9180 matches found
nss security update
3.44.0-9 - Fix out-of-bounds write in NSCEncryptUpdate 1775912...
Unbreakable Enterprise kernel security update
4.1.12-124.34.1 - block/loop: set hwsectors Shaohua Li Orabug: 30244514 - block-mq: fix hung due to too much warning log Junxiao Bi Orabug: 30273956 - oled: export symbols Wengang Wang Orabug: 30512063 - oled: give panic handler chance to run before kexec Wengang Wang Orabug: 30512063 - USB:...
Unbreakable Enterprise kernel security update
2.6.39-400.317.1 - ieee802154: enforce CAPNETRAW for raw sockets Allen Pais Orabug: 30444948 CVE-2019-17053 - mISDN: enforce CAPNETRAW for raw sockets Ori Nimron Orabug: 30445161 CVE-2019-17055 - net: sit: fix memory leak in sitinitnet Mao Wenan Orabug: 30445309 CVE-2019-16994 - media: dvb: usb:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.41.1 - x86/speculation: Determine swapgs before alternative instructions are set Patrick Colp Orabug: 30379626 - ieee802154: enforce CAPNETRAW for raw sockets Allen Pais Orabug: 30444947 CVE-2019-17053 - mISDN: enforce CAPNETRAW for raw sockets Ori Nimron Orabug: 30445159...
firefox security update
68.3.0-1.0.1 - Update distribution for Oracle Linux Orabug: 30143292 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 68.3.0-1 - Update to 68.3.0 ESR 68.2.0-4 - Added patch for TLS 1.3 support. 68.2.0-3 - Rebuild 68.2.0-2 - Rebuild...
firefox security update
68.3.0-1.0.1 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file - Remove upstream references Orabug: 30530527 68.3.0-1 - Update to 68.3.0 ESR 68.2.0-4 - Added patch for TLS 1.3 support. 68.2.0-3 - Rebuild...
docker-engine docker-cli security update
docker-engine 19.03.1-1.0.0 - update to 19.03.1 19.03-0.0.1 - update to 19.03...
microcode_ctl security update
3:1.17-33.19.0.4 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618737 3:1.17-33.19.0.1 - merge Oracle changes for early load via dracut - enable late load on install for UEK4 kernels marked safe except BDW-79 - update 06-55-04 to 0x2000065 - update 06-55-07 to...
microcode_ctl security update
2:2.1-53.3.0.4 - set earlymicrocode='no' in virtualized guests to avoid early load bugs Orabug: 30618736 2:2.1-53.3.0.1 - do not late load prior to 3.10.0 - ensure late loading fixes are present on 4.1.12- and 4.14.35- - enable early loading on 06-4f-01 - update 06-55-04 to 0x2000065 - update...
SDL security update
1.2.15-15 - Fix CVE-2019-13616 a heap buffer over-read in BlitNtoN bug 1747237 - Resolves: rhbz1756276...
389-ds-base security and bug fix update
1.3.9.1-12 - Bump version to 1.3.9.1-12 - Resolves: Bug 1767622 - CleanAllRUV task limit not enforced 1.3.9.1-11 - Bump version to 1.3.9.1-11 - Resolves: Bug 1748198 - EMBARGOED CVE-2019-14824 389-ds-base: Read permission check bypass via the deref plugin - Resolves: Bug 1754831 - After audit log...
tcpdump security update
14:4.9.2-4.1 - Resolves: 1761349 - CVE-2018-19519 tcpdump: Stack-based buffer over-read in print-hncp.c...
kernel security and bug fix update
3.10.0-1062.7.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey Orabug: 24817676 3.10.0-1062.7.1 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave Airlie...
