9184 matches found
net-snmp security and bug fix update
5.3.2.2-20.0.2.el5 - snmptrapd: Fix crash due to access of freed memory John Haxby orabug 14391194 5.3.2.2-20.0.1.el5 - suppress spurious asserts on 32bit Greg Marsden 5.3.2.2-20 - fixed error message when the address specified by clientaddr option is wrong or cannot be bound 840861 5.3.2.2-19 -...
1
2.6.18-308.11.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzho...
java-1.7.0-openjdk security and bug fix update
1.7.0.5-2.2.1.0.1.el6 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6 - Updated priority to be 17000 and to depend on buildver variable - Variable buildver increased to 5 as it should be - Resolves: rhbz828759 1.7.0.3-2.2.1.el6 - Used newly prepared tarball with security fixes - Bump to...
kvm security and bug fix update
kvm-83-249.0.1.el58.4 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-249.el58.4 - kvm-kernel-KVM-unmap-pages-from-the-iommu-when-slots-are-remove.patch bz814151 - CVE: CVE-2012-2121 - Resolves: bz814151 CVE-2012-2121 kvm: device...
Unbreakable Enterprise kernel security update
kernel-uek: 2.6.32-300.25.1.el6uek - jbd2: clear BHDelay & BHUnwritten in journalunmapbuffer Eric Sandeen Bugdb: 13871 CVE-2011-4086...
thunderbird security update
10.0.4-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.4-1 - Update to 10.0.4 ESR...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-100.6.1 - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090...
samba security, bug fix, and enhancement update
3.0.33-3.37.el5 - Regenerate manpage for 'wide links' and 'unix extensions' sections - related: 722553 3.0.33-3.36.el5 - Security Release, fixes CVE-2010-0926 - resolves: 722553 3.0.33-3.35.el5 - Fix smbclient return code - resolves: 768908 3.0.33-3.34.el5 - Fix support for Windows 2008 R2 domain...
squirrelmail security update
1.4.8-5.0.1.el57.13 - Remove Redhat splash screen images 1.4.8-5.13 - fix typo in CVE-20210-4555 patch 1.4.8-5.12 - patch for CVE-2010-2813 was not complete 1.4.8-5.11 - fix: CVE-2010-1637 : Port-scans via non-standard POP3 server ports in Mail Fetch plugin - fix: CVE-2010-2813 : DoS disk space...
php53 and php security update
5.3.3-3.3 - improve CVE-2011-1466 fix to cover CALGREGORIAN, CALJEWISH 5.3.3-3.1 - add security fixes for CVE-2011-2483, CVE-2011-0708, CVE-2011-1148, CVE-2011-1466, CVE-2011-1468, CVE-2011-1469, CVE-2011-1470, CVE-2011-1471, CVE-2011-1938, and CVE-2011-2202 740731...
python security, bug fix, and enhancement update
2.4.3-43 - add missing patch 206 Related: rhbz549372 2.4.3-42 - fix testpyclbr to match the urllib change in patch 204 patch 206 - allow the 'noproxy' environment variable to override 'ftpproxy' in urllib2 patch 207 - fix typos in names of patches 204 and 205 Related: rhbz549372 2.4.3-41 - backpo...
postgresql security update
7.4.29-1.el48.1 - Update to PostgreSQL 7.4.29 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/7.4/static/release.html Resolves: 586056 7.4.26-1.el48.1 - Update to PostgreSQL 7.4.26 to fix...
nspr and nss security and bug fix update
nspr: 4.7.4-1.el53.1 - create z-stream version 4.7.4-1 - Update to NSPR 4.7.4 nss: 3.12.3.99.3-1.el53.2 - adjust ssl cipher count constant bug 505650 3.12.3.99.3-1.el53.1 - create z-stream version 3.12.3.99.3-1 - updated to NSS3124FIPS1WITHCKBI175 3.12.3-5 - updated patch to seckey 3.12.3-4 - add...
Important: cups security update
1.1.17-13.3.46 - Applied patch to fix CVE-2007-4045 bug 356541. - Applied patch to fix CVE-2007-4351 STR 2561, bug 356541. - Applied patch to fix CVE-2007-5393 bug 356541...
Low unzip security and bug fix update
5.51-9.EL4.5 - Resolves: 230558 problem in patch4 unzipped file permissions 5.51-8.EL4.5 - fix problem with 4GB files which are not compressed 5.51-7.EL4.5 - fix 164927 - TOCTOU issue in unzip - fix 178960 - unzip long filename buffer overflow - fix 199104 - add large file support return Lon's 4G...
