8998 matches found
openjpeg security update
1.5.1-16 - Revert previous changes in patch for CVE-2016-5159 - Fix memory leaks Related: 1419772 1.5.1-15 - Add two more allocation checks to patch for CVE-2016-5159 Related: 1419772 1.5.1-14 - Fix CWE-825 errors in patch for CVE-2016-5158 Related: 1419772 1.5.1-13 - Add patches for CVE-2016-513...
kvm security update
83-277.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-277.el511 - kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch bz1421564 - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop.patch bz1421564 -...
spice-server security update
0.12.4-13.2 - Fix buffer overflow in mainchannelallocmsgrcvbuf when reading large messages. Resolves: CVE-2016-9577 - Fix remote DoS via crafted message. Resolves: CVE-2016-9578...
kernel-uek security update
kernel-uek 4.1.12-37.6.1 - vfs: rename: check backing inode being equal Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - vfs: add vfsselectinode helper Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - ovl: verify upper dentry before unlink and rename Miklos Szeredi Orabu...
ImageMagick security update
6.7.2.7-4 - Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716 and CVE-2016-3717...
java-1.7.0-openjdk security update
1:1.7.0.101-2.6.6.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.101-2.6.6.1 - added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Fix ztos handling in templateTableppc64.cpp to be same as others in 7. - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Bum...
kernel security, bug fix, and enhancement update
2.6.32-573.22.1 - mm always decrement anonvma degree when the vma list is empty Jerome Marchand 1318364 1309898 2.6.32-573.21.1 - fs pipe: fix offset and len mismatch on pipeiovcopytouser failure Seth Jennings 1310148 1302223 CVE-2016-0774 - fs gfs2: Add missing else in transaddmeta/data Robert S...
cups-filters security, bug fix, and enhancement update
1.0.35-21 - Fix heap-based buffer overflow in texttopdf filter bug 1241242, CVE-2015-3258, CVE-2015-3279. 1.0.35-20 - Improvements to cups-browsed efficiency patch bug 1191691. 1.0.35-18 - Fix segfault in texttopdf filter bug 1194263. - Improve cups-browsed efficiency bug 1191691. - Fetch printer...
xen security update
3.0.3-147.el5 - net: add checks to validate ring buffer pointers - Resolves: bz1263273 xen: qemu: Heap overflow vulnerability in ne2000receive function...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.12uek - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145596 CVE-2015-5156...
nss and nspr security update
nspr 4.10.8-2 - Resolves: Bug 1269359 - CVE-2015-7183 - nspr: heap-buffer overflow in PLARENAALLOCATE can lead to crash under ASAN, potential memory corruption rhel-5.11.z nss 3.19.1-2 - Resolves: Bug 1269354 - CVE-2015-7182 CVE-2015-7181...
libXfont security update
1.4.5-5 - CVE-2015-1802: missing range check in bdfReadProperties bug 1258892 - CVE-2015-1803: crash on invalid read in bdfReadCharacters bug 1258892 - CVE-2015-1804: out-of-bounds memory access in bdfReadCharacters bug 1258892...
gdk-pixbuf2 security update
2.24.1-6 - Fix CVE 2015-4491 - Resolves 1253210...
httpd security update
2.4.6-31.0.1.el71.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185...
openssl security update
1.0.1e-42.8 - improved fix for CVE-2015-1791 - add missing parts of CVE-2015-0209 fix for corectness although unexploitable 1.0.1e-42.7 - fix CVE-2014-8176 - invalid free in DTLS buffering code - fix CVE-2015-1789 - out-of-bounds read in X509cmptime - fix CVE-2015-1790 - PKCS7 crash with missing...
