8993 matches found
tcl security and bug fix update
8.4.13-6 - Fixed infinite loop in regex NFA optimization code Resolves: CVE-2007-4772 - Fixed ON^2 compile time and huge memory requirements for some regexps Resolves: CVE-2007-6067 8.4.13-5 - Threaded / nonthreaded versions of tcl are now switchable through alternatives Resolves: rhbz478961...
Unbreakable Enterprise kernel Security update
2.6.39-200.34.1 - net/sfc limit number of segments per skb on tx Maxim Uvarov Orabug: 14769994 CVE-2012-3412...
quagga security update
0.98.6-7.1 - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0249 - fix CVE-2010-1674 0.98.6-7 - Resolves: 638628 - CVE-2007-4826 CVE-2010-2948 quagga: various flaws 0.98.6-6 - Resolves: 528583 - Missing declarations cause zebra to...
xen security update
3.0.3-135.el58.5 - console: Prevent escape sequence length overflow rhbz 851253...
glibc security and bug fix update
2.5-81.el58.7 - Fix out of bounds array access in strto exposed by 847929 patch. 2.5-81.el58.6 - Fix integer overflow leading to buffer overflow in strto 847929 2.5-81.el58.5 - Do not use PTIEEEIP ptrace calls 839411 - Update ULPs 839411 - Fix various transcendentals in non-default rounding modes...
glibc security update
2.12-1.80.el63.5 - Fix integer overflow leading to buffer overflow in strto and related out of bounds array index 847931...
libreoffice security update
3.4.5.2-16.1.0.1.el63 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 3.4.5.2-16.1 - Resolves: rhbz839867 CVE-2012-2665...
glibc security and bug fix update
2.12-1.80.el63.3 - Fix incorrect/corrupt patchfile for 833716. Did not affect generated code, but tests were missing 833716. 2.12-1.80.el63.2 - Fix regression after patch for BZ804630 837026. 2.12-1.80.el63.1 - Fixes an unbound alloca and related problems. 833716...
expat security update
2.0.1-11 - use symbol version for XMLSetHashSalt CVE-2012-0876, 816306 2.0.1-10 - add security fix for CVE-2012-1148 811825 - add security fix for CVE-2012-0876 811833...
postgresql and postgresql84 security update
8.4.11-1 - Update to PostgreSQL 8.4.11, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-11.html http://www.postgresql.org/docs/8.4/static/release-8-4-10.html including the fixes for CVE-2012-0866, CVE-2012-0867, CVE-2012-0868 Resolves: 812081...
gnutls security update
2.8.5-4.2 - fix CVE-2012-1573 - security issue in packet parsing 805432 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308...
pidgin security update
2.7.9-3.el62.2 - Add patch for CVE-2011-4602 RH bug 766452. 2.7.9-3.el62.1 - Add patch for CVE-2011-4601 RH bug 766452...
bind security update
32:9.7.3-2.3.P3 - fix DOS against recursive servers 754398 32:9.7.3-2.2.P3 - update to 9.7.3-P3 CVE-2011-2464 32:9.7.3-2.1.P1 - update to 9.7.3-P1 CVE-2011-1910...
xorg-x11-server security update
1.7.7-29.2 - cve-2011-4818.patch: Multiple input sanitization flaws in GLX and Render...
thunderbird security update
3.1.11-1.0.1.el61 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.11-2 - Update to 3.1.11...
openssl security, bug fix, and enhancement update
1.0.0-10 - fix OCSP stapling vulnerability - CVE-2011-0014 676063 - correct the README.FIPS document 1.0.0-8 - add -x931 parameter to openssl genrsa command to use the ANSI X9.31 key generation method - use FIPS-186-3 method for DSA parameter generation - add OPENSSLFIPSNONAPPROVEDMD5ALLOW...
kdelibs security update
6:4.3.4-11.2 - rebase the fix for CVE-2011-1094 6:4.3.4-11.1 - fixes CVE-2011-1094, CVE-2011-1168...
postfix security update
2:2.6.6-2.1 - fix CVE-2011-0411 682978...
