9185 matches found
podman security update
2:4.9.4-0.1.0.1 - Add devices on container startup, not on creation - Backport fast gzip for compression Orabug: 36420418 - overlay: Put should ignore ENINVAL for Unmount Orabug: 36234694 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.9.4-0.1 - update to the...
edk2 security update
20231122-6.0.1 - Replace upstream references Orabug:36569119 20231122-6 - edk2-NetworkPkg-Dhcp6Dxe-SECURITY-PATCH-CVE-2023-45230-Pa.patch RHEL-21841 RHEL-21843 RHEL-21845 RHEL-21847 RHEL-21849 RHEL-21851 RHEL-21853 - edk2-NetworkPkg-Add-Unit-tests-to-CI-and-create-Host-Test.patch RHEL-21841...
openssl and openssl-fips-provider security update
openssl 1:3.0.7-27.0.3 - Enable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.2 - Temporary disable openssl-fips-provider dependency Orabug: 36504822 1:3.0.7-27.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-27 - Use certified FIPS module instead of freshly built one ...
grub2 security update
2.06-77.0.1 - Support setting custom kernels as default kernels Orabug: 36043978 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix CVE-2022-3775 Orabug: 34871953 - Enable signing for aarch64 EFI - Fix signing certificate names - Enable back btrfs grub module for EFI pre-built image Orabug...
freerdp security update
2:2.11.2-1 - Update to 2.11.2 RHEL-4290, RHEL-4292, RHEL-4296, RHEL-4298, RHEL-4300, RHEL-4302, RHEL-4304, RHEL-4306, RHEL-4308, RHEL-4310, RHEL-4312, RHEL-10060...
tcpdump security update
14:4.99.0-9 - Resolves: RHEL-21558 - tcpslice: use-after-free in extractslice 14:4.99.0-8 - Resolves: RHEL-10714 - Fix PGM option printing...
zziplib security update
0.13.71-11 - Fix CVE-2020-18770 Previous patch was causing segfault Resolves: RHEL-14967 0.13.71-10 - Fix CVE-2020-18770 Resolves: RHEL-14967...
qt5-qtbase security update
5.15.9-9 - Fix CVE-2024-25580: potential buffer overflow when reading KTX images Resolves: RHEL-25726 5.15.9-8 - Fix incorrect integer overflow check in HTTP2 implementation Resolves: RHEL-20239...
gstreamer1-plugins-good security update
1.22.1-2 - CVE-2023-37327: integer overflow leading to heap overwrite in FLAC image tag handling - Resolves: RHEL-19471...
exfatprogs security update
1.2.2-2 - Backport fixes for issues found by OpenScanHub - Related: RHEL-7945 1.2.2-1 - Rebase to upstream v1.2.2 - Related: RHEL-15865 - Related: RHEL-14995...
runc security update
4:1.1.12-2 - Switch dependency on criu to Recommends - Resolves: RHEL-25116...
gstreamer1-plugins-bad-free security update
1.22.1-4 - CVE-2023-40474: Integer overflow leading to heap overwrite in MXF - CVE-2023-40475: Integer overflow leading to heap overwrite in MXF - CVE-2023-40476: Integer overflow in H.265 video parser - ZDI-CAN-22300: buffer overflow vulnerability - Resolves: RHEL-19501, RHEL-19505, RHEL-19506,...
containernetworking-plugins security update
1:1.4.0-2 - rebuild - Related: RHEL-18372 1:1.4.0-1 - update to https://github.com/containernetworking/plugins/releases/tag/v1.4.0 - Related: RHEL-2112 1:1.3.0-5 - fix path to dhcp service - Resolves: RHEL-3140 1:1.3.0-4 - add Epoch in Provides - Related: 2176063 1:1.3.0-3 - remove noopenssl for...
squashfs-tools security update
4.4-10.git1 - CVE-2021-41072 squashfs-tools: additional write outside destination directory exploit fix CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing outside of destination rhbz2007304 RHEL-7763 4.4-9.git1 - CVE-2021-40153 squashfs-tools: unvalidated filepaths allow writing...
