8998 matches found
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578545...
kernel security update
3.10.0-862.3.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.3.2 - x86 specctrl: Fix late microcode problem with AMD Waiman Long 1566904...
kernel security and bug fix update
2.6.32-696.30.1.OL6 - Update genkey bug 25599697 2.6.32-696.30.1 - x86 x86/kvm: fix CPUID7EDX word 18 mask Jan Stancek 1566893 1566899 CVE-2018-3639 2.6.32-696.29.1 - x86 x86/specctrl: Fix late microcode problem with AMD Waiman Long 1566893 1566899 CVE-2018-3639 - x86 x86/specctrl: Clean up entry...
libvirt security update
0.10.2-62.0.1.el69.2 - Replace docs/et.png in tarball with blank image 0.10.2-62.el69.2 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578560...
Unbreakable Enterprise kernel security update
2.6.39-400.299.1 - ext4/jbd2: dont wait forever for stale tid caused by wraparound Theodore Tso Orabug: 26424268 - jbd2: dont wake kjournald unnecessarily Eric Sandeen Orabug: 26424268 - ext4: fix data corruption in inodes with journalled data Jan Kara Orabug: 26424268 - media: imon: Fix...
dhcp security update
12:4.1.1-53.P1.0.1.4 - Added oracle-errwarn-message.patch 12:4.1.1-53.P1.el69.4 - Resolves: 1570897 - Fix comamnd execution in NM script CVE-2018-1111...
Unbreakable Enterprise kernel security update
4.1.12-124.15.1 - netfilter: nfnetlinkcthelper: Add missing permission checks Kevin Cernekee Orabug: 27260771 CVE-2017-17448 - netlink: Add netns check on taps Kevin Cernekee Orabug: 27260799 CVE-2017-17449 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27290606 CVE-2017-1774...
dhcp security update
12:4.2.5-68.0.1.1 - Direct users to Oracle Linux support site. 12:4.2.5-68.1 - Resolves: 1570898 - Fix CVE-2018-1111: Do not parse backslash as escape character...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.21.1 - media: imon: Fix null-ptr-deref in imonprobe Arvind Yadav Orabug: 27208380 CVE-2017-16537 - Input: gtco - fix potential out-of-bound access Dmitry Torokhov Orabug: 27215090 CVE-2017-16643 - usb: usbtest: fix NULL pointer dereference Alan Stern Orabug: 27602324...
389-ds-base security and bug fix update
1.3.7.5-21 - Bump version to 1.3.7.5-21 - Resolves: Bug 1559818 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch 1.3.7.5-20 - Bump version to 1.3.7.5-20 - Resolves: Bug 1563079 - adjustment of csngenerator can fail so next generated csn can be equal to th...
firefox security update
52.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.8.0-1 - Update to 52.8.0 ESR...
firefox security update
52.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.8.0-1 - Update to 52.8.0 ESR...
qemu-kvm security update
1.5.3-156.el75.1 - kvm-vga-add-ramaddrt-cast.patch bz1567913 - kvm-vga-fix-region-calculation.patch bz1567913 - Resolves: bz1567913 CVE-2018-7858 qemu-kvm: Qemu: cirrus: OOB access when updating vga display rhel-7 rhel-7.5.z...
libvirt security and bug fix update
3.9.0-14.el75.4 - lxc: Drop useless check in live device update rhbz1557922 - Pass oldDev to virDomainDefCompatibleDevice on device update rhbz1557922 - qemu: Fix updating device with boot order rhbz1557922 - conf: Fix crash in virDomainDefCompatibleDevice rhbz1557922 - vmx: check for...
389-ds-base security update
1.2.11.15-95 - Bump version to 1.2.11-15-95 - Resolves: Bug 1562152 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch...
kernel security, bug fix, and enhancement update
3.10.0-862.2.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.2.3 - x86 kvm: fix icebp instruction handling Paolo Bonzini 1566849 1566845...
Unbreakable Enterprise kernel security update
4.1.12-124.14.5 - vhost/scsi: fix reuse of &vq-iovout in response Benjamin Coddington Orabug: 27928330 4.1.12-124.14.4 - kernel.spec: add requires system-release for OL7 Brian Maly Orabug: 27955380 - x86/kernel/traps.c: fix tracedienotifier return value Kris Van Hees CVE-2018-8897 - x86/entry/64:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.7 - x86/entry/64: Dont use IST entry for BP stack Andy Lutomirski CVE-2018-8897...
