9172 matches found
squid security update
-7:3.1.10-1.el62.1 - Resolves: 755016 - CVE-2011-4096: Invalid free by processing CNAME DNS record...
virt-v2v security and bug fix update
0.8.3-5 - Fix regression when converting Win7 32 bit to RHEV RHBZ738236 0.8.3-4 element 0.8.3-3 - Add missing dependency on new Sys::Virt 0.8.3-2 - Fix for CVE-2011-1773 - Document limitations wrt Windows Recovery Console 0.8.3-1 - Include missing virt-v2v.db - Rebase to upstream release 0.8.3...
krb5 security update
1.9-22.1 - add candidate patch to fix a NULL pointer dereference while processing TGS requests MITKRB5-SA-2011-007, 754046...
ipa security and bug fix update
2.1.3-9.el6 - Add current password prompt when changing own password in web UI 751179 - Remove extraneous trailing ' from netgroup patch 749352 2.1.3-8.el6 - Updated patch for CVE-2011-3636 to include CR in the HTTP headers. xmlrpc-c in RHEL-6 doesn't suppose the dontadvertise option so that is n...
qt security update
4.6.2-20 - Resolves: rhbz737813 fix multiple flaws in Qt CVE-2011-3193, CVE-2011-3194 4.6.2-19 - Resolves: rhbz679759, missing executable bit in qt-examples binaries - Resolves: rhbz716694, move macros.qt4 to -devel - Resolves: rhbz680088, rpmdiff failure 4.6.2-18 - Resolves: rhbz562132, Malayala...
libxml2 security and bug fix update
2.7.6-4.0.1.el6 - Update doc/redhat.gif in tarball - Add libxml2-oracle-enterprise.patch and update logos in tarball 2.7.6-4 - Fixes another XPath problem CVE-2011-2834 - Resolves: rhbz732335 2.7.6-3 - Fixes various other issues in 2.7.6 XPath evaluation - