8988 matches found
firefox security update
firefox: 10.0.4-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR xulrunner: 10.0.4-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR 10.0.3-3 - Fixe...
openssl security update
openssl: 1.0.0-20.4 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185 openssl098e: 0.9.8e-17.el62.2 - Updated the description 0.9.8e-17.2 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185...
thunderbird security update
10.0.4-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.4-1 - Update to 10.0.4 ESR...
wireshark security update
1.2.15-2.0.1.el62.1 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.2.15-2.1 - security patches - Resolves: CVE-2011-1143 CVE-2011-1590 CVE-2011-1957 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175 CVE-2011-1958 CVE-2011-2597 CVE-2011-2698 CVE-2011-4102 CVE-2012-0041...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-100.6.1 - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.21.1.el6uek - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090 -...
kernel security, bug fix, and enhancement update
2.6.32-220.13.1.el6 - Revert: fs NFSv4: include bitmap in nfsv4 get acl data Sachin Prabhu 753231 753232 CVE-2011-4131 2.6.32-220.12.1.el6 - net netsched: qdiscallochandle can be too slow Jiri Pirko 805458 785891 - fs procfs: add hidepid= and gid= mount options Jerome Marchand 770651 770652 - fs...
1
2.6.18-308.4.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhon...
kernel security, bug fix, and enhancement update
2.6.18-308.4.1.el5 - net ipv6: fix skb double free in xfrm6tunnel Jiri Benc 752305 743375 CVE-2012-1583 2.6.18-308.3.1.el5 - net be2net: cancel beworker during EEH recovery Ivan Vecera 805462 773735 - net be2net: add vlan/rx-mode/flow-control config to besetup Ivan Vecera 805462 773735 - x86...
samba security update
3.0.33-3.36.el4 - Security Release, fixes CVE-2012-1182 - resolves: 812010...
tomcat5 security update
0:5.5.23-0jpp.31 - Resolves: CVE-2012 regression. Changed patch file. 0:5.5.23-0jpp.30 - Resolves: CVE-2012-0022, CVE-2011-4858 0:5.5.23-0jpp.27 - Resolves CVE-2011-0013 rhbz 675933 - Resolves CVE-2011-3718 rhbz 675933 0:5.5.23-0jpp.23 - Resolves CVE-2011-1184 rhbz 744984 - Resolves CVE-2011-2204...
tomcat6 security update
0:6.0.24-36 - Resolves: CVE-2012-0022 regression. Changes made to patch file...
freetype security update
2.3.11-6.el62.9 - Fix CVE-2012-1126, 1127, 1130, 1131, 1132, 1134, 1136, 1137, 1139, 1140, 1141, 1142, 1143, 1144 - Properly initialize array 'result' in FTOutlineGetOrientation - Check bytes per row for overflow in bdfparseglyphs - Resolves: 806268...
samba3x security update
3.5.10-0.108 - Security Release, fixes CVE-2012-1182 - resolves: 804650...
samba security update
3.5.10-115 - Security Release, fixes CVE-2012-1182 - resolves: 804644...
libtiff security update
3.9.4-5 - Add fix for CVE-2012-1173 Resolves: CVE-2012-1173...
rpm security update
4.8.0-19.1 - Proper region tag validation on package/header read CVE-2012-0060 - Double-check region size against header size CVE-2012-0061 - Validate negated offsets too in headerVerifyInfo CVE-2012-0815...
gnutls security update
2.8.5-4.2 - fix CVE-2012-1573 - security issue in packet parsing 805432 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308...
openssl security and bug fix update
1.0.0-20.3 - fix problem with the SGC restart patch that might terminate handshake incorrectly - fix for CVE-2012-0884 - MMA weakness in CMS and PKCS7 code 802725 - fix for CVE-2012-1165 - NULL read dereference on bad MIME headers 802489...
gnutls security update
1.4.1-7.2 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308 - fix CVE-2012-1569 - missing length check when decoding DER lengths 804920 - fix CVE-2012-1573 - security issue in packet parsing 805432...
libtasn1 security update
2.3-3.1 - fix CVE-2012-1569 - missing length check when decoding DER lengths 804920...
raptor security update
1.4.18-5.1 - Fixed XML entity expansion that could lead to information disclosure CVE-2012-0037 Resolves: rhbz804496...
