8990 matches found
java-1.7.0-openjdk security update
1.7.0.9-2.3.8.0.0.1.el59 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.9-2.3.8.0.el59 - Updated to icedtea7-forest-2.3 - Resolves: rhbz917181...
kernel security and bug fix update
kernel 2.6.18-348.2.1 - misc tainted flags, fix buffer size Prarit Bhargava 905829 901547 - net be2net: fix unconditionally returning IRQHANDLED in INTx Ivan Vecera 884704 878316 - net be2net: fix INTx ISR for interrupt behaviour on BE2 Ivan Vecera 884704 878316 - net be2net: fix a possible...
git security update
1.7.1-3.1 - fix CVE-2013-0308 1.7.1-3 - fix CVE-2010-3906...
nss-pam-ldapd security update
0.7.5-18.1 - Apply upstream r1926 to resolve FDSET array index error - Resolves: rhbz915361...
gnutls security update
2.8.5-10.1 - fix CVE-2013-1619 - fix TLS-CBC timing attack 908238...
openssl security update
1.0.0-27.2 - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 - DoS in OCSP signatures checking 908052 - enable compression only if explicitly asked for or OPENSSLDEFAULTZLIB environment variable is set fixes CVE-2012-4929 857051 - use securegetenv everywhere inste...
libxml2 security update
2.7.6-12.0.1.el64.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-12.el64.1 -detect and stop excessive entities expansion upon replacement rhbz912574 2.7.6-12.el6 - fix out of range heap access CVE-2012-5134 2.7.6-11.el6 - Change the...
bind security and enhancement update
32:9.8.2-0.17.rc1.0.2.el6.3 - bump up version and rebuild 32:9.8.2-0.17.rc1.0.1.el6.3 - add rrl.h into include dirs 32:9.8.2-0.27.rc1.3 - remove one bogus file from /usr/share/doc, introduced by RRL patch 32:9.8.2-0.17.rc1.2 - fix CVE-2012-5689 32:9.8.2-0.17.rc1.1 - add response rate limit patch...
cups security update
1:1.4.2-50:.4 - Added BrowseLDAPCACertFile and PrintcapGUI to restricted options list. 1:1.4.2-50:.3 - Fix for CVE-2012-5519 patch: handle blacklisted lines that have no value part gracefully. 1:1.4.2-50:.2 - Added documentation for new CVE-2012-5519 option. 1:1.4.2-50:.1 - Applied patch to fix...
sssd security, bug fix and enhancement update
1.9.2-82 - Resolves: rhbz888614 - Failure in memberof can lead to failed database update 1.9.2-81 - Resolves: rhbz903078 - TOCTOU race conditions by copying and removing directory trees 1.9.2-80 - Resolves: rhbz903078 - Out-of-bounds read flaws in autofs and ssh services responders 1.9.2-79 -...
dbus-glib security update
0.73-11 - Add patch to fix CVE-2013-0292 - Resolves: 913072...
libvirt security, bug fix, and enhancement update
libvirt-0.10.2-18.0.1.el6 - Replace docs/et.png in tarball with blank image 0.10.2-18 - rpc: Fix crash on error paths of message dispatching CVE-2013-0170 - spec: Disable libssh2 support rhbz513363 0.10.2-17 - storage: Fix lvcreate parameter for backingStore. rhbz896398 - qemu: Don't return succe...
php security, bug fix and enhancement update
5.3.3-22 - php-xml provides php-xmlreader and php-xmlwriter 874987 - fix possible NULL derefence and buffer overflow 879179 - fix zend garbage collector 848186, 868375 5.3.3-21 - fix CVE reference in previous changelog entry 5.3.3-20 - remove reproducer from security fix for CVE-2012-0781 5.3.3-1...
