9177 matches found
1
kernel 2.6.18-348.4.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
389-ds-base security and bug fix update
1.2.11.15-14 - Resolves: Bug 929107 - ns-slapd crashes sporadically with segmentation fault in libslapd.so ticket 627 - Resolves: Bug 929114 - cleanAllRUV task fails to cleanup config upon completion ticket 623 1.2.11.15-13 - Resolves: Bug 929114 - cleanAllRUV task fails to cleanup config upon...
subversion security update
1.6.11-9 - add security fixes for CVE-2013-1846, CVE-2013-1847, CVE-2013-1849 947372 1.6.11-8 - add security fix for CVE-2013-1845 947372...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-400.21.1 - SPEC: v2.6.39-400.21.1 Maxim Uvarov - xen/mmu: On early bootup, flush the TLB when changing RO-RW bits Xen provided pagetables. Konrad Rzeszutek Wilk 2.6.39-400.20.1 - SPEC: v2.6.39-400.20.1 Maxim Uvarov - PCI: Set device power state to PCID0 for device without native PM support...
kvm security update
kvm-83-262.0.1.el59.3 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-262.el53 - kvm-kernel-kvm-accept-unaligned-MSRKVMSYSTEMTIME-writes.patch bz947363 - Resolves: bz947363 RHEL.5.8.32 guest hang when installing kvm-83-262.el52 -...
stunnel security update
4.29-3 Resolves: CVE-2013-1762...
firefox security update
firefox 17.0.5-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.5-1 - Update to 17.0.5 ESR xulrunner 17.0.5-1.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.5-1 -...
thunderbird security update
17.0.5-1.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.5-1 - Update to 17.0.5 ESR...
bind97 security update
32:9.7.0-17.P2.1 - fix CVE-2013-2266...
bind security and bug fix update
32:9.8.2-0.17.rc1.0.2.el64.4 - bump release and build for ULN...
pixman security update
0.26.2-5 - Fix bug 914474 CVE 2013-1591 - Remove openmp.patch...
perl security update
4:5.10.1-130 - Resolves: 915692 - CVE-2012-5526 newline injection due to improper CRLF escaping in Set-Cookie and P3P headers - Resolves: 915692 - CVE-2012-6329 possible arbitrary code execution via Locale::Maketext - Resolves: 915692 - CVE-2013-1667 DoS in rehashing code...
axis security update
0:1.2.1-2jpp.7 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5784 - Add patches to build with java 1.6...
qt security update
1:4.6.2-26 - Resolves: CVE-2013-0254, QSharedMemory class created shared memory segments with insecure permissions...
boost security update
1.41.0-15 - Add in explicit dependences between some boost subpackages 1.41.0-14 - Build with -fno-strict-aliasing 1.41.0-13 - In Boost.Pool, be careful not to overflow allocated chunk size boost-1.41.0-pool.patch 1.41.0-12 - Add an upstream patch that fixes computation of CRC in zlib streams. -...
sssd security and bug fix update
1.9.2-82.4 - Resolves: rhbz911298 - sssd: simple access provider flaw prevents intended ACL use when client to an AD provider 1.9.2-82.3 - Fix pwdexpirationwarning=0 - Resolves: rhbz914671 - pwdexpirationwarning has wrong default for Kerberos 1.9.2-82.2 - Resolves: rhbz914671 - pwdexpirationwarni...
krb5 security update
1.10.3-10.1 - incorporate upstream patch to fix a NULL pointer dereference when the client supplies an otherwise-normal-looking PKINIT request CVE-2013-1415, 917909 - add patch to avoid dereferencing a NULL pointer in the KDC when handling a draft9 PKINIT request 917909, CVE-2012-1016...
pidgin security update
2.7.9-10.el64.1 - Fix spec file for disttag 2.7.9-10.el6 - Add patch for CVE-2013-0274 RH bug 910653. 2.7.9-9.el6 - Add patch for CVE-2013-0273 RH bug 910653. 2.7.9-8.el6 - Add patch for CVE-2013-0272 RH bug 910653. 2.7.9-7.el6 - Add patch for CVE-2011-2485 RH bug 837562. 2.7.9-6.el6 - Add patch...
Unbreakable Enterprise kernel Security update
kernel-uek 2.6.32-300.39.5uek - x86/msr: Add capabilities check Alan Cox Orabug: 16481233 CVE-2013-0268 ofa-2.6.32-300.39.5.el6uek mlnxen-2.6.32-300.39.5.el6uek Mon Dec 12 2011 Guru Anbalagane - version 1.5.7-0.1 Tue Nov 01 2011 Joe Jin - 1.5.7 for UEK kernel. Mon Sep 08 2008 Vladimir Sokolovsky ...
