8998 matches found
rpm security update
4.11.1-18 - Add check against malicious CPIO file name size 1163060 - Fixes CVE-2014-8118 4.11.1-17 - Fix race condidition where unchecked data is exposed in the file system 1163060 - Fixes CVE-2013-6435...
rpm security update
4.4.2.3-36.0.1 - Add missing files in /usr/share/doc/ 4.8.0-36 - Fix warning when applying the patch for 1163057 4.8.0-35 - Fix race condidition where unchecked data is exposed in the file system CVE-2013-64351163057...
kernel security and bug fix update
3.10.0-123.13.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.13.1 - powerpc mm: Make sure a localirqdisable prevent a parallel THP split Don Zickus 1151057 1083296 - powerpc Implement getuserpagesfast Don Zickus 1151057 1083296 - scsi vmwpvscsi: Some improvements in pvscsi driver Ewan...
kernel security and bug fix update
kernel 2.6.18-400.0.0.0.1 - net fix tcptrimhead James Li orabug 14512145, 19219078 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function...
kernel security and bug fix update
kernel 2.6.18-400 - net bridge: disable snooping if there is no querier Frantisek Hrbata 902454 - s390 kernel: sysinfo: convert /proc/sysinfo to seqfile Alexander Gordeev 1131283 - net netlink: verify permisions of socket creator Jiri Benc 1094266 CVE-2014-0181 - net netlink: store effective caps...
docker security and bug fix update
1.3.2-1.0.1 - Rename requirement of docker-io-pkg-devel in %package devel as docker-pkg-devel - Restore SysV init scripts for Oracle Linux 6 - Require Oracle Unbreakable Enterprise Kernel Release 3 or higher - Rename as docker. - Re-enable btrfs graphdriver support 1.3.2-1 - Update source to 1.3....
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-55 - freezer: set PFSUSPENDTASK flag on tasks that call freezeprocesses Colin Cross Orabug: 20082843 3.8.13-54 - netfilter: nfnat: fix oops on netns removal Florian Westphal Orabug: 19988779 - tcp: tsq: restore minimal amount of queueing Eric Dumazet Orabug: 19909542 - qedf: Fix...
wpa_supplicant security update
1:2.0-13 - Use osexec for action script execution CVE-2014-3686...
firefox security update
31.3.0-4.0.1 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 31.3.0-4 - Update to 31.3.0 ESR Build 2 - Fix for geolocation API rhbz1063739 31.2.0-5 - splice workaround rhbz1150082 31.2.0-4 - ppc build fix rhbz1151959...
nss, nss-util, and nss-softokn security, bug fix, and enhancement update
nss 3.16.2.3-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2.3-2 - Restore patch for certutil man page - supply missing options descriptions - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3 3.16.2.3-1 - Resolves: Bug 1165525 - Upgrade to NSS 3.16.2.3 for Firefox 31.3...
thunderbird security update
31.3.0-1.0.1.el66 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 31.3.0-1 - Update to 31.3.0...
ruby security update
2.0.0.353-22 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Resolves: rhbz1163998 - REXML incomplete fix for CVE-2014-8080 CVE-2014-8090. Resolves: rhbz1163998 2.0.0.353-21 - Fix off-by-one stack-based buffer overflow in the encodes function CVE-2014-4975 Resolves...
ruby security update
1.8.7.374-3 - Fix REXML billion laughs attack via parameter entity expansion CVE-2014-8080. Resolves: rhbz1163993 - REXML incomplete fix for CVE-2014-8080 CVE-2014-8090. Resolves: rhbz1163993...
libXfont security update
1.2.2-1.0.6 - CVE-2014-0209: integer overflow of allocations in font metadata file parsing bug 1163602, bug 1163601 - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies bug 1163602, bug 1163601 - CVE-2014-0211: integer overflows calculating memory needs for xfs replies bug...
bash security update
4.2.45-5.4.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905256...
bash security update
3.2-33.4.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905421...
bash security update
4.1.2-29.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905294...
libxml2 security update
2.6.26-2.1.25.0.1.el511 - Add libxml2-enterprise.patch - Replaced doc/redhat.gif in tarball with updated image 2.6.26-2.1.25.el5 - CVE-2014-3660 denial of service via recursive entity expansion rhbz1161841 2.6.26-2.1.24.el5 - fixed one regexp bug and added a rhbz922450 - Another small change on t...
libvirt security and bug fix update
0.10.2-46.0.1.el66.2 - Replace docs/et.png in tarball with blank image 0.10.2-46.el66.2 - qemu: allow restore with non-migratable XML input rhbz1155564 - qemu: Introduce qemuDomainDefCheckABIStability rhbz1155564 - Make ABI stability issue easier to debug rhbz1155564 - CVE-2014-3633: qemu:...
libXfont security update
1.4.5-4 - CVE-2014-0209: integer overflow of allocations in font metadata file parsing bug 1163602, bug 1163601 - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies bug 1163602, bug 1163601 - CVE-2014-0211: integer overflows calculating memory needs for xfs replies bug...
mysql55-mysql security update
5.5.40-2 filter perlGD from Requires perl-gd is not available for RHEL5 Resolves: 1160514 5.5.40-1 - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555...
mariadb security update
1:5.5.40-1 - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 Resolves: 1160548 1:5.5.37-1 - Rebase to 5.5.37...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.5.el6uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010590 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010577 CVE-2014-3673...