openchange security, bug fix and enhancement update
evolution-mapi 0.28.3-12 - Add patch for RH bug 903241 Double-free on message copy/move 0.28.3-11 - Add patch for RH bug 902932 Cannot connect with latest samba 0.28.3-10 - Drop multilib by obsoleting evolution-mapi 0.28.3-9 RH bug 886914. 0.28.3-9 - Adapt to OpenChange 1.0 RH bug 767678. 0.28.3-...
samba4 security, bug fix and enhancement update
4.0.0-55.rc4 - Fix dependencies of samba4-test package. - related: 896142 4.0.0-54.rc4 - Fix summary and description of dc subpackages. - resolves: 896142 - Remove conflicting libsmbclient.7 manpage. - resolves: 896240 4.0.0-53.rc4 - Fix provides filter rules to remove conflicting libraries from...
Oracle Linux 6 kernel security and bugfix update
2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...
kdelibs security update
6:4.3.4-19.0.1 - rebuild it with new rules add build requirement of installing libXdmcp-devel 6:4.3.4-19 - fix multilib conflict 6:4.3.4-18 - Resolves: bz866230, CVE-2012-4512 CVE-2012-4513 4.3.4-17 - Resolves: bz754161, bz587016, bz682611, bz734734, bz826114, respin 6:4.3.4-16 - Resolves:...
ipa security, bug fix and enhancement update
3.0.0-25.el6 - Filter generated winbind dependencies so the right version of samba can be installed. 905594 3.0.0-24.el6 - Add certmonger condrestart to server post scriptlet 903758 - Make certmonger a pre Requires 903758 - Add selinux-policy to Requirespre to avoid post scriptlet AVCs 903758 - S...
hplip security, bug fix and enhancement update
3.12.4-4 - Applied patch to fix CVE-2013-0200, temporary file vulnerability bug 902163. - Fixed hpijs-marker-supply patch. 3.12.4-3 - Make 'hp-check' check for hpaio set-up correctly bug 683007. 3.12.4-2 - Added more fixes from Fedora bug 731900. 3.12.4-1 - Re-based to 3.12.4 with fixes from Fedo...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-400.17.1 - This is a fix on dlmcleanmasterlist Xiaowei.Hu - RDS: fix rds-ping spinlock recursion jeff.liu Orabug: 16223050 - vhost: fix length for cross region descriptor Michael S. Tsirkin Orabug: 16387183 CVE-2013-0311 - kabifix: block/scsi: Allow request and error handling timeouts to b...
kernel security update
2.6.32-358.0.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871...
squid security and bug fix update
7:3.1.10-16 - Resolves: 888198 - CVE-2012-5643: improved upstream patch 7:3.1.10-15 - Reverts: 861062 - Squid delays on FQDNs that don't contains AAAA record 7:3.1.10-14 - Resolves: 888198 - CVE-2012-5643: patch 7:3.1.10-13 - Resolves: 888198 - CVE-2012-5643: DoS excessive resource consumption...
ccid security and bug fix update
1.3.9.6 - CVE-2010-4530 patch 1.3.9-5 - Fix dist tag 1.3.9-4 - Check multiple voltages, even if we started with 5V...
dhcp security and bug fix update
12:4.1.1-34.P1.0.1.el6 - Added oracle-errwarn-message.patch 12:4.1.1-34.P1 - Reducing the expiration time for an IPv6 lease may cause the server to crash CVE-2012-3955, 858130 12:4.1.1-33.P1 - Use getifaddrs for interface discovery code on Linux 803540 - dhclient-script: do not backup&restore...
rdma security, bug fix and enhancement update
ibacm 1.0.8-0.git7a3adb7 - Update to latest upstream via git repo - Resolves: bz866222, bz866223 ibsim 0.5-7 - Bump and rebuild against latest opensm - Related: bz756396 ibutils 1.5.7-7 - Bump and rebuild against latest opensm - Related: bz756396 infiniband-diags 1.5.12-5 - Bump and rebuild again...
