8992 matches found
Unbreakable Enterprise kernel-container security update
4.14.35-2047.507.7.4.el7 - KVM: x86: Check kvmrebooting in kvmspuriousfault Sean Christopherson Orabug: 33362693 4.14.35-2047.507.7.3 - arm64: Reserve elfcorehdr before scanning reserved memory from device tree Dave Kleikamp Orabug: 33354710 4.14.35-2047.507.7.2 - net: geneve: modify IP header...
curl security update
7.61.1-18.el84.1 - fix bad connection reuse due to flawed path name checks CVE-2021-22924 - disable metalink support to fix the following vulnerabilities CVE-2021-22923 - metalink download sends credentials CVE-2021-22922 - wrong content via metalink not discarded...
Unbreakable Enterprise kernel security update
5.4.17-2102.205.7.2 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugge...
kernel security, bug fix, and enhancement update
4.18.0-305.19.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.205.7.2.el7 - btrfs: fix race between marking inode needs to be logged and log syncing Filipe Manana Orabug: 33349276 5.4.17-2102.205.7.1 - RDMA/cma: Revert INIT-INIT patch Mike Marciniszyn Orabug: 33306518 5.4.17-2102.205.7 - rds: ib: Set SENDSIGNALED on the last WR posted Hakon Bugg...
libtirpc security update
1.1.4-4.0.1 - Backport fix for CVE-2018-14621 in libtirpc Orabug: 33017925...
cyrus-imapd security update
3.0.7-20.1 - Fix for CVE-2021-33582...
firefox security update
78.14.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.14.0-1 - Update to 78.14.0 build1...
thunderbird security update
78.14.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.14.0-1 - Update to 78.14.0 build1 78.13.0-2 - Use the right name for the appstream file...
thunderbird security update
78.14.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.14.0-1 - Update to 78.14.0 build1 78.13.0-2 - Use the right name for the appstream file...
firefox security update
78.14.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.14.0-1 - Update to 78.14.0 build1...
oswatcher security update
9.0.0-5 - Use static path configuration for oswatcher scripts CVE-2021-2464 Orabug: 33220951...
kernel security and bug fix update
4.18.0-305.17.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
4.1.12-124.54.6 - xen-netback: do not kfreeskb when irq is disabled Dongli Zhang Orabug: 33282046 4.1.12-124.54.5 - l2tp: fix race between l2tpsessiondelete and l2tptunnelcloseall Guillaume Nault Orabug: 33113975 CVE-2020-0429 - l2tp: ensure sessions are freed after their PPPOL2TP socket Guillaum...
kernel security and bug fix update
3.10.0-1160.42.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
sssd security and bug fix update
1.16.5-10.0.1 - Revert Redhat's change of disallowing duplicated incomplete gid when 'idprovider=ldap' is used, which caused regression in AD environment. Orabug: 29286774 Doc ID 2605732.1 1.16.5-10.10 - Resolves: rhbz1973796 - SSSD is NOT able to contact the Global Catalog when local site is dow...
bind security update
32:9.11.4-26.P2.7 - Apply again patch 172, got removed by mistake 32:9.11.4-26.P2.6 - Insufficient IXFR checks could lead to assertion failure CVE-2021-25214...
hivex security update
1.3.10-6.12 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976193...
kernel security and bug fix update
3.10.0-1160.41.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
kernel security update
2.6.32-754.35.1.0.5.OL6 - kernel futex: Use pistateupdateowner in putpistate Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Handle faults correctly for PI futexes Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Provide and use pistateupdateowner Thom...
libX11 security update
1.6.7-4 - Fix CVE-2021-31535 1962438...
libsndfile security update
1.0.25-12.1 - a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution1985024...
libsndfile security update
1.0.28-10.1 - a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution1985027...
rh-postgresql10-postgresql security update
10.17-1 - Update to 10.17 Resolves: CVE-2021-32027 Also fixes: CVE-2021-32028...
compat-exiv2-026 security update
0.26-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp Resolves: bz1990394...
compat-exiv2-023 security update
0.23-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp Resolves: bz1990393...
firefox security update
78.13.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.13.0-2 - Update to 78.13.0 build2 78.13.0-1 - Update to 78.13.0 build1...
exiv2 security update
0.27.3-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990355...
