9182 matches found
.NET Core on Red Hat Enterprise Linux 8 security update
2.1.515-1 - Update to .NET Core SDK 2.1.515 and Runtime 2.1.19 - Resolves: RHBZ1843680...
thunderbird security update
68.8.0-1.0.1.el82 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.8.0-1 - Update to 68.8.0 build2...
firefox security update
68.7.0-2.0.1.el81 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.7.0-2 - Update to 68.7.0 build3 68.6.1-1 - Update to 68.6.1 ESR Wed Mar 04 2020 Jan Hora...
nss security update
3.44.0-9 - Fix out-of-bounds write in NSCEncryptUpdate 1775912...
python27:2.7 security and bug fix update
...
sssd security, bug fix, and enhancement update
2.2.0-19 - Resolves: rhbz1712875 - Old kerberos credentials active instead of valid new ones kcm 2.2.0-18 - Resolves: rhbz1744134 - New defect found in sssd-2.2.0-16.el8 - Also sync. kcm multihost tests with master 2.2.0-17 - Resolves: rhbz1676385 - pamsss with smartcard auth does not create gnom...
Unbreakable Enterprise kernel security update
4.1.12-124.32.3 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 26941755 CVE-2017-14991 - failover: allow name change on IFFUP slave interfaces Si-Wei Liu Orabug: 29707258 - Revert 'netfailover: delay taking over primary device to accommodate udevd renaming' Si-Wei...
http-parser security update
2.7.1-8 - Backport needed test fixes - Related: rhbz1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length header values rhel-7 2.7.1-7 - Resolves: rhbz1666024 - CVE-2018-7159 http-parser: nodejs: HTTP parser allowed for spaces inside Content-Length head...
thunderbird security update
60.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.0-1 - Update to 60.7.0...
thunderbird security and bug fix update
60.8.0-1.0.1 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...
firefox security update
60.5.0-2.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.5.0-2 - Updated to 60.5.0 ESR build2 60.5.0-1 - Updated to 60.5.0 ESR build1 60.4.0-3 - Fixing fontconfig warnings rhbz1601475 60.4.0-2 - Added pipewire patch from Tomas Popela...
kubernetes security update
1.9.11-2.1.1 - Fix kubeadm-registry.sh - Use golang 1.9.3 - CVE-2018-1002105 Handle error responses from backends - Bump to v1.9.11...
bind security update
32:9.9.4-61.1 - Fix CVE-2018-5740...
qemu-kvm security and bug fix update
1.5.3-156.el75.5 - kvm-multiboot-bssendaddr-can-be-zero.patch bz1549824 - kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch bz1549824 - kvm-multiboot-Use-header-names-when-displaying-fields.patch bz1549824 - kvm-multiboot-fprintf-stderr.-errorreport.patch bz1549824 -...
glibc security update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
git security update
1.8.3.1-14 - Backport fix for CVE-2018-1123 - Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.7 - x86/entry/64: Dont use IST entry for BP stack Andy Lutomirski CVE-2018-8897...
Unbreakable Enterprise kernel security update
2.6.39-400.298.6 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947612 CVE-2018-100199 2.6.39-400.298.5 - xen-netfront: fix rx stall when reqprodpvt goes back to more than zero again Dongli Zhang Orabug: 25053376 - x86/IBRS: Remove support for IBRSENABLEDUSER...
wpa_supplicant security update
1:0.7.3-9.2 - Fix backport errors CVE-2017-13077, CVE-2017-13080 1:0.7.3-9.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082...
Unbreakable Enterprise kernel security update
4.1.12-103.7.3 - brcmfmac: fix possible buffer overflow in brcmfcfg80211mgmttx Tim Tianyang Chen Orabug: 26943541 CVE-2017-7541 4.1.12-103.7.2 - rebuild bumping release...
