9182 matches found
mod_auth_mellon security update
0.14.0-3.2 - Resolves: rhbz1696197 - CVE-2019-3878 modauthmellon: authentication bypass in ECP flow rhel-8.0.0.z...
qemu-kvm security update
1.5.3-160.el76.3 - kvm-slirp-check-sscanf-result-when-emulating-ident.patch bz1669067 - kvm-slirp-fix-big-little-endian-conversion-in-ident-prot.patch bz1669067 - kvm-slirp-ensure-there-is-enough-space-in-mbuf-to-null-t.patch bz1669067 - kvm-slirp-don-t-manipulate-sorcv-in-tcpemu.patch bz1669067 ...
389-ds-base security and bug fix update
1.3.8.4-25.1 - Bump version to 1.3.8.4-25.1 - Resolves: Bug 1718689 - dse.ldif strip-off string after 1023 character missing patch file 1.3.8.4-25 - Bump version to 1.3.8.4-25 - Resolves: Bug 1722828 - referint update should discard any changes if mep update fails - Resolves: Bug 1718689 - dse.ld...
httpd security update
2.4.6-89.0.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-89.1 - Resolves: 1719722 - CVE-2018-1312 httpd: Weak Digest auth nonce generation in modauthdigest...
freeradius:3.0 security update
3.0.17-4 - Fixes two EAP-PWD security issues Resolves: bz1699416 authentication bypass with an invalid curve attack...
pacemaker security and bug fix update
2.0.1-4.3 - New build with fixed test in gating.yaml - Resolves: rhbz1694557 - Resolves: rhbz1695247 - Resolves: rhbz1697264 - Resolves: rhbz1697265 2.0.1-4.2 - New build to apply z-stream tag - Resolves: rhbz1694557 - Resolves: rhbz1695247 - Resolves: rhbz1697264 - Resolves: rhbz1697265 2.0.1-4....
bind security update
32:9.11.4-17.P2 - Fix inefective limit of TCP clients CVE-2018-5743...
firefox security update
60.7.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.7.0-1 - Manaul CentOS Debranding 60.7.0-1 - Updated to 60.7.0 ESR 60.6.3-1 - Updated to 60.6.3 ESR 60.6.2-1 - Updated to 60.6....
python36:3.6 security update
python-PyMySQL 0.8.0-10 - Bumping due to problems with modular RPM upgrade path 1695587 - Related: rhbz1693974 python-docs 3.6.7-2 - Bumping due to problems with modular RPM upgrade path - Resolves: rhbz1695587 python-docutils 0.14-12 - Bumping due to problems with modular RPM upgrade path 169558...
python3 security update
3.6.8-2.0.1 - Add Oracle Linux distribution in platform.py Orabug: 20812544 3.6.8-2 - Security fix for CVE-2019-9636 rhbz1693973...
curl security and bug fix update
7.29.0-51.0.1.el76.3 - Security Fixes OraBug: 28939992 - CVE-2016-8615 cookie injection for other servers https://curl.haxx.se/docs/CVE-2016-8615.html - CVE-2016-8616 case insensitive password comparison https://curl.haxx.se/docs/CVE-2016-8616.html - CVE-2016-8617 OOB write via unchecked...
flatpak security update
1.0.6-3 - Fix IOCSTI sandbox bypass 1700653...
virt:rhel security update
4.5.0-23.2.0.1.el8 - added librbd1 as dependency Keshav Sharma 4.5.0-23.2.el8 - admin: reject clients unless their UID matches the current UID CVE-2019-10132 - locking: restrict sockets to mode 0600 CVE-2019-10132 - logging: restrict sockets to mode 0600 CVE-2019-10132 4.5.0-23.1.el8 - cpux86: Do...
openwsman security update
2.6.5-5 - Fix CVE-2019-3816 Resolves: 1693972 - Remove Dist Tag from the oldest changelog entry...
java-1.8.0-openjdk security update
1:1.8.0.212.b04-1 - Remove additions to EXTRACFLAGS and EXTRACPPFLAGS which are now made by upstream. - Resolves: rhbz1693468 1:1.8.0.212.b04-1 - Add JDK-8223219 to avoid -fstack-protector overriding -fstack-protector-strong - Resolves: rhbz1693468 1:1.8.0.212.b04-0 - Update to...
gvfs security update
1.36.2-2.1 - CVE-2019-3827: Prevent access if any authentication agent isn't available 1690470 1.36.2-2 - rebuild...
