CHANGELOG.md

Changelog

2022-11-15

• Release Oracle Linux 8 Update 7 for amd64 and arm64v8

  • Shift oraclelinux:8 to point to oraclelinux:8.7
  • Update oraclelinux:8-slim to Update 7

• docker-library/official-images#13537

2022-11-04

• Republish all images for tzdata-2022f-1:

  • OL7, OL8, OL9: https://linux.oracle.com/errata/ELBA-2022-7404.html

• docker-library/official-images#13480

2022-11-02

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *ELSA-2022-7329 - lua security update

  • CVE-2022-33099 *ELSA-2022-7323 - python3.9 security update
  • CVE-2020-10735 *ELSA-2022-7314 - zlib security update
  • CVE-2022-37434 *ELSA-2022-7288 - openssl security update
  • CVE-2022-3602
  • CVE-2022-3786

• docker-library/official-images#13469

2022-10-26

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *ELSA-2022-7108 - sqlite security update

  • CVE-2020-35525
  • CVE-2020-35527 *ELSA-2022-7105 - gnutls security update
  • CVE-2022-2509 *ELSA-2022-7106 - zlib security update
  • CVE-2022-37434 *ELSA-2022-7192 - device-mapper-multipath security update
  • CVE-2022-41974 *ELSA-2022-7089 - libksba security update
  • CVE-2022-3515

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8: *ELSA-2022-7186 - device-mapper-multipath security update

  • CVE-2022-41974

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *ELSA-2022-7090 - libksba security update

  • CVE-2022-3515

• docker-library/official-images#13419

2022-10-21

• Republish all images for tzdata-2022e-1:

  • OL7, OL8, OL9: https://linux.oracle.com/errata/ELBA-2022-7067.html

• docker-library/official-images#13385

2022-10-12

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *ELSA-2022-6854 - gnutls and nettle security, bug fix, and enhancement update

  • CVE-2022-2509

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *ELSA-2022-6878 - expat security update

  • CVE-2022-40674

• docker-library/official-images#13323

2022-10-07

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *ELSA-2022-6778 - bind security update

  • CVE-2022-38177
  • CVE-2022-38178

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *ELSA-2022-6838 - expat security update

  • CVE-2022-40674

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8: *ELSA-2022-6834 - expat security update

  • CVE-2022-40674

• Republish all images for tzdata-2022d-1:

  • OL7, OL8, OL9: https://linux.oracle.com/errata/ELBA-2022-6827.html

• docker-library/official-images#13302

2022-10-03

• Update oraclelinux:7 for amd64 and arm64v8: *ELSA-2022-6765 - bind security update

  • CVE-2022-38177
  • CVE-2022-38178

• docker-library/official-images#13280

2022-09-23

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *ELBA-2022-6597 - ca-certificates bug fix and enhancement update *ELSA-2022-6602 - gnupg2 security update

  • CVE-2022-34903 *ELSA-2022-6608 - dbus-broker security update
  • CVE-2022-31212
  • CVE-2022-31213

• docker-library/official-images#13212

2022-09-22

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8: *ELBA-2022-6572 - ca-certificates bug fix and enhancement update

• docker-library/official-images#13202

2022-09-14

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *ELBA-2022-6459 - ca-certificates bug fix and enhancement update *ELSA-2022-6463 - gnupg2 security update

  • CVE-2022-34903 *ELSA-2022-6457 - python3 security update
  • CVE-2015-20107
  • CVE-2022-0391

• docker-library/official-images#13148

2022-08-31

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *[ELSA-2022-6224 - openssl security and bug fix update] (https://linux.oracle.com/errata/ELSA-2022-6224.html)

  • [CVE-2022-1292] (https://linux.oracle.com/cve/CVE-2022-1292.html)
  • [CVE-2022-1343] (https://linux.oracle.com/cve/CVE-2022-1343.html)
  • [CVE-2022-1473] (https://linux.oracle.com/cve/CVE-2022-1473.html)
  • [CVE-2022-2068] (https://linux.oracle.com/cve/CVE-2022-2068.html)
  • [CVE-2022-2097] (https://linux.oracle.com/cve/CVE-2022-2097.html)

• docker-library/official-images#13079

2022-08-30

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *[ELSA-2022-6206 - systemd security update] (https://linux.oracle.com/errata/ELSA-2022-6206.html)

  • [CVE-2022-2526] (https://linux.oracle.com/cve/CVE-2022-2526.html)

• docker-library/official-images#13070

2022-08-26

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *[ELSA-2022-6157 - curl security update] (https://linux.oracle.com/errata/ELSA-2022-6157.html)

  • [CVE-2022-32206] (https://linux.oracle.com/cve/CVE-2022-32206.html)
  • [CVE-2022-32207] (https://linux.oracle.com/cve/CVE-2022-32207.html)
  • [CVE-2022-32208] (https://linux.oracle.com/cve/CVE-2022-32208.html)

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *[ELSA-2022-6159 - curl security update] (https://linux.oracle.com/errata/ELSA-2022-6159.html)

  • [CVE-2022-32206] (https://linux.oracle.com/cve/CVE-2022-32206.html)
  • [CVE-2022-32208] (https://linux.oracle.com/cve/CVE-2022-32208.html)

• docker-library/official-images#13050

• Update oraclelinux:7 for amd64 and arm64v8: *[ELSA-2022-6160 - systemd security update] (https://linux.oracle.com/errata/ELSA-2022-6160.html)

  • [CVE-2022-32206] (https://linux.oracle.com/cve/CVE-2022-2526.html)

2022-08-24

• Republish all images for tzdata-2022c-1:

  • OL7, OL8, OL9: https://linux.oracle.com/errata/ELBA-2022-6138.html

• docker-library/official-images#13023

2022-08-10

• Update oraclelinux:9 for amd64 and arm64v8: *[ELSA-2022-5942 - vim security update] (https://linux.oracle.com/errata/ELSA-2022-5942.html)

  • [CVE-2022-1785] (https://linux.oracle.com/cve/CVE-2022-1785.html)
  • [CVE-2022-1897] (https://linux.oracle.com/cve/CVE-2022-1897.html)
  • [CVE-2022-1927] (https://linux.oracle.com/cve/CVE-2022-1927.html)

