8998 matches found
389-ds-base security and bug fix update
1.3.9.1-12 - Bump version to 1.3.9.1-12 - Resolves: Bug 1767622 - CleanAllRUV task limit not enforced 1.3.9.1-11 - Bump version to 1.3.9.1-11 - Resolves: Bug 1748198 - EMBARGOED CVE-2019-14824 389-ds-base: Read permission check bypass via the deref plugin - Resolves: Bug 1754831 - After audit log...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.39.1.1 - x86/tsx: Add config options to set tsx=on|off|auto Michal Hocko Orabug: 30419232 CVE-2019-11135 - x86/speculation/taa: Add documentation for TSX Async Abort Pawan Gupta Orabug: 30419232 CVE-2019-11135 - x86/tsx: Add 'auto' option to TSX cmdline parameter Pawan Gupta...
sos-collector security update
1.5-3.0.1 - To recognize OL systemOraBug 28807430 - import os module to detect /etc/redhat-release OraBug 28740046 1.5-3 - Resolve race condition in cluster profile loading - Quote all options globally - RHBZ1633515 - RHBZ1647955 1.5-2 - Fix cluster option reporting 1.5-1 - Update to version 1.5 ...
kernel security and bug fix update
2.6.32-754.6.3.OL6 - Update genkey bug 25599697 2.6.32-754.6.3 - kvm VMX: fixes for vmentryl1dflush module parameter Marcelo Tosatti 1628796 - x86 speculation: Use ARCHCAPABILITIES to skip L1D flush on vmentry Marcelo Tosatti 1628796 - x86 KVM: VMX: skip L1TF flush on VM-entry if EPT is disabled...
Unbreakable Enterprise kernel security update
4.1.12-124.19.1 - x86/entry/64: Ensure %ebx handling correct in xenfailsafecallback George Kennedy Orabug: 28402927 CVE-2018-14678 - x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ Andi Kleen Orabug: 28488808 CVE-2018-3620 - x86/speculation/l1tf: Suggest what to do on systems with t...
glibc security, bug fix, and enhancement update
2.17-222 - Restore internal GLIBCPRIVATE symbols for use during upgrades 1523119 2.17-221 - CVE-2018-1000001: Fix realpath buffer underflow 1534635 - i386: Fix unwinding for 32-bit C++ application 1529982 - Reduce thread and dynamic loader stack usage 1527904 - x86-64: Use XSAVE/XSAVEC more often...
glibc security update
2.17-196 - Avoid large allocas in the dynamic linker 1452721 2.17-195 - Rounding issues on POWER 1457177 2.17-194 - Use a built-in list of system call names 1439165 2.17-193 - Inhibit FMA while compiling sqrt, pow 1413638 2.17-192 - Exclude lock elision support for older Intel hardware with Intel...
python security and bug fix update
2.7.5-58.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-58 - Set stream to None in case an open fails. Resolves: rhbz1432003 2.7.5-57 - Fix implicit declaration warnings of functions added by patches 147 and 265 Resolves: rhbz1441237 2.7.5-56 - Fix shutil.makearchive...
firefox security update
45.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.7.0-1 - Updated to 45.7.0 B1 45.6.0-2 - Enabled ffmpeg 54.35.1 rhbz1330898, mozbz1263665...
Unbreakable Enterprise kernel security update
2.6.39-400.293.2 - x86/iopl/64: properly context-switch IOPL on Xen PV Andy Lutomirski Orabug: 25269184 CVE-2016-3157 - net: Fix use after free in the recvmmsg exit path Arnaldo Carvalho de Melo Orabug: 25298618 CVE-2016-7117...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.17 - sched: panic on corrupted stack end Jann Horn Orabug: 24971921 CVE-2016-1583 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971921 CVE-2016-1583 - proc: prevent stacking filesystems on top Jann Horn Orabug: 24971921 CVE-2016-1583...
Unbreakable Enterprise kernel security update
2.6.39-400.278.3 - net: add validation for the socket syscall protocol argument Hannes Frederic Sowa Orabug: 23267976 CVE-2015-8543 CVE-2015-8543 - ipv6: addrconf: validate new MTU before applying it Marcelo Leitner Orabug: 23263251 CVE-2015-8215 - ext4: avoid hang when mounting non-journal...
samba security update
3.0.33-3.41.el5 - Security Release 'BadLock' - resolves: CVE-2016-2110 - resolves: CVE-2016-2111...
glibc security and bug fix update
2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...
net-snmp security and bug fix update
1:5.7.2-24 - Fixed lmSensorsTable not reporting sensors with duplicate names 1252053 - Fixed close overhead of extend commands 1252048 - Fixed out-of-bounds write in python code 1252034 1:5.7.2-23 - Fixed parsing of invalid variables in incoming packets 1248414 - Fixed...
libxml2 security and bug fix update
2.7.6-20.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball libxml2-2.7.6-20.el6 - CVE-2015-1819 Enforce the reader to run in constant memoryrhbz1214163 libxml2-2.7.6-19.el6 - Stop parsing on entities boundaries errors - Fix missing entiti...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.14uek - net: sctp: fix NULL pointer dereference in af-fromaddrparam on malformed packet Daniel Borkmann Orabug: 20425334 CVE-2014-7841...
nss and nspr security, bug fix, and enhancement update
nspr 4.10.6-1 - Rebase to nspr-4.10.6 - Resolves: rhbz1112135 nss 3.16.1-4.0.1.el65 - Added nss-vendor.patch to change vendor 3.16.1-4 - Update some patches on account of the rebase - Resolves: Bug 1099619 3.16.1-3 - Backport nss-3.12.6 upstream fix required by Firefox 31 - Resolves: Bug 1099619...
kernel security and bug fix update
2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...
unbreakable enterprise kernel security update
2.6.39-400.214.4 - netfilter: nfconntrackdccp: fix skbheaderpointer API usages Daniel Borkmann Orabug: 18462070 CVE-2014-2523 - net: sctp: fix sctpsfdo51Dce to verify if we/peer is AUTH capable Daniel Borkmann Orabug: 18461090 CVE-2014-0101 - vhost-net: insufficient handling of error conditions i...
kernel security, bug fix, and enhancement update
kernel 2.6.18-371.6.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
Unbreakable Enterprise kernel security update
3.8.13-26.1.1.el6uek - inet: fix addrlen/msg-msgnamelen assignment in recverror and rxpmtu functions Hannes Frederic Sowa 18247287 CVE-2013-7263 CVE-2013-7265 - inet: prevent leakage of uninitialized memory to user in recv syscalls Hannes Frederic Sowa 18238377 CVE-2013-7263 CVE-2013-7265 -...
php security, bug fix and enhancement update
5.3.3-22 - php-xml provides php-xmlreader and php-xmlwriter 874987 - fix possible NULL derefence and buffer overflow 879179 - fix zend garbage collector 848186, 868375 5.3.3-21 - fix CVE reference in previous changelog entry 5.3.3-20 - remove reproducer from security fix for CVE-2012-0781 5.3.3-1...
net-snmp security and bug fix update
5.3.2.2-20.0.2.el5 - snmptrapd: Fix crash due to access of freed memory John Haxby orabug 14391194 5.3.2.2-20.0.1.el5 - suppress spurious asserts on 32bit Greg Marsden 5.3.2.2-20 - fixed error message when the address specified by clientaddr option is wrong or cannot be bound 840861 5.3.2.2-19 -...
java-1.7.0-openjdk security and bug fix update
1.7.0.5-2.2.1.0.1.el6 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6 - Updated priority to be 17000 and to depend on buildver variable - Variable buildver increased to 5 as it should be - Resolves: rhbz828759 1.7.0.3-2.2.1.el6 - Used newly prepared tarball with security fixes - Bump to...
php security update
5.1.6-39 - fix issue in CVE-2012-0057 patch 5.1.6-38 - fix memory handling in CVE-2012-0789 patch 5.1.6-37 - add security fixes for CVE-2012-0057, CVE-2011-4153, CVE-2012-0789, CVE-2012-1172 5.1.6-36 - add security fix for CVE-2012-2336...
postgresql security update
8.1.23-5 - Back-port upstream fix for CVE-2012-2143 Resolves: 830721...
kvm security and bug fix update
kvm-83-249.0.1.el58.4 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-249.el58.4 - kvm-kernel-KVM-unmap-pages-from-the-iommu-when-slots-are-remove.patch bz814151 - CVE: CVE-2012-2121 - Resolves: bz814151 CVE-2012-2121 kvm: device...
kernel security and bug fix update
2.6.18-274.3.1.0.1.el5 - fs nfs: Fix putnfsopencontext NULL pointer panic Joe Jin orabug 12687646 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by defau...
thunderbird security update
3.1.8-4.0.2.el60 - Replace clean.gif in tarball 3.1.8-4.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 3.1.8-4 - Update to build3 3.1.8-3 - Update to build2 3.1.8-2 - Update to 3.1.8...
java-1.6.0-openjdk security and bug fix update
1.6.0.0-1.16.b17.0.1.el5 - Add oracle-enterprise.patch 1.6.0.0-1.16.b17.el5 - Updated 1.7.5 tarball contains additional security fixes - Resolves: bz639951 1.6.0.0-1.15.b17.el5 - Rebuild - Resolves: bz639951 1.6.0.0-1.14.b17.el5 - Synched with el6 branch - Updated to IcedTea 1.7.5 - Resolves:...
postgresql security update
7.4.29-1.el48.1 - Update to PostgreSQL 7.4.29 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/7.4/static/release.html Resolves: 586056 7.4.26-1.el48.1 - Update to PostgreSQL 7.4.26 to fix...
nspr and nss security and bug fix update
nspr: 4.7.4-1.el53.1 - create z-stream version 4.7.4-1 - Update to NSPR 4.7.4 nss: 3.12.3.99.3-1.el53.2 - adjust ssl cipher count constant bug 505650 3.12.3.99.3-1.el53.1 - create z-stream version 3.12.3.99.3-1 - updated to NSS3124FIPS1WITHCKBI175 3.12.3-5 - updated patch to seckey 3.12.3-4 - add...
kernel security and bug fix update
2.6.9-89.0.3.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...
