8998 matches found
Unbreakable Enterprise kernel-container security update
5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...
sqlite security update
3.26.0-17 - Fixed CVE-2022-35737...
istio security update
istio 1.15.3-1 - Added Oracle specific files for 1.15.3-1 olcne 1.5.10-2 - Update istio to 1.15.3 to address Istio CVE-2022-392787 1.5.9-1 - Fix a regression during provisioning where arguments for the externalip restriction webhook are handled incorrectly 1.5.8-4 - Fix 1.21 kubernetes version to...
istio security update
istio 1.13.9-1 - Added Oracle specific files for 1.13.9-1 olcne 1.4.10-1 - Upgraded istio-1.13.7 to istio-1.13.9 to resolve Istio CVE-2022-39278...
istio security update
istio 1.13.9-1 - Added Oracle specific files for 1.13.9-1 olcne 1.4.10-1 - Upgraded istio-1.13.7 to istio-1.13.9 to resolve Istio CVE-2022-39278...
istio security update
istio 1.15.3-1 - Added Oracle specific files for 1.15.3-1 olcne 1.5.10-2 - Update istio to 1.15.3 to address Istio CVE-2022-39278...
xorg-x11-server security update
1.20.4-21 - Follow-up fix for CVE-2022-46340 2151775 1.20.4-20 - CVE fix for: CVE-2022-4283 2151800, CVE-2022-46340 2151775, CVE-2022-46341 2151780, CVE-2022-46342 2151787, CVE-2022-46343 2151790, CVE-2022-46344 2151797...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.21.1-2 - Apply upstream fix for CVE-2022-24999 Resolves: CVE-2022-24999 - Record CVEs fixed by current or previous upstream releases Resolves: CVE-2021-44906 1:14.21.1-1 - Rebase to version 14.21.1 Resolves: rhbz2129805 CVE-2022-43548 CVE-2022-3517...
Unbreakable Enterprise kernel security update
4.14.35-2047.521.4 - tcp: Tunables for TCP delayed ack min and max timers Venkat Venkatsubra Orabug: 34883100 4.14.35-2047.521.3 - Revert 'random: use expired timer rather than wq for mixing fast pool' Saeed Mirzamohammadi Orabug: 34918228 4.14.35-2047.521.2 - RDS/IB: Fix the misplaced counter...
Unbreakable Enterprise kernel security update
5.4.17-2136.315.5 - Revert 'xfs: Lower CIL flush limit for large logs' Sherry Yang Orabug: 34917369 - Revert 'xfs: Throttle commits on delayed background CIL push' Sherry Yang Orabug: 34917369 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369...
tigervnc security update
1.8.0-23 - Rebuild for xorg-x11-server CVEs Resolves: CVE-2022-4283 bz2154267 Resolves: CVE-2022-46340 bz2154261 Resolves: CVE-2022-46341 bz2154264 Resolves: CVE-2022-46342 bz2154262 Resolves: CVE-2022-46343 bz2154265 Resolves: CVE-2022-46344 bz2154266...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.521.4.el7 - tcp: Tunables for TCP delayed ack min and max timers Venkat Venkatsubra Orabug: 34883100 4.14.35-2047.521.3.el7 - Revert 'random: use expired timer rather than wq for mixing fast pool' Saeed Mirzamohammadi Orabug: 34918228 4.14.35-2047.521.2.el7 - RDS/IB: Fix the misplace...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.315.5 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369 5.4.17-2136.315.4 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888473 - uek-rpm: Add ptpkvm.ko to nano rpm Somasundaram Krishnasamy Orabug: 33487655 - block: fix RO...
webkit2gtk3 security update
2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153735...
webkit2gtk3 security update
2.36.7-1.1 - Add patch for CVE-2022-42856 Resolves: 2153738...
bcel security update
6.4.1-9 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
Unbreakable Enterprise kernel security update
4.1.12-124.70.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34882781 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34882781 CVE-2022-4378 - netfilter: nfconntrackirc: Fix forged IP logic David Leadbeater Orabu...
virt:kvm_utils security update
hivex libguestfs 1.40.2-28.0.4 - v2v: Cope with libvirt vpx/esx driver which does not set Orabug: 34026544 1.40.2-28.0.3 - virt-v2v: Specify backing file format to qemu-img command Orabug: 33906330 - Require 'kernel-uek' RPM for installation instead of 'kernel' Orabug: 33986812 1.40.2-28.0.2 -...
nodejs:16 security, bug fix, and enhancement update
nodejs 1:16.18.1-3 - Update sources of undici WASM blobs Resolves: rhbz2151546 1:16.18.1-2 - Record CVE references already addressed in this or previous upstream versions Resolves: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 1:16.18.1-1 - Rebase + CVE fixes - Resolves: 2142806 -...
firefox security update
102.6.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
firefox security update
102.6.0-1.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
firefox security update
102.6.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
prometheus-jmx-exporter security update
0.12.0-9 - Fix CVE-2022-1471 by using SafeConstructor...
bcel security update
0:5.2-19 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.520.3.1.el7 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883027 CVE-2022-4378 - hugetlbfs: don't delete error page from pagecache James...
