8998 matches found
java-1.6.0-openjdk security update
1:1.6.0.35-1.13.9.4.0.1.el511 - Add oracle-enterprise.patch 1:1.6.0.37-1.13.9.4 - Update with new IcedTea & b37 tarballs, including fix for appletviewer regression. - Resolves: rhbz1271926 1:1.6.0.37-1.13.9.3 - Update with new IcedTea & b37 tarballs, including more Kerberos fixes for TCK...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444792 CVE-2015-2922...
kernel security, bug fix, and enhancement update
2.6.32-504.30.3 - redhat spec: Update dracut dependency to pull in drbg module Frantisek Hrbata 1241517 1241338 2.6.32-504.30.2 - crypto rng: Remove krng Herbert Xu 1233512 1226418 - crypto drbg: Add stdrng alias and increase priority Herbert Xu 1233512 1226418 - crypto seqiv: Move IV seeding int...
kernel security and bug fix update
3.10.0-229.7.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.7.2 - fs pipe: fix pipe corruption and iovec overrun on partial copy Seth Jennings 1202861 1198843 CVE-2015-1805 3.10.0-229.7.1 - scsi storvsc: get rid of overly verbose warning messages Vitaly Kuznetsov 1215770 1206437 - scsi...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.1.3 - isofs: Fix unchecked printing of ER records Jan Kara Orabug: 20930551 CVE-2014-9584 - KEYS: close race between key lookup and freeing Sasha Levin Orabug: 20930548 CVE-2014-9529 CVE-2014-9529 - mm: memcg: do not allow task about to OOM kill to bypass the limit Johannes...
openssl security update
0.9.8e-33 - fix CVE-2014-8275 without introduction of CVE-2015-0286 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export ciphersuites and on server - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
Unbreakable Enterprise kernel security update
2.6.39-400.249.3 - IB/core: Prevent integer overflow in ibumemget address arithmetic Shachar Raindel Orabug: 20788393 CVE-2014-8159 CVE-2014-8159 2.6.39-400.249.2 - xen-pciback: limit guest control of command register Jan Beulich Orabug: 20704156 CVE-2015-2150 CVE-2015-2150 - net: sctp: fix slab...
glibc security update
2.3.4-2.57.0.1.el4.1 - CVE-2015-0235 Fix parsing of numeric hosts in gethostbynamer John Haxby orabug 20439586...
kernel security and bug fix update
2.6.32-504.3.3 - x86 traps: stop using IST for SS Petr Matousek 1172810 1172811 CVE-2014-9322 2.6.32-504.3.2 - md dm-thin: fix pooliohints to avoid looking at maxhwsectors Mike Snitzer 1161420 1161421 1142773 1145230 2.6.32-504.3.1 - s390 zcrypt: toleration of new crypto adapter hardware Hendrik...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55 - freezer: set PFSUSPENDTASK flag on tasks that call freezeprocesses Colin Cross Orabug: 20082843 3.8.13-54 - netfilter: nfnat: fix oops on netns removal Florian Westphal Orabug: 19988779 - tcp: tsq: restore minimal amount of queueing Eric Dumazet Orabug: 19909542 - qedf: Fix...
file security and bug fix update
5.04-21 - fix typographical error in changelog 5.04-20 - fix 1037279 - better patch for the bug from previous release 5.04-19 - fix 1037279 - display 'from' field on 32bit ppc core 5.04-18 - fix 664513 - trim white-spaces during ISO9660 detection 5.04-17 - fix CVE-2014-3479 cdfcheckstreamoffset...
xerces-j2 security update
2.11.0-17 - Fix XML parsing bug JAXP, 8017298 - Resolves: CVE-2013-4002...
qemu-kvm security and bug fix update
1.5.3-60.el70.2 - kvm-pc-add-hotaddcpu-callback-to-all-machine-types.patch bz1094820 - Resolves: bz1094820 Hot plug CPU not working with RHEL6 machine types running on RHEL7 host. 1.5.3-60.el70.1 - kvm-iscsi-fix-indentation.patch bz1090978 - kvm-iscsi-correctly-propagate-errors-in-iscsiopen.patch...
unbreakable enterprise kernel security update
2.6.39-400.215.4 - l2tp: fix an unprivileged user to kernel privilege escalation Sasha Levin Orabug: 19229505 CVE-2014-4943 CVE-2014-4943 - ptrace,x86: force IRET path after a ptracestop Tejun Heo Orabug: 19230690 CVE-2014-4699...
unbreakable enterprise kernel security update
2.6.39-400.215.2 - futex: Make lookuppistate more robust Thomas Gleixner Orabug: 18918614 CVE-2014-3153 - futex: Always cleanup owner tid in unlockpi Thomas Gleixner Orabug: 18918614 CVE-2014-3153 - futex: Validate atomic acquisition in futexlockpiatomic Thomas Gleixner Orabug: 18918614...
php security update
5.1.6-43 - drop unneeded patch 5.1.6-42 - add security fixes for CVE-2012-2688, CVE-2011-1398, CVE-2013-1643, CVE-2013-6420...
kernel security and bug fix update
kernel 2.6.18-348.12.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
java-1.7.0-openjdk security update
1.7.0.25-2.3.10.3.0.1.el64 - Update DISTRONAME in specfile 1.7.0.25-2.3.10.3.el6 - removed upstreamed patch1000 MBeanFix.patch - updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - Resolves: rhbz973119 1.7.0.25-2.3.10.2.el6 - added patch1000 MBeanFix.patch to fix regressions caused by...
