9182 matches found
389-ds-base security update
1.2.11.15-95 - Bump version to 1.2.11-15-95 - Resolves: Bug 1562152 - EMBARGOED CVE-2018-1089 389-ds-base: ns-slapd crash via large filter value in ldapsearch...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.7 - x86/entry/64: Dont use IST entry for BP stack Andy Lutomirski CVE-2018-8897...
Unbreakable Enterprise kernel security update
2.6.39-400.298.7 - net/rds: Fix endless RNR situation Hakon Bugge Orabug: 27645402 - x86/entry/64: Dont use IST entry for BP stack Andy Lutomirski CVE-2018-8897...
kernel security and bug fix update
2.6.32-696.28.1.OL6 - Update genkey bug 25599697 2.6.32-696.28.1 - x86 entry/64: Don't use IST entry for BP stack Waiman Long 1567078 1567079 CVE-2018-8897 - x86 xen: do not use xeninfo on HVM, set pvinfo name to 'Xen HVM' Vitaly Kuznetsov 1569141 1568241 2.6.32-696.27.1 - mm account skipped...
Unbreakable Enterprise kernel security update
4.1.12-124.14.5 - vhost/scsi: fix reuse of &vq-iovout in response Benjamin Coddington Orabug: 27928330 4.1.12-124.14.4 - kernel.spec: add requires system-release for OL7 Brian Maly Orabug: 27955380 - x86/kernel/traps.c: fix tracedienotifier return value Kris Van Hees CVE-2018-8897 - x86/entry/64:...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.5.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.5 - added depndence on latest c-j-c who do not have the incorrect jre-abrt handling - Resolves: rhbz1559766 1:1.7.0.181-2.6.14.3 - Bump release number to an unused one as rhel-7.5-z-java-unsafe-candidate wrongly using .el...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.20.6 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947608 CVE-2018-100199 3.8.13-118.20.5 - x86/microcode: probe CPU features on microcode update Ankur Arora Orabug: 27806667 - x86/microcode: microcodewrite should not reference...
Unbreakable Enterprise kernel security update
4.1.12-124.14.3 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947602 CVE-2018-100199...
Unbreakable Enterprise kernel security update
2.6.39-400.298.6 - perf/hwbp: Simplify the perf-hwbp code, fix documentation Linus Torvalds Orabug: 27947612 CVE-2018-100199 2.6.39-400.298.5 - xen-netfront: fix rx stall when reqprodpvt goes back to more than zero again Dongli Zhang Orabug: 25053376 - x86/IBRS: Remove support for IBRSENABLEDUSER...
corosync security update
2.4.3-2.1 - Resolves: rhbz1560467 - totemcrypto: Check length of the packet...
java-1.7.0-openjdk security update
1:1.7.0.181-2.6.14.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.181-2.6.14.1 - Fix invalid license 'LGPL+' should be LGPLv2+ for ECC code and add missing ones - Resolves: rhbz1559766 1:1.7.0.181-2.6.14.0 - Bump to 2.6.14 and u181b00. - Drop 8197981 Zero 32-bit patch now applied upstream. - Updat...
pcs security update
0.9.162-5.0.3.el75.1 - Unlike RHEL we DO have corosync/pacemaker for aarch64 on EL7 - replace logo pcsd/public/favicon.ico in tarball - remove Source1 HAM-logo.png 0.9.162-5.el75.1 - Fixed CVE-2018-1086 pcs: Debug parameter removal bypass, allowing information disclosure - Fixed CVE-2018-1079 pcs...
Unbreakable Enterprise kernel security update
4.1.12-124.14.2 - scsi: iscsitcp: set BDICAPSTABLEWRITES when data digest enabled Jianchao Wang Orabug: 27726302 - block: fix biowillgap for first bvec with offset Ming Lei Orabug: 27775588 - block: relax check on sg gap Ming Lei Orabug: 27775588 - block: don't optimize for non-cloned bio in...
librelp security update
1.2.12-1.1 - fixed bad NVR - resolves rhbz1561232 1.2.12-2 - fixed CVE-2018-1000140 - resolves rhbz1561232...
librelp security update
1.2.7-3.1 - fixed CVE-2018-1000140 - resolved: rhbz1561230...
