8988 matches found
java-1.6.0-openjdk security update
1.6.0.0-1.28.1.10.9.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.28.1.10.9 - Updated to latest IcedTea6 1.10.9 - Resolves: rhbz846709 - Resolves: rhbz853114 1:1.6.0.0-1.27.1.10.8 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828749...
java-1.6.0-openjdk security update
1:1.6.0.0-1.49.1.11.4 - Updated to latest IedTea6 1.11.4 - Resolves: rhbz853345 1:1.6.0.0-1.48.1.11.3 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828752 1:1.6.0.0-1.47.1.11.3 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: -...
java-1.7.0-openjdk security update
1.7.0.5-2.2.1.0.1.el63.3 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6.3 - Removed patch 304 java-1.7.0-openjdk-beans-isPackageAccessible.patch - Applied upstream patches for same issue: patch 1001 sec-webrevs-openjdk7-29aug2012-7162473.patch patch 1002...
firefox security update
firefox 10.0.7-1.0.1.el63 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.7-1 - Update to 10.0.7 ESR xulrunner 10.0.7-1.0.1.el63 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.7-1 - Update to 10.0.7 ESR 10.0.6-2 - Added...
thunderbird security update
10.0.7-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.7-1 - Update to 10.0.7 ESR...
glibc security and bug fix update
2.5-81.el58.7 - Fix out of bounds array access in strto exposed by 847929 patch. 2.5-81.el58.6 - Fix integer overflow leading to buffer overflow in strto 847929 2.5-81.el58.5 - Do not use PTIEEEIP ptrace calls 839411 - Update ULPs 839411 - Fix various transcendentals in non-default rounding modes...
glibc security update
2.12-1.80.el63.5 - Fix integer overflow leading to buffer overflow in strto and related out of bounds array index 847931...
python-paste-script security update
1.7.3-5 - fix group permissions in serve.py Resolves: CVE-2012-0878...
libvirt security and bug fix update
libvirt-0.9.10-21.0.1.el63.4 - Replace docs/et.png in tarball with blank image libvirt-0.9.10-21.el63.4 - daemon: Fix crash in virTypedParameterArrayClear rhbz844735 - remote: Fix locking in stream APIs rhbz847946 - Using virOnce for global initialization is desirable rhbz847959 - json: Fix...
tetex security update
3.0-33.15.el59.1 - more robust fix for CVE-2010-3702 773178 3.0-33.15 - apply patch for CVE-2010-3702,3704 773180 3.0-33.14 - fix CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554, texlive various flaws 773180...
kernel security and bug fix update
kernel 2.6.18-308.13.1.el5 - net e1000e: Cleanup logic in e1000checkforserdeslink82571 Dean Nelson 841370 771366 - net e1000e: Correct link check logic for 82571 serdes Dean Nelson 841370 771366 - mm NULL pointer dereference in vmenoughmemory Jerome Marchand 840077 836244 - fs dlm: fix slow rsb...
1
kernel 2.6.18-308.13.1.0.1.el5 - kernel Initialize the local uninitialized variable stats. orabug 14051367 - fs JBD:make jbd support 512B blocks correctly for ocfs2. orabug 13477763 - x86 fix fpu context corrupt when preempt in signal context orabug 14038272 - net bonding: fix carrier detect when...
gimp security update
2:2.2.13-2.0.7.el58.5 - fix overflow in GIF loader CVE-2012-3481 2:2.2.13-2.0.7.el58.4 - fix overflows in PSD plugin CVE-2009-3909, CVE-2012-3402 - fix heap corruption and overflow in GIF plug-in CVE-2011-2896 - fix overflow in CEL plug-in CVE-2012-3403...
gimp security update
2:2.6.9-4.3 - fix overflow in GIF loader 847303 2:2.6.9-4.2 - fix overflows in GIF, CEL loaders 727800, 839020...
kernel security and bug fix update
2.6.32-279.5.1.el6 - net 8021q/vlan: filter device events on bonds Neil Horman 842429 841983 2.6.32-279.4.1.el6 - fs proc: stats: Use archidletime for idle and iowait times if available Steve Best 841579 841149 - drm i915: fix integer overflow in i915gemexecbuffer2 Jacob Tanenbaum 824553 824555...