libX11 security update
1.7.0-9 - Fix CVE-2023-43785: out-of-bounds memory access in XkbReadKeySyms - Fix CVE-2023-43786: stack exhaustion from infinite recursion in PutSubImage - Fix CVE-2023-43787: integer overflow in XCreateImage leading to a heap overflow...
file security update
5.39-16 - Fix stack-based buffer over-read in filecopystr CVE-2022-48554 5.39-15 - Fix segfault in python3-file-magic concurrent method calls...
libjpeg-turbo security update
2.0.90.7 - Fix CVE-2021-29390 - Resolves: RHEL-5413...
freeglut security update
3.2.1-10 - Fix CVE-2024-24258 and CVE-2024-24259 Resolves: https://issues.redhat.com/browse/RHEL-25176 Resolves: https://issues.redhat.com/browse/RHEL-25178...
mutt security update
5:2.2.6-2 - Fix for: CVE-2023-4874 CVE-2023-4875 - Resolves: RHEL-2812...
perl security update
4:5.32.1-481 - Fixes: CVE-2023-47038...
harfbuzz security update
2.7.4-10 - Resolves:RHEL-2268 Fix CI tests results 2.7.4-9 - Resolves:RHEL-2268 CVE-2023-25193...
ansible-core bug fix, enhancement, and security update
1:2.14.14-1 - ansible-core 2.14.14 release RHEL-23783 - Fix CVE-2024-0690 possible information leak in tasks that ignore ANSIBLENOLOG configuration RHEL-22124 1:2.14.13-1 - ansible-core 2.14.13 release RHEL-19298 1:2.14.12-1 - ansible-core 2.14.12 release RHEL-18950...
skopeo security update
2:1.14.3-0.1 - update to the latest content of https://github.com/containers/skopeo/tree/release-1.14 https://github.com/containers/skopeo/commit/1c2ab99 - Related: RHEL-2112 2:1.14.1-2 - Switch to the maint branch - Related: Jira:RHEL-2112 2:1.14.1-1 - update to...
libsndfile security update
1.0.31-8 - fix integer overflows causing CVE-2022-33065 RHEL-3751...
LibRaw security update
0.21.1-1 - 0.21.1 - Include the fix for CVE-2023-1729 from Fedora Resolves: RHEL-768...
frr security update
8.5.3-4 - Resolves: RHEL-14825 - crafted BGP UPDATE message leading to a crash 8.5.3-3 - Resolves: RHEL-14822 - mishandled malformed data leading to a crash 8.5.3-2 - Resolves: RHEL-15915 - crash from specially crafted MPUNREACHNLRI-containing BGP UPDATE message - Resolves: RHEL-15918 - crash fro...
libnbd security update
1.18.1-3 - Backport unit test of recent libnbd API addition resolves: RHEL-16292 1.18.1-2 - Fix assertion in ext-mode BLOCKSTATUS CVE-2023-5871 resolves: RHEL-15143 1.18.1-1 - Rebase to 1.18.1 resolves: RHEL-14476...
mod_jk and mod_proxy_cluster security update
modjk 1.2.49-1 - Related: RHEL-27511 - Rebase to upstream 1.2.49 release modproxycluster 1.3.20-1 - Rebase modcluster to upstream 1.3.20.Final tag - Related: RHEL-27497 - Rebase to upstream 1.3.20.Final release...
python3.11-cryptography security update
37.0.2-6 - Security fix for CVE-2023-49083 - Resolves: RHEL-19832...
mingw components security update
mingw-binutils 2.41-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora40MassRebuild 2.41-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora40MassRebuild 2.41-1 - Update to 2.41 2.40-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora39MassRebuild mingw-crt Thu Jan 25 2024 Fedora Release...
gstreamer1-plugins-base security update
1.22.1-2 - CVE-2023-37328: heap overwrite in subtitle parsing - Resolves: RHEL-19475...
kernel security, bug fix, and enhancement update
5.14.0-427.13.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
xorg-x11-server security update
1.20.4-24 - Fix use after free related to CVE-2024-21886 1.20.11-23 - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/browse/RHEL-21203 Resolves: https://issues.redhat.com/browse/RHEL-20531 Resolves:...
