9171 matches found
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.4 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444790 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444687 CVE-2015-3636...
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2.6.18-194.el5 - net mlx4: pass attributes down to vlan interfaces Doug Ledford 573098 - block cfq-iosched: fix sequential read perf regression Jeff Moyer 571818 2.6.18-193.el5 - fs gfs2: locking fix for potential dos Steven Whitehouse 572390 CVE-2010-0727 - acpi powermeter: avoid oops on driver...
cockpit security update
311.2-1.0.1 - Replaced upstream urls in documentation with oracle links Orabug: 36528753 - Drop subscription-manager-cockpit requirement for ol Orabug: 34681110 - Remove duplicate reference to server in cockpit Orabug: 34030494 - Update documentation links Orabug: 30271413, Orabug: 32013095,...
kernel update
4.18.0-553.5.1.el810.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32...
python-jwcrypto security update
0.8-5 - Address potential DoS with high compression ratio Resolves: RHEL-28698...
pixman security update
0.40.0-6 - Backport fix for CVE-2022-44638...
podman security and bug fix update
4.4.1-3.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.4.1-3 - update to the latest content of https://github.com/containers/podman/tree/v4.4.1-rhel https://github.com/containers/podman/commit/e1703bb - Related: 2124478 2:4.4.1-2 - update to the latest...
tar security update
2:1.34-6 - Fix CVE-2022-48303 - Resolves: CVE-2022-48303...
openssh security update
7.4p1-22.0.1fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-22.0.1 - enlarge format buffer size for certificate serial number so the log message can record any 64-bit integer without...
krb5 security update
1.15.1-51.0.1 - Add recursion limit for ASN.1 indefinite lengths Orabug: 32582360 1.15.1-51 - Fix KDC null deref on TGS inner body null server CVE-2021-37750 - Resolves: 1997599...
sudo security update
1.8.6p3-29.0.2.el610.3 - backport the fix CVE-2021-3156.patch from ol7...
python-twisted-web security update
12.1.0-7 - Fix CVE-2020-10108 and CVE-2020-10109 multiple HTTP request smuggling vulnderabilities Resolves: rhbz1813439 rhbz1813447 - Remove useless macros definitions...
kernel security and bug fix update
4.18.0-147.8.11.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.8.11 - rebuild, due infrastructure issues last kernel build wasn'...
java-1.7.0-openjdk security update
1:1.7.0.251-2.6.21.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.251-2.6.21.0 - Bump to 2.6.21 and OpenJDK 7u251-b02. - Resolves: rhbz1785753...
libssh2 security update
1.4.2-2.0.1.el67.1 - Orabug: 29909723 Added patch CVE-2019-3862. Added Additional length checks to prevent out-of-bounds CVE-2019-3862...
wget security update
1.14-18.1 - Fix CVE-2019-5953 1696733...
spice security update
0.14.0-6.0.2.1 - Add ARM support 0.14.0-6.1 - Fix off-by-one error during guest-to-host memory address conversion Resolves: CVE-2019-3813...
Unbreakable Enterprise kernel security update
4.1.12-124.20.1 - bnxten: xdp: don't make drivers report attachment mode partial backport Somasundaram Krishnasamy Orabug: 27988326 - bpf: make bnxt compatible w/ bpfxdpadjusttail Nikita V. Shirokov Orabug: 27988326 - bnxten: add meta pointer for direct access partial backport Somasundaram...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
Unbreakable Enterprise kernel security update
4.1.12-103.7.4 - ipv6: avoid overflow of offset in ip6find1stfragopt Sabrina Dubroca Orabug: 27011255 CVE-2017-7542 - udp: consistently apply ufo or fragmentation Willem de Bruijn Orabug: 26921320 CVE-2017-1000112...
httpd security update
2.2.15-60.0.1.5 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.5 - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer dereference - Resolves: 1463207 ...
openssl security and bug fix update
1.0.1e-42.4 - update fix for CVE-2015-0287 to what was released upstream 1.0.1e-42.3 - fix CVE-2015-0209 - potential use after free in d2iECPrivateKey - fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
php security update
5.4.16-23 - fileinfo: cdfunpacksummaryinfo excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdfcheckstreamoffset insufficient boundary check. CVE-2014-3479 - fileinfo: cdfcountchain insufficient boundary check...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.36.6uek - filter: prevent nla extensions to peek beyond the end of the message Mathias Krause Orabug: 19315783 CVE-2014-3144 CVE-2014-3145 - futex: Forbid uaddr == uaddr2 in futexwaitrequeuepi Darren Hart Orabug: 19315318 CVE-2012-6647 2.6.32-400.36.5uek - ntty: Fix nttywrit...
java-1.7.0-openjdk security update
1.7.0.9-2.3.8.0.0.1.el64 - Update DISTRONAME in specfile 1.7.0.9-2.3.8.0el6 - Revert to rhel 6.3 version of spec file - Revert to icedtea7 2.3.8 forest - Resolves: rhbz917183 1.7.0.11-2.4.0.pre5.el6 - Update to latest snapshot of icedtea7 2.4 forest - Resolves: rhbz917183 1.7.0.9-2.4.0.pre4.3.el6...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-100.10.1.el6uek - thp: avoid atomic64read in pmdreadatomic for 32bit PAE Andrea Arcangeli Orabug: 14217003 2.6.39-100.9.1.el6uek - mm: pmdreadatomic: fix 32bit PAE pmd walk vs pmdpopulate SMP race condition Andrea Arcangeli Bugdb: 13966 CVE-2012-2373 - mm: thp: fix pmdbad triggering in cod...
