8993 matches found
virt:rhel security update
libguestfs 1:1.38.4-10.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-10.1 - Fix inspection of partition-less devices resolves: rhbz1714747 libssh2 1.8.0-7.el80.1 - fix integer overflow in keyboard interactive handling that...
qemu security update
15:3.0.0-4.el7 - usb-mtp: use ONOFOLLOW and OCLOEXEC. Gerd Hoffmann Orabug: 29056673 CVE-2018-16872 - pvrdma: add uarread routine Prasad J Pandit CVE-2018-20191 - pvrdma: release ring object in case of an error Prasad J Pandit Orabug: 29171822 CVE-2018-20126 - pvrdma: check number of pages when...
qemu security update
12:2.9.0-11.1.el7 - i386: Define the Virt SSBD MSR and handling of it CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the AMD 'virt-ssbd' CPUID feature bit CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the 'ssbd' CPUID feature...
yum-utils security update
1.1.30-42.0.1 - add dependency btrfs-progs for yum-plugin-fs-snapshot [email protected] bug 16285176 - use unified btrfs binary instead of btrfsctl [email protected] bug 16285176 -1.1.30-42 - reposync: prevent path traversal. - Resolves: bug1600619...
dhcp security update
12:4.1.1-53.P1.0.1.4 - Added oracle-errwarn-message.patch 12:4.1.1-53.P1.el69.4 - Resolves: 1570897 - Fix comamnd execution in NM script CVE-2018-1111...
qemu-kvm security update
1.5.3-141.el74.4 - kvm-multiboot-validate-multiboot-header-address-values.patch bz1501120 - Resolves: bz1501120 CVE-2017-14167 qemu-kvm: Qemu: i386: multiboot OOB access while loading kernel image rhel-7.4.z 1.5.3-141.el74.3 - kvm-bswap.h-Remove-cputo32wu.patch bz1501294 -...
kernel security update
2.6.32-696.10.3.OL6 - Update genkey bug 25599697 2.6.32-696.10.3 - fs binfmtelf.c:loadelfbinary: return -EINVAL on zero-length mappings Petr Matousek 1492959 1492961 CVE-2017-1000253 - fs binfmtelf.c: fix bug in loading of PIE binaries Petr Matousek 1492959 1492961 CVE-2017-1000253...
mercurial security update
2.6.2-8 - Fix CVE-2017-1000115 and CVE-2017-1000116...
firefox security update
52.3.0-3.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.3.0-3 - Fix for rhbz1470294 - bundling newer libffi for ppc platforms 52.3.0-2 - Update to 52.3.0 ESR b2...
kernel security and bug fix update
3.10.0-514.26.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.26.1 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
wireshark security and bug fix update
1.8.10-25.0.1 - Fix ocfs2 dissector John Haxby orabug 21505640 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-25 - rebuilt 1.8.10-24 - Related: 1245887 - segfault with CVE-2013-4075 capture - valgrind error with CVE-2015-3812 capture 1.8.10-23 - Resolves: 12381...
tigervnc security and bug fix update
1.1.0-24 - Proper global init/deinit of GnuTLS Resolves: bz1418946 1.1.0-23 - Fix buffer overflow in FullFramePixelBuffer::fillRect Resolves: bz1416289 1.1.0-22 - Fix buffer overflow in FullFramePixelBuffer::fillRect Resolves: bz1416289 1.1.0-21 - Enable DRI2 and DRI3 Resolves: bz1323065 1.1.0-20...
openjpeg security update
1.3-16 - Revert previous changes in patch for CVE-2016-5159 - Fix double free in patch for CVE-2016-5139 - Fix memory leaks and invalid read in ciobytein Related: 1419775 1.3-15 - Add two more allocation checks to patch for CVE-2016-5159 Related: 1419775 1.3-14 - Add patches for CVE-2016-5139,...
qemu-kvm security and bug fix update
0.12.1.2-2.491.el68.6 - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop.patch bz1418230 bz1419416 - kvm-cirrusvga-fix-off-by-one-in-blitregionisunsafe.patch bz1418230 bz1419416 - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch bz1418230 bz1419416 -...
