8998 matches found
qemu-kvm security update
1.5.3-126.el73.10 - kvm-nbd-Fully-initialize-client-in-case-of-failed-negoti.patch bz1460179 - kvm-nbd-Fix-regression-on-resiliency-to-port-scan.patch bz1460179 - Resolves: bz1460179 CVE-2017-9524 qemu-kvm: Qemu: nbd: segmentation fault due to client non-negotiation rhel-7.3.z...
bind security and bug fix update
32:9.8.2-0.62.rc1.4 - Fix CVE-2017-3142 and CVE-2017-3143 32:9.8.2-0.62.rc1.3 - Update root servers and trust anchors 1458234...
bind security and bug fix update
32:9.9.4-50.1 - Bump again above RHEL-7.4 32:9.9.4-38.5 - Fix CVE-2017-3142 and CVE-2017-3143 32:9.9.4-38.4 - Update root servers and trust anchor 1459649...
Unbreakable Enterprise kernel security update
2.6.39-400.297.3 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366024 CVE-2017-7645 2.6.39-400.297.2 - dm mpath: allow ioctls to trigger pg init Mikulas Patocka Orabug: 25645229 - xen/manage: Always freeze/thaw processes when suspend/resuming Ross Lagerwall Orabug:...
kernel security update
kernel - 2.6.18-419.0.0.0.2 - mm support large stack guard gap between vmas orabug 26366330...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.8 - macsec: dynamically allocate space for sglist Jason A. Donenfeld Orabug: 26368162 CVE-2017-7477 - macsec: avoid heap overflow in skbtosgvec Jason A. Donenfeld Orabug: 26368162 CVE-2017-7477 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366988...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.19.2 - nfsd: check for oversized NFSv2/v3 arguments J. Bruce Fields Orabug: 26366022 CVE-2017-7645 3.8.13-118.19.1 - selinux: quiet the filesystem labeling behavior message Paul Moore Orabug: 25290650 - HID: hid-cypress: validate length of report Greg Kroah-Hartman Orabug:...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.7 - mm: fix new crash in unmappedareatopdown Hugh Dickins Orabug: 26326143 CVE-2017-1000364 - mm: larger stack guard gap, between vmas Hugh Dickins Orabug: 26326143 CVE-2017-1000364...
kernel security and bug fix update
3.10.0-514.26.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security and bug fix update
3.10.0-514.26.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.26.1 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
freeradius security update
3.0.4-8 - Disable internal OpenSSL cache and fix session cache file permissions. Resolves: Bug1459131 CVE-2017-9148 freeradius: TLS resumption authentication bypass...
mercurial security update
1.4-5 - Fixes CVE-2017-9462...
sudo security update
1.7.2p1-29.0.2 - Fix CVE-2017-1000368...
thunderbird security update
52.2.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.2.0-1 - Update to 52.2.0...
kernel security update
3.10.0-514.21.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711...
glibc security update
2.17-157.4 - Avoid large allocas in the dynamic linker 1452720 2.17-157.2 - Fix use of uninitialized data in getaddrinfo with nscd 1436312 2.17-157.1 - Do not set initgroups in default nsswitch.conf 1388638 - nssdb: Request larger buffers for long group entries 1388637 - nssdb: Fix getent crash...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711 2.12-1.209.1 - Fix thread cancellation issues for setmntent and others 1437618...
kernel security update
3.10.0-514.21.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.2 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
kernel security update
2.6.32-696.3.2.OL6 - Update genkey bug 25599697 2.6.32-696.3.2 - mm enlarge stack guard gap Larry Woodman 1452729 1452730 CVE-2017-1000364 CVE-2017-1000366...
glibc security update
2.17-157.4 - Avoid large allocas in the dynamic linker 1452720...
firefox security update
52.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.2.0-1 - Update to 52.2.0 ESR 52.1.1-1 - Update to 52.1.1 ESR...
