8998 matches found
poppler security and bug fix update
0.26.5-16 - Fix crash in Splash - Resolves: 1299492 0.26.5-15 - Check array length - Resolves: 1299506 0.26.5-14 - Show correct glyph or none instead of 'fi' - Resolves: 1298616 0.26.5-13 - Check for groupColorSpace existance - Resolves: 1299479 0.26.5-12 - Move array reallocation from visitLine ...
ntp security and bug fix update
4.2.6p5-25.0.1 - add disable monitor to default ntp.conf CVE-2013-5211 4.2.6p5-25 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack CVE-2016-1550 4.2.6p5-24 -...
nettle security and bug fix update
2.7.1-8 - Use a cache-silent version of mpzpowm to prevent cache-timing attacks against RSA and DSA in shared VMs. 1364897,CVE-2016-6489 2.7.1-5 - Fixed SHA-3 implementation to conform to final standard 1252936 - Fixed CVE-2015-8803 CVE-2015-8804 CVE-2015-8805 which caused issues in secp256r1 and...
gimp security, bug fix, and enhancement update
gimp 2:2.8.16-3 - fix multiple use-after-free bugs when parsing XCF channel and layer properties 1348617 2:2.8.16-2 - add back obsoletes necessary for RHEL 2:2.8.16-1 - version 2.8.16 2:2.8.14-3 - export-dialog-destroyed-crash patch: avoid subsequent warnings 2:2.8.14-2 - fix linking problem - us...
fontconfig security and bug fix update
2.10.95-10 - Fix a regression in the previous change. 1355930 2.10.95-9 - CVE-2016-5384: Validate offsets in cache files properly. 1355930 2.10.95-8 - Update 45-latin.conf to add some hints to fall back for Windows fonts 1073460...
postgresql security and bug fix update
9.2.18-1 - update to 9.2.18 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-18.html http://www.postgresql.org/docs/9.2/static/release-9-2-17.html http://www.postgresql.org/docs/9.2/static/release-9-2-16.html 9.2.15-2 - fix postgresql-setup to work if postgres user is set t...
libreswan security and bug fix update
3.15-8.0.1 - add libreswan-oracle.patch to detect Oracle Linux distro 3.15-8 - Resolves: rhbz1361721 libreswan pluto segfault UPDATED - Resolves: rhbz1276524 USGv6 IKEv2.EN.R.1.1.3.2 case failed due to response to bad INFORMATIONAL request UPDATED - Resolves: rhbz1309764 ipsec barf additional man...
qemu-kvm security, bug fix, and enhancement update
1.5.3-126.el7 - kvm-virtio-recalculate-vq-inuse-after-migration.patch bz1376542 - Resolves: bz1376542 RHSA-2016-1756 breaks migration of instances 1.5.3-125.el7 - kvm-nbd-server-Set-ONONBLOCK-on-client-fd.patch bz1285453 - Resolves: bz1285453 An NBD client can cause QEMU main loop to block when...
bind security update
32:9.9.4-38 - Fix CVE-2016-8864 32:9.9.4-37 - Fix CVE-2016-2776 32:9.9.4-36 - Added automatic interface scan functionality 1294506 - Removed NetworkManager dispatcher script since it is not needed any more 1294506 32:9.9.4-35 - Added GeoIP support 1220594 32:9.9.4-34 - Added support for CAA recor...
libreoffice security, bug fix, and enhancement update
libcmis 0.5.1-2 - Resolves: rhbz1330591 fix Google Drive login - Related: rhbz1330591 fix changelog entry 0.5.1-1 - Related: rhbz1290152 new upstream release 0.5.0-2 - Related: rhbz1290152 autoreconf is not needed - Related: rhbz1290152 add a bunch of fixes found by coverity 0.5.0-1 - Resolves:...
krb5 security, bug fix, and enhancement update
1.14.1-26 - Use responder in non-preauth AS reqs - Resolves: 1363690 1.14.1-25 - Fix bad debuglog call in selinux handling - Resolves: 1292153 1.14.1-24 - Fix KKDCPP with TLS SNI by always presenting 'Host:' header - Resolves: 1364993 1.14.1-23 - Add dependency on libkadm5 to krb5-devel - Resolve...
mod_nss security, bug fix, and enhancement update
1.0.14-7 - Add the permission patch to the repository 1312583 1.0.14-6 - Check the NSS certificate database directory for read permissions by the Apache user. 1312583 1.0.14-5 - Update clean semaphore patch to not free the pinList twice. 1364560 1.0.14-4 - Update clean semaphore patch to not clos...
libvirt security, bug fix, and enhancement update
2.0.0-10 - virtlogd: Don't stop or restart along with libvirtd rhbz1372576 2.0.0-9 - Add helper for removing transient definition rhbz1368774 - qemu: Remove stale transient def when migration fails rhbz1368774 - qemu: Don't use query-migrate on destination rhbz1374613 - conf: allow hotplugging...
