9177 matches found
openchange security, bug fix and enhancement update
evolution-mapi 0.28.3-12 - Add patch for RH bug 903241 Double-free on message copy/move 0.28.3-11 - Add patch for RH bug 902932 Cannot connect with latest samba 0.28.3-10 - Drop multilib by obsoleting evolution-mapi 0.28.3-9 RH bug 886914. 0.28.3-9 - Adapt to OpenChange 1.0 RH bug 767678. 0.28.3-...
php security, bug fix and enhancement update
5.3.3-22 - php-xml provides php-xmlreader and php-xmlwriter 874987 - fix possible NULL derefence and buffer overflow 879179 - fix zend garbage collector 848186, 868375 5.3.3-21 - fix CVE reference in previous changelog entry 5.3.3-20 - remove reproducer from security fix for CVE-2012-0781 5.3.3-1...
samba4 security, bug fix and enhancement update
4.0.0-55.rc4 - Fix dependencies of samba4-test package. - related: 896142 4.0.0-54.rc4 - Fix summary and description of dc subpackages. - resolves: 896142 - Remove conflicting libsmbclient.7 manpage. - resolves: 896240 4.0.0-53.rc4 - Fix provides filter rules to remove conflicting libraries from...
sssd security, bug fix and enhancement update
1.9.2-82 - Resolves: rhbz888614 - Failure in memberof can lead to failed database update 1.9.2-81 - Resolves: rhbz903078 - TOCTOU race conditions by copying and removing directory trees 1.9.2-80 - Resolves: rhbz903078 - Out-of-bounds read flaws in autofs and ssh services responders 1.9.2-79 -...
libvirt security, bug fix, and enhancement update
libvirt-0.10.2-18.0.1.el6 - Replace docs/et.png in tarball with blank image 0.10.2-18 - rpc: Fix crash on error paths of message dispatching CVE-2013-0170 - spec: Disable libssh2 support rhbz513363 0.10.2-17 - storage: Fix lvcreate parameter for backingStore. rhbz896398 - qemu: Don't return succe...
Oracle Linux 6 kernel security and bugfix update
2.6.32-358.el6 - fs Fix sget race with failing mount Eric Sandeen 883276 2.6.32-357.el6 - virt xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests Andrew Jones 896050 CVE-2013-0190 - block sgio: use different default filters for each device class Paolo Bonzini 875361...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-400.17.1 - This is a fix on dlmcleanmasterlist Xiaowei.Hu - RDS: fix rds-ping spinlock recursion jeff.liu Orabug: 16223050 - vhost: fix length for cross region descriptor Michael S. Tsirkin Orabug: 16387183 CVE-2013-0311 - kabifix: block/scsi: Allow request and error handling timeouts to b...
kernel security update
2.6.32-358.0.1 - kernel utrace: ensure archptrace/ptracerequest can never race with SIGKILL Oleg Nesterov 912073 912074 CVE-2013-0871...
pcsc-lite security and bug fix update
1.5.2-11 - fix overflow issue introduced in 1.5.2-5 and incorrectly corrected in 1.5.2-6 1.5.2-10 - CVE-2010-4531 1.5.2-9 - Bump version number so it doesn't get confused with z stream build...
ccid security and bug fix update
1.3.9.6 - CVE-2010-4530 patch 1.3.9-5 - Fix dist tag 1.3.9-4 - Check multiple voltages, even if we started with 5V...
xinetd security and bug fix update
2:2.3.14-38 - CVE-2012-0862 xinetd: enables unintentional services over tcpmux port - Resolves: 883653 2:2.3.14-37 - Fix changelog entry - Related: 809271 2:2.3.14-36 - Fix: Service disabled due to bind failure - Resolves: 809271...
pki-core security, bug fix and enhancement update
9.0.3-30 - Resolves 902474 - upgrading IPA from 2.2 to 3.0 sees certmonger errors 9.0.3-29 - Resolves 891985 - Increase FreeIPA root CA validity 9.0.3-28 - Resolves 885790 - Multiple cross-site scripting flaws by displaying CRL or processing profile 9.0.3-27 - Resolves 867640 - ipa-replica-instal...
