8998 matches found
kernel security and bug fix update
2.6.32-504.16.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181173 1179327 CVE-2014-8159 2.6.32-504.16.1 - fs gfs2: Move gfs2filesplicewrite outside of ifdef Robert S Peterson 1198329 1193559 - security keys: close race between key lookup and freeing...
glibc security and bug fix update
2.12-1.149.7 - Fix invalid file descriptor reuse while sending DNS query 1207995, CVE-2013-7423. - Fix buffer overflow in gethostbynamer with misaligned buffer 1209375, CVE-2015-1781. 2.12-1.149.6 - Enhance nscd to detect any configuration file changes 1194149...
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.5.1.0.1.el71 - Update DISTRONAME in specfile 1:1.7.0.75-2.5.5.1 - repacked sources - Resolves: rhbz1209072 1:1.7.0.75-2.5.5.0 - Bump to 2.5.5 using OpenJDK 7u79 b14. - Update OpenJDK tarball creation comments - Remove test case for RH1191652 now fix has been verified. - Drop AArch6...
java-1.8.0-openjdk security update
1:1.8.0.45-30.b13 - repacked sources - Resolves: RHBZ1209076 1:1.8.0.45-7.b13 - Re-add %name prefix to patches to avoid conflicts with OpenJDK 7 versions. - Remove ppc64le test case now fix has been verified. - Resolves: rhbz1194378 1:1.8.0.45-27.b13 - updated to security u45 - minor sync with 7....
java-1.7.0-openjdk security update
1:1.7.0.75-2.5.5.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.75-2.5.5.1 - Repacked sources - Resolves: rhbz1209069 1:1.7.0.79-2.5.5.0 - Bump to 2.5.5 using OpenJDK 7u79 b14. - Resolves: rhbz1209069...
java-1.6.0-openjdk security update
1:1.6.0.35-1.13.7.1 - Repackaged source files - Resolves: rhbz1209067 1:1.6.0.35-1.13.7.0 - Update to IcedTea 1.13.7 - Regenerate add-final-location-rpaths patch so as to be less disruptive. - Resolves: rhbz1209067...
openssl security update
0.9.8e-33 - fix CVE-2014-8275 without introduction of CVE-2015-0286 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export ciphersuites and on server - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
xorg-x11-server security update
1.15.0-26 - CVE fixes for: CVE-2015-0255...
krb5 security update
1.10.3-37 - fix for CVE-2014-5355 1193939 'krb5: unauthenticated denial of service in recvauthcommon and others' 1.10.3-36 - fix for CVE-2014-5353 1174543 'Fix LDAP misused policy name crash' 1.10.3-35 - Changelog fixes to make errata subsystem happy. 1.10.3-34 - fix for CVE-2014-5352 1179856...
kernel security and bug fix update
kernel 2.6.18-404.0.0.0.1 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function...
kernel security and bug fix update
kernel 2.6.18-404 - infiniband core: Prevent integer overflow in ibumemget Doug Ledford 1179353 CVE-2014-8159 2.6.18-403 - s390 zcrypt: Toleration of new crypto hardware Hendrik Brueckner 1182522 - fs cifs: Use pid from cifsFileInfo in wrt pages/setfilesize Sachin Prabhu 1169304 - xen x86: confin...
openssl-fips security update
1.0.1m-2.0.1 - update to upstream 1.0.1m - update to fips canister 2.0.9 - regenerated below patches openssl-1.0.1-beta2-rpmbuild.patch openssl-1.0.1m-rhcompat.patch openssl-1.0.1m-ecc-suiteb.patch openssl-1.0.1m-fips-mode.patch openssl-1.0.1m-version.patch openssl-1.0.1m-evp-devel.patch...
firefox security update
31.6.0-2.0.1.el511 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 31.6.0-1 - Update to 31.6.0 ESR Build 2 31.6.0-1 - Update to 31.6.0 ESR...
thunderbird security update
31.6.0-1.0.1 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 31.6.0-1 - Update to 31.6.0...