PackageKit security update
1.1.5-2.0.1 - remove PackageKit-0.3.8-Fedora-Vendor.conf.patch 1.1.5-2 - Fixes CVE-2018-1106 - Resolves: rhbz1566425...
patch security update
2.6-8 - Fixed year overflow detected in rpmdiff 2.6-7 - Fixed CVE-2018-1000156 - Malicious patch files cause ed to execute arbitrary commands...
patch security update
2.7.1-10 - Fixed Coverity reported issues 2.7.1-9 - Fixed CVE-2018-1000156 - Malicious patch files cause ed to execute arbitrary commands...
java-1.8.0-openjdk security update
1:1.8.0.171-7.b10 - Bump release number to be greater than RHEL 7.6 package to allow build with .el7 suffix - Resolves: rhbz1559766 1:1.8.0.171-4.b10 - Rebuilding due to bad nss-softokn brew-root build override - Resolves: rhbz1559766 1:1.8.0.171-3.b10 - Fix jconsole.desktop.in subcategory,...
java-1.8.0-openjdk security update
1:1.8.0.171-3.b10 - Cleanup from previous commit. - Resolves: rhbz1559766 1:1.8.0.171-2.b10 - Backported from fedora: aarch64BuildFailure.patch, rhbz1536622-JDK8197429-jdk8.patch, rhbz1540242.patch - Resolves: rhbz1559766 1:1.8.0.171-0.b10 - Update to aarch64-jdk8u171-b10. - Resolves: rhbz1559766...
openssl security update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
Unbreakable Enterprise kernel security update
4.1.12-124.14.1 - ctf: drop the run-as-root error Nick Alcock Orabug: 27852654 - rds: Node crashes when trace buffer is opened Ka-Cheong Poon Orabug: 27846191 - xfs: fix accidental reversion of aa6a6227435cb Darrick J. Wong Orabug: 27845869 4.1.12-124.13.1 - net: cdcether: fix divide by 0 on bad...
glibc security update
2.17-222 - Restore internal GLIBCPRIVATE symbols for use during upgrades 1523119 2.17-221 - CVE-2018-1000001: Fix realpath buffer underflow 1534635 - i386: Fix unwinding for 32-bit C++ application 1529982 - Reduce thread and dynamic loader stack usage 1527904 - x86-64: Use XSAVE/XSAVEC more often...
firefox security update
52.7.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.7.3-1 - Update to 52.7.3 ESR...
libvorbis security update
1.3.3-8.1 - Backport fix for CVE-2018-5146...
libvncserver security update
0.9.9-12 - Fix CVE-2018-7225 improper client cut text length sanitization bug 1548440...
ntp security, bug fix, and enhancement update
4.2.6p5-28.0.1 - Bump release to avoid ULN conflict with Oracle modified errata. 4.2.6p5-28 - fix buffer overflow in datum refclock driver CVE-2017-6462 - fix crash with invalid unpeer command CVE-2017-6463 - fix potential crash with invalid server command CVE-2017-6464 - add Spectracom TSYNC...
gcc security, bug fix, and enhancement update
4.8.5-28.0.1 - Orabug: 27557686 Egeyar Bagcioglu - Introduce 'oraclerelease' into .spec file. Echo it to gcc/DEV-PHASE. 4.8.5-28 - Minor testsuite fixes to clean up test results 1469697 - retpoline support for spectre mitigation 1535655 4.8.5-27 - bump for rebuild with RELRO enabled even for...
krb5 security, bug fix, and enhancement update
1.15.1-18 - Expose context errors in pkinitserverplugininit - Resolves: 1460089 1.15.1-17 - Drop certauth test changes that prevented runnig it - Resolves: 1498767 1.15.1-16 - Drop irrelevant DIR trigger logic - Resolves: 1431198 1.15.1-15 - Fix CVE-2017-7562 certauth eku bypass - Resolves: 14987...
openssh security, bug fix, and enhancement update
7.4p1-16 + 0.10.3-2 - Fix for CVE-2017-15906 1517226 7.4p1-15 + 0.10.3-2 - Do not hang if SSH AuthorizedKeysCommand output is too large 1496467 - Do not segfault pamsshagentauth if keyfile is missing 1494268 - Do not segfault in audit code during cleanup 1488083 - Add WinSCP 5.10+ compatibility...
xdg-user-dirs security and bug fix update
0.15-5 - Start using autostart mechanism instead of xinitrc.d script Resolves: 1412762...
kernel security, bug fix, and enhancement update
3.10.0-862.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-862 - netdrv i40e: Fix attach VF to VM issue Stefan Assmann 1528123 - netdrv ixgbevf:...
