9173 matches found
exiv2 security, bug fix, and enhancement update
0.27.0-2 - Minor improvements Resolves: bz1652637 0.27.0-1 - Exiv2 0.27.0 Resolves: bz1652637...
firefox security update
60.4.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.4.0-1 - Update to 60.4.0 ESR 60.3.0-2 - Added firefox-gnome-shell-extension...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.1 - Fix invalid license 'LGPL+' should be LGPLv2+ for ECC code and add missing ones - Resolves: rhbz1559766 1:1.7.0.181-2.6.14.0 - Bump to 2.6.14 and u181b00. - Drop 8197981 Zero 32-bit patch now applied upstream. - Updat...
python-paramiko security update
1.7.5-4 - Fix and enable tests %check. - Backport a change which makes tests exit with nonzero status when they fail. - Add a fix for upstream tests for CVE-2018-7750 broken in previous. 1.7.5-3 - Fix a security flaw CVE-2018-7750 in Paramiko's server mode emphasis on server mode; this does not...
firefox security update
52.5.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.5.1-1 - Update to 52.5.1 ESR...
postgresql security update
8.4.20-8 - backport fix for CVE-2017-7546 rhbz1484677...
Unbreakable Enterprise kernel security update
2.6.39-400.297.9 - fs/binfmtelf.c: fix bug in loading of PIE binaries Michael Davidson Orabug: 26870958 CVE-2017-1000253...
kernel security update
2.6.32-696.10.3.OL6 - Update genkey bug 25599697 2.6.32-696.10.3 - fs binfmtelf.c:loadelfbinary: return -EINVAL on zero-length mappings Petr Matousek 1492959 1492961 CVE-2017-1000253 - fs binfmtelf.c: fix bug in loading of PIE binaries Petr Matousek 1492959 1492961 CVE-2017-1000253...
NetworkManager and libnl3 security, bug fix and enhancement update
NetworkManager 1:1.8.0-9 - device: don't change MTU unless explicitly configured rh 1460760 - core: don't remove external IPv4 addresses rh 1459813 1:1.8.0-8 - cli: fix output of iface in overview output rh1460219 - ppp: unexport NMPPPManager instance on dispose rh1459579 - cli: remove spurious...
curl security update
7.19.7-53 - treat Negotiate authentication as connection-oriented CVE-2017-2628...
qemu-kvm security and bug fix update
1.5.3-126.el73.5 - kvm-cirrus-fix-patterncopy-checks.patch bz1420490 - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch bz1420490 - kvm-cirrus-add-blitisunsafe-call-to-cirrusbitbltcput.patch bz1420490 - Resolves: bz1420490 EMBARGOED CVE-2017-2620 qemu-kvm: Qemu: display: cirrus:...
spice security update
0.12.4-20 - Fix buffer overflow in mainchannelallocmsgrcvbuf when reading large messages. Resolves: CVE-2016-9577 - Fix remote DoS via crafted message. Resolves: CVE-2016-9578...
krb5 security update
1.13.2-12 - Fix CVE-2015-8631, CVE-2015-8630, and CVE-2015-8629 - Remove obsolete trigger to enable building of package - Resolves: 1306969...
samba4 security update
4.0.0-68.rc4 - resolves: 1314670 - Fix CVE-2015-7560...
openldap security, bug fix, and enhancement update
2.4.40-8 - NSS does not support string ordering 1231522 - implement and correct order of parsing attributes 1231522 - add multimask and multistrength to correctly handle sets of attributes 1231522 - add new cipher suites and correct AES-GCM attributes 1245279 - correct DEFAULT ciphers handling to...
qemu-kvm security update
0.12.1.2-2.479.el67.2 - kvm-net-add-checks-to-validate-ring-buffer-pointers-CVE-.patch bz1263274 - Resolves: bz1263274 CVE-2015-5279 qemu-kvm: qemu: Heap overflow vulnerability in ne2000receive function rhel-6.7.z...
firefox security update
38.3.0-2.0.1.el67 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.3.0-2 - Update to 38.3.0 ESR...
Unbreakable Enterprise kernel security update
2.6.39-400.250.11 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628851 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563043 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562781 CVE-2014-9715...
bind97 security update
32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
wpa_supplicant security and enhancement update
1:0.7.3-6 - AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 rh 1226396 1:0.7.3-5 - Add domainmatch config option from upstream rh 1186806 rh 1178263 - Include peer certificate in EAP events for use by clients - Add dbus signal for information about server certification -...
docker security update
1.6.1-1.0.1 - Update source to 1.6.1 from https://github.com/docker/docker/releases/tag/v1.6.1 Symlink traversal on container respawn allows local privilege escalation CVE-2015-3629 Insecure opening of file-descriptor 1 leading to privilege escalation CVE-2015-3627 Read/write proc paths allow hos...
firefox security update
firefox 24.8.0-1.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 24.8.0-1 - Update to 24.8.0 ESR xulrunner 24.8.0-1.0.1.el70 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 24.8.0-...
nss, nss-util, nss-softokn security, bug fix, and enhancement update
nss 3.16.2-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-2 - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 3.16.2-1 - Rebase to...
openssl security update
1.0.1e-34.4 - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3507 - avoid memory leak in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3509 - fix race condition when parsing serve...
openssl security update
0.9.8e-27.4 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous ECDH...