libpng security update
2:1.2.48-1 - Update to libpng 1.2.48, for minor security issues CVE-2011-3045 Resolves: 801663...
glibc security update
2.5-81.el58.1 - Add dist tag when building file lists 784646. - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794813...
glibc security and bug fix update
2.12-1.47.el62.9 - Always use another area after a failed allocation in the main arena 795328 - Remove sse3 memcpy 695812 changes 799259 2.12-1.47.el62.8 - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794815 2.12-1.47.el62.7 - Fix locking on malloc family retry paths...
firefox security and bug fix update
firefox: 10.0.3-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 10.0.3-1 - Update to 10.0.3 ESR xulrunner: 10.0.3-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with - xulrunner-oracle-default-prefs.js 10.0.3-1 - Update to 10.0.3 ESR...
thunderbird security update
10.0.3-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.3-1 - Update to 10.0.3 ESR...
systemtap security update
1.6-5.0.1.el62 - remove doc/SystemTapBeginnersGuide/en-US in tarball - comment bz683569.patch in specfile - remove buildtime dependency on package publican-redhat 1.6-5 - CVE-2012-0875...
python-sqlalchemy security update
0.5.5-3 - sanitize inputs to limit and offset Resolves: CVE-2012-0805...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.11.1.el6uek - fs xfs: Fix possible memory corruption in xfsreadlink Carlos Maiolino CVE-2011-4077 - scsi increase qla2xxx firmware ready time-out Joe Jin - scsi qla2xxx: Module parameter to control use of async or sync port login Joe Jin - net tg3: Fix single-vector MSI-X code Joe Jin ...
xen security and bug fix update
3.0.3-135.el58.2 - Fix broken timestamp log rhbz 797836 3.0.3-135.el58.1 - qemu-dm/e1000: bounds packet size against buffer size rhbz 786862 - Use correct expansion in xen-network-common.sh rhbz 797191...
kernel security and bug fix update
2.6.32-220.7.1.el6 - netdrv tg3: Fix single-vector MSI-X code John Feeney 787162 703555 - mm export removefrompagecache to modules Jerome Marchand 772687 751419 - block cfq-iosched: fix cfqciclink race confition Vivek Goyal 786022 765673 - fs cifs: lower default wsize when unix extensions are not...
ibutils security and bug fix update
1.2-11.2.0.1.el5 - Fix double malloc and free problem in CrdLoopPrepare and CrdLoopCleanup 1.2-11.2.el5 - Added Requires lines for ibutils-libs to make rpmdiff happier. - Add patch for CVE-2008-3277 Resolves: bz768400 1.2-11.1.el5 - Add ibutils-1.2-invalid-delete.patch to close Resolves: bz711779...
util-linux security, bug fix, and enhancement update
2.13-0.59.0.1.el5 - Merge UEK modification fix 10104470 - Import hwclock from util-linux-ng Kris Van Hees 2.13-0.59 - fix 768382 - CVE-2011-1675 CVE-2011-1677 util-linux various flaws 2.13-0.58 - fix 677452 - util-linux fails to build with gettext-0.17 2.13-0.57 - fix 646300 - login doesn't updat...
kvm security and bug fix update
kvm-83-249.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch - modify kversion to fix build failure kvm-83-249.el5 - kvm-kernel-KVM-x86-Prevent-starting-PIT-timers-in-the-absence-o.patch bz770101 - CVE: CVE-2011-4622 - Resolves: bz770101...
initscripts security and bug fix update
8.45.42-1.0.1.el5 - Update oracle-enterprise.patch to do detection on /etc/oracle-release and /etc/enterprise-release - Patch x8664 sysctl.conf as well as default sysctl.conf - Patch sysctl.conf to default rpfilter to loose reverse path filtering has no effect for pre-2.6.32 kernels orabug 102862...
nfs-utils security, bug fix, and enhancement update
1.0.9-60.0.1.el5 - Add support for resvport for unmonting orabug 13567018 1.0.9-60 - Updated idmapd.conf and idmapd.conf.man to reflect the static user name mapping 502707 - Fixed an umount regression introduced by bz 513094 bz 781931 1.0.9-59 - gss: turned of even more excessive syslogs bz 59309...