openssh security, bug fix and enhancement update
5.3p1-84.1 - Add a 'netcat mode' ssh -W 860809 5.3p1-83 - fix the required authentications patch 869903 5.3p1-82 - check return value of PK11Authenticate in ssh-add -n 782912 - document available methods to RequiredAuthentications12 821641 - fix ssh-copy-id 836650 - fix segmentation fault in ssh...
gdb security and bug fix update
7.2-60.el6 - Fix CVE-2011-4355 gdb: arbitrary code execution via .debuggdbscripts' Jan Kratochvil, RH BZ 756116. 7.2-58.el6 - Fix Backport gdb fix to handle identical binaries via additional build-id symlinks' RH BZ 836966...
automake security update
1.11.1-4 - remove BR dependency on java-devel-openjdk 1.11.1-3 - fix for CVE-2012-3386 -- 'make distcheck' was making the directory distdir world-readable 848469...
evolution security and bug fix update
2.28.3-30.el6 - Update patch for RH bug 707526 Prints QP-encoded email encoded 2.28.3-29.el6 - Add patch for RH bug 890642 Crash due to implicit function declarations 2.28.3-28.el6 - Add patch for RH bug 885558 CVE 2011-3201. 2.28.3-27.el6 - Add patch for RH bug 805239 calendar alarm notification...
util-linux-ng security, bug fix and enhancement update
2.17.2-12.9 - fix 892471 - CVE-2013-0157 mount folder existence information disclosure 2.17.2-12.8 - fix 679833 - RFE tailf should support - fix 719927 - RFE add adjtimex --compare functionality to hwclock - fix 730272 - losetup does not warn if backing file is 512 bytes - fix 730891 - document...
Core X11 clients security, bug fix, and enhancement update
xorg-x11-apps 7.6-6 - x11perf 1.5.4 CVE-2011-2504 7.6-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora17MassRebuild 7.6-4 - Move xinput and xkill to xorg-x11-server-utils 7.6-3 - Rebuild for libpng 1.5 7.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora15MassRebuild 7.6-1 - x11perf 1.5...
squid security and bug fix update
7:3.1.10-16 - Resolves: 888198 - CVE-2012-5643: improved upstream patch 7:3.1.10-15 - Reverts: 861062 - Squid delays on FQDNs that don't contains AAAA record 7:3.1.10-14 - Resolves: 888198 - CVE-2012-5643: patch 7:3.1.10-13 - Resolves: 888198 - CVE-2012-5643: DoS excessive resource consumption...
dovecot security and bug fix update
1:2.0.9-5 - script-login did not drop privileges correctly 709095 - fix directory traversal due to not obeying chroot directive 709097 - check proxy destination host against SSL certificate name 754980 1:2.0.9-4 - dovecot may not set correct premissions for mail folder 697620 1:2.0.9-3 - fix...
dnsmasq security, bug fix and enhancement update
2.48-13 - Fix the DHCP RELEASE problem when two or more dnsmasq instances are running rhbz887156 2.48-12 - Fixing initscript restart stop functions rhbz850944 2.48-11 - Revert previous changes because of many problems with --bind-dynamic option backport. - Dropping...
httpd security, bug fix, and enhancement update
2.2.15-26.0.1.el6 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-26 - htcacheclean: exit with code 4 also for 'restart' action 805810 2.2.15-25 - htcacheclean: exit with code 4 if nonprivileged user runs initscript 805810 - rotatelogs: omit the...
pam security, bug fix, and enhancement update
1.1.1-13 - fix environment file handling problems - CVE-2011-3148 746619 and CVE-2011-3148 746620 1.1.1-12 - add character sequence test to pamcracklib - drop unused difignore option from pamcracklib 811243 - add enforceforroot option to pamcracklib 588893 - mention limits.d in the limits.conf5...