ipa security update
4.4.0-14.0.1.el73.1.1 - Blank out header-logo.png product-name.png Replace login-screen-logo.png 20362818 4.4.0-14.1.1 - Resolves: 1370493 CVE-2016-7030 ipa: DoS attack against kerberized services by abusing password policy - ipa-kdb: search for password policies globally - Renamed patches 1011 a...
expat security update
2.0.1-13 - updated security fix for CVE-2016-0718 2.0.1-12 - add security fix for CVE-2016-0718...
curl security, bug fix, and enhancement update
7.29.0-35 - fix incorrect use of a previously loaded certificate from file related to CVE-2016-5420 7.29.0-34 - acknowledge the --no-sessionid/CURLOPTSSLSESSIONIDCACHE option required by the fix for CVE-2016-5419 7.29.0-33 - fix re-using connections with wrong client cert CVE-2016-5420 - fix TLS...
wget security and bug fix update
1.14-13 - Fix CVE-2016-4971 1345778 - Added support for non-ASCII URLs Related: CVE-2016-4971 1.14-12 - Fix wget to include Host header on CONNECT as required by HTTP 1.1 1203384 - Run internal test suite during build 1295846 - Fix -nv being documented as synonym for two options 1147572 1.14-11 -...
openssh security, bug fix, and enhancement update
6.6.1p1-31 + 0.9.3-9 - Do not depend on selinux-policy 1373297 6.6.1p1-30 + 0.9.3-9 - Drop dependency on libcap-ng for ssh-keycat 1357859 6.6.1p1-29 + 0.9.3-9 - Rework SELinux context handling with chroot using libcap-ng 1357859 6.6.1p1-28 + 0.9.3-9 - SFTP force permission collision with umask...
qemu-kvm security update
0.12.1.2-2.491.el68.3 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359724 - Resolves: bz1359724 EMBARGOED CVE-2016-5403 qemu-kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS rhel-6.8.z 0.12.1.2-2.491.el68.2 - kvm-vga-add-srvbe-register-set.patch...
ntp security update
4.2.6p5-10.el68.1 - don't allow spoofed packets to demobilize associations CVE-2015-7979, CVE-2016-1547 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack...
qemu-kvm security update
0.12.1.2-2.491.el68.1 - kvm-Add-vga.h-unmodified-from-Linux.patch bz1331407 - kvm-vga.h-remove-unused-stuff-and-reformat.patch bz1331407 - kvm-vga-use-constants-from-vga.h.patch bz1331407 - kvm-vga-Remove-some-should-be-done-in-BIOS-comments.patch bz1331407 -...
graphite2 security, bug fix, and enhancement update
1.3.6-1 - Related: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.3.5-1 - Resolves: rhbz1309052 CVE-2016-1521 CVE-2016-1522 CVE-2016-1523 CVE-2016-1526 1.2.4-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora24MassRebuild 1.2.4-5 - Rebuilt for...
kernel-uek security update
kernel-uek 4.1.12-32.2.3 - rebuild bumping release 4.1.12-32.2.2 - x86/iopl/64: properly context-switch IOPL on Xen PV Andy Lutomirski Orabug: 22997978 CVE-2016-3157 - fs/hugetlbfs/inode.c: fix bugs in hugetlbvmtruncatelist Mike Kravetz Orabug: 22667863...
samba4 security update
4.0.0-68.rc4 - resolves: 1314670 - Fix CVE-2015-7560...
qemu-kvm security update
0.12.1.2-2.479.el67.4 - kvm-fwcfg-add-check-to-validate-current-entry-value-CVE.patch bz1298045 - Resolves: bz1298045 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-6.7.z...
bind security update
30:9.3.6-25.P1.5 - Fix CVE-2015-8000 30:9.3.6-25.P1.4 - Fix CVE-2015-5722 30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
libpng security update
2:1.5.13-7 - Security fix for CVE-2015-8126 - Changing pngptr to infoptf based on upstream - Related: 1283576 2:1.5.13-6 - Security fix for CVE-2015-8126 - Resolves: 1283576...
thunderbird security update
38.4.0-1.0.1.el67 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.4.0-1 - Update to 38.4.0...
libwmf security update
0.2.8.4-25 - Resolves: rhbz1227428 - CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 0.2.8.4-24 - Resolves: rhbz1227429 CVE-2015-0848 libwmf: heap overflow when decoding BMP images...
nss security, bug fix, and enhancement update
3.19.1-1 - Rebase nss to 3.19.1 - Pick up upstream fix for client auth. regression caused by 3.19.1 - Revert upstream change to minimum key sizes - Remove patches that rendered obsolote by the rebase - Update existing patches on account of the rebase 3.18.0-7 - Pick up upstream patch from...
