9185 matches found
gnutls security update
3.7.6-23.3 - Fixes for CVE-2023-5981, CVE-2024-0553, CVE-2024-0567...
thunderbird security update
115.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.7.0-1 - Update to 115.7.0 build1 115.6.0-1 - Update to 115.6.0 build2...
firefox security update
115.7.0.1.0.1 - Update to 115.7.0 build 1...
firefox security update
115.7.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.7.0-1 - Update to 115.7.0 build1...
tomcat security update
1:9.0.62-27.3 - tomcat: HTTP request smuggling via malformed trailer headers CVE-2023-46589...
frr security update
8.3.1-11.2 - Add patches for CVE-2023-47235, CVE-2023-47234, CVE-2023-38406, CVE-2023-38407...
kernel security update
5.14.0-362.18.0.13.OL9 - nfp: fix use-after-free in areacacheget Jialiang Wang CVE-2022-3545 - drivers: net: slip: fix NPD bug in sltxtimeout Duoming Zhou CVE-2022-41858 - can: afcan: fix NULL pointer dereference in canrcvfilter Oliver Hartkopp CVE-2023-2166 - RDMA/core: Fix resolvepreparesrc...
grub2 security update
2.06-70.0.2.2 - search command: add flag to only search root dev - Resolves: CVE-2023-4001...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
sqlite security update
3.34.1-7 - Fixes CVE-2023-7104...
python3.9 security update
3.9.18-1.1 - Security fix for CVE-2023-27043 Resolves: RHEL-20613...
rpm security update
4.16.1.3-27 - TOCTOU race in checks for unsafe symlinks CVE-2021-35937 - races with chown/chmod/capabilities calls during installation CVE-2021-35938 - checks for unsafe symlinks are not performed for intermediary directories CVE-2021-35939...
tomcat security update
1:9.0.62-37.el93.1 - Resolves: 2235370 CVE-2023-41080 tomcat: Open Redirect vulnerability in FORM authentication - Resolves: 2243749 CVE-2023-45648 tomcat: incorrectly parsed http trailer headers can cause request smuggling - Resolves: 2243751 CVE-2023-42794 tomcat: FileUpload: DoS due to...
php:8.1 security update
php 8.1.27-1 - rebase to 8.1.27 RHEL-19093 8.1.14-1 - rebase to 8.1.14 8.1.8-1 - update to 8.1.8 2070040 8.1.7-2 - clean unneeded dependency on useradd command 8.1.7-1 - update to 8.1.7 2070040 8.1.6-2 - add upstream patch to initialize pcre before mbstring - add upstream patch to use more sha256...
python-urllib3 security update
1.26.5-3.0.1.1 - Security fix for CVE-2023-45803 Resolves: RHEL-16874 - Security fix for CVE-2023-43804 Resolves: RHEL-12001...
java-11-openjdk security update
1:11.0.22.0.7-2.0.1 - Update to openjdk-11.0.22+7...
LibRaw security update
0.19.4-2 - Fix CVE-2021-32142 - Resolves: RHEL-9524...
python-pillow security update
2.0.0-24gitd1c6db8 - Security fix for CVE-2023-44271 Resolves: RHEL-15459...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.402.b06-0.2.0.1 - Update to shenandoah-jdk8u402-b06 GA - Update release notes for shenandoah-8u402-b06. - Add Oracle vendor bug URL Orabug: 34340155...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
java-17-openjdk security and bug fix update
1:17.0.10.0.7-2.0.1 - Rebase to 17.0.10.0.7...
xorg-x11-server security update
1.20.4-27 - Fix use after free related to CVE-2024-21886 1.20.4-26 - CVE fix for: CVE-2023-6816, CVE-2024-0229, CVE-2024-21885, CVE-2024-21886, CVE-2024-0408 and CVE-2024-0409 Resolves: https://issues.redhat.com/browse/RHEL-21205 Resolves: https://issues.redhat.com/browse/RHEL-20578 Resolves:...
java-21-openjdk security update
1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...
java-21-openjdk security update
1:21.0.2.0.13-1.0.1 - Add Oracle vendor bug URL 1:21.0.2.0.13-1 - Rebase to 21.0.2.0.13...
gstreamer-plugins-bad-free security update
0.10.23-24 - Patch CVE-2023-44446: MXF demuxer use-after-free - Disable gtk-doc to fix the build - Resolves: RHEL-16792...
python-cryptography security update
36.0.1-4.0.1 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates Orabug: 36119159 36.0.1-4 - Fix FTBFS caused by rsapkcs1implicitrejection OpenSSL feature, resolves rhbz2203840 36.0.1-3 - Fix CVE-2023-23931: Don't allow updateinto to mutate immutable objects, resolves rhbz21723...
python3.11-cryptography security update
37.0.2-5.0.1 - Fix CVE-2023-49083: NULL-dereference when loading PKCS7 certificates Orabug: 36143834...
