8998 matches found
java-11-openjdk security update
1:11.0.11.0.9-0 - Update to jdk-11.0.11.0+9 - Update release notes to 11.0.11.0+9 - Require tzdata 2020f to match upstream change JDK-8259048 - Require tzdata 2021a to match upstream change JDK-8260356 - Remove RH1868754 patch as this is now resolved upstream by JDK-8258833 - Remove RH1868740 &...
thunderbird security update
78.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.1-1 - Update to 78.9.1...
389-ds:1.4 security and bug fix update
1.4.3.8-7 - Bump version to 1.4.3.8-7 - Resolves: Bug 1908705 - CVE-2020-35518 389-ds:1.4/389-ds-base: information disclosure during the binding of a DN - Resolves: Bug 1936461 - A failed re-indexing leaves the database in broken state. - Resolves: Bug 1912481 - Server-Cert.crt created using...
Unbreakable Enterprise kernel security update
5.4.17-2011.4.6.el8uek - Revert 'uek-rpm: Move grub boot menu update to posttrans stage.' Somasundaram Krishnasamy Orabug: 31358097 5.4.17-2011.4.5.el8uek - IB/sa: Resolv use-after-free in ibnlmakerequest Divya Indi Orabug: 31631527 - certs: Remove Oracle cert compiled into the kernel Eric Snowbe...
kernel security and bug fix update
2.6.32-754.30.2.OL6 - Update genkey bug 25599697 2.6.32-754.30.2 - x86/speculation: Provide SRBDS late microcode loading support Waiman Long - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add SRBDS vulnerability...
icu security update
50.2-4 - Apply ICU-13634-Adding-integer-overflow-logic-to-ICU4C-num.patch - Apply ICU-20958-Prevent-SEGVMAPERR-in-append.patch - Resolves: rhbz1808235...
java-11-openjdk security update
1:11.0.5.10-0.0.1 - link atomic for ix86 build Livy Ge 1:11.0.5.10-0 - Update to shenandoah-jdk-11.0.5+10 GA - Switch to GA mode for final release. - Remove PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Resolves: rhbz1753423 1:11.0.5.9-0.0.ea - Update to shenandoah-jdk-11.0.5+9...
java-11-openjdk security update
1:11.0.5.10-0.0.1 - link atomic for ix86 build 1:11.0.5.10-0 - Update to shenandoah-jdk-11.0.5+10 GA - Switch to GA mode for final release. - Remove PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Resolves: rhbz1753423 1:11.0.5.9-0.0.ea - Update to shenandoah-jdk-11.0.5+9 EA -...
qemu-kvm security, bug fix, and enhancement update
1.5.3-167.el7 - Reverting kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch bz1618503 - Resolves: bz1618503 qemu-kvm: Qemu: seccomp: blacklist is not applied to all threads rhel-7 1.5.3-166.el7 - kvm-seccomp-set-the-seccomp-filter-to-all-threads.patch bz1618503 - Resolves: bz1618503 qemu-kv...
rsyslog security and bug fix update
8.24.0-38.0.2 - Newer gcc complains about implicit declaration of prctl. Added header file to quiesce the compiler 8.24.0-38 RHEL 7.7 ERRATUM - added patch increasing max path size preventing buffer overflow with too long paths resolves: rhbz1656860 8.24.0-37 RHEL 7.7 ERRATUM - edited patch fixin...
Unbreakable Enterprise kernel security update
4.1.12-124.23.2 - ntty: fix EXTPROC vs ICANON interaction with TIOCINQ aka FIONREAD Linus Torvalds Orabug: 28855335 CVE-2018-18386 - nfs: Don't take a reference on fl-flfile for LOCK operation Benjamin Coddington Orabug: 28887442 - x86/topology: Update the 'cpu cores' field in /proc/cpuinfo...
firefox security update
60.2.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed...
procps security update
3.2.8-45.0.1.el69.3 - vmstat: fix invalid CPU utilization stats after vCPU hot-plug/unplug Konrad Rzeszutek Wilk bug 18011019 3.2.8-45.el69.3 - drop leftover assignment in fix for CVE-2018-1124 causing a severe regression - Resolves: CVE-2018-1124 3.2.8-45.el69.2 - fix integer overflows leading t...
procps-ng security update
3.3.10-17.el75.2 - check for truncation after calling snprintf - Related: CVE-2018-1124 3.3.10-17.el75.1 - fix integer overflows leading to heap overflow in file2strvec - Resolves: CVE-2018-1124...
kernel security, bug fix, and enhancement update
3.10.0-862.2.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.2.3 - x86 kvm: fix icebp instruction handling Paolo Bonzini 1566849 1566845...
