9177 matches found
polkit security update
0.115-13.0.1.el85.2 - Increase timeout to avoid defunct processes Orabug: 26930744 0.115-13.el85.2 - necessary version bump due to build versioning - Resolves: CVE-2021-4115...
ol-automation-manager security update
1.0.2-1.el8 - Fix multiple CVEs : CVE-2017-18342, CVE-2020-10109, CVE-2020-10108, CVE-2021-33203, CVE-2021-33571, CVE-2021-44420, CVE-2021-31542, CVE-2021-28658, CVE-2021-28957, CVE-2021-43818, CVE-2020-27783 Orabug: 34109801...
gzip security update
1.9-13 - fix an arbitrary-file-write vulnerability in zgrep Resolves: CVE-2022-1271...
Unbreakable Enterprise kernel security update
4.14.35-2047.512.6 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34039271 - uek-rpm: update kABI lists for new symbols Saeed Mirzamohammadi Orabug: 33993774 4.14.35-2047.512.5 - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug:...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.512.6.el7 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34039271 - uek-rpm: update kABI lists for new symbols Saeed Mirzamohammadi Orabug: 33993774 4.14.35-2047.512.5 - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug:...
java-1.8.0-openjdk security update
1:1.8.0.332.b09-1 - Update to shenandoah-jdk8u332-b09 GA - Update release notes for 8u332-b09. - Switch to GA mode for final release. - This tarball is embargoed until 2022-04-19 @ 1pm PT. - Resolves: rhbz2073422 1:1.8.0.332.b06-0.1.ea - Update to shenandoah-jdk8u332-b06 EA - Update release notes...
java-1.8.0-openjdk security, bug fix, and enhancement update
1:1.8.0.332.b09-1 - Update to shenandoah-jdk8u332-b09 GA - Update release notes for 8u332-b09. - Switch to GA mode for final release. - This tarball is embargoed until 2022-04-19 @ 1pm PT. - Resolves: rhbz2073422 1:1.8.0.332.b06-0.1.ea - Update to shenandoah-jdk8u332-b06 EA - Update release notes...
java-11-openjdk security, bug fix, and enhancement update
1:11.0.15.0.9-2.0.1 - link atomic for ix86 build 1:11.0.15.0.9-2 - Add JDK-8284920 fix for XPath regression - Related: rhbz2073422 1:11.0.15.0.9-2 - Remove security items from release notes that were only in 17u and N/A for 11u - Related: rhbz2073422 1:11.0.15.0.9-1 - Update to jdk-11.0.15.0+9 -...
java-17-openjdk security and bug fix update
1:17.0.3.0.6-2 - Add JDK-8284920 fix for XPath regression - Related: rhbz2073575 1:17.0.3.0.6-2 - JDK-8275082 should be listed as also resolving JDK-8278008 & CVE-2022-21476 - Related: rhbz2073575 1:17.0.3.0.6-1 - JDK-8283911 patch no longer needed now we're GA... - Resolves: rhbz2073575...
java-11-openjdk security update
1:11.0.15.0.9-2 - Add JDK-8284920 fix for XPath regression - Related: rhbz2073422 1:11.0.15.0.9-2 - Remove security items from release notes that were only in 17u and N/A for 11u - Related: rhbz2073422 1:11.0.15.0.9-1 - Update to jdk-11.0.15.0+9 - Update release notes to 11.0.15.0+9 - Switch to G...
httpd:2.4 security update
2.4.37-43.0.3.3 - Resolves: CVE-2021-33193 a crafted method sent through HTTP/2 will bypass validation Orabug: 33942809...
thunderbird security update
91.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.8.0-1 - Update to 91.8.0...
thunderbird security update
91.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.8.0-1 - Update to 91.8.0...
Unbreakable Enterprise kernel security update
5.4.17-2136.306.1.3 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 5.4.17-2136.306.1.2 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34045203 5.4.17-2136.306.1.1 - netfilter: nftables: initialize...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.306.1.3 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 5.4.17-2136.306.1.2 - Revert 'rds/ib: recover rds connection from stuck rx path' Rohit Nair Orabug: 34045203 5.4.17-2136.306.1.1 - netfilter: nftables: initialize...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.8.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34048826 CVE-2022-1016...
Unbreakable Enterprise kernel security update
4.14.35-2047.511.5.8.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34048826 CVE-2022-1016...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.305.5.5 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34034594 CVE-2022-1158...
firefox security update
91.8.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.8.0-1 - Update to 91.8.0...
Unbreakable Enterprise kernel security update
5.4.17-2136.305.5.5 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34034594 CVE-2022-1158...
firefox security update
91.8.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.8.0-1 - Update to 91.8.0...
openssl security update
1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800 1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738 1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix...
