8967 matches found
e2fsprogs security, bug fix, and enhancement update
1.45.4-3 - Fix clang warning introduced in previous release 1783777 1.45.4-2 - Fix ABI breakage introduced in previous release 1783777 1.45.4-1 - Rebase to the release 1.45.4 1783777 - provide rhel6/7 compatible fstype in mke2fs.conf 1780279 - fix crafted ext4 partition leads to out-of-bounds wri...
grafana security, bug fix, and enhancement update
6.3.6-1 - add weak depenency on grafana-pcp - add patch to mute shellcheck SC1090 for grafana-cli - update to 6.3.6 upstream community sources, see CHANGELOG 6.3.5-1 - drop uaparser patch now its upstream - add xerrors patch, see https://github.com/golang/go/issues/32246 - use vendor sources on...
qt5 security, bug fix, and enhancement update
python-qt5 5.13.1-1 - 5.13.1 Resolves: bz1775603 qgnomeplatform 0.4-3 - Rebuild qt5 Resolves: bz1774418 qt5 5.12.5-3 - Re-add srpm macros, just leave them empty Resolves: bz1733133 5.12.5-2 - Drop srpm macros as we dont ship qtwebengine Resolves: bz1733133 5.12.5-1 - 5.12.5 + sync with Fedora...
libtiff security update
4.0.9-17 - Add upstream test suite and enable it in gating 4.0.9-16 - Fix CVE-2019-14973 1755705...
bind security, bug fix, and enhancement update
32:9.11.13-3 - Fix rwlock to be thread-safe 1740511 32:9.11.13-2 - Release GeoIP data on reload 1790879 32:9.11.13-1 - Update to 9.11.13 32:9.11.12-5 - Report failures on systemctl reload 1739428 32:9.11.12-4 - dhcp: Use monotonic time for detecting time jumps if available 1729211 32:9.11.12-3 -...
zziplib security update
0.13.68-8 - Fix CVE-2018-17828 in the 'single z' binaries - Resolves: 1772447...
dnsmasq security, bug fix, and enhancement update
2.79-11 - Support multiple static leases for single mac on IPv6 1779187 2.79-10 - Fix memory leak in helper.c 1795370 2.79-9 - Fix replies to non-recursive queries 1700916 2.79-8 - Fix dhcpleasetime 1746411 2.79-7 - Fix TCP queries after interface recreation 1728698...
memcached security update
0:1.5.9-3 - fix null-pointer dereference in 'lru mode' and 'lru tempttl' 1709408 - CVE-2019-11596...
mod_auth_mellon security and bug fix update
0.14.0-11 - Resolves: rhbz1731053 - CVE-2019-13038 modauthmellon: an Open Redirect via the login?ReturnTo= substring which could facilitate information theft rhel-8 0.14.0-10 - Resolves: rhbz1761774 - modauthmellon fix for AJAX header name X-Requested-With...
GStreamer, libmad, and SDL security, bug fix, and enhancement update
gstreamer1 1.16.1-2 - Update to 1.16.2 for correctly pick up for side gating - Resolves: rhbz1756299 1.16.1-1 - Update to 1.16.1 - Enable libcap for the ptp helper permissions - Resolves: rhbz1756299 gstreamer1-plugins-bad-free 1.16.1-1 - Update to 1.16.1 - Remove upstreamed patches - Remove...
rsyslog security, bug fix, and enhancement update
8.1911.0-3 RHEL 8.2.0 ERRATUM - added patch reverting rejecting expired certs by default resolves: rhbz1782353 - added patch silencing false errors on config.enabled statement resolves: rhbz1659383 8.1911.0-2 RHEL 8.2.0 ERRATUM - cleaned old patches, fixed patch names resolves: rhbz1740683...
ibus and glib2 security and bug fix update
2.56.4-8 - Backport patches for GDBus auth Resolves: 1777213...
