8998 matches found
pcs security update
0.11.3-4.el91.3 - Fixed a vulnerability in pcs-web-ui-node-modules - Resolves: rhbz2179900...
httpd security update
2.4.6-98.0.3 - modproxy: approxyhttprequest to clear hop-by-hop first and fixup last CVE-2022-31813Orabug: 34381850 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690 2.4.6-98.0.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.7 - Resolves: 2177742 -...
gnutls security and bug fix update
3.6.16-6 - Fix x8664 CPU feature detection when AVX is not available 2131152 - Fix timing side-channel in TLS RSA key exchange 2162598...
tigervnc security update
1.12.0-5.2 - xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability Resolves: bz2180308...
tigervnc and xorg-x11-server security update
tigervnc 1.8.0-25 - CVE fix for: CVE-2023-1393 Resolves: bz2180291 xorg-x11-server 1.20.4-23 - CVE fix for: CVE-2023-1393 2180290...
pesign security update
0.112-27.0.1 - Update Oracle Linux test certificates Orabug: 31928433 - Apply pesigcheck-Mark-the-imported-certificate-as-trusted.patch Orabug: 31928433 - update Oracle Linux certificates Alexey Petrenko - remove obsoletes of pesign-rh-test-certs Orabug 29222572 0.112-27 - Deprecate...
Unbreakable Enterprise kernel security update
4.1.12-124.73.2 - netfilter: nftables: fix null deref due to zeroed list head Florian Westphal Orabug: 35181628 CVE-2023-1095 - sctp: fail if no bound addresses can be used for a given scope Marcelo Ricardo Leitner Orabug: 35181461 CVE-2023-1074 - HID: check empty reportlist in hidvalidatevalues...
Unbreakable Enterprise kernel security update
5.15.0-100.96.32 - crypto: Report fips module name and version for aarch64 Saeed Mirzamohammadi Orabug: 35225251 - uek-rpm: Enable RFC7919 config for aarch64 Saeed Mirzamohammadi Orabug: 35225251 5.15.0-100.96.31 - uek-rpm: Update linux-firmware dependency Somasundaram Krishnasamy Orabug: 3521342...
tigervnc security update
1.12.0-9.3 - xorg-x11-server: X.Org Server Overlay Window Use-After-Free Local Privilege Escalation Vulnerability Resolves: bz2180304 1.12.0-9.2 - Add sanity check when cleaning up keymap changes Resolves: bz2169962...
kernel security, bug fix, and enhancement update
5.14.0-162.22.21.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
openssl security update
1:1.1.1k-9 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed Use-after-free following BIOnewNDEF Resolves: CVE-2023-0215 - Fixed X.400 address type confusion in X.509 GeneralName Resolves: CVE-2023-0286...
openssl security update
1.0.2k-26fips - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1:1.0.2k-26 -...
openssl security update
1:1.0.2k-26 - Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName - Resolves: rhbz2176790...
thunderbird security update
102.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.9.0-1 - Update to 102.9.0 build1...
thunderbird security update
102.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.9.0-1 - Update to 102.9.0 build1...
openssl security update
1:1.1.1k-9 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed Use-after-free following BIOnewNDEF Resolves: CVE-2023-0215 - Fixed X.400 address type confusion in X.509 GeneralName Resolves: CVE-2023-0286...
thunderbird security update
102.9.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.9.0-1 - Update to 102.9.0 build1...
