Lucene search
K
OraclelinuxRecent

9180 matches found

Oracle linux
Oracle linux
•added 2014/09/30 12:0 a.m.•67 views

php security update

5.4.16-23.1 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression incomplete fix for CVE-2013-7345. CVE-2014-3538 - fileinfo: fix mconvert incorrect handling ...

6.8CVSS0.8AI score0.22319EPSS
Exploits8
Oracle linux
Oracle linux
•added 2014/09/29 12:0 a.m.•69 views

xerces-j2 security update

2.11.0-17 - Fix XML parsing bug JAXP, 8017298 - Resolves: CVE-2013-4002...

7.1CVSS2.2AI score0.24738EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/26 12:0 a.m.•56 views

bash security update

3.0-27.0.3 - Rework env function definition for safety Florian Weimer CVE-2014-7169...

10CVSS2AI score0.9994EPSS
Exploits19
Oracle linux
Oracle linux
•added 2014/09/26 12:0 a.m.•40 views

nss security update

nss 3.16.2-7.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-7 - Resolves: Bug 1145433 - CVE-2014-1568 3.16.2-6 - Rolling back to commit e5fb6e476c179665976e906604496cbbb24f22a7 - Related: Bug 1145433 nss-softokn 3.16.2-3 - Resolves: Bug 1145433 - CVE-2014-1568 nss-util 3.16.2-2 -...

7.5CVSS1.6AI score0.1617EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/25 12:0 a.m.•53 views

bash security update

4.1.2-15.1.0.1 - Preliminary fix for CVE-2014-7169...

10CVSS1.9AI score0.9994EPSS
Exploits17
Oracle linux
Oracle linux
•added 2014/09/25 12:0 a.m.•60 views

bash security update

4.2.45-5.4 - CVE-2014-7169 Resolves: 1146324 4.2.45-5.3 - amend patch to match upstream's Related: 1146324 4.2.45-5.2 - Fix-up the patch Related: 1141647...

10CVSS1.4AI score0.9994EPSS
Exploits19
Oracle linux
Oracle linux
•added 2014/09/25 12:0 a.m.•73 views

bash security update

3.2-33.1.0.1 - Preliminary fix for CVE-2014-7169...

10CVSS1.9AI score0.9994EPSS
Exploits17
Oracle linux
Oracle linux
•added 2014/09/25 12:0 a.m.•80 views

bash security update

3.0-27.0.2 - Preliminary fix for CVE-2014-7169...

10CVSS1.9AI score0.9994EPSS
Exploits17
Oracle linux
Oracle linux
•added 2014/09/25 12:0 a.m.•73 views

bash security update

4.2.45-5.2.0.1 - Preliminary fix for CVE-2014-7169...

10CVSS1.9AI score0.9994EPSS
Exploits17
Oracle linux
Oracle linux
•added 2014/09/24 12:0 a.m.•33 views

haproxy security update

1.5.2-3 - Fix remote client denial of service vulnerability 1138191...

5CVSS6.4AI score0.03813EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/24 12:0 a.m.•82 views

bash security update

4.1.2-15.1 - Check for fishy environment Resolves: 1141645...

10CVSS1.9AI score0.99999EPSS
Exploits130
Oracle linux
Oracle linux
•added 2014/09/24 12:0 a.m.•69 views

bash security update

3.0-27.0.1 - Check for fishy environment Ondrej Oprala Resolves: 1141644...

10CVSS2AI score0.99999EPSS
Exploits130
Oracle linux
Oracle linux
•added 2014/09/22 12:0 a.m.•62 views

kernel security and bug fix update

3.10.0-123.8.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.8.1 - scsi fnic: fix broken FIP discovery by initializing multicast address Chris Leech 1119727 1100078 - scsi libfcoe: Make fcoesysfs optional / fix fnic NULL exception Chris Leech 1119727 1100078 - fs nfs: Don't mark the data...

7.2CVSS0.2AI score0.02103EPSS
Exploits6
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•46 views

krb5 security update

1.6.1-80.el5 - rebuild 1.6.1-79.el5 - incorporate fix for MITKRB5-SA-2014-001 CVE-2014-4345, 1132785...

