8967 matches found
ipa security and bug fix update
4.6.8-5.0.1 - Blank out header-logo.png product-name.png - Replace login-screen-logo.png Orabug: 20362818 4.6.8-5.el79.4 - Resolves: 1897253 IPA WebUI inaccessible after upgrading to RHEL 8.3.- idoverride-memberof.js missing - wgi/plugins.py: ignore empty plugin directories - Resolves: 1895197...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.501.2.el7 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi...
bind security update
32:9.8.2-0.68.rc1.0.1.8 - Backport the fix for buffer overflow CVE-2020-8625 Orabug: 32588749...
Unbreakable Enterprise kernel security update
5.4.17-2036.104.5 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.104.5.el7 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32603379 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
Unbreakable Enterprise kernel security update
4.1.12-124.48.6 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32603382 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32603382 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Report connection state in sysfs Gabriel Krisman...
Unbreakable Enterprise kernel security update
4.14.35-2047.501.2 - scsi: iscsi: Verify lengths on passthrough PDUs Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi: Ensure sysfs attributes are limited to PAGESIZE Chris Leech Orabug: 32634994 CVE-2021-27363 CVE-2021-27364 CVE-2021-27365 - scsi: iscsi:...
pki-core security and bug fix update
10.5.18-12 - Change variable 'TPS' to 'tps' - - RHEL 7.9: - - Bugzilla Bug 1883639 - Add KRA Transport and Storage Certificates profiles, audit for IPA edewata - - Backported CVEs ascheel: - - Bugzilla Bug 1724697 - CVE-2019-10180 pki-core: unsanitized token parameters in TPS resulting in stored...
kernel security and bug fix update
3.10.0-1160.21.1.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.21.1 - pinctrl devicetre...
python security update
2.7.5-90.0.3 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
qemu security update
15:4.2.1-5.el7 - qemu.spec: use --tls-priority=NORMAL for OL7 Elena Ufimtseva - hostmem: fix default 'prealloc-threads' count Mark Kanda Orabug: 32472127 - hostmem: introduce 'prealloc-threads' property Igor Mammedov - qom: introduce objectregistersugarprop Paolo Bonzini - migration/multifd: Do...
Unbreakable Enterprise kernel security update
4.14.35-2047.501.1.el7uek - ovl: restore creds in all return paths of ovliterate Somasundaram Krishnasamy Orabug: 32620381 4.14.35-2047.501.0 - block/diskstats: accumulate all per-cpu counters in one pass Konstantin Khlebnikov Orabug: 32531559 - uek-rpm: config-aarch-embedded2 update for Jan 2021...
wpa_supplicant security update
1:2.6-12.1.0.2 - Added undefine-bitwise-in-common-header.patch bug 27677154 1:2.6-12.1 - P2P: Fix a corner case in peer addition based on PD Request CVE-2021-27803...
qemu security update
15:4.2.1-5.el7 - qemu.spec: use --tls-priority=NORMAL for OL7 Elena Ufimtseva - hostmem: fix default 'prealloc-threads' count Mark Kanda Orabug: 32472127 - hostmem: introduce 'prealloc-threads' property Igor Mammedov - qom: introduce objectregistersugarprop Paolo Bonzini - migration/multifd: Do...
Unbreakable Enterprise kernel security update
5.4.17-2036.104.4.el8uek - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el8uek - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empt...
.NET Core on OL 8 security and bugfix update
5.0.104-1.0.1 - Add support for new Oracle release 5.0.104-1 - Update to .NET SDK 5.0.104 and Runtime 5.0.4 - Resolves: RHBZ1934247...
wpa_supplicant security update
1:2.9-2.1 - P2P: Fix a corner case in peer addition based on PD Request CVE-2021-27803...
python3 security update
3.6.8-18.0.3 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
dotnet3.1 security and bugfix update
3.1.113-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.113-1 - Update to .NET Core SDK 3.1.113 and Runtime 3.1.13 - Resolves: RHBZ1933845...
python3 security update
3.6.8-31.0.3 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
dotnet security and bugfix update
2.1.522-1 - Update to .NET Core SDK 2.1.522 and Runtime 2.1.26 - Resolves: RHBZ1933844...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.104.4.el7 - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el7 - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empty list...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.501.0.el7 - block/diskstats: accumulate all per-cpu counters in one pass Konstantin Khlebnikov Orabug: 32531559 - uek-rpm: config-aarch-embedded2 update for Jan 2021 Elba patches Dave Kleikamp Orabug: 32532588 - dts/pensando: Fix compatile - compatible typeo. David Clear Orabug:...
nodejs:14 security and bug fix update
nodejs 1:14.16.0-2 - Resolves: RHBZ1932427 - remove --debug-nghttp2 option 1:14.16.0-1 - Resolves: RHBZ1932317, RHBZ1932425 - Rebase, remove ini patch 1:14.15.4-2 - Add patch for yarn crash - Resolves: RHBZ1916465 1:14.15.4-1 - Security rebase to 14.15.4 -...
screen security update
4.1.0-0.27.2012314git3c2946 - fix CVE-2021-26937 1927063...
grub2 security update
2.02-0.87.0.8.e7.2 - Enable common subpackage for aarch64 - Disable RHEL patch 0183-efinet-retransmit-if-our-device-is-busy.patch to comply with UEFI spec - add SBAT metadata for Oracle Linux grub2 - Use similar format for menu entry in grub environment block - config file. Orabug: 32172943 - Fix...
nodejs:12 security update
nodejs 1:12.21.0-1 - Resolves: RHBZ1932315, RHBZ1932424 - remove --debug-nghttp2 option - remove ini patch - Backport patch to use getauxval...
