8998 matches found
gstreamer-plugins-good security update
0.10.31-12 - Disable insecure FLX plugin Resolves: rhbz1400842...
gstreamer1-plugins-good security update
1.4.5-3 - Remove insecure FLX plugin Resolves: rhbz1400892...
ghostscript security update
8.70-211 - Added security fixes for: - CVE-2013-5653 bug 1380327 - CVE-2016-7977 bug 1380415 - CVE-2016-7979 bug 1382305 - CVE-2016-8602 bug 1383940...
ghostscript security update
9.07-201 - Added security fixes for: - CVE-2013-5653 bug 1380327 - CVE-2016-7977 bug 1380415 - CVE-2016-7978 bug 1382300 - CVE-2016-7979 bug 1382305 - CVE-2016-8602 bug 1383940...
ipa security update
4.4.0-14.0.1.el73.1.1 - Blank out header-logo.png product-name.png Replace login-screen-logo.png 20362818 4.4.0-14.1.1 - Resolves: 1370493 CVE-2016-7030 ipa: DoS attack against kerberized services by abusing password policy - ipa-kdb: search for password policies globally - Renamed patches 1011 a...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.15.2 - x86/iopl/64: properly context-switch IOPL on Xen PV Andy Lutomirski Orabug: 25269176 CVE-2016-3157 CVE-2016-3157 - net: Fix use after free in the recvmmsg exit path Arnaldo Carvalho de Melo Orabug: 25298611 CVE-2016-7117...
gstreamer-plugins-bad-free security update
0.10.19-5 - vmncdec: Sanity-check width/height before using it Resolves: rhbz1400820 0.10.19-4 - Remove insecure NSF decoder Resolves: rhbz1400820...
Unbreakable Enterprise kernel security update
2.6.39-400.293.2 - x86/iopl/64: properly context-switch IOPL on Xen PV Andy Lutomirski Orabug: 25269184 CVE-2016-3157 - net: Fix use after free in the recvmmsg exit path Arnaldo Carvalho de Melo Orabug: 25298618 CVE-2016-7117...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.23 - net: Fix use after free in the recvmmsg exit path Arnaldo Carvalho de Melo Orabug: 25298601 CVE-2016-7117...
thunderbird security update
45.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.6.0-1 - Update to the latest upstream 45.6.0...
gstreamer-plugins-good security update
0.10.23-4 - Remove insecure FLX plugin Resolves: rhbz1400835...
vim security update
7.4.629-5.1 - add fix for CVE-2016-1248...
kernel security and bug fix update
kernel 2.6.18-417 - virt hv: do not lose pending heartbeat vmbus packets Vitaly Kuznetsov 1391167 - net Fix use after free in the recvmmsg exit path Davide Caratti 1390044 CVE-2016-7117...
xen security update
3.0.3-148.el511 - xen-qemu-ioport-array-overflow.patch bz1401521 - Resolves: bz1401521 CVE-2016-9637 xsa199 xen: qemu ioport array overflow XSA-199 rhel-5.11.z...
kernel security and bug fix update
kernel - 2.6.18-417.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
firefox security update
45.6.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.6.0-1 - Update to 45.6.0 ESR...
Unbreakable Enterprise kernel security update
2.6.39-400.293.1 - logging errors that get masked to EIO inside drivers/block/loop.c Manjunath Patil Orabug: 21962821 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23518650 - bio allocation failure due to biogetnrvecs Darrick J. Wong Orabug: 23852442 - mlx4:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.15.1 - Revert 'i40e: Set defport behavior for the Main VSI when in promiscuous mode' Jack Vogel Orabug: 22683573 - mlx4: avoid multiple free on idmapent Wengang Wang - xen-netfront: cast grant table reference first to type int Dongli Zhang - xen-netfront: do not cast grant...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.22 - ocfs2: fix trans extend while free cached blocks Junxiao Bi Orabug: 25136991 - ocfs2: fix trans extend while flush truncate log Junxiao Bi Orabug: 25136991 - ocfs2: extend enough credits for freeing one truncate record while replaying truncate records Xue jiufei Orabug...
sudo security update
1.8.6p3-25 - Update noexec syscall blacklist - Fixes CVE-2016-7032 and CVE-2016-7076 Resolves: rhbz1391937...
thunderbird security update
45.5.1-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.5.1-1 - Update to 45.5.1...
firefox security update
45.5.1-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.5.1-1 - Update to 45.5.1 ESR...
thunderbird security update
45.5.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.5.0-1 - Update to 45.5.0...
