9185 matches found
virt:kvm_utils2 security update
qemu-kvm 6.1.1-5-el8 - hw/pvrdma: Protect against buggy or malicious guest driver Yuval Shaia Orabug: 35064352 CVE-2022-1050 - hw/display/qxl: Assert memory slot fits in preallocated MemoryRegion Philippe Mathieu-Daude Orabug: 35060182 - hw/display/qxl: Avoid buffer overrun in qxlphys2virt...
zlib security update
1.2.3-29.0.3 - Fix for CVE-2022-37474 Orabug: 34759428...
microcode_ctl security update
2:2.1-73.13.0.3 - update 06-55-04 to 0x2006d05 - update 06-55-07 to 0x5003302 - update 06-6a-04 to 0xb000280 - update 06-6a-06 to 0xd000375 2:2.1-73.13.0.2 - roll back 06-6a-06 to 0xd0002a0 due to PCIe issues on reset Orabug: 34076312 2:2.1-73.13.0.1 - for Intel, do not trigger load if on-disk...
openssl security update
1:1.1.1k-5.0.1 - fix CVE-2022-0778 - possible infinite loop in BNmodsqrt Orabug: 33974871...
openssl security update
1:1.1.1k-5 - CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings - Resolves: rhbz2005400...
nss security update
3.67.0-7 - Fix CVE 2021 43527...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-4 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz1877430 4.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora33MassRebuild 4.7.1-2 - Rebuilt for Python 3.9 4.7.1-1 - update to 4.7.1 1721376 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable...
php:7.4 security, bug fix, and enhancement update
libzip php 7.4.19-1 - rebase to 7.4.19 1944110...
Unbreakable Enterprise kernel security update
4.14.35-2047.508.3 - fuse: fix live lock in fuseiget Amir Goldstein Orabug: 33396682 CVE-2021-28950 - block: workaround to avoid self-deadlock in delgendisk Junxiao Bi Orabug: 33392821 - net: bonding: add new option arpallslaves for arpiptarget Venkat Venkatsubra Orabug: 33352735 4.14.35-2047.508...
java-11-openjdk security update
1:11.0.12.0.7-0 - Update to jdk-11.0.12.0+7 - Update release notes to 11.0.12.0+7 - Switch to GA mode for final release. - This tarball is embargoed until 2021-07-20 @ 1pm PT. - Resolves: rhbz1972395 1:11.0.12.0.6-0.0.ea - Update to jdk-11.0.12.0+6 - Update release notes to 11.0.12.0+6 - Switch t...
libwebp security update
1.0.0-3 - Added fixes for rhbz1956829, rhbz1956843, rhbz1956919...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.503.1.el7 - bpf, x86: Validate computation of branch displacements for x86-64 Piotr Krysiuk Orabug: 32759961 CVE-2021-29154 - uek-rpm: Add Amazon Elastic Network Adapter module to nano rpm. Somasundaram Krishnasamy Orabug: 32781585 - ext4: handle error of ext4setupsystemzone on remou...
thunderbird security update
78.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.8.0-1 - Update to 78.8.0 build1...
net-snmp security and bug fix update
1:5.8-18.1 - revert permission of config files to 600 1902662 1:5.8-18 - fix CVE-2020-15862 1886100 - fix bulk responses for invalid PID 1896760...
containerd security update
1.3.9-2 - BUILDINFO: commit=4737bd3784f16c18474a60d8678371108f995d7c - Addresses CVE-2020-15257 1.3.9-1 - Added Oracle specific build files...
python3 security update
3.6.8-17.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-17 - Overhaul pythons FIPS mode support Resolves: rhbz1788459 3.6.8-16 - Security fix for CVE-2020-8492 Resolves: rhbz1810616 3.6.8-15 - Security fix for CVE-2019-16935 Resolves: rhbz1797999 3.6.8-14 - Provide and...
telnet security update
1:0.17-73.1 - Resolves: 1814473 - Arbitrary remote code execution in utility.c via short writes or urgent data...
php security update
5.4.16-48 - fix underflow in envpathinfo in fpmmain.c CVE-2019-11043 5.4.16-47 - fix stack-buffer-overflow while parsing HTTP response CVE-2018-7584 - fix out-of-bounds read in base64decodexmlrpc CVE-2019-9024 - fix reflected XSS in phar 404 page CVE-2018-5712 - fix reflected XSS in phar 403 and...
icu security update
4.2.1-15 - Apply icu.13634.integer.overflow.patch - Apply icu.20958.segv.mapper.patch - Resolves: rhbz1809876...
python-reportlab security update
2.5-9.el77.1 - Do not eval strings passed to toColor - Resolves: 1788552 2.5-9 - Mass rebuild 2014-01-24 2.5-8 - Mass rebuild 2013-12-27 2.5-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora19MassRebuild 2.5-6 - Add a dep on python-imaging to process images 2.5-5 - Rebuilt for...
sudo security update
1.8.25p1-8 - RHEL-8.1.0 - fixed CVE-2019-14287 Resolves: rhbz1760696...
openssh security, bug fix, and enhancement update
8.0p1-3 + 0.10.3-7 - Fix typos in manual pages 1668325 - Use the upstream support for PKCS8 PEM files alongside with the legacy PEM files 1712436 - Unbreak ssh-keygen -A in FIPS mode 1732424 - Add missing RSA certificate types to offered hostkey types in FIPS mode 1732449 8.0p1-2 + 0.10.3-7 - All...