Unbreakable Enterprise kernel security update
4.1.12-124.69.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883048 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883048 CVE-2022-4378...
Unbreakable Enterprise kernel security update
4.14.35-2047.520.3.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883027 CVE-2022-4378 - hugetlbfs: don't delete error page from pagecache James Houghton...
Unbreakable Enterprise kernel security update
5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...
Unbreakable Enterprise kernel security update
5.4.17-2136.314.6.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883034 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883034 CVE-2022-4378 5.4.17-2136.314.6.1 - RDMA/uverbs: Move IBEVENTDEVICEFATAL to...
Unbreakable Enterprise kernel-container security update
5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.314.6.2.el7 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883034 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883034 CVE-2022-4378 5.4.17-2136.314.6.1.el7 - RDMA/uverbs: Move IBEVENTDEVICEFATAL ...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-1 - Rebase + CVEs - Resolves: 2142809 - Resolves: 2142830, 2142856 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-2 - Update version of bundled histogram 1:18.12.1-1 - Rebase to version 18.12.1 Resolves: rhbz2125580 CVE-2022-43548 CVE-2022-3517 1:18.9.1-1 - Rebase to version 18.9.1 Resolves: CVE-2022-35255 CVE-2022-35256 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
Unbreakable Enterprise kernel security update
...
pki-core security update
10.5.18-24 - - RHEL 7.9 Batch Update 19: - - Bugzilla Bug 2107329 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE rhel-7.9.z ckelley, mharmsen - - RHCS 9.7 Batch Update 19: - - Bugzilla Bug 2107325 - CVE-2022-2414 pki-core: access to external entities when...
libvirt security update
libvirt 5.7.0-38.el7 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - spec: Require iproute-tc dependency for OL7 also Shaleen Bathl...
Unbreakable Enterprise kernel security update
4.1.12-124.69.5 - x86/smpboot: check cpuinitializedmask first after returning from schedule Dongli Zhang Orabug: 34798594 4.1.12-124.69.4 - btrfs: Remove BUGON as it is causing kernel to panic Rhythm Mahajan Orabug: 34840579 4.1.12-124.69.3 - btrfs: fix missing return for a non-void function...
spacewalk-backend spacewalk-java security update
spacewalk-backend 2.10.28-1.0.13 - Fix HTTP 500 and ORA-01830 on client scap report Orabug: 34823889 2.10.28-1.0.12 - Handle remote commands that return no output. Orabug: 32530545 2.10.28-1.0.11 - Make spacewalk-debug copy symlink target instead of the symlink itself. Orabug: 32514543...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
krb5 security update
1.19.1-24.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.19.1-24 - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140970...
varnish security update
6.6.2-2.1 - Resolves: 2142095 - CVE-2022-45060 varnish: Request Forgery Vulnerability...
kubernetes security update
kubernetes 1.22.16-1 - Added Oracle specific build files for Kubernetes - Add preBuildOL8Commands to Jenkinsfile kubernetes 1.23.14-1 - Added Oracle specific build files for Kubernetes kubernetes 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.8-4 - Fix 1.21 kubernetes versi...
pcs security update
0.10.14-5.0.1 - Replace HAM-logo.png with a generic one 0.10.14-5 - Fixed ruby socket permissions - Resolves: rhbz2116838 0.10.14-4 - Fixed enable sbd from webui - Resolves: rhbz2117650 0.10.14-3 - Fixed pcs quorum device remove - Resolves: rhbz2115326 0.10.14-2 - Fixed booth ticket mode value ca...
krb5 security update
1.15.1-55.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360 1.15.1-55 - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140961...
dotnet7.0 security, bug fix, and enhancement update
7.0.100-0.5.rc2.0.1 - Set TargetRid based on os release major version, add OL arm64 RuntimeIdentifier Orabug: 34671152 7.0.100-0.5.rc2 - Add lldb as a build dependency - Related: RHBZ2134641 7.0.100-0.4.rc2 - Enable ppc64le builds - Related: RHBZ2134641 7.0.100-0.3.rc2 - Update to .NET 7 RC 2 -...
kubernetes security update
kubernetes 1.22.16-1 - Added Oracle specific build files for Kubernetes - Add preBuildOL8Commands to Jenkinsfile kubernetes 1.23.14-1 - Added Oracle specific build files for Kubernetes kubernetes 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.8-4 - Fix 1.21 kubernetes versi...