pki-core security, bug fix and enhancement update
9.0.3-30 - Resolves 902474 - upgrading IPA from 2.2 to 3.0 sees certmonger errors 9.0.3-29 - Resolves 891985 - Increase FreeIPA root CA validity 9.0.3-28 - Resolves 885790 - Multiple cross-site scripting flaws by displaying CRL or processing profile 9.0.3-27 - Resolves 867640 - ipa-replica-instal...
pam security, bug fix, and enhancement update
1.1.1-13 - fix environment file handling problems - CVE-2011-3148 746619 and CVE-2011-3148 746620 1.1.1-12 - add character sequence test to pamcracklib - drop unused difignore option from pamcracklib 811243 - add enforceforroot option to pamcracklib 588893 - mention limits.d in the limits.conf5...
xinetd security and bug fix update
2:2.3.14-38 - CVE-2012-0862 xinetd: enables unintentional services over tcpmux port - Resolves: 883653 2:2.3.14-37 - Fix changelog entry - Related: 809271 2:2.3.14-36 - Fix: Service disabled due to bind failure - Resolves: 809271...
gdb security and bug fix update
7.2-60.el6 - Fix CVE-2011-4355 gdb: arbitrary code execution via .debuggdbscripts' Jan Kratochvil, RH BZ 756116. 7.2-58.el6 - Fix Backport gdb fix to handle identical binaries via additional build-id symlinks' RH BZ 836966...
Core X11 clients security, bug fix, and enhancement update
xorg-x11-apps 7.6-6 - x11perf 1.5.4 CVE-2011-2504 7.6-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora17MassRebuild 7.6-4 - Move xinput and xkill to xorg-x11-server-utils 7.6-3 - Rebuild for libpng 1.5 7.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora15MassRebuild 7.6-1 - x11perf 1.5...
evolution security and bug fix update
2.28.3-30.el6 - Update patch for RH bug 707526 Prints QP-encoded email encoded 2.28.3-29.el6 - Add patch for RH bug 890642 Crash due to implicit function declarations 2.28.3-28.el6 - Add patch for RH bug 885558 CVE 2011-3201. 2.28.3-27.el6 - Add patch for RH bug 805239 calendar alarm notification...
automake security update
1.11.1-4 - remove BR dependency on java-devel-openjdk 1.11.1-3 - fix for CVE-2012-3386 -- 'make distcheck' was making the directory distdir world-readable 848469...
util-linux-ng security, bug fix and enhancement update
2.17.2-12.9 - fix 892471 - CVE-2013-0157 mount folder existence information disclosure 2.17.2-12.8 - fix 679833 - RFE tailf should support - fix 719927 - RFE add adjtimex --compare functionality to hwclock - fix 730272 - losetup does not warn if backing file is 512 bytes - fix 730891 - document...
dnsmasq security, bug fix and enhancement update
2.48-13 - Fix the DHCP RELEASE problem when two or more dnsmasq instances are running rhbz887156 2.48-12 - Fixing initscript restart stop functions rhbz850944 2.48-11 - Revert previous changes because of many problems with --bind-dynamic option backport. - Dropping...
openssh security, bug fix and enhancement update
5.3p1-84.1 - Add a 'netcat mode' ssh -W 860809 5.3p1-83 - fix the required authentications patch 869903 5.3p1-82 - check return value of PK11Authenticate in ssh-add -n 782912 - document available methods to RequiredAuthentications12 821641 - fix ssh-copy-id 836650 - fix segmentation fault in ssh...
pcsc-lite security and bug fix update
1.5.2-11 - fix overflow issue introduced in 1.5.2-5 and incorrectly corrected in 1.5.2-6 1.5.2-10 - CVE-2010-4531 1.5.2-9 - Bump version number so it doesn't get confused with z stream build...
httpd security, bug fix, and enhancement update
2.2.15-26.0.1.el6 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-26 - htcacheclean: exit with code 4 also for 'restart' action 805810 2.2.15-25 - htcacheclean: exit with code 4 if nonprivileged user runs initscript 805810 - rotatelogs: omit the...
dovecot security and bug fix update
1:2.0.9-5 - script-login did not drop privileges correctly 709095 - fix directory traversal due to not obeying chroot directive 709097 - check proxy destination host against SSL certificate name 754980 1:2.0.9-4 - dovecot may not set correct premissions for mail folder 697620 1:2.0.9-3 - fix...
