8998 matches found
subversion security update
1.6.11-15 - add security fixes for CVE-2015-0248, CVE-2015-0251, CVE-2015-3187...
sqlite security update
3.6.20-1.2 - Add patch for compiler warnings highlighted by rpmdiff. Related: rhbz1244727 3.6.20-1.el67.1 - fix for CVE-2015-3416 Resolves: 1244727...
Unbreakable Enterprise kernel security update
2.6.39-400.250.11 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628851 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.11uek - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628852 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.1.2 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628850 CVE-2015-5364 CVE-2015-5366...
kernel security and bug fix update
2.6.32-573.3.1 - md Revert 'dm: don't schedule delayed run of the queue if nothing to do' Mike Snitzer 1246095 1240767 - md Revert 'dm: only run the queue on completion if congested or no requests pending' Mike Snitzer 1246095 1240767 2.6.32-573.2.1 - net udp: fix behavior of wrong checksums Deny...
firefox security update
38.2.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.2.0-4 - Update to 38.2.0 ESR...
firefox security update
38.1.1-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 38.1.1-1 - Update to 38.1.1 ESR...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563043 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562781 CVE-2014-9715...
Unbreakable Enterprise kernel security update
2.6.39-400.250.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563042 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562780 CVE-2014-9715...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.1.1 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563041 CVE-2015-5697...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.9uek - x86, tls: Interpret an all-zero struct userdesc as 'no segment' Andy Lutomirski Orabug: 21518750 - x86, tls, ldt: Stop checking lm in LDTempty Andy Lutomirski Orabug: 21518750 2.6.32-400.37.8uek - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502741...
lxc security update
1.0.7-2.0.7 - Orabug 21533491 CVE-2015-1334: Don't use the container's /proc during attach 1.0.7-2.0.6 - Orabug 21526922 CVE-2015-1331: LXCLOCK: USE /RUN/LXC/LOCK RATHER THAN /RUN/LOCK/LXC...
java-1.6.0-openjdk security update
1:1.6.0.36-1.13.8.1 - Update tarball to fix TCK regression PR2565 - Resolves: rhbz1235153 1:1.6.0.36-1.13.8.0 - Update to IcedTea 1.13.8 - Update nopr2125.patch to work against new version. - Resolves: rhbz1235153...
Unbreakable Enterprise kernel security update
2.6.39-400.250.9 - x86, tls: Interpret an all-zero struct userdesc as 'no segment' Andy Lutomirski Orabug: 21514969 - x86, tls, ldt: Stop checking lm in LDTempty Andy Lutomirski Orabug: 21514969 2.6.39-400.250.8 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502740 CVE-2015-0239...
Unbreakable Enterprise kernel security , bug fix and enhancement update
kernel-uek 3.8.13-98 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502729 CVE-2015-0239 CVE-2015-0239 - fs: take imutex during preparebinprm for setugid executables Jann Horn Orabug: 21502159 CVE-2015-3339 3.8.13-97 - add ql2400, ql2500 firmware versions to prerequisites Dan Duval...
bind security update
30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
libxml2 security and bug fix update
2.7.6-20.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball libxml2-2.7.6-20.el6 - CVE-2015-1819 Enforce the reader to run in constant memoryrhbz1214163 libxml2-2.7.6-19.el6 - Stop parsing on entities boundaries errors - Fix missing entiti...
libuser security update
0.56.13-8 - Update CVE-2015-3246 patch based on review comments Resolves: 1235518 0.56.13-7 - Dont use 512-bit RSA private keys in tests Related: 1235518 - Fix testsuite failures if more than one architecture is building concurrently Related: 1235518 0.56.13-6 - Fix CVE-2015-3246 Resolves: 123551...
bind security update
32:9.8.2-0.37.rc1.1 - Fix CVE-2015-4620...
bind security update
32:9.8.2-0.37.rc1.2 - Fix CVE-2015-5477...
bind97 security update
32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.3.5 - KVM: x86: SYSENTER emulation is broken Nadav Amit Orabug: 21502739 CVE-2015-0239 CVE-2015-0239 - fs: take imutex during preparebinprm for setugid executables Jann Horn Orabug: 21502254 CVE-2015-3339 - eCryptfs: Remove buggy and unnecessary write in file name decode...