Unbreakable Enterprise kernel security update
5.4.17-2136.317.5.3 - udf: Fix file corruption when appending just after end of preallocated extent Jan Kara Orabug: 35192150 - selftests/ftrace: Fix bash specific '==' operator Masami Hiramatsu Google Orabug: 35192150 - net: Fix unwanted sign extension in netdevstatstostats64 Felix Riemann Orabu...
nss security and bug fix update
3.79.0-17 - fix consistency return errors. We shouldn't lock the FIPS token if the application asked for invalid DH parameters on on keygen. 3.79.0-16 - Add check for RSA PSS Salt required by FIPS - Update fipsalgorithms.sh according to the review. 3.79.0-15 - Fix CVE-2023-0767...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.317.5.3 - udf: Fix file corruption when appending just after end of preallocated extent Jan Kara Orabug: 35192150 - selftests/ftrace: Fix bash specific '==' operator Masami Hiramatsu Google Orabug: 35192150 - net: Fix unwanted sign extension in netdevstatstostats64 Felix Riemann Orabu...
firefox security update
102.9.0-3.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.9.0-3 - Update to 102.9.0 build2 102.9.0-2 - removed disable-openh264-download 102.9.0-1 - Update to 102.9.0 build1...
openssl security update
1:1.0.2k-26 - Fixes CVE-2023-0286 X.400 address type confusion in X.509 GeneralName - Resolves: rhbz2176790...
firefox security update
102.9.0-3.0.1 - Updated homepages to use https Orabug: 34648274 102.9.0-3 - Update to 102.9.0 build2 102.9.0-2 - removed disable-openh264-download 102.9.0-1 - Update to 102.9.0 build1...
nss security update
3.79.0-5 - fix CVE-2023-0767...
firefox security update
102.9.0-3.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.9.0-3 - Update to 102.9.0 build2 102.9.0-2 - removed disable-openh264-download 102.9.0-1 - Update...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.523.4.1 - mm: kvmalloc does not fallback to vmalloc for incompatible gfp flags Michal Hocko Orabug: 35164196 4.14.35-2047.523.4 - rds: ib: Keep IB MRs on cleanlist unless we are tearing down the pool Hakon Bugge Orabug: 34987235 - rds: ib: Add FRWR related statistics counters Hakon...
Unbreakable Enterprise kernel security update
4.14.35-2047.523.4.1 - mm: kvmalloc does not fallback to vmalloc for incompatible gfp flags Michal Hocko Orabug: 35164196 4.14.35-2047.523.4 - rds: ib: Keep IB MRs on cleanlist unless we are tearing down the pool Hakon Bugge Orabug: 34987235 - rds: ib: Add FRWR related statistics counters Hakon...
virt:kvm_utils2 security update
qemu-kvm 6.1.1-5-el8 - hw/pvrdma: Protect against buggy or malicious guest driver Yuval Shaia Orabug: 35064352 CVE-2022-1050 - hw/display/qxl: Assert memory slot fits in preallocated MemoryRegion Philippe Mathieu-Daude Orabug: 35060182 - hw/display/qxl: Avoid buffer overrun in qxlphys2virt...
Unbreakable Enterprise kernel security update
5.15.0-8.91.4.1 - uek-rpm: Add opbmc to core rpm Somasundaram Krishnasamy Orabug: 35157130 5.15.0-8.91.4 - selftests/vm: remove ARRAYSIZE define from individual tests Shuah Khan Orabug: 35088471 - selftests: Provide local define of cpuidcount Reinette Chatre Orabug: 35088471 - tools: fix ARRAYSIZ...
nss security update
3.79.0-11 - Fix CVE-2023-0767...
zlib security update
1.2.7-21 - Fix heap-based buffer over-read or buffer overflow in inflate in inflate.c - Resolves: CVE-2022-37434...
gnutls security and bug fix update
3.7.6-18 - Update gnutls-3.7.8-fips-pct-dh.patch to the upstream version 2168610 3.7.6-17 - Fix timing side-channel in TLS RSA key exchange 2162600 3.7.6-16 - fips: extend PCT to DH key generation 2168610 3.7.6-14 - fips: remove library path checking from FIPS integrity check 2149638 - fips: rena...
pesign security update
0.109-11.0.1 - RPM macro fix Petr Benes - updates for Oracle Linux test certificate Alexey Petrenko - update Oracle Linux certificates Alexey Petrenko 0.109-11 - Backport newer, deprecated pesign-authorize - Resolves: CVE-2022-3560...
samba security update
4.10.16-24.0.1 - Fix memory leak in nsswinbindinitgroupsdyn Orabug: 34228871 4.10.16-24 - related: 2154364 - Add additional patches for CVE-2022-38023 4.10.16-23 - resolves: 2154364 - Fix CVE-2022-38023...
kernel security and bug fix update
3.10.0-1160.88.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.88.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 2481767...