8.5CVSS1.1AI score0.08085EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•32 views

conga security and bug fix update

0.12.2-81.0.2.el5 - Replaced redhat logo image in Data.fs 0.12.2-81.0.1.el5 - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz 0.12.2-81 - luci: prevent non-admin user from unauthorized executive access Resolves: rhbz1089310 0.12.2-79 - luc...

6.8CVSS5.9AI score0.02641EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•48 views

krb5 security and bug fix update

1.6.1-78.el5 - gssapi: pull in upstream fix for a possible NULL dereference in spnego CVE-2014-4344, 1121509 1.6.1-77.el5 - fix what appears to be a cosmetic error in the patch for self-tests for CVE-2014-4341 1.6.1-76.el5 - run the backported self-tests, such as they are, for CVE-2014-4341...

7.8CVSS1.3AI score0.07138EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•46 views

bind97 security and bug fix update

32:9.7.0-21.P2 - Fix CVE-2014-0591 32:9.7.0-20.P2 - Fix init script to not unmount filesystem when ROOTDIR is empty 1059118 32:9.7.0-19.P2 - fix for CVE-2013-4854 32:9.7.0-18.P2 - fix CVE-2013-2266...

7.8CVSS1.3AI score0.42851EPSS
Exploits3
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•24 views

automake security update

1.9.6-3 - fix for CVE-2012-3386 -- 'make distcheck' was making the directory distdir world-writeable 848470...

4.4CVSS2.4AI score0.00474EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/17 12:0 a.m.•65 views

nss and nspr security, bug fix, and enhancement update

3.16.1-2 - Backport nss-3.12.6 upstream fix required by Firefox 31 ESR - Resolves: Bug 1110860 3.16.1-1 - Rebase to nss-3.16.1 for FF31 - Resolves: Bug 1110860 - Rebase nss in RHEL 5.11 to NSS 3.16.1, required for FF 31...

10CVSS1.3AI score0.06381EPSS
Exploits5
Oracle linux
Oracle linux
•added 2014/09/15 12:0 a.m.•43 views

axis security update

0:1.2.1-7.5 - Fix MITM security vulnerability - Use GCJ friendly patch - Resolves: CVE-2014-3596 0:1.2.1-7.4 - Fix MITM security vulnerability - Resolves: CVE-2014-3596...

5.8CVSS2AI score0.05806EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/10 12:0 a.m.•51 views

Unbreakable Enterprise kernel security update

3.8.13-44.1.1 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590596 CVE-2014-3917...

3.3CVSS3.1AI score0.0036EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/10 12:0 a.m.•29 views

procmail security update

3.22-34.1 - Fixed buffer overflow in formail Resolves: CVE-2014-3618...

7.5CVSS3.2AI score0.08525EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/10 12:0 a.m.•57 views

unbreakable enterprise kernel security update

kernel-uek 2.6.32-400.36.8uek - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590638 CVE-2014-3917 - futex: Fix errors in nested key ref-counting Darren Hart Orabug: 19590443 CVE-2014-0205...

6.9CVSS1.5AI score0.00661EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/10 12:0 a.m.•74 views

unbreakable enterprise kernel security bug fix update

2.6.39-400.215.10 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590597 CVE-2014-3917 2.6.39-400.215.9 - oracleasm: Add support for new error return codes from block/SCSI Martin K. Petersen Orabug: 18438934 2.6.39-400.215.8 - ibipoib: CSUM support in connected...

3.3CVSS0.1AI score0.0036EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/09 12:0 a.m.•57 views

kernel security and bug fix update

2.6.32-431.29.2 - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc 1114549 1096351 CVE-2014-3535 2.6.32-431.29.1 - mm hugetlb: ensure hugepage access is denied if hugepages are not supported Gustav...

7.8CVSS7.4AI score0.05926EPSS
Exploits14
Oracle linux
Oracle linux
•added 2014/09/08 12:0 a.m.•51 views

jakarta-commons-httpclient security update

1:3.1-16 - Fix MITM security vulnerability - Resolves: CVE-2014-3577...