samba security, bug fix, and enhancement update
openchange 2.3-24.0.1 - Add patch to build against samba 4.11 2.3-24 - Rebuild for newer samba and libldb samba 4.11.2-13 - resolves: 1802182 - Fix join using netbios name 4.11.2-12 - related: 1781232 - Improve debug output of smbclient - resolves: 1794461 - Do not return bogus inode numbers in...
bluez security update
5.50-3 + bluez-5.50-3 - Bump the version 5.50-2 + bluez-5.50-2 - Fixing CVE-2018-10910 1606373...
fontforge security update
20170731-14 - Resolves:rh1790974 - CVE-2020-5395:out-of-bounds write in sfd.c...
libreoffice security and bug fix update
6.0.6.1-20.0.1.el8 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 1:6.0.6.1-20 - Resolves: rhbz1743958 CVE-2019-9849, etc. - Resolves: rhbz1648281 Junk character gets added when some emojis are...
kernel security, bug fix, and enhancement update
4.18.0-193.el8.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-193.el8 - kvm KVM: PPC: Book3S HV: Use gfntopfnmemslot in HPT page fau...
gdb security and bug fix update
8.2-11.0.1 - Import Implement s390x arch13 support Andreas Krebbel, RH BZ 1768593. 8.2-8.0.2 - Forward-port patches from ol8-u1: gdb-ctf-forward-type.patch gdb-ctf-func-args.patch gdb-ctf-optout-var.patch - Reviewed-by: Jose E. Marchesi 8.2-8.0.1 - Forward-port patches from ol8-u1: gdb-ctf.patch...
irssi security update
1.1.1-3 - Fixed use after free when sending SASL login to server Resolves: CVE-2019-13045...
unbound security update
1.7.3-10 - Secure ipsec mode 1772061 - CVE-2019-18934 1.7.3-9 - Use pthreadmutext locks when dealing with I/O operations 1775708...
tcpdump security update
14:4.9.2-6 - Resolves: 1715423 - tcpdump pre creates user and groups unconditionally - Resolves: 1655622 - CVE-2018-19519 Stack-based buffer over-read in print-hncp.c:printprefix via crafted pcap...
exiv2 security, bug fix, and enhancement update
exiv2 0.27.2-5 - Fix failing test Resolves: bz1800472 0.27.2-4 - Drop test for the previous CVE as we test it manually and we dont have POC available Resolves: bz1800472 0.27.2-3 - Fix infinite loop and hang in Jp2Image::readMetadata Resolves: bz1800472 0.27.2-2 Rebuild Resolves: bz1651917 0.27.2...
haproxy security, bug fix, and enhancement update
1.8.23-3 - Fix hapack zero byte input causing overwrite CVE-2020-11100, 1819519 1.8.23-2 - Consider exist status 143 as success 1778844 1.8.23-1 - Update to 1.8.23 1774745...
binutils security and bug fix update
2.30-73.0.1 - Forward-port of Oracle patches from 2.30-68.0.2. - Reviewed-by: Elena Zannoni 2.30-68.0.2 - Backport the non-cycle-detecting-capable deduplicating CTF linker - Backport a fix for an upstream hashtab crash no upstream bug number, triggered by the above. - Fix deduplication of...
evolution security and bug fix update
evolution 3.28.5-12 - Add patch for RH bug 1778799 New Mail account wizard ignores email address change 3.28.5-11 - Update patch for RH bug 1764563 CVE-2018-15587: Reposition signature bar 3.28.5-10 - Add patch for RH bug 1764563 CVE-2018-15587: Reposition signature bar - Add patch for RH bug...
dpdk security, bug fix, and enhancement update
19.11-4 - Remove MLX4,5 glue libraries since RHEL 8 ships the correct libibverbs library. 1805140 19.11-3 - Remove /usr/share/dpdk/mk/exec-env/bsd,linuxapp symlinks 1773889 19.11-2 - Add pretrans to handle /usr/share/dpdk/mk/exec-env/bsd,linuxapp 1773889 19.11-1 - Rebase to 19.11 1773889 - Remove...
