8994 matches found
dnf security and bug fix update
dnf 4.7.0-4.0.1 -Fixed python stack trace with updateinfo list cves command Orabug: 32749660 - Replaced upstream bugzilla reporting reference. Orabug: 32829849 4.7.0-4 - Update translations RhBug:1961632 4.7.0-3 - Improve signature checking using rpmkeys RhBug:1967454 4.7.0-2 - Fix covscan issue:...
lasso security and enhancement update
2.6.0-12 - Fix a dead code issue in the signature wrapping patch - Resolves: rhbz1951653 - CVE-2021-28091 lasso: XML signature wrapping vulnerability when parsing SAML responses rhel-8 2.6.0-11 - Bump release to force the package through OSCI as the previous build reached CI just in time for an...
python3 security update
3.6.8-41.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-41 - Security fix for CVE-2021-3733: Denial of service when identifying crafted invalid RFCs Resolves: rhbz1995234 3.6.8-40 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055...
libX11 security update
1.6.8-5 - Fix CVE-2021-31535 1962439...
openjpeg2 security update
2.4.0-4 - Fix Covscan defect 2.4.0-3 - Fix CVE-2021-3575 1969279 - Fix resource leak identified by Covscan 2.4.0-2 - Fix CVE-2021-29338 1951332 2.4.0-1 - Rebase to 2.4.0 - Resolves: CVE-2018-5727 1538467 - Resolves: CVE-2018-5785 1538556 - Resolves: CVE-2018-20845 1730679 - Resolves: CVE-2018-208...
openssl security and bug fix update
1:1.1.1k-4 - Fixes bugs in s390x AES code. - Uses the first detected address family if IPv6 is not available - Reverts the changes in https://github.com/openssl/openssl/pull/13305 as it introduces a regression if server has a DSA key pair, the handshake fails when the protocol is not explicitly s...
python-psutil security update
5.4.3-11 - Security fix for CVE-2019-18874: double free because of refcount mishandling Resolves: rhbz1772014...
NetworkManager security, bug fix, and enhancement update
1.32.10-4.0.1 - add connectivity check via Oracle servers Orabug: 32051972 - Disable the build of NetworkManager-config-connectivity- subpackage for 8.3 1:1.32.10-4 - revert unapproved patches part of 'cloud-setup' change rh 1977984 1:1.32.10-3 - preserve the IPv6 multicast route added by kernel ...
sqlite security update
3.26.0-15 - Removing fix for CVE-2019-19645 unaffected - Removing fix for CVE-2019-19880 unaffected 3.26.0-14 - Fixed CVE-2019-5827 1710184 - Fixed CVE-2019-13750 1786510 - Fixed CVE-2019-13751 1786522 - Fixed CVE-2019-19603 1792013 - Fixed CVE-2020-13435 1841233...
php:7.4 security, bug fix, and enhancement update
libzip php 7.4.19-1 - rebase to 7.4.19 1944110...
python27:2.7 security update
...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.55-2 - Add support for user templates so user can specify default session Resolves: 1812788 gdm 40.0-14 - Fix XDMCP Resolves: 2004170 - Fix crash at shutdown Related: 2004170 40.0-13 - Disable Wayland on HyperV - Fix Xorg fallback Related: 1998989 40.0-12 - Redisable on server...
glibc security, bug fix, and enhancement update
2.28-164.0.1 - Merge of RH patches for ol8-u5 beta release Review-exception: Routine merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for...
grilo security update
0.3.6-3 + grilo-0.3.6-3 - Fix TLS not being validated correctly - Resolves: rhbz1997234...
container-tools:2.0 security update
buildah 1.11.6-9.0.1 - Reduce unnecessary writable mounts in NaiveDiffDriver Orabug: 31025483 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-9 - update to the latest content of https://github.com/containers/buildah/tree/release-1.11-rhel...
squid:4 security, bug fix, and enhancement update
libecap squid 7:4.15-1 - new version 4.15 - Resolves: 1964384 - squid:4 rebase to 4.15 7:4.11-5 - Resolves: 1944261 - CVE-2020-25097 squid:4/squid: improper input validation may allow a trusted client to perform HTTP Request Smuggling...
zziplib security update
0.13.68-9 - Fix CVE-2020-18442 - Resolves: CVE-2020-18442...
