Lucene search
K
OraclelinuxRecent

9185 matches found

Oracle linux
Oracle linux
•added 2016/08/23 12:0 a.m.•69 views

kernel security and bug fix update

2.6.32-642.4.2 - net tcp: make challenge acks less predictable Florian Westphal 1355606 1355607 CVE-2016-5696 2.6.32-642.4.1 - ipmi Remove smimsg from waitingrcvmsgs list before handleonerecvmsg David Arcari 1355980 1347189 - fs ext4: Remove useless spinlock in ext4getattr Lukas Czerner 1355981...

5.8CVSS1.5AI score0.15073EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/08/18 12:0 a.m.•62 views

kernel security and bug fix update

3.10.0-327.28.3.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.28.3 - net tcp: enable per-socket rate limiting of all 'challenge acks' Florian Westphal 1355603 1355605 CVE-2016-5696 - net tcp: uninline tcpoowratelimited Florian Westphal 1355603 1355605 CVE-2016-5696 - net tcp: make...

5.8CVSS2AI score0.15073EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/08/18 12:0 a.m.•139 views

python security update

2.6.6-66.0.1 - Add Oracle Linux distribution in platform.py orabug 21288328 Keshav Sharma 2.6.6-66 - Fix for CVE-2016-1000110 HTTPoxy attack Resolves: rhbz1359161 2.6.6-65 - Fix for CVE-2016-0772 python: smtplib StartTLS stripping attack rhbz1303647 Raise an error when STARTTLS fails upstream pat...

5.8CVSS0.2AI score0.14524EPSS
Exploits6
Oracle linux
Oracle linux
•added 2016/08/15 12:0 a.m.•66 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.10.2 - tcp: make challenge acks less predictable Eric Dumazet Orabug: 24010012 Orabug: 2401010 CVE-2016-5696 3.8.13-118.10.1 - ocfs2: call ocfs2journalaccessdi before ocfs2journaldirty in ocfs2writeendnolock yangwenfang Orabug: 19601200 - ocfs2: improve recovery performance...

5.8CVSS2.4AI score0.15073EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/08/15 12:0 a.m.•61 views

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-37.6.3 - tcp: make challenge acks less predictable Eric Dumazet Orabug: 24010103 Orabug: 2401010 CVE-2016-5696...

5.8CVSS1.7AI score0.15073EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/08/11 12:0 a.m.•34 views

php security update

5.3.3-48 - don't set environmental variable based on user supplied Proxy request header CVE-2016-5385...

5.1CVSS1.3AI score0.50427EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/11 12:0 a.m.•71 views

php security and bug fix update

5.4.16-36.3 - don't set environmental variable based on user supplied Proxy request header CVE-2016-5385 5.4.16-36.2 - fix segmentation fault in headerregistercallback 1346758...

5.1CVSS1.5AI score0.50427EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/11 12:0 a.m.•39 views

mariadb security update

1:5.5.50-1 - Rebase to 5.5.50 Resolves: 1359628...

6.8CVSS2AI score0.05826EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/11 12:0 a.m.•69 views

qemu-kvm security update

1.5.3-105.el72.7 - kvm-block-iscsi-avoid-potential-overflow-of-acb-task-cdb.patch bz1358996 - Resolves: bz1358996 CVE-2016-5126 qemu-kvm: Qemu: block: iscsi: buffer overflow in iscsiaioioctl rhel-7.2.z 1.5.3-105.el72.6 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359728 -...

4.9CVSS2.5AI score0.00701EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/09 12:0 a.m.•47 views

qemu-kvm security update

0.12.1.2-2.491.el68.3 - kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch bz1359724 - Resolves: bz1359724 EMBARGOED CVE-2016-5403 qemu-kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS rhel-6.8.z 0.12.1.2-2.491.el68.2 - kvm-vga-add-srvbe-register-set.patch...

