8998 matches found
varnish:6 security update
varnish 6.0.8-2.1 - Resolves: 2142092 - CVE-2022-45060 varnish:6/varnish: Request Forgery Vulnerability 6.0.8-2 - Resolves: 2047650 - CVE-2022-23959 varnish:6/varnish: Varnish HTTP/1 Request Smuggling Vulnerability varnish-modules 0.15.0-6 - Related: 1982862 - rebuild for new varnish version...
krb5 security update
1.18.2-22.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1. - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140967...
Unbreakable Enterprise kernel security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
Unbreakable Enterprise kernel-container security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
python3.9 security update
3.9.14-1.1 - Fix for CVE-2022-42919 Resolves: rhbz2138705...
podman security, bug fix, and enhancement update
4.2.0-7.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-7 - update to the latest content of https://github.com/containers/podman/tree/v4.2.0-rhel https://github.com/containers/podman/commit/35c0df3 - Resolves: 2120436 2:4.2.0-6 - update to the latest...
device-mapper-multipath security update
0.8.7-12.1 - Add 0062-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz 2133998...
firefox security update
102.5.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-7 - Fix for expat CVE-2022-40674 and non functional webrtc...
keylime security update
6.5.1-1 - Update to 6.5.1 Resolves: CVE-2022-3500...
thunderbird security update
102.5.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.5.0-2 - Update to 102.5.0 build2 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-4 - Fix for expat CVE-2022-40674...
ol8addon security update
...
logrotate security update
3.18.0-7 - lockState: do not print error: when exit code is unaffected 2090926 3.18.0-6 - fix potential DoS from unprivileged users via the state file CVE-2022-1348 Mon Aug 09 2021 Mohan Boddu - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 3.18.0-4 - make renamecopy and...
libtirpc security update
1.3.3 - Rebased to libtirpc-1.3.3 bz 2118157...
skopeo security and bug fix update
2:1.9.2-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.2 - Related: 2061316 2:1.9.1-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.1 - Related: 2061316 2:1.9.0-1 - update to https://github.com/containers/skopeo/releases/tag/v1.9.0 - Related: 2061316...
xorg-x11-server security and bug fix update
1.20.11-11 - CVE fix for: CVE-2022-2319/ZDI-CAN-16062, CVE-2022-2320/ZDI-CAN-16070 Resolves: rhbz2108157, rhbz2108162...
yajl security update
...
firefox security update
102.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.5.0-1 - Update to 102.5.0 build1...
dhcp security and enhancement update
12:4.4.2-17.b1 - omshell: add support for hmac-sha512 algorithm 2083553 12:4.4.2-16.b1 - Fix for CVE-2021-25220...
mingw-glib2 security and bug fix update
2.70.1-2 - Rebuild for mingw-zlib update resolves: rhbz2116278...
python3.9 security, bug fix, and enhancement update
3.9.14-1 - Update to 3.9.14 - Security fixes for CVE-2020-10735 and CVE-2021-28861 Resolves: rhbz2120642, rhbz1834423, rhbz2128249 3.9.13-3 - Fix testgetciphers in testssl.py for FIPS mode Resolves: rhbz2058233 3.9.13-2 - Security fix for CVE-2015-20107 Resolves: rhbz2075390 3.9.13-1 - Update to...
wavpack security update
5.4.0-5 - CVE-2021-44269 wavpack: heap Out-of-bounds Read - Resolves: CVE-2021-44269...
dovecot security and enhancement update
1:2.3.16-7.0.1 - do not run systemd commands during leapp upgrade Orabug: 34680501 1:2.3.16-7 - fix possible privilege escalation when similar master and non-master passdbs are used 2106232 1:2.3.16-6 - fix possible nonzero return value of postinst script2053368 1:2.3.16-5 - workaround sysuers...
libguestfs security, bug fix, and enhancement update
1.48.4-2.0.1 - Add btrfs-progs to the packages installed in the appliance Orabug: 34137448 - Replace upstream references from a description tag - Fix build on Oracle Linux Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.48.4-2 - Rebase to new stable branch version 1.48.4 resolve...
swtpm security and bug fix update
0.7.0-3.20211109gitb79fd91 - Disable OpenSSL FIPS mode to avoid libtpms failures Resolves: rhbz2090219 0.7.0-2.20211109gitb79fd91 - Add fix for CVE-2022-23645. Resolves: rhbz2056518...
rsync security and bug fix update
3.2.3-18 - Resolves: 2111177 - remote arbitrary files write inside the directories of connecting peers 3.2.3-17 - Resolves: 2116669 - zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field 3.2.3-16 - Related: 2081296 - Adding ci.fmf for...
hsqldb security update
1:1.8.1.3-15 - Fix possible remote code execution vulnerability - Resolves: CVE-2022-41853...
webkit2gtk3 security and bug fix update
...
