Lucene search
K
OraclelinuxRecent

9185 matches found

Oracle linux
Oracle linux
•added 2016/03/23 12:0 a.m.•73 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.4.2 - pipe: Fix buffer offset after partially failed read Ben Hutchings Orabug: 22985903 CVE-2016-0774 CVE-2015-1805 CVE-2016-0774...

7.2CVSS1.5AI score0.01407EPSS
Exploits3
Oracle linux
Oracle linux
•added 2016/03/22 12:0 a.m.•53 views

kernel security, bug fix, and enhancement update

2.6.32-573.22.1 - mm always decrement anonvma degree when the vma list is empty Jerome Marchand 1318364 1309898 2.6.32-573.21.1 - fs pipe: fix offset and len mismatch on pipeiovcopytouser failure Seth Jennings 1310148 1302223 CVE-2016-0774 - fs gfs2: Add missing else in transaddmeta/data Robert S...

5.6CVSS0.2AI score0.00337EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/22 12:0 a.m.•41 views

krb5 security update

1.10.3-42z1 - Fix CVE-2015-8629 and CVE-2015-8631 - Also fix a spec trigger issue that prevents building - Resolves: 1306973...

4CVSS1.8AI score0.04643EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/22 12:0 a.m.•38 views

tomcat6 security and bug fix update

0:6.0.24-94 - Resolves: rhbz1293289 CVE-2014-7810 tomcat6 security manager bypass via EL expressions 0:6.0.24-93 - Resolves: rhbz1301646 Resolving NIO connector memory leak...

5CVSS2.6AI score0.13872EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/22 12:0 a.m.•45 views

foomatic security update

4.0.4-5 - Also consider back tick and semicolon as illegal shell escape characters. - CVE-2015-8327, CVE-2015-8560 4.0.4-4 - Prevent foomatic-rip overrun bug 1214534...

7.5CVSS2.7AI score0.10171EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/21 12:0 a.m.•124 views

openssh security update

5.3p1-114 - CVE-2015-5600: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices 1245969 5.3p1-113 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317816...

8.5CVSS3.6AI score0.37016EPSS
Exploits14
Oracle linux
Oracle linux
•added 2016/03/21 12:0 a.m.•63 views

openssh security update

6.6.1p1-25 + 0.9.3-9 - CVE-2016-1908: possible fallback from untrusted to trusted X11 forwarding 1298741 6.6.1p1-24 + 0.9.3-9 - CVE-2016-3115: missing sanitisation of input for X11 forwarding 1317818...

7.5CVSS1.9AI score0.37016EPSS
Exploits13
Oracle linux
Oracle linux
•added 2016/03/16 12:0 a.m.•41 views

bind security update

30:9.3.6-25.P1.8 - Fix issue with patch for CVE-2016-1285 and CVE-2016-1286 found by test suite 30:9.3.6-25.P1.7 - Fix CVE-2016-1285 and CVE-2016-1286...

5CVSS1.3AI score0.621EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/16 12:0 a.m.•54 views

bind97 security update

32:9.7.0-21.P2.6 - Fix CVE-2016-1285 and CVE-2016-1286...

5CVSS1.4AI score0.621EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/16 12:0 a.m.•91 views

kernel security update

kernel 2.6.18-409.0.0.0.1 - netfront fix ring buffer index go back led vif stop orabug 18272251 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add...

7.2CVSS0.1AI score0.03373EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/03/16 12:0 a.m.•60 views

thunderbird security update

38.7.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.7.0-1 - Update to 38.7.0...

9.3CVSS2AI score0.31046EPSS
Exploits9
Oracle linux
Oracle linux
•added 2016/03/15 12:0 a.m.•39 views

samba security update

3.6.23-25.0.1 - Remove use-after-free talloctos inlined function problem John Haxby orabug 18253258 3.6.23-25 - resolves: 1314668 - Fix CVE-2015-7560...

4CVSS1.7AI score0.12938EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/15 12:0 a.m.•46 views

samba4 security update

4.0.0-68.rc4 - resolves: 1314670 - Fix CVE-2015-7560...

