9173 matches found
httpd security update
2.2.15-15.0.1.el62.1 - replace index.html with Oracle's index page oracleindex.html update vstring in specfile 2.2.15-15.1 - add security fixes for CVE-2011-4317, CVE-2012-0053, CVE-2012-0031, CVE-2011-3607 787598 - obviates fix for CVE-2011-3638, patch removed...
glibc security update
2.5-65.el57.3 - Use correct type when casting dtag 767687 - Report write error in addmnt even for cached streams 767687 - ldd: Never run file directly 767687. - Workaround misconfigured system 767687 2.5-65.el57.2 - Check values from TZ file header 767687...
mysql security update
5.0.95-1.el57.1 - Update to 5.0.95, to get the last upstream bugfixes in this release series including numerous CVEs announced in January 2012 Resolves: 787140...
kernel security and bug fix update
2.6.18-274.18.1.0.1.el5 - net bonding: fix carrier detect when bond is down John Haxby orabug 13652598 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error...
squirrelmail security update
1.4.8-5.0.1.el57.13 - Remove Redhat splash screen images 1.4.8-5.13 - fix typo in CVE-20210-4555 patch 1.4.8-5.12 - patch for CVE-2010-2813 was not complete 1.4.8-5.11 - fix: CVE-2010-1637 : Port-scans via non-standard POP3 server ports in Mail Fetch plugin - fix: CVE-2010-2813 : DoS disk space...
mysql security update
5.1.61-1.el62.1 - Update to 5.1.61, for assorted upstream bugfixes including numerous CVEs announced in January 2012 Resolves: 787191...
php security update
5.3.3-3.6 - add security fix for CVE-2012-0830 786743...
ghostscript security update
7.07-33.13 - Applied patch to prevent null pointer dereference CVE-2010-4054, bug 646086. 7.07-33.12 - Backported patch to avoid reading initialization files from CWD CVE-2010-2055, bug 599564...
ghostscript security update
8.70-11:.6 - Applied upstream fix to last patch CVE-2010-4054, bug 646086. 8.70-11:.5 - Applied patch to prevent null pointer dereference CVE-2010-4054, bug 646086. 8.70-11:.4 - Don't ship patch backup files for CVE-2010-2055. 8.70-11:.3 - Applied patch to prevent integer underflow in TrueType...
php53 security update
5.3.3-1.6 - add security fix for CVE-2012-0830 786757...
thunderbird security update
1.5.0.12-46.0.1.el4 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-46 - Added fixes from 1.9.2.26...
seamonkey security update
1.0.9-78.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-78.el4 - Added fixes from 1.9.2.26...
openssl security update
0.9.7a-43.18 - CVE-2011-4576 - properly initialize SSL 3.0 block cipher padding 771775 - CVE-2011-4619 - fix SGC restart DoS attack 771780...
firefox security update
firefox: 3.6.26-1.0.1.el62 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 3.6.26-1 - Update to 3.6.26 xulrunner: 1.9.2.26-1.0.1.el62 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.26-1 - Update to 1.9.2.26...
thunderbird security update
3.1.18-1.0.1.el62 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.18-1 - Update to 3.1.18...
ruby security update
1.8.5-22.1 - Properly initialize the random number generator when forking new process ruby-1.8.7-CVE-2011-3009.patch - Related: rhbz768829 1.8.5-21.1 - Revert accidential move of tcl/tk libraries. - Related: rhbz768829 1.8.5-20.1 - Address CVE-2011-4815 "DoS excessive CPU use via hash...
ruby security update
1.8.7.352-4 - Address CVE-2011-4815 'DoS excessive CPU use via hash meet-in-the-middle attacks oCERT-2011-003' ruby-1.8.7-p352-CVE-2011-4815.patch - Resolves: rhbz768831...
php security update
4.3.9-3.35 - add glibc-headers to BuildRequires because of stdint.h needed by CVE-2011-0708.patch, adopt the patch's include header section 769761 4.3.9-3.33 - fix CVE-2011-4566 patch to be RHEL-4 php/exif compatible 769761 4.3.9-3.32 - add security fixes for CVE-2011-4885, CVE-2011-4566,...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.7.1.el6uek - Revert "proc: enable writing to /proc/pid/mem" orabug 13619701 CVE-2012-0056 - PATCH x86, tsc: Skip TSC synchronization checks for tsc=reliable Suresh Siddha 2.6.32-300.6.1.el6uek - tracing: Fix null pointer deref with SENDSIGFORCED Oleg Nesterov orabug 13611655...
t1lib security update
5.1.2-6.1 - Fixed CVE-2010-2642, CVE-2011-0433, CVE-2011-0764, CVE-2011-1552, CVE-2011-1553, CVE-2011-1554 Resolves: rhbz772900...