389-ds-base security, bug fix, and enhancement update
1.2.11.15-11 - Resolves: Bug 896256 - updating package touches configuration files 1.2.11.15-10 - Resolves: Bug 889083 - For modifiersName/internalModifiersName feature, internalModifiersname is not working for DNA plugin 1.2.11.15-9 - Resolves: Bug 891930 - DNA plugin no longer reports additiona...
dhcp security and bug fix update
12:4.1.1-34.P1.0.1.el6 - Added oracle-errwarn-message.patch 12:4.1.1-34.P1 - Reducing the expiration time for an IPv6 lease may cause the server to crash CVE-2012-3955, 858130 12:4.1.1-33.P1 - Use getifaddrs for interface discovery code on Linux 803540 - dhclient-script: do not backup&restore...
rdma security, bug fix and enhancement update
ibacm 1.0.8-0.git7a3adb7 - Update to latest upstream via git repo - Resolves: bz866222, bz866223 ibsim 0.5-7 - Bump and rebuild against latest opensm - Related: bz756396 ibutils 1.5.7-7 - Bump and rebuild against latest opensm - Related: bz756396 infiniband-diags 1.5.12-5 - Bump and rebuild again...
java-1.7.0-openjdk security update
1.7.0.9-2.3.7.1.0.2.el63 - Increase release number and rebuild. 1.7.0.9-2.3.7.1.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.7.1.el63 - Updated main source tarball - Resolves: rhbz911529 1.7.0.9-2.3.7.0.el63 - Removed patch1000 sec-2013-02-01-8005615.patch - Removed patch1001...
java-1.6.0-openjdk security update
1:1.6.0.0-1.35.1.11.8.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.35.1.11.8 - Rebuild with updated source tarball - Resolves: rhbz911522 1:1.6.0.0-1.34.1.11.8 - Updated to icedtea6 1.11.8 - Removed patch9 7201064.patch - Removed patch10 8005615.patch - Removed not-applied patch 6664509.pat...
java-1.6.0-openjdk security update
1:1.6.0.0-1.56.1.11.8 - Rebuild with updated sources - Resolves: rhbz911524 1:1.6.0.0-1.55.1.11.8 - Updated to icedtea6 1.11.8 - Removed patch9 7201064.patch - Removed patch10 8005615.patch - Removed not-applied patch 6664509.patch - Removed mauve as deadly outdated and run on QA - jtreg kept,...
axis security update
0:1.2.1-7.3 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5784...
jakarta-commons-httpclient security update
1:3.1-0.7 - Add missing connection hostname check against X.509 certificate name - Resolves: CVE-2012-5783...
thunderbird security update
17.0.3-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-2 - Update to 17.0.2 ESR 17.0-2 - Update to 17.0 ESR 17.0b2-0.1 - Update to 17.0b2 17.0b1-0.1 - Rebase to 17 beta 1...
firefox security update
firefox 17.0.3-1.0.1 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 17.0.3-1 - Update to 17.0.3 ESR 17.0.2-4 - Added NM preferences 17.0.2-3 - Update to 17.0.2 ESR 17.0.1-2 - Update to 17.0.1 ESR 17.0-1 - Update to 17.0 ESR 17.0-0.2.b4 - Update to 17 Beta 4...
elinks security update
0.12-0.21.pre5 - do not delegate GSSAPI credentials CVE-2012-4545...
java-1.6.0-openjdk security update
1:1.6.0.0-1.33.1.11.6.0.1.el59 - Add oracle-enterprise.patch 1:1.6.0.0-1.33.1.11.6 - removed patch9 revertTwoWrongSecurityPatches2013-02-06.patch - added patch9: 7201064.patch to be reverted - added patch10: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906705 1:1.6.0.0-1.32.1.11.6 - add...
java-1.7.0-openjdk security update
1.7.0.9-2.3.5.3.0.1.el63 - Update DISTRONAME in specfile 1.7.0.9-2.3.5.3.el63 - Sync logging fixes with upstream icedtea7-forest and jdk7u 1.7.0.9-2.3.5.1.el63 - Removed 6664509 backout and added 8005615 to fix the issue 1.7.0.9-2.3.5.el63.1 - Backed out 6664509 and 7201064.patch which cause...
java-1.6.0-openjdk security update
1:1.6.0.0-1.54.1.11.6 - removed patch8 revertTwoWrongSecurityPatches2013-02-06.patch - added patch8: 7201064.patch to be reverted - added patch9: 8005615.patch to fix the 6664509.patch - Resolves: rhbz906707 1:1.6.0.0-1.53.1.11.6 - added patch8 revertTwoWrongSecurityPatches2013-02-06.patch to...
xen security update
3.0.3-142.el59.1 - libxc: move error checking next to the function which returned the error rhbz 876997 - libxc: builder: limit maximum size of kernel/ramdisk rhbz 876997...
