9173 matches found
freetype security update
2.3.11-6.el62.9 - Fix CVE-2012-1126, 1127, 1130, 1131, 1132, 1134, 1136, 1137, 1139, 1140, 1141, 1142, 1143, 1144 - Properly initialize array 'result' in FTOutlineGetOrientation - Check bytes per row for overflow in bdfparseglyphs - Resolves: 806268...
rpm security update
4.8.0-19.1 - Proper region tag validation on package/header read CVE-2012-0060 - Double-check region size against header size CVE-2012-0061 - Validate negated offsets too in headerVerifyInfo CVE-2012-0815...
gnutls security update
2.8.5-4.2 - fix CVE-2012-1573 - security issue in packet parsing 805432 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308...
openssl security and bug fix update
1.0.0-20.3 - fix problem with the SGC restart patch that might terminate handshake incorrectly - fix for CVE-2012-0884 - MMA weakness in CMS and PKCS7 code 802725 - fix for CVE-2012-1165 - NULL read dereference on bad MIME headers 802489...
libtasn1 security update
2.3-3.1 - fix CVE-2012-1569 - missing length check when decoding DER lengths 804920...
gnutls security update
1.4.1-7.2 - fix CVE-2011-4128 - buffer overflow in gnutlssessiongetdata 752308 - fix CVE-2012-1569 - missing length check when decoding DER lengths 804920 - fix CVE-2012-1573 - security issue in packet parsing 805432...
raptor security update
1.4.18-5.1 - Fixed XML entity expansion that could lead to information disclosure CVE-2012-0037 Resolves: rhbz804496...
libpng security update
2:1.2.48-1 - Update to libpng 1.2.48, for minor security issues CVE-2011-3045 Resolves: 801663...
glibc security update
2.5-81.el58.1 - Add dist tag when building file lists 784646. - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794813...
glibc security and bug fix update
2.12-1.47.el62.9 - Always use another area after a failed allocation in the main arena 795328 - Remove sse3 memcpy 695812 changes 799259 2.12-1.47.el62.8 - Avoid nargs integer overflow which could be used to bypass FORTIFYSOURCE 794815 2.12-1.47.el62.7 - Fix locking on malloc family retry paths...
firefox security and bug fix update
firefox: 10.0.3-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 10.0.3-1 - Update to 10.0.3 ESR xulrunner: 10.0.3-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with - xulrunner-oracle-default-prefs.js 10.0.3-1 - Update to 10.0.3 ESR...
thunderbird security update
10.0.3-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 10.0.3-1 - Update to 10.0.3 ESR...
systemtap security update
1.6-5.0.1.el62 - remove doc/SystemTapBeginnersGuide/en-US in tarball - comment bz683569.patch in specfile - remove buildtime dependency on package publican-redhat 1.6-5 - CVE-2012-0875...
python-sqlalchemy security update
0.5.5-3 - sanitize inputs to limit and offset Resolves: CVE-2012-0805...
xen security and bug fix update
3.0.3-135.el58.2 - Fix broken timestamp log rhbz 797836 3.0.3-135.el58.1 - qemu-dm/e1000: bounds packet size against buffer size rhbz 786862 - Use correct expansion in xen-network-common.sh rhbz 797191...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.11.1.el6uek - fs xfs: Fix possible memory corruption in xfsreadlink Carlos Maiolino CVE-2011-4077 - scsi increase qla2xxx firmware ready time-out Joe Jin - scsi qla2xxx: Module parameter to control use of async or sync port login Joe Jin - net tg3: Fix single-vector MSI-X code Joe Jin ...
kernel security and bug fix update
2.6.32-220.7.1.el6 - netdrv tg3: Fix single-vector MSI-X code John Feeney 787162 703555 - mm export removefrompagecache to modules Jerome Marchand 772687 751419 - block cfq-iosched: fix cfqciclink race confition Vivek Goyal 786022 765673 - fs cifs: lower default wsize when unix extensions are not...
