8998 matches found
java-11-openjdk security update
1:11.0.4.11-0 - Update to shenandoah-jdk-11.0.4+11 GA - Switch to GA mode for final release. - Resolves: rhbz1724452 1:11.0.4.10-0.0.ea - Update to shenandoah-jdk-11.0.4+10 EA - Resolves: rhbz1724452 1:11.0.4.9-0.0.ea - Update to shenandoah-jdk-11.0.4+9 EA - Resolves: rhbz1724452 1:11.0.4.8-0.0.e...
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Adjust...
mod_auth_mellon security and bug fix update
0.14.0-2.4 - Actually apply the patch in the previous build - Resolves: rhbz1697488 - CVE-2019-3877 modauthmellon: open redirect in logout url when using URLs with backslashes 0.14.0-2.3 - Resolves: rhbz1697488 - CVE-2019-3877 modauthmellon: open redirect in logout url when using URLs with...
freerdp security update
1.0.2-15.1 - Fix CVE-2018-8786 1684152 - Fix CVE-2018-8787 1684156 - Fix CVE-2018-8788 1684163...
ghostscript security and bug fix update
9.07-31.el76.9 - Related: 1667442 - CVE-2019-6116 - added missing parts of patch 9.07-31.el76.8 - Resolves: 1667442 - CVE-2019-6116 ghostscript: subroutines within pseudo-operators must themselves be pseudo-operators 9.07-31.el76.7 - Resolves: 1665919 pdf2ps reports an error when reading from std...
GNOME security, bug fix, and enhancement update
PackageKit 1.1.10-1.0.1 - remove PackageKit-0.3.8-Fedora-Vendor.conf.patch 1.1.10-1 - New upstream release - Resolves: 1576494 accountsservice 0.6.50-2 - Fix user switching Resolves: 1597350 0.6.50-1 - Update to 0.6.50 Related: 1576538 Related: 1596735 Related: 1602918 0.6.49-1 - Update to 0.6.49...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578550...
ruby security update
2.0.0.648-33 - Fix always passing WEBrick test. 2.0.0.648-32 - Add Psych.safeload ruby-2.1.0-there-should-be-only-one-exception.patch ruby-2.1.0-Adding-Psych.safeload.patch Related: CVE-2017-0903 - Disable Tokyo TZ tests broken by recen tzdata update. ruby-2.5.0-Disable-Tokyo-TZ-tests.patch...
microcode_ctl security update
1:1.17-25.4.0.1 - Enable early microcode load to allow updating Broadwell model 79 - Make sure 'modprobe microcode' is not executed on Broadwell model 79 - Run dracut upon microcode update - Add updated Intel 20180108 microcode for CPUIDs: CVE-2017-5715 306c3 06-3c-03 rev 0x23, Haswell; 306d4...
microcode_ctl security update
2.1-22.2 - Update Intel CPU microde for 06-3f-02, 06-4f-01, and 06-55-04 - Resolves: 1527358 2.1-22.1 - Update to upstream 2.1-13. Intel CPU microcode update to 20170707. - Resolves: 1474844...
wpa_supplicant security update
1:2.6-5.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088...
kernel security update
3.10.0-693.2.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.2.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil...
samba3x security update
3.6.23-13.0.2 - Fix CVE-2017-7494...
kvm security update
83-276.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-275.el511 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359723 - Resolves: bz1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via...
openssl security update
0.9.8e-40.0.2 - CVE-2016-0799 - Fix memory issues in BIOprintf functions - CVE-2016-2105 - Avoid overflow in EVPEncodeUpdate - CVE-2016-2106 - Fix encrypt overflow - CVE-2016-2109 - Harden ASN.1 BIO handling of large amounts of data...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.7.1 - megaraidsas : Update threshold based reply post host index register [email protected] Orabug: 23562756 - xen/events: Don't move disabled irqs Ross Lagerwall Orabug: 23055234 - xen/events: Mask a moving irq Boris Ostrovsky Orabug: 23055234 - xen/pciback: Save t...
openssl security update
1.0.1e-48.1 - fix CVE-2016-2105 - possible overflow in base64 encoding - fix CVE-2016-2106 - possible overflow in EVPEncryptUpdate - fix CVE-2016-2107 - padding oracle in stitched AES-NI CBC-MAC - fix CVE-2016-2108 - memory corruption in ASN.1 encoder - fix CVE-2016-2109 - possible DoS when readi...