go-toolset:rhel8 security update
go-toolset 1.11.5-2 - Include patch to fix CVE-2019-9741 - Resolves: rhbz1690443 golang 1.11.5-2 - Include patch to fix CVE-2019-9741 - Resolves: rhbz1690443 1.11.5-2 - Switch to pagure fork for Go FIPS...
kernel security and bug fix update
4.18.0-80.1.20.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.1.20 - arm64 arm64/speculation: Support 'mitigations=' cmdline opti...
firefox security update
60.8.0-1.0.2 - Rebuild to pickup Oracle default bookmarks Orabug: 30069264 60.8.0-1.0.1 Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
thunderbird security update
60.7.2-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.7.2-2 - Update to 60.7.2 build2 60.7.2-1 - Update to 60.7.2 60.7.1-1 - Update to 60.7.1...
pki-deps:10.6 security update
apache-commons-collections 3.2.2-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora29MassRebuild 3.2.2-9 - Remove workaround for symlink-directory rpm bug jackson-bom 2.9.8-1 - Update to latest upstream release 2.9.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 2.9.4-1 -...
wget security update
1.19.5-7.0.1.1 - SSLv3 support dropped from openssll, v3 test certificates need to be replaced Orabug: 29613455 1.19.5-7.1 - Fix tests with on armhfp 1.19.5-7.1 - Fix CVE-2019-5953 1696735...
container-tools:rhel8 security and bug fix update
container-selinux 2:2.94-1.git1e99f1d - Resolves: 1690286 - bump to v2.94 - Resolves: 1693806, 1689255 2:2.89-1.git2521d0d - bump to v2.89 runc 1.0.0-55.rc5.dev.git2abd837 - Resolves: CVE-2019-5736...
cyrus-imapd security update
3.0.7-15.1 - Resolves: 1718194 - don't overrun buffer when parsing strings with sscanf...
virt:rhel security update
libguestfs 1:1.38.4-10.1.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-10.1 - Fix inspection of partition-less devices resolves: rhbz1714747 libssh2 1.8.0-7.el80.1 - fix integer overflow in keyboard interactive handling th...
virt:rhel security update
libguestfs 1:1.38.4-10.0.1 - Config supermin to use host yum.conf in ol8 Orabug: 29319324 - Set DISTROORACLELINUX correspeonding to ol 1:1.38.4-10.1 - Fix inspection of partition-less devices resolves: rhbz1714747 libssh2 1.8.0-7.el80.1 - fix integer overflow in keyboard interactive handling that...
libssh2 security update
1.4.3-12.0.1.el76.3 - Bump and rebuild. 1.4.3-12.el76.3 - fix out-of-bounds memory comparison with specially crafted message channel request CVE-2019-3862...
kernel security and bug fix update
4.18.0-80.4.20.OL8 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 4.18.0-80.4.20 - net tcp: enforce tcpminsndmss in tcpmtuprobing Florian...
java-11-openjdk security update
1:11.0.3.7-2.0.1 - link atomic for ix86 build Livy Ge 1:11.0.3.7-2 - Do not generate lib-style requires for -slowdebug subpackages. - Resolves: rhbz1693468 1:11.0.3.7-2 - Fix requires/provides for the non-system JDK case. JDK 11 is not a system JDK at this point. - Resolves: rhbz1693468...
kernel security, bug fix, and enhancement update
3.10.0-957.27.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-957.27.2 - x86 hyper-v: fix hyperv.h UAPI header Vitaly Kuznetsov 1727109 169249...
httpd:2.4 security update
httpd 2.4.37-11.0.1 - Set vstring per ORACLESUPPORTPRODUCT Orabug: 29892262 - Replace index.html with Oracle's index page oracleindex.html 2.4.37-11 - Resolves: 1695431 - CVE-2019-0211 httpd: privilege escalation from modules scripts - Resolves: 1696090 - CVE-2019-0215 httpd:2.4/httpd: modssl:...
dotnet security, bug fix, and enhancement update
2.1.507-2 - Link against strerrorr correctly - Resolves: RHBZ1712471 2.1.507-1 - Update to .NET Core Runtime 2.1.11 and SDK 2.1.507 - Resolves: RHBZ1710068 2.1.506-1 - Update to .NET Core Runtime 2.1.10 and SDK 2.1.506 - Resolves: RHBZ1696836...
