8998 matches found
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.26.1 - netfilter: xtTCPMSS: add more sanity tests on tcph-doff Eric Dumazet Orabug: 27896807 CVE-2017-18017 - scsi: libsas: fix memory leak in sassmpgetphyevents Jason Yan Orabug: 27927692 CVE-2018-7757...
java-1.7.0-openjdk security update
1:1.7.0.201-2.6.16.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.201-2.6.16.1 - Bump to 2.6.16 and u201b00. - Update 8076221/PR2809 disable RC4 to apply after 8208350 disable DES - Resolves: rhbz1633817...
xorg-x11-server security update
1.20.1-5.1 - CVE-2018-14665: Disable -logfile and -modulepath when running with elevated privileges 1.20.1-5 - Call LeaveVT from xf86CrtcCloseScreen 1.20.1-4 - Hide the modesetting driver's atomic ioctl support behind Option 'Atomic'...
python-paramiko security update
2.1.1-9 - Fix a security flaw CVE-2018-1000805 in Paramiko's server mode does not effect client mode. Backported from 2.1.6 Resolves rhbz1637366...
thunderbird security update
60.2.1-4.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 60.2.1-4 - Fixing minor issues 60.2.1-3 - Reverting deleting of key3db 60.2.1-2 - Update to 60.2.1 - Added fix for rhbz1546988 60.0-1 - Rebase to version 60...
Unbreakable Enterprise kernel security update
4.1.12-124.21.1 - hugetlbfs: fix kernel BUG at fs/hugetlbfs/inode.c:447! Mike Kravetz Orabug: 28839992 - scsi: libsas: fix memory leak in sassmpgetphyevents Jason Yan Orabug: 27927687 CVE-2018-7757 - KVM: vmx: shadow more fields that are read/written on every vmexits Paolo Bonzini Orabug: 2858104...
glibc security update
2.17-260.0.9 - Regenerate plural.c - OraBug 28806294. - Reviewed-by: Jose E. Marchesi 2.17-260.0.7 - intl: Port to Bison 3.0 - Backport of upstream gettext commit 19f23e290a5e4a82b9edf9f5a4f8ab6192871be9 - OraBug 28806294. - Reviewed-by: Patrick McGehearty 2.17-260.0.5 - Fix dbl-64/wordsize-64...
openssl security update
1.0.2k-16.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-16 - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on FIPS DSA parameter generation 1603597 1.0.2k-14 - ppc64le is not multilib architecture 1585004...
zsh security and bug fix update
5.0.2-31 - fix defects detected by Coverity related to CVE-2017-18206 and CVE-2018-1083 5.0.2-30 - fix stack-based buffer overflow in utils.c:checkmailpath CVE-2018-1100 - fix stack-based buffer overflow in genmatchesfiles CVE-2018-1083 - fix stack-based buffer overflow in exec.c:hashcmd...
X.org X11 security, bug fix, and enhancement update
freeglut 3.0.0-8 - HTTPS URLs - Pin soname to libglut.so.3 in the %files glob 3.0.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora28MassRebuild 3.0.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora27BinutilsMassRebuild 3.0.0-5 - Rebuilt for...
libkdcraw security update
4.10.5-5 - Resolves: 1557171, 1557189, 1558954 use the system LibRaw...
ovmf security, bug fix, and enhancement update
20180508-3.gitee3198e672e2.el7 - ovmf-redhat-provide-virtual-bundled-OpenSSL-in-OVMF.patch bz1607792 - Resolves: bz1607792 add 'Provides: bundledopenssl = 1.1.0h' to the spec file 20180508-2.gitee3198e672e2 - OvmfPkg/PlatformBootManagerLib: connect consoles unconditionally bz1577546 - build OVMF...
