8998 matches found
qt5-qtbase security update
5.15.9-9 - Fix CVE-2024-25580: potential buffer overflow when reading KTX images Resolves: RHEL-25726 5.15.9-8 - Fix incorrect integer overflow check in HTTP2 implementation Resolves: RHEL-20239...
xorg-x11-server security update
1.20.4-24 - Fix use after free related to CVE-2024-21886 1.20.11-23 - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/browse/RHEL-21203 Resolves: https://issues.redhat.com/browse/RHEL-20531 Resolves:...
libsndfile security update
1.0.31-8 - fix integer overflows causing CVE-2022-33065 RHEL-3751...
freerdp security update
2:2.11.2-1 - Update to 2.11.2 RHEL-4290, RHEL-4292, RHEL-4296, RHEL-4298, RHEL-4300, RHEL-4302, RHEL-4304, RHEL-4306, RHEL-4308, RHEL-4310, RHEL-4312, RHEL-10060...
pmix security update
3.2.3-5 - Add pmixtest - Resolves: RHEL-3693 3.2.3-4 - Fix CVE-2023-41915 - Resolves: RHEL-3693...
exfatprogs security update
1.2.2-2 - Backport fixes for issues found by OpenScanHub - Related: RHEL-7945 1.2.2-1 - Rebase to upstream v1.2.2 - Related: RHEL-15865 - Related: RHEL-14995...
motif security update
2.3.4-28 - Fix CVE-2023-43788: out of bounds read in XpmCreateXpmImageFromBuffer - Fix CVE-2023-43789: out of bounds read on XPM with corrupted colormap...
mutt security update
5:2.2.6-2 - Fix for: CVE-2023-4874 CVE-2023-4875 - Resolves: RHEL-2812...
gstreamer1-plugins-base security update
1.22.1-2 - CVE-2023-37328: heap overwrite in subtitle parsing - Resolves: RHEL-19475...
gstreamer1-plugins-good security update
1.22.1-2 - CVE-2023-37327: integer overflow leading to heap overwrite in FLAC image tag handling - Resolves: RHEL-19471...
wpa_supplicant security update
1:2.10-5 - Support macsec HW offload. Resolves: RHEL-22440 - Backport fix for PEAP client CVE-2023-52160...
webkit2gtk3 security update
2.42.5-1 - Update to 2.42.5 Resolves: RHEL-3960 2.42.4-1 - Update to 2.42.4 Resolves: RHEL-3960 Resolves: RHEL-19366 2.42.3-1 - Update to 2.42.3 Resolves: RHEL-3960 2.42.2-1 - Update to 2.42.2 Resolves: RHEL-3960 2.42.1-1 - Update to 2.42.1 Resolves: RHEL-3960 2.42.0-1 - Upgrade to 2.42.0 Resolve...
harfbuzz security update
2.7.4-10 - Resolves:RHEL-2268 Fix CI tests results 2.7.4-9 - Resolves:RHEL-2268 CVE-2023-25193...
grub2 security update
2.02-0.87.0.26.el7.14 - Replace bugzilla.oracle.com reference Orabug: 35477723 - Backport kernel EFI allocation pacthes Orabug: 34301086 - Add to the list CVE-2021-3695, CVE-2021-3696, CVE-2021-3697, CVE-2022-28734, CVE-2022-28735, CVE-2022-28736 JIRA: OLDIS-16371 - bump SBAT generation JIRA:...
shim security update
shim - 15.8-2.0.3.el7 - Set shim.ol sbat generation to 3 Orabug: 36271343 - 15.8-2.0.1.el7 - Set SBATAUTOMATICDATE to 2021030218 Orabug: 36271343 - Rebuild with Oracle certificates Orabug: 36271343 - Full list of fixed CVEs: CVE-2023-40546, CVE-2023-40547, CVE-2023-40548, CVE-2023-40549,...
tigervnc security update
1.8.0-33.0.1 - Dropped xorg-CVE-2023-5367.patch, xorg-CVE-2023-6816.patch, xorg-CVE-2023-6377.patch, xorg-CVE-2023-6478.patch, xorg-CVE-2024-0229-1.patch, xorg-CVE-2024-0229-2.patch, xorg-CVE-2024-0229-3.patch, xorg-CVE-2024-21885.patch, xorg-CVE-2024-21886-1.patch, xorg-CVE-2024-21886-2.patch,...
