8987 matches found
java-1.6.0-openjdk security update
1.6.0.0-1.39.1.9.8 - Resolves: rhbz709375 - Bumped to IcedTea6 1.9.8 - Copy fontconfig files to match names for current and next release - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...
subversion security update
1.1.4-4.0.1 - RHAT logo removed updated redhat.png in tarball 1.1.4-4 - add security fix for CVE-2011-1752 709217...
java-1.6.0-openjdk security update
1:1.6.0.0-1.22.1.9.8.0.1.el56 - Add oracle-enterprise.patch 1:1.6.0.0-1.22.1.9.8 - Resolves: rhbz668488 - Bumped to IcedTea6 1.9.8 - RH706250, S6213702, CVE-2011-0872: so non-blocking sockets with TCP urgent disabled get still selected for read ops win - RH706106, S6618658, CVE-2011-0865:...
kernel security and bug fix update
2.6.32-131.2.1.el6 - kernel lib/vsprintf.c: add %pU to print UUID/GUIDs Frantisek Hrbata 704280 700299 - scsi megaraidsas: Driver only report tape drive, JBOD and logic drives Tomas Henzl 704601 619422 2.6.32-131.1.1.el6 - net dccp: handle invalid feature options length Jiri Pirko 703012 703013...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.35.1.el6uek - net dccp: handle invalid feature options length CVE-2011-1770 - net can: add missing socket check in can/raw release CVE-2011-1748 - net can: Add missing socket check in can/bcm release CVE-2011-1598...
gimp security update
2:2.6.9-4.1 - fix various overflows 666793, 703403, 703405, 703407, 704512...
systemtap security update
1.4.6.0.1.el61.1 - remove doc/SystemTapBeginnersGuide/en-US in tarball - comment bz683569.patch in specfile 1.3-4.1 - bz702687 patch...
kernel security and bug fix update
2.6.18-238.12.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
gimp security update
2:2.2.13-2.0.7.2 - fix various overflows 537356, 666793, 689831, 703403, 703405, 703407, - unfuzz gimphelpmissing, icontheme patches...
postfix security update
2:2.6.6-2.2 - fix CVE-2011-1720 704136 Resolves: rhbz704136...
apr security update
1.3.9-3.2 - add fix for aprfnmatch regression CVE-2011-1928, 706352...
systemtap security update
1.3-4.1 - bz702687 patch...
bind security update
32:9.7.3-2.1.P1 - update to 9.7.3-P1 CVE-2011-1910...
gimp security update
2.0.5-7.0.7.el4.1 - unfuzz validate-size-values patch - don't use Prereq - fix various overflows 537356, 689831, 703403, 703407, 704512...
libguestfs security, bug fix, and enhancement update
1.7.17-17 - Remove dependency on gfs2-utils. resolves: rhbz695138 1.7.17-16 - Canonicalize /dev/vd paths in virt-inspector code. resolves: rhbz691724 1.7.17-15 - Fix trace segfault for non-daemon functions. resolves: rhbz676788 1.7.17-14 - Add explicit BuildRequires for latest augeas. RHBZ677616...
Oracle Linux 6.1 kernel security, bug fix and enhancement update
2.6.32-131.0.15.el6 - build disable Werr for external modules Aristeu Rozanski 703504 2.6.32-131.0.14.el6 - scsi hpsa: fix reading a write only register causes a hang Rob Evers 703262 - scsi mpt2sas: remove the use of writeq, since writeq is not atomic Tomas Henzl 701947 2.6.32-131.0.13.el6 - scs...
tomcat6 security and bug fix update
6.0.24-33 - resolves: rhbz 695284 - multiple instances logging fiasco 6.0.24-32 - Resolves: rhbz 698624 - inet4address can't be cast to String 6.0.24-31 - Resolves: rhbz 656403 - cve-2010-4172 jsp syntax error 6.0.24-30 - Resolves: rhbz697504 initscript logging location 6.0.24-29 - Resolves:...
