8998 matches found
tomcat5 security update
0:5.5.23-0jpp.31 - Resolves: CVE-2012 regression. Changed patch file. 0:5.5.23-0jpp.30 - Resolves: CVE-2012-0022, CVE-2011-4858 0:5.5.23-0jpp.27 - Resolves CVE-2011-0013 rhbz 675933 - Resolves CVE-2011-3718 rhbz 675933 0:5.5.23-0jpp.23 - Resolves CVE-2011-1184 rhbz 744984 - Resolves CVE-2011-2204...
php53 and php security update
5.3.3-3.5 - remove extra php.ini-prod/devel files caused by %patch -b 5.3.3-3.4 - add security fixes for CVE-2011-4885, CVE-2011-4566 769754...
Unbreakable Enterprise kernel security update
2.6.32-200.20.1.el6uek - afpacket: prevent information leak CVE-2011-2898 - gro: Only reset frag0 when skb can be pulled CVE-2011-2723 - vm: fix vmpgoff wrap in stack expansion CVE-2011-2496 - vm: fix vmpgoff wrap in upward expansion CVE-2011-2496 - taskstats: don't allow duplicate entries in...
java-1.6.0-openjdk security update
1.6.0.0-1.39.1.9.8 - Resolves: rhbz709375 - Bumped to IcedTea6 1.9.8 - Copy fontconfig files to match names for current and next release - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.9.el6 - sync up the version 2.6.32-100.28.8.el6 - block check for proper length of iov entries earlier in blkrqmapuseriov Xiaotian Feng CVE-2010-4668 - scm: lower SCMMAXFD Eric Dumazet CVE-2010-4249 - perfevents: Fix perfcountermmap hook in mprotect Pekka Enberg CVE-2010-4169 - tcp:...
glibc security and bug fix update
2.12-1.7.el60.3 - Require suid bit on audit objects in privileged programs 645679, CVE-2010-3856 2.12-1.7.el60.2 - Never expand in privileged programs 643821 2.12-1.7.el60.1 - Fix bug in generic strstr/memmem implementation handling certain repeated patterns 643341 - Correctly align TCB for AVX...
openssl security update
0.9.8e-12.1 - fix CVE-2009-2409 - drop MD2 algorithm from EVP tables 510197 - fix CVE-2009-4355 - do not leak memory when CRYPTOcleanupallexdata is called prematurely by application 546707...
mysql security and bug fix update
5.0.77-3 - Add fix for CVE-2009-2446 format string vulnerability in COMCREATEDB and COMDROPDB processing Resolves: 512200 5.0.77-2 - Back-port upstream fix for CVE-2008-4456 mysql command line client XSS flaw Resolves: 502169 5.0.77-1 - Update to MySQL 5.0.77, for numerous fixes described at...
kernel security and bug fix update
2.6.18-128.1.14.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
kernel security and bug fix update
2.6.9-78.0.22.0.1.EL - xen fix for hung JVM thread after GPF orabug 7916406 Chuck Anderson - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mt...
Unbreakable Enterprise kernel security update
5.15.0-308.179.6 - net: bridge: IP defragmentation failing for jumboframes Venkat Venkatsubra Orabug: 37847171 - uek-rpm: remove .el9 from shim version Samasth Norway Ananda Orabug: 37834731 - RDS: avoid using offlined CPU during reconnect Arumugam Kolappan Orabug: 37783021 - net/mlx5e: Rely on...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL8 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
openssh security update
7.4p1-23.0.3fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...
conmon security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build cri-o 1.26.3-3 - Resolve CVE-2023-39325 1.26.3-2 - Add support for ARM build cri-tools 1.26.1-3 - Resolve...
grafana security and enhancement update
9.2.10-7 - resolve RHEL-12649 - resolve CVE-2023-39325 CVE-2023-44487 rapid stream resets can cause excessive work - testing is turned off due to test failures caused by testing date mismatch 9.2.10-6 - Add /usr/share/grafana to systemd-sysusers --replace 9.2.10-5 - resolve CVE-2023-3128 grafana:...
go-toolset:ol8 security update
delve golang 1.19.13-1 - Rebase to Go 1.19.13 CVE-2023-39325 CVE-2023-44487 go-toolset 1.19.13-1 - Rebase to Go 1.19.13 CVE-2023-39325 CVE-2023-44487...