subversion security update
1.6.11-2.3 - add security fix for CVE-2011-0715 681173...
kernel security and bug fix update
2.6.18-238.1.1.0.1.el5 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - net Enable...
mysql security update
5.0.77-4.4 - Add fixes for CVE-2010-3677, CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3833, CVE-2010-3835, CVE-2010-3836, CVE-2010-3837, CVE-2010-3838, CVE-2010-3839, CVE-2010-3840 Resolves: 645642 - Backpatch strmov fix so that code can be tested on more recent platforms...
firefox security update
3.6.11-4.0.1.el48 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.11-4.el48 - Add upstream patch for CVE-2010-3765...
quagga security update
0.98.6-5.el55.2 - Resolves: 638627 - CVE-2007-4826 CVE-2010-2948 quagga: various flaws...
kvm security and bug fix update
kvm-83-164.0.1.el55.21 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-164.el55.21 - kvm-Fix-segfault-in-mmio-subpage-handling-code.patch bz619412 - Resolves: bz619412 CVE-2010-2784 qemu: insufficient constraints checking in...
tar security update
1.13.25-16.RHEL3 - CVE-2010-0624 - fix heap-based buffer overflow by expanding a specially-crafted archive...
cpio security update
2.5-6 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive 2.5-5.RHEL3 - fix buffer overflow on 64-bit systems 229191...
kvm security and bug fix update
kvm-83-105.0.1.el54.22 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.22 - kvm-CVE-2010-0297-usb-linux.c-fix-buffer-overflow.patch bz560769 - Resolves: bz560769 CVE-2010-0297 kvm-userspace-rhel5: usb-linux.c: fix buffer overflow rhel-5.4.z kvm-83-105.el54.21 -...
samba security and bug fix update
3.0.9-1.3E.16 - Security Release, fixes CVE-2009-2906 - resolves: 526657 3.0.9-X - Fix user facing cosmetic bug in patch for CVE-2007-2447 - resolves: 242754...
udev security update
095-14.20 - fix for CVE-2009-1185 bug 495051 - Resolves: rhbz495055...
squirrelmail security update
1.4.8-5.0.1.el52.3 - Remove Redhat splash screen images 1.4.8-5.3 - Update patch for CVE-2008-3663 to fix a session handling regression 480224...
bind security update
9.3.4-6.0.3.P1 - check DSAdoverify return value correctly...
bzip2 security update
1.0.3-4 - Resolves: 461587 fix cash on malformed archive file - CVE-2008-1372 apply upstream patch...
xorg-x11-server security update
1.1.1-48.41.0.1.el52.1 - Added Enterprise Linux detection 1.1.1-48.41.1 - cve-2008-1377.patch: Record and Security Extension Input validation - cve-2008-1379.patch: MIT-SHM extension Input Validation flaw - cve-2008-2360.patch: Render AllocateGlyph extension Integer overflows - cve-2008-2361.patc...
bind security, bug fix, and enhancement update
30:9.3.4-6.P1 - final 5.2 version - minor changes in initscript - improved patches for 250744 and 250901 30:9.3.4-5.P1 - improved patch to handle D-BUS races 240876 - updated named.root zone to affect root IPv6 migration 30:9.3.4-4.P1 - improved fix for 253537, posttrans script is now used - do n...
Important: tetex security update
2.0.2-22.0.1.EL4.8 - backport upstream fix for xpdf integer overflow CVE-2007-3387 248207 Resolves: 248207...