Unbreakable Enterprise kernel Security update
2.6.39-400.17.2 - x86/msr: Add capabilities check Alan Cox Orabug: 16405007 CVE-2013-0268...
tomcat5 security update
0:5.5.23-0jpp.38 - Resolves: CVE-2012-3439 rhbz882008 three DIGEST authentication - implementation - Resolves: CVE-2012-3546, rhbz913034 Bypass of security constraints. - Remove unneeded handling of FORM authentication in RealmBase...
kernel security and bug fix update
2.6.32-358.2.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871 2.6.32-358.1.1 - netdrv mlx4: Set number of msix vectors under SRIOV mode to firmware defaults Michal Schmidt 911663 904726 - netdrv mlx4: Fix bridged vSwitch...
tomcat6 security update
0:6.0.24-52 - Related: rhbz 882010 rhbz 883692 rhbz 883705 - Javadoc generation did not work. Using targetrhel-6.4.Z-noarch-candidate - to avoid building on ppc64, ppc, and x390x. 0:6.0.24-50 - Resolves: rhbz 882010 CVE-2012-3439 CVE-2012-5885 CVE-2012-5886 CVE-2012-5887 - three DIGEST...
389-ds-base security and bug fix update
1.2.11.15-12 - Resolves: Bug 910994 - PamConfig schema not updated during upgrade - Resolves: Bug 910995 - Valgrind reports memleak in modifyupdatelastmodifiedattr - Resolves: Bug 910996 - DS returns error 20 when replacing values of a multi-valued attribute only when replication is enabled -...
thunderbird security update
17.0.3-2.0.1.el64 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.3-2 - Added fix for 848644...
kernel security update
kernel 2.6.18-348.3.1 - utrace ensure archptrace can never race with SIGKILL Oleg Nesterov 912071 912072 CVE-2013-0871 - x86 msr: Add capabilities check Nikola Pajkovsky 908696 908697 CVE-2013-0268...
1
kernel 2.6.18-348.3.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
xulrunner security update
17.0.3-2.0.1.el64 - Replaced xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js - Removed XULRUNNERVERSION from SOURCE21 17.0.3-2 - Added fix for 848644...
ruby security update
1.8.5-29 - Fix regression introduced by fix for entity expansion DOS vulnerability in REXML https://bugs.ruby-lang.org/issues/7961 ruby-2.0.0-add-missing-rexml-require.patch - Related: rhbz915377 1.8.5-28 - Addresses entity expansion DoS vulnerability in REXML...
ruby security update
1.8.7.352-10 - escaping vulnerability about Exceptiontos / NameErrortos ruby-1.8.7-p371-CVE-2012-4481.patch - Related: rhbz915379 1.8.7.352-9 - Fix regression introduced by fix for entity expansion DOS vulnerability in REXML https://bugs.ruby-lang.org/issues/7961...
kvm security update
kvm-83-262.0.1.el59.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-262.el51 - kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch bz910839 - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch bz910839 - Resolves:...
qemu-kvm security update
qemu-kvm-0.12.1.2-2.355.el64.2 - kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch bz910841 - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch bz910841 - Resolves: bz910841 CVE-2012-6075 qemu e1000 device driver: Buffer overflow when processing large packets when SBP and LP...
1
kernel 2.6.18-348.2.1.0.1 - oprofile x86, mm: Add getuserpagesfast orabug 14277030 - oprofile export getuserpagesfast function orabug 14277030 - oprofile oprofile, x86: Fix nmi-unsafe callgraph support orabug 14277030 - oprofile oprofile: use KMNMI slot for kmapatomic orabug 14277030 - oprofile...
java-1.6.0-openjdk security update
1:1.6.0.0-1.36.1.11.9.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.36.1.11.9 - Updated to icedtea6 1.11.9 - Resolves: rhbz917176...
java-1.6.0-openjdk security update
1:1.6.0.0-1.57.1.11.9 - Updated to icedtea6 1.11.9 - Resolves: rhbz917179...
