9182 matches found
python security update
2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz1584545...
glibc security update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
pki-core security, bug fix, and enhancement update
10.5.1-13.1 - Rebuild due to build system database problem 10.5.1-13 - - RHEL 7.5: - - Bugzilla Bug 1553068 - Using a Netmask produces an odd entry in a certifcate rhel-7.5.z ftweedal - Bugzilla Bug 1585945 - CMC CRMF requests result in InvalidKeyFormatException when signing algorithm is ECC...
qemu-kvm security update
1.5.3-156.el75.3 - kvm-i386-Define-the-Virt-SSBD-MSR-and-handling-of-it-CVE.patch bz1584363 - kvm-i386-define-the-AMD-virt-ssbd-CPUID-feature-bit-CVE-.patch bz1584363 - Resolves: bz1584363 CVE-2018-3639 qemu-kvm: hw: cpu: AMD: speculative store bypass rhel-7.5.z...
kernel security and bug fix update
3.10.0-862.6.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.6.3 - x86 always enable eager FPU by default on non-AMD processors Paolo...
libvirt security and bug fix update
3.9.0-14.el75.6 - logging: Don't inhibit shutdown in system daemon rhbz1573268 - util: don't check for parallel iteration in hash-related functions rhbz1581364 - cpu: define the 'virt-ssbd' CPUID feature bit CVE-2018-3639 - virNumaGetHugePageInfo: Return pageavail and pagefree as ULL rhbz1582418...
sssd and ding-libs security and bug fix update
ding-libs 0.4.0-13 - Resolves: rhbz1538061 - sssd/libiniconfig cannot parse configuration file with line longer than 5102 0.4.0-12 - Related: rhbz1377213 - ding-libs dont parse lines without an equal sign sssd 1.13.3-60.0.1 - Orabug 26746822 - revert patch 0118 to fix LDAP netgroup lookup problem...
samba security and bug fix update
3.6.23-51.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-51 - resolves: 1513877 - Fix memory leak in winbind 3.6.24-50 - resolves: 1553018 - Fix CVE-2018-1050 3.6.24-49 - resolves: 1536053 - Fix regression with non-wide symlinks to directories...
openssl security update
1.0.1e-57.0.3 - Avoid out-of-bounds read. Fixes CVE 2017-3735. By Rich Salz...
samba4 security and bug fix update
4.2.10-15 - resolves: 1552005 - Fix CVE-2018-1050 4.2.10-14 - resolves: 1492780 - Do not build with -Wl,-z,now on ppc64...
glibc security and bug fix update
2.12-1.212.0.1 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.212 - CVE-2017-15670: glob: Fix one-byte overflow with GLOBTILDE 1504810 - CVE-2017-15804: glob: Fix buffer overflow in GLOBTILDE unescaping 1504810 2.12-1.211 - Avoid large allocas in the dynamic linker 1452717 2.12-1.21...
zsh security update
4.3.11-8 - fix defects detected by Coverity related to CVE-2017-18206 and CVE-2018-1083 4.3.11-7 - fix stack-based buffer overflow in utils.c:checkmailpath CVE-2018-1100 - fix stack-based buffer overflow in genmatchesfiles CVE-2018-1083 - fix buffer overrun in xsymlinks CVE-2017-18206 - fix buffe...
kernel security and bug fix update
2.6.32-754.OL6 - Update genkey bug 25599697 2.6.32-754 - powerpc 64s: Add support for a store forwarding barrier at kernel entry/exit Mauricio Oliveira 1581053 CVE-2018-3639 - x86 amd: Disable AMD SSBD mitigation in a VM Waiman Long 1580360 - x86 specctrl: Fix late microcode problem with AMD Waim...
libvirt security update
0.10.2-64.0.1 - Replace docs/et.png in tarball with blank image 0.10.2-64 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639 - cpu: define the 'virt-ssbd' CPUID feature bit CVE-2018-3639 0.10.2-63 - qemu: avoid denial of service reading from QEMU monitor CVE-2018-5748 - qemu: avoid denial o...
git security update
1.8.3.1-14 - Backport fix for CVE-2018-1123 - Thanks to Jonathan Nieder for backporting to 2.1.x and to Steve Beattie for backporting to 1.9.1...
