9182 matches found
openssl security update
1.0.1e-57.0.5 - Merge upstream patch to fix CVE-2018-0739...
nss security update
3.36.0-7 - Backport upstream fix for CVE-2018-12384 - Remove nss-lockcert-api-change.patch, which turned out to be a mistake the symbol was not exported from libnss 3.36.0-6 - Exercise SSL tests which only run under non-FIPS setting...
389-ds-base security and bug fix update
1.3.7.5-28 - Bump version to 1.3.7.5-28 - Resolves: Bug 1628676 - 389-ds-base: race condition on reference counter leads to DoS using persistent search - Resolves: Bug 1628677 - Crash in deletepasswdPolicy when persistent search connections are terminated unexpectedly 1.3.7.5-27 - Bump version to...
flatpak security update
0.8.8-4 - Add patch for CVE-2018-6560 1547376...
mod_perl security update
2.0.4-12 - Fix CVE-2011-2767 arbitrary Perl code execution in the context of the user account via a user-owned .htaccess bug 1626272...
firefox security update
60.2.0-1.0.1 - fix LDLIBRARYPATH - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed...
spice and spice-gtk security update
spice 0.14.0-2.0.2 - add arm suppport 0.14.0-2.5 - Fix flexible array buffer overflow Resolves: rhbz1596008 spice-gtk 0.34-3.2 - Fix flexible array buffer overflow Resolves: rhbz1596008...
spice-gtk and spice-server security update
spice-gtk 0.26-8.1 - Fix flexible array buffer overflow Resolves: rhbz1596008 spice-server 0.12.4-16.1 - Fix flexible array buffer overflow Resolves: rhbz1596008...
kernel security update
2.6.18-419.0.0.0.11 - x8664/entry: Don't use IST entry for BP stack orabug 28452062 CVE-2018-8897...
Unbreakable Enterprise kernel security update
4.1.12-124.19.2 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28639707 CVE-2018-5390 - tcp: avoid...
Unbreakable Enterprise kernel security update
2.6.39-400.301.1 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Exempt zeroed PTEs from inversion Sean Christopherson Orabug: 28505519 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.2 - x86/speculation/l1tf: Fix overflow in l1tfpfnlimit on 32bit Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Protect PAE swap entries against L1TF Vlastimil Babka Orabug: 28505476 CVE-2018-3620 - x86/speculation/l1tf: Extend 64bit swap file size...
firefox security update
60.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.2.0-1 - Update to 60.2.0 ESR 60.1.0-9 - Do not set user agent rhbz1608065 - GTK dialogs are localized now rhbz1619373 - JNLP association works again rhbz1607457 60.1.0-8 - Fixed homepage and bookmarks...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.24.1 - mm/mempolicy: fix use after free when calling getmempolicy zhong jiang Orabug: 28022108 CVE-2018-10675 - Fix up non-directory creation in SGID directories Linus Torvalds Orabug: 28459478 CVE-2018-13405 - ALSA: seq: Make ioctls race-free Takashi Iwai Orabug: 28459729...
Unbreakable Enterprise kernel security update
4.1.12-124.19.1 - x86/entry/64: Ensure %ebx handling correct in xenfailsafecallback George Kennedy Orabug: 28402927 CVE-2018-14678 - x86/speculation/l1tf: Increase l1tf memory limit for Nehalem+ Andi Kleen Orabug: 28488808 CVE-2018-3620 - x86/speculation/l1tf: Suggest what to do on systems with t...
Unbreakable Enterprise kernel security update
4.1.12-124.18.9 - rebuild bumping release 4.1.12-124.18.8 - Cipso: cipsov4optptr enter infinite loop yujuan.qi Orabug: 28563992 CVE-2018-10938 - Btrfs: fix listadd corruption and soft lockups in fsync Liu Bo Orabug: 28119834 - x86/paravirt: Fix spectre-v2 mitigations for paravirt guests Peter...
bind security update
32:9.8.2-0.68.rc1.1 - Fix CVE-2018-5740...
bind security update
32:9.9.4-61.1 - Fix CVE-2018-5740...
postgresql security update
9.2.24-1 - update to the latest 9.2 release - fix CVE-2018-10915...
mutt security update
5:1.5.21-28 - Resolves: CVE-2018-14354 CVE-2018-14357 CVE-2018-14362...
qemu-kvm security and bug fix update
1.5.3-156.el75.5 - kvm-multiboot-bssendaddr-can-be-zero.patch bz1549824 - kvm-multiboot-Remove-unused-variables-from-multiboot.c.patch bz1549824 - kvm-multiboot-Use-header-names-when-displaying-fields.patch bz1549824 - kvm-multiboot-fprintf-stderr.-errorreport.patch bz1549824 -...
