8967 matches found
seamonkey security update
1.0.9-45.0.1.el48 - Added mozilla-oracle-default-prefs.js, and mozilla-oracle-default-bookmarks.html and removed corresponding Redhat ones 1.0.9-45.el4 - Added fixes from 1.9.0.12...
dhcp security update
7:3.0.1-10.2EL3 - Make sure fix for 507734 is included Related: rhbz507734 7:3.0.1-10.1EL3 - Fix for CVE-2009-0692 Resolves: rhbz507734...
cups security update
1:1.1.22-0.rc1.9.32:.3 - Updated patch to fix CVE-2009-0791 to treat also cases gmallocint C + int nObjs int objSize bug 491840. 1:1.1.22-0.rc1.9.32:.2 - Applied patch to fix CVE-2009-0949 bug 500972. 1:1.1.22-0.rc1.9.32:.1 - Applied patch to fix CVE-2009-0791 bug 491840. - Applied patch to fix...
freetype security update
2.2.1-21 - Add freetype-2009-CVEs.patch - Resolves: 496111...
perl-DBD-Pg security update
1.49-2.el53.1 - fix CVE-2009-0663 and CVE-2009-1341 - Resolves: 498000...
firefox security update
xulrunner: 1.9.0.7-3.0.1.el5 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one 1.9.0.7-3 - Updated per 1.9.0.8 firefox: 3.0.7-3.0.1.el4 - Update firstrun and homepage URLS - Add oracle-firefox-branding.patch - Add firefox-oracle-default-prefs.js and...
libvirt security update
0.3.3-14.0.1.el53.1 - Replaced docs/redhat.gif in tarball 0.3.3-14.el53.1 - Add missing readonly checks for APIs CVE-2008-5086 - Add missing buf check in proxy daemon CVE-2009-0036...
sudo security update
1.6.9p17-3.el53.1 - audit patch rediff one chunk failed to apply due to fuzz=0 - Fix for incorrect handling of groups in RunasUser 481720 Resolves: 481820...
seamonkey security update
1.0.9-35.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html and removed corresponding ones of Red Hat. 1.0.9-35.el4 - Added fixes from 1.9.0.6 1.0.9-34.el4 - Package build fixes 1.0.9-33.el4 - Added missing ghost directive to solve 471048...
vim security update
6.3.046-1.el47.5z - remove duplicate vimtutor manpage 6.3.046-1.el47.4z - fix netrw 6.3.046-1.el47.3z - add fix for CVE-2008-4101 6.3.046-1.el46.2z - don't add empty line when editing files with netrw 6.3.046-1.el46.1z - fix erroneous quoting in CVE-2008-2712 patch 6.3.046-1.el46.z - add fix for...
ruby security update
1.6.8-12.el3 - ruby-1.6.8-string-CVE-2008-2664.patch: wrong patch. Fix a segfault. 1.6.8-11.el3 - CVE-2008-2376: Integer overflow in rbaryfill. 1.6.8-10.el3 - security fixes. 451931 - CVE-2006-6303: Fix the infinite loop issue with the malformed multipart data in cgi.rb. - CVE-2008-2663: Fix the...
dovecot security and bug fix update
1.0.7-2 - LDAP+auth cache user login mixup CVE-2007-6598, 427575 - insecure mailextragroups option CVE-2008-1199, 436927 1.0.7-1 - update to latest upstream, fixes a few bugs 331441, 245249, plus two security vulnerabilities CVE-2007-2231, CVE-2007-4211 - increased default loginprocesssize to 64...
seamonkey security update
1.0.9-15.el4.0.1 - Add mozilla-oracle-default-bookmarks.html, mozilla-oracle-default-prefs.js, and mozilla-home-page.patch with Oracle default URLs 1.0.9-15.el4 - Fix SMTP regression 1.0.9-14.el4 - Don't deny for native wrappers in an XBL Binding 1.0.9-13.el4 - Fix assertions in script 1.0.9-12.e...
Critical: krb5 security update
1.3.4-54.el46.1 - add preliminary patch to fix use of uninitialized pointer / double-free in KDC CVE-2008-0062,CVE-2008-0063 432620, 432621 - add backported patch to fix double-free in libgssapikrb5 CVE-2007-5971 415351...
Moderate: gd security update
2.0.28-5.E4.1 - security fixes - Resolves: 432784...
Moderate: tk security update
8.4.7-3.EL46.1 - CVE-2008-0553 CVE-2007-5378 - GIF overflow and also GIF overflow Resolves: rhbz 432512...
Moderate: tk security update
8.4.13-5.EL51.1 - CVE-2008-0553 CVE-2007-5378 - GIF overflow and also GIF overflow Resolves: rhbz432514...
