9184 matches found
librabbitmq security update
0.9.0-4 - Resolves: 2215765, insecure credentials submission...
libX11 security update
1.6.8-6 - CVE fix for: CVE-2023-3138 Resolve: rhbz2213762...
dnsmasq security and bug fix update
2.79-31 - Do not create and search --local and --address=/x/ domains 2233542 2.79-30 - Make create logfile writeable by root 2156789 2.79-29 - Fix also dynamically set resolvers over dbus 2186481 2.79-28 - Correct possible crashes when server=/example.net/ is used 2186481 2.79-27 - Limit offered...
fwupd security update
1.7.8-2.0.1 - Modify %prep to correctly apply downstream patches - Align sections to 512 bytes Orabug: 35265981 - Use objcopy to build arm/aarch64 binaries if binutils 2.30-113.0.3 or newer Orabug: 35265981 - Enabled signing for aarch64 Orabug: 35265981 - Modify meson.build for fwupd-efi Orabug:...
yajl security update
2.1.0-12 - fix CVE-2023-33460 - Resolves: 2221252...
xorg-x11-server-Xwayland security and bug fix update
21.1.3-12 - Backport fix for a deadlock with DRI3 Resolves: rhbz2212831 21.1.3-11 - Fix CVE-2023-1393 2180298...
edk2 security and bug fix update
20220126gitbb1bba3d77-6 - edk2-UefiCpuPkg-MpInitLib-fix-apic-mode-for-cpu-hotplug.patch bz2150267 - Resolves: bz2150267 ovmf must consider max cpu count not boot cpu count for apic mode rhel-8 20220126gitbb1bba3d77-5 - edk2-SecurityPkg-DxeImageVerificationLib-Check-result-of-.patch bz1861743 -...
libreswan security update
4.12-2.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.12-2 - Resolves: rhbz2234731 authby=rsasig fails in FIPS policy 4.12-1 - Update to 4.12 to fix CVE-2023-38710, CVE-2023-38711, CVE-2023-38712 - Resolves: rhbz2215955...
libfastjson security update
0.99.9-2 - Address CVE-2020-12762 Resolves: rhbz2203171...
bind security update
32:9.11.36-11 - Prevent exahustion of memory from control channel CVE-2023-3341 32:9.11.36-10 - Prevent the cache going over the configured limit CVE-2023-2828 32:9.11.36-9 - Prevent flooding with UPDATE requests CVE-2022-3094 - include upstream test for that change...
python3.11 security update
3.11.5-1 - Rebase to 3.11.5 - Security fixes for CVE-2023-40217 and CVE-2023-41105 Resolves: RHEL-3047, RHEL-3267 3.11.4-4 - Add the importallmodulespy311.py file for the python3.11-rpm-macros subpackage Resolves: rhbz2207631 3.11.4-3 - Fix symlink handling in the fix for CVE-2023-24329 Resolves:...
protobuf-c security update
1.3.0-8 - Rebuild for gating test 1.3.0-7 - Applied patch for for CVE-2022-48468 2186678...
python3.11-pip security update
22.3.1-4 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218249 22.3.1-3 - Fix changelog to contain Fedora contributors Resolves: RHEL-232...
python3 security update
3.6.8-56.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-56 - Security fix for CVE-2023-40217 Resolves: RHEL-3041 3.6.8-55 - Fix symlink handling in the fix for CVE-2007-4559 Resolves: rhbz263261 3.6.8-54 - Bump release fo...
sysstat security and bug fix update
11.7.3-11.0.1 - add mpstat -H option to also display physically hotplugged vCPUs Orabug: 34683071 11.7.3-11 - fix the arithmetic overflow in allocatestructures that is still possible on some 32 bit systems CVE-2023-33204 11.7.3-10 - Fix incorrect CPU usage on ALL CPU field for iowait in mpstat...