7.2CVSS1.4AI score0.00916EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/04 12:0 a.m.•74 views

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-37.6.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393865 CVE-2016-4470 - ovl: fix permission checking for setattr Miklos Szeredi Orabug: 24393742 CVE-2015-8660...

7.2CVSS2.5AI score0.22374EPSS
Exploits12
Oracle linux
Oracle linux
•added 2016/08/04 12:0 a.m.•62 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.9.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393864 CVE-2016-4470...

4.9CVSS2.2AI score0.00582EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/04 12:0 a.m.•34 views

squid security update

7:3.1.23-16.6 - Resolves: 1359204 - CVE-2016-5408 squid: Buffer overflow vulnerability in cachemgr.cgi tool...

7.5CVSS3.1AI score0.04352EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/04 12:0 a.m.•67 views

Unbreakable Enterprise kernel security update

2.6.39-400.283.2 - KEYS: potential uninitialized variable Dan Carpenter Orabug: 24393863 CVE-2016-4470...

4.9CVSS2.2AI score0.00582EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/03 12:0 a.m.•34 views

firefox security update

45.3.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.3.0-1 - Update to 45.3.0 ESR 45.2.0-3 - Added fix for mozbz256180 45.2.0-2 - Added fix for mozbz975832, rhbz1343202...

7.5CVSS1.2AI score0.04577EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/08/02 12:0 a.m.•84 views

kernel security and bug fix update

3.10.0-327.28.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.28.2 - net bridge: include in6.h in ifbridge.h for struct in6addr Jiri Benc 1331285 1268057 - net inet: defines IPPROTO needed for module alias generation Jiri Benc 1331285 1268057 - net sync some IP headers with glibc Jir...

7.2CVSS7.6AI score0.22374EPSS
Exploits12
Oracle linux
Oracle linux
•added 2016/08/02 12:0 a.m.•48 views

golang security, bug fix, and enhancement update

1.6.3-1 - Resolves: rhbz1358278 - CVE-2016-5386 1.6.2-1 - rebase to 1.6.2 - Resolves: rhbz1346331...

6.8CVSS1.4AI score0.0522EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/08/02 12:0 a.m.•43 views

libtiff security update

3.9.4-18 - Update patch for CVE-2014-8127 - Related: 1335099 3.9.4-17 - Fix patches for CVE-2016-3990 and CVE-2016-5320 - Related: 1335099 3.9.4-16 - Add patches for CVEs: - CVE-2016-3632 CVE-2016-3945 CVE-2016-3990 - CVE-2016-3991 CVE-2016-5320 - Related: 1335099 3.9.4-15 - Update patch for...

9.3CVSS1.9AI score0.13722EPSS
Exploits5
Oracle linux
Oracle linux
•added 2016/08/02 12:0 a.m.•43 views

libtiff security update

4.0.3-25 - Add patches for CVEs: CVE-2015-7554, CVE-2015-8683, CVE-2015-8665, CVE-2015-8781, CVE-2015-8782, CVE-2015-8783, CVE-2015-8784 - Related: 1299920 4.0.3-24 - Update patches for CVEs: CVE-2014-8127, CVE-2014-8130 - Related: 1299920 4.0.3-23 - Update patches: CVE-2014-9330, CVE-2014-8127,...

7.5CVSS1.7AI score0.13722EPSS
Exploits5
Oracle linux
Oracle linux
•added 2016/08/01 12:0 a.m.•77 views

Unbreakable Enterprise kernel security update

2.6.39-400.283.1 - atl2: Disable unimplemented scatter/gather feature Ben Hutchings Orabug: 23703990 CVE-2016-2117 - mlx4core: add module parameter to disable background init Mukesh Kacker Orabug: 23292107 - NFSv4: Don't decode fslocations if we didn't ask for them... Trond Myklebust Orabug:...