.NET 7.0 security update
7.0.115-1.0.1 - Add support for Oracle Linux - Update to .NET SDK 7.0.115 and Runtime 7.0.15...
.NET 8.0 security update
8.0.101-1.0.1 - Update to .NET SDK 8.0.101 and Runtime 8.0.1...
java-11-openjdk security update
1:11.0.22.0.7-1.0.1 - link atomic for ix86 build 1:11.0.22.0.7-1 - Update to jdk-11.0.22+7 GA - Update release notes to 11.0.22+7 - Switch to GA mode for release - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-20966 1:11.0.22.0.6-0.1.ea - Update to jdk-11.0.22+6 EA - Updat...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.402.b06-0.1.ea - Update to shenandoah-jdk8u402-b06 GA - Update release notes for shenandoah-8u402-b06. - Drop local copy of JDK-8312489 which is now included upstream - Switch to GA mode. - This tarball is embargoed until 2024-01-16 @ 1pm PT. - Resolves: RHEL-17914 - Resolves: RHEL-20965...
sqlite security update
3.26.0-19.0.1 - Fixed CVE-2023-7104...
.NET 6.0 security update
6.0.126-1.0.1 - Add support for Oracle Linux 6.0.126-1 - Update to .NET SDK 6.0.126 and Runtime 6.0.26...
.NET 7.0 security update
7.0.115-1.0.1 - Update to .NET SDK 7.0.115 and Runtime 7.0.15 7.0.114-1.0.1 - Update to .NET SDK 7.0.114 and Runtime 7.0.14...
python3 security update
3.6.8-56.0.1.3 - Security fix for CVE-2023-27043 Resolves: rhbz2196183...
frr security update
7.5.1-13.3 - Resolves: RHEL-15916 - Flowspec overflow in bgpd/bgpflowspec.c - Resolves: RHEL-15919 - Out of bounds read in bgpd/bgplabel.c - Resolves: RHEL-15869 - crash from specially crafted MPUNREACHNLRI-containing BGP UPDATE message - Resolves: RHEL-15868 - crash from malformed EOR-containing...
squid34 security update
7:3.4.14-15.0.1 - Fix stack buffer overflow when parsing Digest Authorization CVE-2023-46847Orabug: 36053795...
.NET 6.0 security update
6.0.126-1.0.1 - Add support for Oracle Linux 6.0.126-1 - Update to .NET SDK 6.0.126 and Runtime 6.0.26 6.0.125-1 - Update to .NET SDK 6.0.125 and Runtime 6.0.25...
squid security update
7:3.1.23-24.0.1 - Fix stack buffer overflow when parsing Digest Authorization CVE-2023-46847Orabug: 36053765...
virt:ol and virt-devel:rhel security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.2.0-40.el89.2 - Resolves: RHEL-7309 CVE-2023-3019 virt:rhel/qemu-kvm: QEMU: e1000e: heap use-after-free in e1000ewritepackettoguest rhel-8 seabios sgabios...
idm:DL1 security update
bind-dyndb-ldap custodia ipa 4.9.12-11.0.1 - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy 0.4-5 - Always buffer TCP data in handlerecv - Resolves: 1747144 0.4-4 - Correct addrs sorting to be by TCP/UDP - Resolves: 1732898...
container-tools:4.0 security update
buildah 1:1.24.6-7 - rebuild for CVE-2023-29406 - Related: 2176055 cockpit-podman 46-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/46 - Related: 2061390 conmon 2:2.1.4-2 - update to https://github.com/containers/conmon/releases/tag/v2.1.4 - Related: 2176055...
kernel security update
4.18.0-513.11.1.0.19.OL8 - scsi: iscsitcp: Fix UAF during login when accessing the shost ipaddress CVE-2023-2162 - afunix: Fix null-ptr-deref in unixstreamsendpage CVE-2023-4622 - netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet CVE-2023-42753...
pixman security update
0.38.4-3 - Security fix for CVE-2022-44638...
ipa security update
4.10.2-5.0.1 - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455...
gnutls security update
3.6.16-8 - timing side-channel in the RSA-PSK authentication CVE-2023-5981...
tomcat security update
1:9.0.62-27.2 - Open Redirect vulnerability in FORM authentication CVE-2023-41080 - FileUpload: DoS due to accumulation of temporary files on Windows CVE-2023-42794 - improper cleaning of recycled objects could lead to information leak CVE-2023-42795 - incorrectly parsed http trailer headers can...
fence-agents security update
4.2.1-121.2 - bundled urllib3: fix CVE-2023-43804 Resolves: RHEL-11988 - bundled certifi: fix CVE-2023-37920 Resolves: RHEL-6972...
nss security update
3.90.0-4 - CVE-2023-5388 nss: timing attack against RSA decryption. Make the final blinding multmod constant time...
ipa security update
4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.16 - Resolves: RHEL-12570 ipa: Invalid CSRF protection...