9173 matches found
kernel security update
2.6.32-754.35.1.0.5.OL6 - kernel futex: Use pistateupdateowner in putpistate Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Handle faults correctly for PI futexes Thomas Gleixner 1922249 CVE-2021-3347 Orabug: 33150734 - kernel futex: Provide and use pistateupdateowner Thom...
libX11 security update
1.6.7-4 - Fix CVE-2021-31535 1962438...
libsndfile security update
1.0.25-12.1 - a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution1985024...
libsndfile security update
1.0.28-10.1 - a crafted wav file could cause heap buffer overflow that allowed an arbitrary code execution1985027...
rh-postgresql10-postgresql security update
10.17-1 - Update to 10.17 Resolves: CVE-2021-32027 Also fixes: CVE-2021-32028...
compat-exiv2-026 security update
0.26-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp Resolves: bz1990394...
compat-exiv2-023 security update
0.23-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp Resolves: bz1990393...
firefox security update
78.13.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.13.0-2 - Update to 78.13.0 build2 78.13.0-1 - Update to 78.13.0 build1...
sssd security update
2.4.0-9.0.1 - Restore default debug level for ssscache Orabug: 32810448 - Restore default debug level for shadow-utils tools Orabug: 32810448 - Revert Redhat's change of disallowing duplicated incomplete gid when 'idprovider=ldap' is used, which caused regression in AD environment. Orabug: 292867...
firefox security update
78.13.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.13.0-2 - Update to 78.13.0 build2 78.13.0-1 - Update to 78.13.0 build1 78.12.0-2 - Rebuild to pick...
exiv2 security update
0.27.3-3 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990355...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1...
thunderbird security update
78.13.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.13.0-1 - Update to 78.13.0 build1 78.12.0-3 - Rebuild to pickup older nss...
exiv2 security update
0.27.0-4 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990352...
compat-exiv2-026 security update
0.26-11 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990397...
qemu security update
15:4.2.1-11.el7 - pvrdma: Fix the ring init error flow CVE-2021-3608 Marcel Apfelbaum Orabug: 33120142 CVE-2021-3608 - pvrdma: Ensure correct input on ring init CVE-2021-3607 Marcel Apfelbaum Orabug: 33120146 CVE-2021-3607 - hw/rdma: Fix possible mremap overflow in the pvrdma device CVE-2021-3582...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653 CVE-2021-3653...
Unbreakable Enterprise kernel security update
4.14.35-2047.506.10 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario' Manjunath...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.506.10.el7 - Revert 'rds/ib: reap tx completions during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: handle posted ACK during connection shutdown' Manjunath Patil Orabug: 33220435 - Revert 'rds/ib: recover rds connection from interrupt loss scenario'...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.3 - KVM: nSVM: always intercept VMLOAD/VMSAVE when nested Maxim Levitsky Orabug: 33205365 CVE-2021-3656 - KVM: nSVM: avoid picking up unsupported bits from L2 in intctl Maxim Levitsky Orabug: 33205443 CVE-2021-3653...
.NET 5.0 security and bugfix update
5.0.206-1.0.1 - Add support for new Oracle release 5.0.206-1 - Update to .NET SDK 5.0.206 and Runtime 5.0.9 - Resolves: RHBZ1990965...
.NET Core 3.1 security and bugfix update
3.1.118-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.118-1 - Update to .NET SDK 3.1.118 and Runtime 3.1.18 - Resolves: RHBZ1990189...
.NET Core 2.1 security and bugfix update
2.1.525-1 - Update to .NET SDK 2.1.525 and Runtime 2.1.29 - Resolves: RHBZ1988581 2.1.524-1 - Update to .NET SDK 2.1.524 and Runtime 2.1.28 - Resolves: RHBZ1953766...
