8998 matches found
systemd security update
239-82.0.1 - Fixed deletion issue for symlink when device is opened Orabug: 36228608 - Fix local-fs and remote-fs targets during system boot replaces old Orabug: 25897792 Orabug: 35871376 - 1A Add 'systemd-fstab-generator-reload-targets.service' file Orabug: 35871376 - 1B Add required rpms for...
python-jinja2 security update
2.10.1-4 - Security fix for CVE-2024-22195 Resolves: RHEL-21347 2.10.1-3 - Fix CVE-2020-28493: ReDOS vulnerability due to the sub-pattern Resolves: rhbz1928707 2.10.1-2 - Rebuild of package to go through gating - Resolves: rhbz1701301 2.10.1-1 - Rebase to 2.10.1 security update to fix...
tomcat security and bug fix update
1:9.0.87-1.el94.1 - Resolves: RHEL-34815 - Rebase tomcat to version 9.0.87 - Resolves: RHEL-31048 tomcat: Apache Tomcat: WebSocket DoS with incomplete closing handshake CVE-2024-23672 - Resolves: RHEL-31032 tomcat: : Apache Tomcat: HTTP/2 header handling DoS CVE-2024-24549 - Resolves: RHEL-35328 ...
frr security update
7.5.1-22.0.1 - Fix POSTIN scriptlet Orabug: 34712485 - Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgpflowspec.c - Resolves: RHEL-15919 - Out of bounds read in bgpd/bgplabel.c - Resolves: RHEL-15869 - crash from specially crafted MPUNREACHNLRI-containing BGP UPDATE message - Resolves:...
mutt security update
5:2.0.7-3 - Fix for: CVE-2023-4874 CVE-2023-4875 - Resolves: RHEL-2811...
openssh security update
8.0p1-24.0.1 - Update upstream references Orabug: 36587718 8.0p1-24 - Providing a kill switch for scp to deal with CVE-2020-15778 Resolves: RHEL-22870 8.0p1-23 - Fix Terrapin attack Resolves: RHEL-19308 8.0p1-22 - Fix Terrapin attack Resolves: RHEL-19308 - Forbid shell metasymbols in...
tigervnc security update
1.13.1-8 - Fix copy/paste error in the DeviceStateNotify Resolves: RHEL-20530 1.13.1-7 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20388 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent...
edk2 security update
20220126gitbb1bba3d77-13 - edk2-EmbeddedPkg-Hob-Integer-Overflow-in-CreateHob.patch RHEL-21158 - edk2-StandaloneMmPkg-Hob-Integer-Overflow-in-CreateHob.patch RHEL-21158 - Resolves: RHEL-21158 CVE-2022-36765 edk2: integer overflow in CreateHob could lead to HOB OOB R/W rhel-8...
exempi security update
2.4.5-4 - Fix CVE-2020-18652 - Resolves: RHEL-5416 2.4.5-3 - Fix CVE-2020-18651 - Resolves: RHEL-5415...
ansible-core bug fix, enhancement, and security update
2.16.3-2 - rebuild with python 3.12 RHEL-24141 2.16.3-1 - ansible-core 2.16.3 release RHEL-23782 - Fix CVE-2024-0690 possible information leak in tasks that ignore ANSIBLENOLOG configuration RHEL-22123 2.16.2-1 - ansible-core 2.16.2 release RHEL-19297 2.16.1-1 - ansible-core 2.16.1 release...
python3.11-urllib3 security update
1.26.12-2 - Security fix for CVE-2023-43804 Resolves: RHEL-11996...
kernel security and bug fix update
5.14.0-427.18.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
gstreamer1-plugins-base security update
1.16.1-3.0.1 - Update origin URL Orabug: 36209826 1.16.1-3 - CVE-2023-37328 gstreamer1-plugins-base: heap overwrite in subtitle parsing - Resolves: RHEL-19472...
