9177 matches found
qemu security update
15:4.2.1-17.el7 - arm/acpi: fix an out of spec UID for PCI root Michael S. Tsirkin - arm/acpi: fix duplicated UID of PCI interrupt link devices Heyi Guo - arm/acpi: fix PCI PRT definition Heyi Guo - docs: fix references to docs/devel/atomics.rst Stefano Garzarella Orabug: 33659123 - rcu: do not...
firefox security update
91.9.1-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.9.1-1 - Update to 91.9.1 build1...
Unbreakable Enterprise kernel security update
5.4.17-2136.307.3.4 - iouring: always use original task when preparing req identity Jens Axboe Orabug: 34186552 CVE-2022-1786 5.4.17-2136.307.3.3 - debug: Lock down kgdb Stephen Brennan Orabug: 34152699 CVE-2022-21499...
thunderbird security update
91.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.9.1-1 - Update to 91.9.1 build1...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.513.2.2.el7 - debug: Lock down kgdb Stephen Brennan Orabug: 34152700 CVE-2022-21499...
Unbreakable Enterprise kernel security update
4.1.12-124.62.3.1 - debug: Lock down kgdb Stephen Brennan Orabug: 34152701 CVE-2022-21499...
Unbreakable Enterprise kernel security update
4.14.35-2047.513.2.2 - debug: Lock down kgdb Stephen Brennan Orabug: 34152700 CVE-2022-21499...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.307.3.4 - iouring: always use original task when preparing req identity Jens Axboe Orabug: 34186552 CVE-2022-1786 5.4.17-2136.307.3.3 - debug: Lock down kgdb Stephen Brennan Orabug: 34152699 CVE-2022-21499...
log4j security update
0:1.2.14-6.4.2 - Fix CVE-2022-23302, CVE-2022-23305, CVE-2022-23307, CVE-2017-5645 - Orabug: 33868008 0:1.2.14-6.4.1 - Fix remote code execution vulnerability - Resolves: CVE-2021-4104 Orabug: 33689748...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.513.2.1.el7 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34175592 CVE-2022-1729...
glibc security update
2.17-325.0.3.ksplice1 - Latest Ksplice-aware release. 2.17-325.0.3 - OraBug 33968985 Security Patches This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi...
pcs security update
0.10.12-6.0.1.el86.1 - Replace HAM-logo.png with a generic one 0.10.12-6.el86.1 - Updated bundled rubygems: sinatra, rack-protection - Resolves: rhbz2081331...
Unbreakable Enterprise kernel security update
4.14.35-2047.513.2.1 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34175592 CVE-2022-1729...
Unbreakable Enterprise kernel security update
5.4.17-2136.307.3.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34172709 CVE-2022-1729...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.307.3.2 - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34172709 CVE-2022-1729...
.NET Core 3.1 security, bug fix, and enhancement update
3.1.419-1.0.1 - Add missing Oracle Linux Runtime IDs - Update to .NET SDK 3.1.417 and Runtime 3.1.23 - Resolves: RHBZ2060566 3.1.419-1 - Update to .NET SDK 3.1.419 and Runtime 3.1.25 - Resolves: RHBZ2081443 3.1.418-1 - Update to .NET SDK 3.1.418 and Runtime 3.1.24 - Resolves: RHBZ2074654...
kernel security and bug fix update
3.10.0-1160.66.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
.NET 6.0 security, bug fix, and enhancement update
6.0.105-1.0.1 - Add missing Oracle RIDs 6.0.105-1 - Update to .NET SDK 6.0.105 and Runtime 6.0.5 - Resolves: RHBZ2082267 6.0.104-2 - Update to .NET SDK 6.0.104 and Runtime 6.0.4 - Resolves: RHBZ2074640...
