8998 matches found
sssd security and bug fix update
1.12.4-47.4 - Resolves: rhbz1268783 - Memory leak / possible DoS with krb auth. 1.12.4-47.3 - Resolves: rhbz1268784 - SSSD POSIX attribute check is too strict 1.12.4-47.2 - Resolves: rhbz1264098 - cleanupgroups should sanitize dn of groups 1.12.4-47.1 - Resolves: rhbz1258398 - sysdb sudo search...
Unbreakable Enterprise kernel security update
2.6.39-400.264.5 - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145599 CVE-2015-5156...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.12uek - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145596 CVE-2015-5156...
firefox security update
38.4.0-1.0.1.el511 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 38.4.0-1 - Update to 38.4.0 ESR...
nss, nss-util, and nspr security update
nspr 4.10.8-2 - Resolves: Bug 1269360 - CVE-2015-7183 - nspr: heap-buffer overflow in PLARENAALLOCATE can lead to crash under ASAN, potential memory corruption nss 3.19.1-5.0.1 - Added nss-vendor.patch to change vendor 3.19.1-5 - Rebuild against updated NSPR 3.19.1-4 - Sync up with the rhel-6.6...
nss and nspr security update
nspr 4.10.8-2 - Resolves: Bug 1269359 - CVE-2015-7183 - nspr: heap-buffer overflow in PLARENAALLOCATE can lead to crash under ASAN, potential memory corruption rhel-5.11.z nss 3.19.1-2 - Resolves: Bug 1269354 - CVE-2015-7182 CVE-2015-7181...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.5.2 - virtio-net: drop NETIFFFRAGLIST Jason Wang Orabug: 22145600 CVE-2015-5156 3.8.13-98.5.1 - netdev: fix NETIFFGSOUDPTUNNELBIT enum shift in i40e driver import Todd Vierling Orabug: 22066176...
libreswan security and enhancement update
3.15-5.0.1 - add libreswan-oracle.patch to detect Oracle Linux distro 3.15-5 - Resolves: rhbz1273719 libreswan FIPS test mistakenly looks for non-existent file hashes 3.15-4 - Resolves: rhbz1268775 libreswan should support strictcrlpolicy alias - Resolves: rhbz1268776 Pluto crashes after stop whe...
kernel security, bug fix, and enhancement update
3.10.0-229.20.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.20.1 - Revert: crypto nx - Check for bogus firmware properties Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving NX-AES-CBC to be processed logic Phillip Lougher 1247127 1190103 - Revert: crypto nx - Moving...
qemu-kvm security update
1.5.3-86.el71.8 - kvm-qtest-ide-test-disable-flush-test.patch bz1273098 - Resolves: bz1273098 qemu-kvm build failure race condition in tests/ide-test 1.5.3-86.el71.7 - kvm-CVE-2015-1779-incrementally-decode-websocket-frames.patch bz1205050 -...
ntp security update
4.2.6p5-5.el67.2 - check origin timestamp before accepting KoD RATE packet CVE-2015-7704 - allow only one step larger than panic threshold with -g CVE-2015-5300...
qemu-kvm security update
0.12.1.2-2.479.el67.2 - kvm-net-add-checks-to-validate-ring-buffer-pointers-CVE-.patch bz1263274 - Resolves: bz1263274 CVE-2015-5279 qemu-kvm: qemu: Heap overflow vulnerability in ne2000receive function rhel-6.7.z...
kvm security update
kvm-83-274.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83.274.el5 - net-add-checks-to-validate-ring-buffer-pointers.patch bz1263272 - Resolves: bz1263272 CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000receive...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.91-2.6.2.1 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271918 1:1.7.0.91-2.6.2.0 - Drop patch for PR2521/RH1242587 now resolved upstream. - Resolves:...
java-1.8.0-openjdk security update
1:1.8.0.65-0.b17 - October 2015 security update to u65b17. - Add script for generating OpenJDK tarballs from a local Mercurial tree. - Update RH1191652 patch to build against current AArch64 tree. - Use appropriate source ID to avoid unpacking both tarballs on AArch64. - Fix library removal scrip...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.2.0.1 - Update DISTRONAME in specfile 1:1.7.0.91-2.6.2.2 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271919 1:1.7.0.91-2.6.2.1 - Bump to 2.6.2 and u91b00. - Resolves: rhbz1271919...
libwmf security update
0.2.8.4-25 - Resolves: rhbz1227428 - CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 0.2.8.4-24 - Resolves: rhbz1227429 CVE-2015-0848 libwmf: heap overflow when decoding BMP images...
lxc security update
1.0.7-2.0.12 - Orabug 22011867 ol6 ct shutdown script remounts /dev/pts/ devices as ro on host system. 1.0.7-2.0.11 - Orabug 21842483 failed to create directory '/RUN/LXC/LOCK//CONTAINER/OL7.1/SNAPS' - CVE-2015-1335: Protect container mounts against symlinks. - Fixed build failure on OL6...
docker-engine security update
1.8.3-1.0.1 - Enable configuration of Docker daemon via sysconfig orabug 21804877 - Add documentation files to binary RPM 1.8.3 - Fix layer IDs lead to local graph poisoning CVE-2014-8178 - Fix manifest validation and parsing logic errors allow pull-by-digest validation bypass CVE-2014-8179 - Add...
spice security update
0.12.4-9.3 - CVE-2015-5260 CVE-2015-5261 fixed various security flaws Resolves: rhbz1262771 0.12.4-9.2 - Validate surfaceid Resolves: rhbz1262771...
spice-server security update
0.12.4-12.3 - CVE-2015-5260 CVE-2015-5261 fixed various security flaws Resolves: rhbz1262769 0.12.4-12.2 - Validate surfaceid Resolves: rhbz1262769...