Unbreakable Enterprise kernel security update
4.1.12-124.72.2 - net: sched: atm: dont intepret cls results when asked to drop Jamal Hadi Salim Orabug: 34983616 CVE-2023-23455 - Bluetooth: L2CAP: Fix u8 overflow Sungwoo Kim Orabug: 34880763 CVE-2022-45934 4.1.12-124.72.1 - target: Invoke transportlunremovecmd to remove tmr form the list Gulam...
curl security update
7.61.1-25.el87.3 - fix HTTP multi-header compression denial of service CVE-2023-23916...
ol8addon security update
delve 1.9.1-1.0.1 - Bump version of delve from 1.8.3 to 1.9.1 1.8.3-1.0.1 - Bump version of delve from 1.7.2 to 1.8.3 1.7.2-1.0.1 - Bump version of delve from 1.6.0 to 1.7.2, enable aarch64 1.6.0-1.0.1 - Bump upstream version of delve from 1.5.0 to 1.6.0 1.5.0-2.0.1 - Cherry pick...
libjpeg-turbo security update
2.0.90-6 - Fix CVE-2021-46822 - Resolves: CVE-2021-46822...
pesign security update
115-6.0.1 - Update Oracle Linux test certificates Orabug: 31928433 115-6 - Fix chmod invocation - Resolves: CVE-2022-3560 115-5 - Deprecate pesign-authorize and drop ACL use - Resolves: CVE-2022-3560...
systemd security update
250-12.0.2.3 - Backport upstream pstore dmesg fix Orabug: 34868110 - Remove upstream references Orabug: 33995357 - Disable unprivileged BPF by default Orabug: 32870980 - udev rules: fix memory hot add and remove Orabug: 31310273 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 Orabug:...
openssl security update
3.0.1-47.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-47 - Fixed X.509 Name Constraints Read Buffer Overflow Resolves: CVE-2022-4203 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed...
pcs security update
0.11.3-4.el91.2 - Updated bundled rubygems: mustermann, rack, rackprotection, sinatra, tilt - Added license for rubygem ruby2keywords - Resolves: rhbz2159426...
kernel security and bug fix update
5.14.0-162.18.11.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
lua security update
5.4.4-2 - Resolves CVE-2021-43519 5.4.4-1 - Rebase to lua 5.4.4 - Resolves CVE-2021-44964 5.4.2-7 - Fix up CVE-2022-33099 patch 5.4.2-6 - Enable gating 5.4.2-5 - apply upstream fix for CVE-2022-33099...
vim security update
8.2.2637-20.0.1 - Remove upstream references Orabug: 31197557 2:8.2.2637-20 - CVE-2022-47024 vim: no check if the return value of XChangeGC is NULL 2:8.2.2637-19 - CVE-2022-1785 vim: Out-of-bounds Write - CVE-2022-1897 vim: out-of-bounds write in vimregsubboth in regexp.c - CVE-2022-1927 vim:...
tar security update
2:1.34-6 - Fix CVE-2022-48303 - Resolves: CVE-2022-48303...
git security update
1.8.3.1-24 - Fixes CVE-2022-23521 and CVE-2022-41903 - Resolves: 2162067...
httpd security and bug fix update
2.4.53-7.0.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.53-7.1 - Resolves: 2165975 - prevent sscg creating /dhparams.pem - Resolves: 2165970 - CVE-2006-20001 httpd: moddav: out-of-bounds read/write of zero byte - Resolves: 2165973 - CVE-2022-37436 httpd: modproxy: HTTP...
python-setuptools security update
53.0.0-10.1 - Security fix for CVE-2022-40897 Resolves: rhbz2158559...