8998 matches found
runc security update
4:1.1.12-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.12 - Related: RHEL-2112 4:1.1.11-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.11 - Related: RHEL-2112 4:1.1.10-3 - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Related:...
gnutls security update
3.6.16-8.1fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 - Allow bigger known RSA modulus sizes when calling rsageneratefips1864keypair directly Orabug: 33200526 - Change Epoch from 1 to 10...
rpm security update
4.14.3-28.0.2 - Import additional patches to fix regressions with CVE-2021-35937, CVE-2021-35938 and CVE-2021-35939 patchset Orabug: 36256318 4.14.3-28.0.1 - Fixed infinte loop for dbcreate with error check Orabug: 36202920 4.14.3-28 - Backport file handling code from rpm-4.19 to fix...
gnutls security update
3.6.16-8.1 - auth/rsa-psk: minimize branching after decryption RHEL-21550...
tigervnc security update
1.8.0-31.0.1 - Dropped xorg-CVE-2023-5367.patch, xorg-CVE-2023-6816.patch, xorg-CVE-2023-6377.patch, xorg-CVE-2023-6478.patch, xorg-CVE-2024-0229-1.patch, xorg-CVE-2024-0229-2.patch, xorg-CVE-2024-0229-3.patch, xorg-CVE-2024-21885.patch, xorg-CVE-2024-21886-1.patch, xorg-CVE-2024-21886-2.patch,...
openssh security update
8.0p1-19.2 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 - Fix Terrapin attack Resolves: CVE-2023-48795...
Unbreakable Enterprise kernel security update
4.1.12-124.82.2 - Bluetooth: Reject connection with the device which has same BDADDR Lee, Chun-Yi Orabug: 35959598 CVE-2020-26555 - sched/rt: picknextrtentity: check listentry Pietro Borrello Orabug: 35181560 CVE-2023-1077 - sched/debug: Fix SCHEDWARNON to return a value on !CONFIGSCHEDDEBUG as...
libssh security update
0.9.6-13 - Client and Server side mitigations CVE-2023-48795 - Strip extensions from both kex lists for matching CVE-2023-48795 - tests: Adjust calculation to strict kex CVE-2023-48795...
tigervnc security update
1.13.1-2.7 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20388 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent Resolves: RHEL-20382 - Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching ...
thunderbird security update
115.7.0-1.0.1 - Update to 115.7.0 build1...
firefox security update
115.7.0.1.0.1 - Update to 115.7.0 build 1...
thunderbird security update
115.7.0-1.0.1 - Update to 115.7.0 build1...
tigervnc security update
1.13.1-3.6 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20389 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent Resolves: RHEL-20383 - Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching ...
firefox security update
115.7.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.7.0-1 - Update to 115.7.0 build1...
thunderbird security update
115.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.7.0-1 - Update to 115.7.0 build1 115.6.0-1 - Update to 115.6.0 build2...
firefox security update
115.7.0.1.0.1 - Update to 115.7.0 build 1...
gnutls security update
3.7.6-23.3 - Fixes for CVE-2023-5981, CVE-2024-0553, CVE-2024-0567...
tomcat security update
1:9.0.62-27.3 - tomcat: HTTP request smuggling via malformed trailer headers CVE-2023-46589...
frr security update
8.3.1-11.2 - Add patches for CVE-2023-47235, CVE-2023-47234, CVE-2023-38406, CVE-2023-38407...
kernel security update
5.14.0-362.18.0.13.OL9 - nfp: fix use-after-free in areacacheget Jialiang Wang CVE-2022-3545 - drivers: net: slip: fix NPD bug in sltxtimeout Duoming Zhou CVE-2022-41858 - can: afcan: fix NULL pointer dereference in canrcvfilter Oliver Hartkopp CVE-2023-2166 - RDMA/core: Fix resolvepreparesrc...
php:8.1 security update
php 8.1.27-1 - rebase to 8.1.27 RHEL-19093 8.1.14-1 - rebase to 8.1.14 8.1.8-1 - update to 8.1.8 2070040 8.1.7-2 - clean unneeded dependency on useradd command 8.1.7-1 - update to 8.1.7 2070040 8.1.6-2 - add upstream patch to initialize pcre before mbstring - add upstream patch to use more sha256...
python3.9 security update
3.9.18-1.1 - Security fix for CVE-2023-27043 Resolves: RHEL-20613...
rpm security update
4.16.1.3-27 - TOCTOU race in checks for unsafe symlinks CVE-2021-35937 - races with chown/chmod/capabilities calls during installation CVE-2021-35938 - checks for unsafe symlinks are not performed for intermediary directories CVE-2021-35939...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
sqlite security update
3.34.1-7 - Fixes CVE-2023-7104...
