9184 matches found
ntp security update
4.2.6p5-2 - don't generate weak control key for resolver CVE-2014-9293 - don't generate weak MD5 keys in ntp-keygen CVE-2014-9294 - fix buffer overflows via specially-crafted packets CVE-2014-9295 - don't mobilize passive association when authentication fails CVE-2014-9296...
kernel security and bug fix update
2.6.32-504.1.3 - Revert: net revert 'bridge: Set vlanfeatures to allow offloads on vlans' Vlad Yasevich 1144442 1121991 2.6.32-504.1.2 - x86 kvm: fix PIT timer race condition mguzik 1149592 1149593 CVE-2014-3611 - x86 kvm: vmx: handle invept and invvpid vm exits gracefull mguzik 1144826 1144837...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.65-2.5.3.1.0.1.el70 - Update DISTRONAME in specfile 1:1.7.0.65-2.5.3.1 - Bump to 2.5.3 for latest security fixes. - Remove obsolete patches. - Add hsbootstrap option to pre-build HotSpot when required. - Resolves: rhbz1148893...
wireshark security update
1.8.10-7.0.1.el6 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-7 - security patches - Resolves: CVE-2013-6337 1.8.10-6 - security patches - Resolves: CVE-2014-2281 CVE-2014-2283 CVE-2014-2299 1.8.10-5 - security patches - Resolves: CVE-2013-6336 CVE-2013-6338...
Unbreakable Enterprise kernel Security update
2.6.39-400.24.1 - perf: Treat attr.config as u64 in perfsweventinit Tommi Rantala Orabug: 16808734 CVE-2013-2094...
java-1.6.0-openjdk security update
1:1.6.0.0-1.61.1.11.11 - added and applied temporally patch10 fixToFontSecurityFix.patch. - fixing regression in fonts introduced by one security patch. - Resolves: rhbz950386 1:1.6.0.0-1.60.1.11.11 - added and applied temporally one more patch to xalan/xerces privileges - patch9...
tomcat6 security update
0:6.0.24-52 - Related: rhbz 882010 rhbz 883692 rhbz 883705 - Javadoc generation did not work. Using targetrhel-6.4.Z-noarch-candidate - to avoid building on ppc64, ppc, and x390x. 0:6.0.24-50 - Resolves: rhbz 882010 CVE-2012-3439 CVE-2012-5885 CVE-2012-5886 CVE-2012-5887 - three DIGEST...
openssl security update
1.0.0-27.2 - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 - DoS in OCSP signatures checking 908052 - enable compression only if explicitly asked for or OPENSSLDEFAULTZLIB environment variable is set fixes CVE-2012-4929 857051 - use securegetenv everywhere inste...
libvirt security, bug fix, and enhancement update
libvirt-0.10.2-18.0.1.el6 - Replace docs/et.png in tarball with blank image 0.10.2-18 - rpc: Fix crash on error paths of message dispatching CVE-2013-0170 - spec: Disable libssh2 support rhbz513363 0.10.2-17 - storage: Fix lvcreate parameter for backingStore. rhbz896398 - qemu: Don't return succe...
kernel security and bug fix update
2.6.18-308.20.1.el5 - Revert: x86 mm: randomize SHLIBBASE Dave Anderson 804953 804954 CVE-2012-1568 2.6.18-308.19.1.el5 - net be2net: Remove code that stops further access to BE NIC based on UE bits Alexander Gordeev 867896 862811 - net netpoll: fix an incorrect check for NULL pointer Alexander...
kernel security and bug fix update
2.6.32-279.14.1.el6 - usb usbhid: Fix use-after-free in USBHID James Paradis 864827 857518 - usb Add kernel parameter to force iowatchdog for Intel EHCI HCD James Paradis 865713 846024 - block Fix hanging kernel threads in blkexecuterq James Paradis 865308 855984 - mm hugetlb: do not use...
1
kernel 2.6.18-308.16.1.0.1.el5 - kernel Initialize the local uninitialized variable stats. orabug 14051367 - fs JBD:make jbd support 512B blocks correctly for ocfs2. orabug 13477763 - x86 fix fpu context corrupt when preempt in signal context orabug 14038272 - net bonding: fix carrier detect when...
kernel security and bug fix update
2.6.32-279.5.1.el6 - net 8021q/vlan: filter device events on bonds Neil Horman 842429 841983 2.6.32-279.4.1.el6 - fs proc: stats: Use archidletime for idle and iowait times if available Steve Best 841579 841149 - drm i915: fix integer overflow in i915gemexecbuffer2 Jacob Tanenbaum 824553 824555...
thunderbird security update
10.0.6-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.6-1 - Update to 10.0.6 ESR...
kernel security and bug fix update
2.6.18-308.8.1.el5 - net sock: validate datalen before allocating skb in sockallocsendpskb Jason Wang 816290 816106 CVE-2012-2136 - net tg3: Fix VLAN tagging assignments John Feeney 817691 797011 - net ixgbe: do not stop stripping VLAN tags in promiscuous mode Andy Gospodarek 809791 804800 - s390...
java-1.6.0-openjdk security update
1.6.0.0-1.25.1.10.6.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.25.1.10.6 - Updated to IcedTea6 1.10.6 - Resolves: rhbz787142 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687:...
libpng security update
2:1.2.46-2 - Fix CVE-2011-3026 Resolves: 791007...
libxml2 security update
2.6.26-2.1.12.0.1.el57.2 - Add libxml2-enterprise.patch - Replaced docs/redhat.gif in tarball with updated image 2.6.26-2.1.12.el57.2 - Fix the semantic of XPath axis for namespace/attribute nodes CVE-2010-4008 - Fix an off by one error in encoding CVE-2011-0216 - Fix some potential problems on...
kernel security and bug fix update
2.6.32-220.2.1.el6 - dm fixing test for NULL pointer testing Paolo Bonzini 752379 752380 CVE-2011-4127 2.6.32-220.1.1.el6 - dm do not forward ioctls from logical volumes to the underlying device Paolo Bonzini 752379 752380 CVE-2011-4127 - block fail SCSI passthrough ioctls on partition devices...
kernel security, bug fix, and enhancement update
2.6.32-71.18.1.el6 - netdrv ixgbe: make sure FCoE DDP user buffers are really released by the HW Frantisek Hrbata 674002 617193 - netdrv ixgbe: invalidate FCoE DDP context when no error status is available Frantisek Hrbata 674002 617193 - netdrv ixgbe: avoid doing FCoE DDP when adapter is DOWN or...
php53 security update
5.3.3-1.1 - add security fixes for CVE-2010-3710, CVE-2010-4156, CVE-2010-4645 670463...
kernel security and bug fix update
2.6.9-89.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...
nspr and nss security, bug fix, and enhancement update
nspr: 4.7.4-1.el53.1 - create z-stream version 4.7.4-1 - Update to NSPR 4.7.4 nss: 3.12.3.99.3-1.0.1.el53.2 - Update clean.gif in the nss-3.12.3.99.3-stripped.tar.bz2 tarball 3.12.3.99.3-1.el53.2 - adjust ssl cipher count constant bug 505650 3.12.3.99.3-1.el53.1 - create z-stream version...
kdelibs security update
3.5.4-22.0.1.el53 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm in tarball 3.5.4-22 - Resolves: 505621, CVE-2009-1687, integer overflow in KJS JavaScript garbage collector CVE-2009-1698, KHTML CSS parser - incorrect handling CSS style attribute content...
java-1.6.0-openjdk security update
1:1.6.0.0-0.30.b09.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-0.30.b09 - Updated java-1.6.0-openjdk-lcms.patch 1:1.6.0.0-0.29.b09 - Updated java-1.6.0-openjdk-lcms.patch 1:1.6.0.0-0.29.b09 - Added java-1.6.0-openjdk-messageutils.patch - Updated release. 1:1.6.0.0-0.28.b09 - Updated...
firefox security update
devhelp: 0.12-18 - Rebuild against xulrunner firefox: 3.0.1-1.0.1.el5 - Replaced the RedHat prefs and bookmarks with Oracle prefs and bookmarks - Add patch oracle-firefox-branding.patch - Update firstrun URL 3.0.1-1 - Update to Firefox 3.0.1 xulrunner: 1.9.0.1-1.0.1.el5 - Added...
Moderate: php security update
5.1.6-15.el5 - improve fix for CVE-2007-3997 278411 5.1.6-14.el5 - fix backport for CVE-2007-3996 278411 5.1.6-13.el5 - add security fixes for CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658, CVE-2007-4670 278411...
Critical: seamonkey security update
devhelp-0.10-0.8.el4: 0.10-0.8.el4 - Rebuild against newer gecko seamonkey-1.0.9-2.el4.0.1: 1.0.9-2.el4.0.1 - Add mozilla-oracle-default-bookmarks.html, mozilla-oracle-default-prefs.js, - and mozilla-home-page.patch for errata build 1.0.9-2.el4 - Final bits, plus an s390x build fix 1.0.9-0.1.el4 ...
java-1.8.0-openjdk security update
1:1.8.0.442.b06-1.0.3 - Fixed CVE-2025-21587, CVE-2025-30691 and CVE-2025-30698 Orabug: 37840723...
Unbreakable Enterprise kernel security update
5.4.17-2136.342.5 - ima: Fix use-after-free on a dentry's dname.name Stefan Berger Orabug: 36835558 CVE-2024-39494 5.4.17-2136.342.4 - sched: schcake: add bounds checks to host bulk flow fairness counts Toke Hoiland-Jorgensen - udf: Fix use of checkaddoverflow with mixed type arguments Ben...
virt:kvm_utils1 security update
hivex 1.3.18-21 - Bounds check for block exceeding page length CVE-2021-3504 resolves: rhbz1950501 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.18 - Resolves: bz1810193 Upgrade components in virt:rhel module:stream for RHEL-8.3 release 1.3.15...