flac security update
1.3.0-5 - fix buffer overflow when processing ID3v2 metadata CVE-2014-8962 - fix buffer overflow with invalid blocksize CVE-2014-9028...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-68.1.2 - IB/core: Prevent integer overflow in ibumemget address arithmetic Shachar Raindel Orabug: 20799875 CVE-2014-8159 CVE-2014-8159 3.8.13-68.1.1 - xen-pciback: limit guest control of command register Jan Beulich Orabug: 20697017 CVE-2015-2150 CVE-2015-2150 - net: sctp: fix...
Unbreakable Enterprise kernel security update
2.6.39-400.249.3 - IB/core: Prevent integer overflow in ibumemget address arithmetic Shachar Raindel Orabug: 20788393 CVE-2014-8159 CVE-2014-8159 2.6.39-400.249.2 - xen-pciback: limit guest control of command register Jan Beulich Orabug: 20704156 CVE-2015-2150 CVE-2015-2150 - net: sctp: fix slab...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.3 - net: sctp: fix slab corruption from use after free on INIT collisions Daniel Borkmann Orabug: 20780349 CVE-2015-1421...
postgresql security update
8.4.20-2 - fix for CVE-2015-0241 CVE-2015-0243 CVE-2015-0244 CVE-2014-8161 rhbz1198651 & rhbz1198652...
libxml2 security update
2.9.1-5.0.1.el71.2 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-5.2 - Fix missing entities after CVE-2014-3660 fix - CVE-2014-0191 Do not fetch external parameter entities rhbz1195649 - Fix regressions introduced by CVE-2014-0191 patch...
kernel security and bug fix update
3.10.0-229.1.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.1.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181177 1179347 CVE-2014-8159 3.10.0-229.1.1 - crypto testmgr: mark rfc4106gcmaes as fipsallowed Jarod Wilson 1197751 1185400 - virt...
setroubleshoot security update
3.2.17-4.1.0.1 - Add setroubleshoot-oracle-enterprise.patch to change bug reporting URL to linux.oracle.com 3.2.17-4.1 - Fix getrpmnvrtemporary functions Resolves:1203352...
ipa and slapi-nis security and bug fix update
ipa 4.1.0-18.0.1.el71.3 - Replace login-screen-logo.png 20362818 - Drop subscription-manager requires for OL7 - Drop redhat-access-plugin-ipa requires for OL7 - Blank out header-logo.png product-name.png 4.1.0-18.3 - ipa-python ipalib.errors.LDAPError: failed to decode certificate:...
firefox security update
31.5.3-1.0.1.el511 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 31.5.3-1 - Update to 31.5.3 ESR 31.5.2-1 - Update to 31.5.2 ESR 31.5.1-1 - Update to 31.5.1 ESR...
openssl security update
1.0.1e-30.7 - update fix for CVE-2015-0287 to what was released upstream 1.0.1e-30.6 - fix CVE-2015-0209 - potential use after free in d2iECPrivateKey - fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
openssl security and bug fix update
1.0.1e-42.4 - update fix for CVE-2015-0287 to what was released upstream 1.0.1e-42.3 - fix CVE-2015-0209 - potential use after free in d2iECPrivateKey - fix CVE-2015-0286 - improper handling of ASN.1 boolean comparison - fix CVE-2015-0287 - ASN.1 structure reuse decoding memory corruption - fix...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek 3.8.13-68 - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673373 CVE-2014-8884 - mm: Fix NULL pointer dereference in madviseMADVWILLNEED support Kirill A. Shutemov Orabug: 20673279 CVE-2014-8173 - netfilter: conntrack: disable generic tracking for known protocols Florian...
unzip security update
6.0-2 - Fix CVE-2014-9636 CVE-2014-8139 CVE-2014-8140 CVE-2014-8141 Resolves: 1196132 1196120 1196124 1196128...
