8998 matches found
Unbreakable Enterprise kernel security update
4.1.12-124.20.1 - bnxten: xdp: don't make drivers report attachment mode partial backport Somasundaram Krishnasamy Orabug: 27988326 - bpf: make bnxt compatible w/ bpfxdpadjusttail Nikita V. Shirokov Orabug: 27988326 - bnxten: add meta pointer for direct access partial backport Somasundaram...
Unbreakable Enterprise kernel security update
2.6.39-400.302.1 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459479 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459730 CVE-2018-7566 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28539910...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.25.1 - x86/spectrev2: Don't check microcode versions when running under hypervisors Konrad Rzeszutek Wilk Orabug: 27959785 - rds: CVE-2018-7492: Fix NULL pointer dereference in rdsrdmamap Hakon Bugge Orabug: 28552792 CVE-2018-7492 - cdrom: Fix info leak/OOB read in...
Unbreakable Enterprise kernel security update
4.14.35-1818.3.3 - net: netfailover: fix typo in netfailoverslaveregister Liran Alon Orabug: 28122110 - virtionet: Extend virtio to use VF datapath when available Sridhar Samudrala Orabug: 28122110 - virtionet: Introduce VIRTIONETFSTANDBY feature bit Sridhar Samudrala Orabug: 28122110 - net:...
glusterfs security, bug fix, and enhancement update
3.12.2-18 - fixes bugs bz1524336 bz1622029 bz1622452 3.12.2-17 - fixes bugs bz1615578 bz1619416 bz1619538 bz1620469 bz1620765 3.12.2-16 - fixes bugs bz1569657 bz1608352 bz1609163 bz1609724 bz1610825 bz1611151 bz1612098 bz1615338 bz1615440 3.12.2-15 - fixes bugs bz1589279 bz1598384 bz1599362...
nss security update
3.36.0-9.0.1 - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed 3.36.0-9 - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake the symbol was not exported from libnss...
kernel security and bug fix update
2.6.32-754.6.3.OL6 - Update genkey bug 25599697 2.6.32-754.6.3 - kvm VMX: fixes for vmentryl1dflush module parameter Marcelo Tosatti 1628796 - x86 speculation: Use ARCHCAPABILITIES to skip L1D flush on vmentry Marcelo Tosatti 1628796 - x86 KVM: VMX: skip L1TF flush on VM-entry if EPT is disabled...
firefox security update
60.2.2-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.2.2-1 - Update to 60.2.2 ESR...
kernel security update
kernel 2.6.18-419.0.0.0.12 - x86 mm/dumppagetables: Add a checkl1tf debugfs file Chris von Recklinghausen 1593378 CVE-2018-3620 - x86 cpu: Make flushl1d visible in /proc/cpuinfo Chris von Recklinghausen 1593378 - x86 cpufeatures: Add detection of L1D cache flush support. Chris von Recklinghausen...
Unbreakable Enterprise kernel security update
2.6.39-400.301.2 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710024 CVE-2018-14634...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.3 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28710010 CVE-2018-14634...
Unbreakable Enterprise kernel security update
4.1.12-124.19.6 - exec: Limit arg stack to at most 75% of STKLIM Kees Cook Orabug: 28709994 CVE-2018-14634...
openssl security update
1.0.1e-57.0.5 - Merge upstream patch to fix CVE-2018-0739 1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
firefox security update
60.2.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.2.1-1 - Update to 60.2.1 ESR...
openssl security update
1.0.1e-57.0.5 - Merge upstream patch to fix CVE-2018-0739...
kernel security and bug fix update
3.10.0-862.14.4.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.14.4 - scsi Revert: lpfc: Fix port initialization failure Radomir Vrbovsky...
Unbreakable Enterprise kernel security update
4.1.12-124.19.5 - nsfs: mark dentry with DCACHERCUACCESS Cong Wang Orabug: 28576290 CVE-2018-5873 - dm crypt: add middle-endian variant of plain64 IV Konrad Rzeszutek Wilk Orabug: 28604628 - IB/ipoib: Improve filtering log message Yuval Shaia Orabug: 28655409 - IB/ipoib: Fix wrong update of...
flatpak security update
0.8.8-4 - Add patch for CVE-2018-6560 1547376...
nss security update
3.36.0-7 - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake the symbol was not exported from libnss 3.36.0-6 - Exercise SSL tests which only run under non-FIPS setting...
389-ds-base security and bug fix update
1.3.7.5-28 - Bump version to 1.3.7.5-28 - Resolves: Bug 1628676 - 389-ds-base: race condition on reference counter leads to DoS using persistent search - Resolves: Bug 1628677 - Crash in deletepasswdPolicy when persistent search connections are terminated unexpectedly 1.3.7.5-27 - Bump version to...
mod_perl security update
2.0.4-12 - Fix CVE-2011-2767 arbitrary Perl code execution in the context of the user account via a user-owned .htaccess bug 1626272...
firefox security update
60.2.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed...
spice-gtk and spice-server security update
spice-gtk 0.26-8.1 - Fix flexible array buffer overflow Resolves: rhbz1596008 spice-server 0.12.4-16.1 - Fix flexible array buffer overflow Resolves: rhbz1596008...
spice and spice-gtk security update
spice 0.14.0-2.0.2 - add arm suppport 0.14.0-2.5 - Fix flexible array buffer overflow Resolves: rhbz1596008 spice-gtk 0.34-3.2 - Fix flexible array buffer overflow Resolves: rhbz1596008...
kernel security update
2.6.18-419.0.0.0.11 - x8664/entry: Don't use IST entry for BP stack orabug 28452062 CVE-2018-8897...