Important: XFree86 security update
4.3.0-115.EL.0.2 - Change Patch - needs to be -p0 not -p1 4.3.0-115.EL.0.1 - Add oracle detection to Imake. 4.3.0-115.EL - Add xorg-x11-6.8.2-sorted-xkbcomp-dirs.patch to fix rpmdiff multilib failure. 4.3.0-114.EL - Add xorg-x11-server-CVE-2006-6101.patch 218870 4.3.0-113.EL - Fix for CID font...
nodejs:20 security update
nodejs 1:20.16.0-1 - Update to 20.16.0 Fixes: CVE-2024-36137 CVE-2024-22018 CVE-2024-22020 nodejs-nodemon nodejs-packaging...
bind9.16 security update
32:9.16.23-0.22 - Minor fix of reclimit test backport CVE-2024-1737 32:9.16.23-0.21 - Backport addition of max-records-per-type and max-records-per-type options CVE-2024-1737 32:9.16.23-0.20 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Resolve CVE-2024-4076 - Add ability to change runtime...
go-toolset:ol8 security update
delve golang 1.21.9-1 - Fix CVE-2023-45288 - Resolves: RHEL-31915 go-toolset 1.21.9-1 - Fix CVE-2023-45288 - Resolves: RHEL-31915...
idm:DL1 and idm:client security update
bind-dyndb-ldap custodia ipa 4.9.13-9.0.1 - Set IPAPLATFORM=rhel when build on Oracle Linux Orabug: 29516674 9.4.13-9 - dcerpc: invalidate forest trust intfo cache when filtering out realm domains Resolves: RHEL-28559 - Backport latests test fixes in python3-tests ipatests: add xfail for...
nodejs:18 security update
nodejs 1:18.20.2-2 - Removes .ps1 files - Rebase to 18.20.2 - Fixes: CVE-2024-27983, CVE-2024-28182, CVE-2024-27982, CVE-2024-25629 nodejs-nodemon nodejs-packaging...
gnutls security update
3.8.3-4 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-3 - Bump release to ensure el9 package is greater than el9 packages 3.8.3-2 - Fix timing side-channel in deterministic ECDSA RHEL-28959 - Fix potential crash during chain building/verification RHEL-28954...
tigervnc security update
1.13.1-8 - Fix copy/paste error in the DeviceStateNotify Resolves: RHEL-20533 1.13.1-7 - Fix CVE-2024-21886 tigervnc: xorg-x11-server: heap buffer overflow in DisableDevice Resolves: RHEL-20389 - Fix CVE-2024-21885 tigervnc: xorg-x11-server: heap buffer overflow in XISendDeviceHierarchyEvent...
traceroute security update
3:2.1.0-18 - add gating.yaml 3:2.1.0-17 - fix improper command line parsing CVE-2023-46316...
python3.11-urllib3 security update
1.26.12-2 - Security fix for CVE-2023-43804 Resolves: RHEL-12003...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.330.7.1.el7 - KVM: x86: Add BHINO Daniel Sneddon Orabug: 36384803 CVE-2024-2201 - x86/bhi: Mitigate KVM by default Pawan Gupta Orabug: 36384803 CVE-2024-2201 - x86/bhi: Add BHI mitigation knob Pawan Gupta Orabug: 36384803 CVE-2024-2201 - x86/bhi: Enumerate Branch History Injection BHI...
nodejs:18 security update
nodejs 1:18.19.1-1 - Rebase to version 18.19.1 - Fixes: CVE-2024-21892 CVE-2024-22019 high - Fixes: CVE-2023-46809 medium nodejs-nodemon nodejs-packaging...
thunderbird security update
115.9.0-1.0.1 - Add Oracle prefs 115.9.0-1 - Update to 115.9.0 build1 - Fix expat CVE-2023-52425...
squid security update
7:5.5-6.0.1.8 - Rebuild with release bump 7:5.5-6.8 - Resolves: RHEL-19555 - squid: denial of service in HTTP request parsing CVE-2023-50269 7:5.5-6.7 - Resolves: RHEL-28614 - squid: Denial of Service in HTTP Chunked Decoding CVE-2024-25111 7:5.5-6.6 - Resolves: RHEL-26091 - squid: denial of...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.328.3.el7 - IB/cm: Cancel mad on the DREQ event when the state is MRAREPRCVD Mark Zhang Orabug: 36143228 - KSPLICE: make sure the stack is zeroed. Gregory Herrero Orabug: 36154654 - sched/fair: Fix tg-load when offlining a CPU Vincent Guittot Orabug: 36185207 - i2c: core: Fix atomic...