oracle-default-prefs.js for new nss Orabug: 37079773 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 140.10.0-1 - Update to 140.10.0 ESR...
python3.12 security update
3.12.12-4.0.1.el97.3 - Remove upstream URL reference 3.12.12-4.3 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-168156, RHEL-167914 3.12.12-4.2 - Security fix for CVE-2026-4519 Resolves: RHEL-158051 3.12.12-4.1 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 a...
gdk-pixbuf2 security update
2.42.12-5 - jpeg: Reject unsupported number of components...
java-21-openjdk security update
1:21.0.11.0.10-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.11.0.10-1 - Update to jdk-21.0.11+10 GA - Update release notes to 21.0.11+10 - Update FIPS patch to feef2dc3ca7 version synced with 21.0.11+9 and adapted to JDK-8244336 - Bump freetype version to 2.14.2 following JDK-8373290...
java-1.8.0-openjdk security update
1:1.8.0.492.b09-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:1.8.0.492.b09-1 - Update to 8u492-b09 GA - Update release notes for 8u492-b09. - Add missing CVEs for 8u482. - Regenerate JDK-8199936/PR3533 patch following JDK-8374917 - Regenerate JDK-8186464/RH1433262 patch following...
python3.12 security update
3.12.12-3.0.1.el101.3 - Remove upstream URL reference 3.12.12-3.3 - Security fixes for CVE-2026-4786, CVE-2026-6100 Resolves: RHEL-167885, RHEL-168119 3.12.12-3.2 - Security fix for CVE-2026-4519 Resolves: RHEL-158127 3.12.12-3.1 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367...
pcs security update
0.11.10-1.el97.3 - Fixed CVE-2026-4800 by updating pcs-web-ui to 0.1.23.2 Resolves: RHEL-164191...
java-17-openjdk security update
1:17.0.19.0.10-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.19.0.10-1 - Update to jdk-17.0.19+10 GA - Add to .gitignore openjdk-17.0.19+10.tar.xz - Set updatever to 19 - Set buildver to 10 - Set rpmrelease to 1 - Update sources to openjdk-17.0.19+10.tar.xz - This tarball is embargoed...
buildah security update
1.41.8-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.41.8-3 - rebuild for CVE-2026-34986 - Resolves: RHEL-165027...
qemu-kvm security update
7.2.0-37.el9 - hashing: use mmap/munmap for isal functions Elena Ufimtseva Orabug: 39165991 - multifd: replace allocations/free with mmap/munmap Elena Ufimtseva Orabug: 39165991 - pagecache: use mmap based data pool for cache items Elena Ufimtseva Orabug: 39165991 - pagecache: change cache...
grafana security update
10.2.6-20 - Resolves RHEL-161802: CVE-2026-27877...
golang security update
1.25.9-1 - Update to Go 1.25.9 fips-2 - Resolves: RHEL-169931...
virt:kvm_utils3 bug fix update
hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 1.3.18-22.el8 - Resolves: bz2000225 Rebase virt:rhel module:stream based on AV-8.6 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 1.3.18 - Resolves: bz1810193 Upgrade...
libpng12 security update
1.2.50-10.0.1 - Fix CVE-2026-25646: heap buffer overflow in pngsetquantize Orabug: 39183864...
golang security update
1.25.9-3 - Do not ignore any tests in check 1.25.9-2 - Skip terminal test in container 1.25.9-1 - Update to Go 1.25.9 fips-2...
grafana security update
10.2.6-24 - Resolves RHEL-161790: CVE-2026-27877...
oci-utils security update
-- 0.14.0-19 - Fix secondary vnic default metric to be a lower priority value Orabug: 38154477...
java-25-openjdk security update
1:25.0.3.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:25.0.3.0.9-1 - Update to jdk-25.0.3+9 GA - Update release notes to 25.0.3+9 - Update FIPS patch to 57722aab802 version synced with 25.0.3+8 - Drop local libpng patches now JDK-8372534, JDK-8375063 & JDK-8377526 are included upstrea...
thunderbird security update
140.9.1-1.0.1 - Add Oracle prefs 140.9.1-1 - Update to 140.9.1 ESR...
wireshark security update
4.4.2-4.0.1.el101.4 - Fix post script to not fail during initial installation Orabug: 37565359 1:4.4.2-4.4 - Resolves: RHEL-152921 - CVE-2026-3203 Buffer Over-read 1:4.4.2-4.3 - Resolves: RHEL-152912 - CVE-2026-3201 Improperly Controlled Sequential Memory Allocation 1:4.4.2-4.2 - Resolves:...
kernel security update
6.12.0-124.52.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
bind security update
9.18.33-10.0.2.el101.3 - Hard require needed openssl-libs Orabug: 38742109 - Fix warning when changing device file permissions Orabug: 36518580 32:9.18.33-10.3 - Prevent Denial of Service via maliciously crafted DNSSEC-validated zone CVE-2026-1519 32:9.18.33-10.2 - Fix upstream reported regressio...