8990 matches found
kernel security and bug fix update
2.6.32-358.18.1 - x86 perf/x86: Fix offcorersp valid mask for SNB/IVB Nikola Pajkovsky 971314 971315 CVE-2013-2146 - net br: fix schedule while atomic issue in brfeaturesrecompute Jiri Pirko 990464 980876 - scsi isci: Fix a race condition in the SSP task management path David Milburn 990470 97860...
kernel security and bug fix update
kernel 2.6.18-348.16.1 - x8664 Fix kdump failure due to 'x8664: Early segment setup' Paolo Bonzini 988251 987244 - xen skip tracing if it was disabled instead of dying Igor Mammedov 987976 967053 - ia64 fix KABI breakage on ia64 Prarit Bhargava 966878 960783 - x86 fpu: fix CONFIGPREEMPT=y...
kernel security and bug fix update
kernel 2.6.18-348.16.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
httpd security update
2.2.15-29.0.1.el64 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-29 - moddav: add security fix for CVE-2013-1896 991368...
firefox security update
firefox 17.0.8-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.8-1 - Update to 17.0.8 ESR xulrunner 17.0.8-3.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.8...
thunderbird security update
17.0.8-5.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.8-5 - Update to 17.0.8 ESR - Added strict aliasing patch mozbz821502...
nss, nss-util, nss-softokn, and nspr security update
nspr 4.9.5-2 - Update to NSPR495RTM - Resolves: rhbz927186 - Rebase to nspr-4.9.5 - Add upstream URL for an existing patch per packaging guidelines 4.9.5-1 - Resolves: Rebase to nspr-4.9.5 4.9.2-1 - Update to nspr-4.9.2 - Related: rhbz863286 nss 3.14.3-4.0.1.el64 - Added nss-vendor.patch to chang...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.2-4 - Resolves: rhbz924741 - Rebase to nspr-4.9.5 nss 3.14.3-6 - Resolves: rhbz986969 - nssutilReadSecmodDB leaks memory 3.14.3-5 - Define -DNOFORKCHECK when compiling softoken for ABI compatibility - Remove the unused and obsolete nss-nochktest.patch - Resolves: rhbz949845 - RFERHEL5...
sos security update
1.7-9.62.0.1.el59.1 - add patch to remove all sysrq echo commands from sysreport.legacy John Sobecki orabug 11061754 - comment out rh-upload-core and README.rh-upload-core in specfile 1.7-9.62.el59.1 - Remove anaconda-ks.cfg collection from general plug-in Resolves: bz965807 1.7-9.62.el59 - Elide...
389-ds-base security and bug fix update
1.2.11.15.20 - Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-thresholdpart 5 limits not displayed correctly. ticket 47427 1.2.11.15.19 - Resolves: Bug 984970 - Overflow in nsslapd-disk-monitoring-thresholdpart 4. ticket 47427 - Patch was not added 1.2.11.15.19 - Resolves: Bug 984970 ...
bind97 security update
32:9.7.0-17.P2.2 - fix for CVE-2013-4854...
bind security update
32:9.8.2-0.17.rc1.0.2.el64.5 - bump release and build for ULN 32:9.8.2-0.17.rc1.5 - fix CVE-2013-4854...
qemu-kvm security update
qemu-kvm-0.12.1.2-2.355.el64.6 - kvm-qga-cast-to-int-for-DWORD-type.patch bz980758 - kvm-qga-remove-undefined-behavior-in-gainstallservice.patch bz980758 - kvm-qga-diagnostic-output-should-go-to-stderr.patch bz980758 - kvm-qainstallservice-nest-error-paths-more-idiomatically.patch bz980758 -...
php security update
4.3.9-3.37.0.1 - rebuild with higher version 4.3.9-3.36.0.1 - add security fix for CVE-2013-4113 orabz: 15820...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.29.2uek - Bluetooth: RFCOMM - Fix missing msgnamelen update in rfcommsockrecvmsg Mathias Krause Orabug: 17173824 CVE-2013-3225 - Bluetooth: fix possible info leak in btsockrecvmsg Mathias Krause Orabug: 17173824 CVE-2013-3224 - atm: update msgnamelen in vccrecvmsg Mathias...