5CVSS1AI score0.06438EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/29 12:0 a.m.•52 views

kernel-uek security update

kernel-uek 4.1.12-37.6.1 - vfs: rename: check backing inode being equal Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - vfs: add vfsselectinode helper Miklos Szeredi Orabug: 24010060 CVE-2016-6198 CVE-2016-6197 - ovl: verify upper dentry before unlink and rename Miklos Szeredi Orabu...

5CVSS0.4AI score0.06438EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/07/29 12:0 a.m.•53 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.9.1 - mlx4: Increase SYNCTPT command timeout Mukesh Kacker Orabug: 22895790 - neigh: do not modify unlinked entries Julian Anastasov Orabug: 23072705 - mm/slab: Improve performance of slabinfo stats gathering Aruna Ramakrishna Orabug: 23720437 - atl2: Disable unimplemented...

5CVSS2AI score0.06438EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/27 12:0 a.m.•54 views

java-1.7.0-openjdk security update

1:1.7.0.111-2.6.7.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.111-2.6.7.1 - Bump to jdk7u111 b01 to fix TCK regressions 7081817 & 8162344 - Resolves: rhbz1350038 1:1.7.0.111-2.6.7.0 - Bump to 2.6.7 and u111b00. - Update SystemTap bundle with fix for...

9.3CVSS1.5AI score0.0669EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/26 12:0 a.m.•32 views

samba security and bug fix update

4.2.10-7 - resolves: 1351960 - Fix CVE-2016-2119 4.2.10-6.3 - resolves: 1350759 - Fix idmaphash when used with other modules - resolves: 1351260 - Fix krb5 encryption type setup during join...

6.8CVSS1.3AI score0.03097EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/26 12:0 a.m.•27 views

samba4 security update

4.2.10-7 - resolves: 1351957 - Fix CVE-2016-2119...

6.8CVSS1.6AI score0.03097EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/20 12:0 a.m.•53 views

java-1.8.0-openjdk security update

1:1.8.0.101-3.b13 - Replace bad 8159244 patch from upstream 8u with fresh backport from OpenJDK 9. - Resolves: rhbz1350034 1:1.8.0.101-2.b13 - Add missing hunk from 8147771, missed due to inclusion of unneeded 8138811 - Resolves: rhbz1350034 1:1.8.0.101-1.b13 - Add workaround for a typo in the...

9.3CVSS0.8AI score0.0669EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/18 12:0 a.m.•65 views

httpd security and bug fix update

2.4.6-40.0.1.4 - replace index.html with Oracle's index page oracleindex.html 2.4.6-40.4 - add security fix for CVE-2016-5387 2.4.6-40.3 - add 451 Unavailable For Legal Reasons response status-code 1353269 2.4.6-40.2 - modcache: treat cache as valid with changed Expires in 304 1347648...

5.1CVSS0.2AI score0.55724EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/18 12:0 a.m.•55 views

httpd security update

2.2.3-92.0.1 - Add the ability to read DH parameters from the first SSLCertificateFile John Haxby orabug 21671194 - fix modssl always performing full renegotiation Joe Jin orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-...

5.1CVSS0.9AI score0.55724EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/12 12:0 a.m.•53 views

kernel security and bug fix update

2.6.32-642.3.1 - infiniband security: Restrict use of the write interface Don Dutile 1332547 1332548 CVE-2016-4565 2.6.32-642.2.1 - sched Revert 'kernel: sched: Cure load average vs NOHZ woes' Rafael Aquini 1343015 1326373 - sched Revert 'kernel: sched: Cure more NOHZ load average woes' Rafael...

7.2CVSS1.1AI score0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/07/11 12:0 a.m.•31 views

thunderbird security update

45.2-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 45.2-1 - Update to 45.2 45.1.1-1 - Update to 45.1.1 45.1.0-5 - Do not add symlinks to some langpacks 45.1.0-4 - Update to 45.1.0 45.0-5 - Update to 45.0...

6.8CVSS1.9AI score0.03888EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/24 12:0 a.m.•111 views

Unbreakable Enterprise kernel security update

kernel-uek 2.6.32-400.37.18uek - IB/security: Restrict use of the write interface Jason Gunthorpe Orabug: 23641666 CVE-2016-4565...

