9185 matches found
.NET 6.0 security, bug fix, and enhancement update
6.0.118-1.0.1 - Add missing Oracle Linux Runtime IDs 6.0.118-1 - Update to .NET SDK 6.0.118 and Runtime 6.0.18 - Resolves: RHBZ2212379 6.0.117-1 - Update to .NET SDK 6.0.117 and Runtime 6.0.17 - Resolves: RHBZ2190264...
Unbreakable Enterprise kernel-container security update
5.15.0-1.43.4.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460936 CVE-2022-2588 5.15.0-1.43.4 - Revert selftests/bpf: add tests verifying unprivileged bpf behaviour Alan Maguire Orabug: 34399286 - Revert selftests/bpf: Add test for reg2btfids o...
virt:kvm_utils security update
libvirt 5.7.0-34.el8 - qemu: blockcopy: Allow late opening of the backing chain of a shallow copy Peter Krempa Orabug: 33091019 - qemu: capabilities: Introduce QEMUCAPSBLOCKDEVSNAPSHOTALLOWWRITEONLY Peter Krempa Orabug: 33091019 - qemuDomainBlockCopyCommon: Record updated flags to block job Peter...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.308.9 - x86/speculation/mmio: Fix late microcode loading Patrick Colp Orabug: 34276099 5.4.17-2136.308.8 - Add debugfs for controlling MMIO state data Kanth Ghatraju Orabug: 34202259 CVE-2022-21123 CVE-2022-21125 CVE-2022-21127 CVE-2022-21166 - KVM: x86/speculation: Disable Fill buffe...
python38:3.8 and python38-devel:3.8 security update
numpy 1.17.3-6 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055 python38 3.8.12-1 - Update to 3.8.12 Resolves: rhbz2004587 3.8.11-1 - Update to 3.8.11 - Fix for CVE-2021-3733 and CVE-2021-3737 Resolves: rhbz1995234, rhbz1995162 python3x-pip 19.3.1-5 - Remove...
ruby:2.6 security update
ruby 2.6.9-108 - Upgrade to Ruby 2.6.9. - Skip JIT tests in RHEL 8. - Fix the issues required to start the 'make test-bundler' itself. - Fix Bundler dependency confusion. Resolves: CVE-2020-36327...
samba security and bug fix update
4.10.16-17 - related: 2019673 - Add missing checks for IPA DC server role 4.10.16-16 - resolves: 2019661 - Fix CVE-2016-2124 - resolves: 2019673 - Fix CVE-2020-25717 - resolves: 2021428 - Add missing PAC buffer types to krb5pac.idl...
pcs security update
0.10.10-4.0.1 - Replace HAM-logo.png with a generic one 0.10.10-4 - Fixed unfencing in - Resolves: rhbzbz1991654 0.10.10-3 - Added add/remove syntax for command - Resolves: rhbz1992668 0.10.10-2 - Fixed create resources with depth operation attribute - Resolves: rhbz1998454 0.10.10-1 - Rebased to...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.312.b07-1 - Update to aarch64-shenandoah-jdk8u312-b07 EA - Update release notes for 8u312-b07. - Switch to GA mode for final release. - This tarball is embargoed until 2021-10-19 @ 1pm PT. - Resolves: rhbz2011826 1:1.8.0.312.b05-0.3.ea - Add patch to improve performance of common separato...
exiv2 security update
0.27.0-4 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990352...
runc security update
1.0.0-1.rc95 - Addresses CVE-2021-30465...
firefox security update
78.4.1-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.1-1 - Update to 78.4.1 78.4.0-3 - Fixing flatpak build, fixing firefox.sh.in to not disable langpacks loading 78.4.0-2 - Enable addon sideloading 78.4.0-1 - Update to...
edk2 security update
1:1.3.2-1.el7 - Updates for OVMF/AAVMF Version 1.3.2 including: Fri Jul 31 2020 Aaron Young - Create new 1.3.2 release for OL7 Fri May 01 2020 Aaron Young - Create new 1.3.1 release for OL7 Wed Feb 05 2020 Aaron Young - Create new 1.3 release for OL7 which includes the following fixed CVEs:...
kernel security and bug fix update
2.6.32-754.31.1.OL6 - Update genkey bug 25599697 2.6.32-754.31.1 - x86 x86/speculation: Provide SRBDS late microcode loading support Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation: Add Ivy Bridge to affected list Waiman Long 1827185 CVE-2020-0543 - documentation x86/speculation...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.47.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351121 CVE-2019-19533 - can: peakusb: fix slab info leak Johan Hovold Orabug: 31351143 CVE-2019-19534 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug:...
