9177 matches found
grub2 security update
2.02-78.0.3.el81.1 - honor /etc/sysconfig/kernel DEFAULTKERNEL setting for BLS Orabug: 30643497 - set EFIDIR as redhat for additional grub2 tools Orabug: 29875597 - Update upstream references Orabug: 26388226 - Copy symvers.gz to /boot during kernel install Orabug: 29773086 - Insert Unbreakable...
openslp security update
2.0.0-4 - Fix a heap-based buffer overflow vulnerability leading to remote code execution, CVE-2019-5544 Resolves: 1788447...
libguestfs-winsupport security update
7.2-3 - Fix for CVE-2019-9755 heap-based buffer overflow leads to local root privilege escalation resolves: rhbz1698502...
qemu security update
15:3.0.0-4.el7 - usb-mtp: use ONOFOLLOW and OCLOEXEC. Gerd Hoffmann Orabug: 29056673 CVE-2018-16872 - pvrdma: add uarread routine Prasad J Pandit CVE-2018-20191 - pvrdma: release ring object in case of an error Prasad J Pandit Orabug: 29171822 CVE-2018-20126 - pvrdma: check number of pages when...
qemu security update
15:3.0.0-3.el7 - monitor: guard iothread access by mon-useiothread Wolfgang Bumiller Orabug: 29046045 - monitor: delay monitor iothread creation Wolfgang Bumiller Orabug: 29010480 - Revert 'qmp: isolate responses into io thread' Marc-Andre Lureau Orabug: 29010480 - usb-mtp: outlaw slashes in...
yum-utils security update
1.1.30-42.0.1 - add dependency btrfs-progs for yum-plugin-fs-snapshot [email protected] bug 16285176 - use unified btrfs binary instead of btrfsctl [email protected] bug 16285176 -1.1.30-42 - reposync: prevent path traversal. - Resolves: bug1600619...
curl security update
7.29.0-42.el74.1 - fix buffer overflow while processing IMAP FETCH response CVE-2017-1000257...
mercurial security update
2.6.2-8 - Fix CVE-2017-1000115 and CVE-2017-1000116...
firefox security update
52.3.0-3.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.3.0-3 - Fix for rhbz1470294 - bundling newer libffi for ppc platforms 52.3.0-2 - Update to 52.3.0 ESR b2...
kernel security and bug fix update
3.10.0-514.26.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.26.1 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
glibc security update
2.12-1.209.0.1 - Update newmode size to fix a possible corruption 2.12-1.209 - Fix AFINET6 getaddrinfo with nscd 1416496 2.12-1.208 - Update tests for struct sockaddrstorage changes 1338673 2.12-1.207 - Use FLCLOEXEC in internal calls to fopen 1012343. 2.12-1.206 - Fix CVE-2015-8779 glibc:...
wireshark security and bug fix update
1.8.10-25.0.1 - Fix ocfs2 dissector John Haxby orabug 21505640 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-25 - rebuilt 1.8.10-24 - Related: 1245887 - segfault with CVE-2013-4075 capture - valgrind error with CVE-2015-3812 capture 1.8.10-23 - Resolves: 12381...
openjpeg security update
1.3-16 - Revert previous changes in patch for CVE-2016-5159 - Fix double free in patch for CVE-2016-5139 - Fix memory leaks and invalid read in ciobytein Related: 1419775 1.3-15 - Add two more allocation checks to patch for CVE-2016-5159 Related: 1419775 1.3-14 - Add patches for CVE-2016-5139,...
qemu-kvm security and bug fix update
0.12.1.2-2.491.el68.6 - kvm-cirrusvga-fix-division-by-0-for-color-expansion-rop.patch bz1418230 bz1419416 - kvm-cirrusvga-fix-off-by-one-in-blitregionisunsafe.patch bz1418230 bz1419416 - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch bz1418230 bz1419416 -...
expat security update
2.0.1-13 - updated security fix for CVE-2016-0718 2.0.1-12 - add security fix for CVE-2016-0718...
wget security and bug fix update
1.14-13 - Fix CVE-2016-4971 1345778 - Added support for non-ASCII URLs Related: CVE-2016-4971 1.14-12 - Fix wget to include Host header on CONNECT as required by HTTP 1.1 1203384 - Run internal test suite during build 1295846 - Fix -nv being documented as synonym for two options 1147572 1.14-11 -...
