8998 matches found
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
yum-utils security update
1.1.31-46.0.1 - needs-restarting not checking kernel-uek for reboot message Orabug 27189714 - add bug27596617.patch to remove upstream URL reference 1.1.31-46 - reposync: prevent path traversal. - Resolves: bug1600617...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
openslp security update
1:2.0.0-7 - Fix possible heap memory corruption, CVE-2017-17833 Resolves: 1575698...
java-1.8.0-openjdk security update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters for internal libs. See RHBZ1590796 ...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13 and aarch64-shenandoah-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters...
Unbreakable Enterprise kernel security update
2.6.39-400.300.2 - Revert 'RDS: don't commit to queue till transport connection is up' Santosh Shilimkar Orabug: 27619034 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951293 CVE-2017-17741 CVE-2017-17741 - kernel/exit.c: avoid undefined behaviour when calling wait4...
gnupg2 security update
2.0.14-9 - fix CVE-2018-12020 - missing sanitization of original filename...
gnupg2 security update
2.0.22-5 - fix CVE-2018-12020 - missing sanitization of original filename...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.22.1 - dm: fix race between dmgetfromkobject and dmdestroy Hou Tao CVE-2017-18203 - drm: udl: Properly check framebuffer mmap offsets Greg Kroah-Hartman Orabug: 27986407 CVE-2018-8781 - kernel/exit.c: avoid undefined behaviour when calling wait4 wait4-2147483648, 0x20, 0,...
qemu-kvm security update
0.12.1.2-2.506.el610.1 - qemu-kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574074 - qemu-kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch bz1574074 - qemu-kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch bz1574074 - Resolves: bz1574074 CVE-2018-363...
kernel security and bug fix update
2.6.32-754.2.1.OL6 - Update genkey bug 25599697 2.6.32-754.2.1 - x86 entry/64: Don't use IST entry for BP stack Waiman Long 1596113 CVE-2018-10872 - fs gfs2: Flush delayed work earlier in gfs2inodelookup Andreas Grunbacher 1506281 - mm mempolicy: fix use after free when calling getmempolicy Augus...
Unbreakable Enterprise kernel security update
4.1.12-124.17.1 - block: update integrity interval after queue limits change Ritika Srivastava Orabug: 27586756 - dccp: check sk for closed state in dccpsendmsg Alexey Kodanev Orabug: 28001529 CVE-2017-8824 CVE-2018-1130 - net/rds: Implement ARP flushing correctly Hakon Bugge Orabug: 28219857 -...
firefox security update
60.1.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.1.0-4 - Disabled jemalloc on all second arches 60.1.0-3 - Updated to 60.1.0 ESR build2 60.1.0-2 - Disabled jemalloc on second arches 60.1.0-1 - Updated to 60.1.0 ESR 60.0-12 - Fixing bundled libffi...
python security update
2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz1584545...
glibc security update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
kernel security and bug fix update
3.10.0-862.6.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.6.3 - x86 always enable eager FPU by default on non-AMD processors Paolo...
qemu-kvm security update
1.5.3-156.el75.3 - kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch bz1584363 - kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch bz1584363 - Resolves: bz1584363 CVE-2018-3639 qemu-kvm: hw: cpu: AMD: speculative store bypass rhel-7.5.z...
pki-core security, bug fix, and enhancement update
10.5.1-13.1 - Rebuild due to build system database problem 10.5.1-13 - - RHEL 7.5: - - Bugzilla Bug 1553068 - Using a Netmask produces an odd entry in a certifcate rhel-7.5.z ftweedal - Bugzilla Bug 1585945 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC...
libvirt security and bug fix update
3.9.0-14.el75.6 - logging: Don't inhibit shutdown in system daemon rhbz1573268 - util: don't check for parallel iteration in hash-related functions rhbz1581364 - cpu: define the 'virt-ssbd' CPUID feature bit CVE-2018-3639 - virNumaGetHugePageInfo: Return pageavail and pagefree as ULL rhbz1582418...
zsh security update
4.3.11-8 - fix defects detected by Coverity related to CVE-2017-18206 and CVE-2018-1083 4.3.11-7 - fix stack-based buffer overflow in utils.c:checkmailpath CVE-2018-1100 - fix stack-based buffer overflow in genmatchesfiles CVE-2018-1083 - fix buffer overrun in xsymlinks CVE-2017-18206 - fix buffe...
glibc security and bug fix update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
kernel security and bug fix update
2.6.32-754.OL6 - Update genkey bug 25599697 2.6.32-754 - powerpc 64s: Add support for a store forwarding barrier at kernel entry/exit Mauricio Oliveira 1581053 CVE-2018-3639 - x86 amd: Disable AMD SSBD mitigation in a VM Waiman Long 1580360 - x86 specctrl: Fix late microcode problem with AMD Waim...