python-urllib3 security update
1.26.5-3.0.1.1 - Security fix for CVE-2023-45803 Resolves: RHEL-16874 - Security fix for CVE-2023-43804 Resolves: RHEL-12001...
tomcat security update
1:9.0.62-37.el93.1 - Resolves: 2235370 CVE-2023-41080 tomcat: Open Redirect vulnerability in FORM authentication - Resolves: 2243749 CVE-2023-45648 tomcat: incorrectly parsed http trailer headers can cause request smuggling - Resolves: 2243751 CVE-2023-42794 tomcat: FileUpload: DoS due to...
grub2 security update
2.06-70.0.2.2 - search command: add flag to only search root dev - Resolves: CVE-2023-4001...
java-11-openjdk security update
1:11.0.22.0.7-2.0.1 - Update to openjdk-11.0.22+7...
LibRaw security update
0.19.4-2 - Fix CVE-2021-32142 - Resolves: RHEL-9524...
python-pillow security update
2.0.0-24gitd1c6db8 - Security fix for CVE-2023-44271 Resolves: RHEL-15459...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.402.b06-0.2.0.1 - Update to shenandoah-jdk8u402-b06 GA - Update release notes for shenandoah-8u402-b06. - Add Oracle vendor bug URL Orabug: 34340155...
xorg-x11-server security update
1.20.4-27 - Fix use after free related to CVE-2024-21886 1.20.4-26 - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/browse/RHEL-21205 Resolves: https://issues.redhat.com/browse/RHEL-20578 Resolves:...
java-17-openjdk security and bug fix update
1:17.0.10.0.7-2.0.1 - Rebase to 17.0.10.0.7...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
java-21-openjdk security update
1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...
java-21-openjdk security update
1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...
python3.11-cryptography security update
37.0.2-5.0.1 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates Orabug: 36143834...
python-cryptography security update
36.0.1-4.0.1 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates Orabug: 36119159 36.0.1-4 - Fix FTBFS caused by rsapkcs1implicitrejection OpenSSL feature, resolves rhbz2203840 36.0.1-3 - Fix CVE-2023-23931: Don't allow updateinto to mutate immutable objects, resolves rhbz21723...
gstreamer-plugins-bad-free security update
0.10.23-24 - Patch CVE-2023-44446: MXF demuxer use-after-free - Disable gtk-doc to fix the build - Resolves: RHEL-16792...
java-11-openjdk security update
1:11.0.22.0.7-1.0.1 - link atomic for ix86 build 1:11.0.22.0.7-1 - Update to jdk-11.0.22+7 GA - Update release notes to 11.0.22+7 - Switch to GA mode for release - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-20966 1:11.0.22.0.6-0.1.ea - Update to jdk-11.0.22+6 EA - Updat...
.NET 7.0 security update
7.0.115-1.0.1 - Add support for Oracle Linux - Update to .NET SDK 7.0.115 and Runtime 7.0.15...
.NET 8.0 security update
8.0.101-1.0.1 - Update to .NET SDK 8.0.101 and Runtime 8.0.1...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.402.b06-0.1.ea - Update to shenandoah-jdk8u402-b06 GA - Update release notes for shenandoah-8u402-b06. - Drop local copy of JDK-8312489 which is now included upstream - Switch to GA mode. - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-17914 - Resolves: RHEL-20965...
sqlite security update
3.26.0-19.0.1 - Fixed CVE-2023-7104...
.NET 6.0 security update
6.0.126-1.0.1 - Add support for Oracle Linux 6.0.126-1 - Update to .NET SDK 6.0.126 and Runtime 6.0.26...
.NET 7.0 security update
7.0.115-1.0.1 - Update to .NET SDK 7.0.115 and Runtime 7.0.15 7.0.114-1.0.1 - Update to .NET SDK 7.0.114 and Runtime 7.0.14...
python3 security update
3.6.8-56.0.1.3 - Security fix for CVE-2023-27043 Resolves: rhbz2196183...
idm:DL1 security update
bind-dyndb-ldap custodia ipa 4.9.12-11.0.1 - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy 0.4-5 - Always buffer TCP data in handlerecv - Resolves: 1747144 0.4-4 - Correct addrs sorting to be by TCP/UDP - Resolves: 1732898...
frr security update
7.5.1-13.3 - Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgpflowspec.c - Resolves: RHEL-15919 - Out of bounds read in bgpd/bgplabel.c - Resolves: RHEL-15869 - crash from specially crafted MPUNREACHNLRI-containing BGP UPDATE message - Resolves: RHEL-15868 - crash from malformed EOR-containing...