python-cryptography security update
3.2.1-6 - Fix CVE-2023-23931: Don't allow updateinto to mutate immutable objects, resolves rhbz2172404...
python-pip security update
9.0.3-23 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218241...
cloud-init security, bug fix, and enhancement update
23.1.1-10.0.1 - Added missing services in rhel/systemd/cloud-init.service Orabug: 32183938 - Add IPv6 IMDS and dhcp6 support for Oracle Datasource Orabug: 35470783 - Increase retry value and add timeout for OCI Orabug: 35329883 - Fix log file permissions Orabug: 35302985 - Update detection logic...
tomcat security and bug fix update
1:9.0.62-27 - Related: RHEL-12543 - Bump release number 1:9.0.62-16 - Resolves: RHEL-12543 HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack - Remove JDK subpackges which are unused 1:9.0.62-14 - Related: RHEL-2330 Bump release number 1:9.0.62-13 -...
avahi security update
0.7-21 - Fix CVE-2023-1981 2186688...
libreoffice security update
6.4.7.2-15.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-15 - Resolves: rhbz2210191 CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing - Resolves: rhbz2210195...
tang security and bug fix update
7-8 - Set correct user/group tang/tang in tangd-keygen Resolves: rhbz2188743 7-7 - Fix race condition when creating/rotating keys Resolves: rhbz2182410 Resolves: CVE-2023-1672...
libmicrohttpd security update
1:0.9.59-3 - Add cve-2023-27371.patch Related: rhbz2174639 CVE-2023-27371...
flatpak security, bug fix, and enhancement update
1.10.8-1 - Rebase to 1.10.8 2222103 - Fix CVE-2023-28100 and CVE-2023-28101 2180311...
cups security and bug fix update
1:2.2.6-54 - RHEL-2612 - cups pulls an unneeded dependency on python3 1:2.2.6-53 - CVE-2023-32360 cups: Information leak through Cups-Get-Document operation 1:2.2.6-52 - 2217178 - Delays printing to lpd when reserved ports are exhausted - 2217283 - The command 'cancel -x ' does not remove job fil...
opensc security and bug fix update
0.20.0-6 - Fix introduced issues tagged by coverity RHEL-765 0.20.0-5 - Avoid potential crash because of missing list terminator 2196234 - Fix CVE-2023-2977: potential buffer overrun in pkcs15 cardoshaveverifyrcpackage 2211093 - Backport upstream changes regarding to reader removal 2097048...
xorg-x11-server security and bug fix update
1.20.11-17 - Backport fix for a deadlock with DRI3 Resolves: rhbz2192556 1.20.11-16 - CVE fix for: CVE-2023-1393 Resolves: rhbz2180296...
procps-ng security update
3.3.15-14.0.1 - ps: remove uptime integer conversion Orabug: 35909165 - ps: improved three elapsed 'jiffies/tics' calculations Orabug: 35909165 - Set TZ to avoid repeated stat'/etc/localtime' Orabug: 32769816 3.3.15-14 - CVE-2023-4016: ps: possible buffer overflow - Resolves: rhbz2228503...
c-ares security update
1.13.0-8 - Resolves: rhbz2209517 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service rhel-8.9.0 1.13.0-7 - Resolves: rhbz2170867 - c-ares: buffer overflow in configsortlist due to missing string length check rhel-8...
webkit2gtk3 security and bug fix update
2.40.5-1 - Upgrade to 2.40.5. Also, disable JIT Resolves: 2176269 Resolves: 2185742 Resolves: 2209728 Resolves: 2209745 Resolves: 2218649 Resolves: 2218651 Resolves: 2224611 2.38.5-1.4 - Add patch for CVE-2023-28204 Resolves: 2209744 - Add patch for CVE-2023-32373 Resolves: 2209727 2.38.5-1.3 -...
grafana security and enhancement update
9.2.10-7 - resolve RHEL-12649 - resolve CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work - testing is turned off due to test failures caused by testing date mismatch 9.2.10-6 - Add /usr/share/grafana to systemd-sysusers --replace 9.2.10-5 - resolve CVE-2023-3128 grafana:...
