9184 matches found
bind security update
32:9.8.2-0.68.rc1.7 - Correct tests covering CVE-2020-8617 32:9.8.2-0.68.rc1.6 - Add additional fix to limit recursions 32:9.8.2-0.68.rc1.5 - Add CVE tests to codebase 32:9.8.2-0.68.rc1.4 - Limit number of queries triggered by a request CVE-2020-8616 - Fix invalid tsig request CVE-2020-8617...
glibc security, bug fix, and enhancement update
2.28-101.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
qemu security update
...
Unbreakable Enterprise kernel security update
2.6.39-400.299.3 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156175 CVE-2018-3665 - ALSA: hrtimer: Fix stall by hrtimercancel Takashi Iwai Orabug: 22876528 CVE-2016-2549 - ALSA: timer: Harden slave timer list handling Takashi Iwai Orabug: 22876528 CVE-2016-2547 CVE-2016-2548 - ALSA:...
tomcat6 security update
0:6.0.24-111 - Resolves: rhbz1498345 CVE-2017-12615 CVE-2017-12617 tomcat6: various flaws 0:6.0.24-110 - Resolves: rhbz1461292 CVE-2017-5664 tomcat6: tomcat: Security constrained bypass in error page mechanism 0:6.0.24-109 - Resolves: rhbz1461851 The tomcat6 build is incompatible with the ECJ...
glibc security update
2.17-196 - Avoid large allocas in the dynamic linker 1452721 2.17-195 - Rounding issues on POWER 1457177 2.17-194 - Use a built-in list of system call names 1439165 2.17-193 - Inhibit FMA while compiling sqrt, pow 1413638 2.17-192 - Exclude lock elision support for older Intel hardware with Intel...
python security and bug fix update
2.7.5-58.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-58 - Set stream to None in case an open fails. Resolves: rhbz1432003 2.7.5-57 - Fix implicit declaration warnings of functions added by patches 147 and 265 Resolves: rhbz1441237 2.7.5-56 - Fix shutil.makearchive...
Unbreakable Enterprise kernel security update
2.6.39-400.297.5 - selinux: quiet the filesystem labeling behavior message Paul Moore Orabug: 25721485 - RDS/IB: active bonding port state fix for intfs added late Mukesh Kacker Orabug: 25875426 - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug: 25891914 CVE-2017-7273 - udf:...
firefox security update
45.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.7.0-1 - Updated to 45.7.0 B1 45.6.0-2 - Enabled ffmpeg 54.35.1 rhbz1330898, mozbz1263665...
kernel security and bug fix update
3.10.0-327.28.3.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.28.3 - net tcp: enable per-socket rate limiting of all 'challenge acks' Florian Westphal 1355603 1355605 CVE-2016-5696 - net tcp: uninline tcpoowratelimited Florian Westphal 1355603 1355605 CVE-2016-5696 - net tcp: make...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.9.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393864 CVE-2016-4470...
Unbreakable Enterprise kernel security update
2.6.39-400.280.1 - Fix cpu bootup stall with large cpu count Zhenzhong Duan Orabug: 23481040 - megaraidsas : Update threshold based reply post host index register [email protected] Orabug: 23536267 2.6.39-400.279.1 - IPoIB: increase send queue size to 4 times Ajaykumar Hotchandani Orabug...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.2.1 - ipc/sem.c: fully initialize semarray before making it visible Manfred Spraul Orabug: 22277382 CVE-2015-7613 - ipc: fix msg newqueue add Guru Anbalagane Orabug: 22277382 CVE-2015-7613 3.8.13-118.1.1 - sctp: fix race on protocol/netns initialization Marcelo Ricardo Leitn...
net-snmp security and bug fix update
1:5.7.2-24 - Fixed lmSensorsTable not reporting sensors with duplicate names 1252053 - Fixed close overhead of extend commands 1252048 - Fixed out-of-bounds write in python code 1252034 1:5.7.2-23 - Fixed parsing of invalid variables in incoming packets 1248414 - Fixed...
krb5 security, bug fix, and enhancement update
1.13.2-9 - Add patch and test case for 'KDC does not return proper client principal for client referrals' - Resolves: 1259846 1.13.2-9 - Ammend patch for RedHat bug 1252454 'testsuite complains 'Lifetime has increased by 32436 sec while 0 sec passed!', while rhel5-libkrb5 passes' to handle the...
libxml2 security and bug fix update
2.7.6-20.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball libxml2-2.7.6-20.el6 - CVE-2015-1819 Enforce the reader to run in constant memoryrhbz1214163 libxml2-2.7.6-19.el6 - Stop parsing on entities boundaries errors - Fix missing entiti...
Unbreakable Enterprise kernel security update
2.6.39-400.250.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444791 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444688 CVE-2015-3636...