kernel security, bug fix, and enhancement update
3.10.0-514.OL7 - Oracle Linux certificates Alexey Petrenko - Oracle Linux RHCK Module Signing Key was compiled into kernel [email protected] - Update x509.genkey bug 24817676 3.10.0-514 - mm remove gupflags FOLLWRITE games from getuserpages Larry Woodman 1385124...
libgcrypt security update
1.5.3-13.1 - fix CVE-2016-6313 - predictable PRNG output 1366105 1.5.3-13 - touch only urandom in the selftest and when /dev/random is unavailable for example by SELinux confinement - fix the RSA selftest key p q swap...
libguestfs and virt-p2v security, bug fix, and enhancement update
libguestfs 1:1.32.7-3 - Rebase to libguestfs 1.32 in RHEL 7.3 resolves: rhbz1218766 - The full tests are now run after the package has been built. - New tool and subpackage: virt-dib safe diskimage-builder replacement. - New subpackage libguestfs-inspect-icons to reduce dependencies of main pkg s...
util-linux security, bug fix, and enhancement update
2.23.2-33.0.1 - fix Oracle bug 23001516 - backport lscpu: correct the Virtualization type on Xen DomU PV guest - Reviewed-by: Joe Jin 2.23.2-33 - improve patch for 1007734 libblkid realpaths 2.23.2-32 - improve patch for chrt1 deadline support 1298384 - fix 1007734 - blkid shows devices as...
systemd security and bug fix update
219-30.0.1.3 - set 'RemoveIPC=no' in logind.conf as default for OL7.2 22224874 - allow dm remove ioctl to co-operate with UEK3 Vaughan Cao Orabug: 18467469 - add hv dynamic memory support Jerry Snitselaar Orabug: 18621475 - rules: load sg module 1223340 - run: drop mistakenly committed test code...
resteasy-base security and bug fix update
3.0.6-4 - Resolves: rhbz1378619 - disable SerializerProvider by default 3.0.6-3 - Resolves: rhbz1357624 - fail to build with java 8 3.0.6-2 - Resolves: rhbz1280539 - fix pom version...
sudo security, bug fix, and enhancement update
1.8.6p7-20 - RHEL 7.3 erratum - fixed visudo's -q flag Resolves: rhbz1350828 1.8.6p7-19 - RHEL 7.3 erratum - removed INPUTRC from envkeep to prevent a potential info leak Resolves: rhbz1340700 1.8.6p7-18 - RHEL 7.3 erratum - removed requiretty flag from the default sudoers policy - backported...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.17 - sched: panic on corrupted stack end Jann Horn Orabug: 24971921 CVE-2016-1583 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971921 CVE-2016-1583 - proc: prevent stacking filesystems on top Jann Horn Orabug: 24971921 CVE-2016-1583...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.14.1 - ecryptfs: forbid opening files without mmap handler Jann Horn Orabug: 24971919 CVE-2016-1583 - RDS: IB: fix panic with handlers running post teardown Santosh Shilimkar Orabug: 24395795...
bind security update
30:9.3.6-25.P1.11 - Fix CVE-2016-8864...
bind97 security update
32:9.7.0-21.P2.9 - Fix CVE-2016-8864...
kernel security and bug fix update
kernel - 2.6.18-416.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
kernel security and bug fix update
kernel 2.6.18-416 - mm Fix Privilege escalation via MAPPRIVATE Larry Woodman 1385112 CVE-2016-5195 2.6.18-415 - fs gfs2: Initialize atime of INEW inodes Andreas Grunbacher 1374861 - fs gfs2: Update file times after grabbing glock Andreas Grunbacher 1374861 - Revert: fs gfs2: Only refresh newer...
kernel security update
2.6.32-642.6.2 - mm close FOLL MAPPRIVATE race Larry Woodman 1385116 1385117 CVE-2016-5195...
kernel security update
3.10.0-327.36.3.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.36.3 - mm remove gupflags FOLLWRITE games from getuserpages Alexander Gordeev 1385123 1385124 CVE-2016-5195...
Unbreakable Enterprise kernel security update
2.6.39-400.286.3 - mm, gup: close FOLL MAPPRIVATE race Linus Torvalds Orabug: 24928646 CVE-2016-5195...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.13.3 - mm, gup: close FOLL MAPPRIVATE race Linus Torvalds Orabug: 24928591 CVE-2016-5195...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.16 - mm: remove gupflags FOLLWRITE games from getuserpages Linus Torvalds Orabug: 24927306 CVE-2016-5195 4.1.12-61.1.15 - drivers/nvme: provide a module parameter for setting number of I/O queues Shan Hai Orabug: 24914956 - blk-mq: improve warning for running a queue on the...
bind97 security update
32:9.7.0-21.P2.8 - Fix CVE-2016-2848 32:9.7.0-21.P2.7 - Fix CVE-2016-2776 32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286 32:9.7.0-21.P2.5 - Fix CVE-2015-8704 32:9.7.0-21.P2.4 - Fix CVE-2015-8000 32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - F...
bind security update
30:9.3.6-25.P1.10 - Fix CVE-2016-2848 30:9.3.6-25.P1.9 - Fix CVE-2016-2776 30:9.3.6-25.P1.8 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite 30:9.3.6-25.P1.7 - Fix CVE-2016-1285 and CVE-2016-1286 30:9.3.6-25.P1.6 - Fix CVE-2015-8704 30:9.3.6-25.P1.5 - Fix CVE-2015-80...
java-1.8.0-openjdk security update
1:1.8.0.111-0.b15 - added nss restricting requires - Resolves: rhbz1381990 1:1.8.0.111-0.b15 - Turn debug builds on for all JIT architectures. Always AssumeMP on RHEL. - Resolves: rhbz1381990 1:1.8.0.111-0.b15 - Update to aarch64-jdk8u111-b15, with AArch64 fix for S8160591. - Resolves: rhbz138199...
