8998 matches found
python3.9 security update
3.9.14-1.2 - Security fix for CVE-2022-45061 Resolves: rhbz2144072...
php security update
8.0.27-1 - rebase to 8.0.27...
openssl security and bug fix update
3.0.1-47.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-47 - Fixed X.509 Name Constraints Read Buffer Overflow Resolves: CVE-2022-4203 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed...
sudo security update
1.8.6p3-29.0.4.el610.3 - Fixed Privilege escalation CVE-2023-22809 for sudoedit Orabug: 35037922...
pcs security update
0.10.14-5.0.1 - Replace HAM-logo.png with a generic one 0.10.14-5.el87.2 - Updated bundled rubygems: mustermann, rack, rackprotection, sinatra, tilt - Added license for rubygem ruby2keywords - Resolves: rhbz2159424...
python-setuptools security update
39.2.0-6.1 - Security fix for CVE-2022-40897 Resolves: rhbz2158559...
samba security update
4.16.4-4.0.1 - Gluster volumes not accessible via Samba due to missing samba-vfs-glusterfs in OL8 Orabug: 30205755 4.16.4-4 - related: rhbz2154369 - Add additional patch for CVE-2022-38023 4.16.4-3 - resolves: rhbz2154369 - Fix CVE-2022-38023 4.16.4-2 - resolves: rhbz2120956 - Do not require samb...
tar security update
1.30-6.1 - Fix CVE-2022-48303 - Resolves: CVE-2022-48303...
webkit2gtk3 security update
2.36.7-1.2 - Add patch for CVE-2023-23529 Resolves: 2170007...
php:8.0 security update
php 8.0.27-1 - rebase to 8.0.27...
kernel security and bug fix update
4.18.0-425.13.17.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
systemd security and bug fix update
239-68.0.2 - Backport upstream pstore dmesg fix Orabug: 34850699 - Standardize ioctl BTRFSIOCQGROUPCREATE check and return -ENOTCONN, if quota is not enabled Orabug: 34694253 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev...
python3 security update
3.6.8-48.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-48.1 - Security fixes for CVE-2020-10735, CVE-2021-28861 and CVE-2022-45061 Resolves: rhbz1834423, rhbz2120642, rhbz2144072...
httpd:2.4 security and bug fix update
httpd 2.4.37-51.0.1.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-51.1 - Resolves: 2165967 - prevent sscg creating /dhparams.pem - Resolves: 2165976 - CVE-2006-20001 httpd: moddav: out-of-bounds read/write of zero...
webkit2gtk3 security update
2.36.7-1.2 - Add patch for CVE-2023-23529 Resolves: 2170000...
firefox security update
102.8.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
thunderbird security update
102.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
firefox security update
102.8.0-2.0.1 - Updated homepages to use https Orabug: 34648274 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
firefox security update
102.8.0-2.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
thunderbird security update
102.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
thunderbird security update
102.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.8.0-2 - Update to 102.8.0 build2 102.8.0-1 - Update to 102.8.0 build1...
squid security update
7:4.15-3.0.3.1 - Add libtool-ltdl to squid Requires: Orabug: 34992040 - 7:4.15-3.0.1.1 - Obsolete squid-sysvinit Jira: OLDIS-20090 7:4.15-3.1 - Resolves: 2100782 - CVE-2021-46784 squid:4/squid: DoS when processing gopher server responses 7:4.15-3 - Resolves: 1941506 - CVE-2021-28116 squid:4/squid...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.316.7 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001045 5.4.17-2136.316.6 - block: Change the granularity of io ticks from ms to ns Gulam Mohamed Orabug: 34780807 - powercap: intelrapl: support new layout of Psys PowerLimit...
Unbreakable Enterprise kernel security update
5.4.17-2136.316.7 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001045 5.4.17-2136.316.6 - block: Change the granularity of io ticks from ms to ns Gulam Mohamed Orabug: 34780807 - powercap: intelrapl: support new layout of Psys PowerLimit...
Unbreakable Enterprise kernel security update
5.15.0-7.86.6.1 - net/rds: Delegate fan-out to a background worker Gerd Rausch Orabug: 35051226 5.15.0-7.86.6 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001044 - rds: ib: Make sure messages that errors out also get unmapped Hakon Bugge...
Unbreakable Enterprise kernel security update
4.14.35-2047.522.3 - ALSA: pcm: oss: Fix race at SNDCTLDSPSYNC Sasha Levin Orabug: 34653896 CVE-2022-3303 - net/rds: Fill in rdsexthdrsize gaps Gerd Rausch Orabug: 34979172 - net/rds: Trigger rdssendhsping more than once Gerd Rausch Orabug: 34607787 - Revert 'RDS: TCP: Track peer's connection...