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.5.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.75-2.5.5.1 - Repacked sources - Resolves: rhbz1209069 1:1.7.0.79-2.5.5.0 - Bump to 2.5.5 using OpenJDK 7u79 b14. - Resolves: rhbz1209069...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.14uek - net: sctp: fix NULL pointer dereference in af-fromaddrparam on malformed packet Daniel Borkmann Orabug: 20425334 CVE-2014-7841...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.10uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849336 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849320 CVE-2014-3181 logging macros to functions Joe Perches Orabug: 19847630 CVE-2014-3535 loggin...
kernel security, bug fix, and enhancement update
2.6.32-504 - netdrv revert 'cxgb4: set skb-rxhash' Prarit Bhargava 1140743 - netdrv revert 'cxgb4: Use netifsetrealnumrx/txqueues' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Turn on delayed ACK' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Use ULPMODETCPDDP' Prarit Bhargava 114074...
nss and nspr security, bug fix, and enhancement update
nspr 4.10.6-1 - Rebase to nspr-4.10.6 - Resolves: rhbz1112135 nss 3.16.1-4.0.1.el65 - Added nss-vendor.patch to change vendor 3.16.1-4 - Update some patches on account of the rebase - Resolves: Bug 1099619 3.16.1-3 - Backport nss-3.12.6 upstream fix required by Firefox 31 - Resolves: Bug 1099619...
kernel security and bug fix update
2.6.32-431.17.1 - scsi qla2xxx: Fixup looking for a space in the outstandingcmds array in qla2x00allociocbs Chad Dupuis 1085660 1070856 - scsi isci: fix reset timeout handling David Milburn 1080600 1040393 - scsi isci: correct erroneous foreachiscihost macro David Milburn 1074855 1059325 - kernel...
qemu-kvm security update
0.12.1.2-2.415.el65.8 - kvm-virtio-net-fix-guest-triggerable-buffer-overrun.patch bz1078605 bz1078849 - kvm-qcow2-Check-backingfileoffset-CVE-2014-0144.patch bz1079452 bz1079453 - kvm-qcow2-Check-refcount-table-size-CVE-2014-0144.patch bz1079452 bz1079453 -...
unbreakable enterprise kernel security update
2.6.39-400.214.4 - netfilter: nfconntrackdccp: fix skbheaderpointer API usages Daniel Borkmann Orabug: 18462070 CVE-2014-2523 - net: sctp: fix sctpsfdo51Dce to verify if we/peer is AUTH capable Daniel Borkmann Orabug: 18461090 CVE-2014-0101 - vhost-net: insufficient handling of error conditions i...
bind security update
32:9.8.2-0.23.rc1.1 - Fix CVE-2014-0591 32:9.8.2-0.23.rc1 - Fix gssapictx memory leak 911167 32:9.8.2-0.22.rc1 - fix CVE-2013-4854 32:9.8.2-0.21.rc1 - fix CVE-2013-2266 - ship dns/rrl.h in -devel subpkg 32:9.8.2-0.20.rc1 - remove one bogus file from /usr/share/doc, introduced by RRL patch...
php security, bug fix and enhancement update
5.3.3-22 - php-xml provides php-xmlreader and php-xmlwriter 874987 - fix possible NULL derefence and buffer overflow 879179 - fix zend garbage collector 848186, 868375 5.3.3-21 - fix CVE reference in previous changelog entry 5.3.3-20 - remove reproducer from security fix for CVE-2012-0781 5.3.3-1...
Unbreakable Enterprise kernel Security update
2.6.39-200.32.1 - dl2k: Clean up rioioctl Stephan Mueller Orabug: 14680245 CVE-2012-2313 - hugetlb: fix resvmap leak in error path Christoph Lameter Orabug: 14680284 CVE-2012-2390 - rds: set correct msgnamelen Jay Fenlason Orabug: 14680018 CVE-2012-3430...
kernel security and bug fix update
2.6.32-279.9.1.el6 - md raid1, raid10: avoid deadlock during resync/recovery. Dave Wysochanski 845464 835613 - fs dlm: fix deadlock between dlmsend and dlmcontrold David Teigland 849051 824964 - ata libata: Add space to fix 2GB ATA Flash Disk/ADMA428M blacklist Prarit Bhargava 851445 843849 - fs...
kernel security and bug fix update
kernel 2.6.18-308.13.1.el5 - net e1000e: Cleanup logic in e1000checkforserdeslink82571 Dean Nelson 841370 771366 - net e1000e: Correct link check logic for 82571 serdes Dean Nelson 841370 771366 - mm NULL pointer dereference in vmenoughmemory Jerome Marchand 840077 836244 - fs dlm: fix slow rsb...
