9185 matches found
bind9.16 security update
32:9.16.23-0.22 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-0.21 - Backport addition of max-records-per-type and max-records-per-type options CVE-2024-1737 32:9.16.23-0.20 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Resolve CVE-2024-4076 - Add ability to change runtime...
kernel security update
5.14.0-427.31.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
firefox security update
115.14.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.14.0 - Add debranding patches Mustafa Gezen - Add OpenELA default preferences Louis Abel 115.14.0-2 - Update to 115.14.0 build2 115.14.0-1 - Update to 115.14.0 build1...
python3.11-setuptools security update
65.5.1-2.1 - Security fix for CVE-2024-6345 Resolves: RHEL-50490...
gnome-shell security update
3.32.2-56 - Only open portal login in response to user action Resolves: RHEL-39097...
jose security update
10-2.3 - Backport fix for CVE-2024-28176 Resolves: RHEL-28719 10-2.2 - Fix tests on s390x Related: RHEL-29857 10-2.1 - Fixes CVE-2023-50967...
grafana security update
9.2.10-17 - Allow for mssql datasource in selinux policy - Resolves RHEL-43435...
python-urllib3 security update
1.24.2-8 - Security fix for CVE-2024-37891 Resolves: RHEL-45334...
bind and bind-dyndb-ldap security update
bind 9.16.23-18.0.1.6 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.6 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-18.5 - Backport addition of max-records-per-type and max-records-per-type options 32:9.16.23-18.2 - Resolve CVE-2024-1975 -...
.NET 8.0 security update
8.0.108-1.0.1 - Add support for Oracle Linux 8.0.108-1 - Update to .NET SDK 8.0.108 and Runtime 8.0.8 - Resolves: RHEL-52389 8.0.107-2 - Fix ownership of some missed directories - Resolves: RHEL-47080...
orc security update
0.4.28-4 - Add patch for CVE-2024-40897 - Resolves: RHEL-50710...
wget security update
1.19.5-12.0.1 - SSLv3 support dropped from openssl, v3 test certificates need to be replaced Orabug: 29613455 1.19.5-12 - Resolves: RHEL-43559 - Misinterpretation of input may lead to improper behavior...
container-tools:ol8 security update
aardvark-dns buildah 2:1.33.8-4 - rebuild for golang fixes - Related: RHEL-28452 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon 3:2.1.10-1 - update to https://github.com/containers/conmon/releases/tag/v2.1.10...
krb5 security update
1.18.2-29.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.18.2-29 - CVE-2024-37370 CVE-2024-37371 Fix vulnerabilities in GSS message token handling Resolves: RHEL-45398 RHEL-45386...
.NET 8.0 security update
8.0.108-1.0.1 - Add support for Oracle Linux 8.0.108-1 - Update to .NET SDK 8.0.108 and Runtime 8.0.8 - Resolves: RHEL-52388...
edk2 security update
20220126gitbb1bba3d77-13.el810.2 20220126gitbb1bba3d77-13.el810.1 - edk2-MdeModulePkg-Change-use-of-EFID-to-DEBUG.patch RHEL-21854 RHEL-21856 RHEL-40099 - edk2-MdeModulePkg-Potential-UINT32-overflow-in-S3-ResumeC.patch RHEL-21854 RHEL-21856 RHEL-40099 - edk2-MdePkg-Apply-uncrustify-changes.patch...
httpd:2.4 security update
httpd 2.4.37-65.2.0.1 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-65.2 - Resolves: RHEL-46040 - httpd:2.4/httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53022 - Regression introduced by...
Unbreakable Enterprise kernel security update
5.4.17-2136.334.6 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre Orabug...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.334.6.el7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.334.6.el8 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre...
Unbreakable Enterprise kernel security update
4.14.35-2047.539.5 - Revert 'mm/writeback: fix possible divide-by-zero in wbdirtylimits, again' Jan Kara - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879158 CVE-2024-41090 CVE-2024-41091 4.14.35-2047.539.4 - Fix parsing error in UEK5 kernel-uek-spec Yifei Liu Orabug: 368471...
Unbreakable Enterprise kernel security update
5.15.0-209.161.7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36865975 5.15.0-209.161.6 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879156 CVE-2024-41090 CVE-2024-41091 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs...