sos security, bug fix, and enhancement update
1.7-9.62.0.1.el5 - add patch to remove all sysrq echo commands from sysreport.legacy John Sobecki orabug 11061754 - comment out rh-upload-core and README.rh-upload-core in specfile 1.7-9.62 - Always log plugin exceptions that are not raised to the interpreter Resolves: bz717480 - Ensure relative...
busybox security and bug fix update
1:1.2.0-13 - Resolves: 768083 'busybox various flaws' including: 'buffer underflow in decompression' 'udhcpc insufficient checking of DHCP options' 1:1.2.0-12 - Resolves: 756723 'Kdump fails after findfs subcommand of busybox fails' 1:1.2.0-11 - Resolves: 689659 ''busybox cp' does not return a...
cups security and bug fix update
1:1.3.7-30 - Backported patch to fix transcoding for ASCII bug 759081, STR 3832. 1:1.3.7-29 - The imageto filters could crash with bad GIF files CVE-2011-2896, STR 3867, STR 3914, bug 752118. 1:1.3.7-28 - Web interface didn't show completed jobs for printer STR 3436, bug 625900 - Serial backend...
kexec-tools security, bug fix, and enhancement update
1.102pre-154.0.3 - mkdumprd.orig get packed, remove it. 1.102pre-154.0.2 - fix mounting root fs on labeled disk Maxim Uvarov orabug: 13709374 1.102pre-154.0.1 Merge following patches from mkinitrd: - mkinitrd-fix-san-boot.patch - mkinitrd-fix-shared-lib-library-path.patch -...
1
kernel - 2.6.18-308.0.0.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus...
boost security and bug fix update
1.33.1-15 - Fix bugs in parsing invalid regexps - Resolves: 766755 1.33.1-14 - Delete leftover .orig files after patches are successfully applied 1.33.1-13 - GCC 4.4 fixes - Resolves: 567722 1.33.1-11 - Add a fix for thread safety bug in boost::regex - Build with -fno-strict-aliasing due to the...
vixie-cron security, bug fix, and enhancement update
4:4.1-81 - 455664 adoptions of crontab orphans, forgot add buffer for list of orphans - Related: rhbz455664 4:4.1-80 - 654961 crond process ignores the changes of user's home directory needs bigger changes of code. The fix wasn't applied, detail in comment11. - Related: rhbz249512 4:4.1-79 -...
sudo security and bug fix update
1.7.2p1-13 - patch: parse ldap.conf more closely to nssldap Resolves: rhbz750318 1.7.2p1-12 - added patch for CVE-2011-0010 Resolves: rhbz757157 1.7.2p1-11 - backported selinux support from 1.7.4p5 477185, 673157 - fixed bug in RunasSpec group matching 627543 - disable 'sudo -l' output word...
conga security, bug fix, and enhancement update
0.12.2-51.0.1.el5 - Added conga-enterprise.patch - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz 0.12.2-51 - Fix bz711494 CVE-2011-1948 plone: reflected XSS vulnerability - Fix bz771920 CVE-2011-4924 Zope: Incomplete upstream patch for...
ImageMagick security and bug fix update
6.2.8.0-12.el5 - Add fix for CVE-2010-4167 767142 6.2.8.0-11.el5 Fix assertion failed when using 'identify -verbose' when theres no image information available 502626 6.2.8.0-10.el5 Fix memory allocation failure when using color option 616538 Fix hang when converting broken GIF 693989 Fix...
xorg-x11-server security and bug fix update
1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure vulnerability. 1.1.1-48.88 - cve-2011-4818.patch: Multiple input sanitization flaws in Render and GLX -...
samba security, bug fix, and enhancement update
3.0.33-3.37.el5 - Regenerate manpage for 'wide links' and 'unix extensions' sections - related: 722553 3.0.33-3.36.el5 - Security Release, fixes CVE-2010-0926 - resolves: 722553 3.0.33-3.35.el5 - Fix smbclient return code - resolves: 768908 3.0.33-3.34.el5 - Fix support for Windows 2008 R2 domain...
krb5 security and bug fix update
1.6.1-70.el5 - add upstream patch for telnetd buffer overflow CVE-2011-4862, 770351 1.6.1-69.el5 - ftp: fix a static analysis should-never-happen NULL dereference 750823 1.6.1-68.el5 - backport fixes to teach libkrb5 to use descriptors higher than FDSETSIZE to talk to a KDC by using poll if it's...