Important: libXfont security update
1.2.2-1.0.3 - cve-2008-0006.patch: XFS Integer Overflow Vulnerability...
httpd security, bug fix, and enhancement update
2.2.3-11.el5.0.1 - use oracle index page oracleindex.html, update vstring and distro 2.2.3-11.el5 - mark httpd.conf confignoreplace 247881 2.2.3-10.el5 - add security fix for CVE-2007-3847 250761 2.2.3-9.el5 - load modversion by default 247881 2.2.3-8.el5 - add 'ServerTokens Full-Release' config...
Important: qt security update
3.3.6-23 - Resolves: 277011, Qt UTF8 improper character expansion, CVE-2007-0242 - Resolves: 269141, Qt off by one buffer overflow, CVE-2007-413...
Moderate: cups security update
1.1.22-0.rc1.9.18 - REVERTED these changes: - Applied patch from STR 1301 bug 195354. - Patch pdftops to understand 'includeifexists', and use that in the pdftops.conf file bug 188583. - Clear the printer's statemessage and statereasons after successful job completion bug 187457. - Include...
kdegraphics security update
7:3.3.1-3.9 - apply xpdf-splash-overflow-CVE-2006-0301-fix.diff to fix CVE-2006-0301 184307 7:3.3.1-3.8 - apply xpdf-splash-overflow-CVE-2006-0301-fix.diff to fix CVE-2006-0301 179055 7:3.3.1-3.7 - apply patch to fix buffer overflow issue in the xpdf codebase when handling splash images...
grafana security update
9.2.10-21 - Resolves RHEL-72881: CVE-2025-21614 - Resolves RHEL-72869: CVE-2025-21613...
rsync security update
3.2.3-20.1 - Resolves: RHEL-72495 - Info Leak via Uninitialized Stack Contents...
java-21-openjdk security update
1:21.0.4.0.7-1.0.1 - Add Oracle vendor bug URL Orabug: 34340155 1:21.0.4.0.7-1 - Update to jdk-21.0.4+7 GA - Update release notes to 21.0.4+7 - Switch to GA mode. - Sync the copy of the portable specfile with the latest update - Add missing section headers in NEWS - This tarball is embargoed unti...
virt:kvm_utils1 security update
hivex libguestfs libguestfs-winsupport libiscsi libnbd libvirt 5.7.0-42 - Document CVEs as fixed Karl Heubaum CVE-2023-2700 - Fix off-by-one error in udevListInterfacesByStatus Martin Kletzander Orabug: 36364474 CVE-2024-1441 - libvirt- : Check caller-provided buffers to be NULL with size 0 Erik...
nodejs security update
1:16.20.2-8.0.1 - Fix CVE-2024-28182, CVE-2024-22025, CVE-2024-25629, CVE-2024-27982, CVE-2024-27983...
ansible-core bug fix, enhancement, and security update
1:2.14.14-1 - ansible-core 2.14.14 release RHEL-23783 - Fix CVE-2024-0690 possible information leak in tasks that ignore ANSIBLENOLOG configuration RHEL-22124 1:2.14.13-1 - ansible-core 2.14.13 release RHEL-19298 1:2.14.12-1 - ansible-core 2.14.12 release RHEL-18950...
runc security update
4:1.1.12-2 - Switch dependency on criu to Recommends - Resolves: RHEL-25116...
less security update
590-3 - Fix CVE-2022-48624 - Resolves: RHEL-26265...
kernel security update
5.14.0-362.24.1.0.13.OL9 - netfilter: nftables: reject QUEUE/DROP verdict parameters Orabug: 36461940 CVE-2024-1086 - 5.14.0-362.24.13.OL9 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel...
libreoffice security fix update
6.4.7.2-16.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-16 - Fix CVE-2023-6185 escape url passed to gstreamer - Fix CVE-2023-6186 check link target protocols...
thunderbird security update
115.9.0-1.0.1 - Add Oracle prefs 115.9.0-1 - Update to 115.9.0 build1 - Fix expat CVE-2023-52425...
postgresql:12 security update
pgaudit 1.4.0-7 - Release bump to avoid regression in nvrs - Resolves: RHEL-24969 pgrepack postgres-decoderbufs postgresql 12.18-1.0.1 - Update to version 12.18 - Fixes CVE-2024-0985...
container-tools:4.0 security update
buildah cockpit-podman conmon containernetworking-plugins containers-common container-selinux criu crun fuse-overlayfs libslirp oci-seccomp-bpf-hook podman 2:4.0.2-25.0.1 - update to the latest content of https://github.com/containers/podman/tree/v4.0-rhel...
