9182 matches found
nss and nspr security, bug fix, and enhancement update
nspr 4.21.0-2 - Rebuild 4.21.0-1 - Update to NSPR 4.21 nss 3.44.0-7 - Backport fixes from 3.44.1 3.44.0-6 - Add continuous RNG test required by FIPS - fipstest: use CKMTLS12MASTERKEYDERIVE instead of vendor specific mechanism 3.44.0-5 - Rebuild with the correct build target 3.44.0-4.1 - rebuild t...
nss security update
3.36.0-7 - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake the symbol was not exported from libnss 3.36.0-6 - Exercise SSL tests which only run under non-FIPS setting...
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578555...
qemu-kvm security, bug fix, and enhancement update
1.5.3-126.el7 - kvm-virtio-recalculate-vq-inuse-after-migration.patch bz1376542 - Resolves: bz1376542 RHSA-2016-1756 breaks migration of instances 1.5.3-125.el7 - kvm-nbd-server-Set-ONONBLOCK-on-client-fd.patch bz1285453 - Resolves: bz1285453 An NBD client can cause QEMU main loop to block when...
libguestfs and virt-p2v security, bug fix, and enhancement update
libguestfs 1:1.32.7-3 - Rebase to libguestfs 1.32 in RHEL 7.3 resolves: rhbz1218766 - The full tests are now run after the package has been built. - New tool and subpackage: virt-dib safe diskimage-builder replacement. - New subpackage libguestfs-inspect-icons to reduce dependencies of main pkg s...
httpd security update
2.2.3-92.0.1 - Add the ability to read DH parameters from the first SSLCertificateFile John Haxby orabug 21671194 - fix modssl always performing full renegotiation Joe Jin orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-...
samba security update
3.6.23-30.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-30 - related: 1322686 - Update manpages 3.6.23-29 - related: 1322686 - Update CVE patchset 3.6.23-28 - related: 1322686 - Update manpages 3.6.23-27 - related: 1322686 - Update CVE patchset...
nss security update
3.19.1-8.0.1 - Added nss-vendor.patch to change vendor 3.19.1-8 - Prevent TLS 1.2 Transcript Collision attacks against MD5 in key exchange protocol - Resolves: Bug 1289881...
NetworkManager security, bug fix, and enhancement update
ModemManager 1.1.0-8.git20130913 - rfcomm: don't open the ttys until NetworkManager connects them rh 1251954 1.1.0-7.git20130913 - iface-modem: fix MODEMSTATEISINTERMEDIATE macro rh 1200958 NetworkManager 1.0.6-27.0.1 - fix build error on i386 1:1.0.6-27 build: update vala-tools build requirement...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.5.el6uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010590 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010577 CVE-2014-3673...
Unbreakable Enterprise kernel Security update
kernel-uek 3.8.13-44.1.4.el7uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849334 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849317 CVE-2014-3181 - kvm: vmx: handle invvpid vm exit gracefully Petr Matousek Orabug: 19906300...
php53 and php security update
5.3.3-27.2 - spl: fix use-after-free in ArrayIterator due to object change during sorting. CVE-2014-4698 - spl: fix use-after-free in SPL Iterators. CVE-2014-4670 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - fileinfo: fix incomplete fix for CVE-2012-1571 in...
bash security update
4.1.2-15.1.0.1 - Preliminary fix for CVE-2014-7169...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-35.1.1.el6uek - futex: Make lookuppistate more robust Thomas Gleixner Orabug: 18918552 CVE-2014-3153 - futex: Always cleanup owner tid in unlockpi Thomas Gleixner Orabug: 18918552 CVE-2014-3153 - futex: Validate atomic acquisition in futexlockpiatomic Thomas Gleixner Orabug:...
1
kernel 2.6.18-348.2.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
mysql security update
5.1.67-1 - Update to 5.1.67, for assorted upstream bugfixes including CVEs announced in January 2013 Resolves: 901380...
java-1.7.0-openjdk security update
1.7.0.9-2.3.4.1.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.4.1.el6 - Rewerted to IcedTea 2.3.4 - rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - removed jxmd and idlj to alternatives - make NOT executed with DISABLEINTREEEC=true and UNLIMITEDCRYPTO=true - re-applied...
httpd security, bug fix, and enhancement update
2.2.3-74.0.1.el5 - fix modssl always performing full renegotiation Joe Jin orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-74 - further %post scriptlet fix 752618, 867736 2.2.3-73 - fix %post scriptlet output 752618,...