bind security and bug fix update
32:9.11.26-6 - Use random entropy to generate unique TKEY identifiers 1980916 32:9.11.26-5 - Fix possible assertion failure iscrefcountcurrent == 0 in freerbtdb 1953056...
libsolv security and bug fix update
0.7.19-1 - Update to 0.7.19 - repoaddconda: add flag to skip v2 packages - fix rare segfault in resolvejobrules that could happen if new rules are learnt - fix error handling in solvxfopenfd - fix memory leaks 0.7.17-2 - Fix rpm dependency 0.7.17-1 - Update to 0.7.17 - selected bug fixes:...
compat-exiv2-026 security update
0.26-6 - Fix out-of-bounds read in Exiv2::Jp2Image::printStructure Resolves: bz1993283 - Fix out-of-bounds read in Exiv2::Jp2Image::encodeJp2Header Resolves: bz1993246...
binutils security update
2.30-108.0.2 - Forward-port the following update: 2.30-93.0.4 - Backport fix for fencepost bug in CTF pptrtab usage causing coredumps - Backport test result fixes for new GCC-based CTF generation Orabug: 33344570 - Reviewed-by: David Faust - Reviewed-by: Jose E. Marchesi 2.30-108.0.1 - Forward-po...
rust-toolset:ol8 security, bug fix, and enhancement update
rust-toolset 1.54.0-1 - Update to Rust and Cargo 1.54.0. 1.53.0-1 - Update to Rust and Cargo 1.53.0. rust 1.54.0-2 - Make std-static-wasm arch-specific to avoid s390x. 1.54.0-1 - Update to 1.54.0. 1.53.0-2 - Use llvm-ranlib to fix wasm archives. 1.53.0-1 - Update to 1.53.0. 1.52.1-2 - Set...
kexec-tools security, bug fix, and enhancement update
2.0.20-57.0.3 - Merge 8.4 extra patches for SB boot environment Orabug: 33512440 2.0.20-57.0.2 - Merge SRPM/ol8-u4 orabug patches into SRPM/ol8-u5 Orabug: 33471981 2.0.20-57.0.1 - makedumpfile: Add support for newer kernels up to v5.12 Orabug: 33250117 2.0.20-57 - kdumpctl: enable secure boot on...
dnsmasq security and bug fix update
2.79-19 - Correct typo in man page 1947039 2.79-18 - Properly randomize outgoing ports also with bound interface CVE-2021-3448 2.79-17 - Fix sporadic bind-dynamic failures 1887649 2.79-16 - Fix network errors on queries both from ipv4 and ipv6 1921153...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-4 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz1877430 4.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 4.7.1-2 - Rebuilt for Python 3.9 4.7.1-1 - update to 4.7.1 1721376 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable...
gnutls and nettle security, bug fix, and enhancement update
gnutls 3.6.16-4 - p11tool: Document ID reuse behavior when importing certs 1776250 3.6.16-3 - Treat SHA-1 signed CA in the trusted set differently 1965445 3.6.16-2 - Filter certificatetypes in TLS 1.2 CR based on signature algorithms 1942216 3.6.16-1 - Update to upstream 3.6.16 release 1956783 -...
openssh security update
8.0p1-10 - sshd -T requires -C when 'Match' is used in sshdconfig 1836277 8.0p1-9 - CVE-2020-14145 openssh: Observable Discrepancy leading to an information leak in the algorithm negotiation 1882252 - Hostbased ssh authentication fails if session ID contains a '/' 1944125 8.0p1-8 - ssh doesnt...
glib2 security and bug fix update
2.56.4-15 - Fix test failure introduced in previous update - Related: 1971533 2.56.4-14 - Refresh GHmac patchset - Resolves: 1971533 2.56.4-13 - Rename and consolidate existing patches for better maintainability - Refresh CVE-2021-27219 patcheset, using better-targeted fixes Resolves: 1939108...
cups security and bug fix update
1:2.2.6-40 - 1955964 - PreserveJobHistory doesnt work with seconds - 1927452 - CVE-2020-10001 cups: access to uninitialized buffer in ipp.c rhel-8 1:2.2.6-39 - 1941437 - cupsd doesnt log job ids when logging into journal - 1782216 - Print queue is paused after ipp backend ends with CUPSBACKENDSTO...
