9180 matches found
php security update
5.4.16-23.1 - gd: fix NULL pointer dereference in gdImageCreateFromXpm. CVE-2014-2497 - gd: fix NUL byte injection in file names. CVE-2014-5120 - fileinfo: fix extensive backtracking in regular expression incomplete fix for CVE-2013-7345. CVE-2014-3538 - fileinfo: fix mconvert incorrect handling ...
xerces-j2 security update
2.11.0-17 - Fix XML parsing bug JAXP, 8017298 - Resolves: CVE-2013-4002...
bash security update
3.0-27.0.3 - Rework env function definition for safety Florian Weimer CVE-2014-7169...
nss security update
nss 3.16.2-7.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-7 - Resolves: Bug 1145433 - CVE-2014-1568 3.16.2-6 - Rolling back to commit e5fb6e476c179665976e906604496cbbb24f22a7 - Related: Bug 1145433 nss-softokn 3.16.2-3 - Resolves: Bug 1145433 - CVE-2014-1568 nss-util 3.16.2-2 -...
bash security update
4.1.2-15.1.0.1 - Preliminary fix for CVE-2014-7169...
bash security update
4.2.45-5.4 - CVE-2014-7169 Resolves: 1146324 4.2.45-5.3 - amend patch to match upstream's Related: 1146324 4.2.45-5.2 - Fix-up the patch Related: 1141647...
bash security update
3.2-33.1.0.1 - Preliminary fix for CVE-2014-7169...
bash security update
3.0-27.0.2 - Preliminary fix for CVE-2014-7169...
bash security update
4.2.45-5.2.0.1 - Preliminary fix for CVE-2014-7169...
haproxy security update
1.5.2-3 - Fix remote client denial of service vulnerability 1138191...
bash security update
4.1.2-15.1 - Check for fishy environment Resolves: 1141645...
bash security update
3.0-27.0.1 - Check for fishy environment Ondrej Oprala Resolves: 1141644...
kernel security and bug fix update
3.10.0-123.8.1 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.8.1 - scsi fnic: fix broken FIP discovery by initializing multicast address Chris Leech 1119727 1100078 - scsi libfcoe: Make fcoesysfs optional / fix fnic NULL exception Chris Leech 1119727 1100078 - fs nfs: Don't mark the data...
krb5 security update
1.6.1-80.el5 - rebuild 1.6.1-79.el5 - incorporate fix for MITKRB5-SA-2014-001 CVE-2014-4345, 1132785...
conga security and bug fix update
0.12.2-81.0.2.el5 - Replaced redhat logo image in Data.fs 0.12.2-81.0.1.el5 - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz 0.12.2-81 - luci: prevent non-admin user from unauthorized executive access Resolves: rhbz1089310 0.12.2-79 - luc...
krb5 security and bug fix update
1.6.1-78.el5 - gssapi: pull in upstream fix for a possible NULL dereference in spnego CVE-2014-4344, 1121509 1.6.1-77.el5 - fix what appears to be a cosmetic error in the patch for self-tests for CVE-2014-4341 1.6.1-76.el5 - run the backported self-tests, such as they are, for CVE-2014-4341...
bind97 security and bug fix update
32:9.7.0-21.P2 - Fix CVE-2014-0591 32:9.7.0-20.P2 - Fix init script to not unmount filesystem when ROOTDIR is empty 1059118 32:9.7.0-19.P2 - fix for CVE-2013-4854 32:9.7.0-18.P2 - fix CVE-2013-2266...
automake security update
1.9.6-3 - fix for CVE-2012-3386 -- 'make distcheck' was making the directory distdir world-writeable 848470...
nss and nspr security, bug fix, and enhancement update
3.16.1-2 - Backport nss-3.12.6 upstream fix required by Firefox 31 ESR - Resolves: Bug 1110860 3.16.1-1 - Rebase to nss-3.16.1 for FF31 - Resolves: Bug 1110860 - Rebase nss in RHEL 5.11 to NSS 3.16.1, required for FF 31...
axis security update
0:1.2.1-7.5 - Fix MITM security vulnerability - Use GCJ friendly patch - Resolves: CVE-2014-3596 0:1.2.1-7.4 - Fix MITM security vulnerability - Resolves: CVE-2014-3596...