389-ds-base security, bug fix, and enhancement update
1.2.11.15-11 - Resolves: Bug 896256 - updating package touches configuration files 1.2.11.15-10 - Resolves: Bug 889083 - For modifiersName/internalModifiersName feature, internalModifiersname is not working for DNA plugin 1.2.11.15-9 - Resolves: Bug 891930 - DNA plugin no longer reports additiona...
java-1.7.0-openjdk security update
1.7.0.9-2.3.7.1.0.2.el63 - Increase release number and rebuild. 1.7.0.9-2.3.7.1.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.7.1.el63 - Updated main source tarball - Resolves: rhbz911529 1.7.0.9-2.3.7.0.el63 - Removed patch1000 sec-2013-02-01-8005615.patch - Removed patch1001...
java-1.6.0-openjdk security update
1:1.6.0.0-1.56.1.11.8 - Rebuild with updated sources - Resolves: rhbz911524 1:1.6.0.0-1.55.1.11.8 - Updated to icedtea6 1.11.8 - Removed patch9 7201064.patch - Removed patch10 8005615.patch - Removed not-applied patch 6664509.patch - Removed mauve as deadly outdated and run on QA - jtreg kept,...
java-1.6.0-openjdk security update
1:1.6.0.0-1.35.1.11.8.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.35.1.11.8 - Rebuild with updated source tarball - Resolves: rhbz911522 1:1.6.0.0-1.34.1.11.8 - Updated to icedtea6 1.11.8 - Removed patch9 7201064.patch - Removed patch10 8005615.patch - Removed not-applied patch 6664509.pat...
axis security update
0:1.2.1-7.3 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5784...
thunderbird security update
17.0.3-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-2 - Update to 17.0.2 ESR 17.0-2 - Update to 17.0 ESR 17.0b2-0.1 - Update to 17.0b2 17.0b1-0.1 - Rebase to 17 beta 1...
jakarta-commons-httpclient security update
1:3.1-0.7 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5783...
firefox security update
firefox 17.0.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-4 - Added NM preferences 17.0.2-3 - Update to 17.0.2 ESR 17.0.1-2 - Update to 17.0.1 ESR 17.0-1 - Update to 17.0 ESR 17.0-0.2.b4 - Update to 17 Beta 4...
elinks security update
0.12-0.21.pre5 - do not delegate GSSAPI credentials CVE-2012-4545...
java-1.6.0-openjdk security update
1:1.6.0.0-1.33.1.11.6.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.33.1.11.6 - removed patch9 revertTwoWrongSecurityPatches2013-02-06.patch - added patch9: 7201064.patch to be reverted - added patch10: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906705 1:1.6.0.0-1.32.1.11.6 - add...
java-1.6.0-openjdk security update
1:1.6.0.0-1.54.1.11.6 - removed patch8 revertTwoWrongSecurityPatches2013-02-06.patch - added patch8: 7201064.patch to be reverted - added patch9: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906707 1:1.6.0.0-1.53.1.11.6 - added patch8 revertTwoWrongSecurityPatches2013-02-06.patch to...
java-1.7.0-openjdk security update
1.7.0.9-2.3.5.3.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.5.3.el63 - Sync logging fixes with upstream icedtea7-forest and jdk7u 1.7.0.9-2.3.5.1.el63 - Removed 6664509 backout and added 8005615 to fix the issue 1.7.0.9-2.3.5.el63.1 - Backed out 6664509 and 7201064.patch which cause...