kernel security, bug fix, and enhancement update
...
openssl security update
1.0.1e-48.4 - fix CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher - fix CVE-2016-8610 - DoS of single-threaded servers via excessive alerts...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.16 - mm: remove gupflags FOLLWRITE games from getuserpages Linus Torvalds Orabug: 24927306 CVE-2016-5195 4.1.12-61.1.15 - drivers/nvme: provide a module parameter for setting number of I/O queues Shan Hai Orabug: 24914956 - blk-mq: improve warning for running a queue on the...
php security and bug fix update
5.4.16-36.3 - don't set environmental variable based on user supplied Proxy request header CVE-2016-5385 5.4.16-36.2 - fix segmentation fault in headerregistercallback 1346758...
java-1.8.0-openjdk security update
1:1.8.0.91-1.b03 - Update to u91b14. - Resolves: rhbz1325420...
openssl security update
1.0.1e-42.4 - fix CVE-2016-0702 - side channel attack on modular exponentiation - fix CVE-2016-0705 - double-free in DSA private key parsing - fix CVE-2016-0797 - heap corruption in BNhex2bn and BNdec2bn 1.0.1e-42.3 - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generi...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.33-1.13.5.0 - Update to IcedTea 1.13.5 - Remove upstreamed patches. - Regenerate add-final-location-rpaths patch against new release. - Change versioning to match java-1.7.0-openjdk so revisions work. - Use xz for tarballs to reduce file size. - No need to explicitly disable system LCMS a...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.1.2.el6uek - floppy: don't write kernel-only members to FDRAWCMD ioctl output Matthew Daley Orabug: 19028443 CVE-2014-1738 - floppy: ignore kernel-only members in FDRAWCMD ioctl input Matthew Daley Orabug: 19028436 CVE-2014-1737...
Unbreakable Enterprise kernel Security update
2.6.39-400.109.1 - while removing a non-empty directory, the kernel dumps a message: rmdir,21743,1:ocfs2unlink:953 ERROR: status = -39 Xiaowei.Hu Orabug: 16790405 - stop mig handler when lockres in progress ,and return -EAGAIN Xiaowei.Hu Orabug: 16876446 2.6.39-400.108.1 - Revert 'dlmglue race...
httpd security and bug fix update
2.2.15-9.0.1.el61.3 - replace index.html with Oracle's index page - update vstring in specfile 2.2.15-9.3 - add security fixes for CVE-2011-3347, CVE-2011-3368 743901 - fix regressions in CVE-2011-3192 patch 736592...
kernel security update
2.6.18-194.11.3.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security and bug fix update
2.6.18-92.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.13.el5 - md fix crashes in iteraterdev Doug Ledford 460128 455471 - sound...
libtasn1 security update
4.13.0-5 - Backport the fix for CVE-2024-12133...
httpd:2.4 security and bug fix update
httpd 2.4.37-51.0.1.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-51.1 - Resolves: 2165967 - prevent sscg creating /dhparams.pem - Resolves: 2165976 - CVE-2006-20001 httpd: moddav: out-of-bounds read/write of zero...
libreoffice security update
6.4.7.2-12.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-12 - Resolves: rhbz2134752 CVE-2022-26305 Untrusted Macros - Resolves: rhbz2134751 CVE-2022-26307 Weak Master Keys -...
virt:kvm_utils security update
libvirt 5.7.0-34.el8 - qemu: blockcopy: Allow late opening of the backing chain of a shallow copy Peter Krempa Orabug: 33091019 - qemu: capabilities: Introduce QEMUCAPSBLOCKDEVSNAPSHOTALLOWWRITEONLY Peter Krempa Orabug: 33091019 - qemuDomainBlockCopyCommon: Record updated flags to block job Peter...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.308.9 - x86/speculation/mmio: Fix late microcode loading Patrick Colp Orabug: 34276099 5.4.17-2136.308.8 - Add debugfs for controlling MMIO state data Kanth Ghatraju Orabug: 34202259 CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166 - KVM: x86/speculation: Disable Fill buffe...
Unbreakable Enterprise kernel security update
5.4.17-2136.305.5.5 - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34034594 CVE-2022-1158...
ruby:2.6 security update
ruby 2.6.9-108 - Upgrade to Ruby 2.6.9. - Skip JIT tests in RHEL 8. - Fix the issues required to start the 'make test-bundler' itself. - Fix Bundler dependency confusion. Resolves: CVE-2020-36327...
redis:5 security update
5.0.3-5 - fix denial of service via Redis Standard Protocol RESP request CVE-2021-32675 5.0.3-4 - fix lua scripts can overflow the heap-based Lua stack CVE-2021-32626 - fix integer overflow issue with Streams CVE-2021-32627 - fix integer overflow bug in the ziplist data structure CVE-2021-32628 -...