Unbreakable Enterprise kernel security update
2.6.39-400.324.1 - media: ttusb-dec: Fix info-leak in ttusbdecsendcommand Tomas Bortoli Orabug: 31351122 CVE-2019-19533 - ALSA: core: Fix card races between register and disconnect Takashi Iwai Orabug: 31351895 CVE-2019-15214...
kernel security, bug fix, and enhancement update
3.10.0-1127.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1127 - fs flexfiles: Dont tie up all the rpciod threads in resends Benjamin...
python-imaging security update
1.1.6-20 - Fixes for CVE-2020-5312 and related part of CVE-2019-16865 Resolves: rhbz1789533...
firefox security update
60.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
Unbreakable Enterprise kernel security update
2.6.39-400.304.1 - mnt: Prevent pivotroot from creating a loop in the mount tree Eric W. Biederman Orabug: 26575709 CVE-2014-7970 CVE-2014-7970 - vfs: more mntparent cleanups Al Viro Orabug: 26575709 CVE-2014-7970 - vfs: new internal helper: mnthasparentmnt Al Viro Orabug: 26575709 CVE-2014-7970 ...
java-1.8.0-openjdk security update
1:1.8.0.151-1.b12 - repack policies adapted to new counts and paths - note that also c-j-c is needed to make this apply in next update - Resolves: rhbz1499207 1:1.8.0.151-0.b12 - Correct fix to RH1191652 root patch so existing COMMONCCXXFLAGSJDK is not lost. - Resolves: rhbz1499207...
httpd security update
2.4.6-67.0.1.el74.5 - replace index.html with Oracle's index page oracleindex.html 2.4.6-67.5 - Resolves: 1493064 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method...
kernel security and bug fix update
2.6.32-696.10.2.OL6 - Update genkey bug 25599697 2.6.32-696.10.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil Horman 1490060 1490062 CVE-2017-1000251...
kernel security, bug fix, and enhancement update
3.10.0-514.10.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.10.2 - net dccp: fix freeing skb too early for IPV6RECVPKTINFO Hannes...
Unbreakable Enterprise kernel security update
2.6.39-400.294.3 - dccp: fix freeing skb too early for IPV6RECVPKTINFO Andrey Konovalov Orabug: 25598277 CVE-2017-6074...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.25 - KEYS: Fix short sprintf buffer in /proc/keys show function David Howells Orabug: 25306361 CVE-2016-7042 - nvme: Limit command retries Keith Busch Orabug: 25374751 - fs/proc/taskmmu.c: fix mmaccess mode parameter in pagemapread Kenny Keslar Orabug: 25374977 - tcp: fix u...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.14.1 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971919 CVE-2016-1583 - RDS: IB: fix panic with handlers running post teardown Santosh Shilimkar Orabug: 24395795...
Unbreakable Enterprise kernel security update
2.6.39-400.284.2 - Btrfs: fix truncation of compressed and inlined extents Divya Indi Orabug: 22307286 CVE-2015-8374 - Btrfs: fix file corruption and data loss after cloning inline extents Divya Indi Orabug: 22307286 CVE-2015-8374 - netfilter: xtables: make sure e-nextoffset covers remaining blob...
kernel security and bug fix update
2.6.32-642.4.2 - net tcp: make challenge acks less predictable Florian Westphal 1355606 1355607 CVE-2016-5696 2.6.32-642.4.1 - ipmi Remove smimsg from waitingrcvmsgs list before handleonerecvmsg David Arcari 1355980 1347189 - fs ext4: Remove useless spinlock in ext4getattr Lukas Czerner 1355981...
openssl security update
0.9.8e-39.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
java-1.8.0-openjdk security update
1:1.8.0.71-2.b15 - Add md5sum for previous java.security file so it gets updated. - Resolves: rhbz1295753 1:1.8.0.71-1.b15 - Restore upstream version of system LCMS patch removed by 'sync with Fedora' - Add patch to turn off strict overflow on IndicRearrangementProcessor,2.cpp - Resolves:...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
kernel security and bug fix update
kernel 2.6.18-402 - block virtio: Reset device after blkcleanupqueue Stefan Hajnoczi 1006536 - block virtio: Call delgendisk before disable guest kick Stefan Hajnoczi 1006536 - block virtio: Drop unused request tracking list Stefan Hajnoczi 1006536 - fs cifs: setfacl removes part of ACL when...
