9180 matches found
firefox security update
60.5.0-2.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.5.0-2 - Updated to 60.5.0 ESR build2 60.5.0-1 - Updated to 60.5.0 ESR build1 60.4.0-3 - Fixing fontconfig warnings rhbz1601475 60.4.0-2 - Added pipewire patch from Tomas Popela...
kubernetes security update
1.9.11-2.1.1 - Fix kubeadm-registry.sh - Use golang 1.9.3 - CVE-2018-1002105 Handle error responses from backends - Bump to v1.9.11...
flatpak security update
0.8.8-4 - Add patch for CVE-2018-6560 1547376...
bind security update
32:9.9.4-61.1 - Fix CVE-2018-5740...
qemu-kvm security and bug fix update
1.5.3-156.el75.5 - kvm-multiboot-bssendaddr-can-be-zero.patch bz1549824 - kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch bz1549824 - kvm-multiboot-Use-header-names-when-displaying-fields.patch bz1549824 - kvm-multiboot-fprintf-stderr.-errorreport.patch bz1549824 -...
kernel security update
kernel 2.6.18-419.0.0.0.5 - fs fix kernel panic on boot on ia64 guests Honglei Wang orabug 26934100 2.6.18-419.0.0.0.4 - fs fix bug in loading of PIE binaries Michael Davidson orabug 26916951 CVE-2017-1000253...
wpa_supplicant security update
1:0.7.3-9.2 - Fix backport errors CVE-2017-13077, CVE-2017-13080 1:0.7.3-9.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082...
libreoffice security and bug fix update
1:5.0.6.2-14.0.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:5.0.6.2-14 - Resolves: rhbz1454693 segv on interrupting tiled rendering 1:5.0.6.2-13 - Related: rhbz1444437 remove timer if...
util-linux security and bug fix update
2.23.2-33.0.1.el7u3.2 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33.el73.2 fix CVE-2017-2616 - Sending SIGKILL to other processes with root privileges via su 2.23.2-33.el73.1 - fix 1405238 - findmnt --target...
openssh security and bug fix update
5.3p1-122 - Allow to use ibmca crypto hardware 1397547 - CVE-2015-8325: privilege escalation via user's PAM environment and UseLogin=yes 1405374 5.3p1-121 - Fix missing hmac-md5-96 from server offer 1373836 5.3p1-120 - Prevent infinite loop when Ctrl+Z pressed at password prompt 1218424 - Remove...
kvm security update
83-277.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-277.el511 - kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch bz1421564 - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop.patch bz1421564 -...
spice-server security update
0.12.4-13.2 - Fix buffer overflow in mainchannelallocmsgrcvbuf when reading large messages. Resolves: CVE-2016-9577 - Fix remote DoS via crafted message. Resolves: CVE-2016-9578...
thunderbird security update
45.5.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.5.1-1 - Update to 45.5.1...
ImageMagick security update
6.7.2.7-5 - Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716 and CVE-2016-3717...
java-1.7.0-openjdk security update
1:1.7.0.101-2.6.6.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.101-2.6.6.1 - added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Fix ztos handling in templateTableppc64.cpp to be same as others in 7. - Resolves: rhbz1325427 1:1.7.0.101-2.6.6.0 - Bum...
kernel security update
kernel 2.6.18-409 - fs ext4: limit group search loop for non-extent files Lukas Czerner 1301100 - fb vm: convert fbmmap to vmiomapmemory helper Jacob Tanenbaum 1035240 CVE-2013-2596 - s390 add dummy ioremappfnrange to asm-s390/pgtable.h Jacob Tanenbaum 1035240 CVE-2013-2596 - mm vm: add...
postgresql security update
8.4.20-5 - fix for CVE-2016-0773 rhbz1308598 - fix tests for new libxml2 rhbz1303972...
kernel-uek security update
kernel-uek 4.1.12-32.1.2 - KEYS: Fix keyring ref leak in joinsessionkeyring Yevgeny Pats Orabug: 22563965 CVE-2016-0728 4.1.12-32.1.1 - ocfs2: return non-zero stblocks for inline data John Haxby Orabug: 22218243 - xen/events/fifo: Consume unprocessed events when a CPU dies Ross Lagerwall Orabug:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.2.5 - KEYS: Fix keyring ref leak in joinsessionkeyring Yevgeny Pats Orabug: 22563965 CVE-2016-0728...
