9173 matches found
Oracle Linux 6 kernel security, bug fix and enhancement update
2.6.32-279.el6 - netdrv mlx4: ignore old module parameters Jay Fenlason 830553 2.6.32-278.el6 - kernel sysctl: silence warning about missing strategy for file-max at boot time Jeff Layton 803431 - net sunrpc: make new tcpmaxslottableentries sysctl use CTLUNNUMBERED Jeff Layton 803431 - drm i915:...
postgresql security update
8.1.23-5 - Back-port upstream fix for CVE-2012-2143 Resolves: 830721...
postgresql and postgresql84 security update
8.4.12-1 - Update to PostgreSQL 8.4.12, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-12.html including the fixes for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-2 - Add patches for CVE-2012-2143, CVE-2012-2655 Resolves: 830723 8.4.11-1 - Update to...
Unbreakable Enterprise kernel security and bugfix update
2.6.39-100.10.1.el6uek - thp: avoid atomic64read in pmdreadatomic for 32bit PAE Andrea Arcangeli Orabug: 14217003 2.6.39-100.9.1.el6uek - mm: pmdreadatomic: fix 32bit PAE pmd walk vs pmdpopulate SMP race condition Andrea Arcangeli Bugdb: 13966 CVE-2012-2373 - mm: thp: fix pmdbad triggering in cod...
Unbreakable Enterprise kernel security and bugfix update
kernel-uek: 2.6.32-300.27.1.el6uek - net: sock: validate datalen before allocating skb Jason Wang Bugdb: 13966CVE-2012-2136 - fcaps: clear the same personality flags as suid when fcaps are used Eric Paris Bugdb: 13966 CVE-2012-2123 - Revert 'nfs: when attempting to open a directory, fall back on...
python security update
2.4.3-46.el58.2 - if hash randomization is enabled, also enable it within pyexpat Resolves: CVE-2012-0876 2.4.3-46.el58.1 - distutils.commands.register: create /.pypirc securely Resolves: CVE-2011-4944 - send encoding in SimpleHTTPServer.listdirectory to protect IE7 against potential XSS attacks...
python security update
2.6.6-29.el62.2 - if hash randomization is enabled, also enable it within pyexpat Resolves: CVE-2012-0876 2.6.6-29.el62.1 - distutils.config: create /.pypirc securely Resolves: CVE-2011-4944 - fix endless loop in SimpleXMLRPCServer upon malformed POST request Resolves: CVE-2012-0845 - send encodi...
kernel security and bug fix update
2.6.32-220.23.1.el6 - net bond: Make LRO flag follow slave settings Neil Horman 831176 794647 2.6.32-220.22.1.el6 - net ipv4/netfilter: TCP and raw fix for iproutemeharder Jiri Benc 824429 812108 2.6.32-220.21.1.el6 - security fix compile error in commoncap.c Eric Paris 806725 806726 CVE-2012-212...
java-1.6.0-openjdk security update
1:1.6.0.0-1.48.1.11.3 - Access gnome bridge jar is forced to have 644 permissions - Resolves: rhbz828751 1:1.6.0.0-1.47.1.11.3 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages...
expat security update
2.0.1-11 - use symbol version for XMLSetHashSalt CVE-2012-0876, 816306 2.0.1-10 - add security fix for CVE-2012-1148 811825 - add security fix for CVE-2012-0876 811833...
java-1.6.0-openjdk security update
1.6.0.0-1.27.1.10.8.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.27.1.10.8 - Modified patch3, java-1.6.0-openjdk-java-access-bridge-security.patch: - com.sun.org.apache.xerces.internal.utils.,com.sun.org.apache.xalan.internal.utils. - packages added also to package.definition - Resolves:...