expat security update
2.0.1-13 - updated security fix for CVE-2016-0718 2.0.1-12 - add security fix for CVE-2016-0718...
memcached security update
0:1.4.4-3.el68.1 - fix vulnerabilities allowing remote code execution CVE-2016-8704, CVE-2016-8705, CVE-2016-8706...
memcached security update
0:1.4.15-10.el73.1 - fix vulnerabilities allowing remote code execution CVE-2016-8704, CVE-2016-8705, CVE-2016-8706 0:1.4.15-10 - fix binding to IPv6 address 1298603 - enable SASL support 1263696 - don't allow authentication with bad SASL credentials CVE-2013-7239...
ipsilon security update
1.0.0-13 - Backport patch for CVE-2016-8638 RHBZ1394116...
Unbreakable Enterprise kernel security update
2.6.39-400.290.2 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060055 CVE-2016-6480 CVE-2016-6480 - audit: fix a double fetch in auditlogsingleexecvearg Paul Moore Orabug: 25059962 CVE-2016-6136 - ecryptfs: don't allow mmap when the lower fs doesn't support it...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.14.2 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060050 CVE-2016-6480 CVE-2016-6480 - IB/srpt: Simplify srpthandletskmgmt Bart Van Assche Orabug: 25060011 CVE-2016-6327 - audit: fix a double fetch in auditlogsingleexecvearg Paul Moore...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.19 - acpi: Disable ACPI table override if securelevel is set Linn Crosetto Orabug: 25058966 CVE-2016-3699 - aacraid: Check size values after double-fetch from user Dave Carroll Orabug: 25060060 CVE-2016-6480 CVE-2016-6480 - audit: fix a double fetch in auditlogsingleexecvea...
nss and nss-util security update
nss 3.21.3-2.0.1 - Added nss-vendor.patch to change vendor 3.21.3-2 - Mozilla 1314604 / Red Hat CVE-2016-8635 3.21.3-1.1 - rebuild 3.21.3-1 - Rebase to NSS 3.21.3 - Resolves: 1383887 nss-util 3.21.3-1.1 - rebuild 3.21.3-1 - Rebase to nss-3.21.3 - Remove patch for CVE-2016-1950, which is included ...
firefox security update
45.5.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.5.0-1 - Update to 45.5.0 ESR 45.4.0-3 - Added upcoming upstream patches mozbz1018486 45.4.0-2 - Added Laszlo Ersek patch for aarch64 crashes...
389-ds-base security, bug fix, and enhancement update
1.2.11.15-84 - Release 1.2.11.15-84 - Resolves: 1376676 - Backport AES storage scheme plugin DS 47462 1.2.11.15-83 - Release 1.2.11.15-83 - Resolves: 1376676 - Backport AES storage scheme plugin DS 47462 1.2.11.15-82 - Release 1.2.11.15-82 - Resolves: 1376676 - Backport AES storage scheme plugin ...
kernel security and bug fix update
2.6.32-642.11.1 - mm close FOLL MAPPRIVATE race Larry Woodman 1385116 1385117 CVE-2016-5195 2.6.32-642.10.1 - scsi fnic: Fix to cleanup aborted IO to avoid device being offlined by mid-layer Maurizio Lombardi 1382620 1341298 2.6.32-642.9.1 - net vlan: Fix FCOEMTU support Maurizio Lombardi 1381592...
policycoreutils security update
2.0.83-30.1.0.1 - Lazy unmount private, shared entryJoe Jinorabug 12560705 2.0.83-30.1 - sandbox: create a new session for sandboxed processes Resolves: CVE-2016-7545...
wget security and bug fix update
1.14-13 - Fix CVE-2016-4971 1345778 - Added support for non-ASCII URLs Related: CVE-2016-4971 1.14-12 - Fix wget to include Host header on CONNECT as required by HTTP 1.1 1203384 - Run internal test suite during build 1295846 - Fix -nv being documented as synonym for two options 1147572 1.14-11 -...
php security and bug fix update
5.4.16-42 - bz2: fix improper error handling in bzread CVE-2016-5399 5.4.16-41 - gd: fix integer overflow in gd2GetHeader resulting in heap overflow CVE-2016-5766 - gd: fix integer overflow in gdImagePaletteToTrueColor resulting in heap overflow CVE-2016-5767 - mbstring: fix double free in...
python security, bug fix, and enhancement update
2.7.5-48.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-48 - Fix for CVE-2016-1000110 HTTPoxy attack Resolves: rhbz1359164 2.7.5-47 - Fix for CVE-2016-5636: possible integer overflow and heap corruption in zipimporter.getdata Resolves: rhbz1356364 2.7.5-46 - Drop patch 2...