4CVSS1.6AI score0.12938EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/15 12:0 a.m.•51 views

kernel security update

kernel 2.6.18-409 - fs ext4: limit group search loop for non-extent files Lukas Czerner 1301100 - fb vm: convert fbmmap to vmiomapmemory helper Jacob Tanenbaum 1035240 CVE-2013-2596 - s390 add dummy ioremappfnrange to asm-s390/pgtable.h Jacob Tanenbaum 1035240 CVE-2013-2596 - mm vm: add...

7.2CVSS0.8AI score0.03373EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/03/10 12:0 a.m.•35 views

libssh2 security update

1.4.2-2.el67.1 - use secrects of the appropriate length in Diffie-Hellman CVE-2016-0787 1.4.2-2 - fix basic functionality of libssh2 in FIPS mode 968575...

4.3CVSS1.5AI score0.02697EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/10 12:0 a.m.•40 views

xerces-c security update

3.1.1-8 Resolves: CVE-2016-0729...

7.5CVSS1.6AI score0.09115EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/09 12:0 a.m.•97 views

firefox security update

38.7.0-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.7.0-1 - Update to 38.7.0 ESR...

10CVSS1.5AI score0.31046EPSS
Exploits9
Oracle linux
Oracle linux
•added 2016/03/09 12:0 a.m.•41 views

nss-util security update

3.19.1-5 - Actually apply the fix for CVE-2016-1950 from NSS 3.19.2.3 ... 3.19.1-4 - Rebuild to ensure use of correct NSPR. 3.19.1-3 - Include the fix for CVE-2016-1950 from NSS 3.19.2.3...

6.8CVSS1.4AI score0.04192EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/09 12:0 a.m.•108 views

openssl098e security update

0.9.8e-20.0.1.1 - Updated the description 0.9.8e-20.1 - fix CVE-2015-0293 - triggerable assert in SSLv2 server - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generic TLS method 0.9.8e-20 - fix for CVE-2014-0224 - SSL/TLS MITM vulnerability...

5.8CVSS1.8AI score0.95326EPSS
Exploits11
Oracle linux
Oracle linux
•added 2016/03/09 12:0 a.m.•60 views

nss security update

3.19.1-4 - Actually apply the fix for CVE-2016-1950 from NSS 3.19.2.3 ... 3.19.1-3 - Include the fix for CVE-2016-1950 from NSS 3.19.2.3...

6.8CVSS1.8AI score0.04192EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/02 12:0 a.m.•37 views

postgresql security update

9.2.15-1 - update to 9.2.15 per release notes http://www.postgresql.org/docs/9.2/static/release-9-2-15.html...

5CVSS0.06948EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/02 12:0 a.m.•50 views

postgresql security update

8.4.20-5 - fix for CVE-2016-0773 rhbz1308598 - fix tests for new libxml2 rhbz1303972...

5CVSS1AI score0.06948EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/03/01 12:0 a.m.•72 views

openssl security update

1.0.1e-42.4 - fix CVE-2016-0702 - side channel attack on modular exponentiation - fix CVE-2016-0705 - double-free in DSA private key parsing - fix CVE-2016-0797 - heap corruption in BNhex2bn and BNdec2bn 1.0.1e-42.3 - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generi...

10CVSS3.1AI score0.82112EPSS
Exploits2
Oracle linux
Oracle linux
•added 2016/03/01 12:0 a.m.•68 views

openssl security update

0.9.8e-39.0.1 - To disable SSLv2 client connections create the file /etc/sysconfig/openssl-ssl-client-kill-sslv2 John Haxby orabug 21673934 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix...

5CVSS0.6AI score0.82112EPSS
Exploits2
Oracle linux
Oracle linux
•added 2016/03/01 12:0 a.m.•67 views

openssl security update

1.0.1e-51.4 - fix CVE-2016-0702 - side channel attack on modular exponentiation - fix CVE-2016-0705 - double-free in DSA private key parsing - fix CVE-2016-0797 - heap corruption in BNhex2bn and BNdec2bn 1.0.1e-51.3 - fix CVE-2015-3197 - SSLv2 ciphersuite enforcement - disable SSLv2 in the generi...

10CVSS1.8AI score0.44016EPSS
Exploits2
Oracle linux
Oracle linux
•added 2016/02/24 12:0 a.m.•56 views

openssh security update

4.3p2-82.0.1 - change default value of MaxStartups - CVE-2010-5107 John Haxby orabug 22766491...