util-linux security, bug fix, and enhancement update
2.23.2-33.0.1 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33 - improve patch for 1007734 libblkid realpaths 2.23.2-32 - improve patch for chrt1 deadline support 1298384 - fix 1007734 - blkid shows devices as...
qemu-kvm security update
0.12.1.2-2.491.el68.3 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359724 - Resolves: bz1359724 EMBARGOED CVE-2016-5403 qemu-kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS rhel-6.8.z 0.12.1.2-2.491.el68.2 - kvm-vga-add-srvbe-register-set.patch...
qemu-kvm security update
0.12.1.2-2.491.el68.1 - kvm-Add-vga.h-unmodified-from-Linux.patch bz1331407 - kvm-vga.h-remove-unused-stuff-and-reformat.patch bz1331407 - kvm-vga-use-constants-from-vga.h.patch bz1331407 - kvm-vga-Remove-some-should-be-done-in-BIOS-comments.patch bz1331407 -...
kernel-uek security update
kernel-uek 4.1.12-32.2.3 - rebuild bumping release 4.1.12-32.2.2 - x86/iopl/64: properly context-switch IOPL on Xen PV Andy Lutomirski Orabug: 22997978 CVE-2016-3157 - fs/hugetlbfs/inode.c: fix bugs in hugetlbvmtruncatelist Mike Kravetz Orabug: 22667863...
bind security update
30:9.3.6-25.P1.5 - Fix CVE-2015-8000 30:9.3.6-25.P1.4 - Fix CVE-2015-5722 30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
libpng security update
2:1.5.13-7 - Security fix for CVE-2015-8126 - Changing pngptr to infoptf based on upstream - Related: 1283576 2:1.5.13-6 - Security fix for CVE-2015-8126 - Resolves: 1283576...
libpng security update
2:1.2.49-2 - Security fix for CVE-2015-7981 and CVE-2015-8126 - Resolves: 1283572...
nss security, bug fix, and enhancement update
3.19.1-1 - Rebase nss to 3.19.1 - Pick up upstream fix for client auth. regression caused by 3.19.1 - Revert upstream change to minimum key sizes - Remove patches that rendered obsolote by the rebase - Update existing patches on account of the rebase 3.18.0-7 - Pick up upstream patch from...
firefox security update
38.1.0-1.0.1.el71 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 38.1.0-1 - Update to 38.1.0 ESR 38.0.1-2 - Fixed rhbz1222807 by removing preun section...
xen security update
3.0.3-146.el5 - xen-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch - xen-FDC-Fix-buffer-overflow-Herv-Poussineau.patch - Resolves: bz1219333 xen: qemu: floppy disk controller flaw rhel-5.11.z 3.0.3-144.el5 - xm: Fix vcpu-pin complain for CPU number out of range rhbz 955656 - libxc:...
glibc security and bug fix update
2.12-1.149.4 - Fix recursive dlopen 1173469. 2.12-1.149.3 - Fix typo in ressend and resquery rh1172023. 2.12-1.149.2 - Fix crashes on invalid input in IBM gconv modules CVE-2014-6040, 1139571. 2.12-1.149.1 - Fix wordexp to honour WRDENOCMD CVE-2014-7817, 1170121...
augeas security update
1.0.0-5.1 - Fix CVE-2013-6412, incorrect permissions under strict umask RHBZ1036079...
unbreakable enterprise kernel security update
2.6.39-400.211.3 - ip6output: do skb ufo init for peeked non ufo skb as well Jiri Pirko Orabug: 17951806 CVE-2013-4470 - ipoutput: do skb ufo init for peeked non ufo skb as well Jiri Pirko Orabug: 17951818 CVE-2013-4470 - KVM: x86: Fix potential divide by 0 in lapic CVE-2013-6367 Andy Honig Orabu...
kernel security and bug fix update
kernel 2.6.18-371.3.1 - net be2net: don't use GRO for packets w/ re-inserted VLAN tags Ivan Vecera 1023348 1008691 - net tg3: call pcienablewake to set power state John Feeney 1014973 996331 - misc backport fixes for percpu-rw-semaphore Mikulas Patocka 1014715 867997 - xen information leak via I/...