• docker-library/official-images#12934

2022-08-05

• Update oraclelinux:8 for amd64 and arm64v8: *[ELSA-2022-5813 - vim security update] (https://linux.oracle.com/errata/ELSA-2022-5813.html)

  • [CVE-2022-1785] (https://linux.oracle.com/cve/CVE-2022-1785.html)
  • [CVE-2022-1897] (https://linux.oracle.com/cve/CVE-2022-1897.html)
  • [CVE-2022-1927] (https://linux.oracle.com/cve/CVE-2022-1927.html)

• docker-library/official-images#12913

2022-08-03

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8: *[ELSA-2022-5809 - pcre2 security update] (https://linux.oracle.com/errata/ELSA-2022-5809.html)

  • [CVE-2022-1586] (https://linux.oracle.com/cve/CVE-2022-1586.html) *[ELSA-2022-5818 - openssl security update] (https://linux.oracle.com/errata/ELSA-2022-5818.html)
  • [CVE-2022-1292] (https://linux.oracle.com/cve/CVE-2022-1292.html)
  • [CVE-2022-2068] (https://linux.oracle.com/cve/CVE-2022-2068.html)
  • [CVE-2022-2097] (https://linux.oracle.com/cve/CVE-2022-2097.html)

• docker-library/official-images#12900

2022-07-06

• Update oraclelinux:9 and oraclelinux:9-slim for amd64 and arm64v8: *[ELSA-2022-5245 - curl security update] (https://linux.oracle.com/errata/ELSA-2022-5245.html)

  • [CVE-2022-22576] (https://linux.oracle.com/cve/CVE-2022-22576.html)
  • [CVE-2022-27774] (https://linux.oracle.com/cve/CVE-2022-27774.html)
  • [CVE-2022-27776] (https://linux.oracle.com/cve/CVE-2022-27776.html)
  • [CVE-2022-27782] (https://linux.oracle.com/cve/CVE-2022-27782.html) *[ELSA-2022-5244 - expat security update] (https://linux.oracle.com/errata/ELSA-2022-5244.html)
  • [CVE-2022-25313] (https://linux.oracle.com/cve/CVE-2022-25313.html)
  • [CVE-2022-25314] (https://linux.oracle.com/cve/CVE-2022-25314.html) *[ELSA-2022-4582 - gzip security update] (https://linux.oracle.com/errata/ELSA-2022-4582.html)
  • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html) *[ELSA-2022-5252 - libarchive security update] (https://linux.oracle.com/errata/ELSA-2022-5252.html)
  • [CVE-2022-26280] (https://linux.oracle.com/cve/CVE-2022-26280.html) *[ELSA-2022-5250 - libxml2 security update] (https://linux.oracle.com/errata/ELSA-2022-5250.html)
  • [CVE-2022-29824] (https://linux.oracle.com/cve/CVE-2022-29824.html) *[ELSA-2022-5251 - pcre2 security update] (https://linux.oracle.com/errata/ELSA-2022-5251.html)
  • [CVE-2022-1586] (https://linux.oracle.com/cve/CVE-2022-1586.html)
  • [CVE-2022-1587] (https://linux.oracle.com/cve/CVE-2022-1587.html) *[ELSA-2022-4795 - rsyslog security update] (https://linux.oracle.com/errata/ELSA-2022-4795.html)
  • [CVE-2022-24903] (https://linux.oracle.com/cve/none.html) *[ELSA-2022-5242 - vim security update] (https://linux.oracle.com/errata/ELSA-2022-5242.html)
  • [CVE-2022-0554] (https://linux.oracle.com/cve/CVE-2022-0554.html)
  • [CVE-2022-0943] (https://linux.oracle.com/cve/CVE-2022-0943.html)
  • [CVE-2022-1154] (https://linux.oracle.com/cve/CVE-2022-1154.html)
  • [CVE-2022-1420] (https://linux.oracle.com/cve/CVE-2022-1420.html)
  • [CVE-2022-1621] (https://linux.oracle.com/cve/CVE-2022-1621.html)
  • [CVE-2022-1629] (https://linux.oracle.com/cve/CVE-2022-1629.html) *[ELSA-2022-4940 - xz security update] (https://linux.oracle.com/errata/ELSA-2022-4940.html)
  • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html) *[ELSA-2022-4584 - zlib security update] (https://linux.oracle.com/errata/ELSA-2022-4584.html)
  • [CVE-2018-25032] (https://linux.oracle.com/cve/CVE-2018-25032.html)

• docker-library/official-images#12752

2022-07-05

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • [ELSA-2022-5235 - python security update] (https://linux.oracle.com/errata/ELSA-2022-5235.html)
    • [CVE-2020-26116] (https://linux.oracle.com/cve/CVE-2020-26116.html)
    • [CVE-2020-26137] (https://linux.oracle.com/cve/CVE-2020-26137.html)
    • [CVE-2021-3177] (https://linux.oracle.com/cve/CVE-2021-3177.html)

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • [ELSA-2022-5317 - libxml2 security update] (https://linux.oracle.com/errata/ELSA-2022-5317.html)
    • [CVE-2022-29824] (https://linux.oracle.com/cve/CVE-2022-29824.html)
  • [ELSA-2022-5311 - libgcrypt security update] (https://linux.oracle.com/errata/ELSA-2022-5311.html)
    • [CVE-2021-40528] (https://linux.oracle.com/cve/CVE-2021-40528.html)
  • [ELSA_2022-5319 - vim security update] (https://linux.oracle.com/errata/ELSA-2022-5319.html)
    • [CVE-2022-1621] (https://linux.oracle.com/cve/CVE-2022-1621.html)
    • [CVE-2022-1629] (https://linux.oracle.com/cve/CVE-2022-1629.html)

• docker-library/official-images#12744

2022-07-05

• Release Oracle Linux 9 for amd64 and arm64v8
• docker-library/official-images#12733

2022-06-30

• Update oraclelinux:8 for amd64 and arm64v8:

