8990 matches found
Unbreakable Enterprise kernel security update
2.6.39-400.264.13 - KEYS: Don't permit requestkey to construct a new keyring David Howells Orabug: 22373449 CVE-2015-7872 2.6.39-400.264.12 - crypto: add missing crypto module aliases Mathias Krause Orabug: 22249656 CVE-2013-7421 CVE-2014-9644 - crypto: include crypto- module prefix in template...
python security, bug fix, and enhancement update
2.6.6-64.0.1 - Add Oracle Linux distribution in platform.py orabug 21288328 Keshav Sharma 2.6.6-64 - Enable use of deepcopy with instance methods Resolves: rhbz1223037 2.6.6-63 - Since -libs now provide python-ordered dict, added ordereddict dist-info to site-packages Resolves: rhbz1199997 2.6.6-...
java-1.8.0-openjdk security update
1:1.8.0.51-1.b16 - Add md5sum for January 2015 java.security update so it gets updated this time. - Resolves: rhbz1235162 1:1.8.0.51-0.b16 - July 2015 security update to u51b16. - Add script for generating OpenJDK tarballs from a local Mercurial tree. - Add %name prefix to patches to avoid...
1
kernel - 2.6.18-308.0.0.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus...
httpd security update
2.2.15-15.0.1.el62.1 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-15.1 - add security fixes for CVE-2011-4317, CVE-2012-0053, CVE-2012-0031, CVE-2011-3607 787598 - obviates fix for CVE-2011-3638, patch removed...
kernel security and bug fix update
2.6.18-274.18.1.0.1.el5 - net bonding: fix carrier detect when bond is down John Haxby orabug 13652598 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error...
java-1.6.0-openjdk security update
1:1.6.0.0-1.22.1.9.8.0.1.el56 - Add oracle-enterprise.patch 1:1.6.0.0-1.22.1.9.8 - Resolves: rhbz668488 - Bumped to IcedTea6 1.9.8 - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...
nss security update
nspr: 4.8.4-1 - Update to NSPR 4.8.4 nss: 3.12.6-1.0.1.el54 - Update clean.gif in the nss-3.12.6-stripped.tar.bz2 tarball 3.12.6-1 - Update to 3.12.6 3.12.5.99-1.2 - Fix an unsatified tools runtime dependency 3.12.5.99-1.1 - Preserve file attributes and include some test cleanup 3.12.5.99-1 -...
kernel security update
2.6.18-128.1.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
java-17-openjdk security update
1:17.0.15.0.6-2.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:17.0.15.0.6-2 - Update to jdk-17.0.15+6 GA - Add to .gitignore openjdk-17.0.15+6.tar.xz - Set updatever to 15 - Set buildver to 6 - Set rpmrelease to 2 - Update sources to openjdk-17.0.15+6.tar.xz - Set bundled freetype provide...
Unbreakable Enterprise kernel security update
4.14.35-2047.541.4.1 - vhost/scsi: null-ptr-dereference in vhostscsigetreq Haoran Zhang Orabug: 37137499 4.14.35-2047.541.4 - selftests: make order checking verbose in msgzerocopy selftest Zijian Zhang Orabug: 37063821 - selftests: fix OOM in msgzerocopy selftest Zijian Zhang Orabug: 37063821 -...
bind security update
32:9.11.4-26.P2.13 - Tighten cache protection against record from forwarders CVE-2021-25220 32:9.11.4-26.P2.12 - Include test of forwarders CVE-2021-25220 32:9.11.4-26.P2.11 - Prevent excessive resource use while processing large delegations. CVE-2022-2795...
kernel security and bug fix update
3.10.0-1160.71.1.0.1 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.71.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 -...
libssh security update
0.9.4-3 - Fix CVE-2020-16135 NULL pointer dereference in sftpserver.c if sshbuffernew returns NULL 1862646...
firefox security update
78.13.0-2.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.13.0-2 - Update to 78.13.0 build2 78.13.0-1 - Update to 78.13.0 build1 78.12.0-2 - Rebuild to pick...
.NET Core 3.1 security and bugfix update
3.1.118-1.0.1 - Update patch to support 8.3 [email protected] - support OL release scheme [email protected] 3.1.118-1 - Update to .NET SDK 3.1.118 and Runtime 3.1.18 - Resolves: RHBZ1990189...
glib2 security and bug fix update
2.56.4-10 - Fix various problems in GMainContext Resolves: 1953553 - Fix CVE-2021-27219 Resolves: 1960600...
bind security update
32:9.8.2-0.68.rc1.0.1.8 - Backport the fix for buffer overflow CVE-2020-8625 Orabug: 32588749...