Unbreakable Enterprise kernel security update
4.1.12-124.18.6 - qla2xxx: Update the version to 9.00.00.00.41.0-k1. Giridhar Malavali Orabug: 28172611 - qla2xxx: Utilize complete local DMA buffer for DIF PI inforamtion. Giridhar Malavali Orabug: 28172611 - qla2xxx: Correction to total data segment count when local DMA buffers used for DIF PI...
mariadb security and bug fix update
1:5.5.60-1 - Rebase to 5.5.60 - CVE's fixed: 1558256, 1558260, 1559060 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-10379 CVE-2017-10384 CVE-2017-10378 CVE-2017-10268 CVE-2018-2562 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2819 CVE-2018-2817 CVE-2018-276...
qemu security update
12:2.9.0-11.1.el7 - i386: Define the Virt SSBD MSR and handling of it CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the AMD 'virt-ssbd' CPUID feature bit CVE-2018-3639 Konrad Rzeszutek Wilk Orabug: 28110449 CVE-2018-3639 - i386: define the 'ssbd' CPUID feature...
kernel security and bug fix update
3.10.0-862.11.6.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.11.6 - kernel cpu/hotplug: Fix 'online' sysfs entry with 'nosmt' Josh...
Unbreakable Enterprise kernel security update
4.1.12-124.18.5 - inet: frag: enforce memory limits earlier Eric Dumazet Orabug: 28450977 - x86/mm/pageattr.c: fix page prot mask Mihai Carabas Orabug: 28492122 - x86/pgtable.h: fix PMD/PUD mask Mihai Carabas Orabug: 28492122 - x86/asm: Add pud/pmd mask interfaces to handle large PAT bit Toshi Ka...
Unbreakable Enterprise kernel security update
4.14.35-1818.1.6 - ipv4: frags: handle possible skb truesize change Eric Dumazet Orabug: 28481663 CVE-2018-5391 4.14.35-1818.1.5 - inet: frag: enforce memory limits earlier Eric Dumazet Orabug: 28481663 CVE-2018-5391 - init/main.c: reorder bootcpustateinit/smppreparebootcpu Mihai Carabas Orabug:...
kernel security and bug fix update
2.6.32-754.3.5.OL6 - Update genkey bug 25599697 2.6.32-754.3.5 - kernel cpu/hotplug: Enable 'nosmt' as late as possible Frantisek Hrbata 1593376 CVE-2018-3620 2.6.32-754.3.4 - x86 x86/mm: Simplify pg4umdpage macros Josh Poimboeuf 1593376 CVE-2018-3620 - x86 x86/mm: Fix regression with huge pages ...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.23.1 - xen/blkback: free requests on disconnection Dongli Zhang Orabug: 22111941 - RDS: null pointer dereference in rdsatomicfreeop Mohamed Ghannam Orabug: 27986376 CVE-2018-5333 - ACPI: sbshc: remove raw pointer from printk message Greg Kroah-Hartman Orabug: 27986392...
Unbreakable Enterprise kernel security update
4.14.35-1818.0.15 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: avoid...
