9184 matches found
bind security, bug fix, and enhancement update
32:9.11.36-2 - Reduce memory used per-view on machine with few processors 2030239 32:9.11.36-2 - Rebuilt on a new side-tag 2013993 32:9.11.36-1 - Update to 9.11.36 32:9.11.26-9 - Correct tsig system test 32:9.11.26-8 - Propagate ephemeral port ranges to chroot 1950714 32:9.11.26-7 - Do not reques...
vim security update
8.0.1763-16.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-16.12 - CVE-2022-0361 vim: Heap-based Buffer Overflow in GitHub repository 2:8.0.1763-16.11 - CVE-2022-0413 vim: use after free in src/excmds.c - Fix specfile problems - Resolves: rhbz2048525 2:8.0.1763-16.10 - CVE-2022-04...
ruby:2.5 security update
ruby 2.5.9-109.0.1 - Rebuild with a dependency containing fix for Orabug: 33921593 2.5.9-109 - Properly fix command injection vulnerability in Rdoc. Related: CVE-2021-31799 2.5.9-108 - Fix command injection vulnerability in RDoc. Resolves: CVE-2021-31799 - Fix StartTLS stripping vulnerability in...
openssl security update
1.0.2k-23.0.1 - Change Epoch from 1 to 10 - Fix DH self-test to add shared secret comparison Orabug: 32467026 - Add DH support changes for SP 800-56A rev3 requirements Orabug: 32467059 - Add TLS KDF self-test Orabug: 32467193 - Add EC keys pairwise consistency test Orabug: 32467059 1.0.2k-23 -...
resource-agents security update
4.1.1-98 - storage-mon: new resource agent Resolves: rhbz1509319 4.1.1-97 - podman: fix possible race during container creation Resolves: rhbz1972743 4.1.1-96 - LVM-activate: fix drop-in check to avoid re-creating drop-in Resolves: rhbz1972035 4.1.1-95 - lvmlockd: remove cmirrord support, as...
gcc-toolset-10-binutils security update
2.35-8.6 - Add ability to control the display of unicode characters. 2009176...
container-tools:2.0 security update
runc 1.0.0-65.rc10 - fix CVE-2021-30465 - Resolves: 1955650...
thunderbird security update
78.9.0-3.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.9.0-3 - Update to 78.9.0 build2, updated langpacks 78.9.0-2 - Update to 78.9.0 build2 78.9.0-1 - Update to 78.9.0 build1...
python38:3.8 security update
python38 3.8.3-3.0.1 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177...
thunderbird security update
78.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.6.0-1 - Update to 78.6.0...
libvirt security and bug fix update
4.5.0-36 - virDevMapperGetTargetsImpl: Be tolerant to kernels without DM support rhbz1823976 - virDevMapperGetTargetsImpl: quit early if device is not a devmapper target rhbz1823976 4.5.0-35 - qemu: dont take agent and monitor job for shutdown CVE-2019-20485 - qemu: dont hold a monitor and agent...
firefox security update
78.2.0-2.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 78.2.0-2 - Update to 78.2.0 build1...
Unbreakable Enterprise kernel security update
4.14.35-1902.304.6.3 - Revert 'uek-rpm: Move grub boot menu update to posttrans stage.' Somasundaram Krishnasamy Orabug: 31358100 4.14.35-1902.304.6.2 - certs: Remove Oracle cert compiled into the kernel Eric Snowberg Orabug: 31668611 - efi: Restrict efivarssdtload when the kernel is locked down...
grub2 security update
2.02-81.0.3 - Fix CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707 Orabug: 31225072 - Update signing certificate for efi binaries...
java-11-openjdk security update
1:11.0.8.10-0.0.1 - link atomic for ix86 build 1:11.0.8.10-0 - Update to shenandoah-jdk-11.0.8+10 GA - Switch to GA mode for final release. - Update release notes with last minute fix JDK-8248505. - This tarball is embargoed until 2020-07-14 @ 1pm PT. - Resolves: rhbz1838811 1:11.0.8.9-0.0.ea -...
unbound security update
1.6.6-4 - Fix amplifying an incoming query into a large number of queries directed to a target - Resolves: rhbz1839172 CVE-2020-12662, rhbz1840258 CVE-2020-12663...
Unbreakable Enterprise kernel security update
4.1.12-124.36.1 - iscsi-target: graceful disconnect on invalid mapping to iovec Imran Haider Orabug: 30459537 - x86/microcode: Issue update message only once Borislav Petkov Orabug: 30528904 - x86/microcode/intel: Issue the revision updated message only on the BSP Borislav Petkov Orabug: 30528904...
thunderbird security update
68.3.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.3.0-2 - Update to 68.3.0 build2 68.2.0-2 - Added patch for TLS 1.3 support...
thunderbird security update
68.2.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.2.0-1 - Update to 68.2.0 68.1.1-2 - Update to 68.1.1 60.9.0-2 - Update to 60.9.0...
java-1.8.0-openjdk security update
1:1.8.0.232.b09-0 - Update to aarch64-shenandoah-jdk8u232-b09. - Switch to GA mode for final release. - Remove PR1834/RH1022017 which is now handled by JDK-8228825 upstream. - Resolves: rhbz1753423 1:1.8.0.232.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u232-b08. - Resolves: rhbz1753423...
java-1.7.0-openjdk security update
1:1.7.0.211-2.6.17.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.211-2.6.17.1 - Produce debug symbols for libpulse-java.so - Set ITCFLAGS=-g so that debug symbols for the pulse audio - native library are being produced. This is needed to fix - rpmdiff errors of missing .debuginfo in...
ruby security update
2.0.0.648-34 - CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work. Resolves: CVE-2018-16395...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-103.3.8.1 - Bluetooth: Properly check L2CAP config option output buffer length Ben Seri Orabug: 26796363 CVE-2017-1000251...
openssh security update
5.3p1-123 - Fix for CVE-2016-6210: User enumeration via covert timing channel 1357442...
freeradius security update
2.2.6-7 - Resolves: Bug1469115 CVE-2017-10979 freeradius: Out-of-bounds write in radcoalesce - Resolves: Bug1469118 CVE-2017-10978 freeradius: Out-of-bounds read/write due to improper output buffer size check in makesecret - Resolves: Bug1469120 CVE-2017-10980 freeradius: Memory leak in decodetlv...
samba security and bug fix update
3.6.23-41.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-41 - resolves: 1413672 - Auth regression after secret changed 3.6.23-40 - resolves: 1405356 - CVE-2016-2125 CVE-2016-2126 3.6.23-39 - resolves: 1297805 - Fix issues with printer unpublishing...
kernel security update
kernel - 2.6.18-419.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
mariadb security and bug fix update
5.5.52-1 - Rebase to 5.5.52, that also include fix for CVE-2016-6662 Resolves: 1377974 1:5.5.50-2 - Rebuild Related: 1359629...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.6.3 - tcp: make challenge acks less predictable Eric Dumazet Orabug: 24010103 Orabug: 2401010 CVE-2016-5696...
openssl security update
0.9.8e-40.0.2 - CVE-2016-0799 - Fix memory issues in BIOprintf functions - CVE-2016-2105 - Avoid overflow in EVPEncodeUpdate - CVE-2016-2106 - Fix encrypt overflow - CVE-2016-2109 - Harden ASN.1 BIO handling of large amounts of data...
openssl-fips security update
1.0.1t-2.0.1 - update to upstream 1.0.1t - Original 1.0.1 test certificates has expired on May 10, 2016. Updated certificatea were copied from 1.0.2h tree [email protected]...
openssl security update
1.0.1e-48.1 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
openssl security update
1.0.1e-48.1 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
mariadb security and bug fix update
1:5.5.47-1 - Rebase to 5.5.47 Also fixes: CVE-2015-4792 CVE-2015-4802 CVE-2015-4815 CVE-2015-4816 CVE-2015-4819 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4879 CVE-2015-4913 CVE-2015-7744 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597...
curl security, bug fix, and enhancement update
7.19.7-46 - require credentials to match for NTLM re-use CVE-2015-3143 - close Negotiate connections when done CVE-2015-3148 7.19.7-45 - reject CRLFs in URLs passed to proxy CVE-2014-8150 7.19.7-44 - use only full matches for hosts used as IP address in cookies CVE-2014-3613 - fix handling of...
ntp security update
4.2.2p1-18.el5 - don't generate weak control key for resolver CVE-2014-9293 - don't generate weak MD5 keys in ntp-keygen CVE-2014-9294 - fix buffer overflows via specially-crafted packets CVE-2014-9295...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55.1.2.el6uek - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224059 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski Orabug: 20224027 CVE-2014-9090 CVE-2014-9322...
kernel security update
kernel 2.6.18-400.1.1.0.1 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function...
ruby security update
2.0.0.353-22 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Resolves: rhbz1163998 - REXML incomplete fix for CVE-2014-8080 CVE-2014-8090. Resolves: rhbz1163998 2.0.0.353-21 - Fix off-by-one stack-based buffer overflow in the encodes function CVE-2014-4975 Resolves...
bash security update
4.2.45-5.4 - CVE-2014-7169 Resolves: 1146324 4.2.45-5.3 - amend patch to match upstream's Related: 1146324 4.2.45-5.2 - Fix-up the patch Related: 1141647...
kernel security and bug fix update
kernel 2.6.18-371.12.1 - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 - mm writeback: Fix hang when low on memory due to NFS traffic Larry Woodman 1125246 1080194 - net tg3: Fix Read DMA workaround for 5719 A0 Ivan Vecera 1121017 924590...
kernel security update
3.10.0-123.4.4 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.4.4 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.4.3 - x86 ptrace: force IRET path after a ptracestop Oleg Nesterov 1115934 1115935 CVE-2014-4699...
Unbreakable Enterprise kernel security update
3.8.13-26.2.3.el6uek - net: ipv4: current groupinfo should be put after using. Wang, Xiaoming Orabug: 18603523 CVE-2014-2851...
wireshark security update
1.8.10-7.0.1.el6 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-7 - security patches - Resolves: CVE-2013-6337 1.8.10-6 - security patches - Resolves: CVE-2014-2281 CVE-2014-2283 CVE-2014-2299 1.8.10-5 - security patches - Resolves: CVE-2013-6336 CVE-2013-6338...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.33.4uek - kernel/signal.c: stop info leak via the tkill and the tgkill syscalls Emese Revfy Orabug: 17951083 CVE-2013-2141 - ipoutput: do skb ufo init for peeked non ufo skb as well Jiri Pirko Orabug: 17951078 CVE-2013-4470 - KVM: x86: Fix potential divide by 0 in lapic...
kernel security, bug fix, and enhancement update
2.6.32-431.1.2 - x86 kvm: fix cross page vapicaddr access Paolo Bonzini 1032214 1032215 CVE-2013-6368 - x86 kvm: fix division by zero in apicgettmcct Paolo Bonzini 1032212 1032213 CVE-2013-6367 2.6.32-431.1.1 - netdrv mlx4en: Check device state when setting coalescing Amir Vadai 1032395 975908 -...
xorg-x11-server security and bug fix update
1.13.0-23 - Fix root window damage reports when Xinerama is active 919165 1.13.0-22 - Fix Xephyr crashes in 8 and 16 bit mode 1018405 1.13.0-21 - Fix Damage reports when Xinerama is active 919165 1.13.0-20 - Fix broken Xorg -configure 1016854 - CVE-2013-1940: Fix xf86FlushInput to drain evdev...
kernel security and bug fix update
2.6.32-358.23.2 - md dm-snapshot: fix data corruption Mikulas Patocka 1004252 1004233 CVE-2013-4299 2.6.32-358.23.1 - md raid1, raid10: use freezearray in place of raisebarrier in various places Jes Sorensen 1003765 997845 - scsi megaraidsas: megaraidsas driver init fails in kdump kernel Nikola...
glibc security and bug fix update
2.5-107.4 - Add missing patch to avoid use after free 816647. 2.5-107.3 - Fix multibyte character processing crash in regexp CVE-2013-0242, 951130 - Fix getaddrinfo stack overflow resulting in application crash CVE-2013-1914, 951130 2.5-107.2 - Call feraiseexcept only if exceptions are not masked...
kernel security and bug fix update
kernel 2.6.18-348.4.1 - virt xen-netback: backports Andrew Jones 910884 910885 CVE-2013-0216 - virt xen-netback: netifschedulable should take a netif Andrew Jones 910884 910885 CVE-2013-0216 - virt pciback: rate limit error mess from pcibackenablemsi Igor Mammedov 910876 910877 CVE-2013-0231 - ne...