9184 matches found
squid security update
7:5.5-6.0.1.el93.5 - squid: Denial of Service in SSL Certificate validation CVE-2023-46724 - squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728 - squid: Buffer over-read in the HTTP Message processing feature CVE-2023-49285 - squid: Incorrect Check of Function Return Value...
python3 security update
3.6.8-56.0.1.2 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-56.2 - Security fix for CVE-2022-48560 Resolves: rhbz2249755 - Security fix for CVE-2022-48564 Resolves: rhbz2249750...
python-urllib3 security update
1.24.2-5.0.1.2 - set RECENTDATE to 01/30/2019 to make checks happy Orabug: 30228991 1.24.2-5.2 - Security fix for CVE-2023-45803 Resolves: rhbz2246840 - Security fix for CVE-2023-43804 Resolves: rhbz2242493...
nss security update
3.90.0-4 - Fix expired certs in tests - Fix CVE-2023-5388...
libxml2 security update
2.9.7-18 - Fix CVE-2023-39615 RHEL-5179 2.9.7-17 - Fix CVE-2023-28484 2186692 - Fix CVE-2023-29469 2186692...
tigervnc security update
1.13.1-2.4 - xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty CVE-2023-5367 - xorg-x11-server: Use-after-free bug in DestroyWindow CVE-2023-5380 - xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions CVE-2023-6377 - xorg-x11-server:...
squid:4 security update
libecap squid 7:4.15-7.5 - Fix squid: Denial of Service in SSL Certificate validation CVE-2023-46724 - Fix squid: NULL pointer dereference in the gopher protocol code CVE-2023-46728 - Fix squid: Buffer over-read in the HTTP Message processing feature CVE-2023-49285 - Fix squid: Incorrect Check of...
firefox security update
115.6.0-1.0.1 - Update to 115.6.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
firefox security update
115.6.0-1.0.1 - Udate to 115.6.0 build1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
thunderbird security update
115.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 115.6.0-1 - Update to 115.6.0 build2...
thunderbird security update
115.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Update to 115.6.0 build2...
tigervnc security update
1.13.1-3.3 - xorg-x11-server: Out-of-bounds write in XIChangeDeviceProperty/RRChangeOutputProperty CVE-2023-5367 - xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions CVE-2023-6377 - xorg-x11-server: out-of-bounds memory read in RRChangeOutputProperty and...
xorg-x11-server security update
1.20.4-25 - CVE fix for: CVE-2023-6377, CVE-2023-6478 Resolves: https://issues.redhat.com/browse/RHEL-18416 Resolves: https://issues.redhat.com/browse/RHEL-18428...
thunderbird security update
115.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.6.0-1 - Update to 115.6.0 build2...
firefox security update
115.6.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.6.0-1 - Update to 115.6.0 build1...
tigervnc security update
1.8.0-28.0.1 - Dropped xorg-CVE-2023-5367.patch, xorg-CVE-2023-6377.patch, and xorg-CVE-2023-6478.patch 1.8.0-28 - Updated fix for CVE-2023-6377 tigervnc: xorg-x11-server: out-of-bounds memory reads/writes in XKB button actions Resolves: RHEL-18415 1.8.0-27 - Fix CVE-2023-6377 tigervnc:...
gstreamer1-plugins-bad-free security update
1.10.4-4 - Patch CVE-2023-44446: MXF demuxer use-after-free - Disable gtk-doc to fix build - Resolves: RHEL-16793...
kernel security update
5.14.0-362.13.1.el93.OL9 - x86/retpoline: Document some thunk handling aspects Borislav Petkov CVE-2023-20569 - objtool: Fix return thunk patching in retpolines Josh Poimboeuf CVE-2023-20569 - x86/srso: Remove unnecessary semicolon Yang Li CVE-2023-20569 - x86/calldepth: Rename x86returnskl to...
postgresql:15 security update
pgaudit 1.7.0-1 - Update to 1.7.0 - Support postgresql 15 - Related: 2128241 1.5.0-1 - Update to version 1.5.0 Related: 1855776 pgrepack 1.4.8-1 - Update to version 1.4.8 - Postgresql 15 is supported - Related: 2128241 1.4.6-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688...
postgresql:10 security update
10.23-3.0.1 - Resolves: CVE-2023-5869...
gstreamer1-plugins-bad-free security update
1.16.1-2 - Resolves MXF demuxer use-after-free vulnerability CVE-2023-44446...
opensc security update
0.23.0-3 - Fix file caching with different offsets RHEL-4079 - Fix CVE-2023-40660: Potential PIN bypass - Fix CVE-2023-40661: Dynamic analyzers reports in pkcs15init - Fix CVE-2023-4535: Out-of-bounds read in MyEID driver handling encryption using symmetric keys - Fix CVE-2023-5992: Side-channel...
glibc security update
2.28-225.0.4.6 - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode. - CVE-2023-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaihinet RHEL-2435. - CVE-2023-4813: work around RHEL-8 limitation in test RHEL-2435. Reviewed by: Jose E...
conmon security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build cri-o 1.26.3-3 - Resolve CVE-2023-39325 1.26.3-2 - Add support for ARM build cri-tools 1.26.1-3 - Resolve...