unbreakable enterprise kernel security update
2.6.39-400.109.3 - Revert 'be2net: enable interrupts in probe' Jerry Snitselaar Orabug: 17179597 2.6.39-400.109.2 - be2net: enable interrupts in probe Jerry Snitselaar Orabug: 17080364 - Bluetooth: RFCOMM - Fix missing msgnamelen update in rfcommsockrecvmsg Mathias Krause Orabug: 17173830...
ruby security update
1.8.7.352-12 - Fix regression introduced by CVE-2013-4073 https://bugs.ruby-lang.org/issues/8575 ruby-2.0.0-p255-Fix-SSL-client-connection-crash-for-SAN-marked-critical.patch - Related: rhbz979300 1.8.7.352-11 - hostname check bypassing vulnerability in SSL client...
kernel security and bug fix update
2.6.32-358.14.1 - x86 apic: Add probe for apicflat Prarit Bhargava 975086 953342 2.6.32-358.13.1 - wireless b43: stop format string leaking into error msgs John Linville 971387 971389 CVE-2013-2852 - pci make sriov work with hotplug remove Takahiro MUNEDA 973555 965002 - net rtnl: fix info leak o...
php53 security update
5.3.3-13.1 - add security fix for CVE-2013-4113...
php security update
5.3.3-23 - add security fix for CVE-2013-4113...
kernel security and bug fix update
kernel 2.6.18-348.12.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
kernel security and bug fix update
kernel 2.6.18-348.12.1 - Revert: fs afs: export a couple of core functions for AFS write support Lukas Czerner 960014 692071 - Revert: fs ext4: drop ectype from the ext4extcache structure Lukas Czerner 960014 692071 - Revert: fs ext4: handle NULL pext in ext4extnextallocatedblock Lukas Czerner...
java-1.6.0-openjdk security update
1:1.6.0.0-1.62.1.11.11.90 - updated to icedtea6-1.11.11.90.tar.gz - removed upstreamed patch9 jaxp-backport-factoryfinder.patch - removed upstreamed patch10 fixToFontSecurityFix.patch. - modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch - Resolves: rhbz973129...
thunderbird security update
17.0.7-1.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.7-1 - Update to 17.0.7 ESR...
firefox security update
firefox 17.0.7-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.7-1 - Update to 17.0.7 ESR xulrunner 17.0.7-1.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.7...
curl security update
7.19.7-37 - fix heap-based buffer overflow in curleasyunescape CVE-2013-2174...
tomcat6 security update
0:6.0.24-57 - Related: CVE-2013-2067 Session fixation 0:6.0.24-56 - Resolves: CVE-2013-2067 session fixation...
java-1.7.0-openjdk security update
1.7.0.25-2.3.10.3.0.1.el64 - Update DISTRONAME in specfile 1.7.0.25-2.3.10.3.el6 - removed upstreamed patch1000 MBeanFix.patch - updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - Resolves: rhbz973119 1.7.0.25-2.3.10.2.el6 - added patch1000 MBeanFix.patch to fix regressions caused by...
java-1.7.0-openjdk security update
1.7.0.25-2.3.10.4.0.1.el59 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.25-2.3.10.4.el5 - updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz973117 1.7.0.25-2.3.10.3.el5 - reverted fix for license...
krb5 security update
1.10.3-10.3 - pull up fix for UDP ping-pong flaw in kpasswd service CVE-2002-2443,...
Unbreakable Enterprise kernel Security update
2.6.39-400.109.1 - while removing a non-empty directory, the kernel dumps a message: rmdir,21743,1:ocfs2unlink:953 ERROR: status = -39 Xiaowei.Hu Orabug: 16790405 - stop mig handler when lockres in progress ,and return -EAGAIN Xiaowei.Hu Orabug: 16876446 2.6.39-400.108.1 - Revert 'dlmglue race...
kernel security, bug fix, and enhancement update
2.6.32-358.11.1 - kernel perf: fix perfsweventenabled array out-of-bound access Petr Matousek 962793 962794 CVE-2013-2094 2.6.32-358.10.1 - scsi be2iscsi : Fix the NOP-In handling code path Nikola Pajkovsky 955504 947550 - scsi be2iscsi: Fix memory leak in control path of driver Rob Evers 955504...
