Vulnerability patches (RPM's) for RHEL

Hi Erman,

From where i can download all the below vulnerability patches? Please share me the correct download url.


Vulnerabilities:

Os Patches ( RPM's) to be applied on the TEST and PROD Linux servers

CVE-2014-6271
bash-4.1.2-29.el6.0.1.x86_64.rpm
bash-doc-4.1.2-29.el6.0.1.x86_64.rpm
 
ELSA-2014-0917
nspr-4.10.6-1.el6_5.i686.rpm
nspr-4.10.6-1.el6_5.x86_64.rpm
nspr-devel-4.10.6-1.el6_5.i686.rpm
nspr-devel-4.10.6-1.el6_5.x86_64.rpm
nss-3.16.1-4.0.1.el6_5.i686.rpm
nss-3.16.1-4.0.1.el6_5.x86_64.rpm
nss-devel-3.16.1-4.0.1.el6_5.i686.rpm
nss-devel-3.16.1-4.0.1.el6_5.x86_64.rpm
nss-pkcs11-devel-3.16.1-4.0.1.el6_5.i686.rpm
nss-pkcs11-devel-3.16.1-4.0.1.el6_5.x86_64.rpm
nss-sysinit-3.16.1-4.0.1.el6_5.x86_64.rpm
nss-tools-3.16.1-4.0.1.el6_5.x86_64.rpm
nss-util-3.16.1-1.el6_5.i686.rpm
nss-util-3.16.1-1.el6_5.x86_64.rpm
nss-util-devel-3.16.1-1.el6_5.i686.rpm
nss-util-devel-3.16.1-1.el6_5.x86_64.rpm
 
ELSA-2014-1293
bash-4.1.2-15.el6_5.1.x86_64.rpm
bash-doc-4.1.2-15.el6_5.1.x86_64.rpm
 
ELSA-2014-1306
bash-4.1.2-15.el6_5.2.x86_64.rpm
bash-doc-4.1.2-15.el6_5.2.x86_64.rpm  
 
ELSA-2015-0092
glibc-2.12-1.149.el6_6.5.i686.rpm
glibc-2.12-1.149.el6_6.5.x86_64.rpm
glibc-common-2.12-1.149.el6_6.5.x86_64.rpm
glibc-devel-2.12-1.149.el6_6.5.i686.rpm
glibc-devel-2.12-1.149.el6_6.5.x86_64.rpm
glibc-headers-2.12-1.149.el6_6.5.x86_64.rpm
glibc-static-2.12-1.149.el6_6.5.i686.rpm
glibc-static-2.12-1.149.el6_6.5.x86_64.rpm
glibc-utils-2.12-1.149.el6_6.5.x86_64.rpm
nscd-2.12-1.149.el6_6.5.x86_64.rpm
 
ELSA-2015-0251
libsmbclient-3.6.23-14.0.1.el6_6.i686.rpm
libsmbclient-3.6.23-14.0.1.el6_6.x86_64.rpm
libsmbclient-devel-3.6.23-14.0.1.el6_6.i686.rpm
libsmbclient-devel-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-client-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-common-3.6.23-14.0.1.el6_6.i686.rpm
samba-common-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-doc-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-domainjoin-gui-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-glusterfs-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-swat-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-winbind-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-winbind-clients-3.6.23-14.0.1.el6_6.i686.rpm
samba-winbind-clients-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-winbind-devel-3.6.23-14.0.1.el6_6.i686.rpm
samba-winbind-devel-3.6.23-14.0.1.el6_6.x86_64.rpm
samba-winbind-krb5-locator-3.6.23-14.0.1.el6_6.x86_64.rpm
 
ELSA-2016-0175
glibc-2.12-1.166.el6_7.7.i686.rpm
glibc-2.12-1.166.el6_7.7.x86_64.rpm
glibc-common-2.12-1.166.el6_7.7.x86_64.rpm
glibc-devel-2.12-1.166.el6_7.7.i686.rpm
glibc-devel-2.12-1.166.el6_7.7.x86_64.rpm
glibc-headers-2.12-1.166.el6_7.7.x86_64.rpm
glibc-static-2.12-1.166.el6_7.7.i686.rpm
glibc-static-2.12-1.166.el6_7.7.x86_64.rpm
glibc-utils-2.12-1.166.el6_7.7.x86_64.rpm
nscd-2.12-1.166.el6_7.7.x86_64.rpm
 
