9177 matches found
python3 security update
3.6.8-37.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-37 - Fix for CVE-2021-23336 Resolves: rhbz1928904 3.6.8-36 - Fix for CVE-2021-3177 Resolves: rhbz1918168 3.6.8-35 - New options -a and -k for pathfix.py script backported from upstream Resolves: rhbz1917691 3.6.8-3...
perl security update
4:5.10.1-144.0.1 - Backport patch for CVE-2020-10543 Orabug: 32855589 - Backport patch for CVE-2020-10878 Orabug: 32855589 - Backport patch for CVE-2020-12723 Orabug: 32855589...
xorg-x11-server security update
1.20.4-16 - CVE fix for: CVE-2021-3472 1944956...
slapi-nis security and bug fix update
0.56.5-4 - CVE 2021-3480: slapi-nis: NULL dereference DoS with specially crafted Binding DN - Resolves: rhbz1942937...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.503.1.el7 - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. Somasundaram Krishnasamy Orabug: 32781585 - ext4: handle error of ext4setupsystemzone on remou...
Unbreakable Enterprise kernel security update
5.4.17-2102.201.3uek - locking/qrwlock: Fix ordering in queuedwritelockslowpath Ali Saidi Orabug: 32805544 5.4.17-2102.201.2uek - md/bitmap: wait for external bitmap writes to complete during tear down Sudhakar Panneerselvam Orabug: 32764237 - ocfs2: fix deadlock between setattr and dioendiowrite...
Unbreakable Enterprise kernel security update
4.14.35-2047.503.1 - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. Somasundaram Krishnasamy Orabug: 32781585 - ext4: handle error of ext4setupsystemzone on remount J...
postgresql security update
9.2.24-6 - Patch fixing BZ1741488 CVE-2019-10208 9.2.24-5 - Patch fixing CVE-2020-25694 BZ1907894 - Patch fixing CVE-2020-25695 BZ1907895...
Unbreakable Enterprise kernel security update
4.1.12-124.50.2 - btrfs: fix race when cloning extent buffer during rewind of an old root Filipe Manana Orabug: 32669454 CVE-2021-28964 - xen-blkback: don't leak persistent grants from xenblkbkmap Jan Beulich Orabug: 32697855 CVE-2021-28688 - netfilter: xtables: Use correct memory barriers. Mark...
kernel security update
2.6.32-754.35.1.0.3.OL6 - Fixes for RHSA-2021:1288 Orabug: 32809880...
bind security update
32:9.8.2-0.68.rc1.0.2.8 - Backport possible assertion failure on DNAME processing CVE-2021-25215...
bind security update
32:9.11.4-26.P2.5 - Possible assertion failure on DNAME processing CVE-2021-25215...
openldap security update
2.4.44-23 - Fix CVE-2020-25692 openldap: NULL pointer dereference for unauthenticated packet in slapd 1895328...
nss security and bug fix update
3.53.1-7 - Fix HSM load failure because of CKOProfile - Allow builds with strict-proto 3.53.1-6 - Update to CVE 2020-256423 TLS flood DOS attack patch. 3.53.1-5 - Fix CVE 2020-256423 TLS flood DOS Attack. 3.53.1-4 - Fix deadlock issue - Fix 3 FTBS issues, 2 expired certs, one semantic change in...
runc bug fix update
1.0.0-92.rc92 - Add epoch value of 2 to allow upgrade to 1.0.0-92.rc92 from 1.0.0-93.rc93. 1.0.0-92.rc92 - Build for https://github.com/opencontainers/runc/releases/tag/v1.0.0-rc92...
openssl bug fix update
1.0.2k-21.0.1 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059...
mariadb:10.3 and mariadb-devel:10.3 security update
galera 25.3.32-1 - Rebase to 25.3.32 mariadb 3:10.3.28-1 - Rebase to 10.3.28...
xstream security update
1.3.1-13 - Fix remote code execution vulnerability - Resolves: CVE-2021-21344 - Resolves: CVE-2021-21345 - Resolves: CVE-2021-21346 - Resolves: CVE-2021-21347 - Resolves: CVE-2021-21350...
thunderbird security update
78.10.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.10.0-1 - Update to 78.10.0...
firefox security update
78.10.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.10.0-1 - Update to 78.10.0...
thunderbird security update
78.10.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.10.0-1 - Update to 78.10.0...
firefox security update
78.10.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.10.0-1 - Update to 78.10.0...
java-1.8.0-openjdk security update
1:1.8.0.292.b10-1 - Add CVE numbers. - Require tzdata 2021a due to JDK-8260356 - Resolves: rhbz1938201 1:1.8.0.292.b10-0 - Update to aarch64-shenandoah-jdk8u292-b10 GA - Update release notes for 8u292-b10. - This tarball is embargoed until 2021-04-20 @ 1pm PT. - Resolves: rhbz1938201...
java-1.8.0-openjdk security update
1:1.8.0.292.b10-0 - Update to aarch64-shenandoah-jdk8u292-b10 GA - Update release notes for 8u292-b10. - Update tarball generation script to use PR3822 which handles JDK-8233228 & JDK-8035166 changes - Remove RH1868759 patch as this is now resolved upstream by JDK-8258833. - Re-organise S/390...
java-11-openjdk security update
1:11.0.11.0.9-0 - Update to jdk-11.0.11.0+9 - Update release notes to 11.0.11.0+9 - Require tzdata 2020f to match upstream change JDK-8259048 - Require tzdata 2021a to match upstream change JDK-8260356 - Remove RH1868754 patch as this is now resolved upstream by JDK-8258833 - Remove RH1868740 &...
