9172 matches found
qemu-kvm security update
...
Unbreakable Enterprise kernel-container security update
5.4.17-2136.310.7.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981855 CVE-2022-21385...
Unbreakable Enterprise kernel security update
4.14.35-2047.516.2.1 - rds: copyfromuser only once per rdssendmsg system call Hans Westgaard Ry Orabug: 33981856 CVE-2022-21385...
grafana security update
7.5.11-3 - resolve CVE-2022-31107 grafana: OAuth account takeover...
thunderbird security update
91.11.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Enabled aarch64 build 91.11.0-2 - Update to 91.11.0 build2 91.11.0-1 - Update to 91.11.0 build1...
libxml2 security update
2.9.7-13.1 - Fix CVE-2022-29824 2082297...
compat-openssl10 security update
1:1.0.2o-4 - Fix CVE-2022-0778: Infinite loop in BNmodsqrt reachable when parsing certificates Resolves: rhbz2077417...
python-pillow security update
5.1.1-18 - Fixup for CVE-2022-22817 - Security fixes for CVE-2022-22815, CVE-2022-22816 Resolves: rhbz2042522 5.1.1-17 - Fix for CVE-2022-22817 Resolves: rhbz2042527...
firefox security update
91.3.0-1.0.1 - Remove upstream references Orabug: 30143292 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 91.3.0-1 - Update to 91.3.0 build1...
webkit2gtk3 security and bug fix update
2.30.4-3 - Fix crashing on aarch64 - Resolves: 2010825 2.30.4-2 - Fix CVE-2021-30858 - Resolves: 2006427...
Unbreakable Enterprise kernel-container security update
5.4.17-2102.206.1 - Revert 'scsi: core: Cap scsihost cmdperlun at canqueue' Jack Vogel Orabug: 33403144 5.4.17-2102.206.0 - Revert 'uek-rpm: Don't recompute build-ids for kernel-uek-debuginfo' Jack Vogel Orabug: 33245043 - integrity: Load mokx variables into the blacklist keyring Eric Snowberg...
go-toolset:ol8 security update
go-toolset 1.15.14-2 - Revert to Go 1.15.14 - Related: rhbz1995126 - Reverts: rhbz1994087 1.15.15-1 - Rebase to Go 1.15.15 - Resolves: rhbz1994087 - Add reject leading zeros patch - Resolves: rhbz1994010...
qt5-qtimageformats security update
5.9.7-2 - libwebp security fixes: Resolves: bz1961742 Resolves: bz1961743 Resolves: bz1961744 Resolves: bz1961745...
grafana security, bug fix, and enhancement update
7.3.6-2 - change working dir to in grafana-cli wrapper fixes Red Hat BZ 1916083 - add pcp-redis-datasource to allowloadingunsignedplugins config option 7.3.6-1 - update to 7.3.6 tagged upstream community sources, see CHANGELOG - remove dependency on SAML not supported in the open source version o...
freerdp security, bug fix, and enhancement update
2:2.2.0-1 - Update to 2.2.0 rhbz1881971...
thunderbird security update
78.6.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 78.6.1-1 - Update to 78.6.1...
edk2 security, bug fix, and enhancement update
20200602gitca407c7246bf-3.el8 - edk2-UefiCpuPkg-PiSmmCpuDxeSmm-pause-in-WaitForSemaphore-.patch bz1861718 - Resolves: bz1861718 Very slow boot when overcommitting CPU 20200602gitca407c7246bf-2.el8 - edk2-OvmfPkg-QemuKernelLoaderFsDxe-suppress-error-on-no-k.patch bz1844682 -...
libxslt security update
1.1.32-5.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-5 - Fix CVE-2019-18197 1775517 - Fix CVE-2019-11068 1715732...
squid:4 security, bug fix, and enhancement update
...
libmspack security update
0.5-0.8.alpha - Fix for CVE-2019-1010305 resolves: rhbz1736744...