7.2CVSS2.4AI score0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/23 12:0 a.m.•71 views

kernel security and bug fix update

3.10.0-327.22.2.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.22.2 - infiniband security: Restrict use of the write interface Don Dutile 1332553 1316685 CVE-2016-4565 3.10.0-327.22.1 - mm mmunotifier: fix memory corruption Jerome Glisse 1335727 1307042 - misc cxl: Increase timeout...

7.2CVSS7.3AI score0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/23 12:0 a.m.•33 views

setroubleshoot and setroubleshoot-plugins security update

setroubleshoot 3.2.24-4.0.1 - Add setroubleshoot-oracle-enterprise.patch to change bug reporting URL to linux.oracle.com 3.2.24-4 - Catch all subprocess module exceptions 3.2.24-3 - Use subprocess.checkoutput with a sequence of program arguments 3.2.24-2 - Do not use dangerous shell=True...

6.9CVSS6.8AI score0.00475EPSS
Exploits2
Oracle linux
Oracle linux
•added 2016/06/23 12:0 a.m.•25 views

ocaml security update

4.01.0-22.7 - Fix buffer overflow and information leak CVE-2015-8869 resolves: rhbz1343100...

6.4CVSS2.6AI score0.05267EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/23 12:0 a.m.•97 views

libxml2 security update

2.9.1-6.0.1.3 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball libxml2-2.9.1-6.3 - Heap-based buffer overread in xmlNextChar CVE-2016-1762 - Bug 763071: Heap-buffer-overflow in xmlStrncat CVE-2016-1834 - Bug 757711: Heap-buffer-overflow in...

10CVSS0.9AI score0.1398EPSS
Exploits11
Oracle linux
Oracle linux
•added 2016/06/21 12:0 a.m.•60 views

openssl security update

0.9.8e-40.0.2 - CVE-2016-0799 - Fix memory issues in BIOprintf functions - CVE-2016-2105 - Avoid overflow in EVPEncodeUpdate - CVE-2016-2106 - Fix encrypt overflow - CVE-2016-2109 - Harden ASN.1 BIO handling of large amounts of data...

10CVSS2.6AI score0.3965EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/06/21 12:0 a.m.•30 views

setroubleshoot and setroubleshoot-plugins security update

setroubleshoot 3.0.47-12.0.1 - Add setroubleshoot-oracle-enterprise.patch to change bug reporting URL to linux.oracle.com 3.0.47-12 - Don't use command.getoutput Resolves: CVE-2016-4445 setroubleshoot-plugins 3.0.40-3.1.0.1 - Add setroubleshoot-plugins-oracle-enterprise.patch 3.0.40-3.1 - Don't u...

6.9CVSS6.7AI score0.00475EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/06/16 12:0 a.m.•50 views

ImageMagick security update

6.7.2.7-5 - Add fix for CVE-2016-3714, CVE-2016-3715, CVE-2016-3716 and CVE-2016-3717...

10CVSS1.7AI score0.97485EPSS
Exploits14
Oracle linux
Oracle linux
•added 2016/06/15 12:0 a.m.•60 views

openssl-fips security update

1.0.1t-2.0.1 - update to upstream 1.0.1t - Original 1.0.1 test certificates has expired on May 10, 2016. Updated certificatea were copied from 1.0.2h tree [email protected]...

10CVSS1.4AI score0.89058EPSS
Exploits7
Oracle linux
Oracle linux
•added 2016/06/13 12:0 a.m.•59 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.7.1 - megaraidsas : Update threshold based reply post host index register [email protected] Orabug: 23562756 - xen/events: Don't move disabled irqs Ross Lagerwall Orabug: 23055234 - xen/events: Mask a moving irq Boris Ostrovsky Orabug: 23055234 - xen/pciback: Save t...