1
kernel - 2.6.18-308.0.0.0.1.el5 - net bonding: fix carrier detect when bond is down orabug 12377284 - mm fix hugetlb page leak Dave McCracken orabug 12375075 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus...
nfs-utils security, bug fix, and enhancement update
1.0.9-60.0.1.el5 - Add support for resvport for unmonting orabug 13567018 1.0.9-60 - Updated idmapd.conf and idmapd.conf.man to reflect the static user name mapping 502707 - Fixed an umount regression introduced by bz 513094 bz 781931 1.0.9-59 - gss: turned of even more excessive syslogs bz 59309...
busybox security and bug fix update
1:1.2.0-13 - Resolves: 768083 'busybox various flaws' including: 'buffer underflow in decompression' 'udhcpc insufficient checking of DHCP options' 1:1.2.0-12 - Resolves: 756723 'Kdump fails after findfs subcommand of busybox fails' 1:1.2.0-11 - Resolves: 689659 ''busybox cp' does not return a...
ibutils security and bug fix update
1.2-11.2.0.1.el5 - Fix double malloc and free problem in CrdLoopPrepare and CrdLoopCleanup 1.2-11.2.el5 - Added Requires lines for ibutils-libs to make rpmdiff happier. - Add patch for CVE-2008-3277 Resolves: bz768400 1.2-11.1.el5 - Add ibutils-1.2-invalid-delete.patch to close Resolves: bz711779...
boost security and bug fix update
1.33.1-15 - Fix bugs in parsing invalid regexps - Resolves: 766755 1.33.1-14 - Delete leftover .orig files after patches are successfully applied 1.33.1-13 - GCC 4.4 fixes - Resolves: 567722 1.33.1-11 - Add a fix for thread safety bug in boost::regex - Build with -fno-strict-aliasing due to the...
samba security, bug fix, and enhancement update
3.0.33-3.37.el5 - Regenerate manpage for 'wide links' and 'unix extensions' sections - related: 722553 3.0.33-3.36.el5 - Security Release, fixes CVE-2010-0926 - resolves: 722553 3.0.33-3.35.el5 - Fix smbclient return code - resolves: 768908 3.0.33-3.34.el5 - Fix support for Windows 2008 R2 domain...
sudo security and bug fix update
1.7.2p1-13 - patch: parse ldap.conf more closely to nssldap Resolves: rhbz750318 1.7.2p1-12 - added patch for CVE-2011-0010 Resolves: rhbz757157 1.7.2p1-11 - backported selinux support from 1.7.4p5 477185, 673157 - fixed bug in RunasSpec group matching 627543 - disable 'sudo -l' output word...
xorg-x11-server security and bug fix update
1.1.1-48.90.0.1.el5 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.90 - cve-2011-4028.patch: File existence disclosure vulnerability. 1.1.1-48.88 - cve-2011-4818.patch: Multiple input sanitization flaws in Render and GLX -...
sos security, bug fix, and enhancement update
1.7-9.62.0.1.el5 - add patch to remove all sysrq echo commands from sysreport.legacy John Sobecki orabug 11061754 - comment out rh-upload-core and README.rh-upload-core in specfile 1.7-9.62 - Always log plugin exceptions that are not raised to the interpreter Resolves: bz717480 - Ensure relative...
kvm security and bug fix update
kvm-83-249.0.1.el5 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch - modify kversion to fix build failure kvm-83-249.el5 - kvm-kernel-KVM-x86-Prevent-starting-PIT-timers-in-the-absence-o.patch bz770101 - CVE: CVE-2011-4622 - Resolves: bz770101...
conga security, bug fix, and enhancement update
0.12.2-51.0.1.el5 - Added conga-enterprise.patch - Added conga-enterprise-Carthage.patch to support OEL5 - Replaced redhat logo image in conga-0.12.2.tar.gz 0.12.2-51 - Fix bz711494 CVE-2011-1948 plone: reflected XSS vulnerability - Fix bz771920 CVE-2011-4924 Zope: Incomplete upstream patch for...
ImageMagick security and bug fix update
6.2.8.0-12.el5 - Add fix for CVE-2010-4167 767142 6.2.8.0-11.el5 Fix assertion failed when using 'identify -verbose' when theres no image information available 502626 6.2.8.0-10.el5 Fix memory allocation failure when using color option 616538 Fix hang when converting broken GIF 693989 Fix...
cups security and bug fix update
1:1.3.7-30 - Backported patch to fix transcoding for ASCII bug 759081, STR 3832. 1:1.3.7-29 - The imageto filters could crash with bad GIF files CVE-2011-2896, STR 3867, STR 3914, bug 752118. 1:1.3.7-28 - Web interface didn't show completed jobs for printer STR 3436, bug 625900 - Serial backend...
kexec-tools security, bug fix, and enhancement update
1.102pre-154.0.3 - mkdumprd.orig get packed, remove it. 1.102pre-154.0.2 - fix mounting root fs on labeled disk Maxim Uvarov orabug: 13709374 1.102pre-154.0.1 Merge following patches from mkinitrd: - mkinitrd-fix-san-boot.patch - mkinitrd-fix-shared-lib-library-path.patch -...
