9173 matches found
openldap security and bug fix update
2.4.23-26.2 - CVE-2012-2668 825875 cipher suite selection by name can be ignored default cipher suite is always selected 2.4.23-26.1 - fix: smbk5pwd module computes invalid LM hashes 820278...
sudo security and bug fix update
1.7.2p1-14.2 - added a workaround for a race condition in handling child processes Resolves: rhbz844978 1.7.2p1-14.1 - dont remove the sudoers: line from nsswitch.conf on update - use safe temporary file for nsswitch.conf - call restorecon after modifying nsswitch.conf - fixed command escaping -...
bind security update
20:9.2.4-38.0.1.el4 - fix CVE-2012-1667 Adam Tkac orabz 14418...
bind-dyndb-ldap security update
1.1.0-0.9.b1.1 - fix CVE-2012-3429...
dhcp security update
12:3.0.5-31.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843124...
dhcp security update
12:4.1.1-31.P1.0.1.el63.1 - Added oracle-errwarn-message.patch 12:4.1.1-31.P1.1 - An error in the handling of malformed client identifiers can cause a denial-of-service condition in affected servers. CVE-2012-3571, 843120 - Memory Leaks Found In ISC DHCP CVE-2012-3954, 843120...
libreoffice security update
3.4.5.2-16.1.0.1.el63 - Replaced RedHat colors with Oracle colors, and the filename redhat.soc with oracle.soc in specfile - Build with --with-vendor='Oracle America, Inc.' 3.4.5.2-16.1 - Resolves: rhbz839867 CVE-2012-2665...
icedtea-web security update
1.2.1-1 - Updated to 1.2.1 - Resolves: CVE-2012-3422 - Resolves: CVE-2012-3423...
xen security update
3.0.3-135.el58.4 - pygrub: Improve handling of big files rhbz 821704...
krb5 security update
1.9-33.2 - pull up the patch to correct a possible NULL pointer dereference in kadmind CVE-2012-1013, 827517 1.9-33.1 - add candidate patch from upstream to fix freeing uninitialized pointer in the KDC MITKRB5-SA-2012-001, CVE-2012-1015, 839859...
bind security update
32:9.8.2-0.10.rc1.2 - fix CVE-2012-3817...
perl-DBD-Pg security update
2.15.1-4 - Resolves: rhbz841131 CVE-2012-1151...
pidgin security update
2.7.9-5.el6.2 - Add patch for CVE-2011-2485 RH bug 837561. 2.7.9-5.el6.1 - Add patch for CVE-2012-1178 RH bug 837560. - Add patch for CVE-2012-2318 RH bug 837560. - Add patch for CVE-2012-3374 RH bug 837560. 2.7.9-5.el6 - Add patch for CVE-2011-4602 RH bug 766453. 2.7.9-4.el6 - Add patch for...
glibc security and bug fix update
2.5-81.el58.4 - Fix iconv segfault if the invalid multibyte character 0xffff is input when converting from IBM930 837896 2.5-81.el58.3 - Fix unbound alloca in vfprintf 833720...
glibc security and bug fix update
2.12-1.80.el63.3 - Fix incorrect/corrupt patchfile for 833716. Did not affect generated code, but tests were missing 833716. 2.12-1.80.el63.2 - Fix regression after patch for BZ804630 837026. 2.12-1.80.el63.1 - Fixes an unbound alloca and related problems. 833716...
Unbreakable Enterprise kernel Security update
2.6.32-300.29.2 - epoll: epollwait should not use timespecaddns Eric Dumazet - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron...
nss and nspr security, bug fix, and enhancement update
nspr 4.9.1-4 - Resolves: rhbz834219 - Fix postinstall scriptlet failures - Fix %post and %postun lines per packaging guidelines - Updated License: to MPLv2.0 per upstream 4.9.1-3 - Resolves: rhbz834219 - Ensure nspr-config.in changes get applied 4.9.1-2 - Resolves: rhbz834219 - restore top sectio...
nss, nspr, and nss-util security, bug fix, and enhancement update
nspr 4.9.1-2 - Related: rhbz833762 - Update License to MPLv2.0 4.9.1-1 - Resolves: rhbz833762 - Update to NSPR491RTM nss 3.13.5-1.0.1.el63 - Added nss-vendor.patch to change vendor - Use blank image instead of clean.gif in tar ball 3.13.5-1 - Resolves: rhbz834100 - Update to 3.13.5 for mozilla...
firefox security update
firefox 10.0.6-1.0.1.el63 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.6-1 - Update to 10.0.6 ESR 10.0.5-3 - Enabled WebM 10.0.5-2 - Added fix for mozbz703633, rhbz818341 xulrunner 10.0.6-1.0.1.el63 - Replace xulrunner-redhat-default-prefs.js with...
thunderbird security update
10.0.6-1.0.1.el63 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.6-1 - Update to 10.0.6 ESR...
sudo security update
1.7.4p5-12 - added patch for CVE-2012-2337 Resolves: rhbz829756...