Unbreakable Enterprise kernel security update
5.4.17-2136.300.7 - KVM: SVM: Fix mismerge in svmupdatepiirte Liam Merwick Orabug: 33446526 - Revert KVM: x86: hyperv: Remove duplicate definitions of Reference TSC Page Liam Merwick Orabug: 33450675 5.4.17-2136.300.6 - Revert scsi: core: Cap scsihost cmdperlun at canqueue Jack Vogel Orabug:...
containerd security update
containerd 1.4.8-1 - Address CVE-2021-32760 docker-cli 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760. docker-engine 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760...
runc security update
1.0.0-1.rc95 - Addresses CVE-2021-30465...
qemu-kvm security and bug fix update
1.5.3-175.el79.3 - kvm-Suppress-prototype-warning-for-nss-headers.patch bz1884997 - Resolves: bz1884997 qemu-kvm FTBFS on rhel7.9 1.5.3-175.el79.2 - kvm-hw-net-vmxnettxpkt-fix-assertion-failure-in-vmxnet.patch bz1860960 - kvm-hw-core-loader-Fix-possible-crash-in-romcopy.patch bz1842923 - Resolves...
samba security and bug fix update
4.10.17-9 - related: 1853272 - Add back missing patch hunks 4.10.16-8 - resolves: 1878205 - Fix restarting winbind on package upgrade - resolves: 1892632 - Fix CVE-2020-14318 - resolves: 1891687 - Fix CVE-2020-14323 - resolves: 1879834 - Fix CVE-2020-1472 - resolves: 1892313 - Fix memory leak in...
libssh2 security update
1.8.0-4 - fix integer overflow in SSHMSGDISCONNECT logic CVE-2019-17498 1.8.0-3 - sanitize public header file detected by rpmdiff 1.8.0-2 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes CVE-2019-3863 - fix out-of-bounds memory comparison with specially...
edk2 security update
1:1.3.2-1.el7 - Updates for OVMF/AAVMF Version 1.3.2 including: Fri Jul 31 2020 Aaron Young - Create new 1.3.2 release for OL7 Fri May 01 2020 Aaron Young - Create new 1.3.1 release for OL7 Wed Feb 05 2020 Aaron Young - Create new 1.3 release for OL7 which includes the following fixed CVEs:...
kernel security and bug fix update
2.6.32-754.31.1.OL6 - Update genkey bug 25599697 2.6.32-754.31.1 - x86 x86/speculation: Provide SRBDS late microcode loading support Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.47.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351121 CVE-2019-19533 - can: peakusb: fix slab info leak Johan Hovold Orabug: 31351143 CVE-2019-19534 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug:...
Unbreakable Enterprise kernel security update
2.6.39-400.324.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351122 CVE-2019-19533 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug: 31351895 CVE-2019-15214...
Unbreakable Enterprise kernel security update
4.14.35-1902.304.6 - bpf: fix sanitation rewrite in case of non-pointers Daniel Borkmann Orabug: 31552243 4.14.35-1902.304.5 - acpi: disallow loading configfs acpi tables when locked down Jason A. Donenfeld Orabug: 31493187 - selftests/bpf: do not run testkmod.sh for UEK5 Alan Maguire Orabug:...
kernel security update
2.6.32-754.29.2.OL6 - Update genkey bug 25599697 2.6.32-754.29.2 - net netlabel: cope with NULL catmap Paolo Abeni 1827226 CVE-2020-10711...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.45.1 - HID: hiddev: do cleanup in failure of opening a device Hillf Danton Orabug: 31206361 CVE-2019-19527 - HID: hiddev: avoid opening a disconnected device Hillf Danton Orabug: 31206361 CVE-2019-19527 - HID: Fix assumption that devices have inputs Alan Stern Orabug: 312086...
httpd security, bug fix, and enhancement update
2.4.6-93.0.1 - replace index.html with Oracles index page oracleindex.html 2.4.6-93 - Resolves: 1677496 - CVE-2018-17199 httpd: modsessioncookie does not respect expiry time 2.4.6-92 - htpasswd: add SHA-2 crypt support 1486889 2.4.6-91 - Resolves: 1630886 - scriptlet can fail if hostname is not...
python-imaging security update
1.1.6-20 - Fixes for CVE-2020-5312 and related part of CVE-2019-16865 Resolves: rhbz1789533...