9185 matches found
kernel security update
kernel - 2.6.18-419.0.0.0.2 - mm support large stack guard gap between vmas orabug 26366330...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711 2.12-1.209.1 - Fix thread cancellation issues for setmntent and others 1437618...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.6 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
libreoffice security and bug fix update
1:5.0.6.2-5.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-5.1 - Resolves: rhbz1435534 CVE-2017-3157 Arbitrary file disclosure in Calc and Writer 1:5.0.6.2-5 - Resolves:...
firefox security update
45.8.0-2.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.8.0-2 - Update to 45.8.0 ESR B2 45.8.0-1 - Update to 45.8.0 ESR 45.7.0-2 - Enabled ppc/s390 arches rhbz1418765...
openssl security update
1.0.1e-48.4 - fix CVE-2017-3731 - DoS via truncated packets with RC4-MD5 cipher - fix CVE-2016-8610 - DoS of single-threaded servers via excessive alerts...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.17 - sched: panic on corrupted stack end Jann Horn Orabug: 24971921 CVE-2016-1583 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971921 CVE-2016-1583 - proc: prevent stacking filesystems on top Jann Horn Orabug: 24971921 CVE-2016-1583...
Unbreakable Enterprise kernel security update
2.6.39-400.278.3 - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267976 CVE-2015-8543 CVE-2015-8543 - ipv6: addrconf: validate new MTU before applying it Marcelo Leitner Orabug: 23263251 CVE-2015-8215 - ext4: avoid hang when mounting non-journal...
java-1.8.0-openjdk security update
1:1.8.0.91-0.b14 - Add additional fix to Zero patch to properly handle result on 64-bit big-endian - Resolves: rhbz1325422 1:1.8.0.91-0.b14 - Revert settings to production defaults so we can at least get a build. - Resolves: rhbz1325422 1:1.8.0.91-0.b14 - Switch to a slowdebug build to try and...
samba security update
3.0.33-3.41.el5 - Security Release 'BadLock' - resolves: CVE-2016-2110 - resolves: CVE-2016-2111...
openssh security update
6.6.1p1-25 + 0.9.3-9 - CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding 1298741 6.6.1p1-24 + 0.9.3-9 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317818...
glibc security and bug fix update
2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...
java-1.6.0-openjdk security update
1.6.0.38-1.13.10.0.0.1 - Add oracle-enterprise.patch 1:1.6.0.38-1.13.10.0 - Add patch to replace -fno-strict-overflow with -fwrapv on older RHEL 5.11 GCC. - Resolves: rhbz1295772 1:1.6.0.38-1.13.10.0 - Update to IcedTea 1.13.10 & OpenJDK 6 b38. - Resolves: rhbz1295772...
file security and bug fix update
5.11-31 - fix 1255396 - Make the build ID output consistent with other tools 5.11-30 - fix CVE-2014-8116 - bump the acceptable ELF program headers count to 2048 5.11-29 - fix 839229 - fix detection of version of XML files 5.11-28 - fix 839229 - fix detection of version of XML files 5.11-27 - fix...
kernel security, bug fix, and enhancement update
3.10.0-229.20.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.20.1 - Revert: crypto nx - Check for bogus firmware properties Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving NX-AES-CBC to be processed logic Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.2.0.1 - Update DISTRONAME in specfile 1:1.7.0.91-2.6.2.2 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271919 1:1.7.0.91-2.6.2.1 - Bump to 2.6.2 and u91b00. - Resolves: rhbz1271919...
net-snmp security and bug fix update
1:5.5-54.0.1 - Add Oracle ACFS to hrStorage John Haxby orabug 18510373 1:5.5-54 - Quicker loading of IP-MIB::ipAddrTable 1191393 1:5.5-53 - Quicker loading of IP-MIB::ipAddressTable 1191393 1:5.5-52 - Fixed snmptrapd crash when '-OQ' parameter is used and invalid trap is received CVE-2014-3565...
cups security update
1:1.4.2-67.1 - CVE-2015-1158, CVE-2015-1159, CVE-2014-9679 bug 1229982...
kernel security and bug fix update
kernel 2.6.18-404.0.0.0.1 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function...