net-snmp security and bug fix update
1:5.5-54.0.1 - Add Oracle ACFS to hrStorage John Haxby orabug 18510373 1:5.5-54 - Quicker loading of IP-MIB::ipAddrTable 1191393 1:5.5-53 - Quicker loading of IP-MIB::ipAddressTable 1191393 1:5.5-52 - Fixed snmptrapd crash when '-OQ' parameter is used and invalid trap is received CVE-2014-3565...
autofs security and bug fix update
5.0.5-113.0.1 - add autofs-5.0.5-lookup-mounts.patch Orabug:12658280 Bert Barbe use tcp instead of udp 5.0.5-113 - bz1201195 - autofs: MAPFMTDEFAULT is not macro in lookupprogram.c - fix macro usage in lookupprogram.c. - Resolves: rhbz1201195 5.0.5-112 - bz1124083 - Autofs stopped mounting...
gnutls security and bug fix update
2.8.5-18 - fix CVE-2015-0282 1198159 - fix CVE-2015-0294 1198159 2.8.5-17 - Corrected value initialization in mpi printing 1129241 2.8.5-16 - Check for expiry information in the CA certificates 1159778 2.8.5-15 - fix issue with integer padding in certificates and keys 1036385...
wpa_supplicant security and enhancement update
1:0.7.3-6 - AP WMM: Fix integer underflow in WMM Action frame parser rh 1221178 rh 1226396 1:0.7.3-5 - Add domainmatch config option from upstream rh 1186806 rh 1178263 - Include peer certificate in EAP events for use by clients - Add dbus signal for information about server certification -...
kernel security, bug fix, and enhancement update
2.6.32-573 - security selinux: dont waste ebitmap space when importing NetLabel categories Paul Moore 1130197 - x86 Revert Add driver auto probing for x86 features v4 Prarit Bhargava 1231280 - net bridge: netfilter: dont call iptables on vlan packets if sysctl is off Florian Westphal 1236551 - ne...
ipa security and bug fix update
3.0.0-47.el6 - Resolves: 1220788 - Some IPA schema files are not RFC 4512 compliant 3.0.0-46.el6 - Use tls version range in NSSHTTPS initialization - Resolves: 1154687 - POODLE: force using safe ciphers non-SSLv3 in IPA client and server - Resolves: 1012224 - host certificate not issued to client...
sudo security, bug fix, and enhancement update
1.8.6p3-19 - RHEL-6.7 erratum - modified the authlogicfix patch to fix 1144448 - fixed a bug in the ldapusermatchfix patch Resolves: rhbz1144448 Resolves: rhbz1142122 1.8.6p3-18 - RHEL-6.7 erratum - fixed the mantypos-ldap.patch Resolves: rhbz1138267 1.8.6p3-17 - RHEL-6.7 erratum - added patch fo...
wireshark security, bug fix, and enhancement update
1.8.10-17.0.2 - Fix ocfs2 dissector John Haxby orabug 21505640 1.8.10-17.0.1.el6 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.8.10-17 - security patches - Resolves: CVE-2015-2189 CVE-2015-2191 1.8.10-16 - security patches - Resolves: CVE-2014-8710 CVE-2014-8711...
pki-core security and bug fix update
9.0.3-43 - Resolves 1225589 - unable to create rhel 7.1 replica from rhel 6 replica CA because subsystem user does not exist 9.0.3-42 - Resolves 1221900 - pki-core: cross-site scripting flaw in the dogtag administration page port 9180, port 9444 rhel-6.7 9.0.3-41 - Resolves 1212557 -...
hivex security and bug fix update
1.3.3-4.3 - Add missing checks for small/truncated files resolves: rhbz1158993 - Fix typo in man page Win::Hivex.3.pm resolves: rhbz1164693...
libreoffice security, bug fix, and enhancement update
1:4.2.8.2-11.0.1 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile [email protected] - Build with --with-vendor='Oracle America, Inc.' [email protected] 1:4.2.8.2-11 - Resolves: rhbz1223696 some labels in print dialog are not translated...