1
kernel 2.6.18-348.6.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
kernel security and bug fix update
kernel 2.6.18-348.2.1 - misc tainted flags, fix buffer size Prarit Bhargava 905829 901547 - net be2net: fix unconditionally returning IRQHANDLED in INTx Ivan Vecera 884704 878316 - net be2net: fix INTx ISR for interrupt behaviour on BE2 Ivan Vecera 884704 878316 - net be2net: fix a possible...
java-1.7.0-openjdk security update
1.7.0.9-2.3.7.1.0.2.el63 - Increase release number and rebuild. 1.7.0.9-2.3.7.1.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.7.1.el63 - Updated main source tarball - Resolves: rhbz911529 1.7.0.9-2.3.7.0.el63 - Removed patch1000 sec-2013-02-01-8005615.patch - Removed patch1001...
xen security update
3.0.3-142.el59.1 - libxc: move error checking next to the function which returned the error rhbz 876997 - libxc: builder: limit maximum size of kernel/ramdisk rhbz 876997...
Unbreakable Enterprise kernel security update
2.6.32-300.39.4 - exec: do not leave bprm-interp on stack Kees Cook Orabug: 16286741 CVE-2012-4530 - exec: use -ELOOP for max recursion depth Kees Cook Orabug: 16286741 CVE-2012-4530 2.6.32-300.39.3 - Xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests. Frediano Ziglio Orabug:...
nss, nss-util, and nspr security, bug fix, and enhancement update
nspr 4.9.2-0.1 - Retagging to ensure n-v-r is lower than the one for rhel-6.4 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR 4.9.2-1 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR nss 3.13.6-2.0.1.el63 - Added nss-vendor.patch to change vendor...
java-1.6.0-openjdk security update
1:1.6.0.0-1.50.1.11.5 - Changed permissions of sa-jdi.jar to correct 644 - Resolves: rhbz865045 1:1.6.0.0-1.49.1.11.5 - Updated to IcedTea6 1.11.5 - Resolves rhbzs 856124, 865346, 865348, 865350, 865352, 865354, 865357, 865359, 865363, 865365, 865370, 865428, 865471, 865434, 865511, 865514, 86551...
xulrunner security update
10.0.8-2.0.1.el63 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.8-2 - Added patches from 10.0.9 ESR...
glibc security update
2.12-1.80.el63.5 - Fix integer overflow leading to buffer overflow in strto and related out of bounds array index 847931...
gimp security update
2:2.2.13-2.0.7.el58.5 - fix overflow in GIF loader CVE-2012-3481 2:2.2.13-2.0.7.el58.4 - fix overflows in PSD plugin CVE-2009-3909, CVE-2012-3402 - fix heap corruption and overflow in GIF plug-in CVE-2011-2896 - fix overflow in CEL plug-in CVE-2012-3403...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.1-4 - Resolves: rhbz834219 - Fix postinstall scriptlet failures - Fix %post and %postun lines per packaging guidelines - Updated License: to MPLv2.0 per upstream 4.9.1-3 - Resolves: rhbz834219 - Ensure nspr-config.in changes get applied 4.9.1-2 - Resolves: rhbz834219 - restore top sectio...
389-ds-base security update
1.2.10.2-18 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0020 disallows users' direct modify on unhasheduserpassword 1.2.10.2-17 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0019 fixes deref issue. 1.2.10.2-16 -...
expat security update
2.0.1-11 - use symbol version for XMLSetHashSalt CVE-2012-0876, 816306 2.0.1-10 - add security fix for CVE-2012-1148 811825 - add security fix for CVE-2012-0876 811833...
ImageMagick security update
6.5.4.7-6 - Add fix for CVE-2010-4167 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798...
samba3x security update
3.5.10-0.108 - Security Release, fixes CVE-2012-1182 - resolves: 804650...
ruby security update
1.8.7.352-4 - Address CVE-2011-4815 'DoS excessive CPU use via hash meet-in-the-middle attacks oCERT-2011-003' ruby-1.8.7-p352-CVE-2011-4815.patch - Resolves: rhbz768831...
libxml2 security update
2.7.6-4.0.1.el62.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4.el62.1 - Make sure the parser returns when getting a Stop order CVE-2011-3905 - Fix an allocation error when copying entities CVE-2011-3919 - Resolves: rhbz771913...
freetype security update
2.3.11-6.el61.8 - Add freetype-2.3.11-CVE-2011-3439.patch Various loading fixes. - Resolves: 754011...
xorg-x11-server security update
1.7.7-29.2 - cve-2011-4818.patch: Multiple input sanitization flaws in GLX and Render...
seamonkey security update
1.0.9-72.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-72.el4 - Added fixes from 1.9.2.20...