Unbreakable Enterprise kernel security update
4.14.35-2047.511.5.5.1.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34018777 CVE-2022-1016...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.5.1.el7uek - netfilter: nftables: initialize registers in nftdochain Pablo Neira Ayuso Orabug: 34018777 CVE-2022-1016...
libgcrypt security update
1.8.5-6fips - Add API to provide hash calculation in RSA/DSA/ECDSA signature operations Orabug: 33081130 - Change Epoch from 1 to 10 1.8.5-6 - Fix for CVE-2021-33560 1971421 - Enable HW optimizations in FIPS 1976137 - Performance enchancements for ChaCha20 and Poly1305 1855231 1.8.5-5 - Performan...
kernel security, bug fix, and enhancement update
3.10.0-1160.62.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
Unbreakable Enterprise kernel security update
4.1.12-124.61.2 - exec, elf: ignore invalid note data Anthony Yznaga Orabug: 34023956 4.1.12-124.61.1 - drm/i915: Flush TLBs before releasing backing store Tvrtko Ursulin Orabug: 33835812 CVE-2022-0330 - drm/i915: Reduce locking in execlist command submission Chris Wilson Orabug: 33835812...
openssl security update
1:1.0.2k-25 - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates - Related: rhbz2067160...
openssl security update
1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...
httpd security update
2.2.15-69.0.3 - core: Simpler connection close logic CVE-2022-22720Orabug: 33991577...
openssl security update
1.0.2k-25fips - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1:1.0.2k-25 -...
openssl security update
1:1.0.2k-25 - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates - Related: rhbz2067160...
openssl security update
1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...
expat security update
2.1.0-14.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910302 2.1.0-14 - Fix multiple CVEs - CVE-2022-25236 expat: namespace-separator characters in 'xmlns:prefix' attribute values can lead to arbitrary code execution - CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8...
httpd:2.4 security update
httpd 2.4.37-43.0.2.3 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-43.3 - Resolves: 2065247 - CVE-2022-22720 httpd:2.4/httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier...
openssl security update
1.0.1e-59.0.3 - Fix possible infinite loop in BNmodsqrt CVE-2022-0778Orabug: 33969800...
httpd security update
2.4.6-97.0.5.5 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.5 - Resolves: 2065243 - CVE-2022-22720 httpd: HTTP request smuggling vulnerability in Apache HTTP Server 2.4.52 and earlier...
openssl security update
1:1.1.1k-5.0.1 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt Orabug: 33974871...
openssl security update
1:1.1.1k-5.0.1 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt Orabug: 33974871...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.305.5.3 - bpf: fix out-of-tree module build Alan Maguire Orabug: 33973548 - ACPICA: Enable sleep button on ACPI legacy wake Anchal Agarwal Orabug: 33973543 - Revert 'btrfs: inode: refactor the parameters of insertreservedfileextent' Srikanth C S Orabug: 33973491 - Revert 'btrfs: fix...
Unbreakable Enterprise kernel security update
5.4.17-2136.305.5.3 - bpf: fix out-of-tree module build Alan Maguire Orabug: 33973548 - ACPICA: Enable sleep button on ACPI legacy wake Anchal Agarwal Orabug: 33973543 - Revert 'btrfs: inode: refactor the parameters of insertreservedfileextent' Srikanth C S Orabug: 33973491 - Revert 'btrfs: fix...
libtpms security update
libtpms 0.8.8-1.el7 - spec: Update spec file to version 0.8.8 Fri Sep 17 2021 Stefan Berger - 0.8.7-1 - tpm2: Fixes for building and running with OpenSSL 3.0 Fri Sep 10 2021 Stefan Berger - 0.8.6-1 - tpm2: Marshal event sequence objects' hash state Wed Sep 01 2021 Stefan Berger - 0.8.5-1 - tpm2:...
openssl security update
1.0.2k-24.0.3 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt...
cyrus-sasl security update
2.1.23-15.0.1.2 - Escape password for SQL insert/update commands CVE-2022-24407Orabug: 33936121...
glibc security update
...
cri-o security update
1.20.7-1 - Added Oracle Specifile Files for cri-o...
cri-o security update
1.21.6-1 - Added Oracle Specifile Files for cri-o...
openssl security update
1.0.2k-24.0.3 - fix CVE-2022-0778 openssl: Fix possible infinite loop in BNmodsqrt - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 -...
openssl security update
1.0.2k-24.0.3 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt...
expat security update
2.2.5-4.0.1.3 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910314...