9173 matches found
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.37.1 - Input: gtco - bounds check collection indent level Grant Hernandez Orabug: 30074414 CVE-2019-13631...
firefox security update
60.7.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.0-1 - Manaul CentOS Debranding 60.7.0-1 - Updated to 60.7.0 ESR 60.6.3-1 - Updated to 60.6.3 ESR 60.6.2-1 - Updated to 60.6....
oraclelinux-release-el6 security update
1.0-5 - Fix olyumconfigure.sh OraBug 29241080...
flatpak security update
1.0.2-4 - Tweak /proc sandbox patch 1675433 1.0.2-3 - Do not mount /proc in root sandbox 1675433...
spamassassin security update
3.4.0-4 - Add missing Requires for perlXSLoader and perlExtUtils::MakeMaker, - which are no longer auto-generated due to a expected change in rpm-build - Related: rhbz1632998 3.4.0-3 - Fix CVE-2018-11781 - Local user code injection in the meta rule syntax - Fix CVE-2017-15705 - Certain unclosed...
openssl security update
1.0.1e-57.0.5 - Merge upstream patch to fix CVE-2018-0739 1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
firefox security update
52.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.7.0-1 - Update to 52.7.0 ESR...
sssd security and bug fix update
1.15.2-50.8 - Resolves: rhbz1508972 - Accessing IdM kerberos ticket fails while id mapping is applied rhel-7.4.z - Resolves: rhbz1509177 - Race condition between refreshing the crdomain list and a request that is using the list can cause a segfault is sssdnss rhel-7.4.z 1.15.2-50.7 - Resolves:...
kernel security and bug fix update
3.10.0-693.1.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 3.10.0-693.1.1.el7.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update...
qemu-kvm security update
1.5.3-141.el74.1 - kvm-qemu-nbd-Ignore-SIGPIPE.patch bz1468107 - Resolves: bz1468107 CVE-2017-10664 qemu-kvm: Qemu: qemu-nbd: server breaks with SIGPIPE upon client abort rhel-7.4.z...
bind security update
30:9.3.6-25.P1.12 - Fix CVE-2016-9147 ISC change 4510 - Fix regression introduced by CVE-2016-8864 ISC change 4530...
tomcat security update
0:7.0.54-8 - Resolves: rhbz1368121 0:7.0.54-7 - Resolves: rhbz1362212 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368121 0:7.0.54-5 - Resolves: rhbz1362567 0:7.0.54-4 - Resolves: CVE-2015-5346 0:7.0.54-3 - Resolves: CVE-2014-7810...
libtiff security update
4.0.3-25 - Add patches for CVEs: CVE-2015-7554, CVE-2015-8683, CVE-2015-8665, CVE-2015-8781, CVE-2015-8782, CVE-2015-8783, CVE-2015-8784 - Related: 1299920 4.0.3-24 - Update patches for CVEs: CVE-2014-8127, CVE-2014-8130 - Related: 1299920 4.0.3-23 - Update patches: CVE-2014-9330, CVE-2014-8127,...
libtiff security update
3.9.4-18 - Update patch for CVE-2014-8127 - Related: 1335099 3.9.4-17 - Fix patches for CVE-2016-3990 and CVE-2016-5320 - Related: 1335099 3.9.4-16 - Add patches for CVEs: - CVE-2016-3632 CVE-2016-3945 CVE-2016-3990 - CVE-2016-3991 CVE-2016-5320 - Related: 1335099 3.9.4-15 - Update patch for...
bind security update
30:9.3.6-25.P1.4 - Fix CVE-2015-5722 30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
firefox security update
38.2.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.2.0-4 - Update to 38.2.0 ESR...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.1.1 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563041 CVE-2015-5697...
thunderbird security update
31.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 31.6.0-1 - Update to 31.6.0...
libvirt security and bug fix update
1.1.1-29.0.1.el70.4 - Replace docs/et.png in tarball with blank image 1.1.1-29.el70.4 - qemu: blockcopy: Don't remove existing disk mirror info rhbz1149078 - qemu: copy: Accept 'format' parameter when copying to a non-existing img rhbz1149078 - qemu: reject rather than hang on blockcommit of acti...
axis security update
0:1.2.1-7.5 - Fix MITM security vulnerability - Use GCJ friendly patch - Resolves: CVE-2014-3596 0:1.2.1-7.4 - Fix MITM security vulnerability - Resolves: CVE-2014-3596...
json-c security update
0.11-4 - fix has collision CVE-2013-6371 - fix buffer overflow CVE-2013-6370 - enable upstream test suite...
gnutls security update
2.8.5-14 - fix session ID length check 1102024...
thunderbird security update
24.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 24.5.0-1 - Update to 24.5.0...
gnutls security update
1.4.1-14 - Renamed gnutls-1.4.1-cve-2014-0092-1.patch to cve-2014-5138.patch - Renamed gnutls-1.4.1-cve-2014-0092-2.patch to cve-2014-0092.patch 1.4.1-13 - fix issues of CVE-2014-0092 1069888 1.4.1-12 - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch 966754 1.4.1-11 - fix...
kernel security and bug fix update
2.6.32-431.5.1 - net sctp: fix checksum marking for outgoing packets Daniel Borkmann 1046041 1040385 - kernel ptrace: Cleanup useless header Aaron Tomlin 1046043 1036312 - kernel ptrace: kill BKL in ptrace syscall Aaron Tomlin 1046043 1036312 - fs nfs: Prevent a 3-way deadlock between layoutretur...