libtiff security update
4.0.9-31 - Fix CVE-2022-3599 CVE-2022-4645 - Resolves: RHEL-5399 4.0.9-30 - Bump specfile to retrigger gating - Add tests folder for standard beakerlib - Related: RHEL-4683 RHEL-4685 RHEL-4686 RHEL-4687 RHEL-4688...
libXpm security update
3.5.12-11 - Drop hardening patches from previous version to keep ABI compatibility 3.5.12-10 - CVE-2023-43786 libX11: stack exhaustion from infinite recursion in PutSubImage - CVE-2023-43787 libX11: integer overflow in XCreateImage leading to a heap overflow - CVE-2023-43788 libXpm: out of bounds...
nodejs security update
1:16.20.2-8.0.1 - Fix CVE-2024-28182, CVE-2024-22025, CVE-2024-25629, CVE-2024-27982, CVE-2024-27983...
thunderbird security update
115.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.11.0-1 - Update to 115.11.0 build2...
firefox security update
115.11.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.11.0-1 - Update to 115.11.0 build1...
thunderbird security update
115.11.0-1.0.1 - Add Oracle prefs 115.11.0-1 - Update to 115.11.0 build2...
firefox security update
115.11.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.11.0-1 - Update to 115.11.0 build1...
nodejs:20 security update
nodejs 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to version 20.12.0 Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 node Fixes: CVE-2024-25629 c-ares nodejs-nodemon nodejs-packaging...
Unbreakable Enterprise kernel security update
5.15.0-206.153.7 - mmc: core: Initialize mmcblkiocdata Mikko Rapeli - ahci: asm1064: asm1166: don't limit reported ports Conrad Kostecki - mmc: core: Fix switch on gp3 partition Dominique Martinet - Drivers: hv: vmbus: Calculate ring buffer size for more efficient use of memory Michael Kelley -...
.NET 7.0 security update
7.0.119-1.0.1 - Add OracleLinux support...
.NET 8.0 security update
8.0.105-1.0.1 - Add support for Oracle Linux 8.0.105-1 - Update to .NET SDK 8.0.105 and Runtime 8.0.5 - Resolves: RHEL-35317...
nodejs:18 security update
nodejs 1:18.20.2-2 - Removes .ps1 files - Rebase to 18.20.2 - Fixes: CVE-2024-27983, CVE-2024-28182, CVE-2024-27982, CVE-2024-25629 nodejs-nodemon nodejs-packaging...
Unbreakable Enterprise kernel security update
5.4.17-2136.331.7 - Revert 'tracing/trigger: Fix to return error if failed to alloc snapshot' Siddh Raman Pant - Revert 'selftests: mm: fix maphugetlb failure on 64K page size systems' Harshit Mogalapalli Orabug: 36584568 - Revert 'net/mlx5: Enable SW-defined RoCEv2 UDP source port' Arumugam...
Unbreakable Enterprise kernel security update
4.14.35-2047.536.5 - mmc: core: Fix switch on gp3 partition Dominique Martinet - Revert 'Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d'' Song Liu - mm/memory-failure: fix an incorrect use of tail pages Liu Shixin - Revert 'x86/mm/identmap: Use gbpages only where full GB page should be...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.331.7.el7 - Revert 'tracing/trigger: Fix to return error if failed to alloc snapshot' Siddh Raman Pant - Revert 'selftests: mm: fix maphugetlb failure on 64K page size systems' Harshit Mogalapalli Orabug: 36584568 - Revert 'net/mlx5: Enable SW-defined RoCEv2 UDP source port' Arumugam...
nodejs:18 security update
nodejs 1:18.20.2-1 - Removes .ps1 files - Rebase to 18.20.2 - Fixes: CVE-2024-27983, CVE-2024-28182, CVE-2024-27982, CVE-2024-25629 nodejs-nodemon nodejs-packaging...
nodejs:20 security update
nodejs 1:20.12.2-2 - Backport nghttp2 patch for CVE-2024-28182 1:20.12.2-1 - Rebase to version 20.12.0 Fixes: CVE-2024-27983 CVE-2024-27982 CVE-2024-22025 node Fixes: CVE-2024-25629 c-ares nodejs-nodemon nodejs-packaging...
