9182 matches found
bcel security update
6.4.1-9 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
virt:kvm_utils security update
hivex libguestfs 1.40.2-28.0.4 - v2v: Cope with libvirt vpx/esx driver which does not set Orabug: 34026544 1.40.2-28.0.3 - virt-v2v: Specify backing file format to qemu-img command Orabug: 33906330 - Require 'kernel-uek' RPM for installation instead of 'kernel' Orabug: 33986812 1.40.2-28.0.2 -...
firefox security update
102.6.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
firefox security update
102.6.0-1.0.1 - Updated homepages to use https Orabug: 34648274 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
nodejs:16 security, bug fix, and enhancement update
nodejs 1:16.18.1-3 - Update sources of undici WASM blobs Resolves: rhbz2151546 1:16.18.1-2 - Record CVE references already addressed in this or previous upstream versions Resolves: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 1:16.18.1-1 - Rebase + CVE fixes - Resolves: 2142806 -...
firefox security update
102.6.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 102.6.0-1 - Update to 102.6.0 build1 102.5.0-2 - Added libwebrtc screencast patch for newer features...
thunderbird security update
102.6.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 102.6.0-2 - Update to 102.6.0 build2 102.6.0-1 - Update to 102.6.0 build1 102.5.0-3 - Use openssl for the librnp crypto backend to enable the openpgp encryption...
prometheus-jmx-exporter security update
0.12.0-9 - Fix CVE-2022-1471 by using SafeConstructor...
bcel security update
0:5.2-19 - Fix arbitrary bytecode produced via out-of-bounds writing - Resolves: CVE-2022-42920...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.520.3.1.el7 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883027 CVE-2022-4378 - hugetlbfs: don't delete error page from pagecache James...
Unbreakable Enterprise kernel security update
5.4.17-2136.314.6.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883034 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883034 CVE-2022-4378 5.4.17-2136.314.6.1 - RDMA/uverbs: Move IBEVENTDEVICEFATAL to...
Unbreakable Enterprise kernel security update
4.1.12-124.69.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883048 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883048 CVE-2022-4378...
Unbreakable Enterprise kernel security update
5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...
Unbreakable Enterprise kernel-container security update
5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.314.6.2.el7 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883034 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883034 CVE-2022-4378 5.4.17-2136.314.6.1.el7 - RDMA/uverbs: Move IBEVENTDEVICEFATAL ...
Unbreakable Enterprise kernel security update
4.14.35-2047.520.3.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883027 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883027 CVE-2022-4378 - hugetlbfs: don't delete error page from pagecache James Houghton...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-1 - Rebase + CVEs - Resolves: 2142809 - Resolves: 2142830, 2142856 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-2 - Update version of bundled histogram 1:18.12.1-1 - Rebase to version 18.12.1 Resolves: rhbz2125580 CVE-2022-43548 CVE-2022-3517 1:18.9.1-1 - Rebase to version 18.9.1 Resolves: CVE-2022-35255 CVE-2022-35256 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
Unbreakable Enterprise kernel security update
...
libvirt security update
libvirt 5.7.0-38.el7 - qemu: Don't report spurious errors from vCPU tid validation on hotunplug timeout Shaleen Bathla Orabug: 34826758 - security: fix SELinux label generation logic Daniel P. Berrange Orabug: 34773029 CVE-2021-3631 - spec: Require iproute-tc dependency for OL7 also Shaleen Bathl...
pki-core security update
10.5.18-24 - - RHEL 7.9 Batch Update 19: - - Bugzilla Bug 2107329 - CVE-2022-2414 pki-core: access to external entities when parsing XML can lead to XXE rhel-7.9.z ckelley, mharmsen - - RHCS 9.7 Batch Update 19: - - Bugzilla Bug 2107325 - CVE-2022-2414 pki-core: access to external entities when...
Unbreakable Enterprise kernel security update
4.1.12-124.69.5 - x86/smpboot: check cpuinitializedmask first after returning from schedule Dongli Zhang Orabug: 34798594 4.1.12-124.69.4 - btrfs: Remove BUGON as it is causing kernel to panic Rhythm Mahajan Orabug: 34840579 4.1.12-124.69.3 - btrfs: fix missing return for a non-void function...
spacewalk-backend spacewalk-java security update
spacewalk-backend 2.10.28-1.0.13 - Fix HTTP 500 and ORA-01830 on client scap report Orabug: 34823889 2.10.28-1.0.12 - Handle remote commands that return no output. Orabug: 32530545 2.10.28-1.0.11 - Make spacewalk-debug copy symlink target instead of the symlink itself. Orabug: 32514543...
varnish security update
6.6.2-2.1 - Resolves: 2142095 - CVE-2022-45060 varnish: Request Forgery Vulnerability...
dotnet7.0 security, bug fix, and enhancement update
7.0.100-0.5.rc2.0.1 - Set TargetRid based on os release major version, add OL arm64 RuntimeIdentifier Orabug: 34671152 7.0.100-0.5.rc2 - Add lldb as a build dependency - Related: RHBZ2134641 7.0.100-0.4.rc2 - Enable ppc64le builds - Related: RHBZ2134641 7.0.100-0.3.rc2 - Update to .NET 7 RC 2 -...