SDL security update
1.2.15-36 - Fix CVE-2019-13616 a heap buffer over-read in BlitNtoN bug 1747237 - Resolves: rhbz1756279...
php:7.3 security update
php 7.3.5-5 - fix underflow in envpathinfo in fpmmain.c CVE-2019-11043...
php:7.2 security update
php 7.2.11-4 - fix underflow in envpathinfo in fpmmain.c CVE-2019-11043...
sudo security update
1.8.25p1-8 - RHEL-8.1.0 - fixed CVE-2019-14287 Resolves: rhbz1760696...
ghostscript security update
9.25-5.1 - 1769342 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys...
kernel security update
4.18.0-147.0.31.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.0.31 - drm drm/i915/cmdparser: Fix jump whitelist clearing Dave...
kernel security update
4.18.0-147.0.21.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-147.0.21 - drm drm/i915: Lower RM timeout to avoid DSI hard hangs Dav...
glibc security, bug fix, and enhancement update
2.28-72.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
Unbreakable Enterprise kernel security update
2.6.39-400.316.1 - ipv4: ipmr: various fixes and cleanups Eric Dumazet Orabug: 30183226 CVE-2017-18509 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 30393903 CVE-2017-14991 - usb: misc: legousbtower: Fix NULL pointer deference Greg Kroah-Hartman Orabug: 30412152...
openssl security update
1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c release 1.1.1b-6 - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode 1.1.1b-5 - Fix small regressions related to the reba...
glibc security update
2.28-72.0.1 - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag - add an ASIMD variant of strlen for falkor - Orabug: 2700101. - Modify glibc-ora28849085.patch so it works with RHCK kernels. - Orabug: 28849085. - Make IOfunlockfile match funlockfile and...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.40.1 - USB: check usbgetextradescriptor for proper size Mathias Payer Orabug: 30045797 CVE-2018-20169 - scsi: sg: fixup infoleak when using SGGETREQUESTTABLE Hannes Reinecke Orabug: 30393902 CVE-2017-14991 - usb: misc: legousbtower: Fix NULL pointer deference Greg...
Unbreakable Enterprise kernel security update
4.1.12-124.33.4 - ocfs2: protect extent tree in ocfs2prepareinodeforwrite Shuning Zhang Orabug: 30036349 - ocfs2: direct-IO: protect getblocks Junxiao Bi Orabug: 30036349 - SUNRPC: Remove xprtconnectstatus Trond Myklebust Orabug: 30165838 - SUNRPC: Handle ENETDOWN errors Trond Myklebust Orabug:...
ghostscript security update
9.25-2.3 - 1769340 - CVE-2019-14869 ghostscript: -dSAFER escape in .charkeys...
freeradius:3.0 security and bug fix update
...
sssd security, bug fix, and enhancement update
2.2.0-19 - Resolves: rhbz1712875 - Old kerberos credentials active instead of valid new ones kcm 2.2.0-18 - Resolves: rhbz1744134 - New defect found in sssd-2.2.0-16.el8 - Also sync. kcm multihost tests with master 2.2.0-17 - Resolves: rhbz1676385 - pamsss with smartcard auth does not create gnom...
389-ds:1.4 security, bug fix, and enhancement update
...
virt:ol security, bug fix, and enhancement update
...
samba security, bug fix, and enhancement update
4.10.4-1 - resolves: 1712378 - Fix smbspool CUPS backend - resolves: 1696612 - Fix 'net ads join -U admin@parentdomain' 4.10.4-0 - related: 1638001 - Rebase to Samba version 4.10.4 - resolves: 1597298 - Build Samba with python3 - resolves: 1658558 - Add 'net ads leave --keep-account' option -...
lldpad security and bug fix update
1.0.1-13.git036e314 - After gating yml updates 1.0.1-12.git036e314 - Add support for DSCP selectors in APP TLVs 1704660 1.0.1-11.git036e314 - Fix memleak on TLV reception 1727326 1.0.1-10.git036e314 - Fix the OID display 1614933...
httpd:2.4 security and bug fix update
...
container-tools:1.0 security and bug fix update
...
evolution security and bug fix update
evolution 3.28.5-9 - Add patch for RH bug 1724984 ECompEditor Ensure attendee changes stored before save 3.28.5-8 - Add patch for RH bug 1724659 Make sure intltool-merge cache is created only once 3.28.5-7 - Add patch for RH bug 1724232 Help Contents F1 has a bad link to GNOME site...
mod_auth_mellon security, bug fix, and enhancement update
0.14.0-9 - Just bump the release number - Related: rhbz1718238 - modauthmellon-diagnostics RPM not in product listings 0.14.0-8 - Resolves: rhbz1691894 - RFE Config option to change modauthmellon prefix 0.14.0-7 - Apply the patch from the previous commit - Resolves: rhbz1692471 - CVE-2019-3877...
