9182 matches found
Unbreakable Enterprise kernel security update
4.1.12-124.14.2 - scsi: iscsitcp: set BDICAPSTABLEWRITES when data digest enabled Jianchao Wang Orabug: 27726302 - block: fix biowillgap for first bvec with offset Ming Lei Orabug: 27775588 - block: relax check on sg gap Ming Lei Orabug: 27775588 - block: don't optimize for non-cloned bio in...
qemu-kvm security update
0.12.1.2-2.503.el69.5 - kvm-cirrus-fix-oob-access-in-mode4and5-write-functions.patch bz1501296 - Resolves: bz1501296 CVE-2017-15289 qemu-kvm: Qemu: cirrus: OOB access issue in mode4and5 write functions rhel-6.9.z...
thunderbird security update
52.4.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.4.0-2 - Update to 52.4.0 b2...
samba security update
3.6.23-45.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-45 - resolves: 1491210 - CVE-2017-2619 CVE-2017-12150 CVE-2017-12163...
bluez security update
4.66-2 - sdpd heap fixes Resolves: 1490008...
Unbreakable Enterprise kernel security update
2.6.39-400.297.6 - l2tp: fix racy SOCKZAPPED flag check in l2tpip,6bind Guillaume Nault Orabug: 26586050 CVE-2016-10200 - xfs: fix two memory leaks in xfsattrlist.c error paths Mateusz Guzik Orabug: 26586024 CVE-2016-9685 - KEYS: Disallow keyrings beginning with '.' to be joined as session keyrin...
gnutls security, bug fix, and enhancement update
3.3.26-9 - Address crash in OCSP status request extension, by eliminating the unneeded parsing CVE-2017-7507, 1455828 3.3.26-7 - Address interoperability issue with 3.5.x 1388932 - Reject CAs which are both trusted and blacklisted in trust module 1375303 - Added new functions to set issuer and...
glibc security, bug fix, and enhancement update
2.17-196 - Avoid large allocas in the dynamic linker 1452721 2.17-195 - Rounding issues on POWER 1457177 2.17-194 - Use a built-in list of system call names 1439165 2.17-193 - Inhibit FMA while compiling sqrt, pow 1413638 2.17-192 - Exclude lock elision support for older Intel hardware with Intel...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.7 - mm: fix new crash in unmappedareatopdown Hugh Dickins Orabug: 26326143 CVE-2017-1000364 - mm: larger stack guard gap, between vmas Hugh Dickins Orabug: 26326143 CVE-2017-1000364...
bash security and bug fix update
4.1.2-48 - Fix signal handling in read builtin Resolves: 1421926 4.1.2-47 - CVE-2016-9401 - Fix crash when '-' is passed as second sign to popd Resolves: 1396383 4.1.2-46 - CVE-2016-7543 - Fix for arbitrary code execution via SHELLOPTS+PS4 variables Resolves: 1379630 4.1.2-45 - CVE-2016-0634 - Fi...
squid security, bug fix, and enhancement update
7:3.5.20-2 - Resolves: 1378025 - hostverifystrict only accepts lowercase arguments 7:3.5.20-1 - Resolves: 1273942 - Rebase squid to latest mature 3.5 version 3.5.20 7:3.5.10-9 - Related: 1349775 - Provide migration tools needed due to rebase to squid 3.5 as a separate sub-package 7:3.5.10-8 -...
java-1.7.0-openjdk security update
1:1.7.0.111-2.6.7.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.111-2.6.7.1 - Bump to jdk7u111 b01 to fix TCK regressions 7081817 & 8162344 - Resolves: rhbz1350038 1:1.7.0.111-2.6.7.0 - Bump to 2.6.7 and u111b00. - Update SystemTap bundle with fix for...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.5.1 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23520741 - ocfs2: bump up o2cb network protocol version Junxiao Bi Orabug: 23515810 - IB/security: Restrict use of the write interface Jason Gunthorpe Orabug: 23283954 CVE-2016-4565...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-37.2.2 - sctp: Prevent soft lockup when sctpaccept is called during a timeout event Karl Heiss Orabug: 23222731 CVE-2015-8767...
bind97 security update
32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286...
ruby193-ruby security update
1.9.3.484-50.0.1 - fix build issue: self test report 'dh key to small' 1.9.3.484-50 - Fix off-by-one stack-based buffer overflow in the encodes function CVE-2014-4975. Related: rhbz1164004 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Related: rhbz1164004 - REXML...
