8967 matches found
Unbreakable Enterprise kernel-container security update
4.14.35-2047.505.4.3.el7 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33142065 CVE-2021-33909...
Unbreakable Enterprise kernel security update
4.14.35-2047.505.4.3 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33142065 CVE-2021-33909...
Unbreakable Enterprise kernel security update
5.4.17-2102.203.6.el8uek - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909...
java-11-openjdk security update
1:11.0.12.0.7-0 - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:11.0.12.0.6-0.0.ea - Update to jdk-11.0.12.0+6 - Update release notes to 11.0.12.0+6 - Switch t...
java-1.8.0-openjdk security update
1:1.8.0.302.b08-0 - Update to aarch64-shenandoah-jdk8u302-b08 EA - Update release notes for 8u302-b08. - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:1.8.0.302.b07-0.0.ea - Update to aarch64-shenandoah-jdk8u302-b07 EA - Upda...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.203.6.el7 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33135632 CVE-2021-33909...
systemd security update
239-45.0.2 - Disable unprivileged BPF by default Orabug: 32870980 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog...
kernel security and bug fix update
4.18.0-305.10.24.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
kernel security and bug fix update
3.10.0-1160.36.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
Unbreakable Enterprise kernel security update
5.4.17-2102.203.5 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044344 5.4.17-2102.203.4 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32974199 - Revert Allow mce to reset instead of panic on UE William Roche Orabug: 32820275 - bpf:...
firefox security update
78.12.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.12.0-1 - Update to 78.12.0 build1...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.203.5 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044344 5.4.17-2102.203.4 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32974199 - Revert 'Allow mce to reset instead of panic on UE' William Roche Orabug: 32820275 - bpf...
firefox security update
78.12.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.12.0-1 - Update to 78.12.0 build1...
xstream security update
1.3.1-14 - Fix remote code execution vulnerability - Resolves: CVE-2021-29505...
Unbreakable Enterprise kernel security update
4.14.35-2047.505.4 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044345 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32804265 - rds/ib: handle posted ACK during connection shutdown Manjunath Patil Orabug: 32863569 - rds/ib: reap tx...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.505.4.el7 - rds/ib: move rdsibclearirqmiss to .h file Manjunath Patil Orabug: 33044345 - rds/ib: recover rds connection from interrupt loss scenario Manjunath Patil Orabug: 32804265 - rds/ib: handle posted ACK during connection shutdown Manjunath Patil Orabug: 32863569 - rds/ib: reap...
linuxptp security update
2.0-2.el79.1 - validate length of forwarded messages CVE-2021-3570...
linuxptp security update
2.0-5.el84.1 - validate length of forwarded messages CVE-2021-3570...
ruby:2.7 security, bug fix, and enhancement update
ruby 2.7.3-136 - Upgrade to Ruby 2.7.3. Resolves: rhbz1951999 - Resolv::DNS: timeouts if multiple IPv6 name servers are given and address contains leading zero Resolves: rhbz1952000 2.7.2-135 - Upgrade to Ruby 2.7.2. - Avoid possible timeout errors in TestBugReportertestbugreporteradd. 2.7.1-133 ...
ruby:2.6 security, bug fix, and enhancement update
ruby 2.6.7-107 - Upgrade to Ruby 2.6.7. Resolves: rhbz1952627 - Resolv::DNS: timeouts if multiple IPv6 name servers are given an address containing leading zero Resolves: rhbz1954968 - Fix: Rubygem-bundler: Don't use insecure tmp directory as home allows for execution of malicious code. Resolves:...
libxml2 security update
2.9.7-9.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-9.2 - Fix CVE-2021-3541 1958783 2.9.7-9.1 - Fix CVE-2021-3516 1956975 - Fix CVE-2021-3517 1957000 - Fix CVE-2021-3518 1957027 - Fix CVE-2021-3537 1957283...
ruby:2.5 security, bug fix, and enhancement update
ruby 2.5.9-107 - Update to Ruby 2.5.9. Remove Patch20: ruby-2.6.0-rdoc-6.0.1-fix-template-typo.patch; subsumed Resolves: rhbz1952626 - Resolv::DNS: timeouts if multiple IPv6 name servers are given and address contains leading zero Resolves: rhbz1955010...
python38:3.8 and python38-devel:3.8 security update
PyYAML 5.4.1-1 - Rebase to version 5.4.1 to fix CVE-2020-14343 - Resolves: rhbz1860466...
Unbreakable Enterprise kernel security update
4.1.12-124.52.4 - IB/core: Only update PKEY and GID caches on respective events Hakon Bugge Orabug: 32816368 - Revert 'Allow mce to reset instead of panic on UE' William Roche Orabug: 32820278 - Bluetooth: verify AMP hcichan before ampdestroy Archie Pusaka Orabug: 32912103 CVE-2021-33034 -...
