8988 matches found
tomcat6 security update
0:6.0.24-105 - Related: rhbz1402664 CVE-2016-6816 Adding system property from asfbz-60594 to allow use of some un-encoded characters - Related: rhbz1402664 CVE-2016-6816 Resolving a security regression 2017-6056 caused by CVE-2016-6816 0:6.0.24-104 - Related: rhbz1402664 build. reverting...
ntp security, bug fix, and enhancement update
4.2.6p5-22 - check origin timestamp before accepting KoD RATE packet CVE-2015-7704 - allow only one step larger than panic threshold with -g CVE-2015-5300 4.2.6p5-20 - validate lengths of values in extension fields CVE-2014-9297 - drop packets with spoofed source address ::1 CVE-2014-9298 - rejec...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.250.2 - crypto: aesni - fix memory usage in GCM decryption Stephan Mueller Orabug: 21077389 CVE-2015-3331 2.6.39-400.250.1 - xen/pciback: Don't disable PCICOMMAND on PCI device reset. Konrad Rzeszutek Wilk Orabug: 20807440 CVE-2015-2150 - xen-blkfront: fix accounting of reqs when...
httpd security, bug fix, and enhancement update
2.4.6-31.0.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31 - modproxyfcgi: determine if FCGICONNCLOSE should be enabled instead of hardcoding it 1168050 - modproxy: support Unix Domain Sockets 1168081 2.4.6-30 - core: fix bypassing of modheaders rules via chunked request...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-55.1.5 - CIFS Possible null ptr deref in SMB2tcon Steve French Orabug: 20433140 CVE-2014-7145 3.8.13-55.1.4 - net: sctp: fix NULL pointer dereference in af-fromaddrparam on malformed packet Daniel Borkmann Orabug: 20425332 CVE-2014-7841 3.8.13-55.1.3 - ACPI: x2apic entry ignored...
glibc security update
Oracle Linux 7: 2.17-55.0.4.el70.5 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. Jose E. Marchesi 2.17-55.5 - Rebuild and run regression testing...
kernel security and bug fix update
2.6.32-358.14.1 - x86 apic: Add probe for apicflat Prarit Bhargava 975086 953342 2.6.32-358.13.1 - wireless b43: stop format string leaking into error msgs John Linville 971387 971389 CVE-2013-2852 - pci make sriov work with hotplug remove Takahiro MUNEDA 973555 965002 - net rtnl: fix info leak o...
kernel security and bug fix update
2.6.32-131.21.1.el6 - net ipv6/udp: fix the wrong headroom check Thomas Graf 753167 698170 2.6.32-131.20.1.el6 - net vlan: fix panic when handling priority tagged frames Andy Gospodarek 742849 714936 CVE-2011-3593 - netdrv igb: fix WOL on second port of i350 device Frantisek Hrbata 743807 718293 ...
kernel security and bug fix update
2.6.18-194.8.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug 69930...
webkit2gtk3 security update
2.46.6-1 - Update to 2.46.6...
Unbreakable Enterprise kernel security update
4.1.12-124.84.2 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36251327 CVE-2024-1086 4.1.12-124.84.1 - mm: avoid conflict between MADVDOEXEC and upstream advice values Anthony Yznaga Orabug: 36334311 - kobject: Fix slab-out-of-bounds in fillkobjpath Wang Hai...
openssh security update
8.0p1-19.0.1.2 - Update patches for CVE-2023-51385, CVE-2023-48795 Orabug: 36256632 8.0p1-19.2 - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 - Fix Terrapin attack Resolves: CVE-2023-48795...
vim security update
8.2.2637-16.0.1.3 - Remove upstream references Orabug: 31197557 2:8.2.2637-16.3 - CVE-2022-1785 vim: Out-of-bounds Write - CVE-2022-1897 vim: out-of-bounds write in vimregsubboth in regexp.c - CVE-2022-1927 vim: buffer over-read in utfptr2char in mbyte.c...
java-11-openjdk security, bug fix, and enhancement update
1:11.0.16.0.8-1.0.1 - link atomic for ix86 build 1:11.0.16.0.8-1 - Update to jdk-11.0.16+8 - Update release notes to 11.0.16+8 - Use same tarball naming style as java-17-openjdk and java-latest-openjdk - Drop JDK-8284920 patch now upstreamed - Print release file during build, which should now...
rsync security update
3.1.3-14.2 - Related: 2074783 - Needed to bump this to rebuild correctly 3.1.3-14.1 - Resolves: 2074783 - A flaw in zlib-1.2.11 when compressing not decompressing! certain inputs...