5.8CVSS1.9AI score0.09149EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/04 12:0 a.m.•59 views

kernel security and bug fix update

kernel 2.6.18-371.12.1 - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 - mm writeback: Fix hang when low on memory due to NFS traffic Larry Woodman 1125246 1080194 - net tg3: Fix Read DMA workaround for 5719 A0 Ivan Vecera 1121017 924590...

3.3CVSS0.3AI score0.0036EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/04 12:0 a.m.•81 views

kernel security and bug fix update

kernel 2.6.18-371.12.1.0.1 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe...

3.3CVSS7.1AI score0.0036EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/03 12:0 a.m.•44 views

squid security update

7:3.3.8-12 - Resolves: 1134933 - CVE-2014-3609 assertion failure in header processing...

5CVSS1.4AI score0.5622EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/03 12:0 a.m.•45 views

thunderbird security update

24.8.0-1.0.1.el65 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 24.8.0-1 - Update to 24.8.0...

10CVSS2AI score0.05584EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/03 12:0 a.m.•40 views

httpcomponents-client security update

4.2.5-5 - Fix MITM security vulnerability - Resolves: CVE-2014-3577...

5.8CVSS1.9AI score0.09149EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/09/03 12:0 a.m.•58 views

squid security update

7:3.1.10-22 - Resolves: 1134936 - CVE-2013-4115 buffer overflow when processing overly long DNS names 7:3.1.10-21 - Resolves: 1134936 - CVE-2014-3609 assertion failure in header processing...

7.5CVSS2.3AI score0.5622EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/09/03 12:0 a.m.•46 views

firefox security update

firefox 24.8.0-1.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 24.8.0-1 - Update to 24.8.0 ESR xulrunner 24.8.0-1.0.1.el70 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 24.8.0-...

10CVSS1.8AI score0.05584EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/29 12:0 a.m.•58 views

glibc security update

2.12-1.132.4 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475,...

7.5CVSS1.3AI score0.18099EPSS
Exploits4
Oracle linux
Oracle linux
•added 2014/08/25 12:0 a.m.•29 views

mod_wsgi security update

3.4-12 - fix possible privilege escalation in setuid CVE-2014-0240...

6.2CVSS2AI score0.00411EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/22 12:0 a.m.•65 views

Unbreakable Enterprise kernel security and bug fix update

kernel-uek 3.8.13-44 - net: Use netlinknscapable to verify the permisions of netlink messages Eric W. Biederman Orabug: 19404229 CVE-2014-0181 - net: Add variants of capable for use on netlink messages Eric W. Biederman Orabug: 19404229 - net: Add variants of capable for use on on sockets Eric W...

6.9CVSS7.8AI score0.10209EPSS
Exploits17
Oracle linux
Oracle linux
•added 2014/08/19 12:0 a.m.•40 views

qemu-kvm security and bug fix update

0.12.1.2-2.415.el65.14 - The commit for zrelease .13 was incomplete; the changes to qemu-kvm.spec did not include the '%patchNNNN -p1' lines for patches 4647 through 4655; so although the patch files themselves were committed, the srpm build did not pick them up. In addition, the commit log did n...

7.5CVSS1AI score0.02116EPSS
Exploits2
Oracle linux
Oracle linux
•added 2014/08/18 12:0 a.m.•46 views

nss, nss-util, nss-softokn security, bug fix, and enhancement update

nss 3.16.2-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-2 - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 3.16.2-1 - Rebase to...

4.3CVSS0.4AI score0.01767EPSS
Exploits2
Oracle linux
Oracle linux
•added 2014/08/13 12:0 a.m.•46 views

openssl security update

1.0.1e-34.4 - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3507 - avoid memory leak in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3509 - fix race condition when parsing serve...

6.8CVSS1.2AI score0.51436EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/13 12:0 a.m.•46 views

openssl security update

0.9.8e-27.4 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous ECDH...

