8997 matches found
istio security update
istio 1.13.7-1 - Added Oracle specific files for 1.13.7-1 olcne 1.5.5-1 - Upgrade Istio from 1.13.5 to 1.13.7 to resolve the CVE-2022-31045 1.5.4-3 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over 1.5.4-2 - Istio CVE-2022-31045, CVE-2022-29225,...
open-vm-tools security update
11.0.5-3.0.1 - fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. - Created a new file 99-vmware-scsi-timeout.rules - Modified sp...
open-vm-tools security update
11.3.5-1.0.1.el90.1 - Fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. Orabug: 21819156 11.3.5-1.el90.1 -...
golang security update
1.18.5-1.0.1 - golang-1.18.5 package initial release - Reviewed-by: Jose E. Marchesi 1.18.4-1.0.1 - golang-1.18.4 package initial release - Reviewed-by: Jose E. Marchesi 1.18.3-1.0.1 - golang-1.18.3-1 package initial release - Add patch to skip ed25519vectors test that fetches a file from the...
open-vm-tools security update
11.3.5-1.0.1.el86.1 - Fix spaces in vmware udev rule for scsi devices Orabug: 24461968 - Fix vmware udev rule in 99-vmware-scsi-timeout.rules file. Orabug: 22815019 - Increase timeout for scsi devices on VMWare guests by adding a udev rule. Orabug: 21819156 11.3.5-1.el86.1 -...
golang security update
1.17.13-1.0.1 - golang-1.17.13 release - Update tarball and version number in specfile - Reviewed-by: Jose E. Marchesi 1.17.12-1.0.1 - golang-1.17.12-1 release - Update tarball and version number in specfile - Reviewed-by: Indu Bhagat 1.17.11-1.0.1 - golang-1.17.11-1 package initial release - Add...
Unbreakable Enterprise kernel security update
4.1.12-124.66.3 - fuse: fix pipe buffer lifetime for directio Miklos Szeredi Orabug: 33981149 CVE-2022-1011 - vt: drop old FONT ioctls Jiri Slaby Orabug: 34408794 CVE-2021-33656 - video: ofdisplaytiming.h: include errno.h Hsin-Yi Wang Orabug: 34408910 CVE-2021-33655 - fbcon: Disallow setting font...
pcs security update
0.10.12-6.0.1.el86.2 - Replace HAM-logo.png with a generic one 0.10.12-6.el86.2 - Fixed ruby socket permissions - Resolves: rhbz2116837...
pcs security update
0.11.1-10.el90.2 - Fixed ruby socket permissions - Resolves: rhbz2116839...
openssl security update
3.0.1-41.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-41 - Zeroize public keys as required by FIPS 140-3 Resolves: rhbz2115861 - Add FIPS indicator for HKDF Resolves: rhbz2118388 1:3.0.1-40 - Deal with DH keys in FIPS mode according FIPS-140-3 requirements Related: rhbz2115856 - Dea...
openssl security and bug fix update
3.0.1-41.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-41 - Zeroize public keys as required by FIPS 140-3 Resolves: rhbz2115861 - Add FIPS indicator for HKDF Resolves: rhbz2118388 1:3.0.1-40 - Deal with DH keys in FIPS mode according FIPS-140-3 requirements Related: rhbz2115856 - Dea...
systemd security update
239-58.0.1.4 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog...
php:7.4 security update
php 7.4.19-4 - fix uninitialized array in pgqueryparams leading to RCE CVE-2022-31625...
thunderbird security update
91.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Reference oracle-indexhtml within Requires Orabug: 33802044 91.13.0-1 - Update to 91.13.0 build1...
thunderbird security update
91.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.13.0-1 - Update to 91.13.0 build1...
rsync security update
3.1.2-11 - Resolves: 2111170 - remote arbitrary files write inside the directories of connecting peers...
firefox security update
91.13.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.13.0-1 - Update to 91.13.0 build1...
rsync security update
3.1.3-14.3 - Resolves: 2111174 - remote arbitrary files write inside the directories of connecting peers...
systemd security update
219-78.0.9.el79.7 - Core: explicitly trigger changing udev systemdwants property Orabug: 31858125 - Disable unprivileged BPF by default Orabug: 32871008 - Resolve missing installation files for systemd-pstore Orabug 32497787 - Change to have file tmpfiles.d/systemd-pstore.conf installed on upon...
firefox security update
91.13.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.13.0-1 - Update to 91.13.0 build1...
firefox security update
91.13.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.13.0-1 - Update to 91.13.0 build1...
thunderbird security update
91.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.13.0-1 - Update to 91.13.0 build1...
curl security update
7.76.1-14.el90.5 - fix unpreserved file permissions CVE-2022-32207 - fix HTTP compression denial of service CVE-2022-32206 - fix FTP-KRB bad message verification CVE-2022-32208...
rsync security update
3.2.3-9.2 - Resolves: 2111176 - remote arbitrary files write inside the directories of connecting peers...
curl security update
7.61.1-22.el86.4 - fix HTTP compression denial of service CVE-2022-32206 - fix FTP-KRB bad message verification CVE-2022-32208...
podman security update
1.6.4-36.0.1 - Reduce unnecessary writable mounts in NaiveDiffDriver Orabug: 31025483 - handle redirect from the docker registry v2 Orabug: 29874238 [email protected] - remove changes in NaiveDiffDriver 1.6.4-36 - update to the latest content of...