Unbreakable Enterprise kernel-container security update
5.15.0-7.86.6.1 - net/rds: Delegate fan-out to a background worker Gerd Rausch Orabug: 35051226 5.15.0-7.86.6 - runtime revert of virtionet: Stripe queue affinities across cores. Konrad Rzeszutek Wilk Orabug: 35001044 - rds: ib: Make sure messages that errors out also get unmapped Hakon Bugge...
krb5 security update
1.10.3-65.0.1 - Fix integer overflows in PAC parsing CVE-2022-42898 Orabug: 34843511...
tigervnc and xorg-x11-server security update
tigervnc 1.8.0-24 - CVE fix for: CVE-2023-0494 Resolves: bz2166532 xorg-x11-server 1.20.4-22 - CVE fix for: CVE-2023-0494 2166513...
hsqldb security update
1:1.8.0.10-12.0.1 - Fix possible remote code execution vulnerability CVE-2022-41853Orabug: 34820687...
tigervnc security update
1.12.0-9 - xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation Resolves: bz2167057...
tigervnc security update
1.12.0-5 - xorg-x11-server: DeepCopyPointerClasses use-after-free leads to privilege elevation Resolves: bz2167060...
virt:kvm_utils security update
libvirt 5.7.0-38.el8 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - qemu: Set default qdisc before setting bandwidth Michal...
libksba security update
1.5.1-6 - Fix for CVE-2022-47629 2161571...
libksba security update
1.3.5-9 - Fix for CVE-2022-47629 2161571...
thunderbird security update
102.7.1-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.7.1-2 - Update to 102.7.1 build2...
thunderbird security update
102.7.1-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.7.1-2 - Update to 102.7.1 build2...
git security update
2.31.1-3 - Fixes CVE-2022-23521 and CVE-2022-41903 - Tests: try harder to find open ports for apache, git, and svn - Resolves: 2162069...
thunderbird security update
102.7.1-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.7.1-2 - Update to 102.7.1 build2...
Unbreakable Enterprise kernel security update
4.1.12-124.71.3 - USB: core: Prevent nested device-reset calls Alan Stern Orabug: 34951641 CVE-2022-4662 - Bluetooth: L2CAP: Fix accepting connection request for invalid SPSM Luiz Augusto von Dentz Orabug: 34833307 CVE-2022-42896 CVE-2022-42896 - Bluetooth: L2CAP: Introduce proper defines for PSM...
git security update
2.31.1-3 - Fixes CVE-2022-23521 and CVE-2022-41903 - Tests: try harder to find open ports for apache, git, and svn - Resolves: 2162063...
libksba security update
1.3.0-7 - Fix for CVE-2022-47629 2161571...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.362.b09-2 - Update cacerts patch to fix OPENJDK-1433 SecurityManager issue - Update to shenandoah-jdk8u352-b09 GA - Update release notes for shenandoah-8u352-b09. - Resolves: rhbz2163595 1:1.8.0.362.b08-2 - Update to shenandoah-jdk8u352-b08 GA - Update release notes for...
systemd security update
250-12.0.2.el91.1 - Backport upstream pstore dmesg fix Orabug: 34868110 - Remove upstream references Orabug: 33995357 - Disable unprivileged BPF by default Orabug: 32870980 - udev rules: fix memory hot add and remove Orabug: 31310273 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 Orabug...
go-toolset:ol8 security and bug fix update
golang 1.18.9-1 - Update to Go 1.18.9 - Add big-endian.patch - Increase GOTESTTIMEOUTSCALE due to a Brew issue - Add do-not-reuse-far-trampolines.patch - Resolves: rhbz2149313 1.18.7-2 - Fix version mismatch from previous rebase - Related: rhbz2136719 1.18.7-1 - Update to Go 1.18.7 - Resolves:...
thunderbird security update
102.7.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.7.1-1 - Update to 102.7.1 build1 102.7.0-1 - Update to 102.7.0 build1...
thunderbird security update
102.7.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.7.1-1 - Update to 102.7.1 build1 102.7.0-1 - Update to 102.7.0 build1...
java-1.8.0-openjdk security and bug fix update
1.8.0.362.b09-2.0.1 - Replace upstream references Orabug: 34340145 1:1.8.0.362.b09-2 - Update cacerts patch to fix OPENJDK-1433 SecurityManager issue - Update to shenandoah-jdk8u352-b09 GA - Update release notes for shenandoah-8u352-b09. - Resolves: rhbz2163594 1:1.8.0.362.b08-2 - Update to...
grub2 security update
2.02-142.0.3.el87.1 - Fix CVE-2022-3775, CVE-2022-2601 Orabug: 34867710 - Bump SBAT metadata for grub to 3 Orabug: 34871758 - Enable signing on aarch64 - Don't try to switch to a BLS config if GRUBENABLEBLSCFG is already set Javier Martinez Canillas Orabug: 34375996 - Enable back btrfs module by...