postgresql:15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.5-1 - update to 15.5 - Fixes CVE-2023-5868, CVE-2023-5869, CVE-2023-5870, CVE-2023-39417, and CVE-2023-39418 Resolves: RHEL-16100, RHEL-16124, RHEL-16139...
squid:4 security update
libecap squid 7:4.15-7.1 - Resolves: RHEL-14801 - squid: squid: Denial of Service in HTTP Digest Authentication - Resolves: RHEL-14776 - squid: squid: Request/Response smuggling in HTTP/1.1 and ICAP...
libreoffice security update
6.4.7.2-15.0.1 - Replace colors with Oracle colors Orabug: 32120093 - Build with --with-vendor='Oracle America, Inc.' - Added the --with-hamcrest option to configure. 1:6.4.7.2-15 - Resolves: rhbz2210191 CVE-2023-0950 Array Index UnderFlow in Calc Formula Parsing - Resolves: rhbz2210195...
krb5 security and bug fix update
1.21.1-1.0.1 - Fixed race condition in krb5setpassword Orabug: 33609767 1.21.1-1 - New upstream version 1.21.1 - Fix double-free in KDC TGS processing CVE-2023-39975 - Add support for 'pacprivsvrenctype' KDB string attribute Resolves: rhbz2060421...
curl security update
7.76.1-26 - unify the upload/method handling CVE-2023-28322 - fix host name wildcard checking CVE-2023-28321 7.76.1-25 - adapt the fix of CVE-2023-27535 for RHEL 9 curl 7.76.1-24 - fix SSH connection too eager reuse still CVE-2023-27538 - fix GSS delegation too eager connection re-use...
python3 security update
3.6.8-21.0.1 - Remove the 'getfile' feature of pydoc Orabug: 33182027CVE-2021-3426 - Fix buffer overflow in PyCArgrepr Orabug: 32551171CVE-2021-3177 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-21 - Test fixups for CVE-2023-40217 Resolves: RHEL-3139 3.6.8-20 - Security fi...
nodejs security and bug fix update
1:16.20.2-1 - Update to 16.20.2-1 Resolves CVE-2023-32002 CVE-2023-32006 CVE-2023-32559...
nodejs:18 security, bug fix, and enhancement update
nodejs 1:18.17.1-1 - Rebase to version 18.17.1 Resolves: rhbz2228939 Resolves: CVE-2023-32002 CVE-2023-32006 CVE-2023-32559 - Specify proper OpenSSL configuration section build nodejs-nodemon 3.0.1-1 - Rebase to 3.0.1 - Resolves: CVE-2022-25883 nodejs-packaging...
qemu security update
15:4.2.1-28.el7 - virtio-crypto: verify src&dst buffer length for sym request Zhenwei Pi Orabug: 35724113 CVE-2023-3180 - hw/scsi/lsi53c895a: Fix reentrancy issues in the LSI controller CVE-2023-0330 Thomas Huth Orabug: 35724112 CVE-2023-0330 - kvm: Atomic memslot updates David Hildenbrand Orabug...
ncurses security update
6.1-9.20180224.1 - fix buffer overflow on terminfo with too many capabilities CVE-2023-29491...
.NET 7.0 security, bug fix, and enhancement update
7.0.110-1.0.1 - Update to .NET SDK 7.0.110 and Runtime 7.0.10 - Resolves: RHBZ2228571...
postgresql:13 security update
pgaudit pgrepack postgres-decoderbufs postgresql 13.11-1.0.1 - Update to 13.11 - Resolves: 2212815 - Update postgresql-setup to 8.7 https://github.com/devexp-db/postgresql-setup/pull/35 - Resolves: 2207933 - Update 1001-Fixed-postgresql-service-network-binding-issue.patch for postgresql-setup...
linux-firmware security update
20230516-999.25.git6c9e0ed5.el7 - Add missing amd-ucode/ files to nano rpm Orabug: 35642190 - Add posttrans scriptlet to reload microcode on AMD Orabug: 35636951 - Recreate initramfs for AMD systems Orabug: 35636951 20230516-999.24.git6c9e0ed5.el7 - 8a07fa49 linux-firmware: Update AMD fam19h cpu...
15 security update
pgaudit pgrepack postgres-decoderbufs postgresql 15.3-1 - update to 15.3 - Fixes CVE-2023-2454 and CVE-2023-2455 Resolves: 2214875...
emacs security update
1:26.1-10.2 - Bump release 1:26.1-10.1 - Bump release 1:26.1-10 - Fix ob-latex.el command injection vulnerability 2180586 1:26.1-9 - Fix MH-E mail composition with GNU Mailutils 1991156 1:26.1-8 - Fix ctags local command execute vulnerability 2149386...