8998 matches found
ntp security, bug fix, and enhancement update
4.2.6p5-5 - reject packets without MAC when authentication is enabled CVE-2015-1798 - protect symmetric associations with symmetric key against DoS attack CVE-2015-1799 - fix generation of MD5 keys with ntp-keygen on big-endian systems CVE-2015-3405 - log when stepping clock for leap second or...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.6 - x86/asm/entry/64: Remove a bogus 'retfromfork' optimization Andy Lutomirski Orabug: 21308307 CVE-2015-2830 - x86, mm/ASLR: Fix stack randomization on 64-bit systems Hector Marco-Gisbert Orabug: 21307917 CVE-2015-1593 CVE-2015-1593...
firefox security and bug fix update
31.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 31.4.0-1 - Update to 31.4.0 ESR 31.3.0-9 - Fixed problems with dictionaries mozbz1097550 - Fixed rhbz1164855 - firefox.desktop is missing x-scheme-handler MimeTy...
php security update
5.4.16-23.3 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.4.16-23.2 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
Unbreakable Enterprise kernel security update
2.6.39-400.215.11 - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817786 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817748 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - kvm:...
kernel security and bug fix update
2.6.32-431.29.2 - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc 1114549 1096351 CVE-2014-3535 2.6.32-431.29.1 - mm hugetlb: ensure hugepage access is denied if hugepages are not supported Gustav...
openssl security update
0.9.7a-43.18.0.2 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.34.5uek - aacraid: missing capable check in compat ioctl Dan Carpenter Orabug: 18723276 CVE-2013-6383...
kernel security, bug fix, and enhancement update
kernel 2.6.18-371.8.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
qemu-kvm security update
0.12.1.2-2.415.el65.8 - kvm-virtio-net-fix-guest-triggerable-buffer-overrun.patch bz1078605 bz1078849 - kvm-qcow2-Check-backingfileoffset-CVE-2014-0144.patch bz1079452 bz1079453 - kvm-qcow2-Check-refcount-table-size-CVE-2014-0144.patch bz1079452 bz1079453 -...
unbreakable enterprise kernel security update
2.6.39-400.214.3 - inet: fix addrlen/msg-msgnamelen assignment in recverror and rxpmtu functions Hannes Frederic Sowa 18247289 CVE-2013-7263 CVE-2013-7265 2.6.39-400.214.2 - inet: prevent leakage of uninitialized memory to user in recv syscalls Hannes Frederic Sowa 18238382 CVE-2013-7263...
java-1.7.0-openjdk security update
1.7.0.51-2.4.4.1.0.1.el510 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.51-2.4.4.1.el5 - updated to security icedtea 2.4.4 - icedteaversion set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel = 1:1.6.0 changed java7-devel - Resolve...
kernel security and bug fix update
kernel 2.6.18-371.1.2 - xen x86: check segment descriptor read result in 64-bit OUTS emulation Radim Krcmar 1012958 1012959 CVE-2013-4368 - md dm snapshot: fix data corruption Mikulas Patocka 1004734 975353 CVE-2013-4299 2.6.18-371.1.1 - crypto ansicprng fix off by one err in non-block size reque...
kernel security and bug fix update
2.6.32-358.23.2 - md dm-snapshot: fix data corruption Mikulas Patocka 1004252 1004233 CVE-2013-4299 2.6.32-358.23.1 - md raid1, raid10: use freezearray in place of raisebarrier in various places Jes Sorensen 1003765 997845 - scsi megaraidsas: megaraidsas driver init fails in kdump kernel Nikola...
nss, nss-util, nss-softokn, and nspr security update
nspr 4.9.5-2 - Update to NSPR495RTM - Resolves: rhbz927186 - Rebase to nspr-4.9.5 - Add upstream URL for an existing patch per packaging guidelines 4.9.5-1 - Resolves: Rebase to nspr-4.9.5 4.9.2-1 - Update to nspr-4.9.2 - Related: rhbz863286 nss 3.14.3-4.0.1.el64 - Added nss-vendor.patch to chang...
unbreakable enterprise kernel security update
2.6.39-400.109.3 - Revert 'be2net: enable interrupts in probe' Jerry Snitselaar Orabug: 17179597 2.6.39-400.109.2 - be2net: enable interrupts in probe Jerry Snitselaar Orabug: 17080364 - Bluetooth: RFCOMM - Fix missing msgnamelen update in rfcommsockrecvmsg Mathias Krause Orabug: 17173830...