Unbreakable Enterprise kernel security update
2.6.39-400.215.15 - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224060 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski Orabug: 20224028 CVE-2014-9090 CVE-2014-9322...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.71-2.5.3.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1:1.7.0.71-2.5.3.1 - Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. -...
kernel security and bug fix update
kernel 2.6.18-371.9.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
libvirt security and bug fix update
0.10.2-29.0.1.el65.8 - Replace docs/et.png in tarball with blank image 0.10.2-29.el65.8 - LSN-2014-0003: Don't expand entities when parsing XML CVE-2014-0179 - QoS: make tc filters match all traffic rhbz1096806 - use virBitmapFree instead of VIRFREE for cpumask rhbz1091206 - Properly free vcpupin...
Unbreakable Enterprise kernel security update
2.6.39-400.214.5 - net: ipv4: current groupinfo should be put after using. Wang, Xiaoming Orabug: 18603524 CVE-2014-2851...
nss, nspr, and nss-util security update
nspr 4.10.0-2 - Rebase to nspr-4.10.2 - Resolves: rhbz1032485 - CVE-2013-5607 MFSA 2013-103 Avoid unsigned integer wrapping in PLArenaAllocate MFSA 2013-103 nss 3.15.3-2.0.1 - Added nss-vendor.patch to change vendor 3.15.3-2 - Enable patch with fix for deadlock in trust domain lock and object loc...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.415.el6 - kvm-target-i386-don-t-migrate-steal-time-MSR-on-older-ma.patch bz1022821 - Resolves: bz1022821 live-migration from RHEL6.5 to RHEL6.4.z fails with 'error while loading state for instance 0x0 of device 'cpu'' 0.12.1.2-2.414.el6 -...
thunderbird security update
17.0.7-1.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.7-1 - Update to 17.0.7 ESR...
kernel security update
2.6.32-358.6.2 - kernel perf: fix perfsweventenabled array out-of-bound access Petr Matousek 962793 962794 CVE-2013-2094...
Unbreakable Enterprise kernel Security update
2.6.39-400.17.2 - x86/msr: Add capabilities check Alan Cox Orabug: 16405007 CVE-2013-0268...
kernel security update
kernel 2.6.18-348.3.1 - utrace ensure archptrace can never race with SIGKILL Oleg Nesterov 912071 912072 CVE-2013-0871 - x86 msr: Add capabilities check Nikola Pajkovsky 908696 908697 CVE-2013-0268...
bind security and enhancement update
32:9.8.2-0.17.rc1.0.2.el6.3 - bump up version and rebuild 32:9.8.2-0.17.rc1.0.1.el6.3 - add rrl.h into include dirs 32:9.8.2-0.27.rc1.3 - remove one bogus file from /usr/share/doc, introduced by RRL patch 32:9.8.2-0.17.rc1.2 - fix CVE-2012-5689 32:9.8.2-0.17.rc1.1 - add response rate limit patch...
firefox security update
firefox 10.0.11-1.0.1.el63 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 10.0.11-1 - Update to 10.0.11 ESR xulrunner 10.0.11-1.0.1.el63 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.11-1 - Update to 10.0.11 ESR...
quagga security update
0.99.15-7.2 - improve fix for CVE-2011-3325 0.99.15-7.1 - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0255 - fix CVE-2012-0249 and CVE-2012-0250 - fix CVE-2012-1820 0.99.15-7 - Resolves: 684751 - CVE-2010-1674 CVE-2010-1675 quag...
python security update
2.4.3-46.el58.2 - if hash randomization is enabled, also enable it within pyexpat Resolves: CVE-2012-0876 2.4.3-46.el58.1 - distutils.commands.register: create /.pypirc securely Resolves: CVE-2011-4944 - send encoding in SimpleHTTPServer.listdirectory to protect IE7 against potential XSS attacks...
tomcat6 security update
0:6.0.24-36 - Resolves: CVE-2012-0022 regression. Changes made to patch file...
firefox security and bug fix update
firefox: 10.0.3-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 10.0.3-1 - Update to 10.0.3 ESR xulrunner: 10.0.3-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with - xulrunner-oracle-default-prefs.js 10.0.3-1 - Update to 10.0.3 ESR...
thunderbird security update
10.0.3-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.3-1 - Update to 10.0.3 ESR...