git-lfs security update
3.2.0-3 - Rebuild with new Golang - Resolves: RHEL-32542...
glibc security update
2.28-236.0.1.13 - Forward port of Oracle patches. Reviewed-by: Jose E. Marchesi...
gnutls security update
3.8.3-4fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35925409 - Update FIPS module name for Oracle Linux Orabug: 35925409 3.8.3-4 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-3 - Bump release to ensure el9 package is greater than...
pcp security, bug fix, and enhancement update
6.2.0-2.0.1 - Fixed libpcp derived metric issue for ol9 Orabug: 36538820 6.2.0-2 - Disable RESP proxying by default in pmproxy RHEL-30719...
kernel security and bug fix update
5.14.0-427.16.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
sssd security and bug fix update
2.9.4-6.0.1 - Restore default debug level for ssscache Orabug: 32810448 2.9.4-6 - Resolves: RHEL-27209 - Race condition during authorization leads to GPO policies functioning inconsistently rhel-9.4.0 2.9.4-5 - Resolves: RHEL-28161 - Passkey cannot fall back to password 2.9.4-4 - Resolves:...
tigervnc security update
1.13.1-8.3 - Rebuild z-stream target Resolves: RHEL-30985 Resolves: RHEL-31015 1.13.1-8.2 - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30985 1.13.1-8.1 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents Resolves: RHEL-31015 ...
grafana security update
9.2.10-16 - Check OrdID is correct before deleting snapshot - fix CVE-2024-1313 - fix CVE-2024-1394...
podman security and bug fix update
4.9.4-3.0.1 - Add devices on container startup, not on creation - Backport fast gzip for compression Orabug: 36420418 - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 4:4.9.4-3 - rebuild - Related:...
python-jwcrypto security update
0.8-5 - Address potential DoS with high compression ratio Resolves: RHEL-28698...
bind security update
bind 9.16.23-18.0.1 - Fix warning when changing device file permissions Orabug: 36518580 32:9.16.23-18.1 - Rebuild with correct z-stream tag again 32:9.16.23-18 - Prevent crashing at masterformat system test CVE-2023-6516 32:9.16.23-17 - Import tests for large DNS messages fix - Add downstream...
golang security update
1.21.9-2 - Rebuilt for z-stream - Related: RHEL-24312 - Related: RHEL-28940 1.21.9-1 - Fix CVE-2024-1394 - Fix CVE-2023-45288 - Resolves RHEL-24312 - Resolves RHEL-28940...
gnutls security update
3.8.3-4 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-3 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-2 - Fix timing side-channel in deterministic ECDSA RHEL-28959 - Fix potential crash during chain building/verification RHEL-28954...
buildah bug fix update
1.33.7-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.33.7-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/b95e962 - Resolves: RHEL-28230...
libxml2 security update
2.9.13-6 - Fix CVE-2024-25062 RHEL-29196...
grafana-pcp security update
5.1.1-2 - fix CVE-2024-1394...
libvirt security and bug fix update
10.0.0-6.2.0.1 - Set SOURCEDATEEPOCH from changelog Orabug: 32019554 10.0.0-6.2.el94 - qemu: Fix migration with custom XML RHEL-32654 10.0.0-6.1.el94 - Fix off-by-one error in udevListInterfacesByStatus CVE-2024-1441, RHEL-25081 - remote: check for negative array lengths before allocation...
libreswan security update
4.12-2.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-2 - Fix CVE-2024-2357 RHEL-32761 - x509: unpack IPv6 general names based on length RHEL-32718...
Unbreakable Enterprise kernel security update
4.1.12-124.85.1 - Bluetooth: btsdio: fix use after free bug in btsdioremove due to race condition Zheng Wang Orabug: 35282809 CVE-2023-1989...
git-lfs security update
3.4.1-2 - Rebuild with new Golang - Resolves: RHEL-32570, RHEL-28385, RHEL-28402, RHEL-28432...