samba security and bug fix update
3.6.23-51.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-51 - resolves: 1513877 - Fix memory leak in winbind 3.6.24-50 - resolves: 1553018 - Fix CVE-2018-1050 3.6.24-49 - resolves: 1536053 - Fix regression with non-wide symlinks to directories...
openssl security update
1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
sssd and ding-libs security and bug fix update
ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...
samba4 security and bug fix update
4.2.10-15 - resolves: 1552005 - Fix CVE-2018-1050 4.2.10-14 - resolves: 1492780 - Do not build with -Wl,-z,now on ppc64...
libvirt security update
0.10.2-64.0.1 - Replace docs/et.png in tarball with blank image 0.10.2-64 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639 - cpu: define the 'virt-ssbd' CPUID feature bit CVE-2018-3639 0.10.2-63 - qemu: avoid denial of service reading from QEMU monitor CVE-2018-5748 - qemu: avoid denial o...
git security update
1.8.3.1-14 - Backport fix for CVE-2018-1123 - Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.21.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156176 CVE-2018-3665 3.8.13-118.21.3 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951287 CVE-2017-17741 CVE-2017-17741 - xfs: set format back to extents if xfsbmapextentstobtree Eric...
Unbreakable Enterprise kernel security update
4.1.12-124.16.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28135099 CVE-2018-3665...
Unbreakable Enterprise kernel security update
2.6.39-400.299.3 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156175 CVE-2018-3665 - ALSA: hrtimer: Fix stall by hrtimercancel Takashi Iwai Orabug: 22876528 CVE-2016-2549 - ALSA: timer: Harden slave timer list handling Takashi Iwai Orabug: 22876528 CVE-2016-2547 CVE-2016-2548 - ALSA:...
kernel security update
3.10.0-862.3.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.3.3 - x86 always enable eager FPU by default on non-AMD processors Paolo...
Unbreakable Enterprise kernel security update
4.1.12-124.16.2 - netlink: add a start callback for starting a netlink dump Tom Herbert Orabug: 27169581 CVE-2017-16939 - ipsec: Fix aborted xfrm policy dump crash Herbert Xu Orabug: 27169581 CVE-2017-16939...
plexus-archiver security update
0:2.4.2-5 - Fix arbitrary file write vulnerability - Resolves: CVE-2018-1002200...
Unbreakable Enterprise kernel security update
4.1.12-124.15.4 - x86/bugs/IBRS: Keep SSBD mitigation in effect if spectrev2=ibrs is selected Mihai Carabas - fs/pstore: update the backend parameter in pstore module Wang Long Orabug: 27994372 - kvm: vmx: Reinstate support for CPUs without virtual NMI Paolo Bonzini Orabug: 28041210 - dm crypt: a...
xmlrpc security update
1:3.1.3-9 - Disallow deserialization of tags by default - Resolves: CVE-2016-5003...
procps security update
3.2.8-45.0.1.el69.3 - vmstat: fix invalid CPU utilization stats after vCPU hot-plug/unplug Konrad Rzeszutek Wilk bug 18011019 3.2.8-45.el69.3 - drop leftover assignment in fix for CVE-2018-1124 causing a severe regression - Resolves: CVE-2018-1124 3.2.8-45.el69.2 - fix integer overflows leading t...
xmlrpc3 security update
3.0-4.17 - Rebase patch to avoid orig files in source JAR - Related: CVE-2016-5003 3.0-4.16 - Disallow deserialization of tags by default - Resolves: CVE-2016-5003...
thunderbird security update
52.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.8.0-1 - Update to 52.8.0...
thunderbird security update
52.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.8.0-2 - Update to 52.8.0...
procps-ng security update
3.3.10-17.el75.2 - check for truncation after calling snprintf - Related: CVE-2018-1124 3.3.10-17.el75.1 - fix integer overflows leading to heap overflow in file2strvec - Resolves: CVE-2018-1124...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578550...
Unbreakable Enterprise kernel security update
4.1.12-124.15.2 - KVM: SVM: Move spec control call after restore of GS Thomas Gleixner CVE-2018-3639 - x86/bugs: Fix the parameters alignment and missing void Konrad Rzeszutek Wilk CVE-2018-3639 - x86/bugs: Make cpushowcommon static Jiri Kosina CVE-2018-3639 - x86/bugs: Fix ssbselectmitigation...
qemu-kvm security update
0.12.1.2-2.503.el69.6 - qemu-kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574067 - Resolves: bz1574067 EMBARGOED CVE-2018-3639 qemu-kvm: Kernel: omega-4 rhel-6.9.z...
libvirt security update
3.9.0-14.el75.5 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639...
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578555...
qemu-kvm security update
1.5.3-156.el75.2 - kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574075 - Resolves: bz1574075 EMBARGOED CVE-2018-3639 qemu-kvm: Kernel: omega-4 rhel-7.5.z...