qemu-kvm security update
0.12.1.2-2.479.el67.3 - kvm-net-pcnet-add-check-to-validate-receive-data-size-CV.patch bz1287950 - kvm-pcnet-fix-rx-buffer-overflow-CVE-2015-7512.patch bz1287950 - Resolves: bz1287950 CVE-2015-7504 CVE-2015-7512 qemu-kvm: various flaws rhel-6.7.z...
cups-filters security, bug fix, and enhancement update
1.0.35-21 - Fix heap-based buffer overflow in texttopdf filter bug 1241242, CVE-2015-3258, CVE-2015-3279. 1.0.35-20 - Improvements to cups-browsed efficiency patch bug 1191691. 1.0.35-18 - Fix segfault in texttopdf filter bug 1194263. - Improve cups-browsed efficiency bug 1191691. - Fetch printer...
xen security update
3.0.3-147.el5 - net: add checks to validate ring buffer pointers - Resolves: bz1263273 xen: qemu: Heap overflow vulnerability in ne2000receive function...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.12uek - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145596 CVE-2015-5156...
nss and nspr security update
nspr 4.10.8-2 - Resolves: Bug 1269359 - CVE-2015-7183 - nspr: heap-buffer overflow in PLARENAALLOCATE can lead to crash under ASAN, potential memory corruption rhel-5.11.z nss 3.19.1-2 - Resolves: Bug 1269354 - CVE-2015-7182 CVE-2015-7181...
qemu-kvm security fix update
1.5.3-86.el71.6 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch bz1248764 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch bz1248764 - kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch bz1248764 -...
bind97 security update
32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
libXfont security update
1.4.5-5 - CVE-2015-1802: missing range check in bdfReadProperties bug 1258892 - CVE-2015-1803: crash on invalid read in bdfReadCharacters bug 1258892 - CVE-2015-1804: out-of-bounds memory access in bdfReadCharacters bug 1258892...
jakarta-taglibs-standard security update
0:1.1.1-11.7 - Gracefully handle parsers without FSP support e.g. Java 5 GCJ - Resolves: CVE-2015-0254 0:1.1.1-11.6 - Prevent XXE and RCE in JSTL XML tags - Apply correction for previous CVE-2015-0254 patch prevent XXE in - Resolves: CVE-2015-0254 0:1.1.1-11.5 - Prevent XXE and RCE in JSTL XML ta...
httpd security update
2.4.6-31.0.1.el71.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185...
Unbreakable Enterprise kernel security update
2.6.39-400.250.9 - x86, tls: Interpret an all-zero struct userdesc as 'no segment' Andy Lutomirski Orabug: 21514969 - x86, tls, ldt: Stop checking lm in LDTempty Andy Lutomirski Orabug: 21514969 2.6.39-400.250.8 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502740 CVE-2015-0239...
firefox security update
firefox 31.5.0-2.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 31.5.0-2 - Update to 31.5.0 ESR Build 2 xulrunner 31.5.0-1.0.1-el70 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE2...
Unbreakable Enterprise kernel security update
2.6.39-400.215.15 - isofs: Fix unbounded recursion when processing relocated directories Jan Kara Orabug: 20224060 CVE-2014-5471 CVE-2014-5472 - x8664, traps: Stop using IST for SS Andy Lutomirski Orabug: 20224028 CVE-2014-9090 CVE-2014-9322...
kernel security update
kernel 2.6.18-400.1.1 - x86 traps: stop using IST for SS Petr Matousek 1172809 CVE-2014-9322...
xorg-x11-server security update
1.1.1-48.107.0.1.el511 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.107 - CVE-2014-8091 denial of service due to unchecked malloc in client authentication 1168680 - CVE-2014-8092 integer overflow in X11 core protocol requests when calculating memory needs for...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55.1.1 - ALSA: control: Protect user controls against concurrent access Lars-Peter Clausen Orabug: 20192540 CVE-2014-4652 - target/rd: Refactor rdbuilddevicespace + rdreleasedevicespace Nicholas Bellinger Orabug: 20192516 CVE-2014-4027 - HID: logitech: perform bounds checking on...