Unbreakable Enterprise kernel Security update
2.6.39-200.29.2 - epoll: clear the tfilechecklist on -ELOOP Joe Jin CVE-2012-3375 - Don't limit non-nested epoll paths Jason Baron - epoll: kabi fixups for epoll limit wakeup paths Joe Jin CVE-2011-1083 - epoll: limit paths Jason Baron CVE-2011-1083 - cred: copyprocess should clear...
openjpeg security update
1.3-8 - Apply patches for CVE-2009-5030, CVE-2012-3358 Resolves: 831561 - Include -DCMAKEINSTALLLIBDIR in cmake call; fixes FTBFS with recent versions of cmake...
kernel security and bug fix update
2.6.32-279.1.1.el6 - kernel Prevent keyctl newsession from causing a panic David Howells 833433 827424 CVE-2012-2745 - net ipv6/netfilter: fix null pointer dereference in nfctfrag6reasm Petr Matousek 833410 833412 CVE-2012-2744 - fs nfs: Map minor mismatch error to protocol not support error Stev...
1
2.6.18-308.11.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzho...
kernel security and bug fix update
2.6.18-308.11.1.el5 - net ixgbe: remove flow director stats Andy Gospodarek 832169 830226 - net ixgbe: fix default return value for ixgbecacheringfdir Andy Gospodarek 832169 830226 - net ixgbe: reverting setup redirection table for multiple packet buffers Andy Gospodarek 832169 830226...
libtiff security update
3.9.4-6 - Add fixes for CVE-2012-2088, CVE-2012-2113 Resolves: 835748...
389-ds-base security update
1.2.10.2-18 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0020 disallows users' direct modify on unhasheduserpassword 1.2.10.2-17 - Resolves: Bug 830001 - unhasheduserpassword visible after changing password -- patch 0019 fixes deref issue. 1.2.10.2-16 -...
java-1.7.0-openjdk security and bug fix update
1.7.0.5-2.2.1.0.1.el6 - Modify DISTRONAME for Oracle 1.7.0.5-2.2.1.el6 - Updated priority to be 17000 and to depend on buildver variable - Variable buildver increased to 5 as it should be - Resolves: rhbz828759 1.7.0.3-2.2.1.el6 - Used newly prepared tarball with security fixes - Bump to...
php security update
5.3.3-14 - add security fix for CVE-2010-2950 5.3.3-13 - fix tests for CVE-2012-2143, CVE-2012-0789 5.3.3-12 - add fix for CVE-2012-2336 5.3.3-11 - add security fixes for CVE-2012-0781, CVE-2011-4153, CVE-2012-0057, CVE-2012-0789, CVE-2012-1172, CVE-2012-2143, CVE-2012-2386 5.3.3-9 - correct...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-200.24.1.el5uek - Revert 'Add Oracle VM guest messaging driver' Guru Anbalagane Orabug: 14233627 2.6.39-200.23.1.el5uek - SPEC: add block/net modules to list used by installer Guru Anbalagane Orabug: 14224837 2.6.39-200.22.1.el5uek - NFSv4: include bitmap in nfsv4 get acl data Andy Adamson...
libguestfs security, bug fix, and enhancement update
1:1.16.19-1 - Rebase to libguestfs 1.16.19 resolves: rhbz719879 - Rebuild against augeas 0.9.0-3.el6 related: rhbz808662 - Fix: Don't abort inspection if mdadm.conf ARRAY doesn't have a uuid. - Switch back to git for patch management. 1:1.16.18-2 - Rebase to libguestfs 1.16.18 resolves: rhbz71987...
busybox security and bug fix update
1:1.15.1-15 - Fix btrfs support to findfs and related applets - Resolves: 751927 1:1.15.1-14 - Resolves: 790335 'busybox various flaws' Added a fix for SEGV on empty command in hush 1:1.15.1-13 - Resolves: 790335 'busybox various flaws' including: 'buffer underflow in decompression' 'udhcpc...
nss, nss-util, and nspr security, bug fix, and enhancement update
nspr 4.9-1 - Resolves: rhbz799193 - Update to 4.9 nss 3.13.3-6.0.1.el6 - Added nss-vendor.patch to change vendor - Use blank image instead of clean.gif in tar ball 3.13.3-6 - Resolves: rhbz805232 PEM module may attempt to free uninitialized pointer 3.13.3-5 - Resolves: rhbz717913 - PEM various...
openssh security, bug fix, and enhancement update
5.3p1-81 - fixes in openssh-5.3p1-required-authentications.patch 657378 5.3p1-79 - fix forward on non-localhost ports with IPv6 732955 5.3p1-78 - clear SELinux exec context before exec passwd 814691 5.3p1-77 - prevent post-auth resource exhaustion 809938 5.3p1-76 - don't escape backslah in a bann...
mysql security and enhancement update
5.1.61-4 - Add backported patch for CVE-2012-2102 Resolves: 812435 5.1.61-3 - Enable innodb plugin, but only on x86 and x8664 architectures Resolves: 740224...
