9172 matches found
nodejs:12 security update
nodejs 1:12.16.1-1 - Resolves: RHBZ1800393, RHBZ1800394, RHBZ1800380 - Rebase to 12.16.1 nodejs-nodemon nodejs-packaging...
systemd security and bug fix update
239-18.0.2.el81.4 - fix to generate systemd-pstore.service file Orabug: 30230056 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug: 25897792 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 Orabug: 22224874 - allow dm remove ioctl to co-operate with UEK3...
Unbreakable Enterprise kernel security update
4.14.35-1902.10.7 - rtlwifi: Fix potential overflow on P2P code Laura Abbott Orabug: 30807747 CVE-2019-17666 - rds: fix an infoleak in rdsincinfocopy Kangjie Lu Orabug: 30770961 CVE-2016-5244 - KVM: x86: fix out-of-bounds write in KVMGETEMULATEDCPUID CVE-2019-19332 Paolo Bonzini Orabug: 30658694...
sudo security update
1.8.23-4.0.1 - Treat an ID of -1 as invalid since that means 'no change' Orabug: 30421281 CVE-2019-14287 - Add sudostrtoid tests for -1 and range errors. Orabug: 30421281...
redis:5 security update
5.0.3-2 - fix Heap buffer overflow in HyperLogLog triggered by malicious client CVE-2019-10192 - fix Stack buffer overflow in HyperLogLog triggered by malicious client CVE-2019-10193...
ghostscript security update
9.25-2.1 - Resolves: 1737338 - CVE-2019-10216 ghostscript: -dSAFER escape via .buildfont1 701394...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578560...
java-1.7.0-openjdk security update
1:1.7.0.151-2.6.11.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.151-2.6.11.0 - Bump to 2.6.11 and u151b00. - Update java-access-bridge-security.patch to apply against 2.6.11. - Apply fix for 8185716 so ppc uses correct insencode format - Resolves: rhbz1466509...
kernel security update
3.10.0-514.6.2.0.1.el7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.27 - vfio/pci: Fix integer overflows, bitmask check Vlad Tsyrklevich Orabug: 25164094 CVE-2016-9083 CVE-2016-9084 - Don't feed anything but regular iovec's to blkrqmapuseriov Linus Torvalds Orabug: 25231931 CVE-2016-9576 - kvm: x86: Check memopp before dereference...
glibc security update
2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...
kernel security and bug fix update
2.6.32-504.12.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181173 1179327 CVE-2014-8159 2.6.32-504.12.1 - fs splice: perform generic write checks Eric Sandeen 1163798 1155900 CVE-2014-7822 2.6.32-504.11.1 - virt kvm: excessive pages un-pinning in...
bash security update
4.1.2-15.1 - Check for fishy environment Resolves: 1141645...
Unbreakable Enterprise kernel Security update
2.6.32-300.29.2 - epoll: epollwait should not use timespecaddns Eric Dumazet - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron...
java-1.6.0-openjdk security update
1:1.6.0.0-1.11.b16.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-1.11.b16.el5 - Remove javaws alternative due to conflict with java-1.6.0-sun's alternatives 1:1.6.0-1.10.b16 - Update to openjdk build b16 - Update to icedtea6-1.6 - Added tzdata-java requirement - Added autoconf and automake buil...
kernel security and bug fix update
2.6.18-128.1.10.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
gnutls security update
3.6.16-8.3fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 - Allow bigger known RSA modulus sizes when calling rsageneratefips1864keypair directly Orabug: 33200526 - Change Epoch from 1 to 10...
buildah security update
1.37.6-1.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117178 2:1.37.6-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.37 https://github.com/containers/buildah/commit/fd39521 - Resolves: RHEL-67617...
kernel security, bug fix, and enhancement update
4.18.0-513.24.19.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
php:8.0 security update
libzip php 8.0.30-1 - rebase to 8.0.30 - Resolves: RHEL-11946 php-pear php-pecl-apcu php-pecl-rrd php-pecl-xdebug3 php-pecl-zip...