Unbreakable Enterprise kernel security update
2.6.32-400.26.2 - mm/hotplug: correctly add new zone to all other nodes' zone lists Jiang Liu Orabug: 16603569 CVE-2012-5517 - ptrace: ptraceresume shouldn't wake up !TASKTRACED thread Oleg Nesterov Orabug: 16405868 CVE-2013-0871 - ptrace: ensure archptrace/ptracerequest can never race with SIGKI...
thunderbird security update
17.0.5-1.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.5-1 - Update to 17.0.5 ESR...
java-1.6.0-openjdk security update
1:1.6.0.0-1.54.1.11.6 - removed patch8 revertTwoWrongSecurityPatches2013-02-06.patch - added patch8: 7201064.patch to be reverted - added patch9: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906707 1:1.6.0.0-1.53.1.11.6 - added patch8 revertTwoWrongSecurityPatches2013-02-06.patch to...
mingw32-libxml2 security update
2.7.6-6 - Synchronize patch-set with mainline-version. - Bump version to 5, 6. Related: rhbz891477 2.7.6-4 - Change release number to 4. - Added patch libxml2-Fix-an-off-by-one-pointer-access.patch - Added patch libxml2-Fix-a-segfault-on-XSD-validation-on-pattern-error.patch - Added patch...
wireshark security, bug fix, and enhancement update
1.0.15-5.0.1.el5 - Added oracle-ocfs2-network.patch - increase max packet size to 65536 Herbert van den Bergh orabug 13542633 1.0.15-5 - fixed CVE-2012-4285, CVE-2012-4289, CVE-2012-4291 and CVE-2012-4290 849521 1.0.15-4 - fixed NetDump dissector 484999 1.0.15-3 - fixed various flaws: CVE-2011-19...
Unbreakable Enterprise kernel security update
2.6.39-300.17.3 - mm/hotplug: correctly add new zone to all other nodes zone lists Jiang Liu Orabug: 16020976 Bug-db: 14798 CVE-2012-5517 - Divide by zero in TCP congestion control Algorithm. Jesper Dangaard Brouer Orabug: 16020656 Bug-db: 14798 CVE-2012-4565 - Fix length of buffer copied in...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.37.1. - sfc: Replace some literal constants with EFXPAGESIZE/EFXBUFSIZE Ben Hutchings Orabug: 14769994 - CVE-2012-3412 sfc: Fix maximum number of TSO segments and minimum TX queue size Ben Hutchings Orabug: 14769994 CVE-2012-3412 2.6.32-300.36.1. - dl2k: Clean up rioioctl Stephan Muell...
firefox security and bug fix update
firefox 10.0.8-1.0.2.el63 - Updated firefox-oracle-default-prefs.js based on latest firefox-redhat-default-prefs.js 10.0.8-1.0.1.el63 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.8-1 - Update to 10.0.8 ESR xulrunner 10.0.8-1.0.1.el63 - Replace...
postgresql and postgresql84 security update
8.4.12-1 - Update to PostgreSQL 8.4.12, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-12.html including the fixes for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-2 - Add patches for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-1 - Update to...
thunderbird security update
10.0.5-2.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.5-2 - Update to 10.0.5 ESR...
firefox security update
firefox: 3.6.26-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 3.6.26-1 - Update to 3.6.26 xulrunner: 1.9.2.26-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.26-1 - Update to 1.9.2.26...
samba and cifs-utils security and bug fix update
cifs-utils: 4.8.1-2.2 - fix handling of checknewline return code in mount.cifs bz 725508 4.8.1-2.1 - mount.cifs: handle ENOSPC/EFBIG condition when altering mtab bz 725508 samba: 3.5.6-86.4 - Fix cleartext authentication after applying Windows security patch KB2536276 - resolves: 728517 3.5.6-86....
thunderbird security update
3.1.12-1.0.1.el61 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.12-1 - Update to 3.1.12...
tomcat6 security and bug fix update
6.0.24-33 - resolves: rhbz 695284 - multiple instances logging fiasco 6.0.24-32 - Resolves: rhbz 698624 - inet4address can't be cast to String 6.0.24-31 - Resolves: rhbz 656403 - cve-2010-4172 jsp syntax error 6.0.24-30 - Resolves: rhbz697504 initscript logging location 6.0.24-29 - Resolves:...
kvm security and bug fix update
kvm-83-164.0.1.el55.30 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch to replace RHEL with OEL - Added kvm-Introduce-oel-machine-type.patch so that OEL is a recognized VM kvm-83-164.el55.30 - Revert the bz661397 patches as they are not enough -...