Unbreakable Enterprise kernel security update
5.4.17-2011.1.2 - ctf: discard CTF from the vDSO Nick Alcock Orabug: 31194036 5.4.17-2011.1.1 - slcan: Don't transmit uninitialized stack data in padding Richard Palethorpe Orabug: 31136750 CVE-2020-11494 - blktrace: Protect q-blktrace with RCU Jan Kara Orabug: 31123573 CVE-2019-19768 - KVM: x86:...
java-11-openjdk security update
1:11.0.7.10-1 - Add JDK-8228407 backport to resolve crashes during verification. - Resolves: rhbz1810557 1:11.0.7.10-1 - Amend release notes, removing issue actually fixed in 11.0.6. - Resolves: rhbz1810557 1:11.0.7.10-1 - Re-apply --with-extra-asflags as crash was not due to this. - Resolves:...
bind security and bug fix update
32:9.11.4-16.P2 - Finish dig query when name is too long 1743572 32:9.11.4-15.P2 - Stop listening on IPv6 by default 1753259 32:9.11.4-14.P2 - Limit number of queries per TCP connection CVE-2019-6477 32:9.11.4-13.P2 - Revert not searching names with dot 1743572 32:9.11.4-12.P2 - Fix mkeys test...
python-pip security update
9.0.3-7 - Bump Resolves: rhbz1649153 Resolves: rhbz1700824 Resolves: rhbz1702473 Resolves: rhbz1643829 9.0.3-6 - Add four new patches for CVEs in bundled urllib3 and requests CVE-2018-20060, CVE-2019-11236, CVE-2019-11324, CVE-2018-18074 Resolves: rhbz1649153 Resolves: rhbz1700824 Resolves:...
microcode_ctl security update
3:1.17-33.19.0.4 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618737 3:1.17-33.19.0.1 - merge Oracle changes for early load via dracut - enable late load on install for UEK4 kernels marked safe except BDW-79 - update 06-55-04 to 0x2000065 - update 06-55-07 to...
kernel security update
3.10.0-1062.4.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.4.2 - drm drm/i915: Lower RM timeout to avoid DSI hard hangs Dave Airli...
libvirt security and bug fix update
4.5.0-10.0.1 - added librbd1 as dependency Keshav Sharma 4.5.0-10.el76.10 - virnwfilterbindingobj: Introduce and use virNWFilterBindingObjStealDef rhbz1702173 - admin: reject clients unless their UID matches the current UID CVE-2019-10132 - locking: restrict sockets to mode 0600 CVE-2019-10132 -...
qemu-kvm security update
0.12.1.2-2.506.el610.3 - kvm-target-i386-define-md-clear-bit.patch bz1698996 - Resolves: bz1698996 CVE-2018-12130 qemu-kvm: hardware: MFBDS...
firefox security update
60.6.1-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.6.1-1 - Update to 60.6.1 ESR Build 1...
Unbreakable Enterprise kernel security update
4.1.12-124.15.2 - KVM: SVM: Move spec control call after restore of GS Thomas Gleixner CVE-2018-3639 - x86/bugs: Fix the parameters alignment and missing void Konrad Rzeszutek Wilk CVE-2018-3639 - x86/bugs: Make cpushowcommon static Jiri Kosina CVE-2018-3639 - x86/bugs: Fix ssbselectmitigation...
dnsmasq security update
2.48-18 - Fix CVE-2017-14491...
kernel security update
3.10.0-693.2.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel olkmodsigningkey.x509alexey.petre [email protected] - Update x509.genkey bug 24817676...
glibc security update
2.17-157 - Rebuild with updated binutils 1268008 2.17-156 - malloc arena free free list management fix 1276753 2.17-155 - Basic validity check for locale-archive.tmpl 1350733 2.17-153 - Add Intel AVX-512 optimized routines 1298526. 2.17-151 - Improve malloc peformance in low-memory situations...
Unbreakable Enterprise kernel security update
2.6.39-400.283.1 - atl2: Disable unimplemented scatter/gather feature Ben Hutchings Orabug: 23703990 CVE-2016-2117 - mlx4core: add module parameter to disable background init Mukesh Kacker Orabug: 23292107 - NFSv4: Don't decode fslocations if we didn't ask for them... Trond Myklebust Orabug:...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.15uek - ipc/sem.c: fully initialize semarray before making it visible Manfred Spraul Orabug: 22250043 CVE-2015-7613 - Initialize msg/shm IPC objects before doing ipcaddid Linus Torvalds Orabug: 22250043 CVE-2015-7613 - crypto: add missing crypto module aliases Mathias...