Unbreakable Enterprise kernel security update
4.1.12-124.89.4 - isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284 - tracing: Restructure traceclockglobal to never block Steven Rostedt VMware Orabug: 36940388 CVE-2021-46939 - udf: Fix NULL pointer dereference in udfsymlink function Arturo Giusti Orabug:...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 1.7.0 release for OL7 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which includes t...
mod_http2 security update
1.15.19-5.1 - Resolves: RHEL-29826 - modhttp2: httpd: CONTINUATION frames DoS CVE-2024-27316...
kernel security update
4.18.0-513.18.0.19.OL8 - drivers: net: slip: fix NPD bug in sltxtimeout CVE-2022-41858 - nfp: fix use-after-free in areacacheget CVE-2022-3545 - HID: check empty reportlist in hidvalidatevalues CVE-2023-1073 - Fix double fget in vhostnetsetbackend CVE-2023-1838 - can: afcan: fix NULL pointer...
firefox security update
115.6.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 115.6.0-1 - Update to 115.6.0 build1...
java-21-openjdk security and bug fix update
1:21.0.1.0.12-2.0.1 - Add Oracle vendor bug URL 1:21.0.1.0.12-2 - Switch to using portable binaries built on RHEL 7 - Sync the copy of the portable specfile with the RHEL 7 version - Related: RHEL-12997 1:21.0.1.0.12-1 - Update to jdk-21.0.1.0+12 GA - Update release notes to 21.0.1.0+12 - Sync th...
microcode_ctl security update
4:20230214-2.0.3 - update 06-55-04 to 0x2007006 - update 06-55-06 to 0x4003604 - update 06-55-07 to 0x5003604 - update 06-6a-06 to 0xd0003a5 - Resolves for Oracle hardware: CVE-2022-40982 Orabug: 35692741...
libxml2 security update
2.9.7-16.1 - Fix CVE-2023-28484 2185994 - Fix CVE-2023-29469 2185984...
python-pip security update
9.0.3-8.0.3 - CVE-2021-3572 Orabug: 35240686...
git-lfs security and bug fix update
3.2.0-1 - Update to 3.2.0 - Resolves: 2139383 2.13.3-4 - Rebuilt for IMA sigs, glibc 2.34, aarch64 flags Related: rhbz1991688 2.13.3-3 - Rebuilt for RHEL 9 BETA for openssl 3.0 Related: rhbz1971065 2.13.3-2 - Fixed name of source tarball - Fixed date in the latest changelog entry - Related: 19525...
Unbreakable Enterprise kernel security update
4.1.12-124.73.2 - netfilter: nftables: fix null deref due to zeroed list head Florian Westphal Orabug: 35181628 CVE-2023-1095 - sctp: fail if no bound addresses can be used for a given scope Marcelo Ricardo Leitner Orabug: 35181461 CVE-2023-1074 - HID: check empty reportlist in hidvalidatevalues...
openssl security update
3.0.1-47.0.1 - Replace upstream references Orabug: 34340177 1:3.0.1-47 - Fixed X.509 Name Constraints Read Buffer Overflow Resolves: CVE-2022-4203 - Fixed Timing Oracle in RSA Decryption Resolves: CVE-2022-4304 - Fixed Double free after calling PEMreadbioex Resolves: CVE-2022-4450 - Fixed...
libtiff security update
4.4.0-5 - Bump release - Resolves: CVE-2022-2953 4.4.0-4 - Resolves: CVE-2022-2519 CVE-2022-2520 CVE-2022-2521 4.4.0-3 - Fix CVE-2022-2056 CVE-2022-2057 CVE-2022-2058 - Resolves: 2106768...
Unbreakable Enterprise kernel security update
4.1.12-124.69.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883048 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883048 CVE-2022-4378...
bind9.16 security update
32:9.16.23-0.7.1 - Fix possible serve-stale related crash CVE-2022-3080 - Fix memory leak in ECDSA verify processing CVE-2022-38177 - Fix memory leak in EdDSA verify processing CVE-2022-38178...
kernel security update
2.6.32-754.35.1.0.6.OL6 :digitoepollctl: clean the failure exits up a bit Marc Zyngier CVE-2020-0466 Orabug: 34086960 - epoll: Keep a reference on files added to the check list Al Viro CVE-2020-0466 Orabug: 34086960 - fix regression in 'epoll: Keep a reference on files added to the check list Al...
cri-o security update
1.22.5-1 - Addresses CVE-2022-1708...
qemu security update
15:4.2.1-18.el7 - block: introduce maxhwiov for use in scsi-generic Paolo Bonzini Orabug: 33785156 - file-posix: try BLKSECTGET on block devices too, do not round to power of 2 Paolo Bonzini Orabug: 33785156 - block: add maxhwtransfer to BlockLimits Paolo Bonzini Orabug: 33785156 - block-backend:...
java-17-openjdk security, bug fix, and enhancement update
1:17.0.4.0.8-0.2.ea - Revert the following changes until copy-java-configs has adapted to relative symlinks: - Move cacerts replacement to install section and retain original of this and tzdb.dat - Run tests on the installed image, rather than the build image - Introduce variables to refer to the...