9184 matches found
.NET Core security and bugfix update
2.1.516-1 - Update to .NET Core SDK 2.1.516 and Runtime 2.1.20 - Resolves: RHBZ1851983...
freerdp security update
1.0.2-7 - CVE-2020-13398: Fix out-of-bounds write in crypto.c 1841980...
poppler and evince security update
evince 3.28.2-9 - Handle failure from TIFFReadRGBAImageOriented - Resolves: 1717352 poppler 0.26.5-42 - Fix potential integer overflow and check length for negative values - Resolves: 1757283 0.26.5-41 - Ignore dict Length if it is broken - Resolves: 1733026 0.26.5-40 - Fail gracefully if not all...
dovecot security update
1:2.2.36-5.1 - fix CVE-2019-11500: IMAP protocol parser does not properly handle NUL byte when scanning data in quoted strings, leading to out of bounds heap memory writes 1741788...
thunderbird security update
60.6.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.6.1-1 - Update to 60.6.1 60.6.0-1 - Update to 60.6.0...
libssh2 security update
1.4.3-12.0.1.el76.2 - Orabug: 29909723 Added patch CVE-2019-3862 added length checks to prevent out-of-bounds reads and writes in libssh2packetaddCVE-2019-3862...
Unbreakable Enterprise kernel security update
2.6.39-400.300.2 - Revert 'RDS: don't commit to queue till transport connection is up' Santosh Shilimkar Orabug: 27619034 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951293 CVE-2017-17741 CVE-2017-17741 - kernel/exit.c: avoid undefined behaviour when calling wait4...
firefox security update
52.7.2-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.7.2-1 - Update to 52.7.2 ESR...
wpa_supplicant security update
1:2.6-5.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088...
kernel security update
3.10.0-693.2.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.2.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil...
tomcat security update
0:7.0.69-12 - Resolves: rhbz1441487 CVE-2017-5648 tomcat: Calls to application listeners did not use the appropriate facade object - Resolves: rhbz1441480 CVE-2017-5647 tomcat: Incorrect handling of pipelined requests when send file was used - Resolves: rhbz1459746 CVE-2017-5664 tomcat: Security...
ghostscript security update
8.70-23.el69.2 - Security fix for CVE-2017-8291 updated to address SIGSEGV 8.70-23.el69.1 - Added security fix for CVE-2017-8291 bug 1446063...
qemu-kvm security update
1.5.3-126.el73.6 - kvm-fix-cirrusvga-fix-OOB-read-case-qemu-Segmentation-f.patch bz1430059 - kvm-cirrus-vnc-zap-bitblit-support-from-console-code.patch bz1430059 - kvm-cirrus-add-option-to-disable-blitter.patch bz1430059 - kvm-cirrus-fix-cirrusinvalidateregion.patch bz1430059 -...
tomcat6 security and bug fix update
0:6.0.24-98 - Resolves: rhbz1362210 CVE-2016-5388 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368119 0:6.0.24-97 - Resolves: rhbz1367051 CVE-2015-5174 URL Normalization issue - Resolves: rhbz1367054 CVE-2016-0706 Security Manager bypass via...
glibc security update
2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...
firefox security update
38.6.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 38.6.1-1 - Update to 38.6.1 ESR...
java-1.7.0-openjdk security update
1.7.0.95-2.6.4.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.95-2.6.4.0 - Bump to 2.6.4 and u95b00. - Backport tarball creation script from OpenJDK 8 RPMs and update fsg.sh to work with it. - Drop 8072932or8074489 patch as applied upstream in u91b01. - Add MD5 checksums for last two version of th...
openssh security update
6.6.1p1-23 + 0.9.3-9 - Disable undocumented feauture Roaming for good 1298218 - prevents CVE-2016-0777 and CVE-2016-0778...
samba security update
4.2.3-11 - resolves: 1290710 - CVE-2015-3223 Remote DoS in Samba AD LDAP server - CVE-2015-5299 Missing access control check in shadow copy code - CVE-2015-5252 Insufficient symlink verification in smbd - CVE-2015-5296 Samba client requesting encryption vulnerable to downgrade attack...
openssl security update
0.9.8e-37.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
java-1.8.0-openjdk security update
1:1.8.0.65-0.b17 - October 2015 security update to u65b17. - Add script for generating OpenJDK tarballs from a local Mercurial tree. - Update RH1191652 patch to build against current AArch64 tree. - Use appropriate source ID to avoid unpacking both tarballs on AArch64. - Fix library removal scrip...