container-tools:4.0 security update
buildah 1.24.7-1 - bump to v1.24.7 - Resolves: RHEL-26767 cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman python-podman runc 1.1.12-1.0.1 - rebuild with golang 1.20.12 for CVE-2023-39326 skopeo...
container-tools:ol8 security and bug fix update
aardvark-dns buildah 1:1.31.5-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.31 https://github.com/containers/buildah/commit/5fd539c - Resolves: RHEL-26772 1:1.31.3-3 - Make the module buildable again - Resolves: RHEL-16299 1:1.31.3-2 - Rebuild with golan...
cri-o security update
cri-o 1.26.4-2 - Address CVE-2024-24786 cri-tools 1.26.1-5 - Address CVE-2024-24786 etcd 3.5.10-3 - Address protobuf CVE-2024-24786 3.5.10-1 - Added Oracle specific build files istio 1.17.8-3 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323,...
cri-o security update
cri-o 1.26.4-2 - Address CVE-2024-24786 cri-tools 1.26.1-5 - Address CVE-2024-24786 etcd 3.5.10-3 - Address protobuf CVE-2024-24786 3.5.10-1 - Added Oracle specific build files istio 1.17.8-3 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address CVE-2024-23322, CVE-2024-23323,...
buildah security update
1.31.5-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 1:1.31.5-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.31 https://github.com/containers/buildah/commit/5fd539c - Resolves: RHEL-26775...
shim security update
15.8-4.0.1 - Add support for Oracle signed shim Orabug: 36540084 - Add shim binaries signed with Oracle Secure Boot Signing key 1 Orabug: 36540084 15.8-1.0.3 - Update shimx64.efi, shimia32.efi and shimaa64.efi v15.8 signed by Microsoft Orabug: 36072863 15.8-1.0.2 - Use binaries with correct shim....
tigervnc security update
1.13.1-2.10 - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30981 1.13.1-2.9 - Rebuild z-stream target Resolves: RHEL-31011 Resolves: RHEL-30981 Resolves: RHEL-30998 1.13.1-2.8 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL8 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
libreswan security and bug fix update
4.12-1.0.1.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-1.1 - Fix CVE-2024-2357 RHEL-29734 - x509: unpack IPv6 general names based on length RHEL-32719 4.12-1 - Update to 4.12 to fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712 - Resolves: rhbz2215956 4.9-5 - Just bumping u...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL8 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
go-toolset:ol8 security update
delve golang 1.20.12-8 - Update sources file - Related: RHEL-27928 1.20.12-7 - Fix CVE-2024-1394 - Resolves: RHEL-27928 1.20.12-6 - Fix CVE-2023-45288 - Resolves: RHEL-31914 go-toolset...
kernel security and bug fix update
3.10.0-1160.118.1.0.1 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.118.1 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 -...
java-11-openjdk security update
1:11.0.23.0.9-3.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:11.0.23.0.9-2 - Fix 11.0.22 release date in NEWS 1:11.0.23.0.9-1 - Update to jdk-11.0.23+9 GA - Update release notes to 11.0.23+9 - Switch to GA mode for release - Require tzdata 2024a due to upstream inclusion of JDK-8322725 - On...
java-1.8.0-openjdk security update
1:1.8.0.412.b08-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155...
owO: thunderbird security update
115.10.0-2.0.1 - Add Oracle prefs - Add OpenELA debranding 115.10.0-2 - Update to 115.10.0 build2 115.10.0-1 - Update to 115.10.0 build1 - Revert expat CVE-2023-52425 fix...
libreswan security update
4.12-2.0.1.2 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-2.2 - Fix patch application in the previous change 4.12-2.1 - Fix CVE-2024-2357 RHEL-28742...
java-21-openjdk security update
1:21.0.3.0.9-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.3.0.9-1 - Update to jdk-21.0.3+9 GA - Update release notes to 21.0.3+9 - Switch to GA mode. - Sync the copy of the portable specfile with the latest update - This tarball is embargoed until 2024-04-16 @ 1pm PT. - Resolves:...
golang security update
1.20.12-4 - Rebuild for z-stream - Related: RHEL-28939 1.20.12-3 - Fix CVE-2023-45288 - Resolves: RHEL-28939 - Temporarily disable FIPS tests RHELBLD-14822...