squid security update
7:4.15-3.0.3.1 - Add libtool-ltdl to squid Requires: Orabug: 34992040 - 7:4.15-3.0.1.1 - Obsolete squid-sysvinit Jira: OLDIS-20090 7:4.15-3.1 - Resolves: 2100782 - CVE-2021-46784 squid:4/squid: DoS when processing gopher server responses 7:4.15-3 - Resolves: 1941506 - CVE-2021-28116 squid:4/squid...
sqlite security update
3.26.0-17 - Fixed CVE-2022-35737...
python27:2.7 security update
babel 9.0.3-19 - Remove bundled windows executables - Resolves: rhbz2006792 python2 2.7.18-10.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 2.7.18-10 - Security fix for CVE-2022-0391: urlparse does not sanitize URLs containing ASCII newline and tabs Resolves: rhbz2047376...
polkit security update
0.115-13.0.1.el85.2 - Increase timeout to avoid defunct processes Orabug: 26930744 0.115-13.el85.2 - necessary version bump due to build versioning - Resolves: CVE-2021-4115...
glibc security, bug fix, and enhancement update
2.28-164.0.1 - Merge of RH patches for ol8-u5 beta release Review-exception: Routine merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for...
docker-engine docker-cli security update
docker-engine 19.03.11-11 - Addresses CVE-2021-30465 - updated runc minimum version to runc = 3:1.0.0-1.rc95. 19.03.11-10 - Addresses runc CVE-2021-30465 - updated runc versions in cli/vendor.conf and docker-engine/vendor.conf to 1.0.0-rc95...
firefox security update
78.3.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 78.3.0 - Update to 78.3.0 build1 78.2.0-3 - Update to 78.2.0 build1...
Unbreakable Enterprise kernel security update
4.14.35-1902.305.4 - ptp: free ptp device pin descriptors properly Vladis Dronov Orabug: 31710994 4.14.35-1902.305.3 - fs/binfmtelf.c: allocate initialized memory in fillthreadcoreinfo Alexander Potapenko Orabug: 31350638 CVE-2020-10732 - PCI: vmd: Filter resource type bits from shadow register J...
http-parser security update
2.8.0-5.2 - Do not break ABI with CVE-2019-15605 fix 2.8.0-5.1 - Resolves: CVE-2019-15605 http-parser: nodejs: HTTP request smuggling using malformed Transfer-Encoding header...
http-parser security update
2.7.1-8.2 - Do not break ABI with CVE-2019-15605 fix 2.7.1-8.1 - Resolves: CVE-2019-15605 http-parser: nodejs: HTTP request smuggling using malformed Transfer-Encoding header...
docker-engine security update
18.03.1.ol-0.0.15 - cherry-picked fix for CVE-2018-15664 from upstream 18.03.1.ol-0.0.14 - rebuild 18.03.1.ol-0.0.13 - update for CVE-2018-20699 18.03.1.ol-0.0.12 - correct the version string of containerd 18.03.1.ol-0.0.11 - update runc for CVE-2019-5736 18.03.1.ol-0.0.10 - update Go to version...
ntp security, bug fix, and enhancement update
4.2.6p5-29.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-29 - fix CVE-2016-7429 patch to restore default ttl configuration 1550637 - fix buffer overflow in parsing of address in ntpq and ntpdc CVE-2018-12327 - fix crash in parsing of received address in ntpq 161625...
tomcat security, bug fix, and enhancement update
0:7.0.76-9 - Resolves: rhbz1641873 CVE-2018-11784 tomcat: Open redirect in default servlet - Resolves: rhbz1552375 CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unintended expo sure of resources - Resolves: rhbz1552374 CVE-2018-1305 tomcat: Late...
thunderbird security update
60.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.0-1 - Update to 60.7.0...
qemu security update
12:2.9.0-19.el7 - lsi53c895a: convert to trace-events Mark Cave-Ayland Orabug: 28205376 - lsi: Reselection needed to remove pending commands from queue George Kennedy Orabug: 28626490 - lsi53c895a: check message length value is valid Prasad J Pandit Orabug: 28873208 CVE-2018-18849 - 9p: fix QEMU...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.23.1 - xen/blkback: free requests on disconnection Dongli Zhang Orabug: 22111941 - RDS: null pointer dereference in rdsatomicfreeop Mohamed Ghannam Orabug: 27986376 CVE-2018-5333 - ACPI: sbshc: remove raw pointer from printk message Greg Kroah-Hartman Orabug: 27986392...
