8998 matches found
nss security update
3.19.1-4 - Actually apply the fix for CVE-2016-1950 from NSS 3.19.2.3 ... 3.19.1-3 - Include the fix for CVE-2016-1950 from NSS 3.19.2.3...
glibc security update
2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...
kernel security and bug fix update
3.10.0-229.14.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.14.1 - s390 zcrypt: Fixed reset and interrupt handling of AP queues Hendrik Brueckner 1248381 1238230 3.10.0-229.13.1 - dma ioat: fix tasklet tear down Herton R. Krzesinski 1251523 1210093 - drm radeon: Fix VGA switcheroo...
Unbreakable Enterprise kernel security update
2.6.39-400.250.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444791 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444688 CVE-2015-3636...
java-1.6.0-openjdk security update
1:1.6.0.35-1.13.7.1 - Repackaged source files - Resolves: rhbz1209067 1:1.6.0.35-1.13.7.0 - Update to IcedTea 1.13.7 - Regenerate add-final-location-rpaths patch so as to be less disruptive. - Resolves: rhbz1209067...
glibc security, bug fix, and enhancement update
2.12-1.149 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, 2.12-1.148 - Switch gettimeofday from INTUSE to libchiddenproto 1099025. 2.12-1.147 - Fix stack overflow due to large AFINET6 requests...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.65-2.5.3.1.0.1.el70 - Update DISTRONAME in specfile 1:1.7.0.65-2.5.3.1 - Bump to 2.5.3 for latest security fixes. - Remove obsolete patches. - Add hsbootstrap option to pre-build HotSpot when required. - Resolves: rhbz1148893...
kernel security and bug fix update
kernel 2.6.18-371.12.1 - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 - mm writeback: Fix hang when low on memory due to NFS traffic Larry Woodman 1125246 1080194 - net tg3: Fix Read DMA workaround for 5719 A0 Ivan Vecera 1121017 924590...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.3.2.el7uek - l2tp: fix an unprivileged user to kernel privilege escalation Sasha Levin Orabug: 19229497 CVE-2014-4943 CVE-2014-4943 - ptrace,x86: force IRET path after a ptracestop Tejun Heo Orabug: 19230689 CVE-2014-4699 - net: flowdissector: fail on evil iph-ihl Jason Wang...
kernel security, bug fix, and enhancement update
3.10.0-123.4.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.4.2 - fs aio: fix plug memory disclosure and fix reqsactive accounting backport Jeff Moyer 1094604 1094605 CVE-2014-0206 - fs aio: plug memory disclosure and fix reqsactive accounting Mateusz Guzik 1094604 1094605 CVE-2014-0206...
Unbreakable Enterprise kernel security update
3.8.13-26.2.3.el6uek - net: ipv4: current groupinfo should be put after using. Wang, Xiaoming Orabug: 18603523 CVE-2014-2851...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.33.2 - dm snapshot: fix data corruption Mikulas Patocka Orabug: 17618900 CVE-2013-4299 - ipv6: call udppushpendingframes when uncorking a socket with AFINET pending data Hannes Frederic Sowa Orabug: 17618897 CVE-2013-4162...
tomcat5 security update
0:5.5.23-0jpp.38 - Resolves: CVE-2012-3439 rhbz882008 three DIGEST authentication - implementation - Resolves: CVE-2012-3546, rhbz913034 Bypass of security constraints. - Remove unneeded handling of FORM authentication in RealmBase...
java-1.6.0-openjdk security update
1:1.6.0.0-1.33.1.11.6.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.33.1.11.6 - removed patch9 revertTwoWrongSecurityPatches2013-02-06.patch - added patch9: 7201064.patch to be reverted - added patch10: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906705 1:1.6.0.0-1.32.1.11.6 - add...
mysql security update
5.1.66-1 - Update to 5.1.66, for assorted upstream bugfixes including CVEs announced in July and October 2012 Resolves: 871813...
