8998 matches found
c-ares security update
1.13.0-6.1 - Resolves: rhbz2209516 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service rhel-8.8.0.z...
nodejs security update
1:16.19.1-2 - Update bundled c-ares to 1.19.1 Resolves: CVE-2023-31124 CVE-2023-31130 CVE-2023-31147 CVE-2023-32067 1:16.19.1-1 - Rebase to 16.19.1 - Resolves: rhbz2153714 - Resolves: CVE-2023-23918 CVE-2023-23919 CVE-2023-23936 CVE-2023-24807 CVE-2023-23920 - Resolves: CVE-2022-25881 CVE-2022-49...
firefox security update
102.12.0-1.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.12.0-1 - Update to 102.12.0 build1...
firefox security update
102.12.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.12.0-1 - Update to 102.12.0 build1...
c-ares security update
1.17.1-5.1 - Resolves: rhbz2209519 - CVE-2023-32067 c-ares: 0-byte UDP payload Denial of Service rhel-9.2.0.z...
grub2 security update
2.06-46.0.4.el91.3 - Bump SBAT metadata for grub to 3 Orabug: 34872719 - Fix CVE-2022-3775 Orabug: 34871953 - Enable signing for aarch64 EFI - Fix signing certificate names - Enable back btrfs grub module for EFI pre-built image Orabug: 34360986 - Replaced bugzilla.oracle.com references Orabug:...
Unbreakable Enterprise kernel security update
5.15.0-102.110.5 - RISC-V: Fix up a cherry-pick warning in setupvmfinal Alexandre Ghiti - Revert 'Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work' Liu Jian - riscv: mm: remove redundant parameter of createfdtearlypagetable Song Shuai - kernfs: change...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.320.7.el7 - selftests: fibtests: mute cleanup error message Po-Hsu Lin - KVM: arm64: PMU: Align chained counter implementation with architecture pseudocode Marc Zyngier Orabug: 35449815 - KVM: arm64: Filter out v8.1+ events on v8.0 HW Marc Zyngier Orabug: 35449815 - KVM: arm64: Add...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.320.7.el8 - selftests: fibtests: mute cleanup error message Po-Hsu Lin - KVM: arm64: PMU: Align chained counter implementation with architecture pseudocode Marc Zyngier Orabug: 35449815 - KVM: arm64: Filter out v8.1+ events on v8.0 HW Marc Zyngier Orabug: 35449815 - KVM: arm64: Add...
thunderbird security update
102.12.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.12.0-1 - Update to 102.12.0 build1...
python3 security update
3.6.8-19.0.1 - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-19 - Security fix for CVE-2023-24329 - Fix the test suite support for Expat =...
python security update
2.7.5-93.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-93 - Fix for CVE-2023-24329 Resolves: rhbz2173917...
firefox security update
102.11.0-2.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.11.0-2 - Update to 102.11.0 build2 102.11.0-1 - Update to 102.11.0 build1...
emacs security update
1:24.3-23.1 - Fix htmlfontify.el command injection vulnerability 2175177...
Unbreakable Enterprise kernel security update
4.1.12-124.75.3 - net: sched: schqfq: prevent slab-out-of-bounds in qfqactivateagg Gwangun Jung Orabug: 35354791 CVE-2023-2248 4.1.12-124.75.2 - prlimit: doprlimit needs to have a speculation check Greg Kroah-Hartman Orabug: 35354303 CVE-2023-0458 - kernel/sys.c: fix potential Spectre v1 issue...
webkit2gtk3 security update
2.38.5-1.2 - Add patch for CVE-2023-28204 Resolves: 2209747 - Add patch for CVE-2023-32373 Resolves: 2209730...
cups-filters security update
1.28.7-11.0.1 - header/footer not being printed in banner page. Orabug: 28265099 [email protected] - Fixes Orabug: 29163824 source indentation not following convention [email protected] 1.28.7-11.1 - CVE-2023-24805 cups-filters: remote code execution in cups-filters, beh CUPS backend...
cups-filters security update
1.20.0-29.0.1 - header/footer not being printed in banner page. Orabug: 28265099 [email protected] - Fixes Orabug: 29163824 source indentation not following convention [email protected] 1.20.0-29.2 - CVE-2023-24805 cups-filters: remote code execution in cups-filters, beh CUPS backend...
webkit2gtk3 security update
2.38.5-1.4 - Add patch for CVE-2023-28204 Resolves: 2209744 - Add patch for CVE-2023-32373 Resolves: 2209727...