yum security, bug fix, and enhancement update
createrepoc 0.11.0-3 - Backport patch to switch off timestamps on documentation in order to remove file conflicts RhBug:1738788 0.11.0-2 - Consistently produce valid URLs by prepending protocol. RhBug:1632121 - modifyrepoc: Prevent doubling of compression test.gz.gz RhBug:1639287 - Correct pkg...
libvorbis security update
1.3.6-2 - Sync with git for CVE-2017-14160, CVE-2018-10392, CVE-2018-10393...
container-tools:ol8 security, bug fix, and enhancement update
...
bind security and bug fix update
32:9.11.4-26.P2 - Permit explicit disabling of RSAMD5 in FIPS mode 1737407 32:9.11.4-25.P2 - Fix CVE-2018-5745 - Fix CVE-2019-6465 32:9.11.4-24.P2 - Do not override random numbers provider in DHCP 1668682 32:9.11.4-23.P2 - Report errors on invalid IDN 2008 names 1679307 32:9.11.4-22.P2 - Fix...
qt5-qtbase security and bug fix update
qt5-qtbase 5.11-1-7 - Move libQt5EglFSDeviceIntegration lib out of the -devel subpkg Resolves: bz1692970 - Fix QImage allocaion failure Resolve: bz1667860 - Fix double free in QXmlStreamReader Resolve: bz1667858 - Fix segmentation fault on malformed BMP file Resolve: bz1667859 5.11.1-6 - Create a...
openssl security, bug fix, and enhancement update
1.1.1c-2 - do not try to use EC groups disallowed in FIPS mode in TLS - fix Valgrind regression with constant-time code 1.1.1c-1 - update to the 1.1.1c release 1.1.1b-6 - adjust the default cert pbe algorithm for pkcs12 -export in the FIPS mode 1.1.1b-5 - Fix small regressions related to the reba...
openssh security, bug fix, and enhancement update
8.0p1-3 + 0.10.3-7 - Fix typos in manual pages 1668325 - Use the upstream support for PKCS8 PEM files alongside with the legacy PEM files 1712436 - Unbreak ssh-keygen -A in FIPS mode 1732424 - Add missing RSA certificate types to offered hostkey types in FIPS mode 1732449 8.0p1-2 + 0.10.3-7 - All...
libtiff security update
4.0.9-15 - Fix DIVIDEBYZERO in patch for CVE-2018-12900 1595579 4.0.9-14 - Fix CVE-2018-12900 1595579...
numpy security update
1:1.14.3-9 - Fix CVE-2019-6446 resolves: 1668466 1:1.14.3-8 - Rebuild with fixed gating.yaml related: 1687873 1:1.14.3-7 - Fix broken float128 on all arches except x8664 resolves: 1687873...
gettext security update
0.19.8.1-17 - Ported CI gating tests to Python 3.6 0.19.8.1-16 - add CI gating tests 0.19.8.1-15 - fix CVE-2018-18751: double-free in xgettext rhbz1647049...
virt-manager security, bug fix, and enhancement update
2.2.1-2.0.1 - Add OL release support to virt-install for OL KVM guest creation Orabug: 26135782 2.2.1-2 - man: virt-install: Fix a couple of launchSecurity related typos rhbz1741846 2.2.1-1 - Rebased to virt-manager-2.2.1 rhbz1726535 - The rebase also fixes the following bugs: rhbz1727881,...
dhcp security and bug fix update
12:4.3.6-34 - Resolves: 1704672 - Fix crash caused by bind rebase 12:4.3.6-33 - Resolves: 1673946 - Change default prefix length to 128 - Add address-prefix-lenght option to change default value - Fix backporting issues 12:4.3.6-31 - Resolves: 1685560 - Drop executable flag from NM dispatcher...
GNOME security, bug fix, and enhancement update
accountsservice 0.6.50-7 - Dont send change updates for login history changes Resolves: 1713080 appstream-data 8-20190805 - Regenerate the RHEL metadata to include the latest cockpit changes - Resolves: 1673011 8-20190719 - Regenerate the RHEL metadata - Resolves: 1673011 8-20180721 - Regenerate...