conmon security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build cri-o 1.26.3-3 - Resolve CVE-2023-39325 1.26.3-2 - Add support for ARM build cri-tools 1.26.1-3 - Resolve...
openssl security update
1:1.1.1k-12 - Backport implicit rejection mechanism for RSA PKCS1 v1.5 to RHEL-8 series a proper fix for CVE-2020-25659 Resolves: RHEL-17696 1:1.1.1k-11 - Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow Resolve...
fence-agents security update
4.10.0-55.2 - python-certifi: Removal of e-Tugra root certificate CVE-2023-37920 - python-urllib3: Cookie request header isn't stripped during cross-origin redirects CVE-2023-43804...
postgresql:12 security update
pgaudit pgrepack postgres-decoderbufs postgresql...
opensc security update
0.20.0-7 - Fix file caching with different offsets RHEL-4077 - Fix CVE-2023-40660: Potential PIN bypass - Fix CVE-2023-40661: Dynamic analyzers reports in pkcs15init - Fix CVE-2023-5992: Marvin: Side-channel leaks while stripping encryption PKCS1.5 padding...
gstreamer1-plugins-bad-free security update
1.22.1-2 - Patch CVE-2023-44429: AV1 codec parser heap-based buffer overflow - Patch CVE-2023-44446: MXF demuxer use-after-free - Resolves: RHEL-17030, RHEL-17039...
avahi security update
0.7-21.1 - Fix CVE-2021-3468 1939614 - Fix CVE-2023-38469 2191687 - Fix CVE-2023-38470 2191694 - Fix CVE-2023-38471 2191690 - Fix CVE-2023-38472 2191692 - Fix CVE-2023-38473 2191691...
postgresql security update
13.13-1.0.1 - Update to 13.13 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, and CVE-2023-39417...
buildah security update
1.31.3-2.0.1 - Rebuild for CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409...
podman security update
2:4.6.1-7.0.1 - Rebuild for following CVEs: CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 2:4.6.1-6.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.326.6.el7 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5.el7 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.326.6.el8 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5.el8 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang...
runc security update
4:1.1.9-2 - Rebuild for CVEs: CVE-2023-39321 CVE-2023-39322 CVE-2023-29409 - Resolves: 2228743 - Resolves: 2237777 - Resolves: 2237778...
kernel security update
5.14.0-362.13.0.13.OL9 - cifs: Fix UAF in cifsdemultiplexthread Zhang Xiaoxu Steve French CVE-2023-1192 - fs/smb/client: Reset password pointer to NULL Quang Le Steve French CVE-2023-5345 - igb: set max size RX buffer when store bad packet is enabled Tony Nguyen David S. Miller CVE-2023-45871 -...
skopeo security update
2:1.13.3-3 - Rebuild with golang 1.20.10 - Related: Jira:RHEL-2786 2:1.13.3-2 - Rebuild with golang 1.21.3 - Related: Jira:RHEL-2786...
pixman security update
0.40.0-6 - Backport fix for CVE-2022-44638...
Unbreakable Enterprise kernel security update
5.15.0-201.135.6 - Revert ncsi: Propagate carrier gain/loss events to the NCSI controller Johnathan Mantey - netfilter: nftables: split async and sync catchall in two functions Pablo Neira Ayuso - netfilter: nftables: remove catchall element in GC sync path Pablo Neira Ayuso - scsi: mpt3sas: Fix...
Unbreakable Enterprise kernel security update
5.4.17-2136.326.6 - Revert 'md/raid5: Wait for MDSBCHANGEPENDING in raid5d' Junxiao Bi Orabug: 35914789 - md: bypass block throttle for superblock update Junxiao Bi Orabug: 35914789 5.4.17-2136.326.5 - Revert 'tracing: Increase trace array ref count on enable and filter files' Sherry Yang Orabug:...
webkit2gtk3 security update
2.40.5-1.1 - Add patch for CVE-2023-42917 Resolves: rhbz2253058...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.5-1 - update to 15.5 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418 Resolves: RHEL-16100, RHEL-16124, RHEL-16139...
libxml2 security update
2.9.13-5 - Fix CVE-2023-39615 RHEL-5180...
webkit2gtk3 security update
2.40.5-1.1 - Add patch for CVE-2023-42917 Resolves: rhbz2253058...
tracker-miners security update
2.1.5-2.1 - Bump dist 2.1.5-2 - Backport stricter seccomp jail Resolves: RHEL-12466...
postgresql security update
9.2.24-9 - Backport fix for CVE-2023-5869...
containernetworking-plugins security update
1:1.3.0-6 - rebuild for following CVEs: CVE-2023-29409 CVE-2023-39318 CVE-2023-39319 CVE-2023-39321 CVE-2023-39322 - Resolves: 2228743 - Resolves: 2237773 - Resolves: 2237776 - Resolves: 2237777 - Resolves: 2237778 1:1.3.0-5 - fix path to dhcp service - Resolves: RHEL-3140...
tracker-miners security update
3.1.2-4 - Backport stricter seccomp jail Resolves: RHEL-12469...