Unbreakable Enterprise kernel security update
2.6.39-400.297.8 - Bluetooth: Properly check L2CAP config option output buffer length Ben Seri Orabug: 26796428 CVE-2017-1000251 2.6.39-400.297.7 - xen: fix bio vec merging Roger Pau Monne Orabug: 26645562 CVE-2017-12134 - fs/exec.c: account for argv/envp pointers Kees Cook Orabug: 26638926...
kernel security update
3.10.0-514.21.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.2 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
openjpeg security update
1.5.1-16 - Revert previous changes in patch for CVE-2016-5159 - Fix memory leaks Related: 1419772 1.5.1-15 - Add two more allocation checks to patch for CVE-2016-5159 Related: 1419772 1.5.1-14 - Fix CWE-825 errors in patch for CVE-2016-5158 Related: 1419772 1.5.1-13 - Add patches for CVE-2016-513...
kvm security update
83-277.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-277.el511 - kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch bz1421564 - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop.patch bz1421564 -...
kernel-uek security update
kernel-uek 4.1.12-37.6.1 - vfs: rename: check backing inode being equal Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - vfs: add vfsselectinode helper Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - ovl: verify upper dentry before unlink and rename Miklos Szeredi Orabu...
ImageMagick security update
6.7.2.7-4 - Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716 and CVE-2016-3717...
Unbreakable Enterprise kernel security update
2.6.39-400.278.2 - sctp: Prevent soft lockup when sctpaccept is called during a timeout event Karl Heiss Orabug: 23222773 CVE-2015-8767...
java-1.7.0-openjdk security update
1:1.7.0.101-2.6.6.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.101-2.6.6.1 - added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Fix ztos handling in templateTableppc64.cpp to be same as others in 7. - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Bum...
samba3x security update
3.6.23-12.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 19973497 3.6.23-12 - related: 1322685 - Update CVE patchset 3.6.23-11 - related: 1322685 - Update CVE patchset 3.6.23-10 - resolves: 1322685 - Fix CVE-2015-5370 - resolves: 1322685 - Fix CVE-2016-2110 -...
389-ds-base security and bug fix update
1.3.4.0-26 - release 1.3.4.0-26 - Resolves: bug 1299346 - deadlock on connection mutex DS 48341 1.3.4.0-25 - release 1.3.4.0-25 - Resolves: bug 1299757 - CVE-2016-0741 389-ds-base: Worker threads do not detect abnormally closed connections causing DoS 1.3.4.0-24 - release 1.3.4.0-24 - Resolves: b...
qemu-kvm security update
0.12.1.2-2.479.el67.3 - kvm-net-pcnet-add-check-to-validate-receive-data-size-CV.patch bz1287950 - kvm-pcnet-fix-rx-buffer-overflow-CVE-2015-7512.patch bz1287950 - Resolves: bz1287950 CVE-2015-7504 CVE-2015-7512 qemu-kvm: various flaws rhel-6.7.z...
cups-filters security, bug fix, and enhancement update
1.0.35-21 - Fix heap-based buffer overflow in texttopdf filter bug 1241242, CVE-2015-3258, CVE-2015-3279. 1.0.35-20 - Improvements to cups-browsed efficiency patch bug 1191691. 1.0.35-18 - Fix segfault in texttopdf filter bug 1194263. - Improve cups-browsed efficiency bug 1191691. - Fetch printer...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.12uek - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145596 CVE-2015-5156...
nss and nspr security update
nspr 4.10.8-2 - Resolves: Bug 1269359 - CVE-2015-7183 - nspr: heap-buffer overflow in PLARENAALLOCATE can lead to crash under ASAN, potential memory corruption rhel-5.11.z nss 3.19.1-2 - Resolves: Bug 1269354 - CVE-2015-7182 CVE-2015-7181...