php security update
5.1.6-39 - fix issue in CVE-2012-0057 patch 5.1.6-38 - fix memory handling in CVE-2012-0789 patch 5.1.6-37 - add security fixes for CVE-2012-0057, CVE-2011-4153, CVE-2012-0789, CVE-2012-1172 5.1.6-36 - add security fix for CVE-2012-2336...
postgresql security update
8.1.23-5 - Back-port upstream fix for CVE-2012-2143 Resolves: 830721...
kvm security and bug fix update
kvm-83-249.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch - modify kversion to fix build failure kvm-83-249.el5 - kvm-kernel-KVM-x86-Prevent-starting-PIT-timers-in-the-absence-o.patch bz770101 - CVE: CVE-2011-4622 - Resolves: bz770101...
php security update
4.3.9-3.35 - add glibc-headers to BuildRequires because of stdint.h needed by CVE-2011-0708.patch, adopt the patch's include header section 769761 4.3.9-3.33 - fix CVE-2011-4566 patch to be RHEL-4 php/exif compatible 769761 4.3.9-3.32 - add security fixes for CVE-2011-4885, CVE-2011-4566,...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.209.el62.4 - kvm-e1000-prevent-buffer-overflow-when-processing-legacy.patch bz772081 - Resolves: bz772081 EMBARGOED CVE-2012-0029 qemu-kvm: e1000: processtxdesc legacy mode packets heap overflow rhel-6.2.z qemu-kvm-0.12.1.2-2.209.el62.3 -...
thunderbird security update
3.1.8-4.0.2.el60 - Replace clean.gif in tarball 3.1.8-4.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 3.1.8-4 - Update to build3 3.1.8-3 - Update to build2 3.1.8-2 - Update to 3.1.8...
java-1.6.0-openjdk security and bug fix update
1.6.0.0-1.16.b17.0.1.el5 - Add oracle-enterprise.patch 1.6.0.0-1.16.b17.el5 - Updated 1.7.5 tarball contains additional security fixes - Resolves: bz639951 1.6.0.0-1.15.b17.el5 - Rebuild - Resolves: bz639951 1.6.0.0-1.14.b17.el5 - Synched with el6 branch - Updated to IcedTea 1.7.5 - Resolves:...
kernel security and bug fix update
2.6.9-89.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
httpd security update
2.2.3-31.0.1.el54.2 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-31.2 - add security fixes for CVE-2009-3094, CVE-2009-3095, CVE-2009-3555 534041...
kernel security and bug fix update
2.6.18-128.4.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
dnsmasq security update
2.45-1.el5.1 - update to new upstream version - fixes for CVE-2008-1447/CERT VU800113 - Resolves: rhbz454869...
Moderate: php security update
4.3.2-43.ent - improve fix for CVE-2007-3996 278361 4.3.2-42.ent - add security fixes for CVE-2007-2509, CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658 278361...
Critical: thunderbird security update
1.5.0.12-0.1.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-0.1.el4 - Update to 1.5.0.12...
Unbreakable Enterprise kernel security update
5.15.0-308.179.6.2 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920681 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920681 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920681 - selftest/x86/bugs: Add selftests f...
kernel security update
5.14.0-503.40.15.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
ghostscript security update
9.27-16 - RHEL-18396 CVE-2023-46751 ghostscript: dangling pointer in gdevprnopenprinterseekable - RHEL-67046 CVE-2024-46951 ghostscript: Arbitrary Code Execution in Artifex Ghostscript Pattern Color Space - RHEL-15067 CVE-2020-27792 ghostscript: heap buffer over write vulnerability in GhostScript...
virt:kvm_utils2 security update
hivex libguestfs libguestfs-winsupport 8.6-1 - Rebase to ntfs-3g 2021.8.22 - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254 resolves: rhbz2004490...
ruby security update
ruby 2.5.9-112 - Fix ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755. CVE-2023-36617 Resolves: RHEL-5614 - Fix Buffer overread vulnerability in StringIO. CVE-2024-27280 Resolves: RHEL-34125 - Fix RCE vulnerability with .rdocoptions in RDoc. CVE-2024-27281 Resolves: RHEL-34117 -...
kernel security update
5.14.0-362.13.1.el93.OL9 - x86/retpoline: Document some thunk handling aspects Borislav Petkov CVE-2023-20569 - objtool: Fix return thunk patching in retpolines Josh Poimboeuf CVE-2023-20569 - x86/srso: Remove unnecessary semicolon Yang Li CVE-2023-20569 - x86/calldepth: Rename x86returnskl to...
python3.11-pip security update
22.3.1-4 - Use tarfile.datafilter for extracting CVE-2007-4559, PEP-721, PEP-706 Resolves: RHBZ2218249 22.3.1-3 - Fix changelog to contain Fedora contributors Resolves: RHEL-232...