9182 matches found
java-1.7.0-openjdk security update
1.7.0.5-2.2.1.0.1.el63.3 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6.3 - Removed patch 304 java-1.7.0-openjdk-beans-isPackageAccessible.patch - Applied upstream patches for same issue: patch 1001 sec-webrevs-openjdk7-29aug2012-7162473.patch patch 1002...
thunderbird security update
10.0.5-2.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.5-2 - Update to 10.0.5 ESR...
openssl security update
openssl: 1.0.0-20.4 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185 openssl098e: 0.9.8e-17.el62.2 - Updated the description 0.9.8e-17.2 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185...
firefox security update
firefox: 3.6.26-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 3.6.26-1 - Update to 3.6.26 xulrunner: 1.9.2.26-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.26-1 - Update to 1.9.2.26...
samba and cifs-utils security and bug fix update
cifs-utils: 4.8.1-2.2 - fix handling of checknewline return code in mount.cifs bz 725508 4.8.1-2.1 - mount.cifs: handle ENOSPC/EFBIG condition when altering mtab bz 725508 samba: 3.5.6-86.4 - Fix cleartext authentication after applying Windows security patch KB2536276 - resolves: 728517 3.5.6-86....
thunderbird security update
3.1.12-1.0.1.el61 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.12-1 - Update to 3.1.12...
Unbreakable enterprise kernel security update
2.6.32-100.20.1.el5 - fs xfs: return inode fork offset in bulkstat for fsr Dave Chinner - fs xfs: always use iget in bulkstat Dave Chinner CVE-2010-2943 - fs xfs: validate untrusted inode numbers during lookup Dave Chinner CVE-2 010-2943 - fs xfs: rename XFSIGETBULKSTAT to XFSIGETUNTRUSTED Dave...
kernel security and bug fix update
2.6.18-194.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
tomcat5 security update
0:5.5.23-0jpp.9 - Resolves: rhbz619424 fixed servlet-api typo. serve4-api to servlet-api - RHSA-2010:9748 0:5.5.23-0jpp.8 - Patches backported from RHEL-5 tomcat5-5.5.23-0jpp.10.el5 - Updated init script for LSB compliance, catalina.log permissions - Resolves: CVE-2009-2693, CVE-2009-2902,...
openssl security update
0.9.8e-12.6 - fix CVE-2009-3245 - add missing bnwexpand return checks 570924 0.9.8e-12.5 - fix CVE-2010-0433 - do not pass NULL princ to krb5ktgetentry which in the RHEL-5 and newer versions will crash in such case 569774 0.9.8e-12.4 - do not disable SSLv2 in the renegotiation patch - SSLv2 does...
firefox security update
firefox: 3.0.16-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones 3.0.16-1 - Update to 3.0.16 xulrunner: 1.9.0.16-2.0.1.el5...
libvorbis security update
1:1.1.2-3.el5.4 - fix CVE-CVE-2009-3379 Resolves: 532418...
kernel security and bug fix update
2.6.9-78.0.17.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
kernel security and bug fix update
2.6.9-78.0.13.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
cups security update
1.1.17-13.3.55 - Applied patch to fix STR 2974 bug 473905, CVE-2008-5286, CVE-2008-1722...
Important: kernel security and bug fix update
kernel-2.4.21-53.EL - Fix ipv4 treason uncloaked message Anton Arapov 249237 - Fix ipv4 fib-sem-out-of-bounds checking Don Howard 250429 CVE-2007-2172 - Reset current-pdeathsignal on SUID binary execution Peter Zijlstra 251117 CVE-2007-3848 - Fix local DoS with corrupted elf on ia64 Don Howard...
Important: cups security and bug fix update
1.2.4-11.14.el51.1 - Applied patch to fix CVE-2007-4351 STR 2561, bug 353981. 1.2.4-11.14 - Applied patch to fix cupsd crash when failing to open a file: URI STR 2351, bug 250415. 1.2.4-11.13 - Moved LSPP security attributes check before job creation bug 231522. 1.2.4-11.12 - Moved LSPP access...