389-ds-base security, bug fix, and enhancement update
1.3.8.4-15 - Bump version to 1.3.8.4-15 - Resolves: Bug 1624004 - Fix regression in last patch 1.3.8.4-14 - Bump version to 1.3.8.4-14 - Resolves: Bug 1624004 - potential denial of service attack 1.3.8.4-13 - Bump version to 1.3.8.4-13 - Resolves: Bug 1623949 - Crash in deletepasswdPolicy when...
libmspack security update
0.5-0.6.alpha - Fixes for CVE-2018-14679 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 - resolves: rhbz1611550 rhbz1611551 rhbz1611552 rhbz1611553...
setup security and bug fix update
2.8.71-10 - fix crudp name in /etc/protocols 1566469 - do not list /sbin/nologin and /usr/sbin/nologin in /etc/shells 1571104...
gnutls security, bug fix, and enhancement update
3.3.29-8.0.1 - Include ECDSA KAT into selftests for FIPS140-2 compliance Orabug 27484156 3.3.29-8 - Backported --sni-hostname option which allows overriding the hostname advertised to the peer 1444792 - Improved counter-measures in TLS CBC record padding for lucky13 attack CVE-2018-10844, 1589704...
python security and bug fix update
2.7.5-76.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-76 - Remove an unversioned obsoletes tag Resolves: rhbz1627059 2.7.5-75 - Provide the /usr/libexec/platform-python symlink to the main binary Resolves: rhbz1599159 2.7.5-74 - Fix OSERROR 17 due to...
wpa_supplicant security and bug fix update
1:2.6-12 - Ignore unauthenticated encrypted EAPOL-Key data CVE-2018-14526 1:2.6-11 - Better handling of /run/wpasupplicant rh 1507919 1:2.6-10 - Fix memory leak when macsec MKA/PSK is used rh 1500442 - Fix authentication failure when the MAC is updated externally rh 1490885 - Let the kernel disca...
krb5 security, bug fix, and enhancement update
1.15.1-34 - In FIPS mode, add plaintext fallback for RC4 usages and taint - Resolves: 1570600 1.15.1-33 - Use SHA-256 instead of MD5 for audit ticket IDs - Resolves: 1570600 1.15.1-32 - Include preauth name in trace output if possible - Update cert generation scripts to work on modern openssl - F...
wget security and bug fix update
1.14-18 - Fix CVE-2018-0494 1576106 1.14-17 - Fix segfault when Digest Authentication header is missing 'qop' part 1545310 1.14-16 - Fixed various security flaws CVE-2017-13089, CVE-2017-13090...
libvirt security, bug fix, and enhancement update
4.5.0-10 - conf: correct false boot order error during domain parse rhbz1601318 4.5.0-9 - virDomainDefCompatibleDevice: Relax alias change check rhbz1621910 - virDomainDetachDeviceFlags: Clarify update semantics rhbz1621910 - virDomainNetDefCheckABIStability: Check for MTU change too rhbz1623157...
libcdio security update
0.92-3 - fix CVE-2017-18198 and CVE-2017-18199 - Resolves: rhbz1553769 - Resolves: rhbz1553604 0.92-2 - fix CVE-2017-18201 - Resolves: rhbz1553621...
xerces-c security update
3.1.1-9 - Fix CVE-2016-4463 - Resolves: 1534481...
glusterfs security, bug fix, and enhancement update
3.12.2-18 - fixes bugs bz1524336 bz1622029 bz1622452 3.12.2-17 - fixes bugs bz1615578 bz1619416 bz1619538 bz1620469 bz1620765 3.12.2-16 - fixes bugs bz1569657 bz1608352 bz1609163 bz1609724 bz1610825 bz1611151 bz1612098 bz1615338 bz1615440 3.12.2-15 - fixes bugs bz1589279 bz1598384 bz1599362...
kernel security, bug fix, and enhancement update
3.10.0-957 - mm mlock: avoid increase mm-lockedvm on mlock when already mlock2, MLOCKONFAULT Rafael Aquini 1633059 3.10.0-956 - block blk-mq: fix hctx debugfs entry related race between update hw queues and cpu hotplug Ming Lei 1619988 - nvme nvme-pci: unquiesce dead controller queues Ming Lei...