samba security, bug fix, and enhancement update
4.16.4-101 - resolves: rhbz2121317 - Do not require samba package in python3-samba 4.16.4-100 - Rebase to version 4.16.4 - resolves: rhbz2108332 - Fix CVE-2022-32742 4.16.3-101 - related: rhbz2077487 - Rebase Samba to 4.16.3 - resolves: rhbz2097655 - The pcap background queue process should not b...
ignition security, bug fix, and enhancement update
2.14.0-1 - New release - Add ignition-apply symlink - Add ignition-rmcfg symlink and ignition-delete-config.service 2.13.0-2 - Rename -validate-nonlinux subpackage to -validate-redistributable - Add static Linux binaries to -redistributable - Fix macro invocation in comment - Avoid kernel lockdow...
dnsmasq security and bug fix update
2.85-5 - Prevent endless loop in forwardquery 2120711 2.85-4 - Prevent use after free in dhcp6norelay CVE-2022-0934...
kernel security, bug fix, and enhancement update
5.14.0-162.6.11.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
mutt security update
5:2.2.6-1 - Rebase to upstream version 2.2.6 Resolves: CVE-2022-1328...
grafana-pcp security update
3.2.0-3 - bump NVR...
qemu-kvm security, bug fix, and enhancement update
7.0.0-13 - kvm-i386-reset-KVM-nested-state-upon-CPU-reset.patch bz2117546 - kvm-i386-do-kvmputmsrfeaturecontrol-first-thing-when.patch bz2117546 - Resolves: bz2117546 RHEL9.1 Guests in VMX root operation fail to reboot with QEMUs systemreset command 7.0.0-12 -...
speex security update
1.2.0-11 - CVE-2020-23903 speex: divide by zero in readsamples via crafted WAV file - Resolves: CVE-2020-23903...
httpd security, bug fix, and enhancement update
2.4.53-7.0.1 - Replace index.html with Oracles index page oracleindex.html. 2.4.53-7 - Resolves: 2094997 - CVE-2022-26377 httpd: modproxyajp: Possible request smuggling - Resolves: 2097032 - CVE-2022-28615 httpd: out-of-bounds read in apstrcmpmatch - Resolves: 2098248 - CVE-2022-31813 httpd:...
pcs security update
0.11.3-4 - Fixed ruby socket permissions - Resolves: rhbz2116841 0.11.3-3 - Fixed booth ticket mode value case insensitive - Fixed booth sync check whether /etc/booth exists - Resolves: rhbz2026725 rhbz2058243 0.11.3-2 - Fixed 'pcs resource restart' traceback - Resolves: rhbz2102663 0.11.3-1 -...
openjpeg2 security update
2.4.0-7 - Fix CVE-2022-1122...
runc security update
4:1.1.4-1 - update to https://github.com/opencontainers/runc/releases/tag/v1.1.4 - Related: 2061316...
protobuf security update
3.14.0-13 - Rebuilt for test fixes 3.14.0-12 - Rebuilt for test fixes 3.14.0-11 - Applied patch for for CVE-2021-22570 2055641...
flac security update
1.3.3-10 - handle end-of-stream when encoding with verification CVE-2021-0561...
buildah security and bug fix update
1.27.0-2.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 1:1.27.0-2 - fix CVE-2022-2990 - Related: 2061316 1:1.27.0-1 - update to https://github.com/containers/buildah/releases/tag/v1.27.0 - Related: 2061316 1:1.26.4-2 - add buildah-tutorial to test subpackage -...
mingw-zlib security update
1.2.12-2 - Fix changelog Related: rhbz2068371 1.2.12-1 - Bump version to 1.2.12 to fix CVE-2018-25032 Related: rhbz2068371...
podman security and bug fix update
2:4.2.0-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-3 - fix dependency in test subpackage - Related: 2061316 2:4.2.0-2 - readd catatonit - Related: 2061316 2:4.2.0-1 - update to latest content of...
fribidi security update
1.0.10-6.el9.2 - Security fixes for CVE-2022-25308, CVE-2022-25309, CVE-2022-25310 Resolves: rhbz2050086, rhbz2050069, rhbz2050063...
poppler security and bug fix update
21.01.0-13 - Dont run out of file for Hints - Rebuild for 2096451 - Resolves: 2090970, 2096451...
thunderbird security update
102.5.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.5.0-2 - Update to 102.5.0 build2 102.5.0-1 - Update to 102.5.0 build1...
thunderbird security update
102.5.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.5.0-2 - Update to 102.5.0 build2 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1...
firefox security update
102.5.0-1.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-7 - Fix for expat CVE-2022-40674 and non...
grafana security, bug fix, and enhancement update
7.5.15-3 - resolve CVE-2022-1962 golang: go/parser: stack exhaustion in all Parse functions - resolve CVE-2022-1705 golang: net/http: improper sanitization of Transfer-Encoding header - resolve CVE-2022-32148 golang: net/http/httputil: NewSingleHostReverseProxy - omit X-Forwarded-For not working ...