ntp security, bug fix, and enhancement update
4.2.6p5-5 - reject packets without MAC when authentication is enabled CVE-2015-1798 - protect symmetric associations with symmetric key against DoS attack CVE-2015-1799 - fix generation of MD5 keys with ntp-keygen on big-endian systems CVE-2015-3405 - log when stepping clock for leap second or...
openssl security update
0.9.8e-36.0.1 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix CVE-2014-3571 - DTLS segmentation fault in dtls1getrecord - fix CVE-2014-3572 - ECDHE silently downgrades to ECDH Client 0.9.8e-36 - als...
libreoffice security, bug fix, and enhancement update
libabw 0.0.2-1 - new upstream release 0.0.2 - generate man pages for the tools 0.0.1-1 - new upstream release libcmis 0.4.1-5 - Related: rhbz1132065 coverity: fix mismatching exceptions 0.4.1-4 - a few use-after-free fixes for the C wrapper 0.4.1-3 - Resolves: rhbz1132065 rebase to 0.4.1 libetony...
bash security update
3.2-33.4.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905421...
Unbreakable Enterprise kernel security update
2.6.39-400.215.11 - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817786 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817748 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - kvm:...
glibc security, bug fix, and enhancement update
2.12-1.149 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, 2.12-1.148 - Switch gettimeofday from INTUSE to libchiddenproto 1099025. 2.12-1.147 - Fix stack overflow due to large AFINET6 requests...
squid security update
7:3.1.10-22 - Resolves: 1134936 - CVE-2013-4115 buffer overflow when processing overly long DNS names 7:3.1.10-21 - Resolves: 1134936 - CVE-2014-3609 assertion failure in header processing...
kernel security, bug fix, and enhancement update
3.10.0-123.4.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.4.2 - fs aio: fix plug memory disclosure and fix reqsactive accounting backport Jeff Moyer 1094604 1094605 CVE-2014-0206 - fs aio: plug memory disclosure and fix reqsactive accounting Mateusz Guzik 1094604 1094605 CVE-2014-0206...
unbreakable enterprise kernel security update
2.6.39-400.215.3 - SELinux: Fix kernel BUG on empty security contexts. Stephen Smalley Orabug: 19028380 CVE-2014-1874 - floppy: don't write kernel-only members to FDRAWCMD ioctl output Matthew Daley Orabug: 19028444 CVE-2014-1738 - floppy: ignore kernel-only members in FDRAWCMD ioctl input Matthe...
openssl security update
0.9.7a-43.18.0.2 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability...
kernel security, bug fix, and enhancement update
kernel 2.6.18-371.8.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
java-1.7.0-openjdk security update
1.7.0.51-2.4.4.1.0.1.el510 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.51-2.4.4.1.el5 - updated to security icedtea 2.4.4 - icedteaversion set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel = 1:1.6.0 changed java7-devel - Resolve...
java-1.6.0-openjdk security update
1:1.6.0.0-1.68.1.11.14 - updated to icedtea6-1.11.14.tar.gz - added and applied 1.11.14-fixes.patch, patch10 to fix build issues - adapted patch8 java-1.6.0-openjdk-timezone-id.patch - Resolves: rhbz1017618 1:1.6.0.1-1.67.1.13.0 - reverted previous update - Resolves: rhbz1017618...
kernel security and bug fix update
kernel 2.6.18-371.1.2 - xen x86: check segment descriptor read result in 64-bit OUTS emulation Radim Krcmar 1012958 1012959 CVE-2013-4368 - md dm snapshot: fix data corruption Mikulas Patocka 1004734 975353 CVE-2013-4299 2.6.18-371.1.1 - crypto ansicprng fix off by one err in non-block size reque...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.33.2 - dm snapshot: fix data corruption Mikulas Patocka Orabug: 17618900 CVE-2013-4299 - ipv6: call udppushpendingframes when uncorking a socket with AFINET pending data Hannes Frederic Sowa Orabug: 17618897 CVE-2013-4162...
unbreakable enterprise kernel security update
2.6.39-400.109.6 - block: do not pass disk names as format strings Kees Cook Orabug: 17230083 CVE-2013-2851 - libceph: Fix NULL pointer dereference in auth client code Tyler Hicks Orabug: 17230108 CVE-2013-1059 - ipv6: ip6skdstcheck must not assume ipv6 dst Eric Dumazet Orabug: 17371078...