istio security update
istio 1.15.7-1 - Added Oracle specific files for 1.15.7-1 kubernetes 1.24.8-2 - libct/cg: add misc controller to v1 drivers upstream runc patch 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.12-6 - Updated the CVE ID's in Istio-1.15.7 changelog entry 1.5.12-5 - Bug fix -...
istio security update
istio 1.15.7-1 - Added Oracle specific files for 1.15.7-1 kubernetes 1.24.8-2 - libct/cg: add misc controller to v1 drivers upstream runc patch 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.12-6 - Updated the CVE ID's in Istio-1.15.7 changelog entry 1.5.12-5 - Bug fix -...
istio security update
istio 1.16.4-1 - Added Oracle specific files for 1.16.4-1 kubernetes 1.25.7-2 - libct/cg: add misc controller to v1 drivers upstream runc patch olcne 1.6.1-9 - Updated the CVE ID's in Istio-1.16.4 changelog entry 1.6.1-8 - Update Istio config to include 1.15.7 to support upgrade from 1.5.x to 1.6...
olcne security update
1.6.1-9 - Updated the CVE ID's in Istio-1.16.4 changelog entry 1.6.1-8 - Update Istio config to include 1.15.7 to support upgrade from 1.5.x to 1.6.x 1.6.1-7 - Bugfix:Append a slash in oci-instance-metada query url 1.6.1-6 - Fixed helm installation in OLCNE upgrade 1.6.1-5 - Deprecate...
virt:kvm_utils2 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libtpms libvirt libvirt-dbus libvirt-python nbdkit netcf perl-Sys-Virt qemu-kvm 6.1.1-6-el8 - CVE-2023-1544 is not applicable to Oracle QEMU 6.1.1 Karl Heubaum Orabug: 35305727 CVE-2023-1544 - virtio-gpu: do not byteswap padding Paolo Bonzini...
istio security update
istio 1.16.4-1 - Added Oracle specific files for 1.16.4-1 kubernetes 1.25.7-2 - libct/cg: add misc controller to v1 drivers upstream runc patch olcne 1.6.1-9 - Updated the CVE ID's in Istio-1.16.4 changelog entry 1.6.1-8 - Update Istio config to include 1.15.7 to support upgrade from 1.5.x to 1.6...
olcne security update
1.6.1-9 - Updated the CVE ID's in Istio-1.16.4 changelog entry 1.6.1-8 - Update Istio config to include 1.15.7 to support upgrade from 1.5.x to 1.6.x 1.6.1-7 - Bugfix:Append a slash in oci-instance-metada query url 1.6.1-6 - Fixed helm installation in OLCNE upgrade 1.6.1-5 - Deprecate...
qemu security update
15:4.2.1-26.el7 - migration: check magic value for deciding the mapping of channels manish.mishra Orabug: 34735462 - io: Add support for MSGPEEK for socket channel manish.mishra Orabug: 34735462 - migration: Move channel setup out of postcopytryrecover Peter Xu Orabug: 34735462 - vdpa: commit all...
kernel security and bug fix update
4.18.0-477.13.18.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
pcs security update
0.10.15-4.0.1.el88.1 - Replace HAM-logo.png with a generic one 0.10.15-4.el88.1 - Fix displaying differences between configuration checkpoints in pcs config checkpoint diff command - Fix pcs stonith update-scsi-devices command which was broken since Pacemaker-2.1.5-rc1 - Updated bundled rubygem...
go-toolset:ol8 security update
delve 1.9.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.9.1-1 - Rebase to 1.9.1 - Related: rhbz2131026 golang 1.19.9-1 - Rebase to Go 1.19.9 - Resolves: rhbz2204473 go-toolset 1.19.9-1 - Rebase to Go 1.19.9 - Resolves: rhbz2204473...
go-toolset:ol8 security and bug fix update
delve 1.9.1-1.0.1 - Disable DWARF compression which has issues Alex Burmashev 1.9.1-1 - Rebase to 1.9.1 - Related: rhbz2131026 golang 1.19.6-1 - Rebase to Go 1.19.6 - Resolves: rhbz2174430 1.19.4-2 - Fix memory leaks in EVPsign,verifyraw - Resolves: rhbz2132767 go-toolset 1.19.6-1 - Rebase to Go...
curl security and bug fix update
7.61.1-30.el88.2 - sftp: do not specify OAPPEND when not in append mode 2187717 7.61.1-30.el88.1 - fix FTP too eager connection reuse CVE-2023-27535...
mysql:8.0 security, bug fix, and enhancement update
mecab 0.996-2.12 - Bump version for 'mysql' module rebuild We are moving the 'mecab-devel' RPM from the 'buildroot' repo to the 'AppStream' repo - Resolves: 2180411 mecab-ipadic mysql 8.0.32-1 - Update to MySQL 8.0.32 8.0.31-1 - Update to MySQL 8.0.31...