Unbreakable Enterprise kernel security update
4.14.35-1818.0.14 - tcp: add tcpoootrycoalesce helper Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: call tcpdrop from tcpdataqueueofo Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: detect malicious patterns in tcpcollapseofoqueue Eric Dumazet Orabug: 28453849 CVE-2018-5390 - tcp: avoid...
kernel security and bug fix update
kernel 2.6.18-419.0.0.0.10 - Backport CVE-2017-5715 to RHCK/OL5 orabug 27787723 2.6.18-419.0.0.0.9 - rebuild with retpoline compiler...
openslp security update
2.0.0-3 - Fix possible heap memory corruption, CVE-2017-17833 Resolves: 1575699...
yum-utils security update
1.1.30-42.0.1 - add dependency btrfs-progs for yum-plugin-fs-snapshot [email protected] bug 16285176 - use unified btrfs binary instead of btrfsctl [email protected] bug 16285176 -1.1.30-42 - reposync: prevent path traversal. - Resolves: bug1600619...
yum-utils security update
1.1.31-46.0.1 - needs-restarting not checking kernel-uek for reboot message Orabug 27189714 - add bug27596617.patch to remove upstream URL reference 1.1.31-46 - reposync: prevent path traversal. - Resolves: bug1600617...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
java-1.7.0-openjdk security update
1:1.7.0.191-2.6.15.4.0.1 - Update DISTRONAME in specfile 1:1.7.0.191-2.6.15.4 - Bump to revised 2.6.15 tarball with PR3616 -notimestamp javadoc fix - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.3 - Bump to revised 2.6.15 tarball with jdk7u191-b01 - Resolves: rhbz1594249 1:1.7.0.191-2.6.15.2 - Fix ho...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
thunderbird security update
52.9.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.9.1-1 - Update to 52.9.1...
openslp security update
1:2.0.0-7 - Fix possible heap memory corruption, CVE-2017-17833 Resolves: 1575698...
java-1.8.0-openjdk security update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters for internal libs. See RHBZ1590796 ...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.181-7.b13 - Update to aarch64-jdk8u181-b13 and aarch64-shenandoah-jdk8u181-b13. - Remove 8187577/PR3578 now applied upstream. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix hook to show hserr.log files on failures. - Resolves: rhbz1594249 1:1.8.0.181-3.b04 - Fix requires/provides filters...
Unbreakable Enterprise kernel security update
2.6.39-400.300.2 - Revert 'RDS: don't commit to queue till transport connection is up' Santosh Shilimkar Orabug: 27619034 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951293 CVE-2017-17741 CVE-2017-17741 - kernel/exit.c: avoid undefined behaviour when calling wait4...
gnupg2 security update
2.0.14-9 - fix CVE-2018-12020 - missing sanitization of original filename...
gnupg2 security update
2.0.22-5 - fix CVE-2018-12020 - missing sanitization of original filename...
Unbreakable Enterprise kernel security update
4.1.12-124.17.1 - block: update integrity interval after queue limits change Ritika Srivastava Orabug: 27586756 - dccp: check sk for closed state in dccpsendmsg Alexey Kodanev Orabug: 28001529 CVE-2017-8824 CVE-2018-1130 - net/rds: Implement ARP flushing correctly Hakon Bugge Orabug: 28219857 -...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.22.1 - dm: fix race between dmgetfromkobject and dmdestroy Hou Tao CVE-2017-18203 - drm: udl: Properly check framebuffer mmap offsets Greg Kroah-Hartman Orabug: 27986407 CVE-2018-8781 - kernel/exit.c: avoid undefined behaviour when calling wait4 wait4-2147483648, 0x20, 0,...
qemu-kvm security update
0.12.1.2-2.506.el610.1 - qemu-kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574074 - qemu-kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch bz1574074 - qemu-kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch bz1574074 - Resolves: bz1574074 CVE-2018-363...
kernel security and bug fix update
2.6.32-754.2.1.OL6 - Update genkey bug 25599697 2.6.32-754.2.1 - x86 entry/64: Don't use IST entry for BP stack Waiman Long 1596113 CVE-2018-10872 - fs gfs2: Flush delayed work earlier in gfs2inodelookup Andreas Grunbacher 1506281 - mm mempolicy: fix use after free when calling getmempolicy Augus...
firefox security update
60.1.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 60.1.0-4 - Disabled jemalloc on all second arches 60.1.0-3 - Updated to 60.1.0 ESR build2 60.1.0-2 - Disabled jemalloc on second arches 60.1.0-1 - Updated to 60.1.0 ESR 60.0-12 - Fixing bundled libffi...