8967 matches found
curl security and bug fix update
7.61.1-14 - avoid overwriting a local file with -J CVE-2020-8177 7.61.1-13 - load built-in openssl engines 1854369...
cryptsetup security, bug fix, and enhancement update
2.3.3-2 - patch: Fix possible memory corruption in LUKS2 validation code in 32bit library. - Resolves: 1872294 2.3.3-1 - Update to cryptsetup 2.3.3 - Resolves: 1796826 1743891 1785748 2.3.1-1 - Update to cryptsetup 2.3.1 - Resolves: 1796826 1743891 1785748...
vim security update
2:8.0.1763-15.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-15 - 1842755 - CVE-2019-20807 2:8.0.1763-14 - 1745476 - manpage of vim is garbled in Japanese locale...
libxml2 security update
2.9.7-8.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-8 - Fix CVE-2019-19956 1793001 - Fix CVE-2020-7595 1799786 - Fix CVE-2019-20388 1810058...
GNOME security, bug fix, and enhancement update
dleyna-renderer 0.6.0-3 - Add a manual Resolves: 1612579 frei0r-plugins 1.6.1-7 - Rebuild with newer annobin to fix rpmdiff problems - Fix the build with a newer opencv - Resolves: rhbz1703994 gdm 3.28.3-34 - Fix file descriptor leak Resolves: 1877853 3.28.3-33 - Fix problem with Xorg fallback...
librsvg2 security update
2.42.7-4 - Resolves: rhbz1804519 Add patch for CVE-2019-20446...
libldb security, bug fix, and enhancement update
2.1.3-2 - Resolves: rhbz1849615 - Fix CVE-2020-10730 use-after-free 2.1.3-1 - Resolves: rhbz1817567 - Rebase libldb to 2.1.3 for samba...
poppler security update
0.66.0-27 - Fix crash on broken file in tilingPatternFill - Resolves: 1801341...
thunderbird security update
78.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.4.0-1 - Update to 78.4.0 build1 - Disabled telemetry...
Unbreakable Enterprise kernel security update
4.1.12-124.44.4 - scsi: qla2xxx: Fix NULL pointer crash due to active timer for ABTS [email protected] Orabug: 32020790 4.1.12-124.44.3 - qed: Reduce verbosity of unimplemented MFW messages Mintz, Yuval Orabug: 31959299 - kexec: validate pe files against the systemblacklistkeyring Eric...
freetype security update
2.8-14.el79.1 - Test bitmap size earlier for PNGs - Fix memory leak in pngshim.c - Resolves: 1891635...
xorg-x11-server security update
1.20.4-12 - CVE fixes for: CVE-2020-14345 1872389, CVE-2020-14346 1872393, CVE-2020-14361 1872400, CVE-2020-14362 1872407 - Temporarily revert fixes from 1.20.4-11 build for delivery of CVE fixes 1.20.4-11 - Fix a crash when moving an animated cursor between screens - Be case-insentive when...
libX11 security update
1.6.7-3 - Fix CVE-2020-14363 1873922...
libX11 security update
1.6.4-4 - Fix CVE-2020-14363 1873920...
xorg-x11-server security update
1.17.4-18.0.1 - Fix regression from the patch for Orabug 27204421 which crashes Xvfb Orabug: 28485058 - Fix X consumes 100% CPU if messagebus restarted Orabug: 27204421 - Fix X server failure in FIPS mode Orabug: 22866111 1.17.4-18 - CVE fixes for: CVE-2020-14345 1872388, CVE-2020-14346 1872392,...
containerd security update
1.2.14-1.0.1 - BUILDINFO: commit=259ae80da592d4f6b5e3cdc87202d36bc86a3579 - Addresses CVE-2020-15157 1.2.14-1.0.0 - Added Oracle specific build files...
docker-engine docker-cli security update
docker-engine 19.03.11-6 - Fix for CVE-2020-15157 19.03.11-5 - Bugfix for 'docker images name' not working on docker 19.03.11-ol - Address CVE-2020-16845 19.03.11-4 - added patch for registry list 19.03.11-3 - update to 19.03.11 for CVE-2020-13401 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 -...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.272.b10-1 - Add backport of JDK-8215727: 'Restore JFR thread sampler loop to old / previous behaviour' - Resolves: rhbz1876665 1:1.8.0.272.b10-0 - Update to aarch64-shenandoah-jdk8u272-b10. - Switch to GA mode for final release. - Update release notes for 8u272 release. - Add backport of...