5.8CVSS1AI score0.95326EPSS
Exploits9
Oracle linux
Oracle linux
•added 2014/08/11 12:0 a.m.•49 views

tomcat6 security update

0:6.0.24-78 - Related: CVE-2013-4590 - remove xml schema names javaee5, - javaeewebservices12, and javaeewebservices12client - from descriptor.DigesterFactory initialization. These - schema definitions are not relevant to 6.0.24 as the version - of their spec did not exist at the time. 0:6.0.24-7...

6.4CVSS2.9AI score0.21045EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/08/11 12:0 a.m.•48 views

unbreakable enterprise kernel security update

2.6.39-400.215.7 - sctp: Fix skackbacklog wrap-around problem Xufeng Zhang Orabug: 19404245 CVE-2014-4667...

5CVSS0.9AI score0.05926EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/11 12:0 a.m.•56 views

unbreakable enterprise kernel security update

kernel-uek 3.8.13-35.3.5.el7uek - net: Use netlinknscapable to verify the permisions of netlink messages Eric W. Biederman Orabug: 19404231 CVE-2014-0181 - net: Add variants of capable for use on netlink messages Eric W. Biederman Orabug: 19404231 - net: Add variants of capable for use on on...

5CVSS1.3AI score0.05926EPSS
Exploits1
Oracle linux
Oracle linux
•added 2014/08/11 12:0 a.m.•52 views

unbreakable enterprise kernel security update

kernel-uek 2.6.32-400.36.7uek - sctp: Fix skackbacklog wrap-around problem Xufeng Zhang Orabug: 19404246 CVE-2014-4667...

5CVSS0.9AI score0.05926EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/07 12:0 a.m.•45 views

389-ds-base security update

1.2.11.15-34 - Release 1.2.11.15-34 - Resolves: 1123861 EMBARGOED CVE-2014-3562 unauthenticated information disclosure rhel-6.5.z DS 616, BZ 1123477...

5CVSS1.9AI score0.02198EPSS
Exploits0
Oracle linux
Oracle linux
•added 2014/08/07 12:0 a.m.•42 views

tomcat security update

0:7.0.42-8 - Resolves: CVE-2013-4590 - Resolves: CVE-2014-0119 0:7.0.42-7 - Related: CVE-2014-0099 incrementing release so rpmdiff doesn't complain about - no new entries in the changelog 0:7.0.42-6 - Resolves: CVE-2014-0099 Fix possible overflow when parsing - long values from byte array -...

5CVSS3.3AI score0.2006EPSS
Exploits2
Oracle linux
Oracle linux
•added 2014/08/06 12:0 a.m.•88 views

php security update

5.4.16-23 - fileinfo: cdfunpacksummaryinfo excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdfcheckstreamoffset insufficient boundary check. CVE-2014-3479 - fileinfo: cdfcountchain insufficient boundary check...

7.5CVSS2.8AI score0.30128EPSS
Exploits6
Oracle linux
Oracle linux
•added 2014/08/06 12:0 a.m.•67 views

php53 and php security update

5.3.3-27.1 - core: type confusion issue in phpinfo. CVE-2014-4721 - date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712 - core: fix heap-based buffer overflow in DNS TXT record parsing. CVE-2014-4049 - core: unserialize SPL ArrayObject / SPLObjectStorage type confusion flaw...

7.5CVSS1.7AI score0.30128EPSS
Exploits7
Oracle linux
Oracle linux
•added 2014/08/06 12:0 a.m.•75 views

kernel security and bug fix update

3.10.0-123.6.3 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.6.3 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.6.2.el7 - s390 ptrace: correct insufficient sanitization when setting psw mask Hendrik Brueckner 1114090...

7.2CVSS7.2AI score0.05926EPSS
Exploits15
Oracle linux
Oracle linux
•added 2014/08/05 12:0 a.m.•39 views

samba security and bug fix update

4.1.1-37 - resolves: 1126013 - CVE-2014-3560: remote code execution in nmbd. 4.1.1-36 - resolves: 1115490 - Fix potential Samba file corruption...

7.9CVSS7.4AI score0.56378EPSS
Exploits0
Total number of security vulnerabilities9180