pcs security update
0.10.14-5.0.1 - Replace HAM-logo.png with a generic one 0.10.14-5 - Fixed ruby socket permissions - Resolves: rhbz2116838 0.10.14-4 - Fixed enable sbd from webui - Resolves: rhbz2117650 0.10.14-3 - Fixed pcs quorum device remove - Resolves: rhbz2115326 0.10.14-2 - Fixed booth ticket mode value ca...
kubernetes security update
kubernetes 1.22.16-1 - Added Oracle specific build files for Kubernetes - Add preBuildOL8Commands to Jenkinsfile kubernetes 1.23.14-1 - Added Oracle specific build files for Kubernetes kubernetes 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.8-4 - Fix 1.21 kubernetes versi...
kubernetes security update
kubernetes 1.22.16-1 - Added Oracle specific build files for Kubernetes - Add preBuildOL8Commands to Jenkinsfile kubernetes 1.23.14-1 - Added Oracle specific build files for Kubernetes kubernetes 1.24.8-1 - Added Oracle specific build files for Kubernetes olcne 1.5.8-4 - Fix 1.21 kubernetes versi...
krb5 security update
1.19.1-24.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.19.1-24 - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140970...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
kubernetes security update
kubernetes 1.21.14-3 - Addresses CVE-2022-3294 & CVE-2022-3162 1.21.14-2 - Fixed kubernetes-cni version. 1.21.14-1 - Addresses CVE-2022-3172 olcne 1.4.9-2 - Fix 1.21 kubernetes version to align with last upstream release 1.4.9-1 - Resolve kubernetes CVE-2022-3294 & CVE-2022-3162 for version 1.21...
krb5 security update
1.15.1-55.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360 1.15.1-55 - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140961...
varnish:6 security update
varnish 6.0.8-2.1 - Resolves: 2142092 - CVE-2022-45060 varnish:6/varnish: Request Forgery Vulnerability 6.0.8-2 - Resolves: 2047650 - CVE-2022-23959 varnish:6/varnish: Varnish HTTP/1 Request Smuggling Vulnerability varnish-modules 0.15.0-6 - Related: 1982862 - rebuild for new varnish version...
krb5 security update
1.18.2-22.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1. - Fix integer overflows in PAC parsing CVE-2022-42898 - Resolves: rhbz2140967...
Unbreakable Enterprise kernel-container security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
Unbreakable Enterprise kernel security update
5.15.0-4.70.5.2 - Revert 'sched: Remove the limitation of WFONCPU on wakelist if wakee cpu is idle' Samasth Norway Ananda Orabug: 34783367 5.15.0-4.70.5.1 - NFSv4: Fixes for nfs4inodereturndelegation Trond Myklebust Orabug: 34751176 5.15.0-4.70.5 - uek: kabi: update kABI files for new symbols Sae...
podman security, bug fix, and enhancement update
4.2.0-7.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.2.0-7 - update to the latest content of https://github.com/containers/podman/tree/v4.2.0-rhel https://github.com/containers/podman/commit/35c0df3 - Resolves: 2120436 2:4.2.0-6 - update to the latest...
device-mapper-multipath security update
0.8.7-12.1 - Add 0062-multipathd-ignore-duplicated-multipathd-command-keys.patch - Resolves: bz 2133998...
keylime security update
6.5.1-1 - Update to 6.5.1 Resolves: CVE-2022-3500...
python3.9 security update
3.9.14-1.1 - Fix for CVE-2022-42919 Resolves: rhbz2138705...
firefox security update
102.5.0-1.0.1 - Updated homepages to use https Orabug: 34648274 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-7 - Fix for expat CVE-2022-40674 and non functional webrtc...
thunderbird security update
102.5.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 102.5.0-2 - Update to 102.5.0 build2 102.5.0-1 - Update to 102.5.0 build1 102.4.0-1 - Update to 102.4.0 build1 102.3.0-4 - Fix for expat CVE-2022-40674...
ol8addon security update
...
openjpeg2 security update
2.4.0-7 - Fix CVE-2022-1122...
rsync security and bug fix update
3.2.3-18 - Resolves: 2111177 - remote arbitrary files write inside the directories of connecting peers 3.2.3-17 - Resolves: 2116669 - zlib: a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field 3.2.3-16 - Related: 2081296 - Adding ci.fmf for...
logrotate security update
3.18.0-7 - lockState: do not print error: when exit code is unaffected 2090926 3.18.0-6 - fix potential DoS from unprivileged users via the state file CVE-2022-1348 Mon Aug 09 2021 Mohan Boddu - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 3.18.0-4 - make renamecopy and...
pcs security update
0.11.3-4 - Fixed ruby socket permissions - Resolves: rhbz2116841 0.11.3-3 - Fixed booth ticket mode value case insensitive - Fixed booth sync check whether /etc/booth exists - Resolves: rhbz2026725 rhbz2058243 0.11.3-2 - Fixed 'pcs resource restart' traceback - Resolves: rhbz2102663 0.11.3-1 -...
poppler security and bug fix update
21.01.0-13 - Dont run out of file for Hints - Rebuild for 2096451 - Resolves: 2090970, 2096451...