1
kernel: 2.6.18-308.8.2.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus...
kernel security update
kernel: 2.6.18-308.8.2.el5 - xen x8664: check address on trap handlers or guest callbacks Paolo Bonzini 813430 813431 CVE-2012-0217 - xen x8664: Do not execute sysret with a non-canonical return address Paolo Bonzini 813430 813431 CVE-2012-0217 - xen x86: prevent hv boot on AMD CPUs with Erratum...
bind97 security update
32:9.7.0-10.P2.1 - fix CVE-2012-1667 and CVE-2012-1033...
bind security update
32:9.7.3-8.P3.3 - fix CVE-2012-1667 and CVE-2012-1033...
thunderbird security update
10.0.5-2.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.5-2 - Update to 10.0.5 ESR...
openoffice.org security update
1:3.2.1-19.6.0.1.el62.7 - Replaced RedHat colors with Oracle colors, OOOVENDOR with Oracle Corp., and the filename redhat.soc with oracle.soc in specfile 1:3.2.1-19.6.7 - Resolves: CVE-2012-2334 Integer overflow leading to buffer overflow by processing invalid Escher graphics records length in th...
firefox security update
firefox: 10.0.5-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.5-1 - Update to 10.0.5 ESR xulrunner: 10.0.5-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.5-1 - Update to 10.0.5 ESR 10.0.4-2 - Adde...
1
2.6.18-308.8.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhon...
kernel security and bug fix update
2.6.18-308.8.1.el5 - net sock: validate datalen before allocating skb in sockallocsendpskb Jason Wang 816290 816106 CVE-2012-2136 - net tg3: Fix VLAN tagging assignments John Feeney 817691 797011 - net ixgbe: do not stop stripping VLAN tags in promiscuous mode Andy Gospodarek 809791 804800 - s390...
openssl security and bug fix update
1.0.0-20.5 - fix for CVE-2012-2333 - improper checking for record length in DTLS 820686 - properly initialize tkeylen in the CVE-2012-0884 fix...
postgresql security update
8.1.23-4 - Back-port upstream fixes for CVE-2012-0866 and CVE-2012-0868 Resolves: 812070 8.1.23-3 - Back-port upstream fix for unregistering OpenSSL callbacks at close Resolves: 728828 8.1.23-2 - Back-port upstream fix for CVE-2011-2483 Resolves: 740738...
postgresql and postgresql84 security update
8.4.11-1 - Update to PostgreSQL 8.4.11, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-11.html http://www.postgresql.org/docs/8.4/static/release-8-4-10.html including the fixes for CVE-2012-0866, CVE-2012-0867, CVE-2012-0868 Resolves: 812081...
bind-dyndb-ldap security update
0.2.0-7.1 - fix for CVE-2012-2134...
kvm security and bug fix update
kvm-83-249.0.1.el58.4 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-249.el58.4 - kvm-kernel-KVM-unmap-pages-from-the-iommu-when-slots-are-remove.patch bz814151 - CVE: CVE-2012-2121 - Resolves: bz814151 CVE-2012-2121 kvm: device...
Unbreakable Enterprise kernel security update
2.6.39-100.7.1.el6uek - KVM: Ensure all vcpus are consistent with in-kernel irqchip settings Avi Kivity Bugdb: 13871 CVE-2012-1601 - jbd2: clear BHDelay & BHUnwritten in journalunmapbuffer Eric Sandeen Bugdb: 13871 CVE-2011-4086...
Unbreakable Enterprise kernel security update
kernel-uek: 2.6.32-300.25.1.el6uek - jbd2: clear BHDelay & BHUnwritten in journalunmapbuffer Eric Sandeen Bugdb: 13871 CVE-2011-4086...
kernel security and bug fix update
2.6.32-220.17.1.el6 - scsi fcoe: Do not switch context in vportdelete callback Neil Horman 809388 806119 2.6.32-220.16.1.el6 - Revert: x86 Ivy Bridge kernel rdrand support Jay Fenlason 800268 696442 2.6.32-220.15.1.el6 - net SUNRPC: We must not use listforeachentrysafe in rpcwakeup Steve Dickson...
openssl security update
0.9.7a-43.18.0.1 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185 backport of OL5 patch 0.9.7a-11.2 by Tomas Mraz...
php security update
5.3.3-3.8 - correct detection of = in CVE-2012-1823 fix 818607 5.3.3-3.7 - add security fix for CVE-2012-1823 818607...
php53 security update
5.3.3-7 - correct detection of = in CVE-2012-1823 fix 818607 5.3.3-6 - add security fix for CVE-2012-1823 818607...
