8998 matches found
kernel security update
5.14.0-362.13.0.13.OL9 - cifs: Fix UAF in cifsdemultiplexthread Zhang Xiaoxu Steve French CVE-2023-1192 - fs/smb/client: Reset password pointer to NULL Quang Le Steve French CVE-2023-5345 - igb: set max size RX buffer when store bad packet is enabled Tony Nguyen David S. Miller CVE-2023-45871 -...
runc security update
4:1.1.9-2 - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: 2228743 - Resolves: 2237777 - Resolves: 2237778...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.5-1 - update to 15.5 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418 Resolves: RHEL-16100, RHEL-16124, RHEL-16139...
tracker-miners security update
2.1.5-2.1 - Bump dist 2.1.5-2 - Backport stricter seccomp jail Resolves: RHEL-12466...
Unbreakable Enterprise kernel security update
5.4.17-2136.326.6 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang Orabug:...
Unbreakable Enterprise kernel security update
5.15.0-201.135.6 - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller Johnathan Mantey - netfilter: nftables: split async and sync catchall in two functions Pablo Neira Ayuso - netfilter: nftables: remove catchall element in GC sync path Pablo Neira Ayuso - scsi: mpt3sas: Fix...
pixman security update
0.40.0-6 - Backport fix for CVE-2022-44638...
webkit2gtk3 security update
2.40.5-1.1 - Add patch for CVE-2023-42917 Resolves: rhbz2253058...
webkit2gtk3 security update
2.40.5-1.1 - Add patch for CVE-2023-42917 Resolves: rhbz2253058...
containernetworking-plugins security update
1:1.3.0-6 - rebuild for following CVEs: CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 1:1.3.0-5 - fix path to dhcp service - Resolves: RHEL-3140...
postgresql security update
9.2.24-9 - Backport fix for CVE-2023-5869...
libxml2 security update
2.9.13-5 - Fix CVE-2023-39615 RHEL-5180...
skopeo security update
2:1.13.3-3 - Rebuild with golang 1.20.10 - Related: Jira:RHEL-2786 2:1.13.3-2 - Rebuild with golang 1.21.3 - Related: Jira:RHEL-2786...
curl security update
7.29.0-59.0.3.el79.2 - load CA certificates even with --insecure Orabug: 32836997 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers...
tracker-miners security update
3.1.2-4 - Backport stricter seccomp jail Resolves: RHEL-12469...
apr security update
1.7.0-12 - fix integer bounds checking in aprencode Resolves: RHEL-17123...
Unbreakable Enterprise kernel security update
4.14.35-2047.532.3 - Revert 'mmc: core: Capture correct oemid-bits for eMMC cards' Dominique Martinet - media: dvb-usb-v2: af9035: fix missing unlock Hans Verkuil - perf/core: Fix potential NULL deref Peter Zijlstra 4.14.35-2047.532.2 - x86: change default to specstorebypassdisable=prctl...
squid:4 security update
libecap squid 7:4.15-7.3 - Fix squid: DoS against HTTP and HTTPS CVE-2023-5824 7:4.15-7.1 - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP...
edk2 security update
20230821 - Create new 20230821 release for OL7 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
olcne security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building conmon for all but OL7. cri-o...
edk2 security update
20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
olcne security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building conmon for all but OL7. cri-o...
edk2 security update
20230821 - Create new 20230821 release for OL9 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
edk2 security update
20230821 - Create new 20230821 release for OL8 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
Unbreakable Enterprise kernel security update
4.1.12-124.81.2 - rebuild bumping release 4.1.12-124.81.1 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35923500 CVE-2023-39193 - USB: eneusb6250: Allocate enough memory for full object Kees Cook Orabug: 35924058 CVE-2023-45862 - netfilter: xtu32: validate user spa...
edk2 security update
20230821 - Create new 20230821 release for OL8 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
edk2 security update
20230821 - Create new 20230821 release for OL7 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
kernel security and bug fix update
4.18.0-513.9.19.OL8 - media: dvb-core: Fix use-after-free due to race at dvbregisterdevice Mauro Carvalho Chehab CVE-2022-45884 - cifs: Fix UAF in cifsdemultiplexthread Zhang Xiaoxu CVE-2023-1192 - nvmet-tcp: Fix a possible UAF in queue intialization setup Sagi Grimberg CVE-2023-5178 - net: tun:...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.13-1.0.1 - Fixed postgresql port binding issue during bootup Orabug: 35103668 13.13-1 - Update to 13.13 - Fixes: CVE-2023-5868 CVE-2023-5869 CVE-2023-5870 CVE-2023-39417 - Resolves: RHEL-16085 RHEL-16123...