pidgin security and bug fix update
2.7.9-3.el6 - Add patch for RH bug 684685 zero-out crypto keys before freeing. 2.7.9-2.el6 - Add patch for CVE-2011-1091 RH bug 683031. 2.7.9-1.el6 - Update to 2.7.9 RH bug 616917. - Remove patches now included upstream: pidgin-2.6.6-clientLogin-proxy-fix.patch...
dovecot security and enhancement update
2.0.9-2 - fix issues and assert crashes found in 2.0.9 lmtp,dotlock,zlib 2.0.9-1 - dovecot updated to 2.0.9 - fixed a high system CPU usage / high context switch count performance problem - lda: Fixed a crash when trying to send 'out of quota' reply 2.0.8-1 - dovecot updated to 2.0.8 fixes 654226...
python security, bug fix, and enhancement update
python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...
sudo security and bug fix update
1.7.4p5-5 - patch: log failed user role changes Resolves: rhbz665131 1.7.4p5-4 - added includedir /etc/sudoers.d to sudoers Resolves: rhbz615087 1.7.4p5-3 - added !visiblepw option to sudoers Resolves: rhbz688640 1.7.4p5-2 - added patch for rhbz665131 Resolves: rhbz665131 1.7.4p5-1 - rebase to...
squid security and bug fix update
3.1.10-1 - Resolves: 639365 - Rebase squid to version 3.1.10 - Resolves: 666533 - small memleak in squid-3.1.4...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.160.el6 - kvm-virtio-blk-fail-unaligned-requests.patch bz698910 - kvm-Ignore-pci-unplug-requests-for-unpluggable-devices.patch bz699789 - Resolves: bz698910 CVE-2011-1750 virtio-blk: heap buffer overflow caused by unaligned requests rhel-6.1 - Resolves: bz699789 CVE-2011-1751...
sssd security, bug fix, and enhancement update
1.5.1-34 - Resolves: rhbz701700 - sssd client libraries use select but should use - poll instead 1.5.1-33 - Related: rhbz693818 - Automatic TGT renewal overwrites cached password - Fix segfault in TGT renewal 1.5.1-32 - Related: rhbz693818 - Automatic TGT renewal overwrites cached password - Fix...
eclipse security, bug fix, and enhancement update
eclipse: 1:3.6.1-6.13 - Drop patch to remove ant-trax needed by test runs. 1:3.6.1-6.12 - Add two upstream patches to allow for running SDK JUnit tests. 1:3.6.1-6.11 - Bring in line with Fedora. - Remove some stuff that is now done in eclipse-build. - Fix sources URL. - Add PDE dependency on zip...
openssl security, bug fix, and enhancement update
1.0.0-10 - fix OCSP stapling vulnerability - CVE-2011-0014 676063 - correct the README.FIPS document 1.0.0-8 - add -x931 parameter to openssl genrsa command to use the ANSI X9.31 key generation method - use FIPS-186-3 method for DSA parameter generation - add OPENSSLFIPSNONAPPROVEDMD5ALLOW...
avahi security and bug fix update
0.6.25-11 - Fix for CVE-2011-1002 - Resolves: 684886 - Actually apply the patch 0.6.25-10 - Fix for CVE-2011-1002 - Resolves: 684886 0.6.25-9 - Don't stomp on rpm's default CFLAGS when building...
perl security and bug fix update
5.10.1-119 - 692862 - lc launders tainted flag, CVE-2011-1487 - make SOURCE1 executable, because it missed +x in brew - Resolves: rhbz692862 5.10.1-118 - Correct perl-5.10.1-rt77352.patch - Related: rhbz640720 5.10.1-117 - 671352 CGI-3.51 security update - Resolves: rhbz671352 5.10.1-116 - requir...