openldap security and bug fix update
2.4.23-26.2 - CVE-2012-2668 825875 cipher suite selection by name can be ignored default cipher suite is always selected 2.4.23-26.1 - fix: smbk5pwd module computes invalid LM hashes 820278...
sudo security and bug fix update
1.7.2p1-14.2 - added a workaround for a race condition in handling child processes Resolves: rhbz844978 1.7.2p1-14.1 - dont remove the sudoers: line from nsswitch.conf on update - use safe temporary file for nsswitch.conf - call restorecon after modifying nsswitch.conf - fixed command escaping -...
bind security update
20:9.2.4-38.0.1.el4 - fix CVE-2012-1667 Adam Tkac orabz 14418...
dhcp security update
12:4.1.1-31.P1.0.1.el63.1 - Added oracle-errwarn-message.patch 12:4.1.1-31.P1.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843120 - Memory Leaks Found In ISC DHCP CVE-2012-3954, 843120...
dhcp security update
12:3.0.5-31.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843124...
bind-dyndb-ldap security update
1.1.0-0.9.b1.1 - fix CVE-2012-3429...
libreoffice security update
3.4.5.2-16.1.0.1.el63 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 3.4.5.2-16.1 - Resolves: rhbz839867 CVE-2012-2665...
xen security update
3.0.3-135.el58.4 - pygrub: Improve handling of big files rhbz 821704...
krb5 security update
1.9-33.2 - pull up the patch to correct a possible NULL pointer dereference in kadmind CVE-2012-1013, 827517 1.9-33.1 - add candidate patch from upstream to fix freeing uninitialized pointer in the KDC MITKRB5-SA-2012-001, CVE-2012-1015, 839859...
icedtea-web security update
1.2.1-1 - Updated to 1.2.1 - Resolves: CVE-2012-3422 - Resolves: CVE-2012-3423...
bind security update
32:9.8.2-0.10.rc1.2 - fix CVE-2012-3817...
perl-DBD-Pg security update
2.15.1-4 - Resolves: rhbz841131 CVE-2012-1151...
pidgin security update
2.7.9-5.el6.2 - Add patch for CVE-2011-2485 RH bug 837561. 2.7.9-5.el6.1 - Add patch for CVE-2012-1178 RH bug 837560. - Add patch for CVE-2012-2318 RH bug 837560. - Add patch for CVE-2012-3374 RH bug 837560. 2.7.9-5.el6 - Add patch for CVE-2011-4602 RH bug 766453. 2.7.9-4.el6 - Add patch for...
glibc security and bug fix update
2.5-81.el58.4 - Fix iconv segfault if the invalid multibyte character 0xffff is input when converting from IBM930 837896 2.5-81.el58.3 - Fix unbound alloca in vfprintf 833720...
glibc security and bug fix update
2.12-1.80.el63.3 - Fix incorrect/corrupt patchfile for 833716. Did not affect generated code, but tests were missing 833716. 2.12-1.80.el63.2 - Fix regression after patch for BZ804630 837026. 2.12-1.80.el63.1 - Fixes an unbound alloca and related problems. 833716...
nss, nspr, and nss-util security, bug fix, and enhancement update
nspr 4.9.1-2 - Related: rhbz833762 - Update License to MPLv2.0 4.9.1-1 - Resolves: rhbz833762 - Update to NSPR491RTM nss 3.13.5-1.0.1.el63 - Added nss-vendor.patch to change vendor - Use blank image instead of clean.gif in tar ball 3.13.5-1 - Resolves: rhbz834100 - Update to 3.13.5 for mozilla...
firefox security update
firefox 10.0.6-1.0.1.el63 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.6-1 - Update to 10.0.6 ESR 10.0.5-3 - Enabled WebM 10.0.5-2 - Added fix for mozbz703633, rhbz818341 xulrunner 10.0.6-1.0.1.el63 - Replace xulrunner-redhat-default-prefs.js with...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.1-4 - Resolves: rhbz834219 - Fix postinstall scriptlet failures - Fix %post and %postun lines per packaging guidelines - Updated License: to MPLv2.0 per upstream 4.9.1-3 - Resolves: rhbz834219 - Ensure nspr-config.in changes get applied 4.9.1-2 - Resolves: rhbz834219 - restore top sectio...
thunderbird security update
10.0.6-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.6-1 - Update to 10.0.6 ESR...
Unbreakable Enterprise kernel Security update
2.6.32-300.29.2 - epoll: epollwait should not use timespecaddns Eric Dumazet - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron...