kernel security, bug fix, and enhancement update
4.18.0-348.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x...
container-tools:ol8 security, bug fix, and enhancement update
...
file security update
5.33-20 - rebuild 1954434 5.33-18 - fix heap-based buffer overflow in cdfreadpropertyinfo CVE-2019-18218 5.33-17 - improve magic for script recognition and other changes 1903531...
libwebp security update
1.0.0-5 - Added fixes for rhbz1956853, rhbz1956856, rhbz1956868, rhbz1956917...
graphviz security update
2.40.1-43 - Fixed races during pdf documentation build which should build docs correctly Related: CVE-2020-18032 2.40.1-42 - Rebuilt, because pdf documentation were built incorrectly Related: CVE-2020-18032 2.40.1-41 - Fixed buffer overflow in lib/common/shapes.c Resolves: CVE-2020-18032...
vim security update
8.0.1763-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-16 - 2004974 - CVE-2021-3796 vim: use-after-free in nvreplace in normal.c rhel-8.5.0 - 2004891 - CVE-2021-3778 vim: heap-based buffer overflow in utfptr2char in mbyte.c rhel-8.5.0...
tcpdump security and bug fix update
14:4.9.3-2 - Resolves: 1860216 - tcpdump can not parse mptcp options - Resolves: 1901635 - ppp decapsulator can be convinced to allocate a large amount of memory - Adding tedude test to gating...
grafana security, bug fix, and enhancement update
7.5.9-4 - resolve CVE-2021-39226 7.5.9-3 - rebuild to resolve CVE-2021-34558 7.5.9-2 - remove unused dependency property-information - always include FIPS patch in SRPM 7.5.9-1 - update to 7.5.9 tagged upstream community sources, see CHANGELOG 7.5.8-1 - update to 7.5.8 tagged upstream community...
freerdp security update
2:2.2.0-5 - Update: Refactored RPC gateway parser rhbz2017944 + fix issues discovered by Covscan 2:2.2.0-4 - Refactored RPC gateway parser rhbz2017944 2.1.1-3 - Add checks for bitmap and glyph width/heigth values rhbz2017951...
httpd:2.4 security update
httpd 2.4.37-39.0.2.1 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690...
olcne security update
olcne 1.2.5-2 - Update Istio to 1.9.8 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781 - Update proxyv2 image to select iptables legacy or latest based on host operating system - Turn off Istio PodDisruptionBudget istio 1.9.8-3 - Updated iptables-switch f...
olcne istio istio kubernetes security update
olcne 1.3.2-2 - Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade - Update Kubernetes version to 1.20.11 to address CVE-2021-25741 - Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781 -...
olcne security update
olcne 1.3.2-2 - Turn off default PodDisruptionBudget in istio template to unblock kubernetes module upgrade - Update Kubernetes version to 1.20.11 to address CVE-2021-25741 - Update Istio to 1.9.8, 1.10.4 to address CVE-2021-32777, CVE-2021-32778, CVE-2021-32779, CVE-2021-32780 & CVE-2021-32781 -...
thunderbird security update
91.3.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.3.0-2 - Update to 19.3.0 build2 91.3.0-1 - Update to 91.3.0 build1...
thunderbird security update
91.3.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 91.3.0-2 - Update to 19.3.0 build2 91.3.0-1 - Update to 91.3.0 build1...
pacemaker security update
1.1.23-1.0.1 - Upstream reference in pacemaker crmreport binary Orabug: 31611300 1.1.23-1.1 - Prevent ACL bypass CVE-2020-25654 - Resolves: rhbz1892140...
resource-agents security and bug fix update
4.1.1-61.4 - Upgrade bundled python-httplib2 to fix CVE-2020-11078 Resolves: rhbz1850992 4.1.1-61.2 - azure-lb: fix redirect issue Resolves: rhbz1850779 4.1.1-61.1 - gcp-vpc-move-vip: add support for multiple alias IPs - sybaseASE: run verify action during start action only - azure-events: handle...
firefox security update
91.3.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.3.0-1 - Update to 91.3.0 build1...
httpd security update
2.4.6-97.0.3.1 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690...
firefox security update
91.3.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.3.0-1 - Update to 91.3.0 build1...
kernel security, bug fix, and enhancement update
4.18.0-305.25.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...