Unbreakable Enterprise kernel security , bug fix and enhancement update
kernel-uek 3.8.13-98 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502729 CVE-2015-0239 CVE-2015-0239 - fs: take imutex during preparebinprm for setugid executables Jann Horn Orabug: 21502159 CVE-2015-3339 3.8.13-97 - add ql2400, ql2500 firmware versions to prerequisites Dan Duval...
java-1.8.0-openjdk security update
1:1.8.0.45-30.b13 - repacked sources - Resolves: RHBZ1209076 1:1.8.0.45-7.b13 - Re-add %name prefix to patches to avoid conflicts with OpenJDK 7 versions. - Remove ppc64le test case now fix has been verified. - Resolves: rhbz1194378 1:1.8.0.45-27.b13 - updated to security u45 - minor sync with 7....
openssl security update
1.0.1e-34.7 - fix CVE-2014-3570 - incorrect computation in BNsqr - fix CVE-2014-3571 - possible crash in dtls1getrecord - fix CVE-2014-3572 - possible downgrade of ECDH ciphersuite to non-PFS state - fix CVE-2014-8275 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support f...
bash security update
4.1.2-29.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905294...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-16.2.3.el6uek - ipoutput: do skb ufo init for peeked non ufo skb as well Jiri Pirko Orabug: 17951078 CVE-2013-4470 - ip6output: do skb ufo init for peeked non ufo skb as well Jiri Pirko Orabug: 17951080 CVE-2013-4470 - KVM: x86: fix guest-initiated crash with x2apic CVE-2013-637...
kernel security and bug fix update
kernel 2.6.18-308.16.1.el5 - Revert: fs nfsd4: Remove check for a 32-bit cookie in nfsd4readdir Eric Sandeen 847943 784191 - Revert: fs add new FMODE flags: FMODE32bithash and FMODE64bithash Eric Sandeen 847943 784191 - Revert: fs nfsd: rename int access to int mayflags in nfsdopen Eric Sandeen...
kernel security and bug fix update
2.6.18-238.12.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
php security update
5.3.2-6.1 - add security fixes for CVE-2010-3709, CVE-2010-3870, CVE-2009-5016, CVE-2010-4645 670461...
kernel security and bug fix update
2.6.18-194.3.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug 69930...
httpd security, bug fix, and enhancement update
2.4.53-7.0.1 - Replace index.html with Oracles index page oracleindex.html. 2.4.53-7 - Resolves: 2094997 - CVE-2022-26377 httpd: modproxyajp: Possible request smuggling - Resolves: 2097032 - CVE-2022-28615 httpd: out-of-bounds read in apstrcmpmatch - Resolves: 2098248 - CVE-2022-31813 httpd:...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.515.3.el7 - uek-rpm: Enable Pensando EMMC reset controller Thomas Tai Orabug: 34325721 - mfd: pensandoelbasr: Add Pensando Elba System Resource Chip Brad Larson Orabug: 34325721 - dsc-drivers: update drivers for 1.15.9-C-65 Shannon Nelson Orabug: 34325721 4.14.35-2047.515.2.el7 -...
kernel security, bug fix, and enhancement update
4.18.0-372.9.1.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
python-pip security update
9.0.3-8.0.1 - CVE-2019-20916 Orabug: 33861505...
httpd security update
2.4.6-97.0.5.4 - modsession: save one aprstrtok Orabug: 33338149CVE-2021-26690 - replace index.html with Oracle's index page oracleindex.html 2.4.6-97.4 - Resolves: 2031072 - CVE-2021-34798 httpd: NULL pointer dereference via malformed requests - Resolves: 2031074 - CVE-2021-39275 httpd:...
openssh security update
7.4p1-22.0.1 - enlarge format buffer size for certificate serial number so the log message can record any 64-bit integer without truncation openssh bz3012 Orabug: 30448895 7.4p1-22 + 0.10.3-2 - avoid segfault in Kerberos cache cleanup 1999263 - fix CVE-2021-41617 2008884...
httpd:2.4 security, bug fix, and enhancement update
httpd 2.4.37-41.0.1 - Add checks on the configured UDS path Orabug: 33412270CVE-2021-40438 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracles index page oracleindex.html 2.4.37-41 - Resolves: 1680111 - httpd sends reply to HTTPS GET using two TLS records -...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.508.3.el7 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33392821 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33352735...