9185 matches found
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.4.2 - pipe: Fix buffer offset after partially failed read Ben Hutchings Orabug: 22985903 CVE-2016-0774 CVE-2015-1805 CVE-2016-0774...
kernel security, bug fix, and enhancement update
2.6.32-573.22.1 - mm always decrement anonvma degree when the vma list is empty Jerome Marchand 1318364 1309898 2.6.32-573.21.1 - fs pipe: fix offset and len mismatch on pipeiovcopytouser failure Seth Jennings 1310148 1302223 CVE-2016-0774 - fs gfs2: Add missing else in transaddmeta/data Robert S...
krb5 security update
1.10.3-42z1 - Fix CVE-2015-8629 and CVE-2015-8631 - Also fix a spec trigger issue that prevents building - Resolves: 1306973...
tomcat6 security and bug fix update
0:6.0.24-94 - Resolves: rhbz1293289 CVE-2014-7810 tomcat6 security manager bypass via EL expressions 0:6.0.24-93 - Resolves: rhbz1301646 Resolving NIO connector memory leak...
foomatic security update
4.0.4-5 - Also consider back tick and semicolon as illegal shell escape characters. - CVE-2015-8327, CVE-2015-8560 4.0.4-4 - Prevent foomatic-rip overrun bug 1214534...
openssh security update
5.3p1-114 - CVE-2015-5600: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices 1245969 5.3p1-113 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317816...
openssh security update
6.6.1p1-25 + 0.9.3-9 - CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding 1298741 6.6.1p1-24 + 0.9.3-9 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317818...
bind security update
30:9.3.6-25.P1.8 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite 30:9.3.6-25.P1.7 - Fix CVE-2016-1285 and CVE-2016-1286...
bind97 security update
32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286...
kernel security update
kernel 2.6.18-409.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...
thunderbird security update
38.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.7.0-1 - Update to 38.7.0...
samba security update
3.6.23-25.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-25 - resolves: 1314668 - Fix CVE-2015-7560...
samba4 security update
4.0.0-68.rc4 - resolves: 1314670 - Fix CVE-2015-7560...
kernel security update
kernel 2.6.18-409 - fs ext4: limit group search loop for non-extent files Lukas Czerner 1301100 - fb vm: convert fbmmap to vmiomapmemory helper Jacob Tanenbaum 1035240 CVE-2013-2596 - s390 add dummy ioremappfnrange to asm-s390/pgtable.h Jacob Tanenbaum 1035240 CVE-2013-2596 - mm vm: add...
libssh2 security update
1.4.2-2.el67.1 - use secrects of the appropriate length in Diffie-Hellman CVE-2016-0787 1.4.2-2 - fix basic functionality of libssh2 in FIPS mode 968575...
xerces-c security update
3.1.1-8 Resolves: CVE-2016-0729...
firefox security update
38.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.7.0-1 - Update to 38.7.0 ESR...
nss-util security update
3.19.1-5 - Actually apply the fix for CVE-2016-1950 from NSS 3.19.2.3 ... 3.19.1-4 - Rebuild to ensure use of correct NSPR. 3.19.1-3 - Include the fix for CVE-2016-1950 from NSS 3.19.2.3...
openssl098e security update
0.9.8e-20.0.1.1 - Updated the description 0.9.8e-20.1 - fix CVE-2015-0293 - triggerable assert in SSLv2 server - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generic TLS method 0.9.8e-20 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability...
nss security update
3.19.1-4 - Actually apply the fix for CVE-2016-1950 from NSS 3.19.2.3 ... 3.19.1-3 - Include the fix for CVE-2016-1950 from NSS 3.19.2.3...
postgresql security update
9.2.15-1 - update to 9.2.15 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-15.html...
postgresql security update
8.4.20-5 - fix for CVE-2016-0773 rhbz1308598 - fix tests for new libxml2 rhbz1303972...
openssl security update
1.0.1e-42.4 - fix CVE-2016-0702 - side channel attack on modular exponentiation - fix CVE-2016-0705 - double-free in DSA private key parsing - fix CVE-2016-0797 - heap corruption in BNhex2bn and BNdec2bn 1.0.1e-42.3 - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generi...
openssl security update
0.9.8e-39.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...
openssl security update
1.0.1e-51.4 - fix CVE-2016-0702 - side channel attack on modular exponentiation - fix CVE-2016-0705 - double-free in DSA private key parsing - fix CVE-2016-0797 - heap corruption in BNhex2bn and BNdec2bn 1.0.1e-51.3 - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generi...
openssh security update
4.3p2-82.0.1 - change default value of MaxStartups - CVE-2010-5107 John Haxby orabug 22766491...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-118.3.2 - x86/nmi/64: Use DF to avoid userspace RSP confusing nested NMI detection Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Reorder nested NMI checks Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Improve nested NMI comments Andy Lutomirski...
thunderbird security update
38.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.6.0-1 - Update to 38.6.0...
