9185 matches found
nodejs:18 security update
nodejs 1:18.20.4-1 - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 nodejs-nodemon nodejs-packaging...
nodejs:18 security update
nodejs 1:18.20.4-1 - Update to 18.20.4 Fixes: CVE-2024-22020 CVE-2024-28863 nodejs-nodemon nodejs-packaging...
fence-agents security update
4.2.1-129.4 - bundled setuptools: fix CVE-2024-6345 Resolves: RHEL-50223 4.2.1-129.3 - bundled urllib3: fix CVE-2024-37891 Resolves: RHEL-43568 4.2.1-129.2 - fenceeps: add fenceepsr2 for ePowerSwitch R2 and newer Resolves: RHEL-7734 - bundled jinja2: fix CVE-2024-34064 Resolves: RHEL-35655...
ghostscript security update
9.54.0-17 - RHEL-44759 CVE-2024-33870 ghostscript: path traversal to arbitrary files if the current directory is in the permitted paths - RHEL-44745 CVE-2024-33869 ghostscript: path traversal and command execution due to path reduction - RHEL-44731 CVE-2024-29510 ghostscript: format string...
runc security update
4:1.1.12-4 - rebuild for CVE-2024-24783 - Resolves: RHEL-28439...
krb5 security update
1.21.1-2.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.21.1-2 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45401 RHEL-45390...
skopeo security update
2:1.14.5-1 - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 https://github.com/containers/skopeo/commit/072072b - Resolves: RHEL-40805...
buildah security update
1.33.7-4.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.7-4 - rebuild for CVE-2024-24783 - Resolves: RHEL-28428...
postgresql security update
13.16-1.0.1 - Remove non ASCII character from changelog date 13.16-1 - Update to 13.16 13.14-2 - Remove /var/run/postgresql - Related: RHEL-25756 13.14-1 - Update to 13.14 - Fix CVE-2024-0985 13.13-1 - Update to 13.13 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, and CVE-2023-39417 -...
orc security update
0.4.31-7 - Add patch for CVE-2024-40897 - Resolves: RHEL-50701...
wget security update
1.21.1-8 - Resolves: RHEL-43226 - Misinterpretation of input may lead to improper behavior...
gvisor-tap-vsock security update
6:0.7.3-5 - rebuild for CVE-2024-24783 - Resolves: RHEL-28435...
python3.11 security update
3.11.7-1.5 - Security fix for CVE-2024-8088 Resolves: RHEL-55960 3.11.7-1.4 - Security fix for CVE-2024-6923 Resolves: RHEL-53037...
podman security update
4.9.4-10.0.1 - Fixes issue of podman execvp error while using podmansh Orabug: 36073625 - Improved saving remote build context to tarfile in Podman daemon Orabug: 36495655 - Add devices on container startup, not on creation - Backport fast gzip for compression Orabug: 36420418 - overlay: Put shou...
containernetworking-plugins security update
1:1.4.0-5 - rebuild for CVE-2024-24783 - Resolves: RHEL-28431...
python3.12 security update
3.12.1-4.3 - Security fix for CVE-2024-8088 Resolves: RHEL-55964 3.12.1-4.2 - Security fix for CVE-2024-6923 Resolves: RHEL-53087...
python-urllib3 security update
1.26.5-5.1 - Security fix for CVE-2024-37891 - Backport upstream patch to fix TypeError for http connection if the PoolManager - is instantiated with serverhostname Resolves: RHEL-49853...
python3.9 security update
3.9.18-3.5 - Security fix for CVE-2024-8088 Resolves: RHEL-55968 3.9.18-3.4 - Security fix for CVE-2024-6923 Resolves: RHEL-53044...
Unbreakable Enterprise kernel security update
4.1.12-124.89.4 - isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284 - tracing: Restructure traceclockglobal to never block Steven Rostedt VMware Orabug: 36940388 CVE-2021-46939 - udf: Fix NULL pointer dereference in udfsymlink function Arturo Giusti Orabug:...
virt:kvm_utils3 security update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol libguestfs-winsupport...
virt:kvm_utils2 security update
hivex libguestfs libguestfs-winsupport 8.6-1 - Rebase to ntfs-3g 2021.8.22 - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254 resolves: rhbz2004490...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.16-1 - Update to 13.16 - Fix CVE-2024-7348...
postgresql:12 security update
pgaudit pgrepack postgres-decoderbufs postgresql 12.20-1 - Update to 12.20 - Fix CVE-2024-7348...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.8-1 - Update to 15.8 - Fix CVE-2024-7348...