thunderbird security update
10.0.12-3.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 10.0.12-3 - Update to 10.0.12 ESR...
openssl security and bug fix update
1.0.0-20.3 - fix problem with the SGC restart patch that might terminate handshake incorrectly - fix for CVE-2012-0884 - MMA weakness in CMS and PKCS7 code 802725 - fix for CVE-2012-1165 - NULL read dereference on bad MIME headers 802489...
qt security update
4.6.2-20 - Resolves: rhbz737813 fix multiple flaws in Qt CVE-2011-3193, CVE-2011-3194 4.6.2-19 - Resolves: rhbz679759, missing executable bit in qt-examples binaries - Resolves: rhbz716694, move macros.qt4 to -devel - Resolves: rhbz680088, rpmdiff failure 4.6.2-18 - Resolves: rhbz562132, Malayala...
ecryptfs-utils security update
82-6.3 - do not forget to set the group id in mount.ecryptfsprivate 82-6.2 - fix regression in ecryptfs-setup-private 82-6.1 - security fixes: - privilege escalation via mountpoint race conditions CVE-2011-1831, CVE-2011-1832 - race condition when checking source during mount CVE-2011-1833 - mtab...
firefox security, bug fix, and enhancement update
devhelp: 0.12-21 - Rebuild against xulrunner esc: 1.1.0-12 - Rebuild for xulrunner update firefox: 3.6.4-8.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.4-8 - Fixing NVR 3.6.4-7 - Update to 3.6.4 build7 -...
seamonkey security update
1.0.9-48.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding Redhat ones 1.0.9-48.el4 - More 1.9.0.14 fixes 1.0.9-47.el4 - Added fixes from 1.9.0.14 1.0.9-46.el4 - Added fixes from 1.9.0.13...
thunderbird security update
1.5.0.12-23.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-23 - Added fix for mozbz495057 1.5.0.12-22 - Added build fix 1.5.0.12-21 - Update patchset to fix regression as per 1.9.0.11...
seamonkey security update
devhelp: 0.10-0.10.el4 - Rebuild against newer gecko seamonkey: 1.0.9-26.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html. - Removed corresponding ones of Red Hat. 1.0.9-26.el4 - Add missing patches from 1.8.1.17 1.0.9-25.el4 - Add patches for backported...
php security and bug fix update
4.3.9-3.22.12 - set higher memorylimit in /usr/bin/pear 263501 4.3.9-3.22.11 - update to PEAR 1.4.9, matching RHEL-5 263501 bundle XMLRPC-1.5.0, ConsoleGetopt-1.2, ArchiveTar-1.3.1 fix paths in default pear.conf, installed PEAR registry replace /usr/bin/pear et al with simpler wrapper scripts...
Moderate: tomcat security update
5.5.23-0jpp.3.0.2 - Patch for CVE-2007-3382 and CVE-2007-3385 Resolves: rhbz254155 5.5.23-0jpp.3.0.1 - Patch for CVE-2007-3386 Resolves: rhbz254155...
Moderate: httpd security update
2.2.3-7.el5.0.1 - Marks removal + index page cleanup 2.2.3-7.el5 - add security fixes for CVE-2007-1863, CVE-2007-3304, and CVE-2006-5752 244665...
Important: php security update
5.1.6-12.el5 - add security fix for CVE-2007-1864, SOAP redirect handling issue, FTP CRLF injection issue 235016 5.1.6-11.el5 - add security fix for CVE-2007-1718 235016 5.1.6-9.el5 - add security fix for CVE-2007-1583 235016 - add security fixes for CVE-2007-0455, CVE-2007-1001 235036 5.1.6-7.el...
