9185 matches found
java-1.8.0-openjdk security update
1:1.8.0.65-0.b17 - October 2015 security update to u65b17. - Add script for generating OpenJDK tarballs from a local Mercurial tree. - Update RH1191652 patch to build against current AArch64 tree. - Use appropriate source ID to avoid unpacking both tarballs on AArch64. - Fix library removal scrip...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.2.0.1 - Update DISTRONAME in specfile 1:1.7.0.91-2.6.2.2 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271919 1:1.7.0.91-2.6.2.1 - Bump to 2.6.2 and u91b00. - Resolves: rhbz1271919...
java-1.7.0-openjdk security update
1:1.7.0.91-2.6.2.1.0.1 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Oracle Linux' 1:1.7.0.91-2.6.2.1 - added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz1271918 1:1.7.0.91-2.6.2.0 - Drop patch for PR2521/RH1242587 now resolved upstream. - Resolves:...
libwmf security update
0.2.8.4-25 - Resolves: rhbz1227428 - CVE-2015-0848 CVE-2015-4588 CVE-2015-4695 CVE-2015-4696 0.2.8.4-24 - Resolves: rhbz1227429 CVE-2015-0848 libwmf: heap overflow when decoding BMP images...
lxc security update
1.0.7-2.0.12 - Orabug 22011867 ol6 ct shutdown script remounts /dev/pts/ devices as ro on host system. 1.0.7-2.0.11 - Orabug 21842483 failed to create directory '/RUN/LXC/LOCK//CONTAINER/OL7.1/SNAPS' - CVE-2015-1335: Protect container mounts against symlinks. - Fixed build failure on OL6...
docker-engine security update
1.8.3-1.0.1 - Enable configuration of Docker daemon via sysconfig orabug 21804877 - Add documentation files to binary RPM 1.8.3 - Fix layer IDs lead to local graph poisoning CVE-2014-8178 - Fix manifest validation and parsing logic errors allow pull-by-digest validation bypass CVE-2014-8179 - Add...
spice-server security update
0.12.4-12.3 - CVE-2015-5260 CVE-2015-5261 fixed various security flaws Resolves: rhbz1262769 0.12.4-12.2 - Validate surfaceid Resolves: rhbz1262769...
spice security update
0.12.4-9.3 - CVE-2015-5260 CVE-2015-5261 fixed various security flaws Resolves: rhbz1262771 0.12.4-9.2 - Validate surfaceid Resolves: rhbz1262771...
thunderbird security update
38.3.0-1.0.1.el67 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.3.0-1 - Update to 38.3.0...
openldap security update
2.3.43-29 - CVE-2015-6908 openldap: bergetnext denial of service vulnerability 1263170...
qemu-kvm security update
0.12.1.2-2.479.el67.1 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch bz1248761 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch bz1248761 - kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch bz1248761 -...
firefox security update
38.3.0-2.0.1.el67 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.3.0-2 - Update to 38.3.0 ESR...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.2.2 - sctp: fix ASCONF list handling Marcelo Ricardo Leitner Orabug: 21842668 CVE-2015-3212 - KEYS: ensure we free the assoc array edit if edit is valid Colin Ian King Orabug: 21842655 CVE-2015-1333...
qemu-kvm security fix update
1.5.3-86.el71.6 - kvm-rtl8139-avoid-nested-ifs-in-IP-header-parsing-CVE-20.patch bz1248764 - kvm-rtl8139-drop-tautologous-if-ip-.-statement-CVE-2015-.patch bz1248764 - kvm-rtl8139-skip-offload-on-short-Ethernet-IP-header-CVE.patch bz1248764 -...
kernel security and bug fix update
3.10.0-229.14.1.OL7 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.14.1 - s390 zcrypt: Fixed reset and interrupt handling of AP queues Hendrik Brueckner 1248381 1238230 3.10.0-229.13.1 - dma ioat: fix tasklet tear down Herton R. Krzesinski 1251523 1210093 - drm radeon: Fix VGA switcheroo...
subversion security update
1.7.14-7.1 - add security fixes for CVE-2015-0248, CVE-2015-0251, CVE-2015-3184, CVE-2015-3187...
haproxy security update
1.5.4-4.1 - Fix bufferslowrealign function to respect output data CVE-2015-3281, 1241537...
bind security update
30:9.3.6-25.P1.4 - Fix CVE-2015-5722 30:9.3.6-25.P1.3 - Fix CVE-2015-5477 30:9.3.6-25.P1.2 - Remove files backup after patching Related: 1171971 30:9.3.6-25.P1.1 - Fix CVE-2014-8500 1171971...
spice-server security update
0.12.4-12.1 - Avoid race conditions reading monitor configs from guest. This race could trigger memory corruption host-side Resolves: rhbz1239124...
spice security update
0.12.4-9.1 - Avoid race conditions reading monitor configs from guest. This race could trigger memory corruption host-side Resolves: rhbz1239127...
bind security update
32:9.8.2-0.37.rc1.4 - Apply previously not applied patch for CVE-2015-5722 32:9.8.2-0.37.rc1.3 - Fix CVE-2015-5722...
libXfont security update
1.4.5-5 - CVE-2015-1802: missing range check in bdfReadProperties bug 1258892 - CVE-2015-1803: crash on invalid read in bdfReadCharacters bug 1258892 - CVE-2015-1804: out-of-bounds memory access in bdfReadCharacters bug 1258892...
bind97 security update
32:9.7.0-21.P2.3 - Fix CVE-2015-5722 32:9.7.0-21.P2.2 - Fix CVE-2015-5477 32:9.7.0-21.P2.1 - Fix CVE-2014-8500 1171972...
nss-softokn security update
3.14.3-23 - Pick up upstream freebl patch for CVE-2015-2730 - Check for P == Q or P ==-Q before adding P and Q...
jakarta-taglibs-standard security update
0:1.1.1-11.7 - Gracefully handle parsers without FSP support e.g. Java 5 GCJ - Resolves: CVE-2015-0254 0:1.1.1-11.6 - Prevent XXE and RCE in JSTL XML tags - Apply correction for previous CVE-2015-0254 patch prevent XXE in - Resolves: CVE-2015-0254 0:1.1.1-11.5 - Prevent XXE and RCE in JSTL XML ta...
gdk-pixbuf2 security update
2.24.1-6 - Fix CVE 2015-4491 - Resolves 1253210...
firefox security update
38.2.1-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 38.2.1-1 - Update to 38.2.1 ESR...
thunderbird security update
38.2.0-4.0.1.el67 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 38.2.0-4 - Update to 38.2.0 38.1.0-4 - Update to 38.1.0...
nss security, bug fix, and enhancement update
3.19.1-1 - Rebase nss to 3.19.1 - Pick up upstream fix for client auth. regression caused by 3.19.1 - Revert upstream change to minimum key sizes - Remove patches that rendered obsolote by the rebase - Update existing patches on account of the rebase 3.18.0-7 - Pick up upstream patch from...
httpd security update
2.2.15-47.0.1 - replace index.html with Oracle's index page oracleindex.html - update vstring in specfile 2.2.15-47 - fix regressions caused by fix for CVE-2015-3183 2.2.15-46 - core: fix chunk header parsing defect CVE-2015-3183...
httpd security update
2.4.6-31.0.1.el71.1 - replace index.html with Oracle's index page oracleindex.html 2.4.6-31.1 - core: fix chunk header parsing defect CVE-2015-3183 - core: replace of apsomeauthrequired with apsomeauthnrequired and apforceauthn hook CVE-2015-3185...
mariadb security update
1:5.5.44-1 - Rebase to 5.5.44 Resolves: 1247021...