Moderate: php security update
4.3.2-43.ent - improve fix for CVE-2007-3996 278361 4.3.2-42.ent - add security fixes for CVE-2007-2509, CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658 278361...
Critical: thunderbird security update
1.5.0.12-0.1.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-0.1.el4 - Update to 1.5.0.12...
Low unzip security and bug fix update
5.51-9.EL4.5 - Resolves: 230558 problem in patch4 unzipped file permissions 5.51-8.EL4.5 - fix problem with 4GB files which are not compressed 5.51-7.EL4.5 - fix 164927 - TOCTOU issue in unzip - fix 178960 - unzip long filename buffer overflow - fix 199104 - add large file support return Lon's 4G...
Unbreakable Enterprise kernel security update
5.15.0-308.179.6.2 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920681 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920681 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920681 - selftest/x86/bugs: Add selftests f...
ghostscript security update
9.27-16 - RHEL-18396 CVE-2023-46751 ghostscript: dangling pointer in gdevprnopenprinterseekable - RHEL-67046 CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space - RHEL-15067 CVE-2020-27792 ghostscript: heap buffer over write vulnerability in GhostScript...
Unbreakable Enterprise kernel security update
5.4.17-2136.341.3.1 - Revert 'NFSD: Limit the number of concurrent async COPY operations' Sherry Yang Orabug: 37667080 5.4.17-2136.341.3 - iouring: fix possible deadlock in ioregisteriowqmaxworkers Hagar Hemdan Orabug: 37565787 - iouring/rw: fix missing NOWAIT check for ODIRECT start write Jens...
Unbreakable Enterprise kernel security update
4.1.12-124.88.3 - crypto: pcrypt - Fix hungtask for PADATARESET Lu Jialin Orabug: 36806710 CVE-2023-52813 - usbnet: sanity check for maxpacket Oliver Neukum Orabug: 36806658 CVE-2021-47495 - phonet: fix rtmphonetnotify skb allocation Eric Dumazet Orabug: 36683487 CVE-2024-36946 - wifi: nl80211:...
java-17-openjdk security update
17.0.11.0.9-2.0.1 - Add Oracle vendor bug URL 1:17.0.11.0.9-2 - Update to jdk-17.0.11+9 GA - Add openjdk-17.0.11+9.tar.xz to .gitignore - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Update buildver from 7 to 9 - Update portablerelease from 1 to 3 - Change isga from 0 to ...
Unbreakable Enterprise kernel security update
5.4.17-2136.330.7.1 - KVM: x86: Add BHINO Daniel Sneddon Orabug: 36384803 CVE-2024-2201 - x86/bhi: Mitigate KVM by default Pawan Gupta Orabug: 36384803 CVE-2024-2201 - x86/bhi: Add BHI mitigation knob Pawan Gupta Orabug: 36384803 CVE-2024-2201 - x86/bhi: Enumerate Branch History Injection BHI bug...
Unbreakable Enterprise kernel security update
5.4.17-2136.329.3.2 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086...
idm:DL1 security update
bind-dyndb-ldap custodia ipa 4.9.12-11.0.1 - Resolves: 2242828 Invalid CSRF protection CVE-2023-5455 ipa-healthcheck opendnssec python-jwcrypto python-kdcproxy 0.4-5 - Always buffer TCP data in handlerecv - Resolves: 1747144 0.4-4 - Correct addrs sorting to be by TCP/UDP - Resolves: 1732898...
python3.11-pip security update
22.3.1-4 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218249 22.3.1-3 - Fix changelog to contain Fedora contributors Resolves: RHEL-232...
webkit2gtk3 security and bug fix update
2.40.5-1 - Upgrade to 2.40.5. Also, disable JIT Resolves: 2176269 Resolves: 2185742 Resolves: 2209728 Resolves: 2209745 Resolves: 2218649 Resolves: 2218651 Resolves: 2224611 2.38.5-1.4 - Add patch for CVE-2023-28204 Resolves: 2209744 - Add patch for CVE-2023-32373 Resolves: 2209727 2.38.5-1.3 -...
.NET 7.0 security update
7.0.112-1.0.1 - Update to .NET SDK 7.0.112 and Runtime 7.0.12 - Resolves: RHEL-11698...
nginx security update
1:1.20.1-14.0.1.1 - Resolves: RHEL-12518 - nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
ruby security, bug fix, and enhancement update
3.0.4-160 - Upgrade to Ruby 3.0.4. Resolves: rhbz2109428 - OpenSSL test suite fixes due to disabled SHA1. Related: rbhz2109428 - Fix double free in Regexp compilation. Resolves: CVE-2022-28738 - Fix buffer overrun in String-to-Float conversion. Resolves: CVE-2022-28739...