glibc security, bug fix, and enhancement update
2.28-101.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
cups security and bug fix update
1:2.2.6-33 - fix more memory leaks found by coverity in 1775668 1:2.2.6-32 - fix covscan issues raised by 1775668 1:2.2.6-31 - 1775668 - cupsd eats a lot of memory when lots of queue with extensive PPDs are created 1:2.2.6-30 - 1774462 - CVE-2019-8675 - buffer overflow in SNMP and IPP, memory...
python3 security and bug fix update
3.6.8-23.0.1.el8 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-23 - Modify the test suite to better handle disabled SSL/TLS versions and FIPS mode - Use OpenSSLs DRBG and disable os.getrandom function in FIPS mode Resolves: rhbz1754028, rhbz1754027, rhbz1754026, rhbz177447...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.50-8 - Dont set HasNoUsers=true if realmd has providers Related: 1750516 appstream-data 8-20191129 - Regenerate the RHEL metadata to include the latest evince changes - Resolves: 1768461 clutter 1.26.2-8 - rebuild to get the new in 8.2.0 - plus address 1785233 evince 3.28.4-4 ...
wavpack security update
5.1.0-15 - fix Out-of-bounds read in WavpackVerifySingleBlock function 1663151 - CVE-2018-19841 5.1.0-14 - fix uninitialized variable in ParseCaffHeaderConfig 1741251 - CVE-2019-1010317 5.1.0-13 - fortify parsing of .dff files 1707428, 1733627 - CVE-2019-1010315 - CVE-2019-11498 5.1.0-12 - fix...
unzip security update
6.0-43 - Update the man page with the new exit code introduced in 6.0-42 - Related: CVE-2019-13232 6.0-42 - Fix CVE-2019-13232 - Resolves: CVE-2019-13232...
systemd security, bug fix, and enhancement update
239-29.0.1.el8 - fix to enable systemd-pstore.service Orabug: 30951066 - journal: change support URL shown in the catalog entries Orabug: 30853009 - fix to generate systemd-pstore.service file Orabug: 30230056 - fix netdev is missing for iscsi entry in /etc/fstab [email protected] Orabug:...
sqlite security and bug fix update
3.26.0-6 - Fixed issues found by covscan 3.26.0-5 - Fixed CVE-2019-13752 1786529 - Fixed CVE-2019-13753 1786535 - Fixed CVE-2019-13734 1786509 - Fixed CVE-2019-19924 1789776 - Fixed CVE-2019-19923 1789812 - Fixed CVE-2019-19925 1789808 - Fixed CVE-2019-19959 1789823...
python-twisted-web security update
8.2.0-7 - Fix CVE-2020-10108 HTTP request smuggling when presented with two Content-Length headers Resolves: rhbz1813439 - Remove useless macros definitions...
Unbreakable Enterprise kernel security update
5.4.17-2011.1.2 - ctf: discard CTF from the vDSO Nick Alcock Orabug: 31194036 5.4.17-2011.1.1 - slcan: Don't transmit uninitialized stack data in padding Richard Palethorpe Orabug: 31136750 CVE-2020-11494 - blktrace: Protect q-blktrace with RCU Jan Kara Orabug: 31123573 CVE-2019-19768 - KVM: x86:...
kernel security update
2.6.32-754.29.1.OL6 - Update genkey bug 25599697 2.6.32-754.29.1 - wireless rtlwifi: Fix potential overflow on P2P code Jarod Wilson 1775226 CVE-2019-17666 - x86 mm: revert x8664 and arm64 ELFETDYNBASE base changes Denys Vlasenko 1485759 - powerpc powerpc: move ELFETDYNBASE to 4GB / 4MB Denys...