thunderbird security update
38.3.0-1.0.1.el67 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.3.0-1 - Update to 38.3.0...
openldap security update
2.3.43-29 - CVE-2015-6908 openldap: bergetnext denial of service vulnerability 1263170...
firefox security update
38.3.0-2.0.1.el67 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.3.0-2 - Update to 38.3.0 ESR...
qemu-kvm security update
0.12.1.2-2.479.el67.1 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch bz1248761 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch bz1248761 - kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch bz1248761 -...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.2.2 - sctp: fix ASCONF list handling Marcelo Ricardo Leitner Orabug: 21842668 CVE-2015-3212 - KEYS: ensure we free the assoc array edit if edit is valid Colin Ian King Orabug: 21842655 CVE-2015-1333...
qemu-kvm security fix update
1.5.3-86.el71.6 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch bz1248764 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch bz1248764 - kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch bz1248764 -...
kernel security and bug fix update
3.10.0-229.14.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.14.1 - s390 zcrypt: Fixed reset and interrupt handling of AP queues Hendrik Brueckner 1248381 1238230 3.10.0-229.13.1 - dma ioat: fix tasklet tear down Herton R. Krzesinski 1251523 1210093 - drm radeon: Fix VGA switcheroo...
haproxy security update
1.5.4-4.1 - Fix bufferslowrealign function to respect output data CVE-2015-3281, 1241537...
subversion security update
1.7.14-7.1 - add security fixes for CVE-2015-0248, CVE-2015-0251, CVE-2015-3184, CVE-2015-3187...
libXfont security update
1.4.5-5 - CVE-2015-1802: missing range check in bdfReadProperties bug 1258892 - CVE-2015-1803: crash on invalid read in bdfReadCharacters bug 1258892 - CVE-2015-1804: out-of-bounds memory access in bdfReadCharacters bug 1258892...
bind security update
32:9.8.2-0.37.rc1.4 - Apply previously not applied patch for CVE-2015-5722 32:9.8.2-0.37.rc1.3 - Fix CVE-2015-5722...
spice-server security update
0.12.4-12.1 - Avoid race conditions reading monitor configs from guest. This race could trigger memory corruption host-side Resolves: rhbz1239124...
bind security update
30:9.3.6-25.P1.4 - Fix CVE-2015-5722 30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
bind97 security update
32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
spice security update
0.12.4-9.1 - Avoid race conditions reading monitor configs from guest. This race could trigger memory corruption host-side Resolves: rhbz1239127...
nss-softokn security update
3.14.3-23 - Pick up upstream freebl patch for CVE-2015-2730 - Check for P == Q or P ==-Q before adding P and Q...
jakarta-taglibs-standard security update
0:1.1.1-11.7 - Gracefully handle parsers without FSP support e.g. Java 5 GCJ - Resolves: CVE-2015-0254 0:1.1.1-11.6 - Prevent XXE and RCE in JSTL XML tags - Apply correction for previous CVE-2015-0254 patch prevent XXE in - Resolves: CVE-2015-0254 0:1.1.1-11.5 - Prevent XXE and RCE in JSTL XML ta...
gdk-pixbuf2 security update
2.24.1-6 - Fix CVE 2015-4491 - Resolves 1253210...
firefox security update
38.2.1-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 38.2.1-1 - Update to 38.2.1 ESR...
thunderbird security update
38.2.0-4.0.1.el67 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.2.0-4 - Update to 38.2.0 38.1.0-4 - Update to 38.1.0...
nss security, bug fix, and enhancement update
3.19.1-1 - Rebase nss to 3.19.1 - Pick up upstream fix for client auth. regression caused by 3.19.1 - Revert upstream change to minimum key sizes - Remove patches that rendered obsolote by the rebase - Update existing patches on account of the rebase 3.18.0-7 - Pick up upstream patch from...
mariadb security update
1:5.5.44-1 - Rebase to 5.5.44 Resolves: 1247021...
httpd security update
2.2.15-47.0.1 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-47 - fix regressions caused by fix for CVE-2015-3183 2.2.15-46 - core: fix chunk header parsing defect CVE-2015-3183...
httpd security update
2.4.6-31.0.1.el71.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185...
pam security update
1.1.1-20.1 - fix CVE-2015-3238 - DoS due to blocking pipe with very long password...
net-snmp security update
1:5.5-54.0.1.el67.1 - Add Oracle ACFS to hrStorage John Haxby orabug 18510373 1:5.5-54.el67.1 - Fixed parsing of invalid variables in incoming packets 1248410...
glibc security update
2.5-123.0.1.el511.3 - Switch to use malloc when the input line is too long Orabug 19951108 Jason Luan - Use a /sys/devices/system/cpu/online for SCNPROCESSORSONLN implementation Orabug 17642251 Joe Jin 2.5-123.3 - Fix invalid-free when using getaddrinfo and AIIDN CVE-2013-7424, 2.5-123.1 - Fix...
mysql55-mysql security update
5.5.45-1 - Rebase to 5.5.45 Includes fixes for: CVE-2014-6568 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0501 CVE-2015-2568 CVE-2015-0499 CVE-2015-2571 CVE-2015-0433 CVE-2015-0441 CVE-2015-0505 CVE-2015-2573 CVE-2015-2582 CVE-2015-2620 CVE-2015-26...
sqlite security update
3.7.17-6.1 - Fixes for CVE-2015-3415 CVE-2015-3414 CVE-2015-3416 Resolves: rhbz1244731 3.7.17-6 - Release bump for ppc64le 3.7.17-5 - Release bump 3.7.17-4.1 - Backport 64k page fix from latest upstream 1118151...