Unbreakable Enterprise kernel security update
kernel-uek 4.1.12-61.1.14 - net: add recursion limit to GRO Sabrina Dubroca Orabug: 24829133 CVE-2016-7039...
openssl security update
0.9.8e-40.0.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2182 - possible buffer overflow in BNbn2dec - fix CVE-2016-6306 - certificate message OOB reads - mitigate CVE-2016-2183 - degrade all 64bit block ciphers and RC4 to...
tomcat security update
0:7.0.54-8 - Resolves: rhbz1368121 0:7.0.54-7 - Resolves: rhbz1362212 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368121 0:7.0.54-5 - Resolves: rhbz1362567 0:7.0.54-4 - Resolves: CVE-2015-5346 0:7.0.54-3 - Resolves: CVE-2014-7810...
tomcat6 security and bug fix update
0:6.0.24-98 - Resolves: rhbz1362210 CVE-2016-5388 Tomcat: CGI sets environmental variable based on user supplied Proxy request header - Resolves: rhbz1368119 0:6.0.24-97 - Resolves: rhbz1367051 CVE-2015-5174 URL Normalization issue - Resolves: rhbz1367054 CVE-2016-0706 Security Manager bypass via...
kernel security update
3.10.0-327.36.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.36.2 - net add recursion limit to GRO Sabrina Dubroca 1378405 1374191 CVE-2016-7039...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 4.1.12-61.1.13 - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24803597 CVE-2016-5829 4.1.12-61.1.12 - ocfs2: Fix start offset to ocfs2zerorangefortruncate Ashish Samant Orabug: 24790230 4.1.12-61.1.11 - ocfs2: Fix double put of recount...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.286.2 - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24798694 CVE-2016-5829 2.6.39-400.286.1 - Revert 'rds: skip rx/tx work when destroying connection' Brian Maly Orabug: 24790158 2.6.39-400.285.1 - netfilter: xtables: speed up jump targ...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-118.13.2 - HID: hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Scott Bauer Orabug: 24798695 CVE-2016-5829 3.8.13-118.13.1 - Revert 'rds: skip rx/tx work when destroying connection' Brian Maly Orabug: 24790116 3.8.13-118.12.1 - scsisysfs: protect against...
kernel security and bug fix update
2.6.32-642.6.1 - net tcp: make challenge acks less predictable Florian Westphal 1355606 1355607 CVE-2016-5696 - fs sunrpc: move NOCRKEYTIMEOUT to the auth-auflags Scott Mayhew 1366962 1294939 - usbhid hiddev: validate numvalues for HIDIOCGUSAGES, HIDIOCSUSAGES commands Yauheni Kaliuta 1359999...
thunderbird security update
45.4.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.4.0-1 - Update to 45.4.0...
python-twisted-web security update
8.2.0-5 - Rebase HTTPoxy patch and bump release for rebuild Resolves: rhbz1358789 8.2.0-4 - Fix HTTPoxy CVE-2016-1000111 Resolves: rhbz1358789...
bind97 security update
32:9.7.0-21.P2.7 - Fix CVE-2016-2776 32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286 32:9.7.0-21.P2.5 - Fix CVE-2015-8704 32:9.7.0-21.P2.4 - Fix CVE-2015-8000 32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
bind security update
30:9.3.6-25.P1.9 - Fix CVE-2016-2776 30:9.3.6-25.P1.8 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite 30:9.3.6-25.P1.7 - Fix CVE-2016-1285 and CVE-2016-1286 30:9.3.6-25.P1.6 - Fix CVE-2015-8704 30:9.3.6-25.P1.5 - Fix CVE-2015-8000 30:9.3.6-25.P1.4 - Fix CVE-2015-572...
openssl security update
1.0.1e-48.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in DTLS - fix CVE-2016-2180 - OOB read in TSOBJprintbio - fix CVE-2016-2181 - DTLS1 replay protection and unprocessed records issue - fix...
openssl security update
1.0.1e-48.3 - fix CVE-2016-2177 - possible integer overflow - fix CVE-2016-2178 - non-constant time DSA operations - fix CVE-2016-2179 - further DoS issues in DTLS - fix CVE-2016-2180 - OOB read in TSOBJprintbio - fix CVE-2016-2181 - DTLS1 replay protection and unprocessed records issue - fix...
kvm security update
83-276.0.1.el511 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch 83-275.el511 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359723 - Resolves: bz1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via...