xorg-x11-server security and bug fix update
1.20.11-15 - Rebuild for the missing debuginfo Related: rhbz2169522 1.20.11-14 - Fix xvfb-run script with --listen-tcp Resolves: rhbz2169522 1.20.11-13 - Fix CVE-2023-0494 2166977 1.20.11-12 - Follow-up fix for CVE-2022-46340 2151774 1.20.11-11 - CVE fix for: CVE-2022-4283 2151799, CVE-2022-46340...
unbound security and bug fix update
1.16.2-5 - Stop creating wrong devel manual pages 2135322 1.16.2-4 - Apply correctly previous change CVE-2022-3204 1.16.2-3 - Fix NRDelegation attack leading to uncontrolled resource consumption CVE-2022-3204...
bind9.16 security and bug fix update
32:9.16.23-0.14 - Handle subtle difference between upstream and rhel CVE-2022-3094 32:9.16.23-0.13 - Prevent flooding with UPDATE requests CVE-2022-3094 - Handle RRSIG queries when server-stale is active CVE-2022-3736 - Fix crash when soft-quota is reached and serve-stale is active CVE-2022-3924...
libtiff security update
4.0.9-27 - Fix various CVEs - Resolves: CVE-2022-3627 CVE-2022-3970...
virt:kvm_utils2 security update
qemu-kvm 6.1.1-5-el8 - hw/pvrdma: Protect against buggy or malicious guest driver Yuval Shaia Orabug: 35064352 CVE-2022-1050 - hw/display/qxl: Assert memory slot fits in preallocated MemoryRegion Philippe Mathieu-Daude Orabug: 35060182 - hw/display/qxl: Avoid buffer overrun in qxlphys2virt...
python39:3.9 security update
python39 3.9.13-2 - Fix for CVE-2022-42919 Resolves: rhbz2138705...
Unbreakable Enterprise kernel security update
5.4.17-2136.310.7 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34480880 CVE-2022-2588 - x86/specctrl: limit IBRSFW to retpoline only Ankur Arora Orabug: 34450896 - x86/bugs: display dynamic retbleed state Ankur Arora Orabug: 34450896 - x86/bugs:...
galera, mariadb, and mysql-selinux security, bug fix, and enhancement update
galera 26.4.11-1.0.1 - Requirement to delete garbd-wrapper script and lp1184034 test case without using patches. Patches from previous release have been deleted - Drop nmap-ncat requirement. Orabug: 34116228 - Added galera-skip-lp1184034-testcase.patch - Added...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.18.2-2 - Add missing fixes - Resolves: RHBZ2027642, RHBZ2027635 1:14.18.2-1 - Resolves: RHBZ2027609 - Resolves: RHBZ2027649, RHBZ2027646, RHBZ2027642, RHBZ2027635 - Rebase to new version to fix CVEs...
polkit security update
0.115-13.0.1 - Increase timeout to avoid defunct processes Orabug: 26930744 0.115-13.el85.1 - pkexec: argv overflow results in local privilege esc. - Resolves: CVE-2021-4034...
kernel security and bug fix update
3.10.0-1160.49.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 = 15-2.0.9 - Update oraclekernel-sig-key...
pcs security update
0.10.10-4.0.1 - Replace HAM-logo.png with a generic one 0.10.10-4 - Fixed unfencing in - Resolves: rhbzbz1991654 0.10.10-3 - Added add/remove syntax for command - Resolves: rhbz1992668 0.10.10-2 - Fixed create resources with depth operation attribute - Resolves: rhbz1998454 0.10.10-1 - Rebased to...
binutils security update
2.30-108.0.2.1 - Forward-port Oracle patches from 2.30-108.0.2 to 2.30-108.0.2.1 - Reviewed-by: Jose E. Marchesi 2.30-108.0.2 - Forward-port the following update: Thu Oct 07 2021 Nick Alcock - 2.30-93.0.4 - Backport fix for fencepost bug in CTF pptrtab usage causing coredumps - Backport test resu...
compat-exiv2-026 security update
0.26-11 - Fix heap-based buffer overflow vulnerability in jp2image.cpp that may lead to DoS Resolves: bz1990397...
nodejs:14 security, bug fix, and enhancement update
nodejs 1:14.17.3-2 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Don't use patch3 1:14.17.3-1 - Resolves: RHBZ1980032, RHBZ1978203 - Resolves RHBZ1842826 - Resolves CVE-2021-22918libuv, use system cipher list 1:14.16.0-3 - Resolves: RHBZ1930775 - Always build with systemtap...