Important: krb5 security update
1.3.4-49 - add patch to fix buffer overflow in kadmind 239073, CVE-2007-2798 1.3.4-48 - add patch to fix buffer overflow and double-free in rpc library 239073, CVE-2007-2442/CVE-2007-2443...
.NET 9.0 security update
9.0.106-1.0.1 - Add support for Oracle Linux 9.0.106-1 - Update to .NET SDK 9.0.106 and Runtime 9.0.5 - Resolves: RHEL-89451 9.0.105-2 - Update to .NET SDK 9.0.105 and Runtime 9.0.4 - Resolves: RHEL-85279...
libjpeg-turbo security update
1.5.3-14 - updated previous fix RHEL-87364 1.5.3-13 - fix CVE-2020-13790: heap-based buffer over-read in getrgbrow RHEL-87364...
glibc security update
2.34-125.0.1.8 - Forward-port Oracle patches for ol9-u5 glibc-2.34-125.0.1.8 Reviewed by: David Faust Oracle history:...
kernel security update
5.14.0-427.33.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
glibc security update
2.34-100.0.1.2 - Forward-port Oracle patches for ol9-u4 Reviewed by: Jose E. Marchesi...
kernel security, bug fix, and enhancement update
5.14.0-427.13.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
conmon security update
conmon 2.1.3-8 - address CVE-2023-39326 cri-o 1.25.5-1 - Added Oracle Specifile Files for cri-o cri-tools 1.25.0-3 - Resolve CVE-2023-39326 flannel-cni-plugin 1.0.1-4 - Resolve CVE-2023-39326 helm 3.11.1-3 - address CVE-2023-39326 istio 1.16.7-3 - Updated Golang to 1.20.12 to address CVE...
gstreamer1-plugins-bad-free security update
1.10.4-4 - Patch CVE-2023-44446: MXF demuxer use-after-free - Disable gtk-doc to fix build - Resolves: RHEL-16793...
postgresql:10 security update
10.23-3.0.1 - Resolves: CVE-2023-5869...
nodejs:20 security update
nodejs 1:20.8.1-1 - Update node and nghttp - Add fips patch - Fixes CVE-2023-44487 nghttp - Fixes CVE-2023-45143, CVE-2023-39331, CVE-2023-39332, CVE-2023-38552, CVE-2023-39333 nodejs-nodemon nodejs-packaging...
containernetworking-plugins security and bug fix update
1:1.3.0-4 - add Epoch in Provides - Related: 2176063 1:1.3.0-3 - remove noopenssl for FIPS compliance - Related: 2176063 1:1.3.0-2 - rebuild for following CVEs: CVE-2022-41724 CVE-2022-41725 CVE-2023-24538 CVE-2023-24534 CVE-2023-24536 CVE-2022-41723 CVE-2023-24539 CVE-2023-24540 CVE-2023-29400 -...
nodejs:16 security update
nodejs 1:16.20.2-3.0.1 - Update nghttp2 to 1.57.0 Resolves: CVE-2023-44487 nodejs-nodemon nodejs-packaging 26-1 - nodejs.prov: find namespaced bundled dependencies - Apply https://src.fedoraproject.org/rpms/nodejs-packaging/c/e24e7df...
open-vm-tools security update
12.1.5-2.0.2.3 - Resolves: RHEL-4584 CVE-2023-20900 open-vm-tools: SAML token signature bypass...
kernel security, bug fix, and enhancement update
4.18.0-477.27.0.18.OL8 - bluetooth: Perform careful capability checks in hcisockioctl CVE-2023-2002 - ipvlan:Fix out-of-bounds caused by unclear skb-cb CVE-2023-3090 - net/sched: clsfw: Fix improper refcount update leads to use-after-free CVE-2023-3776 - netfilter: nftsetpipapo: fix improper...
python-requests security update
2.20.0-3 - Fix Unintended leak of Proxy-Authorization header CVE-2023-32681...
libcap security update
2.48-5 - Fix integer overflow in libcapstrdup CVE-2023-2603 Resolves: rhbz2210637 - Correctly check pthreadcreate return value to avoid memory leak CVE-2023-2602 Resolves: rhbz2210644...