go-toolset and golang security update
golang 1.19.9-2 - Fix TestEncryptOAEP and TLS failures in FIPS mode - Resolves: rhbz2204476 1.19.9-1 - Rebase to Go 1.19.9 - Resolves: rhbz2204476 go-toolset 1.19.9-1 - Update to Go 1.19.9 - Related: rhbz2204476...
emacs security update
1:26.1-10.2 - Bump release 1:26.1-10.1 - Bump release 1:26.1-10 - Fix ob-latex.el command injection vulnerability 2180586 1:26.1-9 - Fix MH-E mail composition with GNU Mailutils 1991156 1:26.1-8 - Fix ctags local command execute vulnerability 2149386...
libreswan security update
4.9-3.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.9-3 - Fix CVE-2023-30570: Malicious IKEv1 Aggressive Mode packets can crash libreswan - Resolves: rhbz2187179...
ctags security update
5.8-23 - CVE-2022-4515, arbitrary code execution issue Resolves: rhbz2153787...
sysstat security and bug fix update
11.7.3-9.0.1 - add mpstat -H option to also display physically hotplugged vCPUs Orabug: 34683071 11.7.3-9 - add -f flag to force fdatasync after sa file update 2153192 11.7.3-8 - arithmetic overflow in allocatestructures on 32 bit systems CVE-2022-39377...
dhcp security and bug fix update
12:4.3.6-49 - Fix for CVE-2022-2928 - Fix for CVE-2022-2929 - send back dhcp6.vendor-opts again 2142024...
net-snmp security and bug fix update
5.8-27.0.1 - fix error index value when snmpget is used a proxy pass Orabug: 34905643 1:5.8-27 - fix memory leak due of proc file creating 2105957 - fix CVE-2022-44792 and CVE-2022-44793 2141901 and 2141905 - fix memory leak when ipv6 disable set to 1 2151537 - fix proxy timeout issue 2160723...
thunderbird security update
102.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.11.0-1 - Update to 102.11.0 build1...
gcc-toolset-12-binutils security update
2.38-17 - Fix an illegal memory access parsing a corrupt ELF file. 2153220...
git-lfs security and bug fix update
3.2.0-2 - Rebuild with Golang-1.19.4 - Resolves: 2163744 3.2.0-1 - Update to version 3.2.0 - Resolves: 2139382 2.13.3-2 - Define %gobuild macro with proper ldflags - Related: rhbz2021549 2.13.3-1 - Update to version 2.13.3 - Fixed round brackets in Provides - Moved manpages.tgz to look-a-side cac...
edk2 security update
20220126gitbb1bba3d77-4 - edk2-openssl-update.patch bz2164531 bz2164543 bz2164558 bz2164581 - edk2-rh-openssl-add-crypto-bn-rsasupmul.c-to-file-list.patch bz2164531 bz2164543 bz2164558 bz2164581 - Resolves: bz2164531 CVE-2023-0286 edk2: openssl: X.400 address type confusion in X.509 GeneralName...
wayland security, bug fix, and enhancement update
1.21.0-1 - wayland 1.21.0 rhbz2137625...
webkit2gtk3 security and bug fix update
2.38.5-1 - Update to 2.38.5 Related: 2127468 2.38.4-1 - Update to 2.38.4 Related: 2127468 2.38.3-1 - Update to 2.38.3 Related: 2127468 2.38.2-1 - Update to 2.38.2 Related: 2127468 2.38.1-2 - Fix crashes on aarch64 Enable WPE renderer Related: 2127468 2.38.1-1 - Update to 2.38.1 Related: 2127468...
xorg-x11-server security and bug fix update
1.20.11-15 - Rebuild for the missing debuginfo Related: rhbz2169522 1.20.11-14 - Fix xvfb-run script with --listen-tcp Resolves: rhbz2169522 1.20.11-13 - Fix CVE-2023-0494 2166977 1.20.11-12 - Follow-up fix for CVE-2022-46340 2151774 1.20.11-11 - CVE fix for: CVE-2022-4283 2151799, CVE-2022-46340...
poppler security update
20.11.0-6 - Check for overflow when computing number of symbols - in JBIG2 text region - Resolves: 2126361...
python27:2.7 security update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...
libtar security update
1.2.20-17 - fix use-after-free bugs introduced by incorrect memleak fixes CVE-2021-33640 1.2.20-16 - fix memory leaks through gnulongname,link CVE-2021-33645 CVE-2021-33646 - fix out-of-bounds read in gnulongname,link CVE-2021-33643 CVE-2021-33644...