9184 matches found
dnsmasq security update
2.76-17.0.1.3 - Prevent use after free in dhcp6norelay CVE-2022-0934 Orabug: 34775167...
python3 security update
3.6.8-51.0.1.2 - Security fix for CVE-2023-40217 Resolves: rhbz2235789...
dnsmasq security update
2.76-17.0.1.3 - Prevent use after free in dhcp6norelay CVE-2022-0934 Orabug: 34775167...
varnish security update
6.6.2-3.el92.1 - Add parameters h2rstallowance and h2rstallowanceperiod to mitigate CVE-2023-44487 - Resolves: RHEL-12818...
varnish security update
varnish 6.0.8-3.1 - Add parameters h2rstallowance and h2rstallowanceperiod to mitigate CVE-2023-44487 varnish-modules...
tomcat security update
1:9.0.62-5.2 - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
linux-firmware security update
20230516-999.27.git6c9e0ed5.el9 - Update firmware for qat4xxx devices Orabug: 35811008 20230516-999.26.git6c9e0ed5.el9 - Run dracut -f in %posttrans instead of %post Orabug: 35661938 - Drop latest AMD microcode commits to family 19 file to include Milan microcode but not Genoa Orabug: 35708511...
php:8.0 security update
libzip php 8.0.30-1 - rebase to 8.0.30 - Resolves: RHEL-11946 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip...
tomcat security update
1:9.0.62-11.3 - HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
nodejs:18 security update
nodejs 1:18.18.2-1 - Rebase to version 18.18.2 Resolves: CVE-2023-44487 CVE-2023-45143 CVE-2023-38552 CVE-2023-39333 nodejs-nodemon nodejs-packaging...
php security update
8.0.30-1 - rebase to 8.0.30 - Resolves: RHEL-11946...
kernel security update
2.6.32-754.49.1.OL6 - x86/speculation: Use generic retpoline by default on AMD CVE-2021-26401 Orabug: 34986011...
grafana security update
9.0.9-4 - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work...
nodejs security update
1:16.20.2-3.0.1 - Update nghttp2 to 1.57.0 Resolves: CVE-2023-44487...
18 security update
nodejs 1:18.18.2-2 - Rebase to version 18.18.2 Resolves: CVE-2023-44487 CVE-2023-45143 CVE-2023-38552 CVE-2023-39333 nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 nodejs-packaging 2021.06-4 - NPM bundler: also find namespaced bundled dependencies 2021.06-3 - Rebuilt for...
nodejs:16 security update
nodejs 1:16.20.2-3.0.1 - Update nghttp2 to 1.57.0 Resolves: CVE-2023-44487 nodejs-nodemon nodejs-packaging 26-1 - nodejs.prov: find namespaced bundled dependencies - Apply https://src.fedoraproject.org/rpms/nodejs-packaging/c/e24e7df...
grafana security update
7.5.15-5 - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work...
kvm_utils2 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt 7.10.0-3.el8 - virpci: Resolve leak in virPCIVirtualFunctionList cleanup Tim Shearer Orabug: 35395469 CVE-2023-2700 libvirt-dbus libvirt-python 7.10.0-3.el8 - Update version number to match libvirt 7.10.0-3 Karl Heubaum nbdkit...
python-reportlab security update
3.4.0-8.1 - python-reportlab: code injection in paraparser.py allows code execution CVE-2019-19450...
dotnet7.0 security update
7.0.112-1.0.1 - Update to .NET SDK 7.0.112 and Runtime 7.0.12 - Resolves: RHEL-11698...
nghttp2 security update
1.43.0-5.1 - fix HTTP/2 Rapid Reset CVE-2023-44487...
nghttp2 security update
1.33.0-5 - fix HTTP/2 Rapid Reset CVE-2023-44487 1.33.0-4 - prevent DoS caused by overly large SETTINGS frames CVE-2020-11080...
java-11-openjdk security and bug fix update
1:11.0.21.0.9-1.0.1 - link atomic for ix86 build 1:11.0.21.0.9-1 - Update to jdk-11.0.21+9 GA - Update release notes to 11.0.21+9 - Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies - Update generatetarball.sh to be closer to upstream vanilla script inc. no...
java-1.8.0-openjdk security update
1:1.8.0.392.b08-2 - Revert jcmd move as jcmd will not operate without tools.jar - Related: RHEL-13577 1:1.8.0.392.b08-1 - Update to shenandoah-jdk8u392-b08 GA - Update release notes for shenandoah-8u392-b08. - Update generatetarball.sh to be closer to upstream vanilla script inc. no more ECC...
galera and mariadb security update
galera 26.4.14-1.0.1 - Rebase to 26.4.14 26.4.13-1.0.1 - Rebase to 26.4.13 26.4.12-1.0.1 - Rebase to 26.4.12 mariadb 3:10.5.22-1 - Rebase to 10.5.22 3:10.5.21-1 - Rebase to version 10.5.21 3:10.5.20-2 - Use fortifylevel to disable fortification in debug builds 3:10.5.20-1 - Rebase to version...