freeradius security and bug fix update
3.0.13-15 - Fixes EAP-PWD: DoS issues due to multithreaded BNCTX access Resolves: bz1818808 3.0.13-14 - Fixes receiving of multiple RADIUS packets under load Resolves: bz1630684 3.0.13-13 - Fixes logging of cleartext pap password Resolves: bz1677435 3.0.13-12 - Fixes paircompare with attribute...
audiofile security update
1:0.3.6-9 - Apply security patches. CVE-2018-17095, CVE-2018-13440 - Resolves: rhbz1600369, rhbz1601014, rhbz1637128 1:0.3.6-8 - Escape macros in %changelog 1:0.3.6-7 - Merge upstream pull requests 42,43,44 from Agostino Sarubbo to fix security issues. CVE-2017-6827, CVE-2017-6828, CVE-2017-6829,...
subversion security update
1.7.14-16 - add security fix for CVE-2018-11782...
glib2 and ibus security and bug fix update
glib2 2.56.1-7 - Backport patch to limit access to files when copying CVE-2019-12450 Resolves: 1722099 2.56.1-6 - Backport patches for GDBus auth Resolves: 1777221 ibus 1.5.17-11 - Resolves: 1750835 - Fix CVE-2019-14822 missing authorization allows...
freerdp security, bug fix, and enhancement update
2.1.1-2 - Update to 2.1.1 1834286...
thunderbird security update
68.11.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.11.0-1 - Update to 68.11.0 build1...
firefox security update
68.6.0-1.0.1.el610 - fix LDLIBRARYPATH - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.6.0-1 - Update to 68.6.0 build1 68.5.0-3 - Added fix for rhbz1805667 - Enabled mzbz@1170092 - Firefox prefs at /etc Fri...
firefox security update
68.5.0-2.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one Fri Feb 07 2020 Jan Horak - Update to 68.5.0 build2 Wed Feb 05 2020 Jan Horak - Update to 68.5.0 build1 Wed Jan 08 2020 Jan Horak - Update to 68.4.1esr build1 Fri Jan 03 2020 Jan Horak ...
grafana security update
6.3.6-2 - fix CVE-2020-13379...
libreoffice security and bug fix update
6.0.6.1-20.0.1.el8 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:6.0.6.1-20 - Resolves: rhbz1743958 CVE-2019-9849, etc. - Resolves: rhbz1648281 Junk character gets added when some emojis are...
sudo security, bug fix, and enhancement update
1.8.29-5 - RHEL 8.2 ERRATUM - CVE-2019-18634 Resolves: rhbz1798093 1.8.29-4 - RHEL 8.2 ERRATUM - CVE-2019-19232 Resolves: rhbz1786987 Resolves: rhbz1796518 1.8.29-2 - RHEL 8.2 ERRATUM - rebase to 1.8.29 Resolves: rhbz1733961 Resolves: rhbz1651662 1.8.28p1-1 - RHEL 8.2 ERRATUM - rebase to 1.8.28p1...
texlive security update
2:2012-45.20130427r30134 - Related: 1650521, buffer overflow in t1checkunusualcharstring function 2:2012-44.20130427r30134 - Resolves: 1650521, buffer overflow in t1checkunusualcharstring function...
curl security and bug fix update
7.29.0-57.0.1 - Fix TFTP small blocksize heap buffer overflow https://curl.haxx.se/docs/CVE-2019-5482.htmlCVE-2019-5482Orabug: 30568724 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitiv...
SDL security update
1.2.15-15 - Fix CVE-2019-13616 a heap buffer over-read in BlitNtoN bug 1747237 - Resolves: rhbz1756276...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.50-7 - Dont send change updates for login history changes Resolves: 1713080 appstream-data 8-20190805 - Regenerate the RHEL metadata to include the latest cockpit changes - Resolves: 1673011 8-20190719 - Regenerate the RHEL metadata - Resolves: 1673011 8-20180721 - Regenerate...