389-ds:1.4 security and bug fix update
1.4.3.16-19 - Bump version to 1.4.3.16-19 - Resolve: Bug 1984091 - persistent search returns entries even when an error is returned by content-sync-plugin 1.4.3.16-18 - Bump version to 1.4.3.16-18 - Resolve: Bug 1983121 - CRYPT password hash with asterisk allows any bind attempt to succeed...
cloud-init security update
20.3-10.0.1 - Added missing services in rhel/systemd/cloud-init.service Orabug: 32183938 - Added missing services in cloud-init.service.tmpl for sshd Orabug: 32183938 - Forward port applicable cloud-init 18.4-2.0.3 changes to cloud-init-18-5 Orabug: 30435672 - limit permissions Orabug: 31352433 -...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.17.3-2 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Don't use patch3 1:14.17.3-1 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Resolves CVE-2021-22918libuv, use system cipher list 1:14.16.0-3 - Resolves: RHBZ1930775 - Always build with systemtap...
nodejs:12 security, bug fix, and enhancement update
nodejs 1:12.22.3-2 - Resolves: RHBZ1980031, RHBZ1978201 - Fix typo, BR systemtap-sdt-level always, remove y18n patch 1:12.22.3-1 - Resolves: RHBZ1980031, RHBZ1978201 - Resolves 1952915 - Resolves CVE-2021-22918libuv, use system cipher list nodejs-nodemon 2.0.3-1 - Resolves: RHBZ1920692,...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.52.1-1 - Update to 1.52.1. Includes security fixes for CVE-2020-36323, CVE-2021-28876, CVE-2021-28878, CVE-2021-28879, and CVE-2021-31162. 1.51.0-1 - Update to 1.51.0. Update to 1.51.0. Includes security fixes for CVE-2021-28875 and CVE-2021-28877. 1.50.0-1 - Update to 1.50.0. rust-toolset...
go-toolset:ol8 security, bug fix, and enhancement update
golang 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-4 - Related: rhbz1978567 go-toolset 1.15.14-1 - Rebase to go-1.15.14-1-openssl-fips - Resolves: rhbz1982287 - Addresses CVE-2021-34558 1.15.13-2 - Related: rhbz1978567...
libuv security update
1:1.41.1-1 - Rebase to 1.41.1 - Change description to reflect upstream - Resolves: RHBZ1980033...
kernel security, bug fix, and enhancement update
4.18.0-305.12.14.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
4.14.35-2047.506.8 - A/A Bonding: devhold/put the delayed GARP work handler's netdev in rdmaip Sharath Srinivasan Orabug: 33187189 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33187192 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33187195 - rds/ib: update...
edk2 security update
20200602gitca407c7246bf-4.el84.2 - edk2-NetworkPkg-IScsiDxe-wrap-IScsiCHAP-source-files-to-8.patch bz1956676 - edk2-NetworkPkg-IScsiDxe-simplify-ISCSICHAPAUTHDATA.In.patch bz1956676 - edk2-NetworkPkg-IScsiDxe-clean-up-ISCSICHAPAUTHDATA.Ou.patch bz1956676 -...
glib2 security update
2.56.4-10.1 - Fix CVE-2021-27218 Resolves: 1974888...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.506.8.el7 - A/A Bonding: devhold/put the delayed GARP work handler's netdev in rdmaip Sharath Srinivasan Orabug: 33187189 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33187192 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33187195 - rds/ib:...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: Fix /proc/kcore Henry...
Unbreakable Enterprise kernel security update
5.4.17-2102.204.4.2 - rds/ib: quarantine STALE mr before dereg Manjunath Patil Orabug: 33150447 5.4.17-2102.204.4.1 - rds/ib: update mr incarnation after forming inv wr Manjunath Patil Orabug: 33177348 - rds/ib: avoid dereg of mr in frwrclean Manjunath Patil Orabug: 33150427 - arm64: mm: kdump: F...
microcode_ctl security, bug fix and enhancement update
4:20210216-1.20210608.0.1 - add support for UEK6 kernels - enable early update for 06-4f-01 - remove no longer appropriate caveats for 06-2d-07 and 06-55-04 - enable early and late load on RHCK 4:20210216-1.20210608.1 - Update Intel CPU microcode to microcode-20210608 release: - Fixes in...