kernel security and bug fix update
kernel 2.6.18-404 - infiniband core: Prevent integer overflow in ibumemget Doug Ledford 1179353 CVE-2014-8159 2.6.18-403 - s390 zcrypt: Toleration of new crypto hardware Hendrik Brueckner 1182522 - fs cifs: Use pid from cifsFileInfo in wrt pages/setfilesize Sachin Prabhu 1169304 - xen x86: confin...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.3 - net: sctp: fix slab corruption from use after free on INIT collisions Daniel Borkmann Orabug: 20780349 CVE-2015-1421...
kernel security and bug fix update
2.6.32-504.8.1 - crypto crc32c: Kill pointless CRYPTOCRC32CX8664 option Jarod Wilson 1175509 1036212 - crypto testmgr: add larger crc32c test vector to test FPU path in crc32cintel Jarod Wilson 1175509 1036212 - crypto tcrypt: Added speed test in tcrypt for crc32c Jarod Wilson 1175509 1036212 -...
java-1.6.0-openjdk security update
1:1.6.0.33-1.13.6.1.0.1.el511 - Add oracle-enterprise.patch 1:1.6.0.34-1.13.6.1 - Update to latest 1.13.6 release candidate tarball - Fixes a number of issues found with b34: - OJ51, PR2187: Sync patch for 4873188 with 7 version - OJ52, PR2185: Application of 6786276 introduces compatibility issu...
kernel security, bug fix, and enhancement update
2.6.32-431.23.3 - netdrv pppol2tp: fail when socket option level is not SOLPPPOL2TP 1119461 1119462 CVE-2014-4943 2.6.32-431.23.2 - kernel utrace: force IRET path after utracefinishvfork Oleg Nesterov 1115932 1115933 CVE-2014-4699 2.6.32-431.23.1 - net iptunnel: fix iptunnelfind to return NULL in...
kernel security and bug fix update
kernel 2.6.18-371.11.1.0.1 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe...
qemu-kvm security and bug fix update
1.5.3-60.el70.5 - kvm-Allow-mismatched-virtio-config-len.patch bz1095782 - Resolves: bz1095782 CVE-2014-0182 qemu-kvm: qemu: virtio: out-of-bounds buffer write on state load with invalid configlen rhel-7.0.z 1.5.3-60.el70.4 - kvm-zero-initialize-KVMSETGSIROUTING-input.patch bz1110693 -...
openssl security update
1.0.1e-34.3 - fix CVE-2010-5298 - possible use of memory after free - fix CVE-2014-0195 - buffer overflow via invalid DTLS fragment - fix CVE-2014-0198 - possible NULL pointer dereference - fix CVE-2014-0221 - DoS from invalid DTLS handshake packet - fix CVE-2014-0224 - SSL/TLS MITM vulnerability...
openssl security update
0.9.8e-27.3 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability 0.9.8e-27.1 - replace expired GlobalSign Root CA certificate in ca-bundle.crt...
Unbreakable Enterprise kernel security update
3.8.13-26.1.1.el6uek - inet: fix addrlen/msg-msgnamelen assignment in recverror and rxpmtu functions Hannes Frederic Sowa 18247287 CVE-2013-7263 CVE-2013-7265 - inet: prevent leakage of uninitialized memory to user in recv syscalls Hannes Frederic Sowa 18238377 CVE-2013-7263 CVE-2013-7265 -...
kernel security and bug fix update
2.6.32-358.18.1 - x86 perf/x86: Fix offcorersp valid mask for SNB/IVB Nikola Pajkovsky 971314 971315 CVE-2013-2146 - net br: fix schedule while atomic issue in brfeaturesrecompute Jiri Pirko 990464 980876 - scsi isci: Fix a race condition in the SSP task management path David Milburn 990470 97860...
java-1.6.0-openjdk security update
1:1.6.0.0-1.62.1.11.11.90 - updated to icedtea6-1.11.11.90.tar.gz - removed upstreamed patch9 jaxp-backport-factoryfinder.patch - removed upstreamed patch10 fixToFontSecurityFix.patch. - modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch - Resolves: rhbz973129...
java-1.7.0-openjdk security update
1.7.0.25-2.3.10.4.0.1.el59 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.25-2.3.10.4.el5 - updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz973117 1.7.0.25-2.3.10.3.el5 - reverted fix for license...