389-ds-base security and bug fix update
1.3.4.0-26 - release 1.3.4.0-26 - Resolves: bug 1299346 - deadlock on connection mutex DS 48341 1.3.4.0-25 - release 1.3.4.0-25 - Resolves: bug 1299757 - CVE-2016-0741 389-ds-base: Worker threads do not detect abnormally closed connections causing DoS 1.3.4.0-24 - release 1.3.4.0-24 - Resolves: b...
firefox security update
38.6.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 38.6.1-1 - Update to 38.6.1 ESR...
glibc security and bug fix update
2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...
sos security and bug fix update
3.2-35.0.1.3 - Recreated patch for orabug 18913115 - Make the selinux plugin fixfiles option useful John Haxby orabug 18913115 - Added removegpgstring.patch Bug 18313898 - Added sos-oracle-enterprise.patch - Added sos-oraclelinux-vendor-vendorurl.patch = 3.2-37 - sosreport prepare report in a...
glibc security and bug fix update
2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...
glibc security update
2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...
polkit security update
0.112-6 - Fix CVE-2015-3256 Resolves: 1271790...
glibc security update
2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...
kernel security and bug fix update
3.10.0-327.10.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.10.1 - of return NUMANONODE from fallback ofnodetonid Thadeu Lima de Souza Cascardo 1300614 1294398 - net openvswitch: do not allocate memory from offline numa node Thadeu Lima de Souza Cascardo 1300614 1294398...
sos security and bug fix update
3.2-28.0.1.2 - Add vendor, vendor URL info for Oracle Linux orabug 17656507 [email protected] - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 [email protected] - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 [email protected] -...
php54-php security update
5.4.40-3 - fix more functions accept paths with NUL character 1213407 5.4.40-2 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026 - ftp: fix integer overflow leading to he...
httpd24-httpd security and bug fix update
2.4.6-22.0.1.el6 - remove enable-tlsv1x-thunks to fit openssl 1.x api - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.4.6-22 - Remove modproxyfcgi fix for heap-based buffer overflow, httpd-2.4.6 is not affected CVE-2014-3583 2.4.6-21 - modproxywstunne...
php55-php security update
5.5.21-4 - fix more functions accept paths with NUL character 1213407 5.5.21-3 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026, 1213407 - fileinfo: fix denial of servic...
httpd24-httpd security update
2.4.12-6.0.1.el7.1 - replace index.html with Oracles index page oracleindex.html - update vstring in specfile 2.4.12-6.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185 - core: fix pointer...
ruby193-ruby security update
1.9.3.484-50.0.1 - fix build issue: self test report 'dh key to small' 1.9.3.484-50 - Fix off-by-one stack-based buffer overflow in the encodes function CVE-2014-4975. Related: rhbz1164004 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Related: rhbz1164004 - REXML...
git19-git security update
1.9.4-3.1 - fix arbitrary code execution via crafted URLs Resolves: 1273889 1.9.4-3 - fix CVE-2014-9390 Resolves: rhbz1220552...
php54 security and bug fix update
php54 2.0-1 - fix incorrect selinux contexts 1194332 php54-php 5.4.40-1 - rebase to PHP 5.4.40 for various security fix 1209887 5.4.37-1 - rebase to PHP 5.4.37 5.4.36-1 - rebase to PHP 5.4.36 1168193 - fix package name in description - php-fpm own session dir php54-php-pecl-zendopcache 7.0.4-3 -...
php55 security and bug fix update
php55 2.0-1 - fix incorrect selinux contexts 1194336 php55-php 5.5.21-2.0.1 - add dtrace-utils as build dependency 5.5.21-2 - core: fix use-after-free vulnerability in the processnesteddata function unserialize CVE-2015-2787 - core: fix NUL byte injection in file name argument of moveuploadedfile...
python27 security, bug fix, and enhancement update
python27 1.1-17 - Require python-pip and python-wheel note: in rh-python34 this is not necessary, because 'python' depends on these. python27-python 2.7.8-3 - Add httplib fix for CVE-2013-1752 Resolves: rhbz1187779 2.7.8-2 - Fix %check unset DISPLAY setion not failing properly on failed test -...
qemu-kvm security and bug fix update
1.5.3-105.el72.3 - kvm-fwcfg-add-check-to-validate-current-entry-value-CVE.patch bz1298047 - Resolves: bz1298047 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-7.2.z 1.5.3-105.el72.2 - kvm-raw-posix-Fix-.bdrvcogetblockstatus-for-unaligne.patch...
qemu-kvm security update
0.12.1.2-2.479.el67.4 - kvm-fwcfg-add-check-to-validate-current-entry-value-CVE.patch bz1298045 - Resolves: bz1298045 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-6.7.z...
bind security update
30:9.3.6-25.P1.6 - Fix CVE-2015-8704...