8984 matches found
opencryptoki security update
3.22.0-3.2 - Resolves: RHEL-144817, CVE-2026-23893 Privilege Escalation or Data Exposure via Symlink Following...
kernel security update
3.10.0-1160.119.1.0.19 - ext4: fix use-after-free in ext4orphancleanup CVE-2022-50673 Orabug: 39036029 - Squashfs: check return result of sbminblocksize CVE-2025-38415 Orabug: 39036029 - atm: clip: Fix infinite recursive call of clippush. CVE-2025-38459 Orabug: 39036029 - usb: core: config: Preve...
python3 security update
3.6.8-74.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8.openela.0 - Add openela to supported dists 3.6.8-74 - Security fix for CVE-2025-0938 Resolves: RHEL-153235...
yggdrasil security update
0.4.8-3 - Bump release for rebuild...
libarchive security update
3.5.3-7 - Resolves: CVE-2026-4111...
yggdrasil-worker-package-manager security update
0.2.3-4 - Bump release for rebuild...
glibc security update
2.28-251.0.4.31 - Forward port of Oracle patches Reviewed-by: Jose E. Marchesi Oracle history: February-24-2026 Cupertino Miranda - 2.28-251.0.4.27 - Fixed orabug 38834066 stpcpy MTE support Reviewed-by: Jose E. Marchesi December-8-2025 Cupertino Miranda - 2.28-251.0.3.27 - Forward port of Oracle...
gimp:2.8 security update
gimp 2:2.8.22-26.5 - fix CVE-2026-0797 - fix CVE-2026-2044 - fix CVE-2026-2045 - fix CVE-2026-2048 2:2.8.22-26.4 - fix CVE-2025-14422 2:2.8.22-26.3 - fix CVE-2025-10920 - fix CVE-2025-10921 - fix CVE-2025-10922 - fix CVE-2025-10923 - fix CVE-2025-10924 - fix CVE-2025-10925 - fix CVE-2025-10934...
libarchive security update
3.7.7-5 - Resolves: CVE-2026-4111...
mysql security update
8.0.45-1 - Rebase to 8.0.45...
python-pyasn1 security update
0.1.9-7.0.1 - Fixes CVE-2026-23490 fixes potential memory exhaustion Orabug: 39060516...
capstone security update
4.0.2-11 - Fix CVE-2025-68114 memory corruption and CVE-2025-67873 heap buffer overflow Resolves: RHEL-137758...
grub2 security update
2.06-114.0.1.el97.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it Orabug: 37693946 - net/dns: Fix removal of DNS server Orabug:...
kernel security update
6.12.0-124.45.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...
opencryptoki security update
3.25.0-5.2 - Resolves: RHEL-144815, Privilege Escalation or Data Exposure via Symlink Following...
vim security update
9.1.083-6.0.1.el101.1 - Remove upstream references Orabug: 31197557 2:9.1.083-6.1 - RHEL-147922 CVE-2026-25749 vim: Heap Overflow in Vim...
container-tools:rhel8 security update
aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 2:1.10.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0 - Related: Jira:RHEL-2110 2:1.9.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.9.0 - Related:...
grub2 security update
2.12-29.0.1.el101.2 - efinet: Close and reopen card on failure Orabug: 37808688 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it...
libpng security update
2:1.6.34-10 - fix CVE-2026-25646: heap buffer overflow in pngsetquantize RHEL-148338 - fix CVE-2026-22695: heap buffer over-read in pngimagefinishread RHEL-148852 - fix CVE-2026-22801: heap buffer over-read in pngimagewritebit RHEL-146659...
grub2 security update
2.02-170.0.1.el810.1 - Update grub2 dependencies to match new Secure Boot certificate chain of trust Orabug: 37766761 - Fix typo in SBAT metadata Orabug: 37693946 - Allow installation of grub2 only with shim-aa64 that allows booting it Orabug: 37693946 - net/dns: Fix removal of DNS server Orabug:...
nginx security update
2:1.26.3-2.0.1 - Reference oracle-indexhtml within Requires Orabug: 33802044 2:1.26.3-2 - CVE-2026-1642 nginx: NGINX: Data injection via man-in-the-middle attack on TLS proxied connections...
python3.12 security update
3.12.12-3.0.1.el101.1 - Remove upstream URL reference 3.12.12-3.1 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299 Resolves: RHEL-143054 RHEL-143105 RHEL-144852...
kernel security update
5.14.0-611.41.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
freerdp security update
2:2.2.0-5.0.1 - fixed CVE-2026-23530 CVE-2026-23531 CVE-2026-23532 CVE-2026-23533 CVE-2026-23884 Orabug: 38971897...
libvpx security update
1.14.1-6 - Add patch for superindex full Resolves: RHEL-150332...
dtrace security update
2.0.6-1 - Fix dtprobed unsafe probe description handling CVE-2026-21991. Orabug: 39054018 Credit Statement: The following people or organizations reported security vulnerabilities addressed by this ELSA to Oracle: Dhiraj Mishra: CVE-2026-21991...
dtrace security update
2.0.6-1 - Fix dtprobed unsafe probe description handling CVE-2026-21991. Orabug: 39054018 Credit Statement: The following people or organizations reported security vulnerabilities addressed by this ELSA to Oracle: Dhiraj Mishra: CVE-2026-21991...
dtrace security update
2.0.6-1 - Fix dtprobed unsafe probe description handling CVE-2026-21991. Orabug: 39054018 Credit Statement The following people or organizations reported security vulnerabilities addressed by this ELSA to Oracle: Dhiraj Mishra: CVE-2026-21991...