Unbreakable Enterprise kernel security update
4.1.12-124.19.2 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: avoid...
Unbreakable Enterprise kernel security update
2.6.39-400.301.1 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Exempt zeroed PTEs from inversion Sean Christopherson Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.2 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Extend 64bit swap file size...
firefox security update
60.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed homepage and bookmarks...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.1 - mm/mempolicy: fix use after free when calling getmempolicy zhong jiang Orabug: 28022108 CVE-2018-10675 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459478 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459729...
Unbreakable Enterprise kernel security update
4.1.12-124.19.1 - x86/entry/64: Ensure %ebx handling correct in xenfailsafecallback George Kennedy Orabug: 28402927 CVE-2018-14678 - x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ Andi Kleen Orabug: 28488808 CVE-2018-3620 - x86/speculation/l1tf: Suggest what to do on systems with t...
Unbreakable Enterprise kernel security update
4.1.12-124.18.9 - rebuild bumping release 4.1.12-124.18.8 - Cipso: cipsov4optptr enter infinite loop yujuan.qi Orabug: 28563992 CVE-2018-10938 - Btrfs: fix listadd corruption and soft lockups in fsync Liu Bo Orabug: 28119834 - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests Peter...
bind security update
32:9.9.4-61.1 - Fix CVE-2018-5740...
bind security update
32:9.8.2-0.68.rc1.1 - Fix CVE-2018-5740...
postgresql security update
9.2.24-1 - update to the latest 9.2 release - fix CVE-2018-10915...
mutt security update
5:1.5.21-28 - Resolves: CVE-2018-14354 CVE-2018-14357 CVE-2018-14362...
mariadb security and bug fix update
1:5.5.60-1 - Rebase to 5.5.60 - CVE's fixed: 1558256, 1558260, 1559060 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-10379 CVE-2017-10384 CVE-2017-10378 CVE-2017-10268 CVE-2018-2562 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2819 CVE-2018-2817 CVE-2018-276...
qemu-kvm security and bug fix update
1.5.3-156.el75.5 - kvm-multiboot-bssendaddr-can-be-zero.patch bz1549824 - kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch bz1549824 - kvm-multiboot-Use-header-names-when-displaying-fields.patch bz1549824 - kvm-multiboot-fprintf-stderr.-errorreport.patch bz1549824 -...
Unbreakable Enterprise kernel security update
4.1.12-124.18.6 - qla2xxx: Update the version to 9.00.00.00.41.0-k1. Giridhar Malavali Orabug: 28172611 - qla2xxx: Utilize complete local DMA buffer for DIF PI inforamtion. Giridhar Malavali Orabug: 28172611 - qla2xxx: Correction to total data segment count when local DMA buffers used for DIF PI...
qemu security update
12:2.9.0-11.1.el7 - i386: Define the Virt SSBD MSR and handling of it CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the AMD 'virt-ssbd' CPUID feature bit CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the 'ssbd' CPUID feature...
kernel security and bug fix update
2.6.32-754.3.5.OL6 - Update genkey bug 25599697 2.6.32-754.3.5 - kernel cpu/hotplug: Enable 'nosmt' as late as possible Frantisek Hrbata 1593376 CVE-2018-3620 2.6.32-754.3.4 - x86 x86/mm: Simplify pg4umdpage macros Josh Poimboeuf 1593376 CVE-2018-3620 - x86 x86/mm: Fix regression with huge pages ...
kernel security and bug fix update
3.10.0-862.11.6.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.11.6 - kernel cpu/hotplug: Fix 'online' sysfs entry with 'nosmt' Josh...
Unbreakable Enterprise kernel security update
4.1.12-124.18.5 - inet: frag: enforce memory limits earlier Eric Dumazet Orabug: 28450977 - x86/mm/pageattr.c: fix page prot mask Mihai Carabas Orabug: 28492122 - x86/pgtable.h: fix PMD/PUD mask Mihai Carabas Orabug: 28492122 - x86/asm: Add pud/pmd mask interfaces to handle large PAT bit Toshi Ka...
Unbreakable Enterprise kernel security update
4.14.35-1818.1.6 - ipv4: frags: handle possible skb truesize change Eric Dumazet Orabug: 28481663 CVE-2018-5391 4.14.35-1818.1.5 - inet: frag: enforce memory limits earlier Eric Dumazet Orabug: 28481663 CVE-2018-5391 - init/main.c: reorder bootcpustateinit/smppreparebootcpu Mihai Carabas Orabug:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.23.1 - xen/blkback: free requests on disconnection Dongli Zhang Orabug: 22111941 - RDS: null pointer dereference in rdsatomicfreeop Mohamed Ghannam Orabug: 27986376 CVE-2018-5333 - ACPI: sbshc: remove raw pointer from printk message Greg Kroah-Hartman Orabug: 27986392...
Unbreakable Enterprise kernel security update
4.14.35-1818.0.15 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: avoid...
Unbreakable Enterprise kernel security update
4.14.35-1818.0.14 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: avoid...
kernel security and bug fix update
kernel 2.6.18-419.0.0.0.10 - Backport CVE-2017-5715 to RHCK/OL5 orabug 27787723 2.6.18-419.0.0.0.9 - rebuild with retpoline compiler...
openslp security update
2.0.0-3 - Fix possible heap memory corruption, CVE-2017-17833 Resolves: 1575699...
yum-utils security update
1.1.30-42.0.1 - add dependency btrfs-progs for yum-plugin-fs-snapshot [email protected] bug 16285176 - use unified btrfs binary instead of btrfsctl [email protected] bug 16285176 -1.1.30-42 - reposync: prevent path traversal. - Resolves: bug1600619...