freetype security update
2.3.11-15.el66.1 - Fixes CVE-2014-9657 - Check minimum size of recordsize. - Fixes CVE-2014-9658 - Use correct value for minimum table length test. - Fixes CVE-2014-9675 - New macro that checks one character more than strncmp. - Fixes CVE-2014-9660 - Check BDFGLYPHBITS. - Fixes CVE-2014-9661 -...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.2uek - netfilter: conntrack: disable generic tracking for known protocols Florian Westphal Orabug: 20679631 CVE-2014-8160 - mac80211: fix fragmentation code, particularly for encryption Johannes Berg Orabug: 20673314 CVE-2014-8709 - tracing/syscalls: Ignore numbers outsid...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55.1.8 - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687313 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 3.8.13-55.1.7 - ttusb-dec: buffer overflow in ioctl Dan Carpenter Orabug: 20673376 CVE-2014-8884 - mm: Fix NULL pointer dereferen...
Unbreakable Enterprise kernel security update
2.6.39-400.248.3 - kvm: fix excessive pages un-pinning in kvmiommumap error path. Quentin Casasnovas Orabug: 20687314 CVE-2014-3601 CVE-2014-8369 CVE-2014-3601 - Revert 'mm: Fix NULL pointer dereference in madviseMADVWILLNEED support' Guangyu Sun Orabug: 20673281 CVE-2014-8173 2.6.39-400.248.2 -...
bind security update
32:9.9.4-18.1 - Fix CVE-2015-1349...
thunderbird security update
31.5.0-2 - Update to 31.5.0...
qemu-kvm security, bug fix, and enhancement update
1.5.3-86.el7 - kvm-vfio-pci-Fix-interrupt-disabling.patch bz1180942 - kvm-cirrus-fix-blit-region-check.patch bz1169456 - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrusbltbuf.patch bz1169456 - Resolves: bz1169456 CVE-2014-8106 qemu-kvm: qemu: cirrus: insufficient blit region checks rhel-7.1 -...
libreoffice security, bug fix, and enhancement update
libabw 0.0.2-1 - new upstream release 0.0.2 - generate man pages for the tools 0.0.1-1 - new upstream release libcmis 0.4.1-5 - Related: rhbz1132065 coverity: fix mismatching exceptions 0.4.1-4 - a few use-after-free fixes for the C wrapper 0.4.1-3 - Resolves: rhbz1132065 rebase to 0.4.1 libetony...
httpd security, bug fix, and enhancement update
2.4.6-31.0.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31 - modproxyfcgi: determine if FCGICONNCLOSE should be enabled instead of hardcoding it 1168050 - modproxy: support Unix Domain Sockets 1168081 2.4.6-30 - core: fix bypassing of modheaders rules via chunked request...
ipa security, bug fix, and enhancement update
4.1.0-18.0.1 - Replace login-screen-logo.png 20362818 - Drop subscription-manager requires for OL7 - Drop redhat-access-plugin-ipa requires for OL7 - Blank out header-logo.png product-name.png 4.1.0-18 - Fix ipa-pwd-extop global configuration caching 1187342 - group-detach does not add correct...
krb5 security, bug fix and enhancement update
1.12.2-14 - fix for kinit -C loops 1184629, MIT/krb5 issue 243, 'Do not loop on principal unknown errors'. 1.12.2-13 - fix for CVE-2014-5352 1179856 'gssprocesscontexttoken incorrectly frees context MITKRB5-SA-2015-001' - fix for CVE-2014-9421 1179857 'kadmind doubly frees partial deserialization...
kernel security and bug fix update
2.6.32-504.12.2 - infiniband core: Prevent integer overflow in ibumemget address arithmetic Doug Ledford 1181173 1179327 CVE-2014-8159 2.6.32-504.12.1 - fs splice: perform generic write checks Eric Sandeen 1163798 1155900 CVE-2014-7822 2.6.32-504.11.1 - virt kvm: excessive pages un-pinning in...