mariadb security and bug fix update
1:5.5.47-1 - Rebase to 5.5.47 Also fixes: CVE-2015-4792 CVE-2015-4802 CVE-2015-4815 CVE-2015-4816 CVE-2015-4819 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4879 CVE-2015-4913 CVE-2015-7744 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597...
java-1.7.0-openjdk security update
1.7.0.95-2.6.4.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.95-2.6.4.0 - Bump to 2.6.4 and u95b00. - Backport tarball creation script from OpenJDK 8 RPMs and update fsg.sh to work with it. - Drop 8072932or8074489 patch as applied upstream in u91b01. - Add MD5 checksums for last two version of th...
kernel security update
kernel 2.6.18-408 - net udp: fix behavior of wrong checksums Denys Vlasenko 1240757 CVE-2015-5364 CVE-2015-5366 - net ipv6/udp: Use correct var to determine non-blocking cond Denys Vlasenko 1240757 CVE-2015-5364 CVE-2015-5366 - net SNMP: Restore Udp6InErrors incrementation Denys Vlasenko 1240757...
curl security, bug fix, and enhancement update
7.19.7-46 - require credentials to match for NTLM re-use CVE-2015-3143 - close Negotiate connections when done CVE-2015-3148 7.19.7-45 - reject CRLFs in URLs passed to proxy CVE-2014-8150 7.19.7-44 - use only full matches for hosts used as IP address in cookies CVE-2014-3613 - fix handling of...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.1.2 - IB/core: Prevent integer overflow in ibumemget address arithmetic Shachar Raindel Orabug: 20799875 CVE-2014-8159 CVE-2014-8159 3.8.13-68.1.1 - xen-pciback: limit guest control of command register Jan Beulich Orabug: 20697017 CVE-2015-2150 CVE-2015-2150 - net: sctp: fix...
qemu-kvm security, bug fix, and enhancement update
1.5.3-86.el7 - kvm-vfio-pci-Fix-interrupt-disabling.patch bz1180942 - kvm-cirrus-fix-blit-region-check.patch bz1169456 - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrusbltbuf.patch bz1169456 - Resolves: bz1169456 CVE-2014-8106 qemu-kvm: qemu: cirrus: insufficient blit region checks rhel-7.1 -...
samba security update
3.6.23-14.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-14 - related: 1191338 - Update patchset for CVE-2015-0240. 3.6.23-13 - resolves: 1191338 - CVE-2015-0240: RCE in netlogon...
ntp security update
4.2.2p1-18.el5 - don't generate weak control key for resolver CVE-2014-9293 - don't generate weak MD5 keys in ntp-keygen CVE-2014-9294 - fix buffer overflows via specially-crafted packets CVE-2014-9295...
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-400.36.9uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817787 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817749 CVE-2014-4653 CVE-2014-4654 CVE-2014-465...
bash security update
4.2.45-5.4 - CVE-2014-7169 Resolves: 1146324 4.2.45-5.3 - amend patch to match upstream's Related: 1146324 4.2.45-5.2 - Fix-up the patch Related: 1141647...
kernel security update
3.10.0-123.4.4 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.4.4 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.4.3 - x86 ptrace: force IRET path after a ptracestop Oleg Nesterov 1115934 1115935 CVE-2014-4699...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.1-6.1.13.4 - moved to icedteaver 1.13.4 - moved to openjdkver b32 and openjdkdate 15jul2014 - added upstreamed patch patch9 rh1115580-unsyncHashMap.patch - Resolves: rhbz1115580 - Resolves: rhbz1115867...
java-1.7.0-openjdk security update
1.7.0.55-2.4.7.2.0.1.el70 - Update DISTRONAME in specfile 1.7.0.55-2.4.7.2 - Remove NSS patches. Issues with PKCS11 provider mean it shouldn't be enabled. - Always setup nss.cfg and depend on nss-devel at build-time to do so. - This allows users who wish to use PKCS11+NSS to just add it to...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.34.4uek - netfilter: nfconntrackdccp: fix skbheaderpointer API usages Daniel Borkmann Orabug: 18462076 CVE-2014-2523 - net: sctp: fix sctpsfdo51Dce to verify if we/peer is AUTH capable Daniel Borkmann Orabug: 18461091 CVE-2014-0101...
xorg-x11-server security and bug fix update
1.13.0-23 - Fix root window damage reports when Xinerama is active 919165 1.13.0-22 - Fix Xephyr crashes in 8 and 16 bit mode 1018405 1.13.0-21 - Fix Damage reports when Xinerama is active 919165 1.13.0-20 - Fix broken Xorg -configure 1016854 - CVE-2013-1940: Fix xf86FlushInput to drain evdev...
glibc security and bug fix update
2.5-107.4 - Add missing patch to avoid use after free 816647. 2.5-107.3 - Fix multibyte character processing crash in regexp CVE-2013-0242, 951130 - Fix getaddrinfo stack overflow resulting in application crash CVE-2013-1914, 951130 2.5-107.2 - Call feraiseexcept only if exceptions are not masked...