container-tools:1.0 security update
buildah 1.5-8.gite94b4f9.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.5-8.gite94b4f9 - bump release to preserve upgrade path - Related: 1821193 1.5-4.gite94b4f9 - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file overwriting during image build proces...
virt:ol and virt-devel:rhel security update
qemu-kvm 4.2.0-34.el83.4 - kvm-virtiofsd-extract-lodoopen-from-loopen.patch bz1919109 - kvm-virtiofsd-optionally-return-inode-pointer-from-lodo.patch bz1919109 - kvm-virtiofsd-prevent-opening-of-special-files-CVE-2020-.patch bz1919109 - Resolves: bz1919109 CVE-2020-35517 virt:rhel/qemu-kvm: QEMU:...
nodejs:10 security update
nodejs 1:10.24.0-1 - Resolves: RHBZ1932373, RHBZ1932426 - Resolves CVE-2021-22883 and CVE-2021-22884 - remove -debug-nghttp2 flag 1930775 - remove ini patch merged upstream...
container-tools:2.0 security update
buildah 1.11.6-8.0.1 - Reduce unnecessary writable mounts in NaiveDiffDriver Orabug: 31025483 - Fixes troubles with oracle registry login Orabug: 29937283 1.11.6-8 - exclude i686 arch - Related: 1821193 1.11.6-7 - fix 'CVE-2020-10696 buildah: crafted input tar file may lead to local file...
grub2 security update
2.02-90.0.2.el83.1 - Fix various coverity issues Orabug: 32530657 - Add SBAT metadata to grubx64.efi Orabug: 32530657 - Set proper blsdir if /boot is on btrfs rootfs Orabug: 32063327 - Add CVE-2020-15706, CVE-2020-15707 to the list Orabug: 31225072 - Update signing certificate for efi binaries -...
Unbreakable Enterprise kernel security update
...
bind security update
32:9.11.4-26.P2.4 - Fix off-by-one bug in ISC SPNEGO implementation CVE-2020-8625 32:9.11.4-26.P2.3 - Fix inline re-signing rh1889902 32:9.11.4-26.P2.2 - Fix unsupported algorithms validation rh1769876 32:9.11.4-26.P2.1 - Fix tsig-request verify CVE-2020-8622 - Prevent PKCS11 daemon crash on...
bind security update
32:9.11.20-5.1 - Fix off-by-one bug in ISC SPNEGO implementation CVE-2020-8625...
grub2 security update
2.02-90.0.2 - Fix CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 Orabug: 32530657 - Fix various coverity issues Orabug: 32530657 - Disable os-prober by default Orabug: 32530657 - Add SBAT metadata to grubx64.efi Orabug: 32530657...
grub2 security update
2.02-0.87.0.7 - Fix CVE-2020-14372 CVE-2020-25632 CVE-2020-25647 CVE-2020-27749 CVE-2020-27779 CVE-2021-20225 CVE-2021-20233 Orabug: 32530657 - Fix various coverity issues Orabug: 32530657 - Add SBAT metadata to grubx64.efi Orabug: 32530657 2.02-0.87.0.5 - Use similar format for menu entry in gru...
thunderbird security update
78.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.8.0-1 - Update to 78.8.0 build1...
firefox security update
78.8.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.8.0-1 - Update to 78.8.0 build2 78.7.1-1 - Update to 78.7.1 78.7.0-3 - Fixing install prefix for th...
thunderbird security update
78.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.8.0-1 - Update to 78.8.0 build1...
firefox security update
78.8.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.8.0-1 - Update to 78.8.0 build2 78.7.1-1 - Update to 78.7.1 78.7.0-3 - Fixing install prefix for the homepage...
xterm security update
295-3.1 - Backport security fix for CVE-2021-27135 - Resolves: rhbz1927564...
stunnel security update
5.56-5 - Fix CVE-2021-20230 stunnel: client certificate not correctly verified when redirect and verifyChain options are used...
nodejs:12 security update
nodejs 1:12.20.1-1 - Security rebase for January security release - https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/ - Resolves: RHBZ1916460, RHBZ1914786 - Resolves: RHBZ1914784, RHBZ1916396 nodejs-nodemon 2.0.3-1 - Resolves: RHBZ1921841, RHBZ1921843, RHBZ1921842 - Rebase ...
nodejs:10 security update
nodejs 1:10.23.1-1 - January Security release - https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/ - Rebase to 10.23.1 - Resolves: RHBZ1916461, RHBZ1914789 - Resolves: RHBZ1914783, RHBZ1916462, RHBZ1916395, RHBZ1916459 - Resolves: RHBZ1916691, RHBZ1916689, RHBZ1916388 - Remo...
subversion:1.10 security update
subversion 1.10.2-4 - add security fix for CVE-2020-17525...
container-tools:ol8 security, bug fix, and enhancement update
buildah 1.16.7-4.0.1 - Handling redirect from the docker registry Orabug: 29874238 Nikita Gerasimov 1.16.7-4 - update to the latest content of https://github.com/containers/buildah/tree/release-1.16 https://github.com/containers/buildah/commit/aaed66b - Related: 1888571 1.16.7-3 - revert back to...
nodejs:14 security and bug fix update
nodejs 1:14.15.4-2 - Add patch for yarn crash - Resolves: RHBZ1916465 1:14.15.4-1 - Security rebase to 14.15.4 - https://nodejs.org/en/blog/vulnerability/january-2021-security-releases/ - Resolves: RHBZ1916463, RHBZ1914788 - Resolves: RHBZ1914785, RHBZ1916387, RHBZ1916389, RHBZ1916390, RHBZ191669...
Unbreakable Enterprise kernel security update
4.14.35-2047.500.10.el7uek - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't handle error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: don't handle error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.500.10.el7 - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492110 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492102 CVE-2021-26931 -...