java-1.7.0-openjdk security update
1.7.0.9-2.3.8.0.0.1.el64 - Update DISTRONAME in specfile 1.7.0.9-2.3.8.0el6 - Revert to rhel 6.3 version of spec file - Revert to icedtea7 2.3.8 forest - Resolves: rhbz917183 1.7.0.11-2.4.0.pre5.el6 - Update to latest snapshot of icedtea7 2.4 forest - Resolves: rhbz917183 1.7.0.9-2.4.0.pre4.3.el6...
java-1.7.0-openjdk security update
1.7.0.9-2.3.8.0.0.1.el59 - Add oracle-enterprise.patch - Fix DISTRONAME to 'Enterprise Linux' 1.7.0.9-2.3.8.0.el59 - Updated to icedtea7-forest-2.3 - Resolves: rhbz917181...
xen security update
3.0.3-142.el59.2 - e1000: discard packets that are too long if !SBP and !LPE rhbz 910843 - e1000: discard oversized packets based on SBP|LPE rhbz 910843...
kernel security and bug fix update
kernel 2.6.18-348.2.1 - misc tainted flags, fix buffer size Prarit Bhargava 905829 901547 - net be2net: fix unconditionally returning IRQHANDLED in INTx Ivan Vecera 884704 878316 - net be2net: fix INTx ISR for interrupt behaviour on BE2 Ivan Vecera 884704 878316 - net be2net: fix a possible...
git security update
1.7.1-3.1 - fix CVE-2013-0308 1.7.1-3 - fix CVE-2010-3906...
gnutls security update
2.8.5-10.1 - fix CVE-2013-1619 - fix TLS-CBC timing attack 908238...
nss-pam-ldapd security update
0.7.5-18.1 - Apply upstream r1926 to resolve FDSET array index error - Resolves: rhbz915361...
openssl security update
1.0.0-27.2 - fix for CVE-2013-0169 - SSL/TLS CBC timing attack 907589 - fix for CVE-2013-0166 - DoS in OCSP signatures checking 908052 - enable compression only if explicitly asked for or OPENSSLDEFAULTZLIB environment variable is set fixes CVE-2012-4929 857051 - use securegetenv everywhere inste...
libxml2 security update
2.7.6-12.0.1.el64.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-12.el64.1 -detect and stop excessive entities expansion upon replacement rhbz912574 2.7.6-12.el6 - fix out of range heap access CVE-2012-5134 2.7.6-11.el6 - Change the...
cups security update
1:1.4.2-50:.4 - Added BrowseLDAPCACertFile and PrintcapGUI to restricted options list. 1:1.4.2-50:.3 - Fix for CVE-2012-5519 patch: handle blacklisted lines that have no value part gracefully. 1:1.4.2-50:.2 - Added documentation for new CVE-2012-5519 option. 1:1.4.2-50:.1 - Applied patch to fix...
bind security and enhancement update
32:9.8.2-0.17.rc1.0.2.el6.3 - bump up version and rebuild 32:9.8.2-0.17.rc1.0.1.el6.3 - add rrl.h into include dirs 32:9.8.2-0.27.rc1.3 - remove one bogus file from /usr/share/doc, introduced by RRL patch 32:9.8.2-0.17.rc1.2 - fix CVE-2012-5689 32:9.8.2-0.17.rc1.1 - add response rate limit patch...
ipa security, bug fix and enhancement update
3.0.0-25.el6 - Filter generated winbind dependencies so the right version of samba can be installed. 905594 3.0.0-24.el6 - Add certmonger condrestart to server post scriptlet 903758 - Make certmonger a pre Requires 903758 - Add selinux-policy to Requirespre to avoid post scriptlet AVCs 903758 - S...
kdelibs security update
6:4.3.4-19.0.1 - rebuild it with new rules add build requirement of installing libXdmcp-devel 6:4.3.4-19 - fix multilib conflict 6:4.3.4-18 - Resolves: bz866230, CVE-2012-4512 CVE-2012-4513 4.3.4-17 - Resolves: bz754161, bz587016, bz682611, bz734734, bz826114, respin 6:4.3.4-16 - Resolves:...
dbus-glib security update
0.73-11 - Add patch to fix CVE-2013-0292 - Resolves: 913072...
hplip security, bug fix and enhancement update
3.12.4-4 - Applied patch to fix CVE-2013-0200, temporary file vulnerability bug 902163. - Fixed hpijs-marker-supply patch. 3.12.4-3 - Make 'hp-check' check for hpaio set-up correctly bug 683007. 3.12.4-2 - Added more fixes from Fedora bug 731900. 3.12.4-1 - Re-based to 3.12.4 with fixes from Fedo...