8998 matches found
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
nss 3.16.2.3-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2.3-2 - Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 3.16.2.3-1 - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.11uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010592 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010579 CVE-2014-3673...
java-1.6.0-openjdk security update
1:1.6.0.1-6.1.13.3 - updated to icedtea 1.13.3 - updated to openjdk-6-src-b31-15apr2014 - renmoved upstreamed patch7, 1.13fixes.patch - renmoved upstreamed patch9, 1051245.patch - Resolves: rhbz1099563...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.1-5.1.13.3 - updated to icedtea 1.13.3 - updated to openjdk-6-src-b31-15apr2014 - renmoved upstreamed patch7, 1.13fixes.patch - Resolves: rhbz1085009...
mysql security and bug fix update
5.1.73-3 - Fixes for CVE-2014-0001 Resolves: 1055880 5.1.73-2 - Make mysqld init script more robust and ignore existing but non-being-used unix socket file Resolves: 1058719 5.1.73-1 - Update to MySQL 5.1.73, for various fixes described at...
nss and nspr security, bug fix, and enhancement update
nspr 4.10.2-2 - Fix changelog comments - Resolves: rhbz1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws rhel-5.10 4.10.2-1 - Update to nspr-4.10.2 - Remove an unused patch - Resolves: rhbz1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws rhel-5.10 4.10.0...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.2-4 - Resolves: rhbz924741 - Rebase to nspr-4.9.5 nss 3.14.3-6 - Resolves: rhbz986969 - nssutilReadSecmodDB leaks memory 3.14.3-5 - Define -DNOFORKCHECK when compiling softoken for ABI compatibility - Remove the unused and obsolete nss-nochktest.patch - Resolves: rhbz949845 - RFERHEL5...
perl security update
4:5.10.1-130 - Resolves: 915692 - CVE-2012-5526 newline injection due to improper CRLF escaping in Set-Cookie and P3P headers - Resolves: 915692 - CVE-2012-6329 possible arbitrary code execution via Locale::Maketext - Resolves: 915692 - CVE-2013-1667 DoS in rehashing code...
openchange security, bug fix and enhancement update
evolution-mapi 0.28.3-12 - Add patch for RH bug 903241 Double-free on message copy/move 0.28.3-11 - Add patch for RH bug 902932 Cannot connect with latest samba 0.28.3-10 - Drop multilib by obsoleting evolution-mapi 0.28.3-9 RH bug 886914. 0.28.3-9 - Adapt to OpenChange 1.0 RH bug 767678. 0.28.3-...
firefox security update
firefox 17.0.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-4 - Added NM preferences 17.0.2-3 - Update to 17.0.2 ESR 17.0.1-2 - Update to 17.0.1 ESR 17.0-1 - Update to 17.0 ESR 17.0-0.2.b4 - Update to 17 Beta 4...
java-1.7.0-openjdk security update
1.7.0.9-2.3.4.1.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.4.1.el6 - Rewerted to IcedTea 2.3.4 - rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - removed jxmd and idlj to alternatives - make NOT executed with DISABLEINTREEEC=true and UNLIMITEDCRYPTO=true - re-applied...
httpd security, bug fix, and enhancement update
2.2.3-74.0.1.el5 - fix modssl always performing full renegotiation Joe Jin orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-74 - further %post scriptlet fix 752618, 867736 2.2.3-73 - fix %post scriptlet output 752618,...
firefox security update
firefox 10.0.12-1.0.1.el63 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 10.0.12-1 - Update to 10.0.12 ESR xulrunner 10.0.12-1.0.1.el63 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.12-1 - Update to 10.0.12 ESR...
Unbreakable Enterprise kernel security update
2.6.32-300.32.3 - dl2k: Clean up rioioctl Stephan Mueller Orabug: 14675306 CVE-2012-2313 - hugetlb: fix resvmap leak in error path Christoph Lameter Orabug: 14676403 CVE-2012-2390 - rds: set correct msgnamelen Jay Fenlason Orabug: 14676504 CVE-2012-3430...
java-1.6.0-openjdk security update
1.6.0.0-1.27.1.10.8.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.27.1.10.8 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages added also to package.definition - Resolves:...
glibc security and bug fix update
2.12-1.47.el62.9 - Always use another area after a failed allocation in the main arena 795328 - Remove sse3 memcpy 695812 changes 799259 2.12-1.47.el62.8 - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794815 2.12-1.47.el62.7 - Fix locking on malloc family retry paths...
xen security and bug fix update
3.0.3-135.el58.2 - Fix broken timestamp log rhbz 797836 3.0.3-135.el58.1 - qemu-dm/e1000: bounds packet size against buffer size rhbz 786862 - Use correct expansion in xen-network-common.sh rhbz 797191...