postgresql:15 security update
pgaudit 1.7.0-1 - Initial import for postgresql 15 module - Update to 1.7.0 - Support postgresql 15 - Related: 2128410 pgrepack postgres-decoderbufs 1.9.7-1.Final - Iitial import for postgresql 15 stream - Related: 2128410 postgresql 15.8-1 - Update to 15.8 15.6-3 - Remove /var/run/postgresql -...
python39:3.9 and python39-devel:3.9 security update
modwsgi numpy python39 3.9.19-7 - Security fix for CVE-2024-8088 Resolves: RHEL-55954 3.9.19-6 - Security fix for CVE-2024-6923 Resolves: RHEL-53102 3.9.19-5 - Properly propagate the optimization flags to C extensions 3.9.19-4 - Build Python with -O3 -...
libvpx security update
1.7.0-11 - Add patch to fix integer overflows. - Fix compilation by including limits.h - Resolves: RHEL-40650...
kernel security update
5.14.0-427.33.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
postgresql:16 security update
pgaudit 16.0-1 - Update to 16.0 - Support postgresql 16 - Initial import for PG 16 module - Resolves: RHEL-3636 pgrepack postgres-decoderbufs 2.4.0-1.Final - Initial import for postgresql 16 stream - Related: RHEL-3636 postgresql 16.4-1 - Update to 16.4 - Fix CVE-2024-7348...
postgresql:16 security update
pgaudit pgrepack postgres-decoderbufs postgresql 16.4-1 - Update to 16.4...
nodejs:20 security update
nodejs 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 nodejs-nodemon nodejs-packaging...
nodejs:20 security update
nodejs 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 nodejs-nodemon nodejs-packaging...
python3.12-setuptools security update
68.2.2-4 - Security fix for CVE-2024-6345 Resolves: RHEL-50475...
tomcat security update
1:9.0.87-1.el94.2 - Resolves: RHEL-46162 tomcat: Improper Handling of Exceptional Conditions CVE-2024-34750...
tomcat security update
1:9.0.87-1.el810.2 - Resolves: RHEL-46167 tomcat: Improper Handling of Exceptional Conditions CVE-2024-34750...
libreoffice security update
6.4.7.2-18.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 6.4.7.2 - Remove Red Hat branding - Change vendor to RESF 1:6.4.7.2-18 - Fix CVE-2024-6472 remove ability to trust not validated...
curl security update
7.61.1-34.el810.2 - provide common cleanup method for push headers CVE-2024-2398 7.61.1-34.el810.1 - fix incorrect backport of bz2229800 RHEL-44684...
libreoffice security update
7.1.8.1-14.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Added the --with-hamcrest option to configure. 7.1.8.1 - Remove Red Hat branding - Change vendor to RESF 1:7.1.8.1-14 - Fix CVE-2024-6472 remove ability to trust not validated macro signatures in high security...
python3.12-setuptools security update
68.2.2-3.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50481...
python-setuptools security update
53.0.0-12.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50466...
bind security update
32:9.11.36-16.2 - Rebuild after CI change 32:9.11.36-16.1 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Add ability to change runtime limits for max types and records per name 32:9.11.36-16 - Ensure incompatible dhcp is not accepted 32:9.11.36-15 - Ensure incompatible bind-dyndb-ldap is not...
curl security update
7.76.1-29.el94.1 - provide common cleanup method for push headers CVE-2024-2398...
python-setuptools security update
39.2.0-8 - Security fix for CVE-2024-6345 Resolves: RHEL-50470...
python3.11-setuptools security update
65.5.1-3 - Security fix for CVE-2024-6345 Resolves: RHEL-50484...
pcs security update
0.10.18-2.0.1 - Replace HAM-logo.png with a generic one 0.10.18-2 - Updated rubygem rexml Resolves: RHEL-37883...
mod_auth_openidc:2.3 security update
cjose modauthopenidc 2.4.9.4-6 - Resolves: RHEL-36492 Race condition in modauthopenidc filecache - Resolves: RHEL-25421 modauthopenidc: DoS when using OIDCSessionType client-cookie and manipulating cookies CVE-2024-24814...
poppler security update
20.11.0-12 - Fix crash in broken documents when using -dests - Fix versions in changelog - Resolves: RHEL-44330...
thunderbird security update
115.14.0-1.0.1 - Add Oracle prefs 115.14.0 - Add OpenELA debranding 115.14.0-1 - Update to 115.14.0 build1...
thunderbird security update
115.14.0-1.0.1 - Add Oracle prefs file 115.14.0 - Add OpenELA debranding 115.14.0-1 - Update to 115.14.0 build1...
kernel security update
5.14.0-427.31.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...