ELSA-2016-0370
nss-util-3.19.1-5.el6_7.i686.rpm
nss-util-3.19.1-5.el6_7.x86_64.rpm
nss-util-devel-3.19.1-5.el6_7.i686.rpm
nss-util-devel-3.19.1-5.el6_7.x86_64.rpm
 
ELSA-2016-0612
ipa-admintools-3.0.0-47.el6_7.2.x86_64.rpm
ipa-client-3.0.0-47.el6_7.2.x86_64.rpm
ipa-python-3.0.0-47.el6_7.2.x86_64.rpm
ipa-server-3.0.0-47.el6_7.2.x86_64.rpm
ipa-server-selinux-3.0.0-47.el6_7.2.x86_64.rpm
ipa-server-trust-ad-3.0.0-47.el6_7.2.x86_64.rpm
ldb-tools-1.1.25-2.el6_7.x86_64.rpm
libldb-1.1.25-2.el6_7.i686.rpm
libldb-1.1.25-2.el6_7.x86_64.rpm
libldb-devel-1.1.25-2.el6_7.i686.rpm
libldb-devel-1.1.25-2.el6_7.x86_64.rpm
libtalloc-2.1.5-1.el6_7.i686.rpm
libtalloc-2.1.5-1.el6_7.x86_64.rpm
libtalloc-devel-2.1.5-1.el6_7.i686.rpm
libtalloc-devel-2.1.5-1.el6_7.x86_64.rpm
libtdb-1.3.8-1.el6_7.i686.rpm
libtdb-1.3.8-1.el6_7.x86_64.rpm
libtdb-devel-1.3.8-1.el6_7.i686.rpm
libtdb-devel-1.3.8-1.el6_7.x86_64.rpm
libtevent-0.9.26-2.el6_7.i686.rpm
libtevent-0.9.26-2.el6_7.x86_64.rpm
libtevent-devel-0.9.26-2.el6_7.i686.rpm
libtevent-devel-0.9.26-2.el6_7.x86_64.rpm
openchange-1.0-7.el6_7.x86_64.rpm
openchange-client-1.0-7.el6_7.x86_64.rpm
openchange-devel-1.0-7.el6_7.x86_64.rpm
openchange-devel-docs-1.0-7.el6_7.x86_64.rpm
pyldb-1.1.25-2.el6_7.x86_64.rpm
pyldb-devel-1.1.25-2.el6_7.x86_64.rpm
pytalloc-2.1.5-1.el6_7.x86_64.rpm
pytalloc-devel-2.1.5-1.el6_7.x86_64.rpm
python-tdb-1.3.8-1.el6_7.x86_64.rpm
python-tevent-0.9.26-2.el6_7.x86_64.rpm
samba4-4.2.10-6.el6_7.x86_64.rpm
samba4-client-4.2.10-6.el6_7.x86_64.rpm
samba4-common-4.2.10-6.el6_7.x86_64.rpm
samba4-dc-4.2.10-6.el6_7.x86_64.rpm
samba4-dc-libs-4.2.10-6.el6_7.x86_64.rpm
samba4-devel-4.2.10-6.el6_7.x86_64.rpm
samba4-libs-4.2.10-6.el6_7.x86_64.rpm
samba4-pidl-4.2.10-6.el6_7.x86_64.rpm
samba4-python-4.2.10-6.el6_7.x86_64.rpm
samba4-test-4.2.10-6.el6_7.x86_64.rpm
samba4-winbind-4.2.10-6.el6_7.x86_64.rpm
samba4-winbind-clients-4.2.10-6.el6_7.x86_64.rpm
samba4-winbind-krb5-locator-4.2.10-6.el6_7.x86_64.rpm
tdb-tools-1.3.8-1.el6_7.x86_64.rpm
 
ELSA-2016-0611
libsmbclient-3.6.23-30.0.1.el6_7.i686.rpm
libsmbclient-3.6.23-30.0.1.el6_7.x86_64.rpm
libsmbclient-devel-3.6.23-30.0.1.el6_7.i686.rpm
libsmbclient-devel-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-client-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-common-3.6.23-30.0.1.el6_7.i686.rpm
samba-common-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-doc-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-domainjoin-gui-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-glusterfs-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-swat-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-winbind-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-winbind-clients-3.6.23-30.0.1.el6_7.i686.rpm
samba-winbind-clients-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-winbind-devel-3.6.23-30.0.1.el6_7.i686.rpm
samba-winbind-devel-3.6.23-30.0.1.el6_7.x86_64.rpm
samba-winbind-krb5-locator-3.6.23-30.0.1.el6_7.x86_64.rpm
 
