9185 matches found
libXfont security update
1.2.2-1.0.6 - CVE-2014-0209: integer overflow of allocations in font metadata file parsing bug 1163602, bug 1163601 - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies bug 1163602, bug 1163601 - CVE-2014-0211: integer overflows calculating memory needs for xfs replies bug...
bash security update
4.1.2-29.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905294...
bash security update
3.2-33.4.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905421...
bash security update
4.2.45-5.4.0.1 - Fix segfaults from CVE-2014-6277 and CVE-2014-6278 completely. orabug 19905256...
libxml2 security update
2.6.26-2.1.25.0.1.el511 - Add libxml2-enterprise.patch - Replaced doc/redhat.gif in tarball with updated image 2.6.26-2.1.25.el5 - CVE-2014-3660 denial of service via recursive entity expansion rhbz1161841 2.6.26-2.1.24.el5 - fixed one regexp bug and added a rhbz922450 - Another small change on t...
libXfont security update
1.4.5-4 - CVE-2014-0209: integer overflow of allocations in font metadata file parsing bug 1163602, bug 1163601 - CVE-2014-0210: unvalidated length fields when parsing xfs protocol replies bug 1163602, bug 1163601 - CVE-2014-0211: integer overflows calculating memory needs for xfs replies bug...
libvirt security and bug fix update
0.10.2-46.0.1.el66.2 - Replace docs/et.png in tarball with blank image 0.10.2-46.el66.2 - qemu: allow restore with non-migratable XML input rhbz1155564 - qemu: Introduce qemuDomainDefCheckABIStability rhbz1155564 - Make ABI stability issue easier to debug rhbz1155564 - CVE-2014-3633: qemu:...
mariadb security update
1:5.5.40-1 - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 Resolves: 1160548 1:5.5.37-1 - Rebase to 5.5.37...
mysql55-mysql security update
5.5.40-2 filter perlGD from Requires perl-gd is not available for RHEL5 Resolves: 1160514 5.5.40-1 - Rebase to 5.5.40 Also fixes: CVE-2014-4274 CVE-2014-4287 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6484 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.11uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010592 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010579 CVE-2014-3673...
Unbreakable Enterprise kernel security update
2.6.39-400.215.13 - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010591 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010578 CVE-2014-3673...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.5.el6uek - net: sctp: fix panic on duplicate ASCONF chunks Daniel Borkmann Orabug: 20010590 CVE-2014-3687 - net: sctp: fix skboverpanic when receiving malformed ASCONF chunks Daniel Borkmann Orabug: 20010577 CVE-2014-3673...
gnutls security update
3.1.18-10 - Applied fix for CVE-2014-8564 1161472...
kernel security and bug fix update
2.6.32-504.1.3 - Revert: net revert 'bridge: Set vlanfeatures to allow offloads on vlans' Vlad Yasevich 1144442 1121991 2.6.32-504.1.2 - x86 kvm: fix PIT timer race condition mguzik 1149592 1149593 CVE-2014-3611 - x86 kvm: vmx: handle invept and invvpid vm exits gracefull mguzik 1144826 1144837...
libvncserver security update
0.9.7-7.1 - Fix CVE-2014-6051 integer overflow in screen size handling bug 1157668 - Fix CVE-2014-6052 NULL pointer dereference in framebuffer setup bug 1157668 - Fix CVE-2014-6053 NULL pointer dereference in ClientCutText message handling bug 1157668 - Fix CVE-2014-6054 server divide-by-zero in...
kdenetwork security update
7:4.10.5-8 - Resolves: CVE-2014-6055...
php security update
5.1.6-45 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670 - xmlrpc: fix buffer overflow in date parser 1155607...
mod_auth_mellon security update
0.8.0-3 - CVE-2014-8566 CVE-2014-8567 - Resolves: bz1157283 - Resolves: bz1157956...
shim security update
shim 0.7-8.0.1 - update Oracle Linux certificates Alexey Petrenko - replace securebootca.cer Alexey Petrenko 0.7-8 - out-of-bounds memory read flaw in DHCPv6 packet processing Resolves: CVE-2014-3675 - heap-based buffer overflow flaw in IPv6 address parsing Resolves: CVE-2014-3676 - memory...
cups-filters security update
1.0.35-15:.1 - Applied upstream patch to fix BrowseAllow parsing issue CVE-2014-4338, bug 1091568. - Applied upstream patch for cups-browsed DoS via processbrowsedata out-of-bounds read CVE-2014-4337, bug 1111510...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-400.36.10uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849336 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849320 CVE-2014-3181 logging macros to functions Joe Perches Orabug: 19847630 CVE-2014-3535 loggin...
Unbreakable Enterprise kernel Security update
kernel-uek 3.8.13-44.1.4.el7uek - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849334 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849317 CVE-2014-3181 - kvm: vmx: handle invvpid vm exit gracefully Petr Matousek Orabug: 19906300...
Unbreakable Enterprise kernel Security update
2.6.39-400.215.12 - USB: whiteheat: Added bounds checking for bulk command response James Forshaw Orabug: 19849335 CVE-2014-3185 - HID: fix a couple of off-by-ones Jiri Kosina Orabug: 19849318 CVE-2014-3181 - KVM: x86: Improve thread safety in pit Andy Honig Orabug: 19905687 CVE-2014-3611...
wget security update
1.14-10.1 - Fix CVE-2014-4877 wget: FTP symlink arbitrary filesystem access 1156135...
php security update
5.4.16-23.3 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.4.16-23.2 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
php53 security update
5.3.3-26 - fileinfo: fix out-of-bounds read in elf note headers. CVE-2014-3710 5.3.3-25 - xmlrpc: fix out-of-bounds read flaw in mkgmtime CVE-2014-3668 - core: fix integer overflow in unserialize CVE-2014-3669 - exif: fix heap corruption issue in exifthumbnail CVE-2014-3670...
kernel security and bug fix update
3.10.0-123.9.2 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.9.2 - virt kvm: fix PIT timer race condition Petr Matousek 1144879 1144880 CVE-2014-3611 - virt kvm/vmx: handle invept and invvpid vm exits gracefully Petr Matousek 1145449 1116936 1144828 1144829 CVE-2014-3645 CVE-2014-3646...
java-1.8.0-openjdk security update
1:1.8.0.25-1.b17 - Update to October CPU patch update. - Resolves: RHBZ1148896 1:1.8.0.20-3.b26 - fixed headless policytool moved to normal - jre/bin/policytool added to not headless exclude list - updated aarch694 source - ppc64le synced from fedora - Resolves: rhbz1081073 1:1.8.0.20-2.b26 -...
wireshark security update
1.0.15-7.0.1.el5 - Added oracle-ocfs2-network.patch - increase max packet size to 65536 Herbert van den Bergh orabug 13542633 1.0.15-7 - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6425 CVE-2014-6428 CVE-2014-6429...
rsyslog7 security update
7.4.10-3 - fix CVE-2014-3634 resolves: 1149150...
wireshark security update
1.10.3-12.0.1.el7 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.10.3-12 - security patches - Related: 1148266 1.10.3-11 - security patches - Resolves: CVE-2014-6421 CVE-2014-6423 CVE-2014-6424 CVE-2014-6425 CVE-2014-6426 CVE-2014-6427 CVE-2014-6428 CVE-2014-6429...
kernel security, bug fix, and enhancement update
2.6.32-504 - netdrv revert 'cxgb4: set skb-rxhash' Prarit Bhargava 1140743 - netdrv revert 'cxgb4: Use netifsetrealnumrx/txqueues' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Turn on delayed ACK' Prarit Bhargava 1140743 - infiniband revert 'cxgb4: Use ULPMODETCPDDP' Prarit Bhargava 114074...
qemu-kvm security and bug fix update
1.5.3-60.el70.10 - kvm-block-add-helper-function-to-determine-if-a-BDS-is-i.patch bz1122925 - kvm-block-extend-block-commit-to-accept-a-string-for-the.patch bz1122925 - kvm-block-add-backing-file-option-to-block-stream.patch bz1122925 - kvm-block-add-com.redhatchange-backing-file-qmp-comma.patch...
rsyslog5 and rsyslog security update
5.8.12-5.0.1 - use setsid to get a controlling session and process group Orabug: 17364545 5.8.12-5 - fix CVE-2014-3634 resolves: 1149158...
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-400.36.9uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817787 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817749 CVE-2014-4653 CVE-2014-4654 CVE-2014-465...