xorg-x11-server-Xwayland security update
21.1.9-5 Fix for CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408, CVE-2024-0409 21.1.9-4 - Fix for CVE-2023-6377, CVE-2023-6478 22.1.9-3 - Fix for CVE-2023-5367...
pcs security update
0.11.7-2 - Fixed CVE-2024-25126, CVE-2024-26141, CVE-2024-26146 in bundled dependency rack Resolves: RHEL-26446, RHEL-26448, RHEL-26450 0.11.7-1 - Rebased to the latest sources see CHANGELOG.md Resolves: RHEL-7740 0.11.6-6 - Rebased to the latest upstream sources see CHANGELOG.md Resolves:...
pmix security update
3.2.3-5 - Add pmixtest - Resolves: RHEL-3693 3.2.3-4 - Fix CVE-2023-41915 - Resolves: RHEL-3693...
qemu-kvm security update
8.2.0-11 - kvm-coroutine-cap-per-thread-local-pool-size.patch RHEL-28947 - kvm-coroutine-reserve-5-000-mappings.patch RHEL-28947 - Resolves: RHEL-28947 Qemu crashing with 'failed to set up stack guard page: Cannot allocate memory' 8.2.0-10 -...
libtiff security update
4.4.0-12 - Fix CVE-2023-6228 - Resolves: RHEL-10084 4.4.0-11 - Fix CVE-2023-40090 CVE-2023-3618 CVE-2023-40745 CVE-2023-41175 - Resolves: RHEL-5458 RHEL-5455 RHEL-5405 RHEL-5450...
wpa_supplicant security update
1:2.10-5 - Support macsec HW offload. Resolves: RHEL-22440 - Backport fix for PEAP client CVE-2023-52160...
python3.11-urllib3 security update
1.26.12-2 - Security fix for CVE-2023-43804 Resolves: RHEL-12003...
fence-agents security and bug fix update
4.10.0-62 - bundled urllib3: fix CVE-2023-45803 Resolves: RHEL-18139 - bundled pycryptodome: fix CVE-2023-52323 Resolves: RHEL-20917 - bundled jinja2: fix CVE-2024-22195 Resolves: RHEL-21345 4.10.0-61 - fencezvmip: document required user permissions in metadata/manpage Resolves: RHEL-14344...
traceroute security update
3:2.1.0-18 - add gating.yaml 3:2.1.0-17 - fix improper command line parsing CVE-2023-46316...
tigervnc security update
1.13.1-8 - Fix copy/paste error in the DeviceStateNotify Resolves: RHEL-20533 1.13.1-7 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20389 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent...
libssh security update
0.10.4-13 - Bump up the version so that the version in 9.3 is lower. - Resolves: RHEL-19310, RHEL-19691, RHEL-17245...
mod_http2 security update
2.0.26-1 - Resolves: RHEL-14691 - modhttp2 rebase to 2.0.26...
python-jinja2 security update
2.11.3-5 - Security fix for CVE-2024-22195 Resolves: RHEL-21349...
libXpm security update
3.5.13-10 - Drop hardening patches from previous version to keep ABI compatibility 3.5.13-9 - CVE-2023-43786 libX11: stack exhaustion from infinite recursion in PutSubImage - CVE-2023-43787 libX11: integer overflow in XCreateImage leading to a heap overflow - CVE-2023-43788 libXpm: out of bounds...
webkit2gtk3 security update
2.42.5-1 - Update to 2.42.5 Resolves: RHEL-3960 2.42.4-1 - Update to 2.42.4 Resolves: RHEL-3960 Resolves: RHEL-19366 2.42.3-1 - Update to 2.42.3 Resolves: RHEL-3960 2.42.2-1 - Update to 2.42.2 Resolves: RHEL-3960 2.42.1-1 - Update to 2.42.1 Resolves: RHEL-3960 2.42.0-1 - Upgrade to 2.42.0 Resolve...
python3.11 security update
3.11.7-1 - Rebase to 3.11.7 Resolves: RHEL-20233 3.11.5-2 - Security fix for CVE-2023-27043 Resolves: RHEL-21325...
motif security update
2.3.4-28 - Fix CVE-2023-43788: out of bounds read in XpmCreateXpmImageFromBuffer - Fix CVE-2023-43789: out of bounds read on XPM with corrupted colormap...