Unbreakable Enterprise kernel security update
4.1.12-124.15.2 - KVM: SVM: Move spec control call after restore of GS Thomas Gleixner CVE-2018-3639 - x86/bugs: Fix the parameters alignment and missing void Konrad Rzeszutek Wilk CVE-2018-3639 - x86/bugs: Make cpushowcommon static Jiri Kosina CVE-2018-3639 - x86/bugs: Fix ssbselectmitigation...
java-1.8.0-openjdk security update
1:1.8.0.171-7.b10 - Bump release number to be greater than RHEL 7.6 package to allow build with .el7 suffix - Resolves: rhbz1559766 1:1.8.0.171-4.b10 - Rebuilding due to bad nss-softokn brew-root build override - Resolves: rhbz1559766 1:1.8.0.171-3.b10 - Fix jconsole.desktop.in subcategory,...
Unbreakable Enterprise kernel security update
4.1.12-112.14.2 - fuse: Call endqueuedrequests after releasing fc-lock in fusedevrelease Ashish Samant Orabug: 26431550 - rds: Fix inaccurate accounting of unsignaled wrs in rdsibxmitrdma Hakon Bugge Orabug: 27097105 - rds: Fix inaccurate accounting of unsignaled wrs Hakon Bugge Orabug: 27097105 ...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.12 - nvme: Drop nvmeq-qlock before dmapoolalloc, so as to prevent hard lockups Aruna Ramakrishna Orabug: 25409587 3.8.13-118.19.11 - nvme: Handle PM1725 HIL reset Martin K. Petersen Orabug: 26277600 - char: lp: fix possible integer overflow in lpsetup Willy Tarreau Orabug...
qemu-kvm security and bug fix update
1.5.3-126.el73.9 - kvm-spice-fix-spicechraddwatch-pre-condition.patch bz1452332 - Resolves: bz1452332 RHEL 7.2 based VM Virtual Machine hung for several hours apparently waiting for lock held by mainloop 1.5.3-126.el73.8 - kvm-char-change-qemuchrfeaddwatch-to-return-unsigned.patch bz1452332 -...
kernel security and bug fix update
3.10.0-229.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.1.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181177 1179347 CVE-2014-8159 3.10.0-229.1.1 - crypto testmgr: mark rfc4106gcmaes as fipsallowed Jarod Wilson 1197751 1185400 - virt...
bash security update
3.0-27.0.2 - Preliminary fix for CVE-2014-7169...
kernel security and bug fix update
kernel 2.6.18-371.12.1.0.1 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe...
php security, bug fix, and enhancement update
5.3.3-26 - add security fix for CVE-2013-4248 5.3.3-25 - rename patch to math CVE-2010-3709 name - add security fixes for CVE-2006-7243, CVE-2013-1643 5.3.3-24 - fix buffer overflow in pdopgsqlerror 969110 - fix double free when destroyzendclass fails 910466 - fix segfault in errorhandler with...
kernel security update
2.6.18-128.1.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2.6.18-128.el5 - cifs cifswritepages may skip unwritten pages Jeff Layton 470267 2.6.18-127.el5 - Revert: i386: check for dmidata in powernowk8 driver Prarit Bhargava 476184 - xen re-enable using xenpv in boot path for FV guests Don Dutile 473899 - xen pvhvm: guest hang on FV save/restore Don...
speex security update
1.0.5-4.el51.1 - Check for headers with invalid mode numbers 442037, CVE-2008-1686...
Moderate: freetype security update
2.1.9-6.el4 - Add freetype-2.1.9-ttf-overflow.patch - Resolves: 240574...
python-werkzeug security update
0.12.2-4.0.1 - Fix CVE-2023-23934 Orabug: 35662419 - Fix CVE-2023-25577 Orabug: 35662419 - enable tests Orabug: 35662419...