Unbreakable Enterprise kernel Security update
2.6.39-400.21.2 - KVM: x86: Convert MSRKVMSYSTEMTIME to use gfntohvacache functions CVE-2013-1797 Andy Honig Orabug: 16711660 CVE-2013-1797 - Bluetooth: Fix incorrect strncpy in hidpsetuphid Anderson Lizardo Orabug: 16711065 CVE-2013-0349 - USB: ioti: Fix NULL dereference in chaseport Wolfgang...
java-1.7.0-openjdk security update
1.7.0.19-2.3.9.1.0.1.el59 - Add oracle-enterprise.patch - Fix DISTRONAME to "Enterprise Linux" 1.7.0.19-2.3.9.1.el5 - updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz950376 1.7.0.19-2.3.9.0.el5 - updated to IcedTea 2.3.9 with latest...
kernel security and bug fix update
2.6.32-279.11.1.el6 - net core: Fix napigrofrags vs netpoll path Amerigo Wang 857854 845347 - netdrv benet: disable BH in callers of beprocessmcc Amerigo Wang 857854 845347 - net bonding: remove IFFINNETPOLL flag Amerigo Wang 857854 845347 - mm fix contigpagedata kABI breakage and related memory...
xulrunner security update
1.9.2.11-4.0.1.el55 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. 1.9.2.11-4.el55 - Add upstream patch for CVE-2010-3765...
gfs-kmod security, bug fix and enhancement update
0.1.34-12 - Fixes a problem where improper locking commands can crash the system. - Resolves: rhbz571298 0.1.34-11 - Fixes 'Resource tempory unavailable' for EWOULDBLOCK message with flocks on gfs file - Resolves: rhbz515717 0.1.34-10 - Fixes 'Resource tempory unavailable' for EWOULDBLOCK message...
firefox security update
1.5.0.12-0.21.0.1.el4 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js 1.5.0.12-0.21.el4 - JavaScript error correction 1.5.0.12-0.20.el4 - Add patches for backported fixes from 1.8.1.16...
unbound security update
1.16.2-5.2 - bind9: KeyTrap - Extreme CPU consumption in DNSSEC validator CVE-2023-50387 - bind9: Preparing an NSEC3 closest encloser proof can exhaust CPU resources CVE-2023-50868...
olcne security update
conmon 2.1.3-7 - Resolve CVE-2023-39325 2.1.3-6 - Add ol8baseoslatest, and ol9baseoslatest, to Jenkinsfile 2.1.3-5 - Add systemd-devel as build requirement 2.1.3-4 - Add support ARM build 2.1.3.3 - Add OL9 support 2.1.3.2 - Update inline with Linux team building conmon for all but OL7. cri-o...
postgresql-jdbc security update
42.2.27-1 - rebase to 42.2.27 - fix for CVE-2022-41946...
krb5 security update
1.10.3-65.0.1 - Fix integer overflows in PAC parsing CVE-2022-42898 Orabug: 34843511...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.315.5 - Revert 'xfs: fix use-after-free on CIL context on shutdown' Sherry Yang Orabug: 34917369 5.4.17-2136.315.4 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888473 - uek-rpm: Add ptpkvm.ko to nano rpm Somasundaram Krishnasamy Orabug: 33487655 - block: fix RO...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.12.1-1 - Rebase + CVEs - Resolves: 2142809 - Resolves: 2142830, 2142856 nodejs-nodemon 2.0.20-1 - Rebase to 2.0.20 Resolves: CVE-2022-3517...
kernel security and bug fix update
3.10.0-1160.76.1.0.1.OL7 debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.76.1.OL7 Update Oracle Linux certificates Ilya Okomin Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] Update x509.genkey Orabug: 24817676 Confli...
Unbreakable Enterprise kernel security update
5.15.0-1.43.4.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460936 CVE-2022-2588 5.15.0-1.43.4 - Revert selftests/bpf: add tests verifying unprivileged bpf behaviour Alan Maguire Orabug: 34399286 - Revert selftests/bpf: Add test for reg2btfids o...