java-11-openjdk security and bug fix update
1:11.0.11.0.9-1.0.1 - link atomic for ix86 build 1:11.0.11.0.9-1 - Add backport of JDK-8187450 from 11.0.12 to fix RH1937736 - Resolves: rhbz1937736 1:11.0.11.0.9-0 - Update to jdk-11.0.11.0+9 - Update release notes to 11.0.11.0+9 - Switch to GA mode for final release. - This tarball is embargoed...
gnutls and nettle security update
gnutls 3.6.14-8 - Port fixes for potential miscalculation in ecdsaverify 1942929 nettle 3.4.1-4 - Fix patch application 3.4.1-3 - Port fixes for potential miscalculation in ecdsaverify 1942924...
thunderbird security update
78.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.1-1 - Update to 78.9.1...
thunderbird security update
78.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.1-1 - Update to 78.9.1...
sudo security update
1.8.6p3-29.0.3.el610.3 - Fix a bug on CVE-2021-3156.patch backported from ol7 Orabug: 32717065...
libldb security update
2.1.3-3 - resolves: rhbz1941514 - Fix CVE-2021-20277...
Unbreakable Enterprise kernel security update
...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.502.4.el7 - Revert 'rds: ib: Remove two ibmodifyqp calls' Sharath Srinivasan Orabug: 32715567 - uek-rpm: Update SecureBoot Digicert 2021 certificates Somasundaram Krishnasamy Orabug: 32532514 4.14.35-2047.502.3.el7 - video: hypervfb: Fix the mmap regression for v5.4.y and older Dexua...
Unbreakable Enterprise kernel security update
4.14.35-2047.502.4 - Revert 'rds: ib: Remove two ibmodifyqp calls' Sharath Srinivasan Orabug: 32715567 - uek-rpm: Update SecureBoot Digicert 2021 certificates Somasundaram Krishnasamy Orabug: 32532514 4.14.35-2047.502.3 - video: hypervfb: Fix the mmap regression for v5.4.y and older Dexuan Cui...
squid security update
7:3.5.20-17.6 - Resolves: 1944256 - CVE-2020-25097 squid: improper input validation may allow a trusted client to perform HTTP Request Smuggling...
nettle security update
2.7.1-9 - Port fixes for potential miscalculation in ecdsaverify 1943156...
389-ds:1.4 security and bug fix update
1.4.3.8-7 - Bump version to 1.4.3.8-7 - Resolves: Bug 1908705 - CVE-2020-35518 389-ds:1.4/389-ds-base: information disclosure during the binding of a DN - Resolves: Bug 1936461 - A failed re-indexing leaves the database in broken state. - Resolves: Bug 1912481 - Server-Cert.crt created using...
Unbreakable Enterprise kernel security update
4.1.12-124.49.3.1 - SecureBoot Digicert 2021 certificates update Brian Maly Orabug: 32532671 4.1.12-124.49.3 - xen/netback: avoid race in xenvifrxringslotsavailable Juergen Gross Orabug: 32485156 - audit: fix error handling in auditdatatoentry Paul Moore Orabug: 32608451 CVE-2020-0444...
libldb security update
1.5.4-2 - resolves: 1941511 - Fix CVE-2021-20277...
kernel security and bug fix update
3.10.0-1160.24.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
kernel security, bug fix, and enhancement update
4.18.0-240.22.13.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
flatpak security update
1.6.2-6 - Fix CVE-2021-21381 1938062...
openssl bug fix update
1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference 1.0.2k-19 - close the RSA decryption 9 lives of Bleichenbacher cat timing side channel 1649568 1.0.2k-18 - fix CVE-2018-0734 - DSA signatu...
openssl security update
1.1.1g-15 - version bump 1.1.1g-14 - CVE-2021-3450 openssl: CA certificate check bypass with X509VFLAGX509STRICT 1.1.1g-13 - Fix CVE-2021-3449 NULL pointer deref in signaturealgorithms processing...
openssl security update
1.0.1e-59.0.1 - Backport fixes for CVE-2020-1971 Orabug: 32654738 1.0.1e-58.0.1 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737 - Merge upstream patch to fix CVE-2018-0739 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz - sha256 is used fo...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.200.13.el7 - bpf, selftests: Fix up some testverifier cases for unprivileged Piotr Krysiuk Orabug: 32656761 CVE-2020-27170 CVE-2020-27171 - bpf: Add sanity check for upper ptrlimit Piotr Krysiuk Orabug: 32656761 CVE-2020-27170 CVE-2020-27171 - bpf: Simplify alulimit masking for pointe...
Unbreakable Enterprise kernel security update
5.4.17-2102.200.13 - bpf, selftests: Fix up some testverifier cases for unprivileged Piotr Krysiuk Orabug: 32656761 CVE-2020-27170 CVE-2020-27171 - bpf: Add sanity check for upper ptrlimit Piotr Krysiuk Orabug: 32656761 CVE-2020-27170 CVE-2020-27171 - bpf: Simplify alulimit masking for pointer...
flatpak security update
1.0.9-11 - Fix CVE-2021-21381 1938059...
openssl security update
1.1.1g-15 - version bump 1.1.1g-14 - CVE-2021-3450 openssl: CA certificate check bypass with X509VFLAGX509STRICT 1.1.1g-13 - Fix CVE-2021-3449 NULL pointer deref in signaturealgorithms processing...
thunderbird security update
78.9.0-3.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.0-3 - Update to 78.9.0 build2, updated langpacks 78.9.0-2 - Update to 78.9.0 build2 78.9.0-1 - Update to 78.9.0 build1...