seamonkey security update
1.0.9-79.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-79.el4 - Added fix for mozbz727401...
php security update
5.3.3-3.6 - add security fix for CVE-2012-0830 786743...
thunderbird security update
3.1.15-1.0.1.el61 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.15-1 - Update to 3.1.15...
qt security update
1:4.6.2-17.1 - Resolves: rhbz737812 fix multiple flaws in Qt CVE-2011-3193, CVE-2011-3194...
samba3x security update
3.5.4-0.83.2 - Security Release, add fix for CVE-2011-2724 - related: 722555 3.5.4-0.83.1 - Security Release, fixes CVE-2011-2694, CVE-2011-2522, CVE-2011-1678 - resolves: 722555...
libtiff security and bug fix update
3.9.4-1.el60.2 - Fix incorrect fix for CVE-2011-0192 Resolves: 688829 - Add fix for CVE-2011-1167 Resolves: 688742...
wireshark security update
1.0.15-1.0.1.el56.4 - Added oracle-ocfs2-network.patch 1.0.15-1.4 - fix few security issues - Resolves: CVE -2011-0024 CVE-2011-0538 CVE-2011-1139 CVE-2011-1140 CVE-2011-1141 CVE-2011-1143 612240 1.0.15-1.3 - recompile with -fno-strict-aliasing 1.0.15-1.2 - fix buffer overflow in ENTTEC dissector...
openldap security update
2.4.19-15.2 - fix: security - DoS when submitting special MODRDN request 680975 2.4.19-15.1 - fix: CVE-2011-1024 ppolicy forwarded bind failure messages cause success - fix: CVE-2011-1025 rootpw is not verified for ndb backend...
openssl security update
0.9.8e-12.7 - fix CVE-2010-4180 - completely disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462...
Unbreakable enterprise kernel security and bug fix update
Following Security fixes are included in this unbreakable enterprise kernel errata: CVE-2010-3432 The sctppacketconfig function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial o...
qspice security update
0.3.0-54.el55.2 - Fix unsafe accesses + spice: drop libpng from windows components 537849 + libspice: fix unsafe guest data accessing Resolves: 568719 + fix unsafe free call. Resolves: 568723 + spice server: fix unsafe cursor items handling. Resolves: 568719...
libpng security update
2:1.2.10-7.1.el55.3 - Back-port fixes for CVE-2009-2042, CVE-2010-0205, CVE-2010-1205, CVE-2010-2249 Resolves: 609921...
openldap security and bug fix update
2.3.43-12 - updated spec file, so the compat-libs linking patch applies correctly 2.3.43-11 - backported patch to handle null character in TLS certificates 560912 2.3.43-10 - updated chase-referral patch to compile cleanly - updated init script 562714 2.3.43-9 - updated ldap.sysconf to include...
sendmail security and bug fix update
8.13.8-8 - rpm attributes S,5,T not recorded for statistics file 8.13.8-7 - fix specfile for passing rpm -V test 555277 8.13.8-6.el5 - fix verification of SSL certificate with NUL in name 553618, CVE-2009-4565 - do not accept localhost.localdomain as valid address from smtp 449391 - skip colon...
kvm security and bug fix update
kvm-83-105.0.1.el54.13 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.13 - kvm-kernel-KVM-x86-emulator-limit-instructions-to-15-bytes.patch bz541164 - Resolves: bz541164 CVE-2009-4031 kernel: KVM: x86 emulator: limit instructions to 15 bytes rhel-5.4.z kvm-83-105.el54.12 -...
kdelibs security update
3.5.4-25.0.1.el54.1 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm in tarball 3.5.4-25.1 - bump release 3.5.4-22.2 - Resolves: 539716, CVE-2009-0689, kdelibs remote array overrun...
cups security update
1:1.3.7-11:.4 - Applied patch to fix CVE-2009-3553 bug 530111, STR 3200. - Applied patch to fix CVE-2009-2820 bug 529833, STR 3367, STR 3401...