openssl security update
1.0.0-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4577 - possible DoS through malformed RFC 3779 data 771778 - fix for CVE-2011-4619 - SGC...
openssl security update
0.9.8e-20.1 - fix for CVE-2011-4108 & CVE-2012-0050 - DTLS plaintext recovery vulnerability and additional DTLS fixes 771770 - fix for CVE-2011-4109 - double free in policy checks 771771 - fix for CVE-2011-4576 - uninitialized SSL 3.0 padding 771775 - fix for CVE-2011-4619 - SGC restart DoS attac...
glibc security and bug fix update
2.12-1.47.el62.5 - Avoid high cpu usage when accept fails with EMFILE 767692 2.12-1.47.el62.4 - Make implementation of ARENASTEST and ARENASMAX match documentation 769594 - Check malloc arena atomically 769594 2.12-1.47.el62.3 - Check values from TZ file header 767692 2.12-1.47.el62.2 - Correctly...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.209.el62.4 - kvm-e1000-prevent-buffer-overflow-when-processing-legacy.patch bz772081 - Resolves: bz772081 EMBARGOED CVE-2012-0029 qemu-kvm: e1000: processtxdesc legacy mode packets heap overflow rhel-6.2.z qemu-kvm-0.12.1.2-2.209.el62.3 -...
kvm security update
kvm-83-239.0.1.el57.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-239.el57.1 - kvm-e1000-prevent-buffer-overflow-when-processing-legacy.patch bz772079 - Resolves: bz772079 EMBARGOED CVE-2012-0029 qemu-kvm: e1000: processtxdesc legacy...
kernel security and bug fix update
2.6.32-220.4.1.el6 - fs Revert 'proc: enable writing to /proc/pid/mem' Johannes Weiner 782649 782650 CVE-2012-0056 2.6.32-220.3.1.el6 - kernel Remove 'WARNING: at kernel/sched.c:5915' Larry Woodman 768288 766051 - x86 kernel: Fix memory corruption in module load Prarit Bhargava 769595 767140 -...
php security update
5.1.6-27.4 - add security fixes for CVE-2011-4885, CVE-2011-4566, CVE-2011-0708, CVE-2011-1148, CVE-2011-1466, CVE-2011-1469, CVE-2011-2202 769756...
libxml2 security update
2.6.26-2.1.12.0.1.el57.2 - Add libxml2-enterprise.patch - Replaced docs/redhat.gif in tarball with updated image 2.6.26-2.1.12.el57.2 - Fix the semantic of XPath axis for namespace/attribute nodes CVE-2010-4008 - Fix an off by one error in encoding CVE-2011-0216 - Fix some potential problems on...
libxml2 security update
2.6.16-12.9.0.1 - Add oracle-enterprise.patch and replace doc/redhat.gif in the tarball 2.6.16-12.9 - Fix an off by one error in encoding CVE-2011-0216 - Fix missing error status in XPath evaluation CVE-2011-2834 - Make sure the parser returns when getting a Stop order CVE-2011-3905 - Fix an...
libxml2 security update
2.7.6-4.0.1.el62.1 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4.el62.1 - Make sure the parser returns when getting a Stop order CVE-2011-3905 - Fix an allocation error when copying entities CVE-2011-3919 - Resolves: rhbz771913...
php53 and php security update
5.3.3-3.5 - remove extra php.ini-prod/devel files caused by %patch -b 5.3.3-3.4 - add security fixes for CVE-2011-4885, CVE-2011-4566 769754...
kernel security, bug fix, and enhancement update
2.6.18-274.17.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boot up wi...
krb5-appl security update
1.0.1-7 - Correct patch, bump release 1.0.1-6 - Fix for CVE-2011-4862...
krb5 security update
1.6.1-63.el57 - Fix for CVE-2011-4862...
Unbreakable Enterprise kernel security update
kernel-uek 2.6.32-300.4.1.el6uek - pci intel-iommu: Default to non-coherent for domains unattached to iommus Joe Jin - dm do not forward ioctls from logical volumes to the underlying device Joe Jin CVE-2011-4127 - block fail SCSI passthrough ioctls on partition devices Joe Jin CVE-2011-4127 - blo...
kernel security and bug fix update
2.6.32-220.2.1.el6 - dm fixing test for NULL pointer testing Paolo Bonzini 752379 752380 CVE-2011-4127 2.6.32-220.1.1.el6 - dm do not forward ioctls from logical volumes to the underlying device Paolo Bonzini 752379 752380 CVE-2011-4127 - block fail SCSI passthrough ioctls on partition devices...