Unbreakable Enterprise kernel security update
4.1.12-124.62.3 - fget: check that the fd still exists after getting a ref to it Linus Torvalds Orabug: 33679806 CVE-2021-0920 - fs: add fgetmany and fputmany Jens Axboe Orabug: 33679806 - afunix: fix garbage collect vs MSGPEEK Miklos Szeredi Orabug: 33679806 CVE-2021-0920 - net: split out...
expat security update
2.1.0-14.0.1 - lib: Prevent integer overflow in doProlog CVE-2022-23990Orabug: 33910302 2.1.0-14 - Fix multiple CVEs - CVE-2022-25236 expat: namespace-separator characters in 'xmlns:prefix' attribute values can lead to arbitrary code execution - CVE-2022-25235 expat: malformed 2- and 3-byte UTF-8...
container-tools:ol8 security update
buildah 1.19.7-2.0.1 - Fixes troubles with oracle registry login Orabug: 29937283 1.19.7-2 - revert changes to the state of 3.0-8.4.0 - Related: 1954702 conmon 2:2.0.26-3 - fix 'Permission on /dev/null are changing from 666 to 777 after running podman as root rhel-8.4.0.z' - Resolves: 1961682...
postgresql:12 security update
pgaudit 1.4.0-6 - Fix build requires 1.4.0-5 - Fix build requires postgresql 12.7-1 - Update to 12.7 Resolves: 1964510 Fix: CVE-2021-32027,CVE-2021-32028...
hivex security update
1.3.10-6.11 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950500...
curl security and bug fix update
7.61.1-18 - http: send payload when proxy authentication is done 1918692 - curl: Inferior OCSP verification CVE-2020-8286 - libcurl: FTP wildcard stack overflow CVE-2020-8285 - curl: trusting FTP PASV responses CVE-2020-8284 7.61.1-17 - validate an ssl connection using an intermediate certificate...
Unbreakable Enterprise kernel-container security update
5.4.17-2036.104.4.el7 - KVM: arm64: guest context in x18 instead of x29 Mihai Carabas Orabug: 32545182 5.4.17-2036.104.3.el7 - config: enable CONFIGMLX5MPFS Brian Maly Orabug: 32249042 - net: Fix bridge enslavement failure Ido Schimmel Orabug: 32503298 - inet: do not call sublistrcv on empty list...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.54.1 - mwifiex: Fix possible buffer overflows in mwifiexcmd80211adhocstart Zhang Xiaohui Orabug: 32349209 CVE-2020-36158...
firefox security update
78.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.5.0-1 - Update to 78.5.0 build1...
curl security update
7.29.0-59.0.1.1 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case...
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
...
gnome-software and fwupd security, bug fix, and enhancement update
appstream-data 8-20200724 - Regenerate the RHEL metadata to include the EPEL apps too - Resolves: 1844488 8-20200630 - Regenerate the RHEL metadata - Resolves: 1844488 fwupd 1.4.2-4.0.1 - Build with the updated Oracle certificate - Use oraclesecureboot301 as certdir Orabug: 29881368 - Use new...
squid security update
7:3.5.20-17.4 - Resolves: 1872349 - CVE-2020-24606 squid: Improper Input Validation could result in a DoS - Resolves: 1872327 - CVE-2020-15810 squid: HTTP Request Smuggling could result in cache poisoning - Resolves: 1872342 - CVE-2020-15811 squid: HTTP Request Splitting could result in cache...
kernel security and bug fix update
2.6.32-754.33.1.OL6 - Update genkey bug 25599697 2.6.32-754.33.1 - message scsi: mptscsih: Fix read sense data size Tomas Henzl 1824907 2.6.32-754.32.1 - wireless libertas: make lbsibssjoinexisting return error code on rates overflow Jarod Wilson 1776569 - wireless libertas: don't exit from...