.NET 5.0 security, bug fix, and enhancement update
5.0.214-1.0.1 - Support AArch64 on Oracle Linux Orabug: 32738620 - Include new Oracle Linux runtime IDs Add 1000-Add-missing-OL-RIDs.patch 5.0.214-1 - Update to .NET SDK 5.0.214 and Runtime 5.0.17 - Resolves: RHBZ2082258 5.0.213-2 - Update to .NET SDK 5.0.213 and Runtime 5.0.16 - Resolves:...
container-tools:3.0 security update
podman 3.0.1-9 - update to the latest content of https://github.com/containers/podman/tree/v3.0.1-rhel https://github.com/containers/podman/commit/801b7e8 - Resolves: 2074143...
subversion:1.10 security update
subversion 1.10.2-5 - add security fix for CVE-2022-24070...
rsync security update
3.1.3-14.2 - Related: 2074783 - Needed to bump this to rebuild correctly 3.1.3-14.1 - Resolves: 2074783 - A flaw in zlib-1.2.11 when compressing not decompressing! certain inputs...
glibc security update
2.17-325.0.6 - OraBug 33968985 Security Patches - This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi 2.17-325.0.3 - OraBug 33968985 Security Patches This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi...
bluez security update
5.56-3 + bluez-5.56-3 - Fixing 2027434 - Fixing CVE-2021-41229 5.56-2 + bluez-5.56-2 - Fixing 1968392 - Removing bccmd check from tests 5.56-1 + bluez-5.56-1 - Fixing 1965057 - Removing bccmd, enabling hid2hci as upstream removed the support in bluez-5.56...
mod_auth_mellon security update
0.14.0-12.1 - Resolves: rhbz1986805 - CVE-2021-3639 modauthmellon: Open Redirect vulnerability in logout URLs rhel-8...
webkit2gtk3 security, bug fix, and enhancement update
2.34.6-1 - Update to 2.34.6 Related: 1985042 2.34.5-1 - Update to 2.34.5 - Related: 1985042 2.34.4-1 - Update to 2.34.4 - Resolves: 1985042 2.32.4-1 - Update to 2.32.4 - Related: 1985042 - Resolves: 2006429...
maven:3.5 security update
...
mod_auth_openidc:2.3 security update
cjose 0.6.1-2 - fix concatkdf big endian architecture problem. Upstream issue 77. 0.6.1-1 - upgrade to latest upstream 0.6.1 0.5.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora29MassRebuild 0.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 0.5.1-1 - Initial packagin...
container-tools:3.0 security and bug fix update
buildah 1.19.9-3 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/3808e27 - Resolves: 2067540 container-selinux 2:2.178.0-2 - remove conflict on udica - we still ship udica 2.4 in 3.0-8.6.0 - Related: 2067540...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-4 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz1877430 4.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 4.7.1-2 - Rebuilt for Python 3.9 4.7.1-1 - update to 4.7.1 1721376 python39 3.9.7-1 - Update to 3.9.7 Resolves: rhbz2003102...
c-ares security update
1.13.0-6 - Resolves: rhbz1989425 - CVE-2021-3672 c-ares: missing input validation of host names may lead to Domain Hijacking rhel-8...
bind security, bug fix, and enhancement update
32:9.11.36-2 - Reduce memory used per-view on machine with few processors 2030239 32:9.11.36-2 - Rebuilt on a new side-tag 2013993 32:9.11.36-1 - Update to 9.11.36 32:9.11.26-9 - Correct tsig system test 32:9.11.26-8 - Propagate ephemeral port ranges to chroot 1950714 32:9.11.26-7 - Do not reques...
python-lxml security update
4.2.3-4 - Security fix for CVE-2021-43818 Resolves: rhbz2032569...
grub2 security, bug fix, and enhancement update
2.02-123.0.1 - backport arm64: Fix EFI loader kernel image allocation Orabug: 33702462 - backport Arm: check for the PE magic for the compiled arch Orabug: 33702462 - Backport some better script logic for BTRFS support Orabug: 32448171 - Do not add shim and grub certificate deps for aarch64...
python3 security update
3.6.8-45.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-45 - Security fix for CVE-2021-4189: ftplib should not use the host from the PASV response Resolves: rhbz2036020 3.6.8-44 - Use the monotonic clock for theading.Condition - Use the monotonic clock for the global...
libreoffice security, bug fix, and enhancement update
1:6.4.7.2-10.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-10 - Related: rhbz2029810 bump n-v-r 1:6.4.7.2-9 - Related: rhbz2029810 set NoDisplay=true for .desktop on s390x/aarch...
cairo and pixman security and bug fix update
cairo 1.15.12-6 - Fix CVE reference test 1908113 1.15.12-5 - Add reference test to CVE fix 1908113 1.15.12-4 - Fix CVE-2020-35492 1908113 pixman 0.38.4-2 - Backport the pixman part of cairo CVE-2020-35492...
exiv2 security, bug fix, and enhancement update
0.27.5-2 - Remove RPATH Resolves: bz2018422 0.27.5-1 - Exiv2 0.27.5 Resolves: bz2018422 Fix stack exhaustion issue in the printIFDStructure function leading to DoS Resolves: bz2003673...
cockpit security, bug fix, and enhancement update
264.1-1.0.1 - Remove duplicate reference to server in cockpit Orabug: 33862832 - Update documentation links Orabug: 32795691 - Make documentation links point to Oracle Linux information Orabug: 30271413 Orabug: 32013095 - Fix rendering of hwinfo page on systems with some empty memory slots Orabug...
fapolicyd security, bug fix, and enhancement update
1.1-6.0.1 - Increase dbmaxsize to 100M 1.1-6 - CVE-2022-1117 fapolicyd: fapolicyd wrongly prepares ld.so path Resolves: rhbz2069120 1.1-4 RHEL 8.6.0 ERRATUM - fapolicyd denies access to /usr/lib64/ld-2.28.so Resolves: rhbz2066300 1.1-1 RHEL 8.6.0 ERRATUM - rebase to 1.1 Resolves: rhbz1939379 -...
fetchmail security update
6.4.24-1 - Update to fetchmail-6.4.24 fixes CVE-2021-36386 and CVE-2021-39272 Resolves: 1999275, 2002698...
httpd:2.4 security and bug fix update
modhttp2 1.15.7-5 - Resolves: 2035030 - CVE-2021-44224 httpd:2.4/httpd: possible NULL dereference or SSRF in forward proxy configurations 1.15.7-4 - Resolves: 1966728 - CVE-2021-33193 httpd:2.4/modhttp2: httpd: Request splitting via HTTP/2 method injection and modproxy modmd...
xorg-x11-server and xorg-x11-server-Xwayland security update
xorg-x11-server 1.20.11-5 - Fix crash with NVIDIA proprietary driver with Present 2046329 1.20.11-4 - CVE fix for: CVE-2021-4008 2030162, CVE-2021-4009 2030172, CVE-2021-4010 2030175, CVE-2021-4011 2030181 1.20.11-3 - xf86/logind Fix drmdropmaster before vtreldis Resolves: 1771863...
gnome-shell security and bug fix update
3.32.2-44 - Fix more JS warnings Resolves: 2025940 3.32.2-43 - Backport fix for CVE-2020-17489 Resolves: 1874259 3.32.2-42 - Backport WPA3 support Resolves: 1924593 3.32.2-41 - Add bugs introduced in backport for 1651378 Related: 2000918 - Tidy up patch list a bit...
qt5-qtbase security update
5.15.2-4 - Fix out-of-bounds write in QOutlineMapper::convertPath Resolves: bz1996877...
libssh security, bug fix, and enhancement update
0.9.6-3 - Remove STI tests 0.9.6-2 - Remove bad patch causing errors - Adding BuildRequires for openssh SSHD support 0.9.6-1 - Fix CVE-2021-3634: Fix possible heap-buffer overflow when rekeying with different key exchange mechanism - Rebase to version 0.9.6 - Rename SSHDEXECUTABLE to SSHEXECUTABL...
keepalived security and bug fix update
2.1.5-8 - Fix DBus policy restrictions 2028350, CVE-2021-44225 2.1.5-7 - Fix log-facility option 197716...
virt:ol and virt-devel:ol security, bug fix, and enhancement update
hivex 1.3.18-23 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976194 1.3.18-22.el8 - Resolves: bz2000225 Rebase virt:rhel module:stream based on AV-8.6 libguestfs 1.44.0-5.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug:...
postgresql:10 security update
10.19-2 - Add missing files into file section of server package postgresql-setup v8.6 newly provides postgresql-upgrade...
udisks2 security and bug fix update
2.9.0-9 - Fix LVM-VDO statistics tests 2023880,2025483 - Fix GError ownership 1999149 2.9.0-8 - CVE-2021-3802: Harden the default mount options for ext filesystems 2004422...