Unbreakable Enterprise kernel security update
2.6.39-300.17.2 - hugepages: fix use after free bug in 'quota' handling Orabug: 15845276 CVE-2012-2133 - udf: Fortify loading of sparing table Orabug: 15845302 CVE-2012-3400 - udf: Avoid run away loop when partition table length is corrupt Orabug: 15845302 CVE-2012-3400 - mm: Hold a file referenc...
kernel security and bug fix update
2.6.32-220.23.1.el6 - net bond: Make LRO flag follow slave settings Neil Horman 831176 794647 2.6.32-220.22.1.el6 - net ipv4/netfilter: TCP and raw fix for iproutemeharder Jiri Benc 824429 812108 2.6.32-220.21.1.el6 - security fix compile error in commoncap.c Eric Paris 806725 806726 CVE-2012-212...
xorg-x11-server security and bug fix update
1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure vulnerability. 1.1.1-48.88 - cve-2011-4818.patch: Multiple input sanitization flaws in Render and GLX -...
postgresql security update
8.4.9-1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740735...
samba security update
3.0.33-3.29.el5.4 - Security Release, Add fix also for CVE-2011-2724 - related: 722552 3.0.33-3.29.el5.3 - Security Release, fixes CVE-2010-0547, CVE-2010-0787, CVE-2011-2694, CVE-2011-2522, CVE-2011-1678 - resolves: 722552...
python security, bug fix, and enhancement update
python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.15.el6 - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge: netfilter: fix information leak CVE-2011-1080 - Bluetooth: bnep: fix buffer overflow CVE-2011-1079 - net: don't allow CAPNETADMIN to...
thunderbird security update
3.1.10-1.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.10-1 - Update to 3.1.10...
python security, bug fix, and enhancement update
2.4.3-43 - add missing patch 206 Related: rhbz549372 2.4.3-42 - fix testpyclbr to match the urllib change in patch 204 patch 206 - allow the 'noproxy' environment variable to override 'ftpproxy' in urllib2 patch 207 - fix typos in names of patches 204 and 205 Related: rhbz549372 2.4.3-41 - backpo...
kernel security update
2.6.18-194.17.4.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
firefox security update
firefox: 3.6.11-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.11-2 - Update to 3.6.11 Build 2 3.6.11-1 - Update to 3.6.11 nss: 3.12.8-1.0.1.el5 - Update clean.gif in the nss-3.12.8-stripped.tar.bz2 tarball...
postgresql security update
8.1.21-1.el55.1 - Update to PostgreSQL 8.1.21 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/8.1/static/release.html Resolves: 586058...
kernel security and bug fix update
2.6.18-164.9.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug 69930...
kernel security and bug fix update
2.6.9-89.0.15.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
python security update
2.4.3-24.el53.6 - Fix all of the low priority security bugs: - Resolves: rhbz486351 - Multiple integer overflows in python core CVE-2008-2315 - Resolves: 455008 - PyStringFromStringAndSize does not check for negative size values CVE-2008-1887 - Resolves: 443810 - Multiple integer overflows...
kernel security and bug fix update
2.6.9-67.0.22.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
kernel security and bug fix update
kernel-2.4.21-57.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - ora 5088963: io to nfs partition hangs - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli kernel-2.4.21-57.EL -...
Important: xpdf security update
3.00-14.el4 - Resolves: 356811, CVE-2007-4352 CVE-2007-5392 CVE-2007-5393...
Important: cups security update
1.1.22-0.rc1.9.20.2 - Better patch for CVE-2007-3387 bug 248220. 1.1.22-0.rc1.9.20.1 - Applied patch to fix CVE-2007-3387 bug 248220...
Important openssh security update
3.9p1-8.RHEL4.17 - CVE-2006-5051 don't call cleanups from signal handler 208347 3.9p1-8.RHEL4.16 - CVE-2006-4924 prevent DoS on deattack detector code 207955...
emacs security update
1:27.2-11.el95.2 - Fix arbitrary code execution via Lisp macro expansion RHEL-69395...