ntp security update
4.2.6p5-5.el67.4 - don't accept server/peer packets with zero origin timestamp CVE-2015-8138...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.2.4 - KEYS: Don't permit requestkey to construct a new keyring David Howells Orabug: 22373442 CVE-2015-7872 3.8.13-118.2.3 - dcache: Handle escaped paths in prependpath Eric W. Biederman Orabug: 22373283 - vfs: Test for and handle paths that are unreachable from their mntroo...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.5.2 - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145600 CVE-2015-5156 3.8.13-98.5.1 - netdev: fix NETIFFGSOUDPTUNNELBIT enum shift in i40e driver import Todd Vierling Orabug: 22066176...
sqlite security update
3.6.20-1.2 - Add patch for compiler warnings highlighted by rpmdiff. Related: rhbz1244727 3.6.20-1.el67.1 - fix for CVE-2015-3416 Resolves: 1244727...
krb5 security update
1.10.3-37 - fix for CVE-2014-5355 1193939 'krb5: unauthenticated denial of service in recvauthcommon and others' 1.10.3-36 - fix for CVE-2014-5353 1174543 'Fix LDAP misused policy name crash' 1.10.3-35 - Changelog fixes to make errata subsystem happy. 1.10.3-34 - fix for CVE-2014-5352 1179856...
389-ds-base security, bug fix, and enhancement update
1.3.3.1-13 - release 1.3.3.1-13 - Resolves: bug 1183655 - Fixed Covscan FORWARDNULL defects DS 47988 1.3.3.1-12 - release 1.3.3.1-12 - Resolves: bug 1182477 - Windows Sync accidentally cleared rawentry DS 47989 - Resolves: bug 1180325 - upgrade script fails if /etc and /var are on different file...
samba security update
4.1.1-38 - resolves: 1194132 - CVE-2015-0240: RCE in netlogon server...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.13uek - net: guard tcpsetkeepalive to tcp sockets Eric Dumazet Orabug: 20224099 CVE-2012-6657 - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224061 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski...
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
nss 3.16.2.3-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2.3-2 - Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 3.16.2.3-1 - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.11uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010592 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010579 CVE-2014-3673...
tomcat6 security and bug fix update
0:6.0.24-72 - Related: CVE-2014-0075 - rebuild to generate javadoc - correctly. previous build generated 0-length javadoc 0:6.0.24-69 - Related: CVE-2014-0075 incomplete 0:6.0.24-68 - Related: CVE-2013-4322. arches needs to be specified - as in arches noarch, so docs/webapps will produce - full...
java-1.6.0-openjdk security and bug fix update
1:1.6.0.1-5.1.13.3 - updated to icedtea 1.13.3 - updated to openjdk-6-src-b31-15apr2014 - renmoved upstreamed patch7, 1.13fixes.patch - Resolves: rhbz1085009...
nss and nspr security, bug fix, and enhancement update
nspr 4.10.2-2 - Fix changelog comments - Resolves: rhbz1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws rhel-5.10 4.10.2-1 - Update to nspr-4.10.2 - Remove an unused patch - Resolves: rhbz1032466 - CVE-2013-5605 CVE-2013-5606 CVE-2013-1741 nss: various flaws rhel-5.10 4.10.0...
Unbreakable Enterprise Kernel security update
2.6.39-400.211.2 - fs/compatioctl.c: VIDEOSETSPUPALETTE missing error check Kees Cook Orabug: 17842208 CVE-2013-1928 - Bluetooth: RFCOMM - Fix info leak via getsockname Mathias Krause Orabug: 17842129 CVE-2012-6545 - Bluetooth: RFCOMM - Fix info leak in ioctlRFCOMMGETDEVLIST Mathias Krause Orabug...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.2-4 - Resolves: rhbz924741 - Rebase to nspr-4.9.5 nss 3.14.3-6 - Resolves: rhbz986969 - nssutilReadSecmodDB leaks memory 3.14.3-5 - Define -DNOFORKCHECK when compiling softoken for ABI compatibility - Remove the unused and obsolete nss-nochktest.patch - Resolves: rhbz949845 - RFERHEL5...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.29.2uek - Bluetooth: RFCOMM - Fix missing msgnamelen update in rfcommsockrecvmsg Mathias Krause Orabug: 17173824 CVE-2013-3225 - Bluetooth: fix possible info leak in btsockrecvmsg Mathias Krause Orabug: 17173824 CVE-2013-3224 - atm: update msgnamelen in vccrecvmsg Mathias...