libvorbis security update
1.2.3-4.1 - fix CVE-2012-0444 787076...
openssl security update
0.9.8e-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4109 - double free in policy checks 771771 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4619 - SGC restart DoS attac...
glibc security, bug fix, and enhancement update
2.12-1.47 - Don't start AVC thread until credentials are installed 700507 2.12-1.46 - Update systemtaparches 2.12-1.45 - Update configure script 2.12-1.44 - Add gdb hooks 711927 2.12-1.43 - Don't assume ATPAGESIZE is always available 739184 - Define IPMULTICASTALL 738763 2.12-1.42 - Avoid race...
libxml2 security and bug fix update
2.7.6-4.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4 - Fixes another XPath problem CVE-2011-2834 - Resolves: rhbz732335 2.7.6-3 - Fixes various other issues in 2.7.6 XPath evaluation - Resolves: rhbz732335 2.7.6-2 - Fix a...
perl security update
4:5.8.8-32.0.1.el57.6 - Up release number and rebuild 4:5.8.8-32.el5.6 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fixed by security patch based on commit from version 3.50 - Related: rhbz743626 4:5.8.8-32.el5.5 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fix...
postgresql84 security update
8.4.9-1.el57.1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740739...
ecryptfs-utils security update
82-6.3 - do not forget to set the group id in mount.ecryptfsprivate 82-6.2 - fix regression in ecryptfs-setup-private 82-6.1 - security fixes: - privilege escalation via mountpoint race conditions CVE-2011-1831, CVE-2011-1832 - race condition when checking source during mount CVE-2011-1833 - mtab...
seamonkey security update
1.0.9-60.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-60.el4 - Added fixes from 1.9.1.11 1.0.9-59.el4 - Added fix for mozbz570451...
firefox security, bug fix, and enhancement update
devhelp: 0.12-21 - Rebuild against xulrunner esc: 1.1.0-12 - Rebuild for xulrunner update firefox: 3.6.4-8.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.4-8 - Fixing NVR 3.6.4-7 - Update to 3.6.4 build7 -...
squid security and bug fix update
7:2.6.STABLE21-6 - Resolves: 561828 - CVE-2009-2855 CVE-2010-0308 squid various flaws rhel-5.5 7:2.6.STABLE21-5 - Resolves: 538738 - improved patch 7:2.6.STABLE21-4 - Resolves: 521926 - squid 'stop after stop' is not LSB compliant - Resolves: 496170 - Add arp filter option - Resolves: 516245 -...
php security update
5.1.6-24.5 - add security fix for CVE-2009-4142 543469 5.1.6-24.4 - build fix pdomysql on biarch systems 543469 5.1.6-24.3 - add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292, CVE-2009-3546 CVE-2009-4017 541597 - add build fix for mysqli on some biarch systems 543469...
wget security update
1.11.4-3 - add fix for CVE-2009-3490, incorrect verification of SSL certificate with NUL in name...
httpd security and bug fix update
2.0.46-75.0.1.ent - use oracle index page oracleindex.html - remove logos in poweredby.gif and poweredbyrh.png - add apr-configure.patch 2.0.46-75.ent - add security fix for CVE-2009-1891 515705 - include fix for upstream PR 39605 2.0.46-74.ent - add security fixes for CVE-2009-2412 515705 - add...
samba security and bug fix update
3.0.28-1.el52.1 - Security fix for CVE-2008-1105 - Fix join verification - Fix smb signing - resolves: CVE-2008-1105 - resolves: 447380 - resolves: 444637...
Moderate: tomcat security update
5.5.23-0jpp.3.0.3 - Patch for CVE-2007-5342 Resolves: bz 427776 - Patch for CVE-2007-5461 Resolves: bz 334561...
Moderate: tcltk security update
8.3.5-92.8 - CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 - problems: regexp, GIF overflow and also GIF overflow Resolves: 432511...
Important: cups security update
1.2.4-11.14:.4 - Prevent double-free when a browsed class has the same name as a printer or vice versa bug 433766, STR 2656. 1.2.4-11.14:.3 - pdftops: Fix invalid dereference from bad Info object found during testing of bug 356571. 1.2.4-11.14:.2 - Applied patch to fix CVE-2007-4045 bug 356571. -...
Critical: samba security update
3.0.25b-0.el51.1 - Security fix for CVE-2007-4138 - Security fix for CVE-2007-4572 - Security fix for CVE-2007-5398 - Multilib Fix - resolves: 351501 - resolves: 350761 - resolves: 359151 - resolves: 356851 -------------- next part -------------- An HTML attachment was scrubbed... URL:...