php53 security update
5.3.3-26 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.3.3-25 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
xerces-j2 security update
2.11.0-17 - Fix XML parsing bug JAXP, 8017298 - Resolves: CVE-2013-4002...
httpd security update
2.2.15-31.0.1.el65 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-31 - modcgid: add security fix for CVE-2014-0231 - moddeflate: add security fix for CVE-2014-0118 - modstatus: add security fix for CVE-2014-0226...
kernel security update
3.10.0-123.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.1.2 - tty ntty: Fix nttywrite crash when echoing in raw mode Aristeu Rozanski 1094241 1094242 CVE-2014-0196...
java-1.7.0-openjdk security update
1.7.0.65-2.5.1.2.0.1.el510 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.65-2.5.1.2 - added and applied fix for samrtcard io patch405, pr1864smartcardIO.patch - Resolves: rhbz1115872 1.7.0.65-2.5.1.1.el5 - updated to security patched icedtea7-forest 2.5.1 - Resolves:...
openssl security update
1.0.1e-16.14 - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerabilit...
java-1.7.0-openjdk security update
1.7.0.51-2.4.7.1.0.1.el65 - Update DISTRONAME in specfile 1.7.0.51-2.4.7.1.el6 - regenerated sources to fix TCK failure - Resolves: rhbz1085002 1.7.0.51-2.4.7.0.el6 - bumped to future icedtea-forest 2.4.7 - updatever set to 55, buildver se to 13, release reset to 0 - removed upstreamed patch402...
java-1.6.0-openjdk security update
1:1.6.0.1-3.1.13.0 - updated to icedtea 1.13.1 - http://blog.fuseyism.com/index.php/2014/01/23/security-icedtea-1-12-8-1-13-1-for-openjdk-6-released/ - updated to jdk6, b30, 21jan2014 - https://openjdk6.java.net/OpenJDK6-B30-Changes.html - adapted patch7 1.13fixes.patch - pre 2011 changelog moved...
php53 and php security update
5.3.3-27 - add security fix for CVE-2013-6420...
polkit security update
0.96-5 - Actually apply the patch, and modify it to apply to 0.96 - Resolves: 1006262 0.96-4.el64 - Include fix for CVE-2013-4288 - Resolves: 1006262 0.96-3.el64 - Include fixes for CVE-2011-1485 - Resolves: 692942...
kernel security and bug fix update
2.6.18-308.11.1.el5 - net ixgbe: remove flow director stats Andy Gospodarek 832169 830226 - net ixgbe: fix default return value for ixgbecacheringfdir Andy Gospodarek 832169 830226 - net ixgbe: reverting setup redirection table for multiple packet buffers Andy Gospodarek 832169 830226...
postgresql security update
8.1.23-4 - Back-port upstream fixes for CVE-2012-0866 and CVE-2012-0868 Resolves: 812070 8.1.23-3 - Back-port upstream fix for unregistering OpenSSL callbacks at close Resolves: 728828 8.1.23-2 - Back-port upstream fix for CVE-2011-2483 Resolves: 740738...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.21.1.el6uek - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090 -...
kernel security, bug fix, and enhancement update
2.6.32-71.29.1.el6 - mm Revert 'mm pdpte registers are not flushed when PGD entry is changed in x86 PAE mode' Larry Woodman 695256 691310 2.6.32-71.28.1.el6 - net bonding: fix jiffy comparison issues Andy Gospodarek 698109 696337 - drm radeon/kms: check AA resolve registers on r300 + regression f...
firefox security update
firefox: 3.6.17-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.17-1 - Update to 3.6.17 xulrunner: 1.9.2.17-4.0.1.el60 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.17-4 - Rebuild 1.9.2.17-3 - Update to...
kvm security and bug fix update
kvm-83-224.0.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-224.el5 - kvm-kernel-KVM-x86-zero-kvmvcpuevents-interrupt.pad.patch bz665407 - Resolves: bz665407 kvmvcpuevents.interrupt.pad must be zeroed - CVE: CVE-2010-4525 kvm-83-223.e...
bind security update
bind: 9.3.4-6.0.1.P1 - CVE-2008-1447 selinux-policy: 2.4.6-137.1 - Allow named to bind to any udp port Resolves: 451971...