pam security update
1.1.1-20.1 - fix CVE-2015-3238 - DoS due to blocking pipe with very long password...
mysql55-mysql security update
5.5.45-1 - Rebase to 5.5.45 Includes fixes for: CVE-2014-6568 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0501 CVE-2015-2568 CVE-2015-0499 CVE-2015-2571 CVE-2015-0433 CVE-2015-0441 CVE-2015-0505 CVE-2015-2573 CVE-2015-2582 CVE-2015-2620 CVE-2015-26...
sqlite security update
3.6.20-1.2 - Add patch for compiler warnings highlighted by rpmdiff. Related: rhbz1244727 3.6.20-1.el67.1 - fix for CVE-2015-3416 Resolves: 1244727...
glibc security update
2.5-123.0.1.el511.3 - Switch to use malloc when the input line is too long Orabug 19951108 Jason Luan - Use a /sys/devices/system/cpu/online for SCNPROCESSORSONLN implementation Orabug 17642251 Joe Jin 2.5-123.3 - Fix invalid-free when using getaddrinfo and AIIDN CVE-2013-7424, 2.5-123.1 - Fix...
net-snmp security update
1:5.5-54.0.1.el67.1 - Add Oracle ACFS to hrStorage John Haxby orabug 18510373 1:5.5-54.el67.1 - Fixed parsing of invalid variables in incoming packets 1248410...
subversion security update
1.6.11-15 - add security fixes for CVE-2015-0248, CVE-2015-0251, CVE-2015-3187...
sqlite security update
3.7.17-6.1 - Fixes for CVE-2015-3415 CVE-2015-3414 CVE-2015-3416 Resolves: rhbz1244731 3.7.17-6 - Release bump for ppc64le 3.7.17-5 - Release bump 3.7.17-4.1 - Backport 64k page fix from latest upstream 1118151...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.11uek - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628852 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security update
2.6.39-400.250.11 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628851 CVE-2015-5364 CVE-2015-5366...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.1.2 - udp: fix behavior of wrong checksums Eric Dumazet Orabug: 21628850 CVE-2015-5364 CVE-2015-5366...
kernel security and bug fix update
2.6.32-573.3.1 - md Revert 'dm: don't schedule delayed run of the queue if nothing to do' Mike Snitzer 1246095 1240767 - md Revert 'dm: only run the queue on completion if congested or no requests pending' Mike Snitzer 1246095 1240767 2.6.32-573.2.1 - net udp: fix behavior of wrong checksums Deny...
firefox security update
38.2.0-4.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one - Force requirement of newer gdk-pixbuf2 to ensure a proper update Todd Vierling orabug 19847484 38.2.0-4 - Update to 38.2.0 ESR...
firefox security update
38.1.1-1.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat files 38.1.1-1 - Update to 38.1.1 ESR...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-98.1.1 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563041 CVE-2015-5697...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.37.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563043 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562781 CVE-2014-9715...
Unbreakable Enterprise kernel security update
2.6.39-400.250.10 - md: use kzalloc when bitmap is disabled Benjamin Randazzo Orabug: 21563042 CVE-2015-5697 - netfilter: nfconntrack: reserve two bytes for nfctext-len Andrey Vagin Orabug: 21562780 CVE-2014-9715...
kernel security and bug fix update
3.10.0-229.11.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-229.11.1 - fs Fixing lease renewal Steve Dickson 1226328 1205048 - fs revert 'nfs: Fixing lease renewal' Carlos Maiolino 1226328 1205048 - redhat spec: Update dracut dependency to 033-241.|ael7b1.5 Phillip Lougher 1241571 1241344...
lxc security update
1.0.7-2.0.7 - Orabug 21533491 CVE-2015-1334: Don't use the container's /proc during attach 1.0.7-2.0.6 - Orabug 21526922 CVE-2015-1331: LXCLOCK: USE /RUN/LXC/LOCK RATHER THAN /RUN/LOCK/LXC...