  • [ELSA-2022-5314 - expat security update] (https://linux.oracle.com/errata/ELSA-2022-5314.html)
    • [CVE-2022-25313] (https://linux.oracle.com/cve/CVE-2022-25313.html)
    • [CVE-2022-25314] (https://linux.oracle.com/cve/CVE-2022-25314.html)
  • [ELSA-2022-5313 - curl security update] (https://linux.oracle.com/errata/ELSA-2022-5313.html)
    • [CVE-2022-22576] (https://linux.oracle.com/cve/CVE-2022-22576.html)
    • [CVE-2022-27774] (https://linux.oracle.com/cve/CVE-2022-27774.html)
    • [CVE-2022-27776] (https://linux.oracle.com/cve/CVE-2022-27776.html)
    • [CVE-2022-27782] (https://linux.oracle.com/cve/CVE-2022-27782.html)

• docker-library/official-images#12719

2022-06-15

• Update oraclelinux:7 for amd64 and arm64v8:

  • [ELSA-2022-5052 - xz security update] (https://linux.oracle.com/errata/ELSA-2022-5052.html)
    • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html)

• docker-library/official-images#12647

2022-06-14

• Update oraclelinux:8 for amd64 and arm64v8:

  • [ELSA-2022-4991 - xz security update] (https://linux.oracle.com/errata/ELSA-2022-4991.html)
    • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html)

• docker-library/official-images#12637

2022-05-31

• Update oraclelinux:7 for amd64 and arm64v8:

  • [ELSA-2022-4803 - rsyslog security update] (https://linux.oracle.com/errata/ELSA-2022-4803.html)
    • [CVE-2022-24903] (https://linux.oracle.com/cve/CVE-2022-24903.html)

• Update oraclelinux:8 for amd64 and arm64v8:

  • [ELSA-2022-4799 - rsyslog security update] (https://linux.oracle.com/errata/ELSA-2022-4799.html)
    • [CVE-2022-24903] (https://linux.oracle.com/cve/CVE-2022-24903.html)

• docker-library/official-images#12554

2022-05-18

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • [ELSA-2022-9358 - glibc security update] (https://linux.oracle.com/errata/ELSA-2022-9358.html)
    • [CVE-2022-23219] (https://linux.oracle.com/cve/CVE-2022-23219.html)
    • [CVE-2022-23218] (https://linux.oracle.com/cve/CVE-2022-23218.html)

• docker-library/official-images#12458

2022-05-17

• Release Oracle Linux 8 Update 6 for amd64 and arm64v8
  • Shift oraclelinux:8 to point to oraclelinux:8.6
  • Update oraclelinux:8-slim to Update 6
• docker-library/official-images#12451

2022-05-12

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • [ELSA-2022-2191 - gzip security update] (https://linux.oracle.com/errata/ELSA-2022-2191.html)
    • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html)
  • [ELSA-2022-2213 - zlib security update] (https://linux.oracle.com/errata/ELSA-2022-2213.html)
    • [CVE-2018-25032] (https://linux.oracle.com/cve/CVE-2018-25032.html)

• docker-library/official-images#12421

2022-05-02

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • [ELSA-2022-1552 - vim security update] (https://linux.oracle.com/errata/ELSA-2022-1552.html)
    • [CVE-2022-1154] (https://linux.oracle.com/cve/CVE-2022-1154.html)
  • [ELSA-2022-1642 - zlib security update] (https://linux.oracle.com/errata/ELSA-2022-1642.html)
    • [CVE-2018-25032] (https://linux.oracle.com/cve/CVE-2018-25032.html)

• docker-library/official-images#12347

2022-04-27

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • [ELSA-2022-1537 - gzip security update] (https://linux.oracle.com/errata/ELSA-2022-1537.html)
    • [CVE-2022-1271] (https://linux.oracle.com/cve/CVE-2022-1271.html)

• docker-library/official-images#12320

2022-03-29

• Update oraclelinux:7 and oraclelinux:7-slim' for amd64andarm64v8`:

  • ELSA-2022-1066 - openssl security update
    • CVE-2022-0778
  • ELSA-2022-1069 - expat security update
    • CVE-2021-45960
    • CVE-2021-46143
    • CVE-2022-22822
    • CVE-2022-22823
    • CVE-2022-22824
    • CVE-2022-22825
    • CVE-2022-22826
    • CVE-2022-22827
    • CVE-2022-23852
    • CVE-2022-25235
    • CVE-2022-25236
    • CVE-2022-25315

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-1065 - openssl security update
    • CVE-2022-0778

• docker-library/official-images#12147

2022-03-24

• Republish all images for tzdata-2022a-1:
  • OL7, OL8: https://linux.oracle.com/errata/ELBA-2022-1032.html
• docker-library/official-images#12118

2022-03-23

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-9233 - openssl security update
    • CVE-2022-0778
  • ELSA-2022-9232 - expat security update
    • CVE-2022-23990

• docker-library/official-images#12108

2022-03-18

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • ELSA-2022-9224 - openssl security update
    • CVE-2022-0778
  • ELSA-2022-9227 - expat security update
    • CVE-2021-46143
    • CVE-2022-23990

• docker-library/official-images#12085

2022-03-17

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-0892 - libarchive security update

    • CVE-2021-23177
    • CVE-2021-31566

  • ELSA-2022-0894 - vim security update

    • CVE-2022-0318
    • CVE-2022-0359
    • CVE-2022-0361
    • CVE-2022-0392
    • CVE-2022-0413
    • CVE-2022-0261

  • ELSA-2022-0899 - libxml2 security update

    • CVE-2022-23308

  • ELSA-2022-0951 - expat security update

    • CVE-2022-25235
    • CVE-2022-25236
    • CVE-2022-25315
    • CVE-2021-45960
    • CVE-2021-46143
    • CVE-2022-22822
    • CVE-2022-22827
    • CVE-2022-23852
    • CVE-2022-22823
    • CVE-2022-22824
    • CVE-2022-22825
    • CVE-2022-22826

• docker-library/official-images#12059

2022-02-24

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • ELSA-2022-0666 - cyrus-sasl security update
    • CVE-2022-24407

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-0658 - cyrus-sasl security update
    • CVE-2022-24407

• docker-library/official-images#11927

2022-02-23

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:

  • ELSA-2022-0621 - openldap security update
    • CVE-2020-25709
    • CVE-2020-25710

• docker-library/official-images#11918

2022-02-11

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-0366 - vim security update
    • CVE-2021-3872
    • CVE-2021-3984
    • CVE-2021-4019
    • CVE-2021-4192
    • CVE-2021-4193

• docker-library/official-images#11854

2022-02-03

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:

  • ELSA-2022-0366 - vim security update

    • CVE-2021-3872
    • CVE-2021-3984
    • CVE-2021-4019
    • CVE-2021-4192
    • CVE-2021-4193

  • ELSA-2022-0368 - rpm security update

    • CVE-2021-3521

  • ELSA-2022-0370 - cryptsetup security update](https://linux.oracle.com/errata/ELSA-2022-0370.html)

    • CVE-2021-4122

• docker-library/official-images#11799

2022-01-12

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2022-0064 - openssl security update
    • CVE-2021-3712
• docker-library/official-images#11657

2021-12-22

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-5226 - openssl security update
    • CVE-2021-3712
• docker-library/official-images#11573

2021-12-01

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2021-4904 - nss security update
    • CVE-2021-43527
• docker-library/official-images#11428

2021-11-25

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2021-4782 - openssh security update
    • CVE-2021-41617
  • ELSA-2021-4785 - rpm security update
    • CVE-2021-20271
  • ELSA-2021-4788 - krb5 security update
    • CVE-2021-37750
• docker-library/official-images#11387

2021-11-18

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-4587 - gcc security update
    • CVE-2021-42574
• docker-library/official-images#11337

2021-11-17

• Release Oracle Linux 8 Update 5 for amd64 and arm64v8
  • Shift oraclelinux:8 to point to oraclelinux:8.5
  • Update oraclelinux:8-slim to Update 5
• docker-library/official-images#11324

2021-11-03

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-4057 - python3 security update
    • CVE-2021-3733
  • ELSA-2021-4059 - curl security update
    • CVE-2021-22946
    • CVE-2021-22947
  • ELBA-2021-4060 - libsolv security update
    • CVE-2021-33928
    • CVE-2021-33929
    • CVE-2021-33930
    • CVE-2021-33938
• docker-library/official-images#11233

2021-11-02

• Update oraclelinux:7 for amd64 and arm64v8:
  • ELSA-2021-4033 - binutils update
    • CVE-2021-42574
• docker-library/official-images#11231

2021-10-27

• Republish all images for tzdata-2021e-1:
  • OL7, OL8: https://linux.oracle.com/errata/ELBA-2021-4003.html
• docker-library/official-images#11193

2021-10-13

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELBA-2021-3790 - tzdata bug fix and enhancement update
• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELBA-2021-3790 - tzdata bug fix and enhancement update
  • ELSA-2021-3798 - openssl security update
    • CVE-2021-23840
    • CVE-2021-23841
  • ELSA-2021-3810 - libxml2 security update
    • CVE-2016-4658
• docker-library/official-images#11096

2021-09-28

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-3582 - curl security update
    • CVE-2021-22922
    • CVE-2021-22923
    • CVE-2021-22924
  • ELSA-2021-3576 - krb5 security update
    • CVE-2021-36222
    • CVE-2021-37750
  • ELBA-2021-3573 - ca-certificates bug fix and enhancement update
• Update oraclelinux:7 for amd64 and arm64v8:
  • ELBA-2021-3649 - ca-certificates bug fix and enhancement update
• docker-library/official-images#10978

2021-09-02

• Update oraclelinux:7 for amd64 and arm64v8:
  • ELSA-2021-3325 - bind security update
    • CVE-2021-25214
• docker-library/official-images#10831

2021-08-12

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-3058 - glib2 security update
    • CVE-2021-27218
• docker-library/official-images#10706

2021-07-22

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-2717 - systemd security update
    • CVE-2021-33910
• docker-library/official-images#10580

2021-07-13

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-2569 - libxml2 security update
    • CVE-2021-3516
    • CVE-2021-3518
    • CVE-2021-3537
    • CVE-2021-3517
    • CVE-2021-3541
• docker-library/official-images#10524

2021-06-30

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-2574 - rpm security update
    • CVE-2021-20271
  • ELSA-2021-2575 - lz4 security update
    • CVE-2021-3520
• docker-library/official-images#10454

2021-06-17

• Update oraclelinux:7 and oraclelinux:7slim for amd64 and arm64v8:
  • ELSA-2021-9294 - krb5 security update
    • CVE-2020-28196
• docker-library/official-images#10382

2021-06-11

• Update oraclelinux:7 and oraclelinux:8 for amd64 and arm64v8:
  • ELSA-2021-2357 - dhcp security update
  • ELSA-2021-2359 - dhcp security update
  • CVE-2021-25217
• docker-library/official-images#10344

2021-06-03

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-2170 - glib2 security update
    • CVE-2021-27219
• docker-library/official-images#10290

2021-06-01

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2021-2147 - glib2 security update
    • CVE-2021-27219
• docker-library/official-images#10275

2021-05-28

• Release Oracle Linux 8 Update 4 for amd64 and arm64v8
  • Shift oraclelinux:8 to point to oraclelinux:8.4
  • Update oraclelinux:8-slim to Update 4
• docker-library/official-images#10259

2021-05-01

• Update oraclelinux:7 and oraclelinux:7slim for amd64 and arm64v8:
  • ELSA-2021-1469 - bind security update
    • CVE-2021-25215
  • ELSA-2021-1384 - nss security and bug fix update
    • CVE-2020-25648
  • ELSA-2021-1389 - openldap security update
    • CVE-2020-25692
• docker-library/official-images#10091

2021-03-31

• Update oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELSA-2021-1024 - openssl security update
    • CVE-2021-3449
    • CVE-2021-3450
• docker-library/official-images#9887

2021-03-09

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2021-0670 - bind security update
    • CVE-2020-8625: https://linux.oracle.com/cve/CVE-2020-8625.html
• docker-library/official-images#9768

2021-02-12

• Update oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2021-0348 - glibc security and bug fix update
    • CVE-2020-10029: https://linux.oracle.com/cve/CVE-2020-10029.html
    • CVE-2020-29573: https://linux.oracle.com/cve/CVE-2020-29573.html
    • CVE-2019-25013: https://linux.oracle.com/cve/CVE-2019-25013.html
• https://github.com/docker-library/official-images/pull/**9617**

2021-02-06

Significant change to oraclelinux:8 for amd64 and arm64v8

In this release, glibc-all-langpacks is replaced by glibc-langpack-en which means only the en language/locale is available by default. This change reduces the final size of the image by over 200MB.

If any additional locales are required, simply run dnf install glibc-langpack-XX in your downstream Dockerfile (replaceing XX with the required language identifier).

To revert back to the previous behaviour where all locales were available, simply run dnf swap glibc-langpack-en glibc-all-langpacks in your downstream Dockerfile.

• docker-library/official-images#9584

2021-02-01

• Republish all images for tzdata-2021a-1:
  • OL7, OL8: https://linux.oracle.com/errata/ELBA-2021-0276.html
  • OL6: https://linux.oracle.com/errata/ELBA-2021-9022.html
• docker-library/official-images#9537

2021-01-15

• Republished all images to remove the LABEL directive to avoid downstream images being misidentified.
• docker-library/official-images#9429

2021-01-06

• Release oraclelinux:7, oraclelinux:7-slim, oraclelinux:8, oraclelinux:8-slim for arm64v8 and amd64:
  • ELBA-2021-0013 - tzdata bug fix and enhancement update
• Remove unsupported container images to reduce repo space consumption
• docker-library/official-images#9380

2020-12-22

• Release oraclelinux:7 and oraclelinux:7-slim for arm64v8 and amd64:
  • ELSA-2020-5566-1 - openssl security update
• docker-library/official-images#9339

2020-12-18

• Release oraclelinux:8 and oraclelinux:8-slim for arm64v8 and amd64:
  • ELSA-2020-5476 - openssl security and bug fix update
• docker-library/official-images#9309

2020-12-17

• Release oraclelinux:7 and oraclelinux:7-slim for arm64v8 and amd64:
  • ELSA-2020-5443 - gd security update
• docker-library/official-images#9301

2020-11-18

• Release oraclelinux:7 and oraclelinux:7-slim for arm64v8 and amd64:
  • ELSA-2020-5009 - python security update
  • ELSA-2020-5011 - bind security and bug fix update
• docker-library/official-images#9113

2020-11-16

• Release Oracle Linux 8 Update 3 for arm64 and arm64v8:
  • Shift oraclelinux:8 to point to oraclelinux:8.3
  • Update oraclelinux:8-slim to Update 3
• docker-library/official-images#9091

2020-10-30

• Updated 6.10, 6-slim, 7.9, 7-slim, 8.2, 8-slim for amd64 and arm64v8:
  • ELBA-2020-4329 - tzdata enhancement update - tzdata-2020d
• docker-library/official-images#8990

2020-10-23

• Updated oraclelinux:6 and oraclelinux:6-slim for amd64:
  • ELBA-2020-4282 - tzdata enhancement update
• docker-library/official-images#8942

2020-10-22

• Updated oraclelinux:7, oraclelinux:7-slim, oraclelinux:8 and oraclelinux:8-slim for amd64 and arm64v8:
  • ELBA-2020-4282
• docker-library/official-images#8931

2020-10-13

• Updated oraclelinux:7 and oraclelinux:7-slim for amd64 and arm64v8:
  • ELSA-2020-4076: nss and nspr security, bug fix, and enhancement update
• docker-library/official-images#8889

2020-10-7

• Release of Oracle Linux 7 Update 9 for amd64 and arm64v8:
  • Created oraclelinux:7.9
  • Switched oraclelinux:7 to map to oraclelinux:7.9
  • Updated oraclelinux:7-slim with Oracle Linux 7 Update 9 packages
• docker-library/official-images#8858

2020-09-15

• Added OpenContainers image-spec labels to each of the currently maintained tags
• docker-library/official-images#8722

2020-09-13

• Add shadow-utils to the oraclelinux:8-slim image for amd64 and arm64v8
  • This is a usability change to allow non-root users to be created and used
• docker-library/official-images#8714

2020-09-11

• Update oraclelinux:8 and oraclelinux:8-slim for both amd64 and arm64v8:
  • bind: https://linux.oracle.com/errata/ELBA-2020-3653.html
• docker-library/official-images#8704

2020-08-27

• Update oraclelinux:6 and oraclelinux:6-slim for amd64:
  • ca-certificates: https://oss.oracle.com/pipermail/el-errata/2020-August/010249.html
  • RootFS tarballs renamed to include architecture
• docker-library/official-images#8615

2020-07-24

• Update oraclelinux:8 and oraclelinux:8-slim for both amd64 and arm64v8:
  • iptables: https://oss.oracle.com/pipermail/el-errata/2020-July/010144.html
  • libdnf: https://oss.oracle.com/pipermail/el-errata/2020-July/010146.html
  • systemd: https://oss.oracle.com/pipermail/el-errata/2020-July/010149.html
• docker-library/official-images#8426

2020-07-21

• Updated oraclelinux:8.2 and oraclelinux:8-slim for amd64 and arm64v8
  • Structural changes only; no package changes.
• docker-library/official-images#8393

2020-07-17

• Updated oraclelinux:7-slim for amd64 and arm64v8
  • Structural changes only; no package changes.
• docker-library/official-images#8377

2020-07-16

• Updated oraclelinux:7.8 for amd64 and arm64v8
  • Updated dbus-1.10.24-14.0.1.el7_8 for CVE-2020-12049
  • https://oss.oracle.com/pipermail/el-errata/2020-July/010117.html
• docker-library/official-images#8367

2020-06-10

• Updated oraclelinux:7.8 and oraclelinux:7-slim images for amd64 and arm64v8
  • Updated systemd-219-73.0.1
  • https://linux.oracle.com/errata/ELBA-2020-5711.html
• docker-library/official-images#8162

2020-06-02

• Updated oraclelinux:8.2 images for amd64 and arm64v8
  • Updated systemd-239-30.0.2.el8_2
  • https://linux.oracle.com/errata/ELBA-2020-5701.html
  • Resolves issue #22
• Updated oraclelinux:7.8 images for amd64 and arm64v8
  • Updated bind-export-libs-9.11.4-16.P2.el7_8.6 to address CVE-2020-8616 and CVE-2020-8617
  • https://linux.oracle.com/errata/ELSA-2020-2344.html
• docker-library/official-images#8103

2020-05-07

• Added Oracle Linux 8 Update 2 for amd64 and arm64v8
• docker-library/official-images#7955

2020-05-02

• Updated Oracle Linux 7.8 image for amd64 and arm64v8
  • tzdata-2020a-1.el7
  • systemd-219-73.0.1.el7_8.5, systemd-libs-219-73.0.1.el7_8.5, libgudev1-219-73.0.1.el7_8.5
  • device-mapper-7:1.02.164-7.0.1.el7_8.1, device-mapper-libs-7:1.02.164-7.0.1.el7_8.1
  • bind-export-libs-32:9.11.4-16.P2.el7_8.2
• Updated Oracle Linux 6.10 and 6-slim, 7-slim images for amd64 and arm64v8
  • tzdata-2020a-1.el7
• docker-library/official-images#7928

2020-04-08

• Added Oracle Linux 7.8 images for amd64 and arm64v8
• Updated Oracle Linux 7-slim images to 7.8 for amd64 and arm64v8
• Release notes: https://docs.oracle.com/en/operating-systems/oracle-linux/7/relnotes7.8/
• docker-library/official-images#7769

2020-03-11

• Updated Oracle Linux 6 and 6-slim images for amd64
  • Updated curl to curl-7.19.7-54.0.2.el6_10
  • https://linux.oracle.com/errata/ELSA-2020-5561.html
• docker-library/official-images#7605

2020-03-10

• Updated Oracle Linux 7 and 7-slim images for amd64 and arm64v8
  • Updated curl to curl-7.29.0-54.0.5.el7_7.2
  • https://linux.oracle.com/errata/ELSA-2020-5562.html
• docker-library/official-images#7600

2020-03-04

• Updated Oracle Linux 8 and 8-slim images for amd64 and arm64v8
  • Updated systemd to systemd-239-18.0.2.el8_1.4
  • https://linux.oracle.com/errata/ELSA-2020-0575.html
• docker-library/official-images#7560

2020-02-25

• Fixing incorrect architecture tarball in dist-arm64v8 for the oraclelinux:8.1 image

2020-02-11

• Updated Oracle Linux 8 and 8-slim images for amd64 and arm64v8
  • Updated systemd to systemd-239-18.0.2.el8_1.2
  • https://linux.oracle.com/errata/ELBA-2020-0333.html
• docker-library/official-images#7441

2020-01-31

• Updated Oracle Linux 7 and 7-slim images for arm64v8
  • https://linux.oracle.com/cve/CVE-2019-13734.html
  • https://linux.oracle.com/errata/ELSA-2020-0273.html
• docker-library/official-images#7383

2020-01-29

• Updated Oracle Linux 7 and 7-slim images for arm64v8
  • https://linux.oracle.com/cve/CVE-2019-13734.html
  • https://linux.oracle.com/errata/ELSA-2020-0227.html
• Updated Oracle Linux 6 and 6-slim images for amd64
  • Updated ca-certificates to latest version
• docker-library/official-images#7368

2020-01-28

• Updated Oracle Linux 7 and 7-slim images for amd64
  • https://linux.oracle.com/cve/CVE-2019-13734.html
  • https://linux.oracle.com/errata/ELSA-2020-0227.html
• docker-library/official-images#7356

2020-01-20

• Adding Oracle Linux 8.1 images for both amd64 and arm64v8
• Updating 8-slim image
• Retain tzdata database across all images
• docker-library/official-images#7302

2019-12-24

• Updated Oracle Linux 6, 6.10, 6-slim, 7, 7.7 and 7-slim images for arm64v8
• docker-library/official-images#7192

2019-12-20

• Updated Oracle Linux 6, 6.10, 6-slim, 7, 7.7 and 7-slim images for amd64
• docker-library/official-images#7177

2019-11-19

• Breaking changes:
  • Update dist-amd64/8-slim image to use microdnf to reduce the image size
  • Update dist-arm64v8/8-slim image to use microdnf to reduce the image size
• Update dist-amd64/7-slim image for sudo-1.8.23-4.0.1.el7.src.rpm
• Update dist-arm64v8/7-slim image for sudo-1.8.23-4.0.1.el7.src.rpm
• Added dist-amd64/7.7 image and assigned it the 7, latest tags
• Added dist-arm64v8/7.7 image and assigned it the 7, latest tags
• docker-library/official-images#7001

2019-10-16

• Breaking change: python36 removed from 8-slim image
• Several other packages that had been included via dependencies were removed
• docker-library/official-images#6784

2019-08-09

• Updated Oracle Linux 7.6, 7-slim, 8.0 and 8-slim for curl
• docker-library/official-images#6428

2019-07-30

• Reduced the size of the 8-slim image for amd64 and arm64v8
• docker-library/official-images#6365
• docker-library/official-images#6380

2019-07-20

• Added Oracle Linux 8 for amd64 and arm64v8
• docker-library/official-images#6327

2019-07-16

• Update Oracle Linux 6.10 for dbus
• docker-library/official-images#6297

2019-07-02

• Update Oracle Linux 7.6 on amd64 and arm64v8 for vim
• docker-library/official-images#6208

2019-06-24

• Update Oracle Linux 7.6 and 7-slim on amd64 and arm64v8 for Python 2.7
• docker-library/official-images#6148

2019-06-14

• Update Oracle Linux 6 and 6-slim on amd64 for Python 2.6
• docker-library/official-images#6081

2019-05-31

• Update Oracle Linux 7.6 on amd64 and arm64v8 for bind
• docker-library/official-images#5996

2019-04-11

• Update Oracle Linux 6.10 on amd64 and 7.6, 7-slim on amd64 and arm64v8 for OpenSSH and python
• docker-library/official-images#5715

2019-03-29

• Update Oracle Linux 7.6 and 7-slim on amd64 for libssh2
• docker-library/official-images#5631

2019-03-15

• Update Oracle Linux 7.6 and 7-slim on amd64 and arm64v8 for OpenSSL
• docker-library/official-images#5547

2019-02-20

• Update Oracle Linux 7.6 on amd64 and arm64v8 for systemd
• docker-library/official-images#5456

2019-01-31

• Update Oracle Linux 7.6 on amd64 and arm64v8 for systemd
• docker-library/official-images#5376

2019-01-15

• Update Oracle Linux 7.6 on amd64 and arm64v8 for systemd
• docker-library/official-images#5292

2018-11-08

• Added Oracle Linux 7 Update 6 for amd64 and arm64v8
• docker-library/official-images#5044

2018-10-16

• Update Oracle Linux 6.10, 6-slim, 7.5, 7-slim on amd64 for OpenSSL
• docker-library/official-images#4957

2018-10-10

• Update Oracle Linux 6.10 and 6-slim on amd64 for NSS
• docker-library/official-images#4931

2018-09-27

• Update Oracle Linux 7.5 and 7-slim on amd64 and arm64v8 for NSS
• docker-library/official-images#4887

2018-08-28

• Update Oracle Linux 7 Update 5 for bind
• docker-library/official-images#4783

2018-08-03

• Updated yum-utils on Oracle Linux 6 and 7
• docker-library/official-images#4677

2018-07-26

• Updating Oracle Linux 6 and 7 images for amd64/arm64v8 to resolve CVE-2018-12020
• docker-library/official-images#4636

2018-07-07

• Added Oracle Linux 6 Update 10 for amd64
• Added Oracle Linux 7 Update 5 for arm64v8
• docker-library/official-images#4545

2018-06-02

• Update oraclelinux:6.9 for procps
• docker-library/official-images#4414

2018-05-25

• Update oraclelinux:7.5 for procps-ng update
• docker-library/official-images#4389

2018-05-16

• Update Oracle Linux 6 and 7 amd64 images with dhcp updates
• docker-library/official-images#4363

2018-04-18

• Added Oracle Linux 7 Update 5 for amd64 and arm64v8
• docker-library/official-images#4258

2018-03-21

• Added arm64v8 builds for Oracle Linux 7
• docker-library/official-images#4149

2018-03-13

• Updating dhcp on Oracle Linux 7 for CVE-2018-5732 and CVE-2018-5733
• docker-library/official-images#4119

2018-03-09

• Updating the oraclelinux:6.9 image to address CVE-2018-5732 and CVE-2018-5733
• docker-library/official-images#4109

2018-01-01

• Updating oraclelinux:7.4 to resolve CVE-2018-1049
• docker-library/official-images#3963

2018-01-23

• Updating oraclelinux:7.4 for CVE-2017-3145
• docker-library/official-images#3925

2017-11-29

• Updating Oracle Linux 7.4 and 7-slim images to resolve CVE-2017-1000257
• docker-library/official-images#3749

2017-09-30

• Updating 6.9, 6-slim, 7.4, 7-slim to address CVE-2017-7805
• docker-library/official-images#3518

2017-09-01

• Updating Oracle Linux 6 Update 9 for CVE-2016-6210
• docker-library/official-images#3399

2017-08-09

• Added Oracle Linux 7 Update 4
• docker-library/official-images#3293

2017-07-07

• Updating Oracle Linux 7 Update 3 to resolve CVE-2017-3142 and CVE-2017-3142
• docker-library/official-images#3151

2017-06-21

• Updated 6.9, 6-slim, 7.3, 7-slim images for CVE-2017-1000366 (Stack Clash)
• docker-library/official-images#3103

2017-05-31

• Updating Oracle Linux 6 and 7 images for CVE-2017-7502
• docker-library/official-images#2996

2017-04-21

• Update Oracle Linux images with CVE fixes
  • CVE-2017-3136
  • CVE-2017-3137
• docker-library/official-images#2878

2017-04-13

• Updating Oracle Linux 7 Update 3 for CVE-2017-2616
• docker-library/official-images#2855

2017-03-30

• Updating Oracle Linux 6 images to resolve CVE-2017-2628
• docker-library/official-images#2797

2017-03-19

• Adding Oracle Linux 6 Update 9 and updating the 6-slim image accordingly
• This also changed the 6 tag to point to 6.9
• docker-library/official-images#2793

2017-02-22

• Updating the Oracle Linux 6 and 7 (full/slim) images to address the following OpenSSL CVEs:
  • CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher
  • CVE-2016-8610 - DoS of single-threaded servers via excessive alerts
• docker-library/official-images#2680

2017-02-17

• Size reductions on 6.8, 6 and 6-slim images
• docker-library/official-images#2665

2017-02-16

• Updated Oracle Linux 7 image for CVE-2017-3135
• Added oraclelinux:7-slim and oraclelinux:6-slim images
• docker-library/official-images#2660

2017-01-18

• Updating Oracle Linux 7 Update 3 image for bind CVE fixes
• docker-library/official-images#2541

2016-12-23

• Updated Oracle Linux 6 Update 8 and 7 Update 3 images for CVE-2016-1248
• docker-library/official-images#2480

2016-11-30

• Updated Oracle Linux 6 Update 8 and 7 Update 3 to address CVE-2016-0718
• docker-library/official-images#2405

2016-11-22

• Updating Oracle Linux 5, Oracle Linux 6 and Oracle Linux 7 images for CVE updates
  • CVE-2016-2834
  • CVE-2016-5285
  • CVE-2016-8635
• docker-library/official-images#2379

2016-11-17

• Updated Oracle Linux 7 Update 3 for CVE-2016-7545
• docker-library/official-images#2357

2016-11-16

• Updated Oracle Linux 6 Update 8 for CVE-2016-7545
• docker-library/official-images#2352

2016-11-11

• Adding Oracle Linux 7 Update 3 and updating the 7 and latest tags
• docker-library/official-images#2335

2016-11-09

• Updated Oracle Linux 6 Update 8 image to patch CVE-2016-6313
  • fix CVE-2016-6313 - predictable PRNG output (#1366105)
• docker-library/official-images#2328

2016-10-26

• Updated Oracle Linux 7 Update 2/latest image/tag with updates for some CVEs
  • CVE-2016-2776
• Updated tzdata and curl
• docker-library/official-images#2282

2016-10-18

• Updated Oracle Linux 5 for OpenSSL CVEs
  • CVE-2016-2177
  • CVE-2016-2178
  • CVE-2016-2179
  • CVE-2016-2180
  • CVE-2016-2181
  • CVE-2016-2182
  • CVE-2016-2183
  • CVE-2016-6302
  • CVE-2016-6303
  • CVE-2016-6304
  • CVE-2016-6305
  • CVE-2016-6306
  • CVE-2016-6307
  • CVE-2016-6308
• docker-library/official-images#2262

2016-09-29

• Updated Oracle Linux 6 and 7 for OpenSSL CVEs
  • CVE-2016-2177
  • CVE-2016-2178
  • CVE-2016-2179
  • CVE-2016-2180
  • CVE-2016-2181
  • CVE-2016-2182
  • CVE-2016-2183
  • CVE-2016-6302
  • CVE-2016-6303
  • CVE-2016-6304
  • CVE-2016-6305
  • CVE-2016-6306
  • CVE-2016-6307
  • CVE-2016-6308
• docker-library/official-images#2203

2016-07-20

• Addresses https://github.com/moby/moby#10180 by including yum-plugin-ovl in the base image.
• docker-library/official-images#1963

2016-06-23

• Address some OpenSSL CVEs in the new Oracle Linux 5 image
  • CVE-2016-0799
  • CVE-2016-2105
  • CVE-2016-2106
  • CVE-2016-2109
• Added the yum-utils package to the base filesystem install for Oracle Linux 6 and Oracle Linux 7.
• docker-library/official-images#1871

2016-06-03

• Updated Oracle Linux 5 image with OpenSSL CVE fixes
• docker-library/official-images#1804

2016-05-21

• Add Oracle Linux 6 Update 8 and update the 6 tag accordingly
• This also updates oraclelinux:6 to point to 6.8.
• docker-library/official-images#1760
• docker-library/official-images#1761

2016-05-13

• Updated Oracle Linux 6 Update 7 to fix OpenSSL CVEs
  • CVE-2016-2105
  • CVE-2016-2106
  • CVE-2016-2107
  • CVE-2016-2108
  • CVE-2016-2109
  • CVE-2016-2176
• docker-library/official-images#1732

2016-05-10

• Updated Oracle Linux 7 Update 2 base image to address OpenSSL CVEs
  • CVE-2016-2105
  • CVE-2016-2106
  • CVE-2016-2107
  • CVE-2016-2108
  • CVE-2016-2109
  • CVE-2016-2176
• docker-library/official-images#1722

2016-03-03

• Updated Oracle Linux to address OpenSSL CVEs
  • CVE-2016-0800 ("DROWN")
  • CVE-2016-0799
  • CVE-2016-0798
  • CVE-2016-0797
  • CVE-2016-0705
  • CVE-2016-0704
  • CVE-2016-0703
  • CVE-2016-0702 ("Cache Bleed")
• docker-library/official-images#1508

2016-02-17

• Updated Oracle Linux 7 Update 2 and 6 Update 7 images to resolve CVE-2015-7547
• docker-library/official-images#1453

2015-12-18

• Updated Oracle Linux 7 Update 2 image to resolve the following CVEs:
  • CVE-2015-3193
  • CVE-2015-3194
  • CVE-2015-3195
  • CVE-2015-3196
• docker-library/official-images#1287

2015-12-02

• Add Oracle Linux 7 Update 2
• docker-library/official-images#1228

2015-09-17

• Tiny update to the base Oracle Linux 7 image to include Oracle-specific RPM macros for build purposes.
• This change was already made to the Oracle Linux 6 image.
• docker-library/official-images#1059

2015-06-30

• Adding Oracle Linux 6 Update 7
• docker-library/official-images#935

2015-06-11

• Updated images to support upstream Docker Engine RPM builds on Oracle Linux 6.
• docker-library/official-images#886

2015-06-16

• Updated Oracle Linux 6 Update 6 and 7 Update 1 images with new OpenSSL CVE fixes to address the LOGJAM (CVE-2015-4000) as well as:
  • improved fix for CVE-2015-1791
  • add missing parts of CVE-2015-0209 fix for correctness although unexploitable
  • fix CVE-2014-8176 - invalid free in DTLS buffering code
  • fix CVE-2015-1789 - out-of-bounds read in X509_cmp_time
  • fix CVE-2015-1790 - PKCS7 crash with missing EncryptedContent
  • fix CVE-2015-1791 - race condition handling NewSessionTicket
  • fix CVE-2015-1792 - CMS verify infinite loop with unknown hash function
  • fix CVE-2015-3216 - regression in RAND locking that can cause segfaults on read in multithreaded applications
• docker-library/official-images#822

2015-03-25

• Updated Oracle Linux images with latest OpenSSL CVE fixes:
  • fix CVE-2015-0209 - potential use after free in d2i_ECPrivateKey()
  • fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison
  • fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption
  • fix CVE-2015-0289 - NULL dereference decoding invalid PKCS#7 data
  • fix CVE-2015-0292 - integer underflow in base64 decoder
  • fix CVE-2015-0293 - triggerable assert in SSLv2 server
• docker-library/official-images#618

2015-03-19

• Added Oracle Linux 7 Update 1
• Also switched the oraclelinux:latest and oraclelinux:7 tags to 7.1.
• docker-library/official-images#568

2015-02-11

• All three images are set to UTC and we have added Oracle Linux 5 Update 11 (includes GHOST vulnerability fix).
• docker-library/official-images#481

2015-02-05

• Updated Oracle Linux images that resolve CVE-2015-0235 (glibc update)
• docker-library/official-images#457

2014-12-25

• Initial submission of Oracle Linux 6 Update 5
• 6.5 and 7.0 as official images on Docker Hub
• docker-library/official-images#372