python-twisted-web security update
12.1.0-7 - Fix CVE-2020-10108 and CVE-2020-10109 multiple HTTP request smuggling vulnderabilities Resolves: rhbz1813439 rhbz1813447 - Remove useless macros definitions...
git security update
1.8.3.1-22 - Crafted URL containing new lines can cause credential leak - Resolves: CVE-2020-5260...
java-1.7.0-openjdk security update
1:1.7.0.261-2.6.22.2.0.1 - Update DISTRONAME in specfile 1:1.7.0.261-2.6.22.2 - Modify NEWS installation to avoid subpackage naming. - Resolves: rhbz1810557 1:1.7.0.261-2.6.22.1 - Add release notes from IcedTea. - Mark license files with appropriate macro. - Resolves: rhbz1810557...
java-1.8.0-openjdk security update
1:1.8.0.252.b09-2 - Add release notes. - Mark license files with appropriate macro. - Resolves: rhbz1810557 1:1.8.0.252.b09-1 - Make use of --with-extra-asflags introduced in jdk8u252-b01. - Resolves: rhbz1810557 1:1.8.0.252.b09-0 - Update to aarch64-shenandoah-jdk8u242-b09. - Switch to GA mode f...
java-11-openjdk security update
1:11.0.7.10-4.0.1 - link atomic for ix86 build 1:11.0.7.10-4 - Add JDK-8228407 backport to resolve crashes during verification. - Resolves: rhbz1810557 1:11.0.7.10-3 - Amend release notes, removing issue actually fixed in 11.0.6. - Resolves: rhbz1810557 1:11.0.7.10-2 - Add release notes. -...
java-1.8.0-openjdk security update
1:1.8.0.252.b09-2 - Add release notes. - Resolves: rhbz1810557 1:1.8.0.252.b09-1 - Make use of --with-extra-asflags introduced in jdk8u252-b01. - Resolves: rhbz1810557 1:1.8.0.252.b09-0 - Update to aarch64-shenandoah-jdk8u252-b09. - Switch to GA mode for final release. - Resolves: rhbz1810557...
java-1.8.0-openjdk security update
1:1.8.0.252.b09-2 - Add release notes. - Resolves: rhbz1810557 1:1.8.0.252.b09-1 - Make use of --with-extra-asflags introduced in jdk8u252-b01. - Resolves: rhbz1810557 1:1.8.0.252.b09-0 - Update to aarch64-shenandoah-jdk8u242-b09. - Switch to GA mode for final release. - Resolves: rhbz1810557...
java-1.7.0-openjdk security update
1:1.7.0.261-2.6.22.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.261-2.6.22.1 - Add release notes from IcedTea. - Resolves: rhbz1810557 1:1.7.0.261-2.6.22.0 - Bump to 2.6.22 and OpenJDK 7u261-b02. - Resolves: rhbz1810557...
java-11-openjdk security update
1:11.0.7.10-1 - Add JDK-8228407 backport to resolve crashes during verification. - Resolves: rhbz1810557 1:11.0.7.10-1 - Amend release notes, removing issue actually fixed in 11.0.6. - Resolves: rhbz1810557 1:11.0.7.10-1 - Re-apply --with-extra-asflags as crash was not due to this. - Resolves:...
git security update
2.18.2-2 - Crafted URL containing new lines can cause credential leak - Resolves: CVE-2020-5260...
tigervnc security update
1.9.0-14 - Bump build version Resolves: bz1819877 Resolves: bz1819879 Resolves: bz1819882 Resolves: bz1819886 Resolves: bz1819884 1.9.0-13 - Fix stack buffer overflow in CMsgReader::readSetCursor Resolves: bz1819877 - Fix heap buffer overflow in DecodeManager::decodeRect Resolves: bz1819879 - Fix...
thunderbird security update
68.7.0-1.0.1.el81 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.7.0-1 - Update to 68.7.0 build1...
thunderbird security update
68.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 68.7.0-1 - Update to 68.7.0 build1...