ELSA-2017-1100
nss-3.28.4-1.0.1.el6_9.src.rpm
nss-util-3.28.4-1.el6_9.src.rpm
nss-3.28.4-1.0.1.el6_9.i686.rpm
nss-3.28.4-1.0.1.el6_9.x86_64.rpm
nss-devel-3.28.4-1.0.1.el6_9.i686.rpm
nss-devel-3.28.4-1.0.1.el6_9.x86_64.rpm
nss-pkcs11-devel-3.28.4-1.0.1.el6_9.i686.rpm
nss-pkcs11-devel-3.28.4-1.0.1.el6_9.x86_64.rpm
nss-sysinit-3.28.4-1.0.1.el6_9.x86_64.rpm
nss-tools-3.28.4-1.0.1.el6_9.x86_64.rpm
nss-util-3.28.4-1.el6_9.i686.rpm
nss-util-3.28.4-1.el6_9.x86_64.rpm
nss-util-devel-3.28.4-1.el6_9.i686.rpm
nss-util-devel-3.28.4-1.el6_9.x86_64.rpm
 
ELSA-2017-1267
rpcbind-0.2.0-13.el6_9.x86_64.rpm
 
ELSA-2017-1268
ibtirpc-0.2.1-13.el6_9.i686.rpm
libtirpc-0.2.1-13.el6_9.x86_64.rpm
libtirpc-devel-0.2.1-13.el6_9.i686.rpm
libtirpc-devel-0.2.1-13.el6_9.x86_64.rpm
 
ELSA-2017-1382
sudo-1.8.6p3-28.el6_9.x86_64.rpm
sudo-devel-1.8.6p3-28.el6_9.i686.rpm
sudo-devel-1.8.6p3-28.el6_9.x86_64.rpm
 
ELSA-2017-1364
nss-3.28.4-3.0.1.el6_9.i686.rpm
nss-3.28.4-3.0.1.el6_9.x86_64.rpm
nss-devel-3.28.4-3.0.1.el6_9.i686.rpm
nss-devel-3.28.4-3.0.1.el6_9.x86_64.rpm
nss-pkcs11-devel-3.28.4-3.0.1.el6_9.i686.rpm
nss-pkcs11-devel-3.28.4-3.0.1.el6_9.x86_64.rpm
nss-sysinit-3.28.4-3.0.1.el6_9.x86_64.rpm
nss-tools-3.28.4-3.0.1.el6_9.x86_64.rpm
 
ELSA-2017-3580
dtrace-modules-3.8.13-118.18.4.el6uek-0.4.5-3.el6.x86_64.rpm
kernel-uek-3.8.13-118.18.4.el6uek.x86_64.rpm
kernel-uek-debug-3.8.13-118.18.4.el6uek.x86_64.rpm
kernel-uek-debug-devel-3.8.13-118.18.4.el6uek.x86_64.rpm
kernel-uek-devel-3.8.13-118.18.4.el6uek.x86_64.rpm
kernel-uek-doc-3.8.13-118.18.4.el6uek.noarch.rpm
kernel-uek-firmware-3.8.13-118.18.4.el6uek.noarch.rpm

Sorry for the type on my previous update as the operating system version:

[root@d1logpst01 ~]# lsb_release  -id
Distributor ID: OracleServer
Description:    Oracle Linux Server release 6.9

share me the vulnerability rpm's download link url.

Thanks

CVE and ELSA patches can be applied using yum.

Example:

yum update --advisory ELSA-2012-1141
yum update --cve CVE-2012-3954

These security fixes are important things.

First apply them on TEST , test everything. Then apply them to PROD.

Thanks Erman for the update.

1. Could you please tell me what these below commands will do in nature?

yum update --advisory ELSA-2012-1141
yum update --cve CVE-2012-3954

2. Should I have to  run below commands by connecting as root user in TEST linux server using yum and that will remove/resolve the vulnerability?

yum update --cve CVE-2014-6271
yum update --advisory ELSA-2014-0917

Please clarify.

Thanks
Karthik

ELSA stands for Enterprise Linux Security Advisory.

So, the ELSAs are advisories.

CVE stands for Common Vulnerabilities and Exposures.

So these are 2 different types of patches and I sent you the commands for applying them.

The commands are self explanatory.
One of the is for applying CVEs , other one is for applying ELSAs.

These commands are used for updating only those packages that correspond to a CVE or ELSA.

But, again.. Test them on your TEST system first.

Also read "yum" related articles a little bit.