Unbreakable Enterprise kernel Security update
2.6.39-200.29.2 - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron CVE-2011-1083 - cred: copyprocess should clear...
sudo security update
1.7.4p5-12 - added patch for CVE-2012-2337 Resolves: rhbz829756...
openjpeg security update
1.3-8 - Apply patches for CVE-2009-5030, CVE-2012-3358 Resolves: 831561 - Include -DCMAKEINSTALLLIBDIR in cmake call; fixes FTBFS with recent versions of cmake...
1
2.6.18-308.11.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzho...
kernel security and bug fix update
2.6.32-279.1.1.el6 - kernel Prevent keyctl newsession from causing a panic David Howells 833433 827424 CVE-2012-2745 - net ipv6/netfilter: fix null pointer dereference in nfctfrag6reasm Petr Matousek 833410 833412 CVE-2012-2744 - fs nfs: Map minor mismatch error to protocol not support error Stev...
kernel security and bug fix update
2.6.18-308.11.1.el5 - net ixgbe: remove flow director stats Andy Gospodarek 832169 830226 - net ixgbe: fix default return value for ixgbecacheringfdir Andy Gospodarek 832169 830226 - net ixgbe: reverting setup redirection table for multiple packet buffers Andy Gospodarek 832169 830226...
libtiff security update
3.9.4-6 - Add fixes for CVE-2012-2088, CVE-2012-2113 Resolves: 835748...
389-ds-base security update
1.2.10.2-18 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0020 disallows users' direct modify on unhasheduserpassword 1.2.10.2-17 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0019 fixes deref issue. 1.2.10.2-16 -...
java-1.7.0-openjdk security and bug fix update
1.7.0.5-2.2.1.0.1.el6 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6 - Updated priority to be 17000 and to depend on buildver variable - Variable buildver increased to 5 as it should be - Resolves: rhbz828759 1.7.0.3-2.2.1.el6 - Used newly prepared tarball with security fixes - Bump to...
php security update
5.3.3-14 - add security fix for CVE-2010-2950 5.3.3-13 - fix tests for CVE-2012-2143, CVE-2012-0789 5.3.3-12 - add fix for CVE-2012-2336 5.3.3-11 - add security fixes for CVE-2012-0781, CVE-2011-4153, CVE-2012-0057, CVE-2012-0789, CVE-2012-1172, CVE-2012-2143, CVE-2012-2386 5.3.3-9 - correct...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-200.24.1.el5uek - Revert 'Add Oracle VM guest messaging driver' Guru Anbalagane Orabug: 14233627 2.6.39-200.23.1.el5uek - SPEC: add block/net modules to list used by installer Guru Anbalagane Orabug: 14224837 2.6.39-200.22.1.el5uek - NFSv4: include bitmap in nfsv4 get acl data Andy Adamson...
cifs-utils security, bug fix, and enhancement update
4.8.1-10 - mount.cifs: don't allow unprivileged users to mount onto dirs they can't chdir into bz 812782 4.8.1-9 - cifs.upcall: use krb5snametoprincipal to construct principal name bz 805490 4.8.1-8 - mount.cifs: add backupuid=/backupgid= mount options bz 806337 4.8.1-7 - RFE: Improve selection o...
openldap security and bug fix update
2.4.23-26 - fix: MozNSS CA cert dir does not work together with PEM CA cert file 818844 - fix: memory leak: defurlpre is not freed 816168 - fix update: Default SSL certificate bundle is not found by openldap library 742023 2.4.23-25 - fix update: Default SSL certificate bundle is not found by...
openssh security, bug fix, and enhancement update
5.3p1-81 - fixes in openssh-5.3p1-required-authentications.patch 657378 5.3p1-79 - fix forward on non-localhost ports with IPv6 732955 5.3p1-78 - clear SELinux exec context before exec passwd 814691 5.3p1-77 - prevent post-auth resource exhaustion 809938 5.3p1-76 - don't escape backslah in a bann...
php security update
5.1.6-39 - fix issue in CVE-2012-0057 patch 5.1.6-38 - fix memory handling in CVE-2012-0789 patch 5.1.6-37 - add security fixes for CVE-2012-0057, CVE-2011-4153, CVE-2012-0789, CVE-2012-1172 5.1.6-36 - add security fix for CVE-2012-2336...