.NET 9.0 security update
9.0.115-1.0.1 - Add support for Oracle Linux 9.0.115-1 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152941...
python3.12 security update
3.12.12-3 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299 Resolves: RHEL-143065 Resolves: RHEL-143122 Resolves: RHEL-144862...
.NET 9.0 security update
9.0.115-1.0.1 - Add support for Oracle Linux 9.0.115-1 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152944...
.NET 10.0 security update
10.0.104-1.0.1 - Add support for Oracle Linux 10.0.104-1 - Update to .NET SDK 10.0.104 and Runtime 10.0.4 - Resolves: RHEL-152949...
.NET 8.0 security update
8.0.125-1.0.1 - Add support for Oracle Linux 8.0.125-1 - Update to .NET SDK 8.0.125 and Runtime 8.0.25 - Resolves: RHEL-152937...
gnutls security update
3.8.3-10fips - Add FIPS package change: add fips suffix to Release and set Epoch to 10 Orabug: 35925409 - Update FIPS module name for Oracle Linux Orabug: 35925409 3.8.3-10 - Fix PKCS11 token initialization label overflow CVE-2025-9820 - Fix name constraint processing performance issue...
python3.11 security update
3.11.13-5.0.1 - Update rpm-macros description Orabug: 36024572 3.11.13-5 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299 Resolves: RHEL-143064 Resolves: RHEL-143121 Resolves: RHEL-144861...
libvpx security update
1.9.0-10 - Add patch for superindex full Resolves: RHEL-150344...
.NET 10.0 security update
10.0.104-1.0.1 - Add support for Oracle Linux 10.0.104-1 - Update to .NET SDK 10.0.104 and Runtime 10.0.4 - Resolves: RHEL-152954...
vim security update
8.0.1763-22.0.1 - Remove upstream references Orabug: 31197557 - Added glibc-gconv-extra to common requires to provide ISO-8859-2 Orabug: 34114984 2:8.0.1763-22 - RHEL-147935 CVE-2026-25749 vim: Heap Overflow in Vim...
.NET 10.0 security update
10.0.104-1.0.1 - Add support for Oracle Linux 10.0.104-1 - Update to .NET SDK 10.0.104 and Runtime 10.0.4 - Resolves: RHEL-152952...
.NET 8.0 security update
8.0.125-1.0.1 - Add support for Oracle Linux 8.0.125-1 - Update to .NET SDK 8.0.125 and Runtime 8.0.25 - Resolves: RHEL-152936...
compat-openssl11 security update
1:1.1.1k-5.2 - Fixes CVE-2025-69419 OpenSSL: Arbitrary code execution due to out-of-bounds write in PKCS12 processing Resolves: RHEL-142722...
.NET 9.0 security update
9.0.115-1.0.1 - Add support for Oracle Linux 9.0.115-1 - Update to .NET SDK 9.0.115 and Runtime 9.0.14 - Resolves: RHEL-152946...
.NET 8.0 security update
8.0.125-1.0.1 - Add support for Oracle Linux 8.0.125-1 - Update to .NET SDK 8.0.125 and Runtime 8.0.25 - Resolves: RHEL-152929...
mingw-libpng security update
1.6.34-2 - Fix the following CVEs CVE-2026-22695 CVE-2026-22801 CVE-2026-25646 - Resolves: RHEL-148855 - Resolves: RHEL-146662 - Resolves: RHEL-148341...
nginx:1.26 security update
2:1.26.3-2.0.1 - Require oracle-indexhtml...
gnutls security update
3.8.3-10 - Fix PKCS11 token initialization label overflow CVE-2025-9820 - Fix name constraint processing performance issue CVE-2025-14831...
python3.11 security update
3.11.13-5.1.0.1 - Remove upstream URL reference Orabug: 36073032 3.11.13-5.1 - Security fixes for CVE-2026-0865, CVE-2025-15366, CVE-2025-15367 and CVE-2026-1299 Resolves: RHEL-143104 RHEL-143167 RHEL-144890...
kernel security update
5.14.0-611.38.1 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
Unbreakable Enterprise kernel security update
5.15.0-318.199.3.2 - macvlan: observe an RCU grace period in macvlancommonnewlink error path Eric Dumazet Orabug: 39057366 - macvlan: fix error recovery in macvlancommonnewlink Eric Dumazet Orabug: 39057366 CVE-2026-23209 - netfilter: nftables: fix inverted genmask check in nftmapcatchallactivate...
git-lfs security update
3.6.1-7 - Rebuild with new Golang 3.6.1-6 - Rebuild with new Golang 3.6.1-5 - Rebuild with new Golang...