Unbreakable Enterprise kernel security update
3.8.13-44.1.1 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590596 CVE-2014-3917...
procmail security update
3.22-34.1 - Fixed buffer overflow in formail Resolves: CVE-2014-3618...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.36.8uek - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590638 CVE-2014-3917 - futex: Fix errors in nested key ref-counting Darren Hart Orabug: 19590443 CVE-2014-0205...
unbreakable enterprise kernel security bug fix update
2.6.39-400.215.10 - auditsc: auditkrule mask accesses need bounds checking Andy Lutomirski Orabug: 19590597 CVE-2014-3917 2.6.39-400.215.9 - oracleasm: Add support for new error return codes from block/SCSI Martin K. Petersen Orabug: 18438934 2.6.39-400.215.8 - ibipoib: CSUM support in connected...
kernel security and bug fix update
2.6.32-431.29.2 - kernel futex: Fix errors in nested key ref-counting Denys Vlasenko 1094457 1094458 CVE-2014-0205 - net vxlan: fix NULL pointer dereference Jiri Benc 1114549 1096351 CVE-2014-3535 2.6.32-431.29.1 - mm hugetlb: ensure hugepage access is denied if hugepages are not supported Gustav...
jakarta-commons-httpclient security update
1:3.1-16 - Fix MITM security vulnerability - Resolves: CVE-2014-3577...
kernel security and bug fix update
kernel 2.6.18-371.12.1 - audit auditsc: auditkrule mask accesses need bounds checking Denys Vlasenko 1102702 1102703 CVE-2014-3917 - mm writeback: Fix hang when low on memory due to NFS traffic Larry Woodman 1125246 1080194 - net tg3: Fix Read DMA workaround for 5719 A0 Ivan Vecera 1121017 924590...
kernel security and bug fix update
kernel 2.6.18-371.12.1.0.1 - ocfs2: dlm: fix recovery hung Junxiao Bi orabug 13956772 - i386: fix MTRR code Zhenzhong Duan orabug 15862649 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe...
squid security update
7:3.3.8-12 - Resolves: 1134933 - CVE-2014-3609 assertion failure in header processing...
thunderbird security update
24.8.0-1.0.1.el65 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 24.8.0-1 - Update to 24.8.0...
httpcomponents-client security update
4.2.5-5 - Fix MITM security vulnerability - Resolves: CVE-2014-3577...
squid security update
7:3.1.10-22 - Resolves: 1134936 - CVE-2013-4115 buffer overflow when processing overly long DNS names 7:3.1.10-21 - Resolves: 1134936 - CVE-2014-3609 assertion failure in header processing...
firefox security update
firefox 24.8.0-1.0.1.el70 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat one 24.8.0-1 - Update to 24.8.0 ESR xulrunner 24.8.0-1.0.1.el70 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 24.8.0-...
glibc security update
2.12-1.132.4 - Remove gconv transliteration loadable modules support CVE-2014-5119, - nlfindlocale: Improve handling of crafted locale names CVE-2014-0475,...
mod_wsgi security update
3.4-12 - fix possible privilege escalation in setuid CVE-2014-0240...
Unbreakable Enterprise kernel security and bug fix update
kernel-uek 3.8.13-44 - net: Use netlinknscapable to verify the permisions of netlink messages Eric W. Biederman Orabug: 19404229 CVE-2014-0181 - net: Add variants of capable for use on netlink messages Eric W. Biederman Orabug: 19404229 - net: Add variants of capable for use on on sockets Eric W...
qemu-kvm security and bug fix update
0.12.1.2-2.415.el65.14 - The commit for zrelease .13 was incomplete; the changes to qemu-kvm.spec did not include the '%patchNNNN -p1' lines for patches 4647 through 4655; so although the patch files themselves were committed, the srpm build did not pick them up. In addition, the commit log did n...