python security, bug fix, and enhancement update
2.6.6-64.0.1 - Add Oracle Linux distribution in platform.py orabug 21288328 Keshav Sharma 2.6.6-64 - Enable use of deepcopy with instance methods Resolves: rhbz1223037 2.6.6-63 - Since -libs now provide python-ordered dict, added ordereddict dist-info to site-packages Resolves: rhbz1199997 2.6.6-...
httpd security, bug fix, and enhancement update
2.2.15-45.0.1 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-45 - modproxybalancer: add support for 'drain mode' N 767130 2.2.15-44 - set SSLCipherSuite to DEFAULT:!EXP:!SSLv2:!DES:!IDEA:!SEED:+3DES 1086771 2.2.15-43 - revert DirectoryMatch patc...
freeradius security, bug fix, and enhancement update
2.2.6-4 - Move OpenSSL init out of version check Resolves: Bug1189394 radiusd segfaults after update - Comment-out ippool-dhcp.conf inclusion Resolves: Bug1189386 radiusd fails to start after 'clean' installation 2.2.6-3 - Disable OpenSSL version check Resolves: Bug1189011 2.2.6-2 - Fix a number ...
curl security, bug fix, and enhancement update
7.19.7-46 - require credentials to match for NTLM re-use CVE-2015-3143 - close Negotiate connections when done CVE-2015-3148 7.19.7-45 - reject CRLFs in URLs passed to proxy CVE-2014-8150 7.19.7-44 - use only full matches for hosts used as IP address in cookies CVE-2014-3613 - fix handling of...
grep security, bug fix, and enhancement update
2.20-3 - Updated pcre buildrequires to require pcre-devel = 7.8-7 Related: rhbz1193030 2.20-2 - Fixed invalid UTF-8 byte sequence error in PCRE mode by pcre-backported-fixes patch Resolves: rhbz1193030 - Fixed buffer overrun for grep -F Resolves: CVE-2015-1345 - Fixed bogus date in the changelog...
mailman security and bug fix update
3:2.1.12-25 - fix CVE-2002-0389 - local users able to read private mailing list archives 3:2.1.12-24 - fix CVE-2015-2775 - directory traversal in MTA transports 3:2.1.12-23 - fix 1095359 - handle update when some mailing lists have been created by newer Mailman than this one 3:2.1.12-22 - fix...
ntp security, bug fix, and enhancement update
4.2.6p5-5 - reject packets without MAC when authentication is enabled CVE-2015-1798 - protect symmetric associations with symmetric key against DoS attack CVE-2015-1799 - fix generation of MD5 keys with ntp-keygen on big-endian systems CVE-2015-3405 - log when stepping clock for leap second or...
clutter security update
1.14.4-12.1 - Fix crash when doing gestures at unlock screen Resolves: rhbz1227103...
qemu-kvm security and bug fix update
1.5.3-86.el71.5 - kvm-i8254-fix-out-of-bounds-memory-access-in-pitioport.patch bz1243726 - Resolves: bz1243726 CVE-2015-3214 qemu-kvm: qemu: i8254: out-of-bounds memory access in pitioportread function rhel-7.1.z 1.5.3-86.el71.4 - kvm-ide-Check-array-bounds-before-writing-to-iobuffer-C.patch...
libuser security update
0.60-7 - Update CVE-2015-3246 patch based on review comments Resolves: 1235519 0.60-6 - Fix CVE-2015-3246 Resolves: 1235519...
thunderbird security update
31.8.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 31.8.0-1 - Update to 31.8.0...
bind security update
32:9.9.4-18.2 - Fix CVE-2015-4620...
Unbreakable Enterprise kernel security update
2.6.39-400.250.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444791 CVE-2015-2922 - ipv4: Missing sknullsnodeinit in pingunhash. David S. Miller Orabug: 21444688 CVE-2015-3636...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.7 - ipv6: Don't reduce hop limit for an interface D.S. Ljungmark Orabug: 21444792 CVE-2015-2922...
java-1.7.0-openjdk security update
1:1.7.0.85-2.6.1.3.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.85-2.6.1.3 - Check return value of gioinit in gsettingsinit and return false if necessary. - Re-enable the use of system GConf. - Only ifdef gtypeinit&gfree if USESYSTEMGIO and USESYSTEMGCONF are...