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-300.39.5uek - x86/msr: Add capabilities check Alan Cox Orabug: 16481233 CVE-2013-0268 ofa-2.6.32-300.39.5.el6uek mlnxen-2.6.32-300.39.5.el6uek Mon Dec 12 2011 Guru Anbalagane - version 1.5.7-0.1 Tue Nov 01 2011 Joe Jin - 1.5.7 for UEK kernel. Mon Sep 08 2008 Vladimir Sokolovsky ...
libvirt security, bug fix, and enhancement update
libvirt-0.10.2-18.0.1.el6 - Replace docs/et.png in tarball with blank image 0.10.2-18 - rpc: Fix crash on error paths of message dispatching CVE-2013-0170 - spec: Disable libssh2 support rhbz513363 0.10.2-17 - storage: Fix lvcreate parameter for backingStore. rhbz896398 - qemu: Don't return succe...
kernel security update
2.6.32-358.0.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871...
kernel security and bug fix update
2.6.18-308.20.1.el5 - Revert: x86 mm: randomize SHLIBBASE Dave Anderson 804953 804954 CVE-2012-1568 2.6.18-308.19.1.el5 - net be2net: Remove code that stops further access to BE NIC based on UE bits Alexander Gordeev 867896 862811 - net netpoll: fix an incorrect check for NULL pointer Alexander...
java-1.6.0-openjdk security update
1:1.6.0.0-1.48.1.11.3 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828751 1:1.6.0.0-1.47.1.11.3 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages...
kernel security update
kernel: 2.6.18-308.8.2.el5 - xen x8664: check address on trap handlers or guest callbacks Paolo Bonzini 813430 813431 CVE-2012-0217 - xen x8664: Do not execute sysret with a non-canonical return address Paolo Bonzini 813430 813431 CVE-2012-0217 - xen x86: prevent hv boot on AMD CPUs with Erratum...
1
2.6.18-308.8.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhon...
openssl security and bug fix update
1.0.0-20.5 - fix for CVE-2012-2333 - improper checking for record length in DTLS 820686 - properly initialize tkeylen in the CVE-2012-0884 fix...
firefox security update
firefox: 10.0.4-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR xulrunner: 10.0.4-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR 10.0.3-3 - Fixe...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.11.1.el6uek - fs xfs: Fix possible memory corruption in xfsreadlink Carlos Maiolino CVE-2011-4077 - scsi increase qla2xxx firmware ready time-out Joe Jin - scsi qla2xxx: Module parameter to control use of async or sync port login Joe Jin - net tg3: Fix single-vector MSI-X code Joe Jin ...
openssl security update
1.0.0-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4577 - possible DoS through malformed RFC 3779 data 771778 - fix for CVE-2011-4619 - SGC...
Unbreakable Enterprise kernel security update
2.6.32-200.23.1.el6uek - net: Remove atmclip.h to prevent break kabi check. - KConfig: add CONFIGUEK5=n to ol6/config-generic 2.6.32-200.22.1.el6uek - ipv6: make fragment identifications less predictable Joe Jin CVE-2011-2699 - vlan: fix panic when handling priority tagged frames Joe Jin...
kernel security, bug fix, and enhancement update
kernel: 2.6.18-274.7.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boo...
kernel security, bug fix, and enhancement update
2.6.32-71.18.1.el6 - netdrv ixgbe: make sure FCoE DDP user buffers are really released by the HW Frantisek Hrbata 674002 617193 - netdrv ixgbe: invalidate FCoE DDP context when no error status is available Frantisek Hrbata 674002 617193 - netdrv ixgbe: avoid doing FCoE DDP when adapter is DOWN or...
bind security update
20:9.2.4-30.6 - fix CVE-2010-3613...
kernel security and bug fix update
2.6.18-194.26.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security update
2.6.9-89.0.9.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race avoidanc...