7.2CVSS0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/13 12:0 a.m.•54 views

Unbreakable Enterprise kernel security update

kernel-uek 4.1.12-37.5.1 - sched/core: Clear the rootdomain cpumasks in initrootdomain Xunlei Pang Orabug: 23520741 - ocfs2: bump up o2cb network protocol version Junxiao Bi Orabug: 23515810 - IB/security: Restrict use of the write interface Jason Gunthorpe Orabug: 23283954 CVE-2016-4565...

7.2CVSS3.5AI score0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/13 12:0 a.m.•63 views

Unbreakable Enterprise kernel security update

2.6.39-400.280.1 - Fix cpu bootup stall with large cpu count Zhenzhong Duan Orabug: 23481040 - megaraidsas : Update threshold based reply post host index register [email protected] Orabug: 23536267 2.6.39-400.279.1 - IPoIB: increase send queue size to 4 times Ajaykumar Hotchandani Orabug...

7.2CVSS8.3AI score0.00483EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/08 12:0 a.m.•41 views

firefox security update

45.2.0-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 45.2.0-1 - Update to 45.2.0 ESR 45.1.1-2 - Added fix for mozbz1270046 - new Samba auth response...

6.8CVSS1.4AI score0.24039EPSS
Exploits7
Oracle linux
Oracle linux
•added 2016/06/06 12:0 a.m.•39 views

spice-server security update

0.12.4-13.1 - Fix heap-based memory corruption within smartcard handling Resolves: CVE-2016-0749 - Fix host memory access from guest with invalid primary surface parameters Resolves: CVE-2016-2150...

10CVSS2.8AI score0.08492EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/06/06 12:0 a.m.•29 views

spice security update

0.12.4-15.1 - Fix heap-based memory corruption within smartcard handling Resolves: CVE-2016-0749 - Fix host memory access from guest with invalid primary surface parameters Resolves: CVE-2016-2150...

10CVSS2.7AI score0.08492EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/05/31 12:0 a.m.•40 views

squid34 security update

7:3.4.14-9.3 - Resolves: 1334499 - CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 squid34: various flaws - Resolves: 1334506 - CVE-2016-4553 squid34: squid: Cache poisoning issue in HTTP Request handling 7:3.4.14-9.2 - Related: 1330574 - CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid34:...

6.8CVSS0.4AI score0.79969EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/05/31 12:0 a.m.•44 views

squid security update

7:3.3.8-26.3 - Related: 1330576 - CVE-2016-4553 squid: Cache poisoning issue in HTTP Request handling - Related: 1334491 - CVE-2016-4554 CVE-2016-4555 CVE-2016-4556 squid: various flaws 7:3.3.8-26.2 - Related: 1330576 - CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: various flaws...

6.8CVSS0.6AI score0.79969EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/05/31 12:0 a.m.•39 views

squid security update

7:3.1.23-16.4 - Related: 1334489 - CVE-2016-4554 CVE-2016-4556 squid: various flaws 7:3.1.23-16.3 - Resolved: 1334489 - CVE-2016-4554 CVE-2016-4556 squid: various flaws - Related: 1330572 - CVE-2016-4051 CVE-2016-4052 CVE-2016-4053 CVE-2016-4054 squid: various flaws 7:3.1.23-16.2 - Related: 13305...

6.8CVSS1.8AI score0.77559EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/05/31 12:0 a.m.•79 views

openssl security update

0.9.8e-40.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...

10CVSS0.9AI score0.77906EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/05/31 12:0 a.m.•48 views

ntp security update

4.2.6p5-10.el68.1 - don't allow spoofed packets to demobilize associations CVE-2015-7979, CVE-2016-1547 - don't allow spoofed packet to enable symmetric interleaved mode CVE-2016-1548 - check mode of new source in config command CVE-2016-2518 - make MAC check resilient against timing attack...

6.4CVSS3.3AI score0.15081EPSS
Exploits6
Total number of security vulnerabilities9185