ImageMagick security and bug fix update
6.2.8.0-15.el5 - Fix for PostScript conversion was incomplete, as larger documents would end up being cropped without the -g option 797364 6.2.8.0-14.el5 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798 6.2.8.0-13.el5 -...
ImageMagick security update
6.5.4.7-6 - Add fix for CVE-2010-4167 - Add fix for CVE-2012-0247 CVE-2012-0248 CVE-2012-1185 CVE-2012-1186 - Add fix for CVE-2012-0259 CVE-2012-0260 CVE-2012-1798...
samba and samba3x security update
3.5.10-116 - Security Release, fixes CVE-2012-2111 - resolves: 815688...
openssl security update
openssl: 1.0.0-20.4 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185 openssl098e: 0.9.8e-17.el62.2 - Updated the description 0.9.8e-17.2 - fix for CVE-2012-2110 - memory corruption in asn1d2ireadbio 814185...
libpng security update
2:1.2.49-1 - Update to libpng 1.2.49, for minor security issues CVE-2011-3048 Resolves: 812714...
thunderbird security update
10.0.4-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.4-1 - Update to 10.0.4 ESR...
firefox security update
firefox: 10.0.4-1.0.1.el62 - Replace firefox-redhat-default-prefs.js with firefox-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR xulrunner: 10.0.4-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 10.0.4-1 - Update to 10.0.4 ESR 10.0.3-3 - Fixe...
wireshark security update
1.2.15-2.0.1.el62.1 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect 1.2.15-2.1 - security patches - Resolves: CVE-2011-1143 CVE-2011-1590 CVE-2011-1957 CVE-2011-1959 CVE-2011-2174 CVE-2011-2175 CVE-2011-1958 CVE-2011-2597 CVE-2011-2698 CVE-2011-4102 CVE-2012-0041...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.21.1.el6uek - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090 -...
Unbreakable Enterprise kernel security and bug fix update
2.6.39-100.6.1 - regset: Return -EFAULT, not -EIO, on host-side memory fault H. Peter Anvin CVE-2012-1097 - regset: Prevent null pointer reference on readonly regsets H. Peter Anvin CVE-2012-1097 - cifs: fix dentry refcount leak when opening a FIFO on lookup Jeff Layton CVE-2012-1090...
kernel security, bug fix, and enhancement update
2.6.18-308.4.1.el5 - net ipv6: fix skb double free in xfrm6tunnel Jiri Benc 752305 743375 CVE-2012-1583 2.6.18-308.3.1.el5 - net be2net: cancel beworker during EEH recovery Ivan Vecera 805462 773735 - net be2net: add vlan/rx-mode/flow-control config to besetup Ivan Vecera 805462 773735 - x86...
1
2.6.18-308.4.1.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhon...
kernel security, bug fix, and enhancement update
2.6.32-220.13.1.el6 - Revert: fs NFSv4: include bitmap in nfsv4 get acl data Sachin Prabhu 753231 753232 CVE-2011-4131 2.6.32-220.12.1.el6 - net netsched: qdiscallochandle can be too slow Jiri Pirko 805458 785891 - fs procfs: add hidepid= and gid= mount options Jerome Marchand 770651 770652 - fs...
samba security update
3.0.33-3.36.el4 - Security Release, fixes CVE-2012-1182 - resolves: 812010...
tomcat6 security update
0:6.0.24-36 - Resolves: CVE-2012-0022 regression. Changes made to patch file...
tomcat5 security update
0:5.5.23-0jpp.31 - Resolves: CVE-2012 regression. Changed patch file. 0:5.5.23-0jpp.30 - Resolves: CVE-2012-0022, CVE-2011-4858 0:5.5.23-0jpp.27 - Resolves CVE-2011-0013 rhbz 675933 - Resolves CVE-2011-3718 rhbz 675933 0:5.5.23-0jpp.23 - Resolves CVE-2011-1184 rhbz 744984 - Resolves CVE-2011-2204...
libtiff security update
3.9.4-5 - Add fix for CVE-2012-1173 Resolves: CVE-2012-1173...
samba security update
3.5.10-115 - Security Release, fixes CVE-2012-1182 - resolves: 804644...
samba3x security update
3.5.10-0.108 - Security Release, fixes CVE-2012-1182 - resolves: 804650...