binutils security, bug fix, and enhancement update
2.27-34.base.0.1 - Backport of upstream commit a5def14f1ca70e14d9433cb229c9369fa3051598 Add a test for R386GOT32/R386GOT32X IFUNC reloc error Orabug 27930573 2.27-34.base - Fix seg-fault parsing corrupt AOUT format files. 1579799 - Fix seg-fault parsing corrupt DWARF2 debug information. 1579802 -...
curl and nss-pem security and bug fix update
curl 7.29.0-51 - require a new enough version of nss-pem to avoid regression in yum 1610998 7.29.0-50 - remove dead code, detected by Coverity Analysis - remove unused variable, detected by GCC and Clang 7.29.0-49 - make curl --speed-limit work with TFTP 1584750 7.29.0-48 - fix RTSP bad headers...
glibc security, bug fix, and enhancement update
2.17-260.0.9 - Regenerate plural.c - OraBug 28806294. - Reviewed-by: Jose E. Marchesi 2.17-260.0.7 - intl: Port to Bison 3.0 - Backport of upstream gettext commit 19f23e290a5e4a82b9edf9f5a4f8ab6192871be9 - OraBug 28806294. - Reviewed-by: Patrick McGehearty 2.17-260.0.5 - Fix dbl-64/wordsize-64...
openssl security, bug fix, and enhancement update
1.0.2k-16.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-16 - fix CVE-2018-0495 - ROHNP - Key Extraction Side Channel on DSA, ECDSA - fix incorrect error message on FIPS DSA parameter generation 1603597 1.0.2k-14 - ppc64le is not multilib architecture 1585004...
zziplib security update
0.13.62-9 - Fix covscan warning - 'Variable 'file' going out of scope leaks the storage it points to.' has been introduced by the original version of 0001-fix-CVE-2018-7725.patch - Related: 1558596 0.13.62-8 - Fix CVE-2018-7727 - Resolves: 1558891 0.13.62-7 - Fix CVE-2018-7726 - Resolves: 1558623...
sssd security, bug fix, and enhancement update
1.16.2-13 - Resolves: rhbz1593756 - sssd needs to require a newer version of libtalloc and libtevent to avoid an issue in GPO processing 1.16.2-12 - Resolves: rhbz1610667 - sssdssh leaks file descriptors when more than one certificate is converted into an SSH key - Resolves: rhbz1583360 - The IPA...
samba security, bug fix, and enhancement update
4.8.3-4 - resolves: 1614132 - Fix delete-on-close after smb2find - resolves: 1614265 - Fix CVE-2018-1139 - resolves: 1614269 - Fix CVE-2018-10858 4.8.3-3 - resolves: 1581016 - Add smbclient quiet argument 4.8.3-2 - related: 1538743 - Fix local user account lookup with winbind 4.8.3-1 - related:...
jasper security update
1.900.1-33 - remove implicit declaration of jaseprintf 1585830 1.900.1-32 - Fix CVE-2016-9396 1583721 - Fix CVE-2017-1000050 1585830...
GNOME security, bug fix, and enhancement update
PackageKit 1.1.10-1.0.1 - remove PackageKit-0.3.8-Fedora-Vendor.conf.patch 1.1.10-1 - New upstream release - Resolves: 1576494 accountsservice 0.6.50-2 - Fix user switching Resolves: 1597350 0.6.50-1 - Update to 0.6.50 Related: 1576538 Related: 1596735 Related: 1602918 0.6.49-1 - Update to 0.6.49...
firefox security update
60.3.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.3.0-1 - Update to 60.3.0 ESR 60.2.2-2 - Added patch for rhbz1633932 60.2.2-1 - Update to 60.2.2 ESR 60.2.1-1 - Update to 60.2.1 ESR 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not...