microcode_ctl security, bug fix and enhancement update
2:2.1-73.11.0.1 - for Intel, do not trigger load if on-disk microcode is not an update Orabug: 30634727 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early and late load for 5.4.17...
bootstrap security update
3.0.0-7.0.1 - Backport jQuery CVE-2020-11023 fixes from jQuery v3.5.0 to bundled v1.10.2 Orabug: 33181852...
olcne security update
olcne 1.2.4-5 - Updated registry-image-helper.sh to work with olcne-utils 1.2.4-4 - Fix istio template for 1.9.6 for k8s update failure 1.2.4-3 - Fixed yaml file to stop olcne-nginx and keepalived services at uninstall Orabug: 32296282 1.2.4-2 - Fix iptables issue when running on OL7 host using O...
olcne security update
olcne 1.3.1-5 - Updated registry-image-helper.sh to work with olcne-utils 1.3.1-4 - Fix istio template for 1.9.6 and 1.10.2 for k8s update failure 1.3.1-3 - Added ENDVERSIONBLOCK for OLM image 1.3.1-2 - Fix iptables issue when running on OL7 host using OL8 image for 1.19.8 - Fix iptables issue wh...
olcne security update
olcne 1.2.4-5 - Updated registry-image-helper.sh to work with olcne-utils 1.2.4-4 - Fix istio template for 1.9.6 for k8s update failure 1.2.4-3 - Fixed yaml file to stop olcne-nginx and keepalived services at uninstall Orabug: 32296282 1.2.4-2 - Fix iptables issue when running on OL7 host using O...
ruby:2.7 security update
ruby 2.7.4-137 - Upgrade to Ruby 2.7.4. - Fix command injection vulnerability in RDoc. Resolves: rhbz1986768 - Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host. Resolves: rhbz1986812 - Fix StartTLS stripping vulnerability in Net::IMAP. Resolves: rhbz1986813 - Upgrade ...
olcne security update
olcne 1.3.1-5 - Updated registry-image-helper.sh to work with olcne-utils 1.3.1-4 - Fix istio template for 1.9.6 and 1.10.2 for k8s update failure 1.3.1-3 - Added ENDVERSIONBLOCK for OLM image 1.3.1-2 - Fix iptables issue when running on OL7 host using OL8 image for 1.19.8 - Fix iptables issue wh...
Unbreakable Enterprise kernel security update
4.1.12-124.53.5 - seqfile: disallow extremely large seq buffer allocations Eric Sandeen Orabug: 33143006 CVE-2021-33909 4.1.12-124.53.3 - net/mlx4: Fix EEPROM dump support Vladyslav Tarasiuk Orabug: 31895301 CVE-2020-14304 - net/mlx4en: ethtool, Remove unsupported SFP EEPROM high pages query Erez...
varnish:6 security update
varnish 6.0.6-2.1 - Resolves: 1982861 - CVE-2021-36740 varnish:6/varnish: HTTP/2 request smuggling attack via a large Content-Length header for a POST request varnish-modules 0.15.0-5 - Related: 1795673 - RFE: rebase varnish:6 to latest 6.0.x LTS...
lasso security update
2.5.1-8 - Fix Coverity warning introduced by the previous patch - Related: 1963855 - CVE-2021-28091 lasso: XML signature wrapping vulnerability when parsing SAML responses 2.5.1-7 - Fix Coverity warning introduced by the previous patch - Related: 1963855 - CVE-2021-28091 lasso: XML signature...
thunderbird security update
78.12.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.12.0-2 - Update to 78.12.0 build2 78.12.0-1 - Update to 78.12.0 build1...
thunderbird security update
78.12.0-3.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.12.0-3 - Rebuild to pickup older nss 78.12.0-2 - Update to 78.12.0 build2 78.12.0-1 - Update to 78.12.0 build1...