Unbreakable Enterprise kernel security update
5.4.17-2011.5.3uek - misc: pvpanic: add crash loaded event zhenwei pi Orabug: 31677096 - misc: pvpanic: move bit definition to uapi header file zhenwei pi Orabug: 31677096 - RDMA/netlink: Do not always generate an ACK for some netlink operations Hakon Bugge Orabug: 31666971 - bnxten: Fix statisti...
thunderbird security update
68.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.6.0-1 - Update to 68.6.0 build2...
nss, nss-softokn, nss-util security update
nss 3.44.0-7 - Increase timeout on sslgtest so that slow platforms can complete when running on a busy system. 3.44.0-6 - back out out-of-bounds patch patch for nss-softokn. - Fix segfault on empty or malformed ecdh keys 1777712 3.44.0-5 - Fix out-of-bounds write in NSCEncryptUpdate 1775910...
thunderbird security update
68.2.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.2.0-1 - Update to 68.2.0 68.1.1-2 - Update to 68.1.1...
firefox security update
68.2.0-1.0.1 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.2.0-1 - Update to 68.2.0 ESR 68.1.0-6 - Enable system nss on RHEL6...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.38.1 - x86/speculation: Exclude ATOMs from speculation through SWAPGS Thomas Gleixner Orabug: 30165288 CVE-2019-1125 - x86/speculation: Enable Spectre v1 swapgs mitigations Josh Poimboeuf Orabug: 30165288 CVE-2019-1125 - x86/speculation: Prepare entry code for Spectre v1...
openssh security, bug fix, and enhancement update
7.4p1-21 + 0.10.3-2 - Avoid double comma in the default cipher list in FIPS mode 1722446 7.4p1-20 + 0.10.3-2 - Revert the updating of cached passwd structure 1712053 7.4p1-19 + 0.10.3-2 - Update cached passwd structure after PAM authentication 1674541 7.4p1-18 + 0.10.3-2 - invalidate supplemental...
python-urllib3 security update
1.10.2-7 - Provide python2-urllib3 - Add patch for CVE-2019-11236 Resolves: rhbz1703360 1.10.2-6 - Source URL switched to HTTPS protocol - Add patch for CVE-2018-20060 Resolves: rhbz1658471...
Unbreakable Enterprise kernel security update
4.1.12-124.18.6 - qla2xxx: Update the version to 9.00.00.00.41.0-k1. Giridhar Malavali Orabug: 28172611 - qla2xxx: Utilize complete local DMA buffer for DIF PI inforamtion. Giridhar Malavali Orabug: 28172611 - qla2xxx: Correction to total data segment count when local DMA buffers used for DIF PI...
java-1.7.0-openjdk security update
1:1.7.0.151-2.6.11.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.151-2.6.11.0 - Bump to 2.6.11 and u151b00. - Update java-access-bridge-security.patch to apply against 2.6.11. - Apply fix for 8185716 so ppc uses correct insencode format - Resolves: rhbz1466509...
Unbreakable Enterprise kernel security update
2.6.39-400.295.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 2.6.39-400.295.1 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed Orabug: 25510857 - IB/CORE: sync the resouce access in fmrpool...
java-1.8.0-openjdk security update
1:1.8.0.131-0.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update generatesourcetarball.sh to remove patch remnants. - Cleanup tarball creation documentation to avoid duplication. - Resolves: rhbz1438751 1:1.8.0.121-2.b13 - Add...
curl security, bug fix, and enhancement update
7.29.0-25.0.1 - disable check to make build pass 7.29.0-25 - fix spurious failure of test 1500 on ppc64le 1218272 7.29.0-24 - use the default min/max TLS version provided by NSS 1170339 - improve handling of timeouts and blocking direction to speed up FTP 1218272 7.29.0-23 - require credentials t...
kernel security and bug fix update
kernel 2.6.18-406 - fs pipe: fix pipe corruption and iovec overrun on partial copy Mateusz Guzik 1203787 CVE-2015-1805 2.6.18-405 - net tcp: zero retransstamp if all retrans were acked Marcelo Leitner 1205521 - net tcp: fix retransstamp advancing in error cases Marcelo Leitner 1205521 - net tcp:...
Unbreakable Enterprise kernel Security update
2.6.32-300.29.2 - epoll: epollwait should not use timespecaddns Eric Dumazet - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron...
kernel security, bug fix, and enhancement update
2.6.18-194.32.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security and bug fix update
2.6.18-128.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
kernel security and bug fix update
3.10.0-1160.114.2.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.114.2.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug:...
sqlite security update
3.26.0-17 - Fixed CVE-2022-35737...
httpd:2.4 security update
httpd 2.4.37-51.0.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracles index page oracleindex.html 2.4.37-51 - Resolves: 2097015 - CVE-2022-28614 httpd:2.4/httpd: out-of-bounds read via aprwrite - Resolves: 2097031 - CVE-2022-28615 httpd:2.4/httpd:...
libpq security update
13.5-1 - Rebase to 13.5 Resolves: 2023294...