Unbreakable Enterprise kernel security update
5.4.17-2136.341.3.1 - Revert 'NFSD: Limit the number of concurrent async COPY operations' Sherry Yang Orabug: 37667080 5.4.17-2136.341.3 - iouring: fix possible deadlock in ioregisteriowqmaxworkers Hagar Hemdan Orabug: 37565787 - iouring/rw: fix missing NOWAIT check for ODIRECT start write Jens...
java-17-openjdk security update
17.0.11.0.9-2.0.1 - Add Oracle vendor bug URL 1:17.0.11.0.9-2 - Update to jdk-17.0.11+9 GA - Add openjdk-17.0.11+9.tar.xz to .gitignore - Sync java-17-openjdk-portable.specfile from openjdk-portable-rhel-8 - Update buildver from 7 to 9 - Update portablerelease from 1 to 3 - Change isga from 0 to ...
bind security update
bind 32:9.16.23-14.4 - Rebuild with correct z-stream tag again 32:9.16.23-14.3 - Rebuild together with bind-dyndb-ldap to adjust ABI changes 32:9.16.23-14.2 - Import tests for large DNS messages fix - Add downstream change complementing CVE-2023-50387 32:9.16.23-14.1 - Prevent increased CPU load ...
Unbreakable Enterprise kernel security update
5.4.17-2136.329.3.2 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36465920 CVE-2024-1086...
Unbreakable Enterprise kernel security update
4.1.12-124.83.2 - Input: add bounds checking to inputsetcapability Jeff LaBundy Orabug: 36192120 CVE-2022-48619 - netfilter: ctnetlink: fix possible refcount leak in ctnetlinkcreateconntrack Hangyu Hua Orabug: 36155598 CVE-2023-7192 4.1.12-124.83.1 - ext4: improve error recovery code paths in...
webkit2gtk3 security and bug fix update
2.40.5-1 - Upgrade to 2.40.5. Also, disable JIT Resolves: 2176269 Resolves: 2185742 Resolves: 2209728 Resolves: 2209745 Resolves: 2218649 Resolves: 2218651 Resolves: 2224611 2.38.5-1.4 - Add patch for CVE-2023-28204 Resolves: 2209744 - Add patch for CVE-2023-32373 Resolves: 2209727 2.38.5-1.3 -...
httpd and mod_http2 security, bug fix, and enhancement update
httpd 2.4.57-5.0.1 - Replace index.html with Oracle's index page oracleindex.html. 2.4.57-5 - Fix issue found by covscan - Related: 2222001 2.4.57-4 - Resolves: 2217726 - Make PROPFIND tolerant of deletion race 2.4.57-3 - Resolves: 2222001 - modstatus lists BusyWorkers IdleWorkers keys twice...
grafana security update
9.0.9-4 - Resolve CVE-2023-44487 Rapid Reset Attack - Resolve CVE-2023-39325 rapid stream resets can cause excessive work...
.NET 7.0 security update
7.0.112-1.0.1 - Update to .NET SDK 7.0.112 and Runtime 7.0.12 - Resolves: RHEL-11698...
nginx security update
1:1.20.1-14.0.1.1 - Resolves: RHEL-12518 - nginx: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack Rapid Reset Attack CVE-2023-44487...
nodejs:16 security and bug fix update
nodejs 1:16.16.0-3 - Fix build - Resolves: RHBZ2111416 1:16.16.0-2 - Refactor spec - Resolves: RHBZ2111416 1:16.16.0-1 - Rebase to latest version - Resolves: RHBZ2106369 - CVE fixes for CVE-2022-32212/3/4/5 - Resolves: 2109578, 2109581, 2109584, 2109588 nodejs-nodemon 2.0.19-2 - Switched from...
Unbreakable Enterprise kernel-container security update
r 5.4.17-2136.310.7 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34480880 CVE-2022-2588 - x86/specctrl: limit IBRSFW to retpoline only Ankur Arora Orabug: 34450896 - x86/bugs: display dynamic retbleed state Ankur Arora Orabug: 34450896 - x86/bugs:...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.309.5.1 - netsched: clsroute: remove from list when handle is 0 Thadeu Lima de Souza Cascardo Orabug: 34460937 CVE-2022-2588...
olcne security update
olcne 1.4.6-2 - Fix bug in gen-certs-helper script to change permission of node.key to allow opc user to copy over - Update gen-certs-helper script to skip printing olcnetransferscript execution - Cleanup grpc connection when node not found and use substr method in case fqdn used for hostname...
grub2, mokutil, shim, and shim-unsigned-x64 security update
2.02-123.0.4.el86.8 - enable multiboot2 Orabug: 34285558 - backport arm64: Fix EFI loader kernel image allocation Orabug: 33702462 - backport Arm: check for the PE magic for the compiled arch Orabug: 33702462 - Backport some better script logic for BTRFS support Orabug: 32448171 - Do not add shim...