Unbreakable Enterprise kernel security update
4.14.35-2047.516.1.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460938 CVE-2022-2588 4.14.35-2047.516.1 - KVM: x86: Avoid theoretical NULL pointer dereference in kvmirqdeliverytoapicfast Vitaly Kuznetsov Orabug: 34323860 CVE-2022-2153 - KVM: x8...
maven:3.5 security update
maven-shared-utils 3.2.1-0.2 - Fix commandline injection vulnerability - Resolves: CVE-2022-29599...
webkit2gtk3 security, bug fix, and enhancement update
2.34.6-1 - Update to 2.34.6 Related: 1985042 2.34.5-1 - Update to 2.34.5 - Related: 1985042 2.34.4-1 - Update to 2.34.4 - Resolves: 1985042 2.32.4-1 - Update to 2.32.4 - Related: 1985042 - Resolves: 2006429...
zlib security update
1.2.7-20 - Resolves: CVE-2018-25032...
firefox security update
91.8.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.8.0-1 - Update to 91.8.0...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.302.7.2.3 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33832574 CVE-2022-0492...
parfait:0.5 security update
parfait 0.5.4-4 - Obsolete remove vulnerable versions of log4j12 NVR 1.2.17-23 when upgrading to parfait 0.5.4-4 CVE-2021-4104 0.5.4-3 - Drop all code explicitly using Log4J BZ 2032158...
containerd security update
containerd 1.4.8-1 - Address CVE-2021-32760 docker-cli 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760. docker-engine 19.03.11-13 - updated containerd minimum version to 1.4.8 to address CVE-2021-32760...
openssl bug fix update
1.0.2k-21 - remove ASN1FASN1ITEMEMBEDD2I from openssl-1.0.2k-cve-2020-1971.patch 1.0.2k-20 - fix CVE-2020-1971 openssl: EDIPARTYNAME NULL pointer de-reference 1.0.2k-19 - close the RSA decryption 9 lives of Bleichenbacher cat timing side channel 1649568 1.0.2k-18 - fix CVE-2018-0734 - DSA signatu...
bind security update
32:9.11.20-5.1 - Fix off-by-one bug in ISC SPNEGO implementation CVE-2020-8625...
Unbreakable Enterprise kernel security update
5.4.17-2036.103.3.1uek - xen-blkback: fix error handling in xenblkbkmap Jan Beulich Orabug: 32492109 CVE-2021-26930 - xen-scsiback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 - xen-netback: don't 'handle' error by BUG Jan Beulich Orabug: 32492101 CVE-2021-26931 -...
postgresql:10 security update
10.15-1 - Rebase to upstream release 10.15 Resolves: rhbz1898213 Resolves: rhbz1898341 Resolves: rhbz1901567...
python3 security update
3.6.8-17.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-17 - Overhaul pythons FIPS mode support Resolves: rhbz1788459 3.6.8-16 - Security fix for CVE-2020-8492 Resolves: rhbz1810616 3.6.8-15 - Security fix for CVE-2019-16935 Resolves: rhbz1797999 3.6.8-14 - Provide and...
libvpx security update
1.3.0-8 - Fix for CVE-2020-0034 - Resolves: rhbz1823909 1.3.0-7 - Fix for CVE-2019-9232 and CVE-2019-9433 - Resolves: rhbz1796085, rhbz1796099 1.3.0-6 - Fix for CVE-2017-0393 - Resolves: rhbz1779498 1.3.0-4 - fix Illegal Instruction abort 1.3.0-3 - update library symbol list for 1.3.0 from Debian...
firefox security update
68.11.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Thu Jul 23 2020 Jan Horak - Update to 68.11.0 build1...
Unbreakable Enterprise kernel-container kata-image kata-runtime kata kubernetes olcne security update
kernel-uek-container 4.14.35-1902.303.5.3.el7 - rds: Deregister all FRWR mr with freemr Hans Westgaard Ry Orabug: 31476202 - Revert 'rds: Do not cancel RDMAs that have been posted to the HCA' Gerd Rausch Orabug: 31475329 - Revert 'rds: Introduce rdsconntopath helper' Gerd Rausch Orabug: 31475329 ...
virt:ol security update
qemu-kvm 2.12.0-99.0.1.el82.2 - Added bug30251155-remove-upstream-reference Orabug: 30251155 2.12.0-99.el82.2 - kvm-vnc-add-magic-cookie-to-VncState.patch bz1816763 - kvm-vnc-fix-memory-leak-when-vnc-disconnect.patch bz1816763 - Resolves: bz1816763 CVE-2019-20382 virt:rhel/qemu-kvm: QEMU: vnc:...
microcode_ctl security, bug fix and enhancement update
3:1.17-33.26.0.1 - update 06-2d-07 to 0x71a - update 06-55-04 to 0x2006906 - update 06-55-07 to 0x5002f01 - merge Oracle changes for early load via dracut - enable late load on install for UEK4 kernels marked safe except BDW-79 - set earlymicrocode='no' in virtualized guests to avoid early load...