kernel security update
2.6.32-754.53.1.OL6 - net/sched: schqfq: refactor parsing of netlink parameters Orabug: 36517546 - net/sched: schqfq: account for stab overhead in qfqenqueue CVE-2023-3611 Orabug: 36517546 - net/sched: clsfw: Fix improper refcount update leads to use-after-free CVE-2023-3776 Orabug: 36517546 - ne...
java-11-openjdk security update
1:11.0.23.0.9-2.0.1 - link atomic for ix86 build 1:11.0.23.0.9-2 - Fix 11.0.22 release date in NEWS - Restore ppc64le --with-jobs=1 workaround to avoid flaky ppc builds 1:11.0.23.0.9-1 - Update to jdk-11.0.23+9 GA - Update release notes to 11.0.23+9 - Switch to GA mode for release - Require tzdat...
thunderbird security update
115.10.0-2.0.1 - Add Oracle prefs 115.10.0 - Add OpenELA debranding 115.10.0-2 - Update to 115.10.0 build2 115.10.0-1 - Update to 115.10.0 build1 - Revert expat CVE-2023-52425 fix...
shim bug fix update
15.8-1.0.3 - Update shimx64.efi and shimaa64.efi v15.8 signed by Microsoft Orabug: 36072879 - Update shim fb and mm binaries to match unsigned releases Orabug: 36072879 15.8-1.0.2 - Use binaries with correct shim.ol generation Orabug: 36072879 - Set SBATAUTOMATICDATE=2021030218 Orabug: 36072879...
java-17-openjdk security update
17.0.11.0.9-2.0.1 - Add Oracle vendor bug URL 1:17.0.11.0.9-2 - Update to jdk-17.0.11+9 GA - Add openjdk-17.0.11+9.tar.xz to .gitignore - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Update buildver from 7 to 9 - Update portablerelease from 1 to 3 - Change isga from 0 to ...
thunderbird security update
115.10.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.10.0-2 - Update to 115.10.0 build2 115.10.0-1 - Update to 115.10.0 build1 - Revert expat CVE-2023-52425 fix...
firefox security update
115.10.0-1.0.1 - Change default prefs file to Oracle version 115.10.0-1 - Update to 115.10.0 build1...
firefox security update
115.10.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.10.0-1 - Update to 115.10.0 build1...
gnutls security update
3.7.6-23.4fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35925409 - Update FIPS module name for Oracle Linux Orabug: 35925409 - Verify salt length and iteration count for PBKDF Orabug: 35925409 3.7.6-23.4 - Fix timing side-channel in deterministic ECDSA...
nss security update
3.90.0-6fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35862190 - Update FIPS module name for Oracle Linux Orabug: 35862190 3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - Mo...
gnutls security update
3.7.6-23.4 - Fix timing side-channel in deterministic ECDSA RHEL-28958 - Fix potential crash during chain building/verification RHEL-28953...
firefox security update
115.10.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.10.0-1 - Update to 115.10.0 build1...
mod_http2 security update
1.15.19-5.1 - Resolves: RHEL-29826 - modhttp2: httpd: CONTINUATION frames DoS CVE-2024-27316...
java-1.8.0-openjdk security update
1:1.8.0.412.b08-1 - Update to shenandoah-jdk8u412-b08 GA - Update release notes for shenandoah-8u412-b08. - Complete release note for Certainly roots - Switch to GA mode. - This tarball is embargoed until 2024-04-16 @ 1pm PT. - Related: RHEL-30926 1:1.8.0.412.b07-0.1.ea - Update to...
cri-o security update
cri-o 1.25.5-2 - Address CVE-2024-24786 cri-tools 1.25.0-4 - Address CVE-2024-24786 etcd 3.5.9-4 - Address protobuf CVE-2024-24786 3.5.9-3 - Address CVE-2023-39326 by upgrading golang to version 1.20.12 istio 1.16.7-4 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address...
cri-o security update
cri-o 1.25.5-2 - Address CVE-2024-24786 cri-tools 1.25.0-4 - Address CVE-2024-24786 etcd 3.5.9-4 - Address protobuf CVE-2024-24786 3.5.9-3 - Address CVE-2023-39326 by upgrading golang to version 1.20.12 istio 1.16.7-4 - Address protobuf CVE-2024-24786 - Backport from 1.19.7 to address...