5CVSS6.1AI score0.1651EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/02/18 12:0 a.m.•112 views

Unbreakable Enterprise kernel security update

kernel-uek 3.8.13-118.3.2 - x86/nmi/64: Use DF to avoid userspace RSP confusing nested NMI detection Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Reorder nested NMI checks Andy Lutomirski Orabug: 22742507 CVE-2015-5157 - x86/nmi/64: Improve nested NMI comments Andy Lutomirski...

7.2CVSS2.5AI score0.00624EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/18 12:0 a.m.•38 views

thunderbird security update

38.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.6.0-1 - Update to 38.6.0...

10CVSS2AI score0.05992EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•52 views

389-ds-base security and bug fix update

1.3.4.0-26 - release 1.3.4.0-26 - Resolves: bug 1299346 - deadlock on connection mutex DS 48341 1.3.4.0-25 - release 1.3.4.0-25 - Resolves: bug 1299757 - CVE-2016-0741 389-ds-base: Worker threads do not detect abnormally closed connections causing DoS 1.3.4.0-24 - release 1.3.4.0-24 - Resolves: b...

7.8CVSS1AI score0.0399EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•58 views

firefox security update

38.6.1-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat file 38.6.1-1 - Update to 38.6.1 ESR...

9.3CVSS1.2AI score0.0831EPSS
Exploits1
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•63 views

glibc security and bug fix update

2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...

6.8CVSS3AI score0.89557EPSS
Exploits17
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•32 views

sos security and bug fix update

3.2-35.0.1.3 - Recreated patch for orabug 18913115 - Make the selinux plugin fixfiles option useful John Haxby orabug 18913115 - Added removegpgstring.patch Bug 18313898 - Added sos-oracle-enterprise.patch - Added sos-oraclelinux-vendor-vendorurl.patch = 3.2-37 - sosreport prepare report in a...

4.6CVSS0.4AI score0.00438EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•122 views

glibc security and bug fix update

2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...

6.8CVSS2.7AI score0.89557EPSS
Exploits17
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•58 views

glibc security update

2.12-1.166.7 - Update fix for CVE-2015-7547 1296028. 2.12-1.166.6 - Create helper threads with enough stack for POSIX AIO and timers 1301625. 2.12-1.166.5 - Fix CVE-2015-7547: getaddrinfo stack-based buffer overflow 1296028. 2.12-1.166.4 - Support loading more libraries with static TLS 1291270...

6.8CVSS2.9AI score0.89557EPSS
Exploits17
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•33 views

polkit security update

0.112-6 - Fix CVE-2015-3256 Resolves: 1271790...

4.6CVSS1.3AI score0.00353EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•81 views

glibc security update

2.17-106.0.1.4 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-106.4 - Revert problematic libresolv change, not needed for the CVE-2015-7547 fix...

6.8CVSS3.9AI score0.89557EPSS
Exploits17
Oracle linux
Oracle linux
•added 2016/02/16 12:0 a.m.•96 views

kernel security and bug fix update

3.10.0-327.10.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-327.10.1 - of return NUMANONODE from fallback ofnodetonid Thadeu Lima de Souza Cascardo 1300614 1294398 - net openvswitch: do not allocate memory from offline numa node Thadeu Lima de Souza Cascardo 1300614 1294398...

7.2CVSS0.6AI score0.03646EPSS
Exploits14
Oracle linux
Oracle linux
•added 2016/02/09 12:0 a.m.•42 views

sos security and bug fix update

3.2-28.0.1.2 - Add vendor, vendor URL info for Oracle Linux orabug 17656507 [email protected] - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 [email protected] - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 [email protected] -...

4.6CVSS7.5AI score0.00438EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•96 views

php54-php security update

5.4.40-3 - fix more functions accept paths with NUL character 1213407 5.4.40-2 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026 - ftp: fix integer overflow leading to he...

7.5CVSS0.9AI score0.50129EPSS
Exploits6
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•131 views

httpd24-httpd security and bug fix update

2.4.6-22.0.1.el6 - remove enable-tlsv1x-thunks to fit openssl 1.x api - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.4.6-22 - Remove modproxyfcgi fix for heap-based buffer overflow, httpd-2.4.6 is not affected CVE-2014-3583 2.4.6-21 - modproxywstunne...

