506 matches found
java-1.8.0-openjdk security update
1:1.8.0.191.b12-0 - Update to aarch64-shenandoah-jdk8u191-b12. - Resolves: rhbz1633817 1:1.8.0.191.b10-0 - Update to aarch64-shenandoah-jdk8u191-b10. - Drop 8146115/PR3508/RH1463098 applied upstream. - Resolves: rhbz1633817 1:1.8.0.181.b16-0 - Add new Shenandoah patch PR3634 as upstream still fai...
mariadb security and bug fix update
1:5.5.60-1 - Rebase to 5.5.60 - CVE's fixed: 1558256, 1558260, 1559060 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-10379 CVE-2017-10384 CVE-2017-10378 CVE-2017-10268 CVE-2018-2562 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2819 CVE-2018-2817 CVE-2018-276...
openslp security update
2.0.0-3 - Fix possible heap memory corruption, CVE-2017-17833 Resolves: 1575699...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
Flash Player -- multiple vulnerabilities
Adobe reports: This update resolves an out-of-bounds read vulnerability that could lead to information disclosure CVE-2018-5008. This update resolves a type confusion vulnerability that could lead to arbitrary code execution CVE-2018-5007...
python security update
2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz1584545...
sssd and ding-libs security and bug fix update
ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...
Security Update for Microsoft SharePoint Foundation 2013 (KB4022190)
A security vulnerability exists in Microsoft SharePoint Foundation 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
Flash Player -- multiple vulnerabilities
Adobe reports: This update resolves a type confusion vulnerability that could lead to arbitrary code execution CVE-2018-4945. This update resolves an integer overflow vulnerability that could lead to information disclosure CVE-2018-5000. This update resolves an out-of-bounds read vulnerability th...
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578545...
Security Update for Microsoft Office Web Apps Server 2013 (KB4018393)
A security vulnerability exists in Microsoft Office Web Apps Server 2013 that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
librelp security update
1.2.12-1.1 - fixed bad NVR - resolves rhbz1561232 1.2.12-2 - fixed CVE-2018-1000140 - resolves rhbz1561232...
java-1.8.0-openjdk security update
1:1.8.0.171-3.b10 - Cleanup from previous commit. - Resolves: rhbz1559766 1:1.8.0.171-2.b10 - Backported from fedora: aarch64BuildFailure.patch, rhbz1536622-JDK8197429-jdk8.patch, rhbz1540242.patch - Resolves: rhbz1559766 1:1.8.0.171-0.b10 - Update to aarch64-jdk8u171-b10. - Resolves: rhbz1559766...
Security Update for Microsoft Excel 2013 (KB4018350) 32-Bit Edition
A security vulnerability exists in Microsoft Excel 2013 32-Bit Edition that could allow arbitrary code to run when a maliciously modified file is opened. This update resolves that vulnerability...
dhcp security update
12:4.1.1-53.P1.0.1.3 - Added oracle-errwarn-message.patch 12:4.1.1-53.P1.3 - Resolves: 1550085 - CVE-2018-5733 Avoid reference overflow - Resolves: 1550083 - CVE-2018-5732 Avoid options buffer overflow...
libreoffice security update
1:5.0.6.2-15.0.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-15 - Resolves: rhbz1545034 - CVE-2018-1055 CVE-2018-6871 1:5.0.6.2-14 - Resolves: rhbz1454693 segv on interrupting tile...
Oracle Linux 6 / 7 : java-1.8.0-openjdk (ELSA-2017-2998)
The remote Oracle Linux 6 / 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-2998 advisory. 1:1.8.0.151-1.b12 - repack policies adapted to new counts and paths - note that also c-j-c is needed to make this apply in next update - Resolves:...
Flash Player -- Remote code execution
Adobe reports: This update resolves a type confusion vulnerability that could lead to remote code execution CVE-2017-11292...
poppler security update
0.26.5-17 - Resolves: rhbz1482934 CVE-2017-9776...
Oracle Linux 7 : pidgin (ELSA-2017-1854)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2017-1854 advisory. - Add patch for CVE-2017-2640 Resolves: 1431022 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory...