9173 matches found
librabbitmq security update
0.9.0-2 - Resolves: 1809992, CVE-2019-18609...
cups security and bug fix update
1:2.2.6-38 - 1775590 - rastertoepson filter crashes with paper size A6 1:2.2.6-37 - forgot to enable optimization - 1833516 1:2.2.6-36 - 1838449 - ipp/socket backends connect to turned off device for eternity contimeout is not applied - 1689207 - Add failover backend - 1833516 - DirtyCleanInterva...
libgcrypt security, bug fix, and enhancement update
1.8.5-4 - add PBKDF2 selftest for FIPS POST 1.8.5-3 - new upstream version 1.8.5 - AES performance improvements backported from master branch - FIPS module is implicit with kernel FIPS flag - always run the FIPS selftests if FIPS module is installed...
sqlite security update
3.26.0-11 - Fixed bug in CVE-2019-20218 1791592 3.26.0-10 - Fixed CVE-2020-13632 1845572 - Fixed CVE-2020-13631 1845474 - Fixed CVE-2020-13630 1845153 3.26.0-9 - Fixed CVE-2019-5018 1721509 3.26.0-8 - Fixed CVE-2019-16168 1826897 3.26.0-7 - Fixed CVE-2019-20218 1791592 - Fixed CVE-2020-6405 18048...
file-roller security update
3.28.1-3 - Fix CVE-2020-11736 1827395 - Fix CVE-2019-16680 1767594...
freeradius:3.0 security and bug fix update
3.0.20-3 - Require make for proper bootstrap execution, removes post script Resolves: bz1672285 3.0.20-2 - Fix breakage caused by OpenSSL FIPS regression Related: bz1855822 Related: bz1810911 Resolves: bz1672285 3.0.20-1 - Update to FreeRADIUS server version 3.0.20 - Introduce Python 3 support;...
openssl security, bug fix, and enhancement update
1.1.1g-11 - Further changes for SP 800-56A rev3 requirements 1.1.1g-9 - Rewire FIPSdrbg API to use the RANDDRBG - Use the well known DH groups in TLS even for 2048 and 1024 bit parameters 1.1.1g-7 - Disallow dropping Extended Master Secret extension on renegotiation - Return alert from sserver if...
prometheus-jmx-exporter security update
0.12.0-6 - Fix CVE-2017-18640 by using updated snakeyaml...
dpdk security, bug fix, and enhancement update
19.11.3-1 - Rebase DPDK to 19.11.3 1868708 19.11.2-1 - Rebase DPDK to 19.11.2 1836830, 1837024, 1837030, 1837022 19.11.1-1 - Rebase DPDK to 19.11.1 1824905 - Remove dpdk-pmdinfo.py 1801361 - Add Requires: rdma-core-devel libmnl-devel on x8664 for dpdk-devel 1813252...
libpcap security, bug fix, and enhancement update
14:1.9.1-4 - Related: 1806422 - Building libpcap to side-tag for tcpdump 14:1.9.1-3 - Related: 1743650 - reverting rdma changes due to unresolved dependency loop 14:1.9.1-2 - Related: 1806422 - Building libpcap to side-tag for tcpdump 14:1.9.1-1 - Resolves: 1806422 - rebase libpcap to version 1.9...
libldb security, bug fix, and enhancement update
2.1.3-2 - Resolves: rhbz1849615 - Fix CVE-2020-10730 use-after-free 2.1.3-1 - Resolves: rhbz1817567 - Rebase libldb to 2.1.3 for samba...
openwsman security update
2.6.5-7 - Fix CVE-2019-3833 Resolves: 1687865 2.6.5-6 - Fix name of Patch6...
expat security update
2.2.5-4 - add security fixes for CVE-2018-20843, CVE-2019-15903...
librsvg2 security update
2.42.7-4 - Resolves: rhbz1804519 Add patch for CVE-2019-20446...
cryptsetup security, bug fix, and enhancement update
2.3.3-2 - patch: Fix possible memory corruption in LUKS2 validation code in 32bit library. - Resolves: 1872294 2.3.3-1 - Update to cryptsetup 2.3.3 - Resolves: 1796826 1743891 1785748 2.3.1-1 - Update to cryptsetup 2.3.1 - Resolves: 1796826 1743891 1785748...
mailman:2.1 security and bug fix update
3:2.1.29-10 - Fix match patter to reduce false allocation 3:2.1.29-9 - Fix for CVE-2020-12137 3:2.1.29-8 - Drop unversioned python from comments. 3:2.1.29-7 - Change attr of /etc/mailman 3:2.1.29-6 - Update run directory references 1805954 - fix 1188043 - set 2775 permission for /etc/mailman...
virt:ol and virt-devel:rhel security, bug fix, and enhancement update
...
curl security and bug fix update
7.61.1-14 - avoid overwriting a local file with -J CVE-2020-8177 7.61.1-13 - load built-in openssl engines 1854369...
bind security, bug fix, and enhancement update
32:9.11.20-5 - Fix tsig-request verify CVE-2020-8622 - Prevent PKCS11 daemon crash on crafted packet CVE-2020-8623 - Correct update-policy type subdomain to match documentation CVE-2020-8624 - Include available test 32:9.11.20-4 - Prevent crash on dstlib initialization failure 1859454 32:9.11.20-...
tcpdump security, bug fix, and enhancement update
14:4.9.3-1 - Resolves: 1804063 - Rebase tcpdump to 4.9.3 to fix multiple CVEs...
libsolv security, bug fix, and enhancement update
0.7.11-1 - Update to 0.7.11 - selected bug fixes: support archnoarch package changes when creating patch conflicts from the updateinfo data also support other rpm database types fixed solvzchunk decoding error if large chunks are used treat retracted pathes as irrelevant made addupdatetarget work...
libarchive security update
3.3.2-9 - Fix out-of-bounds read CVE-2019-19221 1803967...
sysstat security update
11.7.3-5 - Rebuild 11.7.3-4 - Package onboarded to gating 11.7.3-3 - Fix memory corruption bug due to integer overflow 1790608...
gd security update
Fri Mar 27 2020 [email protected] - 2.2.5-7 - Fix CVE-2018-14553 - Potential Null pointer dereference in gdImageClone Resolves: RHBZ1811788 - Fixed heap based buffer overflow in gdcolormatch.c:gdImageColorMatch in libgd as used in imagecolormatch Resolves: RHBZ1678104 CVE-2019-6977 - Fixed...
cloud-init security, bug fix, and enhancement update
19.4-11.0.1 - Forward port applicable cloud-init 18.4-2.0.3 changes to cloud-init-18-5 Orabug: 30435672 - Update OCI Datasource to support IMDSv2 - limit permissions Orabug: 31352433 - Changes to ignore all enslaved interfaces Orabug: 30092148 - Fix swap file size allocation logic to allocate...
Unbreakable Enterprise kernel security update
4.1.12-124.44.4.1 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040806 CVE-2020-8694 CVE-2020-8695...
binutils security update
2.30-79.0.1 - Forward-port Oracle patches from 2.30-75.0.1 - Reviewed-by: Jose E. Marchesi 2.30-79 - Fix x86 assemblers handling of non-8-bit displacements. 1869401 2.30-77 - Add tests missing from PTGNUSEGMENT patch. 1870039 2.30-75.0.1 - Forward-port Oracle patches to OL8.3 beta. 2.30-76 - Have...
libxml2 security update
2.9.7-8.0.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.7-8 - Fix CVE-2019-19956 1793001 - Fix CVE-2020-7595 1799786 - Fix CVE-2019-20388 1810058...
gnupg2 security, bug fix, and enhancement update
2.2.20-2 - fixes for issues found in Coverity scan 2.2.20-1 - upgrade to 2.2.20...
cyrus-imapd security update
3.0.7-19 - change ownership of pki files 1710722 3.0.7-18 - Move old changelog into separate file 1671239 3.0.7-17 - Add fix for CVE-2019-19783 - Add fix for CVE-2019-18928...
container-tools:ol8 security, bug fix, and enhancement update
...
oniguruma security update
6.8.2-2 - Fix CVE-2019-13225 Resolves: 1771052...
oddjob security, bug fix, and enhancement update
0.34.5-3 - Support HOMEMODE from /etc/login.defs Resolves: rhbz1886362 0.34.5-2 - Add gating tests using idm:DL1 module stream and upstream tests Resolves: rhbz1682457 0.34.5-1 - Upstream release 0.34.5 - Resolves: rhbz1833289 - Rebase oddjob to 0.34.5 - Resolves: rhbz1833052 - CVE-2020-10737...
GNOME security, bug fix, and enhancement update
dleyna-renderer 0.6.0-3 - Add a manual Resolves: 1612579 frei0r-plugins 1.6.1-7 - Rebuild with newer annobin to fix rpmdiff problems - Fix the build with a newer opencv - Resolves: rhbz1703994 gdm 3.28.3-34 - Fix file descriptor leak Resolves: 1877853 3.28.3-33 - Fix problem with Xorg fallback...
dovecot security update
1:2.3.8-4 - fix CVE-2020-12100 resource exhaustion via deeply nested MIME parts 1866756 - fix CVE-2020-12673 out of bound reads in dovecot NTLM implementation 1866761 - fix CVE-2020-12674 crash due to assert in RPA implementation 1866768 1:2.3.8-3 - fix CVE-2020-10957 dovecot: malformed NOOP...
subversion:1.10 security update
...
frr security and bug fix update
7.0-10 - Resolves: 1867793 - FRR does not conform to the source port range specified in RFC5881 7.0-9 - Resolves: 1852476 - default permission issue eases information leaks 7.0-8 - Resolves: 1819319 - frr fails to start start if the initscripts package is missing 7.0-7 - Resolves: 1758544 - IGMPv...
targetcli security and enhancement update
2.1.53-1 - Update to new upstream version 2.1.52-1 - Update to new upstream version...
libxslt security update
1.1.32-5.0.1 - Added libxslt-oracle-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.32-5 - Fix CVE-2019-18197 1775517 - Fix CVE-2019-11068 1715732...
python-pip security update
9.0.3-18 - Patch for pip install allow directory traversal, leading to arbitrary file write Resolves: rhbz1868016 9.0.3-17 - Remove unused CA bundle from the bundled requests library Resolves: rhbz1775200...
python27:2.7 security update
...
python38:3.8 security, bug fix, and enhancement update
...
libexif security, bug fix, and enhancement update
0.6.22-4 - Add patch for CVE-2020-0181/CVE-2020-0198 - Resolves: 1847753 - Resolves: 1847761 0.6.22-3 - Also remove timezone from the .mo files - Related: 1841320 0.6.22-2 - Remove timestamps from the .mo files to avoid multilib conflicts - Related: 1841320...
httpd:2.4 security, bug fix, and enhancement update
httpd 2.4.37-13.0.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracles index page oracleindex.html 2.4.37-30 - Resolves: 1209162 - support logging to journald from CustomLog 2.4.37-29 - Resolves: 1823263 CVE-2020-1934 - CVE-2020-1934 httpd: modproxyftp use o...
libtiff security update
4.0.9-18 - Fix CVE-2019-17546 1771372...
Unbreakable Enterprise kernel security update
4.14.35-2025.402.2.1 - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040805 CVE-2020-8694 CVE-2020-8695 4.14.35-2025.402.2 - ocfs2: fix remounting needed after setfacl command Gang He - Fix multiple variable definition with syzkaller Hans Westgaard Ry Orabug: 32008770 -...
Unbreakable Enterprise kernel security update
5.4.17-2036.100.6.1.el8uek - powercap: restrict energy meter to root access Kanth Ghatraju Orabug: 32040802 CVE-2020-8694 CVE-2020-8695 - KVM: ioapic: break infinite recursion on lazy EOI Vitaly Kuznetsov Orabug: 32066585 CVE-2020-27152 CVE-2020-27152 - x86/mitigations: Restore paranoid checks fo...
pki-core:10.6 and pki-deps:10.6 security, bug fix, and enhancement update
...
qt5-qtbase and qt5-qtwebsockets security and bug fix update
qt5-qtbase 5.12.5-6 - OpenSSL: handle SSLshutdowns errors properly Resolves: bz1851538 5.12.5-5 - Fix: Files placed by attacker can influence the working directory and lead to malicious code execution Resolves: bz1814739 Resolves: bz1814683 - Fix: XML entity expansion vulnerability Resolves:...
vim security update
2:8.0.1763-15.0.1 - - Remove upstream references Orabug: 31197557 2:8.0.1763-15 - 1842755 - CVE-2019-20807 2:8.0.1763-14 - 1745476 - manpage of vim is garbled in Japanese locale...