9184 matches found
glibc security update
2.17-157.4 - Avoid large allocas in the dynamic linker 1452720 2.17-157.2 - Fix use of uninitialized data in getaddrinfo with nscd 1436312 2.17-157.1 - Do not set initgroups in default nsswitch.conf 1388638 - nssdb: Request larger buffers for long group entries 1388637 - nssdb: Fix getent crash...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711...
kernel security update
3.10.0-514.21.2.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
glibc security update
2.17-157.4 - Avoid large allocas in the dynamic linker 1452720...
glibc security update
2.12-1.209.0.3.2 - backport rh patch 1047983 from OL7, Orabug 25407655 2.12-1.209.2 - Avoid large allocas in the dynamic linker 1452711 2.12-1.209.1 - Fix thread cancellation issues for setmntent and others 1437618...
kernel security update
2.6.32-696.3.2.OL6 - Update genkey bug 25599697 2.6.32-696.3.2 - mm enlarge stack guard gap Larry Woodman 1452729 1452730 CVE-2017-1000364 CVE-2017-1000366...
kernel security update
3.10.0-514.21.2.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.2 - mm enlarge stack guard gap Larry Woodman 1452732 1452733...
firefox security update
52.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.2.0-1 - Update to 52.2.0 ESR 52.1.1-1 - Update to 52.1.1 ESR...
qemu-kvm security and bug fix update
1.5.3-126.el73.9 - kvm-spice-fix-spicechraddwatch-pre-condition.patch bz1452332 - Resolves: bz1452332 RHEL 7.2 based VM Virtual Machine hung for several hours apparently waiting for lock held by mainloop 1.5.3-126.el73.8 - kvm-char-change-qemuchrfeaddwatch-to-return-unsigned.patch bz1452332 -...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.6 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143545 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.4 - net/packet: fix overflow in check for tpreserve Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for tpframenr Andrey Konovalov Orabug: 26143552 CVE-2017-7308 - net/packet: fix overflow in check for priv area size Andrey Konovalov...
sudo security update
1.7.2p1-29.0.1 - Fix CVE-2017-1000367...
nss security and bug fix update
3.28.4-3.0.1 - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed 3.28.4-3 - Fix zero-length record treatment for stream ciphers and SSLv2 3.28.4-2 - Include CKBI 2.14 and updated CA constraints from NSS 3.28.5...
nss security and bug fix update
3.28.4-1.2.0.1 - Added nss-vendor.patch to change vendor 3.28.4-1.2 - Include CKBI 2.14 and updated CA constraints from NSS 3.28.5 3.28.4-1.1 - Fix zero-length record treatment in SSL3GatherData...
sudo security update
1.8.6p3-28 - Fixes CVE-2017-1000367 Resolves: rhbz1455399...
kernel security and bug fix update
2.6.32-696.3.1.OL6 - Update genkey bug 25599697 2.6.32-696.3.1 - netdrv be2net: Fix endian issue in logical link config command Ivan Vecera 1442979 1436527 - scsi lpfc: update for r 11.0.0.6 Maurizio Lombardi 1439636 1429881 - scsi lpfc: The lpfc driver does not issue RFFID and RFTID in the corre...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.0.1.el7.OL7 - ipc ipc/sem.c: bugfix for semctl,,GETZCNT Manfred Spraul orabug 22552377 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676...
kernel security, bug fix, and enhancement update
3.10.0-514.21.1.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514.21.1 - kernel sched/core: Fix an SMP ordering race in trytowakeup vs...
samba3x security update
3.6.23-13.0.2 - Fix CVE-2017-7494...
Unbreakable Enterprise kernel security update
2.6.39-400.296.2 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26108573 CVE-2017-8890 2.6.39-400.296.1 - cifs: adjust sequence number downward after signing NTCANCEL request Albert Barbe - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.5 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26132091 CVE-2017-8890...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.3 - dccp/tcp: do not inherit mclist from parent Eric Dumazet Orabug: 26108571 CVE-2017-8890...
samba4 security update
4.2.10-10 - resolves: 1450779 - Security fix for CVE-2017-7494...
samba security update
3.6.23-43.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.24-43 - resolves: 1450782 - Fix CVE-2017-7494...
rpcbind security update
0.2.0-139 - Fix for CVE-2017-8779 bz 1449461...
libtirpc security update
0.2.1-139 - Fix for CVE-2017-8779 bz 1449458...
rpcbind security update
0.2.0-383 - Fixed typo in memory leaks patch bz 1449462...
samba security and bug fix update
4.4.4-13 - resolves: 1437816 - Fix krb5 memory cache in libads sasl code - resolves: 1437741 - Fix CVE-2016-2125, CVE-2016-2126 and CVE-2017-2619...
libtirpc security update
0.2.4-0.83 - Fixed for CVE-2017-8779 bz 1449462...
kdelibs security update
6:4.14.8-6 - KAuth: verify that whoever is calling us is actually who he says he is CVE-2017-8422 Resolves: CVE-2017-8422...