Moderate: mutt security update
5:1.4.1-12.0.3.el4 - fix overflow in gecos field handling 240176, CVE-2007-2683 5:1.4.1-12.0.2.el4 - buildrequire aspell 5:1.4.1-12.0.1.el4 - validate msgid in APOP authentication 241201, CVE-2007-1558 - fix insecure temp file creation on NFS 211085, CVE-2006-5297...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
iperf3 security update
3.1.7-3.0.1 - Fixes Improper JSON Handling CVE-2024-53580 Orabug: 37495333...
container-tools security update
aardvark-dns 2:1.10.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.10.0 - Related: Jira:RHEL-2110 2:1.9.0-1 - update to https://github.com/containers/aardvark-dns/releases/tag/v1.9.0 - Related: Jira:RHEL-2110 2:1.8.0-1 - update to...
qemu-kvm security update
7.2.0-11.el9 - vfio/migration: Add a note about migration rate limiting Avihai Horon Orabug: 36329758 - vfio/migration: Refactor vfiosavestate return value Avihai Horon Orabug: 36329758 - migration: Don't serialize devices in qemusavevmstateiterate Avihai Horon Orabug: 36329758 - ui/clipboard: ad...
python27:2.7 security update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...
virt:ol and virt-devel:rhel security and enhancement update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...
libreoffice security fix update
1:5.3.6.1-26.0.1 - adjust color palette to match Redwood style. - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.3.6.1-26 - Fix CVE-2022-38745 Empty entry in Java class path - Fix CVE-2023-09...
webkit2gtk3 security update
2.42.5-1 - Update to 2.42.5 Resolves: RHEL-3961 2.42.4-1 - Update to 2.42.4 Resolves: RHEL-3961 Resolves: RHEL-19365 2.42.3-1 - Update to 2.42.3 Resolves: RHEL-3961 2.42.2-1 - Update to 2.42.2 Resolves: RHEL-3961 2.42.1-1 - Update to 2.42.1 Resolves: RHEL-3961 2.42.0-1 - Upgrade to 2.42.0 Resolve...
tigervnc security update
1.13.1-8.3 - Rebuild z-stream target Resolves: RHEL-30985 Resolves: RHEL-31015 1.13.1-8.2 - Fix crash caused by fix for CVE-2024-31083 Resolves: RHEL-30985 1.13.1-8.1 - Fix CVE-2024-31080 tigervnc: xorg-x11-server: Heap buffer overread/data leakage in ProcXIGetSelectedEvents Resolves: RHEL-31015 ...
libxml2 security update
2.9.13-6 - Fix CVE-2024-25062 RHEL-29196...
Unbreakable Enterprise kernel security update
4.14.35-2047.534.3.1 - netfilter: nftables: reject QUEUE/DROP verdict parameters Florian Westphal Orabug: 36251145 CVE-2024-1086...
dnsmasq security update
2.85-14.1 - Fix CVE 2023-50387 and CVE 2023-50868 - Resolves: RHEL-25674 - Resolves: RHEL-25638...
skopeo security update
2:1.13.3-4 - Rebuild with golang 1.20.12: golang:net/http/internal: Denial of Service DoS via Resource Consumption via HTTP requests CVE-2023-39326...
openssh security update
8.7p1-34.3 - Fix Terrapin attack CVE-2023-48795 Resolves: RHEL-19764 - Forbid shell metasymbols in username/hostname CVE-2023-51385 Resolves: RHEL-19822...
kernel security update
4.18.0-513.18.0.2.el89 - net/sched: schhfsc: Ensure inner classes have fsc curve CVE-2023-4623 - net/sched: schhfsc: upgrade 'rt' to 'sc' when it becomes a inner curve CVE-2023-4623 - x86/sev: Check for user-space IOIO pointing to kernel space CVE-2023-46813 - x86/sev: Check IOBM for IOIO...
gimp security update
2:2.99.8-4 - fix CVE-2023-44441 - fix CVE-2023-44442 - fix CVE-2023-44443 - fix CVE-2023-44444...
openssl security update
1:1.1.1k-12 - Backport implicit rejection mechanism for RSA PKCS1 v1.5 to RHEL-8 series a proper fix for CVE-2020-25659 Resolves: RHEL-17696 1:1.1.1k-11 - Fix CVE-2023-5678: Generating excessively long X9.42 DH keys or checking excessively long X9.42 DH keys or parameters may be very slow Resolve...
nghttp2 security update
1.33.0-5 - fix HTTP/2 Rapid Reset CVE-2023-44487 1.33.0-4 - prevent DoS caused by overly large SETTINGS frames CVE-2020-11080...
java-11-openjdk security and bug fix update
1:11.0.21.0.9-1.0.1 - link atomic for ix86 build 1:11.0.21.0.9-1 - Update to jdk-11.0.21+9 GA - Update release notes to 11.0.21+9 - Remove system crypto policy patch which doesn't belong on RHEL 7 with no system policies - Update generatetarball.sh to be closer to upstream vanilla script inc. no...