squid security update
7:5.5-6.2 - Fix: squid: DoS against HTTP and HTTPS CVE-2023-5824...
dotnet8.0 security update
8.0.100-2.0.1 - Update to .NET 8.0 8.0.100rc.2-0.1.0.1 - Add support for Oracle Linux 8.0.100rc.2-0.1 - Update to .NET 8 RC 2 - Resolves: RHEL-13790 8.0.100rc.1-0.4 - Disable bootstrap - Related: RHEL-4074 8.0.100rc.1-0.3 - Add backported patches for additional s390x issues - Related: RHEL-4074...
firefox security update
115.5.0-1.0.1 - Update to 115.5.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
thunderbird security update
115.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.5.0-1 - Update to 115.5.0 build1...
thunderbird security update
115.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 115.5.0-1 - Update to 115.5.0 build1...
thunderbird security update
115.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 115.5.0-1 - Update to 115.5.0 build1...
firefox security update
115.5.0-1.0.1 - Update to 115.5.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
dotnet7.0 security update
7.0.114-1.0.1 - Update to .NET SDK 7.0.114 and Runtime 7.0.14...
firefox security update
115.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.5.0-1 - Update to 115.5.0 build1...
dotnet6.0 security update
6.0.125-1.0.1 - Update to .NET SDK 6.0.125 and Runtime 6.0.25 - Add support for Oracle Linux...
dotnet6.0 security update
6.0.125-1.0.2 - Add strict BuildRequires on 6.0.125-1.0.1 6.0.125-1.0.1 - Update to .NET SDK 6.0.125 and Runtime 6.0.25...
samba security update
4.18.6-2.0.1 - resolves: RHEL-11937 Fix CVE-2023-3961 - smbd must check the pipename - resolves: RHEL-11937 Fix CVE-2023-4091 - SMB clients can truncate files - resolves: RHEL-11937 Fix CVE-2023-42669 - Remove rpcecho server...
tigervnc security update
1.8.0-26.0.1 - Dropped xorg-CVE-2023-5367.patch 1.8.0-26 - Fix CVE-2023-5380 tigervnc: xorg-x11-server: Use-after-free bug in DestroyWindow Resolves: RHEL-15235 - Fix CVE-2023-5367 tigervnc: xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty Resolves: RHEL-15223...
dotnet7.0 security update
7.0.114-1.0.1 - Update to .NET SDK 7.0.114 and Runtime 7.0.14...
squid:4 security update
libecap squid 7:4.15-7.1 - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP...
kernel security update
3.10.0-1160.105.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.105.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
container-tools:4.0 security and bug fix update
buildah 1:1.24.6-7 - rebuild for CVE-2023-29406 - Related: 2176055 cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman 2:4.0.2-24 - rebuild for CVE-2023-29406 - Related: 2176055 python-podman runc skop...
c-ares security update
1.13.0-9.1 - Resolves: RHEL-11931 - Buffer Underwrite in aresinetnetpton rhel-8.9.0.z 1.13.0-9 - Resolves: rhbz2238293 - CVE-2020-22217 c-ares: read-heap-buffer-overflow in aresparsesoareply rhel-8 rhel-8.9.0.z...
nodejs:20 security update
nodejs 1:20.8.1-1 - Update node and nghttp - Add fips patch - Fixes CVE-2023-44487 nghttp - Fixes CVE-2023-45143, CVE-2023-39331, CVE-2023-39332, CVE-2023-38552, CVE-2023-39333 nodejs-nodemon nodejs-packaging...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.325.5.el7 - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext Krister Johansen Orabug: 35905508 - char: misc: Increase the maximum number of dynamic misc devices to 1048448 D Scott Phillips Orabug: 35905508 - perf/arm-cmn: Fix invalid pointer when access...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.325.5.el8 - perf symbols: Symbol lookup with kcore can fail if multiple segments match stext Krister Johansen Orabug: 35905508 - char: misc: Increase the maximum number of dynamic misc devices to 1048448 D Scott Phillips Orabug: 35905508 - perf/arm-cmn: Fix invalid pointer when access...