shadow-utils security and bug fix update
2:4.6-19 - gpasswd: fix password leak. Resolves: 2215947 2:4.6-18 - Update patch to close label to reset libselinux state. Resolves: 1984740 - useradd: check if subid range exists for user. Resolves: 2012929 - findnewguid: Skip over IDs that are reserved for legacy reasons. Resolves: 1994269...
wireshark security update
1:2.6.2-17 - Resolves: 2211412 - XRA dissector infinite loop 1:2.6.2-16 - Resolves: 2210866 - VMS TCPIPtrace file parser crash - Resolves: 2210867 - NetScaler file parser crash - Resolves: 2210869 - RTPS dissector crash...
ghostscript security and bug fix update
9.27-11 - fix for CVE-2023-4042 - Resolves: rhbz2228153 9.27-10 - fix for CVE-2023-38559 - Resolves: rhbz2224371 9.27-9 - fix for CVE-2023-28879 - Resolves: rhbz2188297 9.27-8 - fix embedding of CIDFonts - Resolves: rhbz2169890 9.27-7 - fix bbox device calculating bounding box incorrectly -...
perl-HTTP-Tiny security update
0.074-2 - Changes the verifySSL default parameter from 0 to 1 - CVE-2023-31486 - Resolves: rhbz2228409...
emacs security update
1:26.1-11 - Bump version...
tpm2-tss security and enhancement update
2.3.2-5 - Ensure layer number is in bounds Resolves: rhbz2160302 Resolves: rhbz2162611...
libpq security update
13.11-1 - Rebase to 13.11 Resolves: 2171369...
kernel security, bug fix, and enhancement update
4.18.0-513.5.19.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
samba security update
4.18.6-101 - resolves: RHEL-11937 Fix CVE-2023-3961 - smbd must check the pipename - resolves: RHEL-11937 Fix CVE-2023-4091 - SMB clients can truncate files - resolves: RHEL-11937 Fix CVE-2023-42669 - Remove rpcecho server...
microcode_ctl security update
4:20230808-2.0.2 - update 06-6a-06 to 0xd0003b9 CVE-2023-23583...
squid security update
7:5.5-6.1 - Resolves: RHEL-14819 - squid: squid: denial of Servicein FTP - Resolves: RHEL-14807 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14780 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP 7:5.5-6 - Resolves: 2231827 - Crash with...
ghostscript security update
9.54.0-14 - fix for CVE-2023-43115 - Resolves: RHEL-10184 9.54.0-13 - fix for CVE-2023-38559 - Resolves: rhbz2224372 9.54.0-12 - fix for CVE-2023-36664 - Resolves: rhbz2217810...
open-vm-tools security update
12.2.5-3.0.1.2 - Address CVE-2023-34058 - BZ 2246963 - SAML token signature token bypass. - Address CVE-2023-34059 - BZ 2246962 - vmware-user-suid-wrapper...
open-vm-tools security update
11.0.5-3.0.1 - fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. - Created a new file 99-vmware-scsi-timeout.rules - Modified sp...
nghttp2 security update
1.43.0-5.1 - fix HTTP/2 Rapid Reset CVE-2023-44487...
curl security update
7.76.1-26.el93.2 - fix cookie injection with none file CVE-2023-38546 7.76.1-26.el93.1 - socks: return error if hostname too long for remote resolve CVE-2023-38545...
microcode_ctl security update
2:2.1-73.19.0.3 - update 06-6a-06 to 0xd0003b9 CVE-2023-23583...
python security update
2.7.5-94.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-94 - Security fix for CVE-2023-40217 Resolves: RHEL-9615...
plexus-archiver security update
0:2.4.2-6 - Avoid override target symlink by standard file in AbstractUnArchiver - Fixes: CVE-2023-37460...