java-1.8.0-openjdk security update
1:1.8.0.272.b10-1 - Add backport of JDK-8215727: 'Restore JFR thread sampler loop to old / previous behaviour' - Resolves: rhbz1876665 1:1.8.0.272.b10-0 - Update to aarch64-shenandoah-jdk8u272-b10. - Switch to GA mode for final release. - Update release notes for 8u272 release. - Add backport of...
java-1.8.0-openjdk security update
1:1.8.0.272.b10-0 - Remove the 64-bit siphash test which fails to compile on x86-32 debug builds with gcc 4.4.7 in RHEL 6 - Resolves: rhbz1876665 1:1.8.0.272.b10-0 - Update to aarch64-shenandoah-jdk8u272-b10. - Switch to GA mode for final release. - Update release notes for 8u272 release. - Add...
firefox security update
78.4.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.0-1 - Update to 78.4.0 build2...
firefox security update
78.4.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.0-1 - Update to 78.4.0 build2...
java-11-openjdk security update
1:11.0.9.11-0.0.1 - link atomic for ix86 build 1:11.0.9.11-0 - Delay tzdata 2020b dependency until tzdata update has shipped. - Resolves: rhbz1876665 1:11.0.9.11-0 - Update to jdk-11.0.9+11 - Update release notes for 11.0.9 release. - Add backport of JDK-8254177 to update to tzdata 2020b - Requir...
kernel security update
3.10.0-1160.2.2.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.3 3.10.0-1160.2.2 - net bluetooth: l2ca...
java-11-openjdk security and bug fix update
1:11.0.9.11-0 - Update to jdk-11.0.9+11 - Update release notes for 11.0.9 release. - Add backport of JDK-8254177 to update to tzdata 2020b - Require tzdata 2020b due to resource changes in JDK-8254177 - Delay tzdata 2020b dependency until tzdata update has shipped. - This tarball is embargoed unt...
kernel security and bug fix update
4.18.0-193.28.12.OL8 - Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x6...
nodejs:12 security and bug fix update
nodejs 1:12.18.4-2 - Resolves: RHBZ1883966 - nodejs-devel not installable due to missing brotli - Some spec fixes 12.18.4-1 - Rebase to 12.18.4 nodejs-nodemon nodejs-packaging...
firefox security and bug fix update
78.3.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.3.0 - Update to 78.3.0 build1 78.2.0-3 - Update to 78.2.0 build1...
thunderbird security update
78.3.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.3.1-1 - Update to 78.3.1 build1 78.3.0-3 - Update to 78.3.0 build1 - Remove librdp.so as long as we cannot ship it in RHEL 78.2.1-1 - Update to 78.2.1 build1...
Unbreakable Enterprise kernel security update
5.4.17-2011.7.4 - iommu/amd: Restore IRTE.RemapEn bit for amdiommuactivateguestmode Suravee Suthikulpanit Orabug: 31931369 - iommu/amd: Fix potential @entry null deref Joao Martins Orabug: 31931369 - iommu/amd: Restore IRTE.RemapEn bit after programming IRTE Suravee Suthikulpanit Orabug: 31931369...
Unbreakable Enterprise kernel security update
4.14.35-2025.401.4 - KVM: x86: always expose VIRTSSBD to guests Paolo Bonzini Orabug: 31957046 4.14.35-2025.401.3 - iommu/amd: Restore IRTE.RemapEn bit after programming IRTE Suravee Suthikulpanit Orabug: 31931371 - oracleasm: Access dbdev before dropping inode Stephen Brennan Orabug: 31901948 -...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.50.1 - USB: serial: omninet: fix reference leaks at open Mark Nicholson Orabug: 30484762 CVE-2017-8925 - GFS2: don't set rgrp globject until it's inserted into rgrp tree Bob Peterson Orabug: 30254252 CVE-2016-10905 - GFS2: Fix rgrp end rounding problem for bsize page size Bo...
Unbreakable Enterprise kernel security update
2.6.39-400.325.1 - media: rc: prevent memory leak in cx23888irprobe Navid Emamdoost Orabug: 31351676 CVE-2019-19054 - vgacon: Fix for missing check in scrollback handling Yunhai Zhang Orabug: 31705125 CVE-2020-14331 CVE-2020-14331 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783153...
