9185 matches found
firefox security update
115.8.0-1.0.1 - Update to 115.8.0 build 1...
kernel security and bug fix update
3.10.0-1160.108.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.108.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
go-toolset:ol8 security update
delve 1.20.2-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.20.2-1 - Rebase to 1.20.2 - Resolves: rhbz2186495 golang 1.20.12-1 - Update to Go 1.20.12 - Fix CVE-2023-39326 CVE-2023-45285 go-toolset 1.20.12-1 - Update to Go 1.20.12 - CVE-2023-39326 golang: net/http/internal:...
kernel security update
4.18.0-513.18.0.19.OL8 - drivers: net: slip: fix NPD bug in sltxtimeout CVE-2022-41858 - nfp: fix use-after-free in areacacheget CVE-2022-3545 - HID: check empty reportlist in hidvalidatevalues CVE-2023-1073 - Fix double fget in vhostnetsetbackend CVE-2023-1838 - can: afcan: fix NULL pointer...
.NET 8.0 security update
8.0.102-2.0.1 - Update to .NET SDK 8.0.102 and Runtime 8.0.2 - Add -dbg subpackages for symbol files - Resolves: RHEL-23070...
gimp:2.8 security update
gimp 2:2.8.22-25 - fix CVE-2023-44442 - fix CVE-2023-44444 pygobject2 pygtk2 2.24.0-25 - Fix shebang mangling for prefix=app 1907579 - disable numpy for flatpak 1907579 python2-pycairo...
mysql:8.0 security update
mecab mecab-ipadic mysql 8.0.36-1 - Update to MySQL 8.0.36 8.0.35-2 - Fix int-conversion type error in memcached 8.0.35-1 - Update to MySQL 8.0.35 - Remove patches now upstream 8.0.34-1 - Update to MySQL 8.0.34 - Add patch from upstream bug110569 - Add patch to fix binlog format issue - Use...
python-pillow security update
5.1.1-18.1 - Security fix for CVE-2023-50447 Resolves: RHEL-22240...
.NET 8.0 security update
8.0.101-1.0.1 - Add support for Oracle Linux - Update to .NET SDK 8.0.101 and Runtime 8.0.1...
oniguruma security update
6.8.2-2.1 - Fix CVE-2019-13224 Resolves: RHEL-6970 - Fix CVE-2019-16163 Resolves: RHEL-9506 - Fix CVE-2019-19012 Resolves: RHEL-9511 - Fix CVE-2019-19203 Resolves: RHEL-9510 - Fix CVE-2019-19204 Resolves: RHEL-9509...
edk2 security update
20220126gitbb1bba3d77-6.el89.3 - edk2-Bumped-openssl-submodule-version-to-cf317b2bb227.patch RHEL-7560 - Resolves: RHEL-7560 CVE-2023-3446 edk2: openssl: Excessive time spent checking DH keys and parameters rhel-8...
python-pillow security update
2.0.0-25gitd1c6db8 - Security fix for CVE-2023-50447 Resolves: RHEL-22239...
.NET 8.0 security update
8.0.102-2.0.1 - Update to .NET SDK 8.0.102 and Runtime 8.0.2 - Add -dbg subpackages for symbol files - Resolves: RHEL-23070...
dotnet6.0 security update
6.0.127-1.0.1 - Update to .NET SDK 6.0.127 and Runtime 6.0.27...
dotnet7.0 security update
7.0.116-1.0.1 - Update to .NET SDK 7.0.116 and Runtime 7.0.16...
dotnet6.0 security update
6.0.127-1.0.1 - Update to .NET SDK 6.0.127 and Runtime 6.0.27...
dotnet7.0 security update
7.0.116-1.0.1 - Update to .NET SDK 7.0.116 and Runtime 7.0.16...
sudo security update
RHEL 9.3.0.Z ERRATUM 1.9.5p2-10 - CVE-2023-28487 sudo: Sudo does not escape control characters in sudoreplay output Resolves: RHEL-21834 - CVE-2023-28486 sudo: Sudo does not escape control characters in log messages Resolves: RHEL-21828 - CVE-2023-42465 sudo: Targeted Corruption of Register and...
openssh security update
8.0p1-19.0.1.2 - Update patches for CVE-2023-51385, CVE-2023-48795 Orabug: 36256632 8.0p1-19.2 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 - Fix Terrapin attack Resolves: CVE-2023-48795...
container-tools:4.0 security update
buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman 2:4.0.2-25.0.1 - update to the latest content of https://github.com/containers/podman/tree/v4.0-rhel...
container-tools:ol8 security update
aardvark-dns buildah 1:1.31.3-3.0.1 - Rebuild with newer dependencies cockpit-podman conmon containernetworking-plugins 1:1.3.0-8.0.1 - Rebuild with newer dependencies containers-common 2:1-70.0.2 - Rebuild with newer dependencies container-selinux criu crun fuse-overlayfs libslirp netavark...
tcpdump security update
14:4.9.3-3.1 - tcpslice: use-after-free in extractslice CVE-2021-41043...