Unbreakable Enterprise kernel security update
4.14.35-1902.7.3 - rds: Rename rdssendping to rdssendhsping Hakon Bugge Orabug: 30418043 - rds: Use READ,WRITEONCE for heartbeat start and state Hakon Bugge Orabug: 30418043 - rds: Change heartbeat params from module params to sysctl Hakon Bugge Orabug: 30418043 - rds: Fix and augment probe...
kde-workspace security and bug fix update
kdelibs 6:4.14.8-10 - Do not fork konsole process when opening terminal from apps using dolphin-part Resolves: bz1710362 6:4.14.8-9 - Do not fork konsole process when opening terminal from apps using dolphin-part Resolves: bz1710362 6:4.14.8-8 - Disable JAR repack script to avoid multilib...
binutils security and bug fix update
2.27-41.base.0.1 - Complete the backport of upstream commit a5def14f1ca70e14d9433cb229c9369fa3051598 Add a test for R386GOT32/R386GOT32X IFUNC reloc error Orabug 27930573 - Reviewed-by: Jose E. Marchesi 2.27-41.base - Fix up some linker tests that fail because of the Rx8664GOTPCRELX patch. 169974...
oraclelinux-release-el6 security update
1.0-5 - Fix olyumconfigure.sh OraBug 29241080...
flatpak security update
1.0.2-4 - Tweak /proc sandbox patch 1675433 1.0.2-3 - Do not mount /proc in root sandbox 1675433...
openssl security update
1.0.1e-57.0.5 - Merge upstream patch to fix CVE-2018-0739 1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
libvirt security and bug fix update
3.9.0-14.el75.4 - lxc: Drop useless check in live device update rhbz1557922 - Pass oldDev to virDomainDefCompatibleDevice on device update rhbz1557922 - qemu: Fix updating device with boot order rhbz1557922 - conf: Fix crash in virDomainDefCompatibleDevice rhbz1557922 - vmx: check for...
libvorbis security update
1.2.3-5.1 - Backport fix for CVE-2018-5146 1.2.3-5 - fix CVE-2012-0444 787077...
quagga security update
0.99.22.4-5 - Fixed CVE-2018-5379 - Double free vulnerability in bgpd when processing certain forms of UPDATE message allowing to crash or potentially execute arbitrary code - Resolves: rhbz1546015...
qemu-kvm security update
1.5.3-141.el74.1 - kvm-qemu-nbd-Ignore-SIGPIPE.patch bz1468107 - Resolves: bz1468107 CVE-2017-10664 qemu-kvm: Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort rhel-7.4.z...
qemu-kvm security update
0.12.1.2-2.491.el68.7 - kvm-cirrus-fix-patterncopy-checks.patch bz1420486 bz1420488 - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch bz1420486 bz1420488 - kvm-cirrus-add-blitisunsafe-call-to-cirrusbitbltcput.patch bz1420486 bz1420488 - Resolves: bz1420486 EMBARGOED CVE-2017-2620...
bind security update
32:9.9.4-38.2 - Fix CVE-2017-3135 ISC change 4557 - Fix and test caching CNAME before DNAME ISC change 4558...
bind security update
30:9.3.6-25.P1.12 - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530...
tomcat security update
0:7.0.54-8 - Resolves: rhbz1368121 0:7.0.54-7 - Resolves: rhbz1362212 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368121 0:7.0.54-5 - Resolves: rhbz1362567 0:7.0.54-4 - Resolves: CVE-2015-5346 0:7.0.54-3 - Resolves: CVE-2014-7810...
squid security update
7:3.3.8-26.3 - Related: 1330576 - CVE-2016-4553 squid: Cache poisoning issue in HTTP Request handling - Related: 1334491 - CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 squid: various flaws 7:3.3.8-26.2 - Related: 1330576 - CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: various flaws...