openssl security and bug fix update
1.0.2k-12.0.1 - sha256 is used for the RSA pairwise consistency test instead of sha1 1.0.2k-12 - fix CVE-2017-3737 - incorrect handling of fatal error state - fix CVE-2017-3738 - AVX2 Montgomery multiplication bug with 1024 bit modulus 1.0.2k-11 - fix deadlock in RNG in the FIPS mode in mariadb...
qemu-kvm security, bug fix, and enhancement update
1.5.3-156.el7 - kvm-vnc-Fix-qemu-crashed-when-vnc-client-disconnect-sudd.patch bz1527405 - kvm-fix-full-frame-updates-for-VNC-clients.patch bz1527405 - kvm-vnc-update-fix.patch bz1527405 - kvm-vnc-return-directly-if-no-vnc-client-connected.patch bz1527405 - kvm-buffer-add-buffermoveempty.patch...
policycoreutils security, bug fix, and enhancement update
2.5-22.0.1 - Lazy unmount private, shared entry Joe Jin orabug 12560705 2.5-22 - semanage: Fix fcontext help message 1499259 - semanage: Improve semanage-user.8 man page 1079946 - semodule: Improve man page 1337192 2.5-21 - Update translations 2.5-20 - setfiles: Mention customizable types in...
glibc security, bug fix, and enhancement update
2.17-222 - Restore internal GLIBCPRIVATE symbols for use during upgrades 1523119 2.17-221 - CVE-2018-1000001: Fix realpath buffer underflow 1534635 - i386: Fix unwinding for 32-bit C++ application 1529982 - Reduce thread and dynamic loader stack usage 1527904 - x86-64: Use XSAVE/XSAVEC more often...
firefox security update
52.7.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.7.3-1 - Update to 52.7.3 ESR...
python-paramiko security update
1.7.5-4 - Fix and enable tests %check. - Backport a change which makes tests exit with nonzero status when they fail. - Add a fix for upstream tests for CVE-2018-7750 broken in previous. 1.7.5-3 - Fix a security flaw CVE-2018-7750 in Paramiko's server mode emphasis on server mode; this does not...
Unbreakable Enterprise kernel security update
4.1.12-112.16.7 - mlx4: change the ICM table allocations to lowest needed size Daniel Jurgens Orabug: 27718305 - autofs: use dentry flags to block walks during expire Ian Kent Orabug: 26032471 Orabug: 27766149 - autofs races Al Viro Orabug: 27766149 Orabug: 27766149 - crypto: FIPS - allow tests t...
thunderbird security update
52.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.7.0-1 - Update to 52.7.0...
kubernetes security update
1.9.1-2.1.5 - Production built 1.9.1-2.1.5 - Fix the upgrade version check - Remove w/a from Orabug 27125915 1.9.1-2.1.4.dev - Make sure worker node upgrade properly - Orabug 27649898 1.9.1-2.1.3.dev - Ensure that the runtime mounts RO volumes read-only CVE-2017-1002102 - Update Dashboard version...
libvorbis security update
1.2.3-5.1 - Backport fix for CVE-2018-5146 1.2.3-5 - fix CVE-2012-0444 787077...
thunderbird security update
52.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.7.0-1 - Update to 52.7.0...
slf4j security update
0:1.7.4-4 - Disallow EventData deserialization by default CVE-2018-8088...
firefox security update
52.7.2-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.7.2-1 - Update to 52.7.2 ESR...
firefox security update
52.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.7.0-1 - Update to 52.7.0 ESR...
firefox security update
52.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.7.0-1 - Update to 52.7.0 ESR...
libreoffice security update
1:4.3.7.2-2.0.1.2 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile [email protected] - Build with --with-vendor='Oracle America, Inc.' [email protected] 1:4.3.7.2-2.2 - Resolves: rhbz1545033 CVE-2018-6871...
kernel security and bug fix update
2.6.32-696.23.1.OL6 - Update genkey bug 25599697 2.6.32-696.23.1 - scsi avoid a permanent stop of the scsi device's request queue Ewan Milne 1519857 1513455 - x86 retpoline/hyperv: Convert assembler indirect jumps Waiman Long 1543022 1535645 - x86 specctrl: Upgrade GCC retpoline warning to an err...
mailman security update
3:2.1.12-26.3 - Related: 1545967 - Add missed import 3:2.1.12-26.2 - Resolves: 1545967 - Fix XSS vulnerability in web UI. Add sanitizer 3:2.1.12-26.1 - Resolves: 1545967 - Fix XSS vulnerability in web UI...