kernel security and bug fix update
2.6.9-89.33.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
kernel security and bug fix update
2.6.18-194.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
tomcat5 security update
0:5.5.23-0jpp.9 - Resolves: rhbz619424 fixed servlet-api typo. serve4-api to servlet-api - RHSA-2010:9748 0:5.5.23-0jpp.8 - Patches backported from RHEL-5 tomcat5-5.5.23-0jpp.10.el5 - Updated init script for LSB compliance, catalina.log permissions - Resolves: CVE-2009-2693, CVE-2009-2902,...
automake security update
1.9.6-2.3 - increase delay in self checks - add delays in aclocal7 self check http://osdir.com/ml/sysutils.automake.bugs/2006-09/msg00012.html - preserve timestamps of configure files 1.9.6-2.2 - add fix for CVE-2009-4029...
openssl security update
0.9.8e-12.6 - fix CVE-2009-3245 - add missing bnwexpand return checks 570924 0.9.8e-12.5 - fix CVE-2010-0433 - do not pass NULL princ to krb5ktgetentry which in the RHEL-5 and newer versions will crash in such case 569774 0.9.8e-12.4 - do not disable SSLv2 in the renegotiation patch - SSLv2 does...
thunderbird security update
1.5.0.12-25.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-25 - Added patches from 2.0.0.24 1.5.0.12-24 - Update patchset to fix regression as per 1.9.0.13...
samba security update
3.0.33-3.15.el5 - Security Release, fixes CVE-2009-1888, CVE-2009-2813, CVE-2009-2948 and CVE-2009-2906 - resolves: 526660...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.0-1.2.b09.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-1.2.b09 - Updated release. - Moved java-1.6.0-openjdk-securitypatches.patch to java-1.6.0-openjdk-march24-securitypatches.patch. - Created new java-1.6.0-openjdk-july28-securitypatches.patch. - Updated release. - Resolves: rhbz5133...
firefox security update
firefox: 3.0.11-2.0.1.el53 - Update firstrun and homepage URLs - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones - Added patch oracle-firefox-branding.patch 3.0.11-2 - Update due to respin 3.0.11-1 - Update to 3.0.11 xulrunner...
kernel security and bug fix update
2.6.9-78.0.17.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
Moderate: kernel security and bug fix update
2.6.9-67.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...
Important: kernel security update
2.6.18-8.1.10.0.1.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.10.el5 - mm Prevent the stack growth into hugetlb reserved regions Konrad Rzeszutek 253313 CVE-2007-3739 2.6.18-8.1.9.el5 - misc cpuset...
Important: tomcat security update
jakarta-commons-modeler-1.1-8jpp.1.0.2.el5 1.1-8jpp.1.0.2.el5 - rebuild after the fix for bug 238139 made it into the build root - Resolves: bug 238694 1.1-8jpp.1.0.1.el5 - Add patch to fix jira task: MODELER-15 to allow tomcat5 5.5.23 to build against j-c-modeler - Resolves: bug 238694...
Important php security update
4.3.9-3.22 - avoid default pear.conf change 4.3.9-3.21 - add security fix for CVE-2006-5465 from upstream 4.3.9-3.20 - add fix for phperror varargs use 199947 4.3.9-3.18 - rebuild 4.3.9-3.17 - add security fix from upstream: CVE-2006-4484 - add metaphone fix 205714 4.3.9-3.16 - add security fixes...
kernel security update
4.18.0-553.52.110.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
glibc security update
2.34-125.0.1.8 - Forward-port Oracle patches for ol9-u5 glibc-2.34-125.0.1.8 Reviewed by: David Faust Oracle history:...
Unbreakable Enterprise kernel security update
5.4.17-2136.338.4.1 - Revert 'ocfs2: fix the la space leak when unmounting an ocfs2 volume' Sherry Yang Orabug: 37383196 5.4.17-2136.338.4 - devlink: fix possible use-after-free and memory leaks in devlinkinit Vasiliy Kovalev Orabug: 37284641 CVE-2024-26734 - mm: avoid leaving partial pfn mapping...
Unbreakable Enterprise kernel security update
4.1.12-124.89.4 - isdn: mISDN: netjet: Fix crash in njprobe: Zheyu Ma Orabug: 36940405 CVE-2021-47284 - tracing: Restructure traceclockglobal to never block Steven Rostedt VMware Orabug: 36940388 CVE-2021-46939 - udf: Fix NULL pointer dereference in udfsymlink function Arturo Giusti Orabug:...
openssh security update
7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...