Unbreakable Enterprise kernel security update
2.6.39-400.298.7 - net/rds: Fix endless RNR situation Hakon Bugge Orabug: 27645402 - x86/entry/64: Dont use IST entry for BP stack Andy Lutomirski CVE-2018-8897...
kernel security and bug fix update
2.6.32-696.28.1.OL6 - Update genkey bug 25599697 2.6.32-696.28.1 - x86 entry/64: Don't use IST entry for BP stack Waiman Long 1567078 1567079 CVE-2018-8897 - x86 xen: do not use xeninfo on HVM, set pvinfo name to 'Xen HVM' Vitaly Kuznetsov 1569141 1568241 2.6.32-696.27.1 - mm account skipped...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.6 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947608 CVE-2018-100199 3.8.13-118.20.5 - x86/microcode: probe CPU features on microcode update Ankur Arora Orabug: 27806667 - x86/microcode: microcodewrite should not reference...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.5.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.5 - added depndence on latest c-j-c who do not have the incorrect jre-abrt handling - Resolves: rhbz1559766 1:1.7.0.181-2.6.14.3 - Bump release number to an unused one as rhel-7.5-z-java-unsafe-candidate wrongly using .el...
Unbreakable Enterprise kernel security update
2.6.39-400.298.6 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947612 CVE-2018-100199 2.6.39-400.298.5 - xen-netfront: fix rx stall when reqprodpvt goes back to more than zero again Dongli Zhang Orabug: 25053376 - x86/IBRS: Remove support for IBRSENABLEDUSER...
Unbreakable Enterprise kernel security update
4.1.12-124.14.3 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947602 CVE-2018-100199...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.1 - Fix invalid license 'LGPL+' should be LGPLv2+ for ECC code and add missing ones - Resolves: rhbz1559766 1:1.7.0.181-2.6.14.0 - Bump to 2.6.14 and u181b00. - Drop 8197981 Zero 32-bit patch now applied upstream. - Updat...
pcs security update
0.9.162-5.0.3.el75.1 - Unlike RHEL we DO have corosync/pacemaker for aarch64 on EL7 - replace logo pcsd/public/favicon.ico in tarball - remove Source1 HAM-logo.png 0.9.162-5.el75.1 - Fixed CVE-2018-1086 pcs: Debug parameter removal bypass, allowing information disclosure - Fixed CVE-2018-1079 pcs...
corosync security update
2.4.3-2.1 - Resolves: rhbz1560467 - totemcrypto: Check length of the packet...
Unbreakable Enterprise kernel security update
4.1.12-124.14.2 - scsi: iscsitcp: set BDICAPSTABLEWRITES when data digest enabled Jianchao Wang Orabug: 27726302 - block: fix biowillgap for first bvec with offset Ming Lei Orabug: 27775588 - block: relax check on sg gap Ming Lei Orabug: 27775588 - block: don't optimize for non-cloned bio in...
librelp security update
1.2.7-3.1 - fixed CVE-2018-1000140 - resolved: rhbz1561230...
PackageKit security update
1.1.5-2.0.1 - remove PackageKit-0.3.8-Fedora-Vendor.conf.patch 1.1.5-2 - Fixes CVE-2018-1106 - Resolves: rhbz1566425...
librelp security update
1.2.12-1.1 - fixed bad NVR - resolves rhbz1561232 1.2.12-2 - fixed CVE-2018-1000140 - resolves rhbz1561232...
patch security update
2.7.1-10 - Fixed Coverity reported issues 2.7.1-9 - Fixed CVE-2018-1000156 - Malicious patch files cause ed to execute arbitrary commands...
patch security update
2.6-8 - Fixed year overflow detected in rpmdiff 2.6-7 - Fixed CVE-2018-1000156 - Malicious patch files cause ed to execute arbitrary commands...