Unbreakable Enterprise kernel security update
4.14.35-2047.516.2.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981856 CVE-2022-21385...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.516.2.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981856 CVE-2022-21385...
Unbreakable Enterprise kernel security update
5.15.0-1.43.4.2 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981854 CVE-2022-21385...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.310.7.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981855 CVE-2022-21385...
Unbreakable Enterprise kernel security update
5.4.17-2136.310.7.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981855 CVE-2022-21385...
Unbreakable Enterprise kernel-container security update
5.15.0-1.43.4.2 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981854 CVE-2022-21385...
cri-o security update
1.22.5-1 - Addresses CVE-2022-1708...
cri-o security update
1.21.7-2 - Addresses CVE-2022-1708 1.21.7-1 - Added Oracle Specifile Files for cri-o...
httpd security update
2.2.15-69.0.5 - handle large writes in aprputs CVE-2022-28614Orabug: 34317854...
cri-o security update
1.21.7-2 - Addresses CVE-2022-1708 1.21.7-1 - Added Oracle Specifile Files for cri-o...
cri-o security update
1.22.5-1 - Addresses CVE-2022-1708...
Unbreakable Enterprise kernel-container security update
r 5.4.17-2136.310.7 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34480880 CVE-2022-2588 - x86/specctrl: limit IBRSFW to retpoline only Ankur Arora Orabug: 34450896 - x86/bugs: display dynamic retbleed state Ankur Arora Orabug: 34450896 - x86/bugs:...
.NET 6.0 security, bug fix, and enhancement update
6.0.108-1.0.1 - Add missing Oracle RIDs 6.0.108-1 - Update to .NET SDK 6.0.108 and Runtime 6.0.8 - Resolves: RHBZ2112412...
Unbreakable Enterprise kernel security update
5.4.17-2136.310.7 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34480880 CVE-2022-2588 - x86/specctrl: limit IBRSFW to retpoline only Ankur Arora Orabug: 34450896 - x86/bugs: display dynamic retbleed state Ankur Arora Orabug: 34450896 - x86/bugs:...
.NET Core 3.1 security, bug fix, and enhancement update
3.1.422-1.0.1 - Add missing Oracle Linux Runtime IDs 3.1.422-1 - Update to .NET SDK 3.1.422 and Runtime 3.1.28 - Resolves: RHBZ2115351...
kernel security and bug fix update
3.10.0-1160.76.1.0.1.OL7 debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.76.1.OL7 Update Oracle Linux certificates Ilya Okomin Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] Update x509.genkey Orabug: 24817676 Confli...
.NET 6.0 security, bug fix, and enhancement update
6.0.108-1.0.1 - Add missing Oracle RIDs - Build all packages on source-build even when in servicing 6.0.108-1 - Update to .NET SDK 6.0.108 and Runtime 6.0.8 - Resolves: RHBZ2112413...
galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
galera 26.4.11-1.0.1 - Requirement to delete garbd-wrapper script and lp1184034 test case without using patches. Patches from previous release have been deleted - Drop nmap-ncat requirement. Orabug: 34116228 - Added galera-skip-lp1184034-testcase.patch - Added...
httpd:2.4 security update
httpd 2.4.37-47.0.2.2 - modproxy: approxyhttprequest to clear hop-by-hop first and...
kernel security, bug fix, and enhancement update
5.14.0-70.22.1.0.10.OL9 lockdown: also lock down previous kgdb use Daniel Thompson Orabug: 34290418 CVE-2022-21499 5.14.0-70.22.10.OL9 Update Oracle Linux certificates Kevin Lyons Disable signing for aarch64 Ilya Okomin Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys lis...
vim security update
8.2.2637-16.0.1.3 - Remove upstream references Orabug: 31197557 2:8.2.2637-16.3 - CVE-2022-1785 vim: Out-of-bounds Write - CVE-2022-1897 vim: out-of-bounds write in vimregsubboth in regexp.c - CVE-2022-1927 vim: buffer over-read in utfptr2char in mbyte.c...
Unbreakable Enterprise kernel security update
4.1.12-124.65.1.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460939 CVE-2022-2588...
Unbreakable Enterprise kernel security update
5.15.0-1.43.4.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460936 CVE-2022-2588 5.15.0-1.43.4 - Revert selftests/bpf: add tests verifying unprivileged bpf behaviour Alan Maguire Orabug: 34399286 - Revert selftests/bpf: Add test for reg2btfids o...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.309.5.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460937 CVE-2022-2588...