tomcat5 security update
0:5.5.23-0jpp.22 - Resolves: CVE-2011-0013 rhbz 675931 - Resolves: CVE-2010-3718 rhbz 675931 - Resolves: CVE-2011-1184 rhbz 744983 - Resolves: CVE-2011-2204 rhbz 719181...
qemu-kvm security update
qemu-kvm-0.12.1.2-2.209.el62.1 - kvm-ccid-Fix-buffer-overrun-in-handling-of-VSCATR-messa.patch bz751312 - CVE: CVE-2011-4111 - Resolves: bz751312 CVE-2011-4111 qemu: ccid: buffer overflow in handling of VSCATR message rhel-6.2.z...
pidgin security update
2.7.9-3.el62.2 - Add patch for CVE-2011-4602 RH bug 766452. 2.7.9-3.el62.1 - Add patch for CVE-2011-4601 RH bug 766452...
ipmitool security update
1.8.11-12.1 - fixed wrong permissions on ipmievd.pid 756684...
dhcp security update
12:4.1.1-25.P1.1 - DoS due to processing certain regular expressions CVE-2011-4539, 765682...
qt security update
4.6.2-20 - Resolves: rhbz737813 fix multiple flaws in Qt CVE-2011-3193, CVE-2011-3194 4.6.2-19 - Resolves: rhbz679759, missing executable bit in qt-examples binaries - Resolves: rhbz716694, move macros.qt4 to -devel - Resolves: rhbz680088, rpmdiff failure 4.6.2-18 - Resolves: rhbz562132, Malayala...
glibc security, bug fix, and enhancement update
2.12-1.47 - Don't start AVC thread until credentials are installed 700507 2.12-1.46 - Update systemtaparches 2.12-1.45 - Update configure script 2.12-1.44 - Add gdb hooks 711927 2.12-1.43 - Don't assume ATPAGESIZE is always available 739184 - Define IPMULTICASTALL 738763 2.12-1.42 - Avoid race...
sos security, bug fix, and enhancement update
2.2-17.0.1.el6 - Direct traceroute to linux.oracle.com John Haxby orabug 11713272 - Allow '-' in ticket SR numbers John Haxby - Disable --upload option as it will not work with Oracle support - Check oraclelinux-release instead of redhat-release to get OS version John Haxby bug 11681869 - Remove ...
pidgin security update
2.6.6-10.el4 - Add patch for CVE-2011-4603 RH bug 766449. 2.6.6-9.el4 - Add patch for CVE-2011-4602 RH bug 766449. 2.6.6-8.el4 - Add patch for CVE-2011-4601 RH bug 766449...
util-linux-ng security, bug fix, and enhancement update
2.17.2-12.4 - fix CVE-2011-1675 - mount fails to anticipate RLIMITFSIZE - fix CVE-2011-1677 - umount may fail to remove /etc/mtab lock file 2.17.2-12.3 - fix fatal typos in patch for 723546 2.17.2-12.2 - rename /etc/hushlogin to /etc/hushlogins 696731 2.17.2-12.1 - fix 723546 - Defects revealed b...
php-pear security and bug fix update
1.9.4-4 - fix patch application for 747361 1.9.4-3 - ignore REST cache creation failures as non-root user 747361 1.9.4-2 - fix XML-Util provides 1.9.4-1 - update to 1.9.4 651897 - update XMLRPC to 1.5.4, StructuresGraph to 1.0.4, ArchiveTar to 1.3.7 1.9.1-1 - update to 1.9.1 651897 - fix...
libcap security and bug fix update
2.16-5.5 - remove some obsolete parameters from capsh manpage 2.16-5.4 - add capsh manpage 730957 2.16-5.3 - make sure to chdir '/' after calling chroot http://cwe.mitre.org/data/definitions/243.html...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.209.el6 - kvm-hda-do-not-mix-output-and-input-streams-RHBZ-740493-v2.patch bz740493 - kvm-hda-do-not-mix-output-and-input-stream-states-RHBZ-740493-v2.patch bz740493 - kvm-intel-hda-fix-stream-search.patch bz740493 - Resolves: bz740493 audio playing doesn't work when sound...
nfs-utils security, bug fix, and enhancement update
1.2.3-15 - mout.nfs: Don't roll back to IPv4 whe IPv6 fails bz 744657 - rpcdebug: Added pNFS and FSCache debugging bz 747400 1.2.3-14 - mount.nfs: Backported how upstream handles the SIGXFSZ signal bz 697981 1.2.3-13 - mount.nfs: Reworked the code that deals with RLIMITFSIZE bz 697981 1.2.3-12 -...