Unbreakable Enterprise kernel security update
6.12.0-1.23.3.1 - x86/bhi: Do not set BHIDISS in 32-bit mode Pawan Gupta Orabug: 37920680 - x86/bpf: Add IBHF call at end of classic BPF Daniel Sneddon Orabug: 37920680 - x86/bpf: Call branch history clearing sequence on exit Daniel Sneddon Orabug: 37920680 - selftest/x86/bugs: Add selftests for...
virt:kvm_utils2 security update
hivex libguestfs libguestfs-winsupport 8.6-1 - Rebase to ntfs-3g 2021.8.22 - Fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE-2021-39254 resolves: rhbz2004490...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 1.7.0 release for OL7 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which includes t...
httpd:2.4/mod_http2 security update
httpd modhttp2 1.15.7-8.5 - Resolves: RHEL-29816 - httpd:2.4/modhttp2: httpd: CONTINUATION frames DoS CVE-2024-27316 modmd...
container-tools:4.0 security update
buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman 2:4.0.2-26 - rebuild with golang 1.20.12 for CVE-2023-39326 python-podman runc 1:1.1.12-1.0.1 - rebuild with golang 1.20.12 for CVE-2023-3932...
gnutls security update
3.7.6-23.3 - Fixes for CVE-2023-5981, CVE-2024-0553, CVE-2024-0567...
edk2 security update
20230821 - Create new 20230821 release for OL8 which includes the following fixed CVEs: CVE-2019-14560 - Update to OpenSSL 1.1.1v which includes the following fixed CVEs: CVE-2023-3817 CVE-2023-3446 CVE-2023-2650 CVE-2023-0465 CVE-2023-0466 CVE-2023-0464 CVE-2023-0286 CVE-2023-0215 CVE-2022-4450...
python39:3.9 and python39-devel:3.9 security update
modwsgi 4.7.1-7 - Bump release for rebuild Resolves: rhbz2213595 4.7.1-6 - Remove rpath Resolves: rhbz2213837 numpy 1.19.4-3 - Adjusted the postun scriptlets to enable upgrading to RHEL 9 - Resolves: rhbz1933055 1.19.4-2 - Convert from Fedora to the python39 module in RHEL8 - Resolves: rhbz187743...
podman security, bug fix, and enhancement update
2:4.6.1-5.0.1 - Drop nmap-ncat requirement and skip ignore-socket test case Orabug: 34117404 2:4.6.1-5 - update to the latest content of https://github.com/containers/podman/tree/v4.6.1-rhel https://github.com/containers/podman/commit/ea33dce - Related: 2176063 2:4.6.1-4 - amend podmansh provides...
busybox security and bug fix update
1:1.15.1-21.0.1 - Backport fix for CVE-2022-48174 Orabug: 35819048...
python-requests security update
2.20.0-3 - Fix Unintended leak of Proxy-Authorization header CVE-2023-32681...
Unbreakable Enterprise kernel security update
5.15.0-100.96.32 - crypto: Report fips module name and version for aarch64 Saeed Mirzamohammadi Orabug: 35225251 - uek-rpm: Enable RFC7919 config for aarch64 Saeed Mirzamohammadi Orabug: 35225251 5.15.0-100.96.31 - uek-rpm: Update linux-firmware dependency Somasundaram Krishnasamy Orabug: 3521342...
java-17-openjdk security and bug fix update
1:17.0.6.0.10-3 - Add missing release note for JDK-8295687 - Resolves: rhbz2160111 1:17.0.6.0.10-3 - Update FIPS support to bring in latest changes - OJ1357: Fix issue on FIPS with a SecurityManager in place - Related: rhbz2147473 1:17.0.6.0.10-3 - Fix flatpak builds by disabling TestTranslations...
Unbreakable Enterprise kernel-container security update
5.15.0-6.80.3.1 - Revert 'rds: ib: Enable FC by default' Hakon Bugge Orabug: 34964359 5.15.0-6.80.3 - net/mlx5: Suppress error logging on UCTX creation Marina Orabug: 34888471 - rds: ib: Fix leaked MRs during kexec Hakon Bugge Orabug: 34892082 - uek-rpm: Add ptpkvm.ko to core rpm Somasundaram...