389-ds:1.4 security and bug fix update
1.4.3.16-16 - Bump version to 1.4.3.16-16 - Resolves: Bug 1972738 - Changelog cache can upload updates from a wrong starting point CSN - Resolves: Bug 1972721 - Large updates can reset the CLcache to the beginning of the changelog 1.4.3.16-15 - Bump version to 1.4.3.16-15 - Resolves: Bug 1970791 ...
glibc security update
...
microcode_ctl security, bug fix and enhancement update
4:20210216-1.20210525.0.1 - add support for UEK6 kernels - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 4:20210216-1.20210525.1 - Update Intel CPU microcode to microcode-20210525 release, addresses CVE-2020-24489, CVE-2020-24511, CVE-2020-24512, and CVE-2020-24513 1962663,...
kernel security and bug fix update
4.18.0-305.7.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
edk2 security update
20200602gitca407c7246bf-4.el84.1 - edk2-MdeModulePkg-LzmaCustomDecompressLib-catch-4GB-uncom.patch bz1952953 - Resolves: bz1952953 edk2: possible heap corruption with LzmaUefiDecompressGetInfo rhel-8 rhel-8.4.0.z...
rpm security update
4.14.3-14 - Be more careful about copying data from signature header 1958477 - Fixes CVE-2021-20271...
lz4 security update
1.8.3-3 - Fix memory corruption due to an integer overflow Resolves: CVE-2021-3520...
docker-engine docker-cli security update
docker-engine 19.03.11-11 - Addresses CVE-2021-30465 - updated runc minimum version to runc = 3:1.0.0-1.rc95. 19.03.11-10 - Addresses runc CVE-2021-30465 - updated runc versions in cli/vendor.conf and docker-engine/vendor.conf to 1.0.0-rc95...
docker-engine docker-cli security update
docker-engine 19.03.11-11 - Addresses CVE-2021-30465 - updated runc minimum version to runc = 3:1.0.0-1.rc95. 19.03.11-10 - Addresses runc CVE-2021-30465 - updated runc versions in cli/vendor.conf and docker-engine/vendor.conf to 1.0.0-rc95...
qemu security update
15:4.2.1-10.el7 - e1000: fail early for evil descriptor Jason Wang Orabug: 32560552 CVE-2021-20257 - Document CVE-2020-27661 as fixed Mark Kanda Orabug: 32960200 CVE-2020-27661 - block: Avoid stale pointer dereference in blkgetaiocontext Greg Kurz - block: Fix blk-inflight during...
glib2 security update
2.28.8-10.0.1 - Backport fixes for CVE-2021-27219 Orabug: 33017896...
dhcp security update
12:4.1.1-63.P1.0.2 - Added dhcp-4.1.1-P1-CVE-2021-25217.patch Orabug: 33005948...
Unbreakable Enterprise kernel security update
5.4.17-2102.202.5 - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 CVE-2021-23133 - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860491 CVE-2021-31916 - uek-rpm: update kABI lists for the new symbols Saeed...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.202.5 - sctp: delay autoasconf init until binding the first addr Xin Long Orabug: 32907967 CVE-2021-23133 - dm ioctl: fix out of bounds array access when no devices Mikulas Patocka Orabug: 32860491 CVE-2021-31916 - uek-rpm: update kABI lists for the new symbols Saeed Mirzamohammadi...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.504.2.el7 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...
gupnp security update
1.0.2-6 + gupnp-1.0.3-3 - Fix DNS rebind issue - Resolves: 1964706...
container-tools:3.0 security update
buildah 1.19.7-1.0.1 - Handling redirect from the docker registry Orabug: 29874238 Nikita Gerasimov 1.19.7-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.19 https://github.com/containers/buildah/commit/a2854ed - Resolves: 1935376 cockpit-podman 29-2 - fix...
container-tools:ol8 security update
buildah 1.19.7-2.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.19.7-2 - revert changes to the state of 3.0-8.4.0 - Related: 1954702 conmon 2:2.0.26-3 - fix 'Permission on /dev/null are changing from 666 to 777 after running podman as root rhel-8.4.0.z' - Resolves: 1961682...
Unbreakable Enterprise kernel security update
4.14.35-2047.504.2 - md/raid1: properly indicate failure when ending a failed write request Paul Clements Orabug: 32887159 - video: hypervfb: Add ratelimit on error message Michael Kelley Orabug: 32856879 - Drivers: hv: vmbus: Initialize unloadevent statically Andrea Parri Microsoft Orabug:...
postgresql security update
9.2.24-7 - Fix CVE-2021-32027 - Resolves: 1964507...
krb5 security update
1.15.1-50.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360...
runc security update
1.0.0-1.rc95 - Addresses CVE-2021-30465...
runc security update
1.0.0-1.rc95 - Addresses CVE-2021-30465...
microcode_ctl security, bug fix and enhancement update
2:2.1-73.9.0.1 - for Intel, do not trigger load if on-disk microcode is not an update Orabug: 30634727 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early and late load for 5.4.17-...
postgresql:13 security update
pgaudit 1.5.0-1 - Update to version 1.5.0 Related: 1855776 postgresql 13.3-1 - Update to 13.3 Resolves: 1966338 Fix: CVE-2021-32027,CVE-2021-32028,CVE-2021-32029...
postgresql:12 security update
pgaudit 1.4.0-6 - Fix build requires 1.4.0-5 - Fix build requires postgresql 12.7-1 - Update to 12.7 Resolves: 1964510 Fix: CVE-2021-32027,CVE-2021-32028...