cifs-utils security, bug fix, and enhancement update
4.8.1-10 - mount.cifs: don't allow unprivileged users to mount onto dirs they can't chdir into bz 812782 4.8.1-9 - cifs.upcall: use krb5snametoprincipal to construct principal name bz 805490 4.8.1-8 - mount.cifs: add backupuid=/backupgid= mount options bz 806337 4.8.1-7 - RFE: Improve selection o...
openldap security and bug fix update
2.4.23-26 - fix: MozNSS CA cert dir does not work together with PEM CA cert file 818844 - fix: memory leak: defurlpre is not freed 816168 - fix update: Default SSL certificate bundle is not found by openldap library 742023 2.4.23-25 - fix update: Default SSL certificate bundle is not found by...
xorg-x11-server security and bug fix update
1.10.6-1 - xserver 1.10.6 - Use git-style patch names - compsize.h, glxcmds.h: Copy from upstream git since they fell out of the upstream tarball 1.10.4-15 - Undo regression introduced in Patch8007 732467 1.10.4-14 - xserver-1.10.4-sync-revert.patch: Revert an edge-case change in IDLETIME that...
php security update
5.1.6-39 - fix issue in CVE-2012-0057 patch 5.1.6-38 - fix memory handling in CVE-2012-0789 patch 5.1.6-37 - add security fixes for CVE-2012-0057, CVE-2011-4153, CVE-2012-0789, CVE-2012-1172 5.1.6-36 - add security fix for CVE-2012-2336...
net-snmp security and bug fix update
1:5.5-41 - moved /var/lib/net-snmp fro net-snmp to net-snmp-libs package 822480 1:5.5-40 - fixed CVE-2012-2141 820100 1:5.5-39 - fixed proxying of out-of-tree GETNEXT requests 799291 1:5.5-38 - fixed snmpd crashing with many AgentX subagent 749227 - fixed SNMPv2-MIB::sysObjectID value when...
php53 security update
5.3.3-13 - add security fix for CVE-2010-2950 5.3.3-11 - fix tests for CVE-2012-2143, CVE-2012-0789 5.3.3-10 - add security fix for CVE-2012-2336 5.3.3-9 - add security fixes for CVE-2011-4153, CVE-2012-0057, CVE-2012-0789, CVE-2012-1172, CVE-2012-2143, CVE-2012-2386...
389-ds-base security, bug fix, and enhancement update
1.2.10.2-15 - Resolves: Bug 824014 - DS Shuts down intermittently 1.2.10.2-14 - Resolves: Bug 819643 - Database RUV could mismatch the one in changelog under the stress -- patch 0015 fixes a small memleak in previous patch 1.2.10.2-13 - Resolves: Bug 822700 - Bad DNs in ACIs can segfault ns-slapd...
php-pecl-apc security, bug fix, and enhancement update
3.1.9-2 - remove -devel package ISA multilib dependencies 3.1.9-1 - update to 3.1.9 bugfix, stable 662655 - create -devel subpackage with header files - ship apc.php for easier referral in the config files...
sblim-cim-client2 security update
2.1.3-2 - Fix possible XML Hash DoS Resolves: 803391 2.1.3 - Update to sblim-cim-client2-2.1.3 2.0.9.2-1 - Initial support...
rsyslog security, bug fix, and enhancement update
5.8.10-2 - add patch to update information on debugging in the man page Resolves: 820311 - add patch to prevent debug output to stdout after forking Resolves: 820996 - add patch to support ssl certificates with domain names longer than 128 chars Resolves: 822118 5.8.10-1 - rebase to rsyslog 5.8.1...
sos security, bug fix, and enhancement update
2.2-29.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove RH ftp URL and support email - add...
qt security and bug fix update
1:4.6.2-24 - Resolves: bz734444, list of trusted CA certificates should not be compiled into library 1:4.6.2-23 - Resolves: bz805433, CVE-2011-3922 1:4.6.2-22 - Resolves: bz694684, phonon crash 1:4.6.2-21 - Resolves: rhbz757793, add OpenGL 3.1, 3.2, 3.3 and 4.0 recognition to QGLFormat...
libvirt security, bug fix, and enhancement update
libvirt-0.9.10-21.0.1.el6 - Replace docs/et.png in tarball with blank image libvirt-0.9.10-21.el6 - qemu: Rollback on used USB devices rhbz743671 - qemu: Dont delete USB device on failed qemuPrepareHostdevUSBDevices rhbz743671 - Revert 'rpc: Discard non-blocking calls only when necessary'...
abrt, libreport, btparser, and python-meh security and bug fix update
abrt 2.0.8-6.0.1.el6 - Add abrt-oracle-enterprise.patch to be product neutral - Remove abrt-plugin-rhtsupport dependency for cli and desktop - Make abrt Obsoletes/Provides abrt-plugin-rhtsupprot 2.0.8-6 - enable plugin services after install rhbz820515 - Resolves: 820515 2.0.8-5 - removed the...