Unbreakable Enterprise kernel security update
2.6.39-400.305.1 - ipv6: tcp: add rcu locking in tcpv6sendsynack Eric Dumazet Orabug: 25059185 CVE-2016-3841 - ipv6: add complete rcu protection around np-opt Eric Dumazet Orabug: 25059185 CVE-2016-3841 - scsi: qla2xxx: Fix an integer overflow in sysfs code Dan Carpenter Orabug: 28220492...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.28.1 - udf: Check component length before reading it Jan Kara Orabug: 21193696 CVE-2014-9728 - udf: Verify isize when loading inode Shan Hai Orabug: 21193696 CVE-2014-9728 - intelpstate: Fix overflow in busyscaled due to long delay mridula shastry Orabug: 28005134 - scsi:...
python security update
2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz1584545...
openssh security, bug fix, and enhancement update
7.4p1-16 + 0.10.3-2 - Fix for CVE-2017-15906 1517226 7.4p1-15 + 0.10.3-2 - Do not hang if SSH AuthorizedKeysCommand output is too large 1496467 - Do not segfault pamsshagentauth if keyfile is missing 1494268 - Do not segfault in audit code during cleanup 1488083 - Add WinSCP 5.10+ compatibility...
qemu-kvm security update
0.12.1.2-2.503.el69.4 - Fix CVE-2017-5715...
kernel security and bug fix update
3.10.0-693.5.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security and bug fix update
3.10.0-693.1.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.1.1 - fs dentry name snapshots Miklos Szeredi 1471131 1470403 CVE-2017-7533 -...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.3 - posixacl: Clear SGID bit when setting file permissions Jan Kara Orabug: 25507344 CVE-2016-7097 CVE-2016-7097...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.4 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
qemu-kvm security update
0.12.1.2-2.503.el69.3 - kvm-cirrus-avoid-write-only-variables.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-dst-pointers-in-the-blitt.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-src-pointers-in-the-blitt.patch bz1444377 bz1444379 -...
tomcat security update
0:7.0.69-11 - Resolves: rhbz1413591 CVE-2016-8745 tomcat: information disclosure due to incorrect Processor sharing - Resolves: rhbz1402662 CVE-2016-6816 tomcat: HTTP Request smuggling vulnerability due to permitting invalid character in HTTP requests...
qemu-kvm security and bug fix update
0.12.1.2-2.503.el6 - kvm-cirrus-fix-patterncopy-checks.patch bz1420487 bz1420489 - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch bz1420487 bz1420489 - kvm-cirrus-add-blitisunsafe-call-to-cirrusbitbltcput.patch bz1420487 bz1420489 - Resolves: bz1420487 EMBARGOED CVE-2017-2620...
firefox security update
52.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.0-4 - Update to 52.0 ESR b4 52.0-3 - Added fix for rhbz1423012 - ppc64 gfx crashes 52.0-2 - Enable system nss 52.0-1 - Update to 52.0ESR B1 - Build RHEL7 package for Gtk3 52.0-0.13 - Added fix for...
Unbreakable Enterprise kernel security update
2.6.39-400.290.2 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060055 CVE-2016-6480 CVE-2016-6480 - audit: fix a double fetch in auditlogsingleexecvearg Paul Moore Orabug: 25059962 CVE-2016-6136 - ecryptfs: don't allow mmap when the lower fs doesn't support it...
kernel security update
3.10.0-327.36.3.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.36.3 - mm remove gupflags FOLLWRITE games from getuserpages Alexander Gordeev 1385123 1385124 CVE-2016-5195...
qemu-kvm security update
1.5.3-105.el72.7 - kvm-block-iscsi-avoid-potential-overflow-of-acb-task-cdb.patch bz1358996 - Resolves: bz1358996 CVE-2016-5126 qemu-kvm: Qemu: block: iscsi: buffer overflow in iscsiaioioctl rhel-7.2.z 1.5.3-105.el72.6 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359728 -...
openssl security update
1.0.1e-51.5 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
samba and samba4 security, bug fix, and enhancement update
ipa 4.2.0-15.0.1.6.1 - Drop redhat-access-plugin-ipa requires for OL7 Blank out header-logo.png product-name.png Replace login-screen-logo.png 20362818 4.2.0-15.6.1 - Rebuild against newer Samba version - Related: 1322690 libldb 1.1.25-1 - Rebase libldb to 1.1.25 - Related: rhbz1322690 libtalloc...
openssl security update
0.9.8e-39.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
kernel security and bug fix update
3.10.0-327.3.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.3.1 - rebuild 3.10.0-327.2.1 - netdrv macvtap: unbreak receiving of gro skb with frag list Jason Wang 1279794 1273737 - net ipv6: drop frames with attached skb-sk in forwarding Hannes Frederic Sowa 1281701 1243966 - net ipv...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.246.2 - net: sctp: fix NULL pointer dereference in af-fromaddrparam on malformed packet Daniel Borkmann Orabug: 20425333 CVE-2014-7841 2.6.39-400.246.1 - sched: Fix possible divide by zero in avgatom calculation Mateusz Guzik Orabug: 20148169 - include/linux/math64.h: add div64ul Alex...
kernel security and bug fix update
3.10.0-123.13.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.13.1 - powerpc mm: Make sure a localirqdisable prevent a parallel THP split Don Zickus 1151057 1083296 - powerpc Implement getuserpagesfast Don Zickus 1151057 1083296 - scsi vmwpvscsi: Some improvements in pvscsi driver Ewan...
php53 security update
5.3.3-26 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.3.3-25 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.3.el7uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817785 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817747 CVE-2014-4653 CVE-2014-4654...
xerces-j2 security update
2.11.0-17 - Fix XML parsing bug JAXP, 8017298 - Resolves: CVE-2013-4002...
bash security update
3.0-27.0.1 - Check for fishy environment Ondrej Oprala Resolves: 1141644...
kernel security update
3.10.0-123.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.1.2 - tty ntty: Fix nttywrite crash when echoing in raw mode Aristeu Rozanski 1094241 1094242 CVE-2014-0196...