389-ds-base security update
1.2.11.15-34 - Release 1.2.11.15-34 - Resolves: 1123861 EMBARGOED CVE-2014-3562 unauthenticated information disclosure rhel-6.5.z DS 616, BZ 1123477...
samba and samba3x security update
3.6.9-169 - resolves: 1105499 - CVE-2014-0244: DoS in nmbd. - resolves: 1108840 - CVE-2014-3493: DoS in smbd with unicode path names...
squid security update
7:3.1.10-20.3 - Resolves: 1098134 - CVE-2014-0128 squid: denial of service when using SSL-Bump 7:3.1.10-20.2 - revert: Resolves: 1039088 - issues with timeout on HTTPS connections 7:3.1.10-20.1 - Resolves: 1093072 - issues with timeout on HTTPS connections...
gnutls security update
2.8.5-14 - fix session ID length check 1102024...
thunderbird security update
24.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 24.5.0-1 - Update to 24.5.0...
kvm security update
kvm-83-266.0.1.el510.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-26610.1.el5 - KVM: x86: prevent cross page vapicaddr access CVE-2013-6368 bz1032219 - KVM: x86: Fix potential divide by 0 in lapic CVE-2013-6367 bz1032216 - Resolves:...
firefox security update
24.2.0-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Build with nspr-devel = 4.10.0 to fix build failure 24.2.0-1 - Update to 24.2.0 ESR 24.1.0-4 - Fixed mozbz938730 - avoid mix of memory allocators crashes when using system sqlite 24.1.0-3 - Fixed...
samba4 security and bug fix update
4.0.0-58.rc4 - Fix winbind lsat reconnection code, avoids ntlmv2-only session setup problems - resolves: 949993 4.0.0-57.rc4 - resolves: 984809 - CVE-2013-4124: DoS via integer overflow when reading an EA list 4.0.0-56.rc4 - Fix libwbclient.so.0 symlink. - resolves: 882338 - Fix correct linking o...
php53 security update
5.3.3-13.1 - add security fix for CVE-2013-4113...
curl security update
7.19.7-36 - fix cookie tailmatching to prevent cross-domain leakage CVE-2013-1944...
bind97 security update
32:9.7.0-17.P2.1 - fix CVE-2013-2266...
tcl security and bug fix update
8.4.13-6 - Fixed infinite loop in regex NFA optimization code Resolves: CVE-2007-4772 - Fixed ON^2 compile time and huge memory requirements for some regexps Resolves: CVE-2007-6067 8.4.13-5 - Threaded / nonthreaded versions of tcl are now switchable through alternatives Resolves: rhbz478961...
mysql security update
5.1.66-2 - Add backported patch for CVE-2012-5611 Resolves: CVE-2012-5611...
Unbreakable Enterprise kernel Security update
2.6.39-200.34.1 - net/sfc limit number of segments per skb on tx Maxim Uvarov Orabug: 14769994 CVE-2012-3412...
quagga security update
0.98.6-7.1 - fix CVE-2011-3323 - fix CVE-2011-3324 - fix CVE-2011-3325 - fix CVE-2011-3326 - fix CVE-2011-3327 - fix CVE-2012-0249 - fix CVE-2010-1674 0.98.6-7 - Resolves: 638628 - CVE-2007-4826 CVE-2010-2948 quagga: various flaws 0.98.6-6 - Resolves: 528583 - Missing declarations cause zebra to...
krb5 security update
1.9-33.2 - pull up the patch to correct a possible NULL pointer dereference in kadmind CVE-2012-1013, 827517 1.9-33.1 - add candidate patch from upstream to fix freeing uninitialized pointer in the KDC MITKRB5-SA-2012-001, CVE-2012-1015, 839859...
glibc security and bug fix update
2.12-1.80.el63.3 - Fix incorrect/corrupt patchfile for 833716. Did not affect generated code, but tests were missing 833716. 2.12-1.80.el63.2 - Fix regression after patch for BZ804630 837026. 2.12-1.80.el63.1 - Fixes an unbound alloca and related problems. 833716...
sudo security update
1.7.4p5-12 - added patch for CVE-2012-2337 Resolves: rhbz829756...
openssh security, bug fix, and enhancement update
5.3p1-81 - fixes in openssh-5.3p1-required-authentications.patch 657378 5.3p1-79 - fix forward on non-localhost ports with IPv6 732955 5.3p1-78 - clear SELinux exec context before exec passwd 814691 5.3p1-77 - prevent post-auth resource exhaustion 809938 5.3p1-76 - don't escape backslah in a bann...
mysql security and enhancement update
5.1.61-4 - Add backported patch for CVE-2012-2102 Resolves: 812435 5.1.61-3 - Enable innodb plugin, but only on x86 and x8664 architectures Resolves: 740224...
ImageMagick security update
6.5.4.7-6 - Add fix for CVE-2010-4167 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798...
gnutls security update
2.8.5-4.2 - fix CVE-2012-1573 - security issue in packet parsing 805432 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308...
ruby security update
1.8.7.352-4 - Address CVE-2011-4815 'DoS excessive CPU use via hash meet-in-the-middle attacks oCERT-2011-003' ruby-1.8.7-p352-CVE-2011-4815.patch - Resolves: rhbz768831...
pidgin security update
2.7.9-3.el62.2 - Add patch for CVE-2011-4602 RH bug 766452. 2.7.9-3.el62.1 - Add patch for CVE-2011-4601 RH bug 766452...