Important: tetex security update
2.0.2-22.0.1.EL4.10 - fix t1lib flaw CVE-2007-4033 356691 Resolves: 356691 2.0.2-22.0.1.EL4.9 - fix CVE-2007-4352 CVE-2007-5392 CVE-2007-5393, various xpdf flaws 356691 Resolves: 356691...
Important openssl security update
0.9.7a-43.14 - fix CVE-2006-2937 - mishandled error on ASN.1 parsing 207276 - fix CVE-2006-2940 - parasitic public keys DoS 207274 - fix CVE-2006-3738 - buffer overflow in SSLgetsharedciphers 206940 - fix CVE-2006-4343 - sslv2 client DoS 206940 0.9.7a-43.11 - fix CVE-2006-4339 - prevent attack on...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
Important php security update
4.3.9-3.22 - avoid default pear.conf change 4.3.9-3.21 - add security fix for CVE-2006-5465 from upstream 4.3.9-3.20 - add fix for phperror varargs use 199947 4.3.9-3.18 - rebuild 4.3.9-3.17 - add security fix from upstream: CVE-2006-4484 - add metaphone fix 205714 4.3.9-3.16 - add security fixes...
firefox security update
128.6.0-1.0.1 - Update to 128.6.0 build1 Orabug: 37460830CVE-2025-0237CVE-2025-0238 CVE-2025-0239CVE-2025-0240CVE-2025-0241CVE-2025-0242CVE-2025-0243 - Enable PipeWire camera support for RHEL 10 + backport upstream fixes for PipeWire camera support Fixes: RHEL-64749...
kernel security update
5.14.0-427.33.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
kernel security and bug fix update
5.14.0-427.24.14.OL9 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug:...
edk2 security update
Tue Feb 27 2024 Aaron Young - Create new 20240227 release for OL9 which includes the following fixed CVEs: CVE-2023-45229 CVE-2023-45230 CVE-2023-45231 CVE-2023-45232 CVE-2023-45233 CVE-2023-45234 CVE-2023-45235 CVE-2022-36763 CVE-2022-36764 CVE-2022-36765 - Update to OpenSSL 3.0.10 which include...
qemu-kvm security update
7.2.0-11.el9 - vfio/migration: Add a note about migration rate limiting Avihai Horon Orabug: 36329758 - vfio/migration: Refactor vfiosavestate return value Avihai Horon Orabug: 36329758 - migration: Don't serialize devices in qemusavevmstateiterate Avihai Horon Orabug: 36329758 - ui/clipboard: ad...
virt:ol and virt-devel:rhel security and enhancement update
hivex libguestfs 1.44.0-9.0.2 - libguestfs.spec: Add btrfs-progs RPM to appliance Orabug: 35634755 1.44.0-9.0.1 - Replace upstream references from description tag - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.44.0-9 - Fix...
mysql:8.0 security update
mecab mecab-ipadic mysql 8.0.36-1 - Update to MySQL 8.0.36 8.0.35-2 - Fix int-conversion type error in memcached 8.0.35-1 - Update to MySQL 8.0.35 - Remove patches now upstream 8.0.34-1 - Update to MySQL 8.0.34 - Add patch from upstream bug110569 - Add patch to fix binlog format issue - Use...
container-tools:ol8 security update
aardvark-dns buildah 1:1.31.3-3.0.1 - Rebuild with newer dependencies cockpit-podman conmon containernetworking-plugins 1:1.3.0-8.0.1 - Rebuild with newer dependencies containers-common 2:1-70.0.2 - Rebuild with newer dependencies container-selinux criu crun fuse-overlayfs libslirp netavark...
openssl security update
1:3.0.7-25.0.1 - Replace upstream references Orabug: 34340177 1:3.0.7-25 - Provide relevant diagnostics when FIPS checksum is corrupted Resolves: RHEL-5317 - Don't limit using SHA1 in KDFs in non-FIPS mode. Resolves: RHEL-5295 - Provide empty evpproperties section in main OpenSSL configuration fi...
python3 security update
3.6.8-56.0.1.2 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-56.2 - Security fix for CVE-2022-48560 Resolves: rhbz2249755 - Security fix for CVE-2022-48564 Resolves: rhbz2249750...
python27:2.7 security and bug fix update
babel 2.5.1-10 - Fix CVE-2021-20095 Resolves: rhbz1955615 2.5.1-9 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 2.5.1-8 - Fix unversioned requires/buildrequires - Resolves: rhbz1628242 2.5.1-7 - Remove unversioned binaries - Resolves: rhbz1613343 2.5.1-6 - Make...