olcne security update
olcne 1.2.4-5 - Updated registry-image-helper.sh to work with olcne-utils 1.2.4-4 - Fix istio template for 1.9.6 for k8s update failure 1.2.4-3 - Fixed yaml file to stop olcne-nginx and keepalived services at uninstall Orabug: 32296282 1.2.4-2 - Fix iptables issue when running on OL7 host using O...
postgresql security update
9.2.24-7 - Fix CVE-2021-32027 - Resolves: 1964507...
openssl security update
1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference...
kernel security and bug fix update
3.10.0-1160.11.1.OL7 - Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and shim-x64 slotsret under spinlockirq protection Rafael...
.NET Core 3.1 security and bugfix update
3.1.106-1.0.1 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.106-1 - Update to .NET Core Runtime 3.1.6 and SDK 3.1.106 - Resolves: RHBZ1854137...
freerdp security update
2.0.0-4.rc4.1 - CVE-2020-13398: Fix out-of-bounds write in crypto.c 1841974...
bind security update
32:9.11.13-5 - Limit number of queries triggered by a request CVE-2020-8616 32:9.11.13-4 - Fix invalid tsig request CVE-2020-8617...
sqlite security and bug fix update
3.26.0-6 - Fixed issues found by covscan 3.26.0-5 - Fixed CVE-2019-13752 1786529 - Fixed CVE-2019-13753 1786535 - Fixed CVE-2019-13734 1786509 - Fixed CVE-2019-19924 1789776 - Fixed CVE-2019-19923 1789812 - Fixed CVE-2019-19925 1789808 - Fixed CVE-2019-19959 1789823...
kernel security, bug fix, and enhancement update
3.10.0-1127.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1127 - fs flexfiles: Dont tie up all the rpciod threads in resends Benjamin...
ppp security update
2.4.5-34.0.2 - Userland headers should always appear before kernel - Orabug: 27656836 [email protected] 2.4.5-34 - Fixed buffer overflow in the eaprequest and eapresponse functions Resolves: CVE-2020-8597...
pango security update
1.42.4-5 - Fixes crash in pangofcfontkeygetvariations when key is null 1.42.4-4 - Fixes bidi crash - Security fix for CVE-2019-1010238 - Resolves: 1738461 1.42.4-3 - rebuild 1.42.4-2 - rebuild...
pki-deps:10.6 security update
apache-commons-collections 3.2.2-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora29MassRebuild 3.2.2-9 - Remove workaround for symlink-directory rpm bug jackson-bom 2.9.8-1 - Update to latest upstream release 2.9.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 2.9.4-1 -...
libvirt security update
0.10.2-64.0.1 - Replace docs/et.png in tarball with blank image 0.10.2-64.el610.1 - cpux86: Do not cache microcode version CVE-2018-12126, CVE-2018-12130, CVE-2018-12127 - cpumap: Define md-clear CPUID bit CVE-2018-12126, CVE-2018-12130, CVE-2018-12127...
kernel security and bug fix update
2.6.32-754.11.1.OL6 - Update genkey bug 25599697 2.6.32-754.11.1 - x86 mm/fault: Allow stack access below rsp Waiman Long 1644401 - sound alsa: rawmidi: Change resized buffers atomically Denys Vlasenko 1593083 CVE-2018-10902...
openssl security update
1.0.2k-12.0.3 - Oracle bug 28672370: backport CVE-2018-0732 - Oracle bug 28672351: backport CVE-2018-0737...
libvirt security and bug fix update
3.9.0-14.el75.6 - logging: Don't inhibit shutdown in system daemon rhbz1573268 - util: don't check for parallel iteration in hash-related functions rhbz1581364 - cpu: define the 'virt-ssbd' CPUID feature bit CVE-2018-3639 - virNumaGetHugePageInfo: Return pageavail and pagefree as ULL rhbz1582418...
kernel security, bug fix, and enhancement update
...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR 52.0-5 - Added fix for...
openssh security, bug fix, and enhancement update
6.6.1p1-22 - Use the correct constant for glob limits 1160377 6.6.1p1-21 - Extend memory limit for remote glob in sftp acc. to stat limit 1160377 6.6.1p1-20 - Fix vulnerabilities published with openssh-7.0 1265807 - Privilege separation weakness related to PAM support - Use-after-free bug related...