389-ds-base security update
2.4.5-9 - Bump version to 2.4.5-9 - Resolves: RHEL-44323 - unauthenticated user can trigger a DoS by sending a specific extended search request - Resolves: RHEL-40945 - Malformed userPassword hash may cause Denial of Service - Resolves: RHEL-49457 - perf search result investigation for many large...
linux-firmware security update
20240715-999.34.git4c8fb21e.el7 - Rebase to latest upstream Orabug: 36826157...
linux-firmware security update
20240715-999.34.git4c8fb21e.el8 - Rebase to latest upstream Orabug: 36826157...
linux-firmware security update
20240715-999.34.git4c8fb21e.el9 - Rebase to latest upstream Orabug: 36826157...
httpd security update
2.4.57-11.0.1.el94.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-11.1 - Resolves: RHEL-46047 - httpd: Security issues via backend applications whose response headers are malicious or exploitable CVE-2024-38476 - Resolves: RHEL-53021 - Regression introduced by...
kernel security update
4.18.0-553.16.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
libtiff security update
4.0.9-32 - Fix CVE-2023-6228 CVE-2023-52356 CVE-2023-25433 CVE-2018-15209 - Resolves: RHEL-30682 RHEL-30520 RHEL-30474 RHEL-5406...
qemu-kvm security update
7.2.0-13.el9 - vfio/migration: Enhance VFIO migration state tracing Avihai Horon - vfio/migration: Don't emit STOPCOPY VFIO migration QAPI event twice Avihai Horon - vfio/migration: Emit VFIO migration QAPI event Avihai Horon - qapi/vfio: Add VFIO migration QAPI event Avihai Horon -...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
kernel security update
5.14.0-427.28.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
freeradius security update
3.0.21-40 - Backport fixes for BlastRADIUS CVE Resolves: RHEL-46566...
freeradius:3.0 security update
3.0.20-15 - Backport BlastRADIUS CVE fix Resolves: RHEL-46572...
squid security update
7:5.5-13 - Resolves: RHEL-45056 - squid: Out-of-bounds write error may lead to Denial of Service CVE-2024-37894 - Resolves: RHEL-45643 - squid: vulnerable to a Denial of Service attack against Cache Manager error responses CVE-2024-23638...
containernetworking-plugins security update
1:1.4.0-4 - rebuild for CVE-2024-1394 - Resolves: RHEL-40809...
edk2 security update
20231122-6.0.1.el94.2 - Replace upstream references Orabug:36569119 20231122-6.el94.2 - edk2-NetworkPkg-SECURITY-PATCH-CVE-2023-45237.patch RHEL-40270 RHEL-40272 - edk2-NetworkPkg-TcpDxe-SECURITY-PATCH-CVE-2023-45236.patch RHEL-40270 RHEL-40272 -...
cups security update
1:2.3.3op2-27 - Revert the cups-libs license identifier to the 'legacy' format 1:2.3.3op2-26 - RHEL-40388 cups: Cupsd Listen arbitrary chmod 0140777 - Delete the domain socket file after stopping the cups.socket service - Fix cupsd Listener checks 1:2.3.3op2-25 - CVE-2024-35235 cups: Cupsd Listen...
libuv security update
1:1.42.0-2 - Backport fix for CVE-2024-24806 Resolves: RHEL-24791...
Unbreakable Enterprise kernel security update
4.14.35-2047.538.5.1 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755...
Unbreakable Enterprise kernel security update
4.1.12-124.87.2.2 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.333.5.1.el8 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755 - pci: add hotplug patch support for SOLIDIGM Aura10 AIC 0x025e:0x0b60 Alan Adamson Orabug: 36836653...
libreoffice security update
7.1.8.1-13.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Added the --with-hamcrest option to configure. 1:7.1.8.1-13 - Fix CVE-2024-3044 add notify for script use...
Unbreakable Enterprise kernel security update
5.4.17-2136.333.5.1 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755 - pci: add hotplug patch support for SOLIDIGM Aura10 AIC 0x025e:0x0b60 Alan Adamson Orabug: 36836653...
runc security update
4:1.1.12-3 - rebuild for CVE-2024-1394 - Resolves: RHEL-24320...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.333.5.1.el7 - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36660755 - pci: add hotplug patch support for SOLIDIGM Aura10 AIC 0x025e:0x0b60 Alan Adamson Orabug: 36836653...
libvirt security update
10.0.0-6.6.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 10.0.0-6.6.el94 - vmx: Do not require DVS Port ID RHEL-45520 - vmx: Do not require all ID data for VMWare Distributed Switch RHEL-46595 10.0.0-6.5.el94 - qemu: Fix migration with disabled vmx- CPU features RHEL-44984...
python3 security update
3.9.18-3.3 - Security fix for CVE-2024-4032 Resolves: RHEL-44106 3.9.18-3.2 - Enable importing of hash-based .pyc files under FIPS mode Resolves: RHEL-40767...
python3 security update
3.11.7-1.3 - Security fix for CVE-2024-4032 Resolves: RHEL-44097 3.11.7-1.2 - Enable importing of hash-based .pyc files under FIPS mode Resolves: RHEL-40785...