Unbreakable Enterprise kernel security update
2.6.39-300.28.1 - kmod: make requestmodule killable Oleg Nesterov Orabug: 16286305 CVE-2012-4398 - kmod: introduce callmodprobe helper Oleg Nesterov Orabug: 16286305 CVE-2012-4398 - usermodehelper: implement UMHKILLABLE Oleg Nesterov Orabug: 16286305 CVE-2012-4398 - usermodehelper: introduce...
Unbreakable Enterprise kernel security update
2.6.32-300.39.4 - exec: do not leave bprm-interp on stack Kees Cook Orabug: 16286741 CVE-2012-4530 - exec: use -ELOOP for max recursion depth Kees Cook Orabug: 16286741 CVE-2012-4530 2.6.32-300.39.3 - Xen: Fix stack corruption in xenfailsafecallback for 32bit PVOPS guests. Frediano Ziglio Orabug:...
kernel security and bug fix update
2.6.32-279.22.1 - virt kvm: invalid opcode oops on SETSREGS with OSXSAVE bit set Petr Matousek 862903 862904 CVE-2012-4461 - fs fuse: optimize fusedirectio Brian Foster 865305 858850 - fs fuse: optimize fusegetuserpages Brian Foster 865305 858850 - fs fuse: use getuserpagesfast Brian Foster 86530...
abrt and libreport security update
abrt 2.0.8-6.0.1.el63.2 - Add abrt-oracle-enterprise.patch to be product neutral - Remove abrt-plugin-rhtsupport dependency for cli and desktop - Make abrt Obsoletes/Provides abrt-plugin-rhtsupprot 2.0.8-6.2 - rebuild against new libreport brew bug - Related: 895442 2.0.8-6.1 - don't follow...
mingw32-libxml2 security update
2.7.6-6 - Synchronize patch-set with mainline-version. - Bump version to 5, 6. Related: rhbz891477 2.7.6-4 - Change release number to 4. - Added patch libxml2-Fix-an-off-by-one-pointer-access.patch - Added patch libxml2-Fix-a-segfault-on-XSD-validation-on-pattern-error.patch - Added patch...
freetype security update
2.3.11-14.el63.1 - Fix CVE-2012-5669 Use correct array size for checking 'glyphenc' - Resolves: 903542 2.3.11-14 - A little change in configure part - Related: 723468 2.3.11-13 - Fix CVE-2012-1126, 1127, 1130, 1131, 1132, 1134, 1136, 1137, 1139, 1140, 1141, 1142, 1143, 1144 - Properly initialize...
xorg-x11-drv-qxl security update
0.0.14-14.el6 - backport of upstream commit 30b4b72cdbdf9f0e92a8d1c4e01779f60f15a741 support ASYNC io calls and interrupt handling busy wait Related: 888364...
mysql security update
5.1.67-1 - Update to 5.1.67, for assorted upstream bugfixes including CVEs announced in January 2013 Resolves: 901380...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.2-2 - NVR bump 4.9.2-1 - Resolves: rhbz893372- RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR nss 3.13.6-3 - Fix changelog inconsistencies with commit and bug resolved - Resolves: rhbz891149 CVE-2013-0743 3.13.6-2 - CVE-2013-0743 - Resolves: rhbz891149 - Dis-trust TURKTRUST mis-issued...
nss, nss-util, and nspr security, bug fix, and enhancement update
nspr 4.9.2-0.1 - Retagging to ensure n-v-r is lower than the one for rhel-6.4 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR 4.9.2-1 - Resolves: rhbz891661 - RFE Rebase nspr to 4.9.2 due to Firefox 17 ESR nss 3.13.6-2.0.1.el63 - Added nss-vendor.patch to change vendor...
libvirt security update
libvirt-0.9.10-21.0.1.el63.8 - Replace docs/et.png in tarball with blank image 0.9.10-21.el63.8 - rpc: Fix crash on error paths of message dispatching CVE-2013-0170...
ipa security update
2.2.0-17.el63.1 - Fix changelog issue. The dist tag was in each entry and changing the build release changed history. 878219 2.2.0-17.el63 - Use a secure method to distribute the IPA CA to clients, CVE-2012-5484 878219...