java-1.8.0-openjdk security update
1:1.8.0.25-1.b17 - Update to October CPU patch update. - Resolves: RHBZ1148896 1:1.8.0.20-3.b26 - fixed headless policytool moved to normal - jre/bin/policytool added to not headless exclude list - updated aarch694 source - ppc64le synced from fedora - Resolves: rhbz1081073 1:1.8.0.20-2.b26 -...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.71-2.5.3.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1:1.7.0.71-2.5.3.1 - Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. -...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.1.3.el6uek - l2tp: fix an unprivileged user to kernel privilege escalation Sasha Levin Orabug: 19229497 CVE-2014-4943 CVE-2014-4943 - ptrace,x86: force IRET path after a ptracestop Tejun Heo Orabug: 19230689 CVE-2014-4699 - net: flowdissector: fail on evil iph-ihl Jason Wang...
kernel security and bug fix update
kernel 2.6.18-371.9.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
libvirt security and bug fix update
0.10.2-29.0.1.el65.8 - Replace docs/et.png in tarball with blank image 0.10.2-29.el65.8 - LSN-2014-0003: Don't expand entities when parsing XML CVE-2014-0179 - QoS: make tc filters match all traffic rhbz1096806 - use virBitmapFree instead of VIRFREE for cpumask rhbz1091206 - Properly free vcpupin...
Unbreakable Enterprise kernel security update
2.6.39-400.214.5 - net: ipv4: current groupinfo should be put after using. Wang, Xiaoming Orabug: 18603524 CVE-2014-2851...
thunderbird security update
24.3.0-2.0.1.el65 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Make sure build with nspr-devel = 4.10.0 24.3.0-2 - Update to 24.3.0 ESR Build 2 24.3.0-1 - Update to 24.3.0 24.2.0-2 - Fixed requested nspr/nss versions...
firefox security update
24.3.0-2.0.1.el65 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel = 4.10.0 to fix build failure 24.3.0-2 - Update to 24.3.0 ESR Build 2 24.3.0-1 - Update to 24.3.0 ESR...
sudo security, bug fix and enhancement update
1.8.6p3-12 - added patches for CVE-2013-1775 CVE-2013-2777 CVE-2013-2776 Resolves: rhbz1015355 1.8.6p3-11 - sssd: fixed a bug in ipahostname processing Resolves: rhbz853542 1.8.6p3-10 - sssd: fixed buffer size for the ipahostname value Resolves: rhbz853542 1.8.6p3-9 - sssd: match against...
bind security and enhancement update
32:9.8.2-0.17.rc1.0.2.el6.3 - bump up version and rebuild 32:9.8.2-0.17.rc1.0.1.el6.3 - add rrl.h into include dirs 32:9.8.2-0.27.rc1.3 - remove one bogus file from /usr/share/doc, introduced by RRL patch 32:9.8.2-0.17.rc1.2 - fix CVE-2012-5689 32:9.8.2-0.17.rc1.1 - add response rate limit patch...
freetype security update
2.3.11-14.el63.1 - Fix CVE-2012-5669 Use correct array size for checking 'glyphenc' - Resolves: 903542 2.3.11-14 - A little change in configure part - Related: 723468 2.3.11-13 - Fix CVE-2012-1126, 1127, 1130, 1131, 1132, 1134, 1136, 1137, 1139, 1140, 1141, 1142, 1143, 1144 - Properly initialize...
OpenIPMI security, bug fix, and enhancement update
2.0.16-16.el5 - ipmitool: fix ipmi command retry shifts replies 863310 2.0.16-15.el5 - ipmitool: added -b, -B, -l and -T options to ipmitool man page 846596 - ipmitool: fixed man page documentation for delloem setled command 797050 2.0.16-14.el5 - ipmitool: fixed wrong permissions on ipmievd.pid...
libxml2 security update
2.7.6-8.0.1.el63.3 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-8.el63.3 - Change the XPath code to percolate allocation error CVE-2011-1944 2.7.6-8.el63.2 - Fix an off by one pointer access CVE-2011-3102 2.7.6-8.el63.1 - Fix a failure...
quagga security update
0.99.15-7.2 - improve fix for CVE-2011-3325 0.99.15-7.1 - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0255 - fix CVE-2012-0249 and CVE-2012-0250 - fix CVE-2012-1820 0.99.15-7 - Resolves: 684751 - CVE-2010-1674 CVE-2010-1675 quag...
tetex security update
3.0-33.15.el59.1 - more robust fix for CVE-2010-3702 773178 3.0-33.15 - apply patch for CVE-2010-3702,3704 773180 3.0-33.14 - fix CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554, texlive various flaws 773180...