busybox security and bug fix update
1:1.15.1-20 - Resolves: 855832 'Installation from NFS: That directory could not be mounted from the server' by switching NFS mount default from UDP to TCP. There was another place in uclibc this time which used UDP. 1:1.15.1-19 - Resolves: 1015010 'busybox: insecure directory permissions in /dev'...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-16.1.1.el6uek - dm snapshot: fix data corruption Mikulas Patocka Orabug: 17617582 CVE-2013-4299...
ruby security update
1.8.7.352-12 - Fix regression introduced by CVE-2013-4073 https://bugs.ruby-lang.org/issues/8575 ruby-2.0.0-p255-Fix-SSL-client-connection-crash-for-SAN-marked-critical.patch - Related: rhbz979300 1.8.7.352-11 - hostname check bypassing vulnerability in SSL client...
krb5 security update
1.10.3-10.3 - pull up fix for UDP ping-pong flaw in kpasswd service CVE-2002-2443,...
thunderbird security update
17.0.6-2.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.6-2 - Update to 17.0.6 ESR...
axis security update
0:1.2.1-7.3 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5784...
qpid security, bug fix, and enhancement update
python-qpid 0.14-11 - BZs: 825078 - Resolves: rhbz840053 qpid-cpp 0.14-22.0.1.el63 - Update summary and description in specfile to be product neutral 0.14-22 - BZs: 609685, 849654, 854004 0.14-21 - BZs: 831365, 840982, 844618 0.14-20 - BZs: 683711, 689408, 825078, 834608, 841196, 841488 0.14-19 -...
dhcp security update
12:4.1.1-31.P1.0.1.el63.1 - Added oracle-errwarn-message.patch 12:4.1.1-31.P1.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843120 - Memory Leaks Found In ISC DHCP CVE-2012-3954, 843120...
krb5 security update
1.9-33.2 - pull up the patch to correct a possible NULL pointer dereference in kadmind CVE-2012-1013, 827517 1.9-33.1 - add candidate patch from upstream to fix freeing uninitialized pointer in the KDC MITKRB5-SA-2012-001, CVE-2012-1015, 839859...
libvirt security, bug fix, and enhancement update
libvirt-0.9.10-21.0.1.el6 - Replace docs/et.png in tarball with blank image libvirt-0.9.10-21.el6 - qemu: Rollback on used USB devices rhbz743671 - qemu: Dont delete USB device on failed qemuPrepareHostdevUSBDevices rhbz743671 - Revert 'rpc: Discard non-blocking calls only when necessary'...
ImageMagick security and bug fix update
6.2.8.0-15.el5 - Fix for PostScript conversion was incomplete, as larger documents would end up being cropped without the -g option 797364 6.2.8.0-14.el5 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798 6.2.8.0-13.el5 -...
krb5 security and bug fix update
1.6.1-70.el5 - add upstream patch for telnetd buffer overflow CVE-2011-4862, 770351 1.6.1-69.el5 - ftp: fix a static analysis should-never-happen NULL dereference 750823 1.6.1-68.el5 - backport fixes to teach libkrb5 to use descriptors higher than FDSETSIZE to talk to a KDC by using poll if it's...
xulrunner security update
1.9.2.26-2.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.26-2 - added fix for mozbz727401...
php53 security update
5.3.3-1.6 - add security fix for CVE-2012-0830 786757...
netpbm security update
10.35.58-8.el5.3 - Actually apply the patch for - CVE-2009-4274 760849 10.35.58-8.el5.2 - fix xpmtoppm overfow - CVE-2009-4274 760849 10.35.58-8.el5.1 - fix libjasper heap buffer overflow CVE-2011-4516 CVE-2011-4517 760849...
ruby security update
1.8.1-16.el4 - Comply with guidelines - Related: rhbz709959 1.8.1-15.el4 - Address CVE-2011-1005 'Untrusted codes able to modify arbitrary strings' ruby-1.8.7-CVE-2011-1005.patch - Address CVE-2011-0188 'memory corruption in BigDecimal on 64bit platforms' ruby-1.8.7-CVE-2011-0188.patch - Address...
seamonkey security update
1.0.9-67.0.1.el48 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-67.el4 - Added fixes from 1.9.1.17...
java-1.6.0-openjdk security update
1.6.0.0-1.39.b17 - respin of IcedTea6 1.7.10 - Resolves: rhbz676276 1.6.0.0-1.37.b17 - Updated to IcedTea6 1.7.10 - Resolves: rhbz676276...
bzip2 security update
1.0.5-7 - Resolves: 632268 integer overflow flaw in BZ2decompress - CVE-2010-0405 upstream patch...
bind security update
32:9.7.0-5.P2.1 - fix CVE-2010-3613 and CVE-2010-3614...
openssl security update
0.9.7a-43.17.6 - CVE-2010-4180 - disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462 - CVE-2009-3245 - fix missing checks on allocation failure in bnwexpand 570924...
mysql security update
4.1.22-2.el4.4 - Add fixes for CVE-2010-1848, CVE-2010-3681, CVE-2010-3840 Resolves: 645637 - Backpatch longlong overflow fix so that code can be tested on more recent platforms...
postgresql and postgresql84 security update
postgresql: 8.1.22-1.el55.1 - Update to PostgreSQL 8.1.22, for various fixes described at http://www.postgresql.org/docs/8.1/static/release.html including the fix for CVE-2010-3433 Resolves: 639931 postgresql84: 8.4.5-1.el55.1 - Update to PostgreSQL 8.4.5, for various fixes described at...
seamonkey security update
1.0.9-63.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-63.el4 - Added fixes for mozbz576447, 583225 1.0.9-62.el4 - Added fixes from 1.9.1.12...