NetworkManager security, bug fix, and enhancement update
NetworkManager 1:1.4.0-12 - device: consider a device with slaves configured rh1333983 1:1.4.0-11 - build: add RPM dependency for exact glib2 version rh1378809 1:1.4.0-10 - device: improve connection matching for assuming bond and infiniband rh1375558 1:1.4.0-9 - clients: handle secret requests...
curl security, bug fix, and enhancement update
7.29.0-35 - fix incorrect use of a previously loaded certificate from file related to CVE-2016-5420 7.29.0-34 - acknowledge the --no-sessionid/CURLOPTSSLSESSIONIDCACHE option required by the fix for CVE-2016-5419 7.29.0-33 - fix re-using connections with wrong client cert CVE-2016-5420 - fix TLS...
glibc security update
2.17-157 - Rebuild with updated binutils 1268008 2.17-156 - malloc arena free free list management fix 1276753 2.17-155 - Basic validity check for locale-archive.tmpl 1350733 2.17-153 - Add Intel AVX-512 optimized routines 1298526. 2.17-151 - Improve malloc peformance in low-memory situations...
glibc security, bug fix, and enhancement update
2.17-157 - Rebuild with updated binutils 1268008 2.17-156 - malloc arena free free list management fix 1276753 2.17-155 - Basic validity check for locale-archive.tmpl 1350733 2.17-153 - Add Intel AVX-512 optimized routines 1298526. 2.17-151 - Improve malloc peformance in low-memory situations...
mariadb security and bug fix update
5.5.52-1 - Rebase to 5.5.52, that also include fix for CVE-2016-6662 Resolves: 1377974 1:5.5.50-2 - Rebuild Related: 1359629...
squid security, bug fix, and enhancement update
7:3.5.20-2 - Resolves: 1378025 - hostverifystrict only accepts lowercase arguments 7:3.5.20-1 - Resolves: 1273942 - Rebase squid to latest mature 3.5 version 3.5.20 7:3.5.10-9 - Related: 1349775 - Provide migration tools needed due to rebase to squid 3.5 as a separate sub-package 7:3.5.10-8 -...
firewalld security, bug fix, and enhancement update
0.4.3.2-8 - Exclude firewallctl RHBZ1374799 0.4.3.2-7 - Tolerate ipv6rpfilter fail RHBZ1285769 - Fix setrules to copy the rule before extracting the table RHBZ1373260 - Translation update RHBZ1273296 - Conflict with NetworkManager 1:1.4.0-3.el7 RHBZ1366288 0.4.3.2-6 - Do not use exit code 254 for...
389-ds-base security, bug fix, and enhancement update
1.3.5.10-11 - Release 1.3.5.10-11 - Resolves: bug 1321124 - Replication changelog can incorrectly skip over updates 1.3.5.10-10 - Release 1.3.5.10-10 - Resolves: bug 1370300 - set proper update status to replication agreement in case of failure DS 48957 - Resolves: bug 1209094 - Allow logging of...
dhcp security, bug fix, and enhancement update
12:4.2.5-47.0.1 - Added oracle-errwarn-message.patch 12:4.2.5-47 - 1269596 - fix undefined variable in dhclient-script 12:4.2.5-46 - unclosed TCP connections to OMAPI or failover ports can cause DoS CVE-2016-2774 12:4.2.5-45 - 1267489 - dhclient-script does not respect DEFROUTE/GATEWAYDEV patched...
ntp security and bug fix update
4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...
poppler security and bug fix update
0.26.5-16 - Fix crash in Splash - Resolves: 1299492 0.26.5-15 - Check array length - Resolves: 1299506 0.26.5-14 - Show correct glyph or none instead of 'fi' - Resolves: 1298616 0.26.5-13 - Check for groupColorSpace existance - Resolves: 1299479 0.26.5-12 - Move array reallocation from visitLine ...
java-1.7.0-openjdk security update
1:1.7.0.121-2.6.8.0.0.1 - Update DISTRONAME in specfile 1:1.7.0.121-2.6.8.0 - Turn off HotSpot bootstrap to see if it resolves build issues. - Resolves: rhbz1381990 1:1.7.0.121-2.6.8.0 - Bump to 2.6.8 and u121b00. - Drop patches S7081817, S8140344, S8145017 and S8162344 applied upstream. - Update...