8998 matches found
kernel security and bug fix update
3.10.0-693.5.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security and bug fix update
3.10.0-693.5.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.5.2 - mm pagecgroup: Fix Kernel bug during boot with memory cgroups enabled...
httpd security update
2.2.15-60.0.1.6 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-60.6 - Resolves: 1493061 - CVE-2017-9798 httpd: various flaws...
wpa_supplicant security update
1:0.7.3-9.2 - Fix backport errors CVE-2017-13077, CVE-2017-13080 1:0.7.3-9.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082...
wpa_supplicant security update
1:2.6-5.1 - avoid key reinstallation CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088...
thunderbird security update
52.4.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.4.0-2 - Update to 52.4.0 b2...
httpd security update
2.4.6-67.0.1.el74.5 - replace index.html with Oracle's index page oracleindex.html 2.4.6-67.5 - Resolves: 1493064 - CVE-2017-9798 httpd: Use-after-free by limiting unregistered HTTP method...
Unbreakable Enterprise kernel security update
4.1.12-103.7.3 - brcmfmac: fix possible buffer overflow in brcmfcfg80211mgmttx Tim Tianyang Chen Orabug: 26943541 CVE-2017-7541 4.1.12-103.7.2 - rebuild bumping release...
kernel security and bug fix update
2.6.32-696.13.2.OL6 - Update genkey bug 25599697 2.6.32-696.13.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil Horman 1490060 1490062 CVE-2017-1000251 - fs binfmtelf.c:loadelfbinary: return -EINVAL on zero-length mappings Petr Matousek 1492959 1492961 CVE-2017-1000253 - fs...
kernel security update
kernel - 2.6.18-419.0.0.0.4 - fs fix bug in loading of PIE binaries Michael Davidson orabug 26916951 CVE-2017-1000253 - 2.6.18-419.0.0.0.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields orabug 26586706 CVE-2017-7895...
postgresql security update
8.4.20-8 - backport fix for CVE-2017-7546 rhbz1484677...
dnsmasq security update
2.45-1.1.0.1.el5 - Back port fix for CVE-2017-14491 from OL 6 errata ELSA-2017-2838...
dnsmasq security update
2.76-2.2 - Small correction of CVE-2017-14491 2.76-2.1 - Fix CVE-2017-14491 - Fix CVE-2017-14492 - Fix CVE-2017-14493 - Fix CVE-2017-14494 - Fix CVE-2017-14496 - Fix CVE-2017-14495 - extra fixes...
dnsmasq security update
2.48-18 - Fix CVE-2017-14491...
firefox security update
52.4.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.4.0-1 - Update to 52.4.0 ESR 52.3.0-3 - Update to 52.3.0 ESR b2 - Require correct nss version...
Unbreakable Enterprise kernel security update
2.6.39-400.297.9 - fs/binfmtelf.c: fix bug in loading of PIE binaries Michael Davidson Orabug: 26870958 CVE-2017-1000253...
nss security update
3.28.4-12 - Backport patch to simplify transcript calculation for CertificateVerify...
kernel security update
2.6.32-696.10.3.OL6 - Update genkey bug 25599697 2.6.32-696.10.3 - fs binfmtelf.c:loadelfbinary: return -EINVAL on zero-length mappings Petr Matousek 1492959 1492961 CVE-2017-1000253 - fs binfmtelf.c: fix bug in loading of PIE binaries Petr Matousek 1492959 1492961 CVE-2017-1000253...
samba4 security update
4.2.10-11 - resolves: 1491212 - CVE-2017-12150 CVE-2017-12163...
samba security update
3.6.23-45.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-45 - resolves: 1491210 - CVE-2017-2619 CVE-2017-12150 CVE-2017-12163...
samba security update
4.6.2-11 - resolves: 1491213 - CVE-2017-12150 CVE-2017-12151 CVE-2017-12163...
augeas security update
1.4.0-2.el74.1 - Fix CVE-2017-7555, improper handling of escaped strings RHBZ1481545...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.7 - Bluetooth: Properly check L2CAP config option output buffer length Ben Seri Orabug: 26796364 CVE-2017-1000251 3.8.13-118.19.6 - xen: fix bio vec merging Roger Pau Monne Orabug: 26645550 CVE-2017-12134 3.8.13-118.19.5 - fs/exec.c: account for argv/envp pointers Kees Co...