6.8CVSS2.1AI score0.85744EPSS
Exploits9
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•97 views

php55-php security update

5.5.21-4 - fix more functions accept paths with NUL character 1213407 5.5.21-3 - core: fix multipart/form-data request can use excessive amount of CPU usage CVE-2015-4024 - fix various functions accept paths with NUL character CVE-2015-4025, CVE-2015-4026, 1213407 - fileinfo: fix denial of servic...

10CVSS0.6AI score0.50129EPSS
Exploits20
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•130 views

httpd24-httpd security update

2.4.12-6.0.1.el7.1 - replace index.html with Oracles index page oracleindex.html - update vstring in specfile 2.4.12-6.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185 - core: fix pointer...

5CVSS0.7AI score0.73327EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•54 views

ruby193-ruby security update

1.9.3.484-50.0.1 - fix build issue: self test report 'dh key to small' 1.9.3.484-50 - Fix off-by-one stack-based buffer overflow in the encodes function CVE-2014-4975. Related: rhbz1164004 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Related: rhbz1164004 - REXML...

5CVSS2.8AI score0.05555EPSS
Exploits2
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•37 views

git19-git security update

1.9.4-3.1 - fix arbitrary code execution via crafted URLs Resolves: 1273889 1.9.4-3 - fix CVE-2014-9390 Resolves: rhbz1220552...

7.5CVSS4.1AI score0.63178EPSS
Exploits5
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•75 views

php54 security and bug fix update

php54 2.0-1 - fix incorrect selinux contexts 1194332 php54-php 5.4.40-1 - rebase to PHP 5.4.40 for various security fix 1209887 5.4.37-1 - rebase to PHP 5.4.37 5.4.36-1 - rebase to PHP 5.4.36 1168193 - fix package name in description - php-fpm own session dir php54-php-pecl-zendopcache 7.0.4-3 -...

10CVSS0.1AI score0.53166EPSS
Exploits43
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•82 views

php55 security and bug fix update

php55 2.0-1 - fix incorrect selinux contexts 1194336 php55-php 5.5.21-2.0.1 - add dtrace-utils as build dependency 5.5.21-2 - core: fix use-after-free vulnerability in the processnesteddata function unserialize CVE-2015-2787 - core: fix NUL byte injection in file name argument of moveuploadedfile...

10CVSS1.5AI score0.53166EPSS
Exploits34
Oracle linux
Oracle linux
•added 2016/02/04 12:0 a.m.•88 views

python27 security, bug fix, and enhancement update

python27 1.1-17 - Require python-pip and python-wheel note: in rh-python34 this is not necessary, because 'python' depends on these. python27-python 2.7.8-3 - Add httplib fix for CVE-2013-1752 Resolves: rhbz1187779 2.7.8-2 - Fix %check unset DISPLAY setion not failing properly on failed test -...

7.5CVSS0.2AI score0.28319EPSS
Exploits15
Oracle linux
Oracle linux
•added 2016/01/28 12:0 a.m.•44 views

qemu-kvm security and bug fix update

1.5.3-105.el72.3 - kvm-fwcfg-add-check-to-validate-current-entry-value-CVE.patch bz1298047 - Resolves: bz1298047 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-7.2.z 1.5.3-105.el72.2 - kvm-raw-posix-Fix-.bdrvcogetblockstatus-for-unaligne.patch...

6.9CVSS1.6AI score0.06085EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/01/28 12:0 a.m.•48 views

qemu-kvm security update

0.12.1.2-2.479.el67.4 - kvm-fwcfg-add-check-to-validate-current-entry-value-CVE.patch bz1298045 - Resolves: bz1298045 CVE-2016-1714 qemu-kvm: Qemu: nvram: OOB r/w access in processing firmware configurations rhel-6.7.z...

6.9CVSS2.3AI score0.06085EPSS
Exploits0
Oracle linux
Oracle linux
•added 2016/01/27 12:0 a.m.•39 views

bind security update

30:9.3.6-25.P1.6 - Fix CVE-2015-8704...

6.8CVSS1.5AI score0.20172EPSS
Exploits0
Total number of security vulnerabilities9185