Unbreakable Enterprise kernel security update
4.1.12-124.16.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28135099 CVE-2018-3665...
Unbreakable Enterprise kernel security update
2.6.39-400.299.3 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156175 CVE-2018-3665 - ALSA: hrtimer: Fix stall by hrtimercancel Takashi Iwai Orabug: 22876528 CVE-2016-2549 - ALSA: timer: Harden slave timer list handling Takashi Iwai Orabug: 22876528 CVE-2016-2547 CVE-2016-2548 - ALSA:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.21.4 - x86/fpu: Make eager FPU default Mihai Carabas Orabug: 28156176 CVE-2018-3665 3.8.13-118.21.3 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27951287 CVE-2017-17741 CVE-2017-17741 - xfs: set format back to extents if xfsbmapextentstobtree Eric...
kernel security update
3.10.0-862.3.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.3.3 - x86 always enable eager FPU by default on non-AMD processors Paolo...
Unbreakable Enterprise kernel security update
4.1.12-124.16.2 - netlink: add a start callback for starting a netlink dump Tom Herbert Orabug: 27169581 CVE-2017-16939 - ipsec: Fix aborted xfrm policy dump crash Herbert Xu Orabug: 27169581 CVE-2017-16939...
plexus-archiver security update
0:2.4.2-5 - Fix arbitrary file write vulnerability - Resolves: CVE-2018-1002200...
Unbreakable Enterprise kernel security update
4.1.12-124.15.4 - x86/bugs/IBRS: Keep SSBD mitigation in effect if spectrev2=ibrs is selected Mihai Carabas - fs/pstore: update the backend parameter in pstore module Wang Long Orabug: 27994372 - kvm: vmx: Reinstate support for CPUs without virtual NMI Paolo Bonzini Orabug: 28041210 - dm crypt: a...
xmlrpc security update
1:3.1.3-9 - Disallow deserialization of tags by default - Resolves: CVE-2016-5003...
procps security update
3.2.8-45.0.1.el69.3 - vmstat: fix invalid CPU utilization stats after vCPU hot-plug/unplug Konrad Rzeszutek Wilk bug 18011019 3.2.8-45.el69.3 - drop leftover assignment in fix for CVE-2018-1124 causing a severe regression - Resolves: CVE-2018-1124 3.2.8-45.el69.2 - fix integer overflows leading t...
xmlrpc3 security update
3.0-4.17 - Rebase patch to avoid orig files in source JAR - Related: CVE-2016-5003 3.0-4.16 - Disallow deserialization of tags by default - Resolves: CVE-2016-5003...
thunderbird security update
52.8.0-2.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.8.0-2 - Update to 52.8.0...
thunderbird security update
52.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.8.0-1 - Update to 52.8.0...
procps-ng security update
3.3.10-17.el75.2 - check for truncation after calling snprintf - Related: CVE-2018-1124 3.3.10-17.el75.1 - fix integer overflows leading to heap overflow in file2strvec - Resolves: CVE-2018-1124...
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578545...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578560...
libvirt security update
0.10.2-62.0.1.el69.2 - Replace docs/et.png in tarball with blank image 0.10.2-62.el69.2 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639...
qemu-kvm security update
1.5.3-156.el75.2 - kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574075 - Resolves: bz1574075 EMBARGOED CVE-2018-3639 qemu-kvm: Kernel: omega-4 rhel-7.5.z...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.8.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.8 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578550...
Unbreakable Enterprise kernel security update
4.1.12-124.15.2 - KVM: SVM: Move spec control call after restore of GS Thomas Gleixner CVE-2018-3639 - x86/bugs: Fix the parameters alignment and missing void Konrad Rzeszutek Wilk CVE-2018-3639 - x86/bugs: Make cpushowcommon static Jiri Kosina CVE-2018-3639 - x86/bugs: Fix ssbselectmitigation...
qemu-kvm security update
0.12.1.2-2.503.el69.6 - qemu-kvm-i386-define-the-ssbd-CPUID-feature-bit-CVE-2018-3639.patch bz1574067 - Resolves: bz1574067 EMBARGOED CVE-2018-3639 qemu-kvm: Kernel: omega-4 rhel-6.9.z...
libvirt security update
3.9.0-14.el75.5 - cpu: define the 'ssbd' CPUID feature bit CVE-2018-3639...
kernel security and bug fix update
2.6.32-696.30.1.OL6 - Update genkey bug 25599697 2.6.32-696.30.1 - x86 x86/kvm: fix CPUID7EDX word 18 mask Jan Stancek 1566893 1566899 CVE-2018-3639 2.6.32-696.29.1 - x86 x86/specctrl: Fix late microcode problem with AMD Waiman Long 1566893 1566899 CVE-2018-3639 - x86 x86/specctrl: Clean up entry...
kernel security update
3.10.0-862.3.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.3.2 - x86 specctrl: Fix late microcode problem with AMD Waiman Long 1566904...
java-1.8.0-openjdk security update
1:1.8.0.171-8.b10 - added and applied 1566890embargoed20180521.patch - Resolves: rhbz1578555...
dhcp security update
12:4.1.1-53.P1.0.1.4 - Added oracle-errwarn-message.patch 12:4.1.1-53.P1.el69.4 - Resolves: 1570897 - Fix comamnd execution in NM script CVE-2018-1111...
dhcp security update
12:4.2.5-68.0.1.1 - Direct users to Oracle Linux support site. 12:4.2.5-68.1 - Resolves: 1570898 - Fix CVE-2018-1111: Do not parse backslash as escape character...
Unbreakable Enterprise kernel security update
4.1.12-124.15.1 - netfilter: nfnetlinkcthelper: Add missing permission checks Kevin Cernekee Orabug: 27260771 CVE-2017-17448 - netlink: Add netns check on taps Kevin Cernekee Orabug: 27260799 CVE-2017-17449 - KVM: Fix stack-out-of-bounds read in writemmio Wanpeng Li Orabug: 27290606 CVE-2017-1774...
Unbreakable Enterprise kernel security update
2.6.39-400.299.1 - ext4/jbd2: dont wait forever for stale tid caused by wraparound Theodore Tso Orabug: 26424268 - jbd2: dont wake kjournald unnecessarily Eric Sandeen Orabug: 26424268 - ext4: fix data corruption in inodes with journalled data Jan Kara Orabug: 26424268 - media: imon: Fix...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.21.1 - media: imon: Fix null-ptr-deref in imonprobe Arvind Yadav Orabug: 27208380 CVE-2017-16537 - Input: gtco - fix potential out-of-bound access Dmitry Torokhov Orabug: 27215090 CVE-2017-16643 - usb: usbtest: fix NULL pointer dereference Alan Stern Orabug: 27602324...
firefox security update
52.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.8.0-1 - Update to 52.8.0 ESR...
libvirt security and bug fix update
3.9.0-14.el75.4 - lxc: Drop useless check in live device update rhbz1557922 - Pass oldDev to virDomainDefCompatibleDevice on device update rhbz1557922 - qemu: Fix updating device with boot order rhbz1557922 - conf: Fix crash in virDomainDefCompatibleDevice rhbz1557922 - vmx: check for...
389-ds-base security and bug fix update
1.3.7.5-21 - Bump version to 1.3.7.5-21 - Resolves: Bug 1559818 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch 1.3.7.5-20 - Bump version to 1.3.7.5-20 - Resolves: Bug 1563079 - adjustment of csngenerator can fail so next generated csn can be equal to th...
firefox security update
52.8.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.8.0-1 - Update to 52.8.0 ESR...
qemu-kvm security update
1.5.3-156.el75.1 - kvm-vga-add-ramaddrt-cast.patch bz1567913 - kvm-vga-fix-region-calculation.patch bz1567913 - Resolves: bz1567913 CVE-2018-7858 qemu-kvm: Qemu: cirrus: OOB access when updating vga display rhel-7 rhel-7.5.z...
kernel security, bug fix, and enhancement update
3.10.0-862.2.3.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862.2.3 - x86 kvm: fix icebp instruction handling Paolo Bonzini 1566849 1566845...