Unbreakable Enterprise kernel security fix update
A 2.6.32-100.28.17.el6 - net Extend prot-slab size when add sock extend fields. 2.6.32-100.28.16.el6 - kernel: Fix unlimited socket backlog DoS CVE-2010-4251 - RDS: Fix congestion issues for loopback - rds: prevent BUGON triggering on congestion map updates CVE-2011-1023 - epoll: prevent creating...
rdesktop security update
1.6.0-8.1 - Prevent remote file access 676252...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.15.el6 - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge: netfilter: fix information leak CVE-2011-1080 - Bluetooth: bnep: fix buffer overflow CVE-2011-1079 - net: don't allow CAPNETADMIN to...
apr security update
1.3.9-3.1 - add fix for CVE-2011-0419 703520...
kernel security, bug fix, and enhancement update
2.6.32-71.29.1.el6 - mm Revert 'mm pdpte registers are not flushed when PGD entry is changed in x86 PAE mode' Larry Woodman 695256 691310 2.6.32-71.28.1.el6 - net bonding: fix jiffy comparison issues Andy Gospodarek 698109 696337 - drm radeon/kms: check AA resolve registers on r300 + regression f...
xen security update
3.0.3-120.el56.2 - Fix logic and integer overflow in xctrybzip2decode rhbz 696938 - Fix logic and integer overflow in xctrylzmadecode rhbz 696938 - Fix integer and buffer overflows in xcdomprobebzimagekernel rhbz 696938...
python security update
2.4.3-44 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat-1.95.8 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in the...
python security update
2.3.4-14.10 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat 1.95.7 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in th...
xmlsec1 security and bug fix update
1.2.9-8.1.2 - disable xslt i/o support in library, tools and examples, CVE-2011-1425 - Resolves: rhbz694124 - limit the paths used for searching the security library loaded dynamically...
libvirt security update
0.8.2-15.0.1.el56.4 - Replaced docs/et.png in tarball 0.8.2-15.el56.4 - Make error reporting in libvirtd thread safe CVE-2011-1486...
gstreamer-plugins security update
0.8.5-1.0.1.EL.3 - Update release to address ULN up2date 0.8.5-1.EL.3 - Add patches for CVE-2006-4192 and CVE-2011-1574 Related: rhbz 696507...
libvirt security and bug fix update
0.8.1-27.0.1.el60.6 - Replace docs/et.png in tarball with blank image 0.8.1-27.el60.6 - Properly initialize supplementary groups for qemu process rhbz668692 - Make error reporting in libvirtd thread safe CVE-2011-1486...
thunderbird security update
3.1.10-1.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.10-1 - Update to 3.1.10...
seamonkey security update
1.0.9-70.0.1.el48 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-70.el4 - Added fixes for mozbz645565 and mozbz646460 1.0.9-69.el4 - Added fixes from 1.9.1.19...
firefox security update
firefox: 3.6.17-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.17-1 - Update to 3.6.17 xulrunner: 1.9.2.17-4.0.1.el60 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.17-4 - Rebuild 1.9.2.17-3 - Update to...
nss security update
3.12.8-3.0.1.el60 - Use blank image instead of clean.gif in nss-3.12.8-stripped.tar.bz2 - Update expired PayPalEE.cert to fix build failure 3.12.8-3 - Update builtin certs to NSS3.12.9WITHCKBI182RTM via a patch 3.12.8-2 - Update to builtin certs from NSS3.12.9WITHCKBI182RTM...
thunderbird security update
1.5.0.12-38.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-38 - Added fixes for mozbz645565 and mozbz646460 1.5.0.12-37 - Added fixes from 1.9.1.19...
kdenetwork security update
7:4.3.4-11.1 - CVE-2010-1000, improper sanitization of metalink attribute for downloading files...
kdelibs security update
6:4.3.4-11.2 - rebase the fix for CVE-2011-1094 6:4.3.4-11.1 - fixes CVE-2011-1094, CVE-2011-1168...
polkit security update
0.96-2.el60.1 - Include fixes for CVE-2011-1485 - Resolves: 692941...
libtiff security update
3.9.4-1.el60.3 - Add fix for CVE-2009-5022 Resolves: 696143...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.11.el6 - fs/partitions: Validate mapcount in Mac partition tables CVE-2011-1010 - nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab v3 CVE-2011-1090 2.6.32-100.28.10.el6 - Use cciss for some Smart Array controller for OL5 orabug 11899706 - CVEs from...