openchange security, bug fix and enhancement update
evolution-mapi 0.28.3-12 - Add patch for RH bug 903241 Double-free on message copy/move 0.28.3-11 - Add patch for RH bug 902932 Cannot connect with latest samba 0.28.3-10 - Drop multilib by obsoleting evolution-mapi 0.28.3-9 RH bug 886914. 0.28.3-9 - Adapt to OpenChange 1.0 RH bug 767678. 0.28.3-...
java-1.7.0-openjdk security update
1.7.0.9-2.3.5.3.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.5.3.el63 - Sync logging fixes with upstream icedtea7-forest and jdk7u 1.7.0.9-2.3.5.1.el63 - Removed 6664509 backout and added 8005615 to fix the issue 1.7.0.9-2.3.5.el63.1 - Backed out 6664509 and 7201064.patch which cause...
gnome-vfs2 security and bug fix update
2.16.2-10.el5 - Prevent trash applet crashing 848822 2.16.2-9.el5 - Prevent deleting items linking out of the trash 586015 - Do not stat every file on an ClearCase mvfs filesystem 822817 - Do not silently skip directory having no read permission during copy 772307 - Allow trashing symlink to...
kernel security, bug fix, and enhancement update
kernel 2.6.18-308.24.1.el5 - Revert: scsi sg: fix races during device removal Ewan Milne 868950 861004 2.6.18-308.23.1.el5 - net bnx2x: Add remote-fault link detection Alexander Gordeev 870120 796905 - net bnx2x: Cosmetic changes Alexander Gordeev 870120 796905 - net rds-ping cause kernel panic...
thunderbird security update
10.0.11-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 10.0.11-1 - Update to 10.0.11 ESR...
java-1.6.0-openjdk security update
1.6.0.0-1.27.1.10.8.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.27.1.10.8 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages added also to package.definition - Resolves:...
firefox security update
firefox: 10.0.5-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.5-1 - Update to 10.0.5 ESR xulrunner: 10.0.5-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.5-1 - Update to 10.0.5 ESR 10.0.4-2 - Adde...
thunderbird security update
1.5.0.12-46.0.1.el4 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-46 - Added fixes from 1.9.2.26...
seamonkey security update
1.0.9-78.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-78.el4 - Added fixes from 1.9.2.26...
openssl security update
0.9.8e-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4109 - double free in policy checks 771771 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4619 - SGC restart DoS attac...
tomcat5 security update
0:5.5.23-0jpp.22 - Resolves: CVE-2011-0013 rhbz 675931 - Resolves: CVE-2010-3718 rhbz 675931 - Resolves: CVE-2011-1184 rhbz 744983 - Resolves: CVE-2011-2204 rhbz 719181...
perl security update
4:5.8.8-32.0.1.el57.6 - Up release number and rebuild 4:5.8.8-32.el5.6 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fixed by security patch based on commit from version 3.50 - Related: rhbz743626 4:5.8.8-32.el5.5 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fix...
postgresql84 security update
8.4.9-1.el57.1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740739...
openswan security update
2.6.24-8.1 Resolves: 635058 CVE-2010-3302 CVE-2010-3308 CVE-2010-2752 CVE-2010-3753...
kernel security and bug fix update
2.6.9-89.31.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
seamonkey security update
1.0.9-60.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-60.el4 - Added fixes from 1.9.1.11 1.0.9-59.el4 - Added fix for mozbz570451...
squid security and bug fix update
7:2.6.STABLE21-6 - Resolves: 561828 - CVE-2009-2855 CVE-2010-0308 squid various flaws rhel-5.5 7:2.6.STABLE21-5 - Resolves: 538738 - improved patch 7:2.6.STABLE21-4 - Resolves: 521926 - squid 'stop after stop' is not LSB compliant - Resolves: 496170 - Add arp filter option - Resolves: 516245 -...
php security update
5.1.6-24.5 - add security fix for CVE-2009-4142 543469 5.1.6-24.4 - build fix pdomysql on biarch systems 543469 5.1.6-24.3 - add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292, CVE-2009-3546 CVE-2009-4017 541597 - add build fix for mysqli on some biarch systems 543469...