kubeadm-ha-setup security update
0.0.2-1.0.52 - OLCNE-678 Restore fails when trying to restore after a failed update 0.0.2-1.0.51 - OLCNE-667 Minor version update doesn't update kubeadm on all master nodes 0.0.2-1.0.50 - Make k8s 1.14 specific changes 0.0.2-1.0.49 - OLCNE-668 Remove 1.10 and 1.11 version since they are...
kubernetes security update
1.11.3-2.7.2 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.11.3.2.6.2 - OLCNE-384 CVE-2019-11243 rest.AnonymousClientConfig does not remove the serviceaccount credentials from config created by rest.InClusterConfig...
kubernetes security update
1.12.7-1.2.3 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.12.7-1.1.3 - OCNE-372 kubeadm: properly umount dirs in /var/lib/kubelet...
kubernetes security update
1.10.5-2.7.4 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.10.5-2.6.4 - OLCNE-383 CVE-2019-11243 Authentication information exposure in rest.AnonymousClientConfig...
kubernetes security update
1.9.11-2.7.1 - OLCNE-494 CVE-2019-11244 fix CVE-2019-11244: 'kubectl --http-cache= ' - creates world-writeable cached schema files 1.9.11-2.6.1 - OLCNE-382 CVE-2019-11243 rest.AnonymousClientConfig does not remove the sa credentials...
Unbreakable Enterprise kernel security update
4.1.12-124.29.3 - mlx4core: change lognumqp,rdmarc with scaleprofile Mukesh Kacker Orabug: 30064080 4.1.12-124.29.2 - scsi: storvsc: Fix scsicmd error assignments in storvschandleerror Cathy Avery Orabug: 30052805 4.1.12-124.29.1 - USB: check usbgetextradescriptor for proper size Mathias Payer...
java-1.7.0-openjdk security update
1:1.7.0.231-2.6.19.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.231-2.6.19.1 - Add missing hyphen in tapset filename. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Update tapset name in patch. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Bump to 2.6.19 including tapsets and OpenJDK 7u231-b01....
java-1.7.0-openjdk security update
1:1.7.0.231-2.6.19.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.231-2.6.19.1 - Add missing hyphen in tapset filename. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Update tapset filename matching pattern. - Resolves: rhbz1724452 1:1.7.0.231-2.6.19.0 - Bump to 2.6.19 including tapsets and OpenJD...
thunderbird security update
60.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...
java-11-openjdk security update
1:11.0.4.11-0.0.1 - link atomic for ix86 build 1:11.0.4.11-0 - Update to shenandoah-jdk-11.0.4+11 GA - Switch to GA mode for final release. - Resolves: rhbz1724452 1:11.0.4.10-0.0.ea - Update to shenandoah-jdk-11.0.4+10 EA - Resolves: rhbz1724452 1:11.0.4.9-0.0.ea - Update to...
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Adjust...
java-1.8.0-openjdk security update
1:1.8.0.222.b10-0 - Update to aarch64-shenandoah-jdk8u222-b10. - Resolves: rhbz1724452 1:1.8.0.222.b09-0 - Update to aarch64-shenandoah-jdk8u222-b09. - Switch to GA mode for final release. - Resolves: rhbz1724452 1:1.8.0.222.b08-0.0.ea - Update to aarch64-shenandoah-jdk8u222-b08. - Resolves:...
vim security update
2:8.0.1763-11 - 1719812 - CVE-2019-12735 vim: vim/neovim: arbitrary command execution in getchar.c rhel-8.1.0...
vim security update
2:7.4.629-5.2 - 1724045 - fix CVE-2019-12735 the :source! command allows arbitrary command execution via the modeline - fix spec warnings about expanding macros...
thunderbird security update
60.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.8.0-1 - Updated to 60.8.0 60.7.2-3 - Rebuild to fix rhbz1725919 - Thunderbird fails to authenticate with gmail with ssl/tls and OAuth2...
firefox security update
60.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file...
firefox security update
60.8.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one...
qemu security update
15:3.1.0-5.el7 - Only enable the halt poll control MSR if it is supported by the host Mark Kanda Orabug: 29946722 15:3.1.0-4.el7 - kvm: i386: halt poll control MSR support Marcelo Tosatti Orabug: 29933278 - Document CVEs as fixed: CVE-2017-9524, CVE-2017-6058, CVE-2017-5931 Mark Kanda Orabug:...