Unbreakable Enterprise kernel security update
2.6.39-400.297.8 - Bluetooth: Properly check L2CAP config option output buffer length Ben Seri Orabug: 26796428 CVE-2017-1000251 2.6.39-400.297.7 - xen: fix bio vec merging Roger Pau Monne Orabug: 26645562 CVE-2017-12134 - fs/exec.c: account for argv/envp pointers Kees Cook Orabug: 26638926...
emacs security update
1:24.3-20 - fix unsafe enriched mode translations 1490452...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-103.3.8.1 - Bluetooth: Properly check L2CAP config option output buffer length Ben Seri Orabug: 26796363 CVE-2017-1000251...
postgresql security update
9.2.23-1 - update to 9.2.23 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-23.html 9.2.22-1 - update to 9.2.22 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-22.html...
kernel security and bug fix update
2.6.32-696.10.2.OL6 - Update genkey bug 25599697 2.6.32-696.10.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil Horman 1490060 1490062 CVE-2017-1000251...
bluez security update
4.66-2 - sdpd heap fixes Resolves: 1490008...
kernel security update
3.10.0-693.2.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel olkmodsigningkey.x509alexey.petre [email protected] - Update x509.genkey bug 24817676...
kernel security update
3.10.0-693.2.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.2.2 - net l2cap: prevent stack overflow on incoming bluetooth packet Neil...
kernel security update
kernel - 2.6.18-419.0.0.0.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops orabug 26586706 CVE-2017-7895...
389-ds-base security and bug fix update
1.3.6.19-1 - Bump version to 1.3.6.19-1 - Remove old mozldap and db4 requirements - Resolves: Bug 1483865 - Crash while binding to a server during replication online init 1.3.6.1-18 - Bump version to 1.3.6.1-18 - Require srvcore 4.1.3 - Resolves: Bug 1479757 - dse.ldif and fsync - Resolves: Bug...
openssh security update
5.3p1-123 - Fix for CVE-2016-6210: User enumeration via covert timing channel 1357442...
poppler security update
0.12.4-12 - Resolves: rhbz1479815 CVE-2017-9776...
poppler security update
0.26.5-17 - Resolves: rhbz1482934 CVE-2017-9776...
thunderbird security update
52.3.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.3.0-1 - Update to 52.3.0 52.2.1-1 - Update to 52.2.1...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-103.3.8 - fs/exec.c: account for argv/envp pointers Kees Cook Orabug: 26638900 CVE-2017-1000365 CVE-2017-1000365 4.1.12-103.3.7 - i40e/i40evf: check for stopped admin queue Mitch Williams Orabug: 26654222 4.1.12-103.3.6 - xen: fix bio vec merging Roger Pau Monne Orabug: 26645497...
xmlsec1 security update
1.2.20-7 - CVE-2017-1000061 - Related: 1472092 - Fix mis-applied patch hunk 1.2.20-6 - CVE-2017-1000061 - Resolves: 1472092...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.4 - l2tp: fix racy SOCKZAPPED flag check in l2tpip,6bind Guillaume Nault Orabug: 26586047 CVE-2016-10200 - xfs: fix two memory leaks in xfsattrlist.c error paths Mateusz Guzik Orabug: 26586022 CVE-2016-9685 - KEYS: Disallow keyrings beginning with '.' to be joined as...
Unbreakable Enterprise kernel security update
2.6.39-400.297.6 - l2tp: fix racy SOCKZAPPED flag check in l2tpip,6bind Guillaume Nault Orabug: 26586050 CVE-2016-10200 - xfs: fix two memory leaks in xfsattrlist.c error paths Mateusz Guzik Orabug: 26586024 CVE-2016-9685 - KEYS: Disallow keyrings beginning with '.' to be joined as session keyrin...
groovy security update
1.8.9-8 - Fix Information disclosure vulnerability - Resolves: CVE-2016-6814...
mercurial security update
2.6.2-8 - Fix CVE-2017-1000115 and CVE-2017-1000116...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.5.9 - dentry name snapshots Al Viro Orabug: 26630936 CVE-2017-7533 4.1.12-94.5.8 - scsi: libiscsi: use kvzalloc for iscsipoolinit Kyle Fortin Orabug: 26621191 - mm: introduce kvmzalloc helpers Kyle Fortin Orabug: 26621191 - KEYS: Disallow keyrings beginning with '.' to be...
git security update
1.7.1-9 - prevent command injection via malicious ssh URLs Resolves: CVE-2017-1000117...
git security update
1.8.3.1-12 - prevent command injection via malicious ssh URLs Resolves: CVE-2017-1000117...
spice security update
0.12.8-2.1 - Redo build properly versioned as a zstream build Related: CVE-2017-7506 0.12.8-3 - Prevent potential buffer/integer overflows with invalid MonitorsConfig messages sent from an authenticated client Resolves: CVE-2017-7506...
kernel security and bug fix update
3.10.0-693.1.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-693.1.1 - fs dentry name snapshots Miklos Szeredi 1471131 1470403 CVE-2017-7533 -...
subversion security update
1.7.14-11 - add security fix for CVE-2017-9800...
httpd security update
2.4.6-67.0.1.el74.2 - replace index.html with Oracle's index page oracleindex.html 2.4.6-67.2 - Resolves: 1463194 - CVE-2017-3167 httpd: apgetbasicauthpw authentication bypass - Resolves: 1463197 - CVE-2017-3169 httpd: modssl NULL pointer dereference - Resolves: 1463207 - CVE-2017-7679 httpd:...