curl security update
7.76.1-23.el92.4 - curl: a heap-based buffer overflow in the SOCKS5 proxy handshake CVE-2023-38545 - curl: cookie injection with none file CVE-2023-38546...
go-toolset and golang security and bug fix update
golang 1.19.13-1 - Update to go 1.19.13 CVE-2023-44487 CVE-2023-39325 CVE-2023-29409 go-toolset 1.19.13-1 - Update to Go version 1.19.13...
dotnet6.0 security update
6.0.123-1.0.1 - Update to .NET SDK 6.0.123 and Runtime 6.0.23 - Resolves: RHEL-11696...
dotnet6.0 security update
6.0.123-1.0.1 - Update to .NET SDK 6.0.123 and Runtime 6.0.23 - Resolves: RHEL-11696...
go-toolset:ol8 security update
delve golang 1.19.13-1 - Rebase to Go 1.19.13 CVE-2023-39325 CVE-2023-44487 go-toolset 1.19.13-1 - Rebase to Go 1.19.13 CVE-2023-39325 CVE-2023-44487...
.NET 7.0 security update
7.0.112-1.0.1 - Update to .NET SDK 7.0.112 and Runtime 7.0.12 - Resolves: RHEL-11698...
python3.9 security update
3.9.16-1.2 - Security fix for CVE-2023-40217...
nginx:1.22 security update
1:1.22.1-1.0.1.1 - Resolves: RHEL-12728 - nginx:1.22/nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset AttackCVE-2023-44487...
nginx:1.20 security update
1:1.20.1-1.0.1.1 - Resolves: RHEL-12732 - nginx:1.20/nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
nginx security update
1:1.20.1-14.0.1.1 - Resolves: RHEL-12518 - nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
Unbreakable Enterprise kernel security update
5.4.17-2136.324.5.3 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1 - x86: KVM: SVM: always update the x2avic msr interception Maxim...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.2.el8 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.323.8.2.el7 - netfilter: nfnetlinkosf: avoid OOB read Wander Lairson Costa Orabug: 35824307 - netfilter: xtsctp: validate the flaginfo count Wander Lairson Costa Orabug: 35824307 - netfilter: xtu32: validate user space input Wander Lairson Costa Orabug: 35824307 - netfilter: ipset: ad...
python3.11 security update
3.11.2-2.2 - Security fix for CVE-2023-40217 Resolves: rhbz2235789...
python3.11 security update
3.11.2-2.2 - Security fix for CVE-2023-40217 Resolves: rhbz2235789...
busybox security and bug fix update
1:1.15.1-21.0.1 - Backport fix for CVE-2022-48174 Orabug: 35819048...
firefox security update
115.3.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.3.1-1 - Update to 115.3.1 115.3.0-1 - Update to 115.3.0 ESR 115.2.0-3 - Update to 115.2.0 ESR...
thunderbird security update
115.3.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 115.3.1-1 - Update to 115.3.1 build1 115.3.0-1 - Update to 115.3.0 115.2.1-5 - Update to 115.2.1...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.324.5.3.el8 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2.el8 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1.el8 - x86: KVM: SVM: always update the x2avic msr interception...
bind security update
32:9.11.4-26.P2.15 - Limit the amount of recursion possible in control channel CVE-2023-3341...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.324.5.3.el7 - Revert 'jbd2: Fix wrongly judgement for buffer head removing while doing checkpoint' Sherry Yang Orabug: 35896102 5.4.17-2136.324.5.2.el7 - fix breakage in dormdir Al Viro Orabug: 35885837 5.4.17-2136.324.5.1.el7 - x86: KVM: SVM: always update the x2avic msr interception...
Unbreakable Enterprise kernel security update
4.14.35-2047.530.5.1 - Revert 'rtnetlink: Reject negative ifindexes in RTMNEWLINK' Saeed Mirzamohammadi Orabug: 35896831 4.14.35-2047.530.5 - netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet.c Kyle Zeng Orabug: 35824288 CVE-2023-42753 - netfilter: xtu32: validate...
bind security update
32:9.16.23-11.2 - stack exhaustion in control channel code may lead to DoS CVE-2023-3341...
mariadb:10.5 security update
galera 26.4.14-1 - Rebase to 26.4.14 26.4.13-1 - Rebase to 26.4.13 26.4.12-1 - Rebase to 26.4.12 Judy mariadb 3:10.5.22-1 - Rebase to 10.5.22 3:10.5.21-1 - Rebase to version 10.5.21 3:10.5.20-2 - Use fortifylevel to disable fortification in debug builds 3:10.5.20-1 - Rebase to version 10.5.20...
glibc security update
2.34-60.0.3.7 - CVE-2023-4527: Stack read overflow in getaddrinfo in no-aaa mode 2234716. - CVE-2203-4806: potential use-after-free in getaddrinfo. - CVE-2023-4813: potential use-after-free in gaihinet. Reviewed by: Jose E. Marchesi 2.34-60.0.3 - CVE-2023-4911: tunables: Terminate immediately if...