Unbreakable Enterprise kernel security update
5.15.0-203.146.5.1 - Revert 'selftests/bpf: Test tail call counting with bpf2bpf and data on stack' Samasth Norway Ananda Orabug: 36277693 - Revert 'tcp: fix excessive TLP and RACK timeouts from HZ rounding' Sherry Yang Orabug: 36277684 5.15.0-203.146.5 - i2c: core: Fix atomic xfer check for...
nss security update
3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...
nss security update
3.90.0-6 - Fix ecc DER wrapping. 3.90.0-5 - Pick up validated constant time implementations of p256, p384, and p521 from upsream - More Fips indicator changes...
openssh security update
7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...
openssh security update
7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...
virt:kvm_utils1 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libvirt 5.7.0-41 - qemumonitor: Add defensive protection on mon-msg Wim ten Have Orabug: 35699260 - vircpi: Add PCIe 5.0 and 6.0 link speeds Michal Privoznik Orabug: 35496776 - qemuProcessSetupVcpusVnuma: add NULL check for def-cpu Shaleen...
libmaxminddb security update
1.2.0-10.1 - Resolves: RHEL-20594 - improper initialization in dumpentrydatalist in maxminddb.c...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.328.3.el8 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is zeroed. Gregory Herrero Orabug: 36154654 - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185207 - i2c: core: Fix atomic...
Unbreakable Enterprise kernel security update
4.14.35-2047.533.3 - net: rfkill: gpio: set GPIO direction Rouven Czerwinski - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185208 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143229 - sched/rt: picknextrtentity: check listentry...
Unbreakable Enterprise kernel security update
5.4.17-2136.328.3 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is zeroed. Gregory Herrero Orabug: 36154654 - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185207 - i2c: core: Fix atomic xfer...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.328.3.el7 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is zeroed. Gregory Herrero Orabug: 36154654 - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185207 - i2c: core: Fix atomic...
runc security update
1.1.12-1 - Update runc to 1.1.12 JIRA: OLDIS-30530 1.1.10-1 - Update runc to 1.1.10 JIRA: OLDIS-30530...
runc security update
1.1.12-1 - Update runc to 1.1.12 JIRA: OLDIS-30530 1.1.10-1 - Update runc to 1.1.10 JIRA: OLDIS-30530...
kernel security update
5.14.0-362.18.0.2 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: schhfsc: upgrade 'rt' to 'sc' when it becomes a inner curve CVE-2023-4623 - dpll: core: Add DPLL framework base functions CVE-2023-6679 - dpll: spec: Add Netlink spec in YAML CVE-2023-6679 - dpl...
gimp security update
2:2.99.8-4 - fix CVE-2023-44441 - fix CVE-2023-44442 - fix CVE-2023-44443 - fix CVE-2023-44444...
gnutls security update
3.6.16-8.1fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 - Allow bigger known RSA modulus sizes when calling rsageneratefips1864keypair directly Orabug: 33200526 - Change Epoch from 1 to 10...
runc security update
4:1.1.12-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.12 - Related: RHEL-2112 4:1.1.11-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.11 - Related: RHEL-2112 4:1.1.10-3 - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Related:...
gnutls security update
3.6.16-8.1 - auth/rsa-psk: minimize branching after decryption RHEL-21550...
rpm security update
4.14.3-28.0.2 - Import additional patches to fix regressions with CVE-2021-35937, CVE-2021-35938 and CVE-2021-35939 patchset Orabug: 36256318 4.14.3-28.0.1 - Fixed infinte loop for dbcreate with error check Orabug: 36202920 4.14.3-28 - Backport file handling code from rpm-4.19 to fix...
tigervnc security update
1.8.0-31.0.1 - Dropped xorg-CVE-2023-5367.patch, xorg-CVE-2023-6816.patch, xorg-CVE-2023-6377.patch, xorg-CVE-2023-6478.patch, xorg-CVE-2024-0229-1.patch, xorg-CVE-2024-0229-2.patch, xorg-CVE-2024-0229-3.patch, xorg-CVE-2024-21885.patch, xorg-CVE-2024-21886-1.patch, xorg-CVE-2024-21886-2.patch,...
Unbreakable Enterprise kernel security update
4.1.12-124.82.2 - Bluetooth: Reject connection with the device which has same BDADDR Lee, Chun-Yi Orabug: 35959598 CVE-2020-26555 - sched/rt: picknextrtentity: check listentry Pietro Borrello Orabug: 35181560 CVE-2023-1077 - sched/debug: Fix SCHEDWARNON to return a value on !CONFIGSCHEDDEBUG as...
libssh security update
0.9.6-13 - Client and Server side mitigations CVE-2023-48795 - Strip extensions from both kex lists for matching CVE-2023-48795 - tests: Adjust calculation to strict kex CVE-2023-48795...
openssh security update
8.0p1-19.2 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 - Fix Terrapin attack Resolves: CVE-2023-48795...
tigervnc security update
1.13.1-2.7 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20388 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent Resolves: RHEL-20382 - Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching ...
tigervnc security update
1.13.1-3.6 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20389 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent Resolves: RHEL-20383 - Fix CVE-2024-0229 tigervnc: xorg-x11-server: reattaching ...
thunderbird security update
115.7.0-1.0.1 - Update to 115.7.0 build1...
firefox security update
115.7.0.1.0.1 - Update to 115.7.0 build 1...
thunderbird security update
115.7.0-1.0.1 - Update to 115.7.0 build1...