Unbreakable Enterprise kernel security update
2.6.32-400.26.2 - mm/hotplug: correctly add new zone to all other nodes' zone lists Jiang Liu Orabug: 16603569 CVE-2012-5517 - ptrace: ptraceresume shouldn't wake up !TASKTRACED thread Oleg Nesterov Orabug: 16405868 CVE-2013-0871 - ptrace: ensure archptrace/ptracerequest can never race with SIGKI...
thunderbird security update
17.0.5-1.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.5-1 - Update to 17.0.5 ESR...
tomcat5 security update
0:5.5.23-0jpp.38 - Resolves: CVE-2012-3439 rhbz882008 three DIGEST authentication - implementation - Resolves: CVE-2012-3546, rhbz913034 Bypass of security constraints. - Remove unneeded handling of FORM authentication in RealmBase...
java-1.6.0-openjdk security update
1:1.6.0.0-1.33.1.11.6.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.33.1.11.6 - removed patch9 revertTwoWrongSecurityPatches2013-02-06.patch - added patch9: 7201064.patch to be reverted - added patch10: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906705 1:1.6.0.0-1.32.1.11.6 - add...
mingw32-libxml2 security update
2.7.6-6 - Synchronize patch-set with mainline-version. - Bump version to 5, 6. Related: rhbz891477 2.7.6-4 - Change release number to 4. - Added patch libxml2-Fix-an-off-by-one-pointer-access.patch - Added patch libxml2-Fix-a-segfault-on-XSD-validation-on-pattern-error.patch - Added patch...
Unbreakable Enterprise kernel security update
2.6.39-300.17.2 - hugepages: fix use after free bug in 'quota' handling Orabug: 15845276 CVE-2012-2133 - udf: Fortify loading of sparing table Orabug: 15845302 CVE-2012-3400 - udf: Avoid run away loop when partition table length is corrupt Orabug: 15845302 CVE-2012-3400 - mm: Hold a file referenc...
kernel security and bug fix update
2.6.32-220.23.1.el6 - net bond: Make LRO flag follow slave settings Neil Horman 831176 794647 2.6.32-220.22.1.el6 - net ipv4/netfilter: TCP and raw fix for iproutemeharder Jiri Benc 824429 812108 2.6.32-220.21.1.el6 - security fix compile error in commoncap.c Eric Paris 806725 806726 CVE-2012-212...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.7.1.el6uek - Revert "proc: enable writing to /proc/pid/mem" orabug 13619701 CVE-2012-0056 - PATCH x86, tsc: Skip TSC synchronization checks for tsc=reliable Suresh Siddha 2.6.32-300.6.1.el6uek - tracing: Fix null pointer deref with SENDSIGFORCED Oleg Nesterov orabug 13611655...
util-linux-ng security, bug fix, and enhancement update
2.17.2-12.4 - fix CVE-2011-1675 - mount fails to anticipate RLIMITFSIZE - fix CVE-2011-1677 - umount may fail to remove /etc/mtab lock file 2.17.2-12.3 - fix fatal typos in patch for 723546 2.17.2-12.2 - rename /etc/hushlogin to /etc/hushlogins 696731 2.17.2-12.1 - fix 723546 - Defects revealed b...
postgresql security update
8.4.9-1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740735...
samba security update
3.0.33-3.29.el5.4 - Security Release, Add fix also for CVE-2011-2724 - related: 722552 3.0.33-3.29.el5.3 - Security Release, fixes CVE-2010-0547, CVE-2010-0787, CVE-2011-2694, CVE-2011-2522, CVE-2011-1678 - resolves: 722552...
kernel security, bug fix, and enhancement update
2.6.32-131.12.1.el6 - netdrv be2net: clear intr bit in beprobe Ivan Vecera 726308 722596 2.6.32-131.11.1.el6 - mm hold the page lock until after setpagestablenode Andrea Arcangeli 726095 683658 - netdrv be2net: remove certain cmd failure logging Ivan Vecera 725329 719304 - net nl80211: missing...
tomcat6 security and bug fix update
6.0.24-33 - resolves: rhbz 695284 - multiple instances logging fiasco 6.0.24-32 - Resolves: rhbz 698624 - inet4address can't be cast to String 6.0.24-31 - Resolves: rhbz 656403 - cve-2010-4172 jsp syntax error 6.0.24-30 - Resolves: rhbz697504 initscript logging location 6.0.24-29 - Resolves:...