java-1.8.0-openjdk security update
1:1.8.0.171-3.b10 - Cleanup from previous commit. - Resolves: rhbz1559766 1:1.8.0.171-2.b10 - Backported from fedora: aarch64BuildFailure.patch, rhbz1536622-JDK8197429-jdk8.patch, rhbz1540242.patch - Resolves: rhbz1559766 1:1.8.0.171-0.b10 - Update to aarch64-jdk8u171-b10. - Resolves: rhbz1559766...
java-1.8.0-openjdk security update
1:1.8.0.171-7.b10 - Bump release number to be greater than RHEL 7.6 package to allow build with .el7 suffix - Resolves: rhbz1559766 1:1.8.0.171-4.b10 - Rebuilding due to bad nss-softokn brew-root build override - Resolves: rhbz1559766 1:1.8.0.171-3.b10 - Fix jconsole.desktop.in subcategory,...
openssl security update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
Unbreakable Enterprise kernel security update
4.1.12-124.14.1 - ctf: drop the run-as-root error Nick Alcock Orabug: 27852654 - rds: Node crashes when trace buffer is opened Ka-Cheong Poon Orabug: 27846191 - xfs: fix accidental reversion of aa6a6227435cb Darrick J. Wong Orabug: 27845869 4.1.12-124.13.1 - net: cdcether: fix divide by 0 on bad...
glibc security update
2.17-222 - Restore internal GLIBCPRIVATE symbols for use during upgrades 1523119 2.17-221 - CVE-2018-1000001: Fix realpath buffer underflow 1534635 - i386: Fix unwinding for 32-bit C++ application 1529982 - Reduce thread and dynamic loader stack usage 1527904 - x86-64: Use XSAVE/XSAVEC more often...
libvncserver security update
0.9.9-12 - Fix CVE-2018-7225 improper client cut text length sanitization bug 1548440...
libvorbis security update
1.3.3-8.1 - Backport fix for CVE-2018-5146...
firefox security update
52.7.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.7.3-1 - Update to 52.7.3 ESR...
ntp security, bug fix, and enhancement update
4.2.6p5-28.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-28 - fix buffer overflow in datum refclock driver CVE-2017-6462 - fix crash with invalid unpeer command CVE-2017-6463 - fix potential crash with invalid server command CVE-2017-6464 - add Spectracom TSYNC...
xdg-user-dirs security and bug fix update
0.15-5 - Start using autostart mechanism instead of xinitrc.d script Resolves: 1412762...
policycoreutils security, bug fix, and enhancement update
2.5-22.0.1 - Lazy unmount private, shared entry Joe Jin orabug 12560705 2.5-22 - semanage: Fix fcontext help message 1499259 - semanage: Improve semanage-user.8 man page 1079946 - semodule: Improve man page 1337192 2.5-21 - Update translations 2.5-20 - setfiles: Mention customizable types in...
openssl security and bug fix update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
qemu-kvm security, bug fix, and enhancement update
1.5.3-156.el7 - kvm-vnc-Fix-qemu-crashed-when-vnc-client-disconnect-sudd.patch bz1527405 - kvm-fix-full-frame-updates-for-VNC-clients.patch bz1527405 - kvm-vnc-update-fix.patch bz1527405 - kvm-vnc-return-directly-if-no-vnc-client-connected.patch bz1527405 - kvm-buffer-add-buffermoveempty.patch...
openssh security, bug fix, and enhancement update
7.4p1-16 + 0.10.3-2 - Fix for CVE-2017-15906 1517226 7.4p1-15 + 0.10.3-2 - Do not hang if SSH AuthorizedKeysCommand output is too large 1496467 - Do not segfault pamsshagentauth if keyfile is missing 1494268 - Do not segfault in audit code during cleanup 1488083 - Add WinSCP 5.10+ compatibility...
gcc security, bug fix, and enhancement update
4.8.5-28.0.1 - Orabug: 27557686 Egeyar Bagcioglu - Introduce 'oraclerelease' into .spec file. Echo it to gcc/DEV-PHASE. 4.8.5-28 - Minor testsuite fixes to clean up test results 1469697 - retpoline support for spectre mitigation 1535655 4.8.5-27 - bump for rebuild with RELRO enabled even for...
kernel security, bug fix, and enhancement update
3.10.0-862.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862 - netdrv i40e: Fix attach VF to VM issue Stefan Assmann 1528123 - netdrv ixgbevf:...