Unbreakable Enterprise kernel security update
2.6.39-400.215.11 - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817786 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817748 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - kvm:...
Unbreakable Enterprise kernel security update
kernel-uek 3.8.13-44.1.3.el7uek - ALSA: control: Don't access controls outside of protected regions Lars-Peter Clausen Orabug: 19817785 CVE-2014-4653 CVE-2014-4654 CVE-2014-4655 - ALSA: control: Fix replacing user controls Lars-Peter Clausen Orabug: 19817747 CVE-2014-4653 CVE-2014-4654...
thunderbird security update
31.2.0-3.0.1.el65 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 31.2.0-3 - Enabled jemalloc on ppc64 and s390x 31.2.0-2 - Update to 31.2.0 31.1.1-2 - Sync preferences with Firefox 31.1.1-1 - Update to 31.1.1 31.1.0-1 - Update to 31.1.0 31.0-1 - Rebase to ...
openssl security update
0.9.8e-31 - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SSL3 0.9.8e-30 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix...
libxml2 security update
2.9.1-5.0.1.el70.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.9.1-5.1 - CVE-2014-3660 denial of service via recursive entity expansion rhbz1149087...
openssl security update
1.0.1e-30.2 - fix CVE-2014-3567 - memory leak when handling session tickets - fix CVE-2014-3513 - memory leak in srtp support - add support for fallback SCSV to partially mitigate CVE-2014-3566 padding attack on SSL3 1.0.1e-30 - add ECC TLS extensions to DTLS 1119800 1.0.1e-29 - fix CVE-2014-3505...
trousers security, bug fix, and enhancement update
0.3.13-2 - Fix strict alias warning 0.3.13-1 - New upstream bug fix release resolves: 633584 - Pick up latest TrouSerS package resolves: 1074634 - Buffer overflow detected in TrouSerS daemon...
cups security and bug fix update
1:1.4.2-67 - Revert change to whitelist /rss/ resources, as this was not used upstream. 1:1.4.2-66 - More STR 4461 fixes from upstream: make rss feeds world-readable, but cachedir private. - Fix icon display in web interface during server restart STR 4475. 1:1.4.2-65 - Fixes for upstream patch fo...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.65-2.5.3.1.0.1.el70 - Update DISTRONAME in specfile 1:1.7.0.65-2.5.3.1 - Bump to 2.5.3 for latest security fixes. - Remove obsolete patches. - Add hsbootstrap option to pre-build HotSpot when required. - Resolves: rhbz1148893...
openssh security, bug fix, and enhancement update
5.3p1-104 - ignore SIGXFSZ in postauth monitor child 1133906 5.3p1-103 - don't try to generate DSA keys in the init script in FIPS mode 1118735 5.3p1-102 - ignore SIGPIPE in ssh-keyscan 1108836 5.3p1-101 - ssh-add: fix fatal exit when removing card 1042519 5.3p1-100 - fix race in backported...
glibc security, bug fix, and enhancement update
2.12-1.149 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475, 2.12-1.148 - Switch gettimeofday from INTUSE to libchiddenproto 1099025. 2.12-1.147 - Fix stack overflow due to large AFINET6 requests...
firefox security update
firefox 31.2.0-3.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 31.2.0-3 - Update to 31.2.0 ESR - Fix for mozbz1042889 31.1.0-7 - Enable WebM on all arches xulrunner 31.2.0-1.0.1 - Replaced xulrunner-redhat-default-prefs.js with...
java-1.7.0-openjdk security and bug fix update
1:1.7.0.71-2.5.3.1.0.1.el511 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1:1.7.0.71-2.5.3.1 - Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. -...
file security and bug fix update
5.04-21 - fix typographical error in changelog 5.04-20 - fix 1037279 - better patch for the bug from previous release 5.04-19 - fix 1037279 - display 'from' field on 32bit ppc core 5.04-18 - fix 664513 - trim white-spaces during ISO9660 detection 5.04-17 - fix CVE-2014-3479 cdfcheckstreamoffset...
krb5 security and bug fix update
1.10.3-33 - actually apply that last patch 1.10.3-32 - incorporate fix for MITKRB5-SA-2014-001 CVE-2014-4345, 1128157 1.10.3-31 - ksu: when evaluating .k5users, don't throw away data from .k5users when we're not passed a command to run, which implicitly means we're attempting to run the target...