vixie-cron security, bug fix, and enhancement update
4:4.1-81 - 455664 adoptions of crontab orphans, forgot add buffer for list of orphans - Related: rhbz455664 4:4.1-80 - 654961 crond process ignores the changes of user's home directory needs bigger changes of code. The fix wasn't applied, detail in comment11. - Related: rhbz249512 4:4.1-79 -...
krb5 security and bug fix update
1.6.1-70.el5 - add upstream patch for telnetd buffer overflow CVE-2011-4862, 770351 1.6.1-69.el5 - ftp: fix a static analysis should-never-happen NULL dereference 750823 1.6.1-68.el5 - backport fixes to teach libkrb5 to use descriptors higher than FDSETSIZE to talk to a KDC by using poll if it's...
initscripts security and bug fix update
8.45.42-1.0.1.el5 - Update oracle-enterprise.patch to do detection on /etc/oracle-release and /etc/enterprise-release - Patch x8664 sysctl.conf as well as default sysctl.conf - Patch sysctl.conf to default rpfilter to loose reverse path filtering has no effect for pre-2.6.32 kernels orabug 102862...
util-linux security, bug fix, and enhancement update
2.13-0.59.0.1.el5 - Merge UEK modification fix 10104470 - Import hwclock from util-linux-ng Kris Van Hees 2.13-0.59 - fix 768382 - CVE-2011-1675 CVE-2011-1677 util-linux various flaws 2.13-0.58 - fix 677452 - util-linux fails to build with gettext-0.17 2.13-0.57 - fix 646300 - login doesn't updat...
Oracle Linux 5.8 kernel security and bug update
kernel 2.6.18-308.el5 - scsi lpfc: Update lpfc version for 8.2.0.108.4p driver release Rob Evers 784073 - scsi lpfc: Fix FCP EQ memory check init w/single int vector Rob Evers 784073 2.6.18-307.el5 - s390 crypto: Reset sha2 index after processing partial block David Howells 677860 - Revert: fs xf...
httpd security update
2.2.3-63.0.1.el58.1 - Fix modssl always performing full renegotiation orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-63.1 - add security fixes for CVE-2012-0053, CVE-2012-0031, CVE-2011-3607 787596 - remove patch for...
java-1.6.0-openjdk security update
1.6.0.0-1.25.1.10.6.0.1.el58 - Add oracle-enterprise.patch 1:1.6.0.0-1.25.1.10.6 - Updated to IcedTea6 1.10.6 - Resolves: rhbz787142 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687:...
samba security update
3.0.33-3.38.el5 - Security release, fixes CVE-2012-0870 - resolves: 795718...
libxml2 security update
2.7.6-4.0.1.el62.4 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4.el62.4 - remove chunk in patch related to configure.in as it breaks rebuild - Resolves: rhbz788845 2.7.6-4.el62.3 - fix previous build to force compilation of...
cvs security update
1.11.23-11.el62.1 - Fix CVE-2012-0804 Resolves: 784338...
libpng security update
2:1.2.46-2 - Fix CVE-2011-3026 Resolves: 791007...
thunderbird security update
3.1.18-2.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.18-2 - added fix for mozbz727401...
seamonkey security update
1.0.9-79.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-79.el4 - Added fix for mozbz727401...
firefox security update
3.6.26-3.0.1.el4 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.26-3 - Added fix for mzbz727401...
xulrunner security update
1.9.2.26-2.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.26-2 - added fix for mozbz727401...
texlive security update
2007-57 - fix CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554, texlive various flaws 773183...
java-1.6.0-openjdk security update
1:1.6.0.0-1.43.1.10.6 - Updated to IcedTea6 1.10.6 - Resolves: rhbz787144 - Security fixes - S7082299: Fix in AtomicReferenceArray - S7088367: Fix issues in java sound - S7110683: Issues with some KeyboardFocusManager method - S7110687: Issues with TimeZone class - S7110700: Enhance exception...
libvorbis security update
1.2.3-4.1 - fix CVE-2012-0444 787076...
glibc security and bug fix update
2.3.4-2.57 - Use malloc as needed in fnmatch 769360 2.3.4-2.56 - Fix handling if newline in addmntent 769360 - Use correct type when casting dtag 769360. - Properly quite output of local 769360 - Check size of pattern in wide character representation in fnmatch 769360 - Report write error in addm...