bind97 security update
32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
jakarta-taglibs-standard security update
0:1.1.1-11.7 - Gracefully handle parsers without FSP support e.g. Java 5 GCJ - Resolves: CVE-2015-0254 0:1.1.1-11.6 - Prevent XXE and RCE in JSTL XML tags - Apply correction for previous CVE-2015-0254 patch prevent XXE in - Resolves: CVE-2015-0254 0:1.1.1-11.5 - Prevent XXE and RCE in JSTL XML ta...
openssl security update
1.0.1e-42.8 - improved fix for CVE-2015-1791 - add missing parts of CVE-2015-0209 fix for corectness although unexploitable 1.0.1e-42.7 - fix CVE-2014-8176 - invalid free in DTLS buffering code - fix CVE-2015-1789 - out-of-bounds read in X509cmptime - fix CVE-2015-1790 - PKCS7 crash with missing...
krb5 security, bug fix and enhancement update
1.12.2-14 - fix for kinit -C loops 1184629, MIT/krb5 issue 243, 'Do not loop on principal unknown errors'. 1.12.2-13 - fix for CVE-2014-5352 1179856 'gssprocesscontexttoken incorrectly frees context MITKRB5-SA-2015-001' - fix for CVE-2014-9421 1179857 'kadmind doubly frees partial deserialization...
firefox security update
firefox 31.5.0-2.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 31.5.0-2 - Update to 31.5.0 ESR Build 2 xulrunner 31.5.0-1.0.1-el70 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE2...
Unbreakable Enterprise kernel security update
2.6.39-400.215.15 - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224060 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski Orabug: 20224028 CVE-2014-9090 CVE-2014-9322...
glibc security and bug fix update
2.17-55.0.4.el70.3 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. Jose E. Marchesi 2.17-55.3 - Fix wordexp to honour WRDENOCMD CVE-2014-7817, 1170118...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55.1.1 - ALSA: control: Protect user controls against concurrent access Lars-Peter Clausen Orabug: 20192540 CVE-2014-4652 - target/rd: Refactor rdbuilddevicespace + rdreleasedevicespace Nicholas Bellinger Orabug: 20192516 CVE-2014-4027 - HID: logitech: perform bounds checking on...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.71-2.5.3.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1:1.7.0.71-2.5.3.1 - Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. -...
Unbreakable Enterprise kernel security update
3.8.13-44.1.1 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590596 CVE-2014-3917...
tomcat security update
0:7.0.42-5 - Related: CVE-2013-4286 - Related: CVE-2013-4322 - Related: CVE-2014-0050 - revisit patches for above...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.1.3.el6uek - l2tp: fix an unprivileged user to kernel privilege escalation Sasha Levin Orabug: 19229497 CVE-2014-4943 CVE-2014-4943 - ptrace,x86: force IRET path after a ptracestop Tejun Heo Orabug: 19230689 CVE-2014-4699 - net: flowdissector: fail on evil iph-ihl Jason Wang...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.415.el6 - kvm-target-i386-don-t-migrate-steal-time-MSR-on-older-ma.patch bz1022821 - Resolves: bz1022821 live-migration from RHEL6.5 to RHEL6.4.z fails with 'error while loading state for instance 0x0 of device 'cpu'' 0.12.1.2-2.414.el6 -...
kernel security and bug fix update
kernel 2.6.18-371.1.2.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
java-1.7.0-openjdk security update
1.7.0.45-2.4.3.2.0.1.el6 - Update DISTRONAME in specfile 1.7.0.40-2.4.3.1.el6 - sync with rhel 6.5 to icedtea 2.4 because of pernament tck failures - nss kept disabled - Resolves: rhbz1017626 1.7.0.25-2.3.13.4.el6 - added back patch408 tck201310155.patch, to resolve one of tck failures - Resolves...
glibc security and bug fix update
2.5-118.2 - Fix integer overflows in valloc and memalign. 1011804. 2.5-118.1 - Add support for newer L3 caches on x86-64 and correctly count the number of hardware threads sharing a cacheline 1011424...