java-1.8.0-openjdk security update
1:1.8.0.332.b09-1 - Update to shenandoah-jdk8u332-b09 GA - Update release notes for 8u332-b09. - Resolves: rhbz2074649...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.58.1-1 - Update to 1.58.1. 1.58.0-1 - Update to 1.58.0. 1.57.0-1 - Update to 1.57.0. 1.56.1-2 - Add rust-std-static-wasm32-wasi Resolves: rhbz1980080 1.56.0-1 - Update to 1.56.1. 1.55.0-1 - Update to 1.55.0. - Backport support for LLVM 13. 1.54.0-2 - Make std-static-wasm arch-specific to...
openssl security update
1:1.0.2k-25 - Fixes CVE-2022-2078 Infinite loop in BNmodsqrt reachable when parsing certificates - Related: rhbz2067160...
openssl security update
1:1.1.1k-6 - Fixes CVE-2022-0778 openssl: Infinite loop in BNmodsqrt reachable when parsing certificates - Resolves: rhbz2067144...
firefox security and bug fix update
91.7.0-3.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Enabled aarch64 build 91.7.0-3 - Update to 91.7.0 build3 91.7.0-2 - Added expat backports of...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.304.4.2.el7 - netfilter: nftablesoffload: incorrect flow offload action array size Pablo Neira Ayuso Orabug: 33899500 CVE-2022-25636...
kernel security and bug fix update
4.18.0-348.12.25.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
openssl security update
1.0.2k-23 - fixes CVE-2021-3712 openssl: Read buffer overruns processing ASN.1 strings - Resolves: rhbz1996054...
firefox security update
91.5.0-1.0.2 - Enabled aarch64 builds 91.5.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.5.0-1 - Update to 91.5.0 build1...
httpd:2.4 security update
httpd 2.4.37-43.0.2 - scoreboard: fix null pointer deference Orabug: 33690670CVE-2021-34798 - fix apescapequote logic Orabug: 33690686CVE-2021-39275...
hivex security update
1.3.10-6.12 - Limit recursion in ri-records CVE-2021-3622 resolves: rhbz1976193...
rust-toolset:ol8 security, bug fix, and enhancement update
rust 1.52.1-1 - Update to 1.52.1. Includes security fixes for CVE-2020-36323, CVE-2021-28876, CVE-2021-28878, CVE-2021-28879, and CVE-2021-31162. 1.51.0-1 - Update to 1.51.0. Update to 1.51.0. Includes security fixes for CVE-2021-28875 and CVE-2021-28877. 1.50.0-1 - Update to 1.50.0. rust-toolset...
.NET 5.0 security and bugfix update
5.0.204-1.0.1 - Add support for new Oracle release 5.0.204-1 - Update to .NET SDK 5.0.204 and Runtime 5.0.7 - Resolves: RHBZ1966166...
libldb security update
1.5.4-2 - resolves: 1941511 - Fix CVE-2021-20277...
qemu security update
15:4.2.1-5.el7 - qemu.spec: use --tls-priority=NORMAL for OL7 Elena Ufimtseva - hostmem: fix default 'prealloc-threads' count Mark Kanda Orabug: 32472127 - hostmem: introduce 'prealloc-threads' property Igor Mammedov - qom: introduce objectregistersugarprop Paolo Bonzini - migration/multifd: Do...
oddjob security, bug fix, and enhancement update
0.34.5-3 - Support HOMEMODE from /etc/login.defs Resolves: rhbz1886362 0.34.5-2 - Add gating tests using idm:DL1 module stream and upstream tests Resolves: rhbz1682457 0.34.5-1 - Upstream release 0.34.5 - Resolves: rhbz1833289 - Rebase oddjob to 0.34.5 - Resolves: rhbz1833052 - CVE-2020-10737...
qt5-qtbase and qt5-qtwebsockets security and bug fix update
qt5-qtbase 5.12.5-6 - OpenSSL: handle SSLshutdowns errors properly Resolves: bz1851538 5.12.5-5 - Fix: Files placed by attacker can influence the working directory and lead to malicious code execution Resolves: bz1814739 Resolves: bz1814683 - Fix: XML entity expansion vulnerability Resolves:...
firefox security update
78.4.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.4.0-1 - Update to 78.4.0 build2...
.NET Core 3.1 security and bugfix update
3.1.108-2.0.1.el82 - Update patch to support 8.2 [email protected] - support OL release scheme [email protected] 3.1.108-2 - Rebuild to fix tests - Resolves: RHBZ1874512 3.1.108-1 - Update to .NET Core Runtime 3.1.8 and SDK 3.1.108 - Resolves: RHBZ1874512...
firefox security update
68.11.0-1.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.11.0-1 - Update to 68.11.0 build1...