OracleVM 2.2 : ntp (OVMSA-2015-0002)

The remote OracleVM system is missing necessary patches to address critical security updates : - don't generate weak control key for resolver CVE-2014-9293 - don't generate weak MD5 keys in ntp-keygen CVE-2014-9294 - fix buffer overflows via specially-crafted packets CVE-2014-9295 - increase...

OracleVM 2.2 : ntp (OVMSA-2009-0036)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix DoS with mode 7 packets 532639, CVE-2009-3563 - compile with -fno-strict-aliasing %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The package checks in this plugin were extracted from OracleV...

Fedora 19 : bzr-2.5.1-11.fc19 (2013-9538)

Fixes CVE-2013-2099, maliciously crafted SSL certificate can cause a denial of service. - Builds the C extensions from the Cython source instead of the pregenerated C files. - Build without strict-aliasing on Fedora versions which have a bug in the python distutils module. - Install the...

Fedora 18 : bzr-2.5.1-11.fc18 (2013-9620)

Fixes CVE-2013-2099, maliciously crafted SSL certificate can cause a denial of service. - Builds the C extensions from the Cython source instead of the pregenerated C files. - Build without strict-aliasing on Fedora versions which have a bug in the python distutils module. - Install the...

boost security update

1.41.0-15 - Add in explicit dependences between some boost subpackages 1.41.0-14 - Build with -fno-strict-aliasing 1.41.0-13 - In Boost.Pool, be careful not to overflow allocated chunk size boost-1.41.0-pool.patch 1.41.0-12 - Add an upstream patch that fixes computation of CRC in zlib streams. -...

cyrus-imapd security update

2.3.16-6.2 - do not use strict aliasing 2.3.16-6.1 - fix CVE-2011-1926: STARTTLS plaintext command injection vulnerability...

Fedora 13 : dhcp-4.1.1-27.P1.fc13 (2010-17303)

Thu Nov 4 2010 Jiri Popelka - 12:4.1.1-27.P1 - Fix for CVE-2010-3611 649880 - Wed Oct 13 2010 Jiri Popelka - 12:4.1.1-26.P1 - Server was ignoring client's Solicit where client included address/prefix as a preference 634842 - Tue Sep 7 2010 Jiri Popelka - 12:4.1.1-25.P1 - Hardening...

ntp security update

4.2.2p1-9.el54.1 - fix DoS with mode 7 packets 532639, CVE-2009-3563 - compile with -fno-strict-aliasing...

cyrus-imapd security update

2.3.7-2.2 - add -fno-strict-aliasing to cflags 2.3.7-2.1 - fix saslencode64's buffers 505427...

glib2 security update

2.12.3-4 - Build with -fno-strict-aliasing 2.12.3-3 - Fix CVE-2008-4316, overflows in the base64 handling functions - Fixes 487497...

nss_ldap security and bug fix update

253-5 - build with strict-aliasing disabled, because pamldap breaks strict-aliasing rules without it tools 253-4 - block SIGPIPE in the atfork handler, so that it doesnt trip up when attempting to drop a connection to the server 448833 253-3 - add patch to make netgroup enumeration fail due to la...

Security fix for the ALT Linux 8 package openssl10 version 0.9.7g-alt5

Sept. 27, 2006 Dmitry V. Levin 0.9.7g-alt5 - Applied upstream fixes for DoS bugs in ASN1 parser CVE-2006-2937, CVE-2006-2940. - Applied fix for buffer overflow in SSLgetsharedciphers, discovery and patch from Tavis Ormandy and Will Drewry of the Google Security Team CVE-2006-3738. - Applied fix f...