java-1.7.0-openjdk security update
1:1.7.0.201-2.6.16.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.201-2.6.16.0 - Bump to 2.6.16 and u201b00. - Update 8076221/PR2809 disable RC4 to apply after 8208350 disable DES - Resolves: rhbz1633817...
python-paramiko security update
1.7.5-5 - Split handler tables for server and client side - Fix CVE-2018-1000805 - Resolves: rhbz1637365...
qemu security update
12:2.9.0-17.el7 - i386: Remove generic SMT thread check Babu Moger Orabug: 28676425 - pc: Fix typo on PCCOMPAT212 Eduardo Habkost Orabug: 28676425 - i386: Enable TOPOEXT feature on AMD EPYC CPU Babu Moger Orabug: 28676425 - net: ignore packet size greater than INTMAX Jason Wang Orabug: 28762625...
Unbreakable Enterprise kernel security update
4.1.12-124.20.7 - Revert 'rds: RDS tcp hangs on sendto to unresponding address' Brian Maly Orabug: 28837953 4.1.12-124.20.6 - x86/speculation: Retpoline should always be available on Skylake Alexandre Chartre Orabug: 28801831 4.1.12-124.20.5 - x86/speculation: Add sysfs entry to enable/disable...
firefox security and bug fix update
60.3.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.3.0-1 - Update to 60.3.0 ESR 60.2.2-2 - Added patch for rhbz1633932...
java-1.8.0-openjdk security update
1:1.8.0.191.b12-0 - Update to aarch64-shenandoah-jdk8u191-b12. - Resolves: rhbz1633817 1:1.8.0.191.b10-0 - Update to aarch64-shenandoah-jdk8u191-b10. - Drop 8146115/PR3508/RH1463098 applied upstream. - Resolves: rhbz1633817 1:1.8.0.181.b16-0 - Add new Shenandoah patch PR3634 as upstream still fai...
java-1.8.0-openjdk security update
1:1.8.0.191.b12-0 - Update to aarch64-shenandoah-jdk8u191-b12. - Resolves: rhbz1633817 1:1.8.0.191.b10-0 - Update to aarch64-shenandoah-jdk8u191-b10. - Drop 8146115/PR3508/RH1463098 applied upstream. - Resolves: rhbz1633817 1:1.8.0.181.b16-0 - Add new Shenandoah patch PR3634 as upstream still fai...
tomcat security update
0:7.0.76-8 - Resolves: rhbz1608608 CVE-2018-1336 tomcat: A bug in the UTF 8 decoder can lead to DoS...
openssl security update
1.0.1e-57.0.6 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737...
ghostscript security update
9.07-29.el75.2 - Fix MediaPosition, ManualFeed and MediaType with pxl devices bug 1629842 9.07-29.el75.1 - Added security fixes for: - CVE-2018-16509 bug 1621156 - CVE-2018-15910 bug 1621157 - CVE-2018-16542 bug 1621380 9.07-29 - Fix rare Segmentation fault when converting PDF to PNG bug 1473337 ...
openssl security update
1.0.2k-12.0.3 - Oracle bug 28672370: backport CVE-2018-0732 - Oracle bug 28672351: backport CVE-2018-0737...
openssl security update
1.0.1e-57.0.6 - Oracle bug 28730228: backport CVE-2018-0732 - Oracle bug 28758493: backport CVE-2018-0737...
openssl security update
1.0.2k-12.0.3 - Oracle bug 28672370: backport CVE-2018-0732 - Oracle bug 28672351: backport CVE-2018-0737...
Unbreakable Enterprise kernel security update
2.6.39-400.302.2 - Revert 'Fix up non-directory creation in SGID directories' Brian Maly Orabug: 28781234 2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730...
spamassassin security update
3.4.0-4 - Add missing Requires for perlXSLoader and perlExtUtils::MakeMaker, - which are no longer auto-generated due to a expected change in rpm-build - Related: rhbz1632998 3.4.0-3 - Fix CVE-2018-11781 - Local user code injection in the meta rule syntax - Fix CVE-2017-15705 - Certain unclosed...