Unbreakable Enterprise kernel security update
2.6.39-400.215.13 - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010591 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010578 CVE-2014-3673...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.11uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010592 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010579 CVE-2014-3673...
gnutls security update
3.1.18-10 - Applied fix for CVE-2014-8564 1161472...
kernel security and bug fix update
2.6.32-504.1.3 - Revert: net revert 'bridge: Set vlanfeatures to allow offloads on vlans' Vlad Yasevich 1144442 1121991 2.6.32-504.1.2 - x86 kvm: fix PIT timer race condition mguzik 1149592 1149593 CVE-2014-3611 - x86 kvm: vmx: handle invept and invvpid vm exits gracefull mguzik 1144826 1144837...
libvncserver security update
0.9.7-7.1 - Fix CVE-2014-6051 integer overflow in screen size handling bug 1157668 - Fix CVE-2014-6052 NULL pointer dereference in framebuffer setup bug 1157668 - Fix CVE-2014-6053 NULL pointer dereference in ClientCutText message handling bug 1157668 - Fix CVE-2014-6054 server divide-by-zero in...
kdenetwork security update
7:4.10.5-8 - Resolves: CVE-2014-6055...
php security update
5.1.6-45 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670 - xmlrpc: fix buffer overflow in date parser 1155607...
mod_auth_mellon security update
0.8.0-3 - CVE-2014-8566 CVE-2014-8567 - Resolves: bz1157283 - Resolves: bz1157956...
shim security update
shim 0.7-8.0.1 - update Oracle Linux certificates Alexey Petrenko - replace securebootca.cer Alexey Petrenko 0.7-8 - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.10uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849336 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849320 CVE-2014-3181 logging macros to functions Joe Perches Orabug: 19847630 CVE-2014-3535 loggin...
cups-filters security update
1.0.35-15:.1 - Applied upstream patch to fix BrowseAllow parsing issue CVE-2014-4338, bug 1091568. - Applied upstream patch for cups-browsed DoS via processbrowsedata out-of-bounds read CVE-2014-4337, bug 1111510...
Unbreakable Enterprise kernel Security update
kernel-uek 3.8.13-44.1.4.el7uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849334 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849317 CVE-2014-3181 - kvm: vmx: handle invvpid vm exit gracefully Petr Matousek Orabug: 19906300...
php security update
5.4.16-23.3 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.4.16-23.2 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
Unbreakable Enterprise kernel Security update
2.6.39-400.215.12 - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849335 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849318 CVE-2014-3181 - KVM: x86: Improve thread safety in pit Andy Honig Orabug: 19905687 CVE-2014-3611...
wget security update
1.14-10.1 - Fix CVE-2014-4877 wget: FTP symlink arbitrary filesystem access 1156135...
php53 security update
5.3.3-26 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.3.3-25 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
kernel security and bug fix update
3.10.0-123.9.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.9.2 - virt kvm: fix PIT timer race condition Petr Matousek 1144879 1144880 CVE-2014-3611 - virt kvm/vmx: handle invept and invvpid vm exits gracefully Petr Matousek 1145449 1116936 1144828 1144829 CVE-2014-3645 CVE-2014-3646...
java-1.8.0-openjdk security update
1:1.8.0.25-1.b17 - Update to October CPU patch update. - Resolves: RHBZ1148896 1:1.8.0.20-3.b26 - fixed headless policytool moved to normal - jre/bin/policytool added to not headless exclude list - updated aarch694 source - ppc64le synced from fedora - Resolves: rhbz1081073 1:1.8.0.20-2.b26 -...
wireshark security update
1.0.15-7.0.1.el5 - Added oracle-ocfs2-network.patch - increase max packet size to 65536 Herbert van den Bergh orabug 13542633 1.0.15-7 - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6425 CVE-2014-6428 CVE-2014-6429...
wireshark security update
1.10.3-12.0.1.el7 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.10.3-12 - security patches - Related: 1148266 1.10.3-11 - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6424 CVE-2014-6425 CVE-2014-6426 CVE-2014-6427 CVE-2014-6428 CVE-2014-6429...
rsyslog7 security update
7.4.10-3 - fix CVE-2014-3634 resolves: 1149150...
rsyslog5 and rsyslog security update
5.8.12-5.0.1 - use setsid to get a controlling session and process group Orabug: 17364545 5.8.12-5 - fix CVE-2014-3634 resolves: 1149158...
kernel security, bug fix, and enhancement update
2.6.32-504 - netdrv revert 'cxgb4: set skb-rxhash' Prarit Bhargava 1140743 - netdrv revert 'cxgb4: Use netifsetrealnumrx/txqueues' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Turn on delayed ACK' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Use ULPMODETCPDDP' Prarit Bhargava 114074...
qemu-kvm security and bug fix update
1.5.3-60.el70.10 - kvm-block-add-helper-function-to-determine-if-a-BDS-is-i.patch bz1122925 - kvm-block-extend-block-commit-to-accept-a-string-for-the.patch bz1122925 - kvm-block-add-backing-file-option-to-block-stream.patch bz1122925 - kvm-block-add-com.redhatchange-backing-file-qmp-comma.patch...
Unbreakable Enterprise kernel security update
2.6.39-400.215.11 - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817786 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817748 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - kvm:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.3.el7uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817785 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817747 CVE-2014-4653 CVE-2014-4654...
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-400.36.9uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817787 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817749 CVE-2014-4653 CVE-2014-4654 CVE-2014-465...