kernel security and bug fix update
2.6.18-194.17.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security and bug fix update
2.6.18-164.2.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug 69930...
kernel security update
4.18.0-553.46.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
httpd security update
2.4.57-8.0.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-8 - modxml2enc: fix media type handling Resolves: RHEL-17686 - moddav: add DavBasePath Resolves: RHEL-6600 2.4.57-7 - Resolves: RHEL-14447 - httpd: modmacro: out-of-bounds read vulnerability CVE-2023-31122 2.4.57-...
tcpdump security update
14:4.99.0-9 - Resolves: RHEL-21558 - tcpslice: use-after-free in extractslice 14:4.99.0-8 - Resolves: RHEL-10714 - Fix PGM option printing...
libarchive security update
3.3.3-5 - Fix for CVE-2022-36227...
logrotate security update
3.18.0-7 - lockState: do not print error: when exit code is unaffected 2090926 3.18.0-6 - fix potential DoS from unprivileged users via the state file CVE-2022-1348 Mon Aug 09 2021 Mohan Boddu - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 3.18.0-4 - make renamecopy and...
compat-expat1 security update
1.95.8-8.0.1 - Ensure raw tagnames are safe exiting internalEntityParser CVE-2022-40674Orabug: 34708578...
prometheus-jmx-exporter security update
0.12.0-8 - Bump snakeyaml version to 1.32 to collect fix for CVE-2022-25857 BZ 2128477...
ruby:2.5 security update
ruby 2.5.9-110 - Fix FTBFS due to an incompatible load directive. - Fix a fiddle import test on an optimized glibc on Power 9. - Fix by adding length limit option for methods that parses date strings. Resolves: CVE-2021-41817 - CGI::Cookie.parse no longer decodes cookie names to prevent spoofing...
xstream security update
1.3.1-14 - Fix remote code execution vulnerability - Resolves: CVE-2021-29505...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.104.4.el7 - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el7 - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empty list...
systemd security, bug fix, and enhancement update
239-40.0.1 - backport upstream pstore tmpfiles patch Orabug: 31420486 - udev rules: fix memory hot add and remove Orabug: 31310273 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog entries Orabug: 30853009 - fix to generate...
Unbreakable Enterprise kernel security update
2.6.39-400.325.1 - media: rc: prevent memory leak in cx23888irprobe Navid Emamdoost Orabug: 31351676 CVE-2019-19054 - vgacon: Fix for missing check in scrollback handling Yunhai Zhang Orabug: 31705125 CVE-2020-14331 CVE-2020-14331 - rename kABI whitelists to lockedlists Dan Duval Orabug: 31783153...
qemu-kvm security update
0.12.1.2-2.506.el610.8 - kvm-qemu-kvm-QEMU-usb-check-RNDIS-message-length.patch bz1869684 - kvm-qemu-kvm-QEMU-usb-fix-setuplen-init-CVE-2020-14364.patch bz1869684 - Resolves: bz1869684 CVE-2020-14364 qemu-kvm: QEMU: usb: out-of-bounds r/w access issue while processing usb packets rhel-6.10.z...
firefox security update
68.4.1-1.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.4.1-1 - Update to 68.4.1esr build1 - Update to 68.4.0esr build1 - Fix for wrong...
python security update
2.7.5-86.0.3 - Prefix dot in domain for proper subdomain validation CVE-2018-20852Orabug: 30114725...
Unbreakable Enterprise kernel security update
4.1.12-124.33.4 - ocfs2: protect extent tree in ocfs2prepareinodeforwrite Shuning Zhang Orabug: 30036349 - ocfs2: direct-IO: protect getblocks Junxiao Bi Orabug: 30036349 - SUNRPC: Remove xprtconnectstatus Trond Myklebust Orabug: 30165838 - SUNRPC: Handle ENETDOWN errors Trond Myklebust Orabug:...
yum security, bug fix, and enhancement update
createrepoc 0.11.0-3 - Backport patch to switch off timestamps on documentation in order to remove file conflicts RhBug:1738788 0.11.0-2 - Consistently produce valid URLs by prepending protocol. RhBug:1632121 - modifyrepoc: Prevent doubling of compression test.gz.gz RhBug:1639287 - Correct pkg...
nodejs:10 security update
nodejs-packaging 17-3 - Change Requires to Recommends on nodejs dependency, so it is usable for building nodejs...
.NET Core on Red Hat Enterprise Linux security and bug fix update
2.1.509-1 - Update to .NET Core Runtime 2.1.13 and SDK 2.1.509 - Resolves: RHBZ1747874...
kernel security and bug fix update
2.6.32-754.14.2.OL6 - Update genkey bug 25599697 2.6.32-754.14.2 - x86 x86/speculation/mds: Add SMT warning message Waiman Long 1692386 1692387 1692388 CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 - x86 x86/speculation/mds: Add mds=full, nosmt cmdline option Waiman Long 1692386 1692387 1692388...
freeradius security update
3.0.13-10 - Fixes two EAP-PWD security issues Resolves: bz1699413 authentication bypass with an invalid curve attack...
kernel security update
2.6.18-419.0.0.0.11 - x8664/entry: Don't use IST entry for BP stack orabug 28452062 CVE-2018-8897...