qemu-kvm security and bug fix update
1.5.3-126.el73.9 - kvm-spice-fix-spicechraddwatch-pre-condition.patch bz1452332 - Resolves: bz1452332 RHEL 7.2 based VM Virtual Machine hung for several hours apparently waiting for lock held by mainloop 1.5.3-126.el73.8 - kvm-char-change-qemuchrfeaddwatch-to-return-unsigned.patch bz1452332 -...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.6 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.4 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
sudo security update
1.7.2p1-29.0.1 - Fix CVE-2017-1000367...
nss security and bug fix update
3.28.4-1.2.0.1 - Added nss-vendor.patch to change vendor 3.28.4-1.2 - Include CKBI 2.14 and updated CA constraints from NSS 3.28.5 3.28.4-1.1 - Fix zero-length record treatment in SSL3GatherData...
nss security and bug fix update
3.28.4-3.0.1 - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed 3.28.4-3 - Fix zero-length record treatment for stream ciphers and SSLv2 3.28.4-2 - Include CKBI 2.14 and updated CA constraints from NSS 3.28.5...
sudo security update
1.8.6p3-28 - Fixes CVE-2017-1000367 Resolves: rhbz1455399...
kernel security and bug fix update
2.6.32-696.3.1.OL6 - Update genkey bug 25599697 2.6.32-696.3.1 - netdrv be2net: Fix endian issue in logical link config command Ivan Vecera 1442979 1436527 - scsi lpfc: update for r 11.0.0.6 Maurizio Lombardi 1439636 1429881 - scsi lpfc: The lpfc driver does not issue RFFID and RFTID in the corre...
samba3x security update
3.6.23-13.0.2 - Fix CVE-2017-7494...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.3 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26108571 CVE-2017-8890...
Unbreakable Enterprise kernel security update
2.6.39-400.296.2 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26108573 CVE-2017-8890 2.6.39-400.296.1 - cifs: adjust sequence number downward after signing NTCANCEL request Albert Barbe - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.5 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26132091 CVE-2017-8890...
samba security update
3.6.23-43.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-43 - resolves: 1450782 - Fix CVE-2017-7494...
samba4 security update
4.2.10-10 - resolves: 1450779 - Security fix for CVE-2017-7494...
rpcbind security update
0.2.0-139 - Fix for CVE-2017-8779 bz 1449461...
libtirpc security update
0.2.1-139 - Fix for CVE-2017-8779 bz 1449458...
samba security and bug fix update
4.4.4-13 - resolves: 1437816 - Fix krb5 memory cache in libads sasl code - resolves: 1437741 - Fix CVE-2016-2125, CVE-2016-2126 and CVE-2017-2619...
libtirpc security update
0.2.4-0.83 - Fixed for CVE-2017-8779 bz 1449462...
kdelibs security update
6:4.14.8-6 - KAuth: verify that whoever is calling us is actually who he says he is CVE-2017-8422 Resolves: CVE-2017-8422...
rpcbind security update
0.2.0-383 - Fixed typo in memory leaks patch bz 1449462...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986990 CVE-2017-7895 3.8.13-118.18.1 - fnic: Update fnic driver version to 1.6.0.24 John Sobecki Orabug: 24448585 - xen-netfront: Rework the fix for Rx stall during OOM and network stress...
Unbreakable Enterprise kernel security update
2.6.39-400.295.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 2.6.39-400.295.1 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed Orabug: 25510857 - IB/CORE: sync the resouce access in fmrpool...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.4 - ipv6: catch a null skb before using it in a DTRACE Shannon Nelson Orabug: 26075879 - sparc64: Do not retain old VMSPARCADI flag when protection changes on page Khalid Aziz Orabug: 26038830 4.1.12-94.3.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Field...
ghostscript security update
8.70-23.el69.2 - Security fix for CVE-2017-8291 updated to address SIGSEGV 8.70-23.el69.1 - Added security fix for CVE-2017-8291 bug 1446063...
jasper security update
1.900.1-21 - Bump release 1.900.1-20 - Multiple security fixes fixed by thoger: CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-9262...
qemu-kvm security update
0.12.1.2-2.503.el69.3 - kvm-cirrus-avoid-write-only-variables.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-dst-pointers-in-the-blitt.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-src-pointers-in-the-blitt.patch bz1444377 bz1444379 -...