Unbreakable Enterprise kernel security update
2.6.39-400.250.11 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628851 CVE-2015-5364 CVE-2015-5366...
kvm security update
kvm-83-273.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83.273.el5 - kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch bz1225896 - kvm-pcnet-fix-Negative-array-index-read.patch bz1225896 -...
glibc security and bug fix update
2.12-1.149.4 - Fix recursive dlopen 1173469. 2.12-1.149.3 - Fix typo in ressend and resquery rh1172023. 2.12-1.149.2 - Fix crashes on invalid input in IBM gconv modules CVE-2014-6040, 1139571. 2.12-1.149.1 - Fix wordexp to honour WRDENOCMD CVE-2014-7817, 1170121...
nss, nss-util, nss-softokn security, bug fix, and enhancement update
nss 3.16.2-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-2 - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 3.16.2-1 - Rebase to...
gnutls security update
3.1.18-9 - fix session ID length check 1102027 - fixes null pointer dereference 1101727...
thunderbird security update
24.6.0-1.0.1.el65 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 24.6.0-1 - Update to 24.6.0...
curl security and bug fix update
7.19.7-37.el65.3 - fix re-use of wrong HTTP NTLM connection CVE-2014-0015 - fix connection re-use when using different log-in credentials CVE-2014-0138 7.19.7-37.el65.2 - fix authentication failure when server offers multiple auth options 1096797 7.19.7-37.el65.1 - refresh expired cookie in test1...
firefox security update
24.5.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel = 4.10.0 to fix build failure 24.5.0-1 - Update to 24.5.0 ESR 24.4.0-3 - Added a workaround for Bug 1054242 - RHEVM: Extremely high memory usage in Firefox 24 ESR on RHEL 6.5 24.4.0...
postgresql84 and postgresql security update
8.4.20-1 - Update to PostgreSQL 8.4.20 1065843 for fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-19.html http://www.postgresql.org/docs/8.4/static/release-8-4-20.html...
augeas security update
1.0.0-5.1 - Fix CVE-2013-6412, incorrect permissions under strict umask RHBZ1036079...
kernel security and bug fix update
kernel 2.6.18-371.3.1.0.1 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use...
glibc security, bug fix, and enhancement update
2.12-1.132 - Revert the addition of gettimeofday vDSO function for ppc and ppc64 until OPD VDSO function call issues are resolved 1026533. 2.12-1.131 - Call gethostbyname4r only for PFUNSPEC 1022022. 2.12-1.130 - Fix integer overflows in valloc and memalign. 1008310. 2.12-1.129 - Initialize...
libgcrypt security update
1.4.5-11 - fix CVE-2013-4242 GnuPG/libgcrypt susceptible to cache side-channel attack 1.4.5-10 - Add GCRYCTLSETENFORCEDFIPSFLAG command...
sudo security and bug fix update
1.7.2p1-28 - backported fixes for CVE-2013-1775 CVE-2013-1776 CVE-2013-2776 CVE-2013-2777 Resolves: rhbz968221 1.7.2p1-27 - visudo: fixed incorrect warning and parse error regarding undefined aliases which were in fact defined Resolves: rhbz849679 Resolves: rhbz905624 1.7.2p1-26 - updated sudoers...
firefox security update
firefox 17.0.8-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.8-1 - Update to 17.0.8 ESR xulrunner 17.0.8-3.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.8...
php53 security update
5.3.3-13.1 - add security fix for CVE-2013-4113...
1
kernel 2.6.18-348.6.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
firefox security update
firefox 17.0.5-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.5-1 - Update to 17.0.5 ESR xulrunner 17.0.5-1.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.5-1 -...
util-linux-ng security, bug fix and enhancement update
2.17.2-12.9 - fix 892471 - CVE-2013-0157 mount folder existence information disclosure 2.17.2-12.8 - fix 679833 - RFE tailf should support - fix 719927 - RFE add adjtimex --compare functionality to hwclock - fix 730272 - losetup does not warn if backing file is 512 bytes - fix 730891 - document...