qemu security update
15:4.2.1-11.el7 - pvrdma: Fix the ring init error flow CVE-2021-3608 Marcel Apfelbaum Orabug: 33120142 CVE-2021-3608 - pvrdma: Ensure correct input on ring init CVE-2021-3607 Marcel Apfelbaum Orabug: 33120146 CVE-2021-3607 - hw/rdma: Fix possible mremap overflow in the pvrdma device CVE-2021-3582...
sssd security update
2.4.0-9.0.1 - Restore default debug level for ssscache Orabug: 32810448 - Restore default debug level for shadow-utils tools Orabug: 32810448 - Revert Redhat's change of disallowing duplicated incomplete gid when 'idprovider=ldap' is used, which caused regression in AD environment. Orabug: 292867...
compat-exiv2-026 security update
0.26-11 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990397...
exiv2 security update
0.27.0-4 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990352...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1...
firefox security update
78.13.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.13.0-2 - Update to 78.13.0 build2 78.13.0-1 - Update to 78.13.0 build1 78.12.0-2 - Rebuild to pick...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1 78.12.0-3 - Rebuild to pickup older nss...
Unbreakable Enterprise kernel security update
4.14.35-2047.506.10 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario' Manjunath...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.506.10.el7 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario'...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653 CVE-2021-3653...
.NET Core 3.1 security and bugfix update
3.1.118-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.118-1 - Update to .NET SDK 3.1.118 and Runtime 3.1.18 - Resolves: RHBZ1990189...
.NET 5.0 security and bugfix update
5.0.206-1.0.1 - Add support for new Oracle release 5.0.206-1 - Update to .NET SDK 5.0.206 and Runtime 5.0.9 - Resolves: RHBZ1990965...
389-ds:1.4 security and bug fix update
1.4.3.16-19 - Bump version to 1.4.3.16-19 - Resolve: Bug 1984091 - persistent search returns entries even when an error is returned by content-sync-plugin 1.4.3.16-18 - Bump version to 1.4.3.16-18 - Resolve: Bug 1983121 - CRYPT password hash with asterisk allows any bind attempt to succeed...
nodejs:12 security, bug fix, and enhancement update
nodejs 1:12.22.3-2 - Resolves: RHBZ1980031, RHBZ1978201 - Fix typo, BR systemtap-sdt-level always, remove y18n patch 1:12.22.3-1 - Resolves: RHBZ1980031, RHBZ1978201 - Resolves 1952915 - Resolves CVE-2021-22918libuv, use system cipher list nodejs-nodemon 2.0.3-1 - Resolves: RHBZ1920692,...
.NET Core 2.1 security and bugfix update
2.1.525-1 - Update to .NET SDK 2.1.525 and Runtime 2.1.29 - Resolves: RHBZ1988581 2.1.524-1 - Update to .NET SDK 2.1.524 and Runtime 2.1.28 - Resolves: RHBZ1953766...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.17.3-2 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Don't use patch3 1:14.17.3-1 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Resolves CVE-2021-22918libuv, use system cipher list 1:14.16.0-3 - Resolves: RHBZ1930775 - Always build with systemtap...
cloud-init security update
20.3-10.0.1 - Added missing services in rhel/systemd/cloud-init.service Orabug: 32183938 - Added missing services in cloud-init.service.tmpl for sshd Orabug: 32183938 - Forward port applicable cloud-init 18.4-2.0.3 changes to cloud-init-18-5 Orabug: 30435672 - limit permissions Orabug: 31352433 -...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.52.1-1 - Update to 1.52.1. Includes security fixes for CVE-2020-36323, CVE-2021-28876, CVE-2021-28878, CVE-2021-28879, and CVE-2021-31162. 1.51.0-1 - Update to 1.51.0. Update to 1.51.0. Includes security fixes for CVE-2021-28875 and CVE-2021-28877. 1.50.0-1 - Update to 1.50.0. rust-toolset...
go-toolset:ol8 security, bug fix, and enhancement update
golang 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-4 - Related: rhbz1978567 go-toolset 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-2 - Related: rhbz1978567...
kernel security, bug fix, and enhancement update
4.18.0-305.12.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
glib2 security update
2.56.4-10.1 - Fix CVE-2021-27218 Resolves: 1974888...