java-1.6.0-openjdk security update
1:1.6.0.0-1.56.1.11.8 - Rebuild with updated sources - Resolves: rhbz911524 1:1.6.0.0-1.55.1.11.8 - Updated to icedtea6 1.11.8 - Removed patch9 7201064.patch - Removed patch10 8005615.patch - Removed not-applied patch 6664509.patch - Removed mauve as deadly outdated and run on QA - jtreg kept,...
libxslt security update
1.1.26-2.0.2.el63.1 - Increment release to avoid ULN conflict with previous release. 1.1.26-2.0.1.el63.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.26-2.el63.1 - fixes CVE-2011-1202 CVE-2011-3970 CVE-2012-2825 CVE-2012-2871 CVE-2012-2870 - Fix direct patter...
Unbreakable Enterprise kernel Security update
2.6.39-200.29.2 - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron CVE-2011-1083 - cred: copyprocess should clear...
kernel security and bug fix update
2.6.32-220.7.1.el6 - netdrv tg3: Fix single-vector MSI-X code John Feeney 787162 703555 - mm export removefrompagecache to modules Jerome Marchand 772687 751419 - block cfq-iosched: fix cfqciclink race confition Vivek Goyal 786022 765673 - fs cifs: lower default wsize when unix extensions are not...
kvm security update
kvm-83-239.0.1.el57.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-239.el57.1 - kvm-e1000-prevent-buffer-overflow-when-processing-legacy.patch bz772079 - Resolves: bz772079 EMBARGOED CVE-2012-0029 qemu-kvm: e1000: processtxdesc legacy...
kernel security and bug fix update
2.6.18-274.3.1.0.1.el5 - fs nfs: Fix putnfsopencontext NULL pointer panic Joe Jin orabug 12687646 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by defau...
Oracle Linux 5.6 kernel security and bug fix update
2.6.18-238.el5 - net bnx2: remove extra call to pcimappage John Feeney 663509 - fs nfs: set lockcontext field in nfsreadpagesync Jeff Layton 663853 2.6.18-237.el5 - block fully zeroize request struct in rqinit Rob Evers 662154 - scsi qla4xxx: update to 5.02.04.02.05.06-d0 Chad Dupuis 656999 - scs...
krb5 security update
1.6.1-36.el55.4 - add candidate patch to correct KDC null pointer dereference which could be triggered by malformed client requests CVE-2010-1321, 583703 1.6.1-36.el55.3 - add upstream patch to fix a few use-after-free bugs, including one in kadmind CVE-2010-0629, 578185...
kernel security and bug fix update
2.6.9-89.0.18.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
kernel security and bug fix update
2.6.9-89.0.3.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...
php security update
5.1.6-20.el52.1 - add security fixes for CVE-2007-5898, CVE-2007-4782, CVE-2007-5899, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108 445923...
Important: kernel security update
CVE-2007-4571 ALSA memory disclosure flaw - Tick divider bugs on x8664 - CVE-2007-5494 openOATOMICLOOKUP leaks dentry - PATCH jbd: wait for already submitted tsyncdatalist buffer to complete Possibility of in-place data destruction - LSPP: audit rule causes kernel 'out of memory' condition and...
Important: krb5 security update
1.5-29 - update to revised patch for CVE-2007-3999...
virt:ol and virt-devel:ol security update
qemu-kvm 4.2.0-59.el85 - kvm-hw-scsi-scsi-disk-MODEPAGEALLS-not-allowed-in-MODE.patch bz2025605 - kvm-e1000-fix-tx-re-entrancy-problem.patch bz2025011 - Resolves: bz2025605 CVE-2021-3930 virt:rhel/qemu-kvm: QEMU: off-by-one error in modesensepage in hw/scsi/scsi-disk.c rhel-8.5.0.z - Resolves:...
nodejs:20 security update
nodejs 1:20.19.1-1 - Update to version 20.19.1 Resolves: RHEL-78763 1:20.18.2-4 - Update c-ares to 1.34.5 to address CVE-2025-31498...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
Unbreakable Enterprise kernel security update
5.4.17-2136.329.3.2 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086...
kernel security update
5.14.0-362.24.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...