Unbreakable Enterprise kernel security update
2.6.39-400.326.1 - ath9khtc: release allocated buffer if timed out Navid Emamdoost Orabug: 31351574 CVE-2019-19073 - USB: serial: ioti: fix information leak in completion handler Johan Hovold Orabug: 31352086 CVE-2017-8924 - mm/hugetlb: fix a race between hugetlb sysctl handlers Muchun Song Orabu...
bind security update
32:9.8.2-0.68.rc1.8 - Fix tsig-request verify CVE-2020-8622...
kernel security and bug fix update
2.6.32-754.35.1.OL6 - Update genkey bug 25599697 2.6.32-754.35.1 - ata libata: fix NULL sdev dereference race in atapiqccomplete Kenneth Yin 1876296 2.6.32-754.34.1 - mm mm: prevent getuserpages from overflowing page refcount Aristeu Rozanski 1705003 - mm mm/hugetlb.c: getuserpages ignores certai...
nss and nspr security, bug fix, and enhancement update
nspr 4.25.0-2 - Rebuild to fix wrong dist tag 4.25.0-1 - Rebase to NSPR 4.25 nss 3.53.1-3 - Disable dh timing test because it's unreliable on s390 from Bob Relyea - Explicitly enable upgradedb/sharedb test cycles 3.53.1-2 - Disable TLS 1.3 by default 3.53.1-1 - Rebase to NSS 3.53.1 3.44.0-8 -...
libcroco security update
0.6.12-6 - Rebuild with 7.9-z target Related: 1835951 0.6.12-5 - Fix CVE-2020-12825 Resolves: 1835951...
squid security update
7:3.5.20-17.4 - Resolves: 1872349 - CVE-2020-24606 squid: Improper Input Validation could result in a DoS - Resolves: 1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could result in cache poisoning - Resolves: 1872342 - CVE-2020-15811 squid: HTTP Request Splitting could result in cache...
qemu-kvm security update
1.5.3-175.el79.1 - Fixing release number for z-stream...
spice and spice-gtk security update
spice 0.14.0-9.0.2.el79.1 - Add ARM support 0.14.0-9.1 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355 spice-gtk 0.35-5.1 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355...
spice and spice-gtk security update
spice 0.14.2-1.1 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355 spice-gtk 0.37-1.2 - Fix multiple buffer overflows in QUIC decoding code Resolves: CVE-2020-14355...
Unbreakable Enterprise kernel security update
4.1.12-124.43.4 - kvm: fix kvmioctlcreatedevice reference counting CVE-2019-6974 Jann Horn Orabug: 29434845 CVE-2019-6974 - KVM: nVMX: unconditionally cancel preemption timer in freenested CVE-2019-7221 Peter Shier Orabug: 29434898 CVE-2019-7221 - KVM: x86: work around leak of uninitialized stack...
cloud-init security, bug fix, and enhancement update
19.4-7.0.3 - Add conditional restart of NetworkManager for cloud-final. Orabug: 31965645 - Correct postinstall upgrade cloud-init.service mismerge order. 19.4-7.0.1 - Add Oracle Linux variant to known distros - Add cloud-init hotplug event handling support Orabug: 30485135 - Oracle data source...
pcp security, bug fix, and enhancement update
4.3.2-12 - Fix pcp-atop dynamic memory initialization issues BZ 1818710 4.3.2-8 - Fix rpm %post privilege escalation CVEs BZs 1815249, 1815528 - Resolve an selinux policy issue with pmlogger BZ 1792859...
glib2 and ibus security and bug fix update
glib2 2.56.1-7 - Backport patch to limit access to files when copying CVE-2019-12450 Resolves: 1722099 2.56.1-6 - Backport patches for GDBus auth Resolves: 1777221 ibus 1.5.17-11 - Resolves: 1750835 - Fix CVE-2019-14822 missing authorization allows...
webkitgtk4 security, bug fix, and enhancement update
2.28.2-2 - Resolves: rhbz1817144 Rebuild to support ppc and s390 2.28.2-1 - Resolves: rhbz1817144 Rebase to 2.28.2...
spamassassin security update
3.4.0-6 - Fix CVE-2019-12420 - Resolves: rhbz1812976...
tomcat security and bug fix update
0:7.0.76-15 - Resolves: CVE-2020-13935 tomcat: multiple requests with invalid payload length in a WebSocket frame could lead to DoS 0:7.0.76-14 - Revert rhbz1814315 because it caused other issues with ipa-server, see rhbz1831127 - Resolves: CVE-2020-9484 tomcat: Apache Tomcat Remote Code Executio...
okular security update
4.10.5-9 - Document::processAction: If the url points to a binary, dont run it Resolves: bz1821451...