Unbreakable Enterprise kernel Security update
2.6.32-400.29.1 - KVM: add missing void user COPYING CREDITS Documentation Kbuild MAINTAINERS Makefile README REPORTING-BUGS arch block crypto drivers firmware fs include init ipc kernel lib mm net samples scripts security sound tools uek-rpm usr virt cast to accessok call Heiko Carstens Orabug:...
mesa security update
9.0-0.8.3 - CVE-2013-1872: Updated patch with testing from upstream 963063 9.0-0.8.2 - CVE-2013-1872: Updated patch from upstream 963063 9.0-0.8.1 - CVE-2013-1872: Updated patch 963063 9.0-0.8 - CVE-2013-1872: memory corruption oob read/write on intel 963063 - CVE-2013-1993: interger overflows in...
mesa security update
6.5.1-7.11 - CVE-2013-1993 - buffer overflows in DRI protocol 963066...
qemu-kvm security and bug fix update
0.12.1.2-2.355.el64.5 - kvm-e1000-fix-link-down-handling-with-auto-negotiation.patch bz907716 - kvm-e1000-unbreak-the-guest-network-when-migration-to-RH.patch bz907716 - kvm-reimplement-errorsetg-and-errorsetgerrno-for-RHEL.patch bz957056 -...
gnutls security update
2.8.5-10.2 - fix CVE-2013-2116 - fix DoS regression in CVE-2013-1619 upstream patch 966754...
libtirpc security update
0.2.1-64 - Removed a svcfreeargs call from svcdgfreeargs bz 953735...
tomcat6 security update
0:6.0.24-55 - Related: rhbz955976 CVE-2013-1976. Changed log location - so only root can use it. Touching TOMCATLOG is no longer - required 0:6.0.24-54 - Resolves: rhbz956771 Related: CVE-2012-3439 digest - authentication broken after errata for cve-2012-3439 - patch for 3439 corrected 0:6.0.24-5...
tomcat5 security update
0:5.5.23-0jpp.40 - Related: CVE-2013-1976 It was found during additional testing - that the tomcat5 init may fail to start because the user - shell is set to sbin/nologin. Fixed in init scrip. SU now - uses -s /bin/sh during startup 0:5.5.23-0jpp.39 - Resolves: CVE-2013-1976 Improper TOMCATLOG...
1
kernel 2.6.18-348.6.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
kernel security and bug fix update
kernel 2.6.18-348.6.1 - char ipmi: use a tasklet for handling received messages Tony Camuso 953435 947732 - char ipmi: do runtocompletion properly in deliverrecvmsg Tony Camuso 953435 947732 - fs nfs4: fix locking around clstateowners list Dave Wysochanski 954296 948317 - fs nfs: Fix bugs on shor...
kernel security update
2.6.32-358.6.2 - kernel perf: fix perfsweventenabled array out-of-bound access Petr Matousek 962793 962794 CVE-2013-2094...
libvirt security and bug fix update
0.10.2-18.0.1.el64.5 - Replace docs/et.png in tarball with blank image 0.10.2-18.el64.5 - daemon: Fix leak after listing volumes CVE-2013-1962 - Don't try to add non-existant devices to ACL rhbz958837 - Avoid spamming logs with cgroups warnings rhbz958837 - audit: Properly encode device path in...
openswan security update
2.6.32-20 Resolves: 960234 - CVE-2013-2053...
Unbreakable Enterprise kernel Security update
2.6.39-400.24.1 - perf: Treat attr.config as u64 in perfsweventinit Tommi Rantala Orabug: 16808734 CVE-2013-2094...
firefox security update
firefox 17.0.6-1.0.1.el64 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.6-1 - Update to 17.0.6 ESR 17.0.5-2 - Updated XulRunner check xulrunner 17.0.6-2.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed...
thunderbird security update
17.0.6-2.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.6-2 - Update to 17.0.6 ESR...
httpd security update
2.2.15-28.0.1.el64 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-28 - modrewrite: add security fix for CVE-2013-1862 953729 2.2.15-27 - add security fixes for CVE-2012-3499, CVE-2012-4558 915883, 915884...
hypervkvpd security and bug fix update
0-0.7.0.1.el59.3 - Add support for oracle os 0-0.7.3 - Fix for one more file descriptor leak rhbz953502 0-0.7.2 - Validate Netlink source address CVE-2012-5532 rhbz953560 0-0.7.1 - Fix for file descriptor leak rhbz953502...