curl security update
7.76.1-23.el92.2 - unify the upload/method handling CVE-2023-28322 - fix host name wildcard checking CVE-2023-28321...
python3-setuptools security update
39.2.0-10.0.1 - Back port fix for CVE-2022-40897 Orabug: 35034581...
python-mako security update
1.1.4-6 - Fix CVE-2022-40023 2133606...
kernel security and bug fix update
3.10.0-1160.83.1.0.1.OL7 - debug: lock down kgdb Orabug: 34270798 CVE-2022-21499 3.10.0-1160.83.1.OL7 - Update Oracle Linux certificates Ilya Okomin - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 2481767...
Unbreakable Enterprise kernel security update
4.1.12-124.70.2 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34882781 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34882781 CVE-2022-4378 - netfilter: nfconntrackirc: Fix forged IP logic David Leadbeater Orabu...
nodejs:16 security, bug fix, and enhancement update
nodejs 1:16.18.1-3 - Update sources of undici WASM blobs Resolves: rhbz2151546 1:16.18.1-2 - Record CVE references already addressed in this or previous upstream versions Resolves: CVE-2021-44531 CVE-2021-44532 CVE-2021-44533 CVE-2022-21824 1:16.18.1-1 - Rebase + CVE fixes - Resolves: 2142806 -...
Unbreakable Enterprise kernel security update
5.15.0-5.76.5.1 - proc: procskipspaces shouldn't think it is working on C strings Linus Torvalds Orabug: 34883037 CVE-2022-4378 - proc: avoid integer type confusion in getproclong Linus Torvalds Orabug: 34883037 CVE-2022-4378 5.15.0-5.76.5 - KVM: x86: Use SRCU to protect zap in...
kernel security, bug fix, and enhancement update
4.18.0-425.3.1.OL8 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...
Unbreakable Enterprise kernel security update
4.14.35-2047.517.3 - KVM: x86: use raw clock values consistently Paolo Bonzini Orabug: 34575637 - KVM: x86: reorganize pvclockgtoddata members Paolo Bonzini Orabug: 34575637 - KVM: x86: switch KVMCLOCK base to monotonic raw clock Marcelo Tosatti Orabug: 34575637 4.14.35-2047.517.2 - kernfs: Repla...
cri-o security update
1.21.7-2 - Addresses CVE-2022-1708 1.21.7-1 - Added Oracle Specifile Files for cri-o...
Unbreakable Enterprise kernel security update
4.1.12-124.65.1 - cgroup-v1: Require capabilities to set releaseagent Eric W. Biederman Orabug: 33825689 CVE-2022-0492 - ocfs2: kill EBUSY from dlmfsevictinode Junxiao Bi Orabug: 34091904 - ocfs2: dlmfs: fix error handling of userdlmdestroylock Junxiao Bi via Ocfs2-devel Orabug: 34091904 - ocfs2:...
olcne security update
1.5.3-1 - Address qemu CVE-2022-26353, CVE-2021-3748...
go-toolset:ol8addon security update
go-toolset 1.16.15-1 - Rebase to Go 1.16.15 golang 1.16.15-1.0.1 - Add patches from 1.16.12 to 1.16.15 - Add Sources for 3 binary files that changed between 1.16.12 and 1.16.15 - Rename basevrsn to baseversion - Reviewed-by: XXX XXX...
thunderbird security update
91.7.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.7.0-2 - Update to 91.7.0 build2 91.7.0-1 - Update to 91.7.0 build1...
firefox security update
91.7.0-3.0.1 - Removed Upstream references - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.7.0-3 - Update to 91.7.0 build3 91.7.0-2 - Added expat backports of CVE-2022-25235, CVE-2022-25236 and CVE-2022-25315 91.7.0-1 - Update to 91.7.0 build2 91.6.0-2 - Install...
Unbreakable Enterprise kernel-container security update
4.14.35-2047.511.5.6.el7 - lib/ioviter: initialize 'flags' in new pipebuffer Max Kellermann Orabug: 33942242 CVE-2022-0847...