nss, nss-util, nss-softokn security, bug fix, and enhancement update
nss 3.16.2-2.0.1.el70 - Added nss-vendor.patch to change vendor 3.16.2-2 - Restore missing options descriptions fix for certutil manpage - Document certutil options --dump-ext-val, --extGeneric, and --extSAN - Related: Bug 1124659 - Rebase RHEL 7 to at least NSS 3.16.1 3.16.2-1 - Rebase to...
openssl security update
1.0.1e-34.4 - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3507 - avoid memory leak in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3509 - fix race condition when parsing serve...
openssl security update
0.9.8e-27.4 - fix CVE-2014-0221 - recursion in DTLS code leading to DoS - fix CVE-2014-3505 - doublefree in DTLS packet processing - fix CVE-2014-3506 - avoid memory exhaustion in DTLS - fix CVE-2014-3508 - fix OID handling to avoid information leak - fix CVE-2014-3510 - fix DoS in anonymous ECDH...
tomcat6 security update
0:6.0.24-78 - Related: CVE-2013-4590 - remove xml schema names javaee5, - javaeewebservices12, and javaeewebservices12client - from descriptor.DigesterFactory initialization. These - schema definitions are not relevant to 6.0.24 as the version - of their spec did not exist at the time. 0:6.0.24-7...
unbreakable enterprise kernel security update
2.6.39-400.215.7 - sctp: Fix skackbacklog wrap-around problem Xufeng Zhang Orabug: 19404245 CVE-2014-4667...
unbreakable enterprise kernel security update
kernel-uek 3.8.13-35.3.5.el7uek - net: Use netlinknscapable to verify the permisions of netlink messages Eric W. Biederman Orabug: 19404231 CVE-2014-0181 - net: Add variants of capable for use on netlink messages Eric W. Biederman Orabug: 19404231 - net: Add variants of capable for use on on...
unbreakable enterprise kernel security update
kernel-uek 2.6.32-400.36.7uek - sctp: Fix skackbacklog wrap-around problem Xufeng Zhang Orabug: 19404246 CVE-2014-4667...
389-ds-base security update
1.2.11.15-34 - Release 1.2.11.15-34 - Resolves: 1123861 EMBARGOED CVE-2014-3562 unauthenticated information disclosure rhel-6.5.z DS 616, BZ 1123477...
tomcat security update
0:7.0.42-8 - Resolves: CVE-2013-4590 - Resolves: CVE-2014-0119 0:7.0.42-7 - Related: CVE-2014-0099 incrementing release so rpmdiff doesn't complain about - no new entries in the changelog 0:7.0.42-6 - Resolves: CVE-2014-0099 Fix possible overflow when parsing - long values from byte array -...
php security update
5.4.16-23 - fileinfo: cdfunpacksummaryinfo excessive looping DoS. CVE-2014-0237 - fileinfo: CDF property info parsing nelements infinite loop. CVE-2014-0238 - fileinfo: cdfcheckstreamoffset insufficient boundary check. CVE-2014-3479 - fileinfo: cdfcountchain insufficient boundary check...
php53 and php security update
5.3.3-27.1 - core: type confusion issue in phpinfo. CVE-2014-4721 - date: fix heap-based buffer over-read in DateInterval. CVE-2013-6712 - core: fix heap-based buffer overflow in DNS TXT record parsing. CVE-2014-4049 - core: unserialize SPL ArrayObject / SPLObjectStorage type confusion flaw...
kernel security and bug fix update
3.10.0-123.6.3 - Oracle Linux certificates Alexey Petrenko 3.10.0-123.6.3 - net l2tpppp: fail when socket option level is not SOLPPPOL2TP Petr Matousek 1119465 1119466 CVE-2014-4943 3.10.0-123.6.2.el7 - s390 ptrace: correct insufficient sanitization when setting psw mask Hendrik Brueckner 1114090...
samba security and bug fix update
4.1.1-37 - resolves: 1126013 - CVE-2014-3560: remote code execution in nmbd. 4.1.1-36 - resolves: 1115490 - Fix potential Samba file corruption...