Unbreakable Enterprise kernel security update
2.6.39-400.295.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986995 CVE-2017-7895 2.6.39-400.295.1 - ocfs2/o2net: o2netlistendataready should do nothing if socket state is not TCPLISTEN Tariq Saeed Orabug: 25510857 - IB/CORE: sync the resouce access in fmrpool...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.18.2 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Fields Orabug: 25986990 CVE-2017-7895 3.8.13-118.18.1 - fnic: Update fnic driver version to 1.6.0.24 John Sobecki Orabug: 24448585 - xen-netfront: Rework the fix for Rx stall during OOM and network stress...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-94.3.4 - ipv6: catch a null skb before using it in a DTRACE Shannon Nelson Orabug: 26075879 - sparc64: Do not retain old VMSPARCADI flag when protection changes on page Khalid Aziz Orabug: 26038830 4.1.12-94.3.3 - nfsd: stricter decoding of write-like NFSv2/v3 ops J. Bruce Field...
ghostscript security update
8.70-23.el69.2 - Security fix for CVE-2017-8291 updated to address SIGSEGV 8.70-23.el69.1 - Added security fix for CVE-2017-8291 bug 1446063...
java-1.7.0-openjdk security update
1:1.7.0.141-2.6.10.1.0.1 - Update DISTRONAME in specfile 1:1.7.0.141-2.6.10.1 - Bump to u141b02 to include S8011123 fix for TCK failure. - Resolves: rhbz1438751 1:1.7.0.141-2.6.10.0 - Bump to 2.6.10 and u141b00. - Adjust RH1022017 following application of 8173783 - Add more detailed output to...
qemu-kvm security update
0.12.1.2-2.503.el69.3 - kvm-cirrus-avoid-write-only-variables.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-dst-pointers-in-the-blitt.patch bz1444377 bz1444379 - kvm-cirrus-stop-passing-around-src-pointers-in-the-blitt.patch bz1444377 bz1444379 -...
jasper security update
1.900.1-21 - Bump release 1.900.1-20 - Multiple security fixes fixed by thoger: CVE-2015-5203 CVE-2015-5221 CVE-2016-1577 CVE-2016-1867 CVE-2016-2089 CVE-2016-2116 CVE-2016-8654 CVE-2016-8690 CVE-2016-8691 CVE-2016-8692 CVE-2016-8693 CVE-2016-8883 CVE-2016-8884 CVE-2016-8885 CVE-2016-9262...
thunderbird security update
52.1.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 52.1.0-1 - Update to 52.1.0 52.0.1-1 - Update to 52.0.1...
bind security update
32:9.8.2-0.62.rc1.2 - Fix DNSKEY that encountered a CNAME 1447869, ISC change 3391...
kernel security and bug fix update
2.6.32-696.1.1.0.1.el6.OL6 - kernel sched/fair: Initialize throttlecount for new task-groups lazily orabug 25071015 - kernel sched/fair: Do not announce throttled next buddy in dequeuetaskfair orabug 25071015 - kernel sched/fair: Reorder cgroup creation code orabug 25071015 - kernel sched/fair:...
nss security update
3.21.3-2.0.1 - Fix out-of-bound issue in base64 encoding/decoding code CVE-2017-5461...
bind security update
32:9.8.2-0.62.rc1.1 - Fix CVE-2017-3136 ISC change 4575 - Fix CVE-2017-3137 ISC change 4578...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR 52.0-5 - Added fix for...
firefox security update
52.1.0-2.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 52.1.0-2 - Update to 52.1.0 ESR Build3 52.1.0-1 - Update to 52.1.0 ESR...
java-1.8.0-openjdk security and bug fix update
1:1.8.0.131-2.b13 - Backport 'S8153711: REDO JDWP: Memory Leak: GlobalRefs never deleted when processing invokeMethod command' - Resolves: rhbz1442162 1:1.8.0.131-1.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update...
java-1.8.0-openjdk security update
1:1.8.0.131-0.b11 - Update to aarch64-jdk8u131-b11. - Drop upstreamed patches for 8147910, 8161993, 8170888 and 8173783. - Update generatesourcetarball.sh to remove patch remnants. - Cleanup tarball creation documentation to avoid duplication. - Resolves: rhbz1438751 1:1.8.0.121-2.b13 - Add...
nss and nss-util security update
nss 3.28.4-1.0.1 - Added nss-vendor.patch to change vendor - Temporarily disable some tests until expired PayPalEE.cert is renewed 3.28.4-1 - Rebase to 3.28.4 nss-util 3.28.4-1 - Rebase to NSS 3.28.4 to accommodate base64 encoding fix...
bind security update
32:9.9.4-38.3 - Fix CVE-2017-3136 ISC change 4575 - Fix CVE-2017-3137 ISC change 4578...
qemu-kvm security update
1.5.3-126.el73.6 - kvm-fix-cirrusvga-fix-OOB-read-case-qemu-Segmentation-f.patch bz1430059 - kvm-cirrus-vnc-zap-bitblit-support-from-console-code.patch bz1430059 - kvm-cirrus-add-option-to-disable-blitter.patch bz1430059 - kvm-cirrus-fix-cirrusinvalidateregion.patch bz1430059 -...
libreoffice security update
1:4.3.7.2-2.0.1.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile [email protected] - Build with --with-vendor='Oracle America, Inc.' [email protected] 1:4.3.7.2-2.1 - Resolves: rhbz1435532 CVE-2017-3157 Arbitrary file disclosure in...