GNOME Shell security, bug fix, and enhancement update
clutter 1.14.4-12 - Include upstream patch to prevent a crash when hitting hardware limits Resolves: rhbz1115162 1.14.4-11 - Fix a typo in the Requires 1.14.4-10 - Add patch for quadbuffer stereo suppport Resolves: rhbz1108891 cogl 1.14.1-6 - Add patches for quadbuffer stereo suppport Resolves:...
libvirt security, bug fix, and enhancement update
1.2.8-16.0.1 - Replace docs/et.png in tarball with blank image 1.2.8-16 - qemu: don't setup cpuset.mems if memory mode in numatune is not 'strict' rhbz1186094 - lxc: don't setup cpuset.mems if memory mode in numatune is not 'strict' rhbz1186094 1.2.8-15 - qemu: Add missing goto error in...
kernel security, bug fix, and enhancement update
3.10.0-229 - Oracle Linux certificates Alexey Petrenko 3.10.0-229 - net rtnetlink: allow to register ops without ops-setup set Jiri Benc 1186492 3.10.0-228 - fs NFSv4.1: Fix an Oops in nfs41walkclientlist Steve Dickson 1185784 - misc redhat: dont suppress Revert patches from changelog Jarod Wilso...
pcre security and enhancement update
8.32-14 - Fix CVE-2014-8964 unused memory usage on zero-repeat assertion condition bug 1169797 8.32-13 - Disable unsupported JIT mode on little-endian 64-bit PowerPC platform bug 1125642 - Raise optimization level to 3 on little-endian 64-bit PowerPC bug 1123498...
389-ds-base security, bug fix, and enhancement update
1.3.3.1-13 - release 1.3.3.1-13 - Resolves: bug 1183655 - Fixed Covscan FORWARDNULL defects DS 47988 1.3.3.1-12 - release 1.3.3.1-12 - Resolves: bug 1182477 - Windows Sync accidentally cleared rawentry DS 47989 - Resolves: bug 1180325 - upgrade script fails if /etc and /var are on different file...
glibc security and bug fix update
2.17-78.0.1 - Remove strstr and strcasestr implementations using sse4.2 instructions. - Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported. 2.17-78 - Fix ppc64le builds 1077389. 2.17-77 - Fix parsing of numeric hosts in gethostbynamer...
openssh security, bug fix and enhancement update
6.6.1p1-11 + 0.9.3-9 - fix direction in CRYPTOSESSION audit message 1171248 6.6.1p1-10 + 0.9.3-9 - add new option GSSAPIEnablek5users and disable using /.k5users by default CVE-2014-9278 1169843 6.6.1p1-9 + 0.9.3-9 - log via monitor in chroots without /dev/log 1083482 6.6.1p1-8 + 0.9.3-9 - increa...
hivex security, bug fix, and enhancement update
1.3.10-5.7 - Fix: 'Argument list too long' when using virt-v2v on Windows guest with French copy of Citrix installed related: rhbz1145056 1.3.10-5.6 - Fix: typo in man page resolves: rhbz1099286 1.3.10-5.4 - Fix: hivex missing checks for small/truncated files resolves: rhbz1158992 1.3.10-5.3 - Fi...
389-ds-base security, bug fix, and enhancement update
1.2.11.15-50 - Release 1.2.11.15-50 - Resolves: 1179099 - Problem with single value attribute MMR replication DS 47915, DS 569 1.2.11.15-49 - Release 1.2.11.15-49 - Resolves: 1180629 - CVE-2014-8105: information disclosure through 'cn=changelog' subtree - Resolves: 1179099 - Problem with single...
openssl security update
0.9.8e-32.0.1 - Backport openssl 08-Jan-2015 security fixes John Haxby orabug 20409893 - fix CVE-2014-3570 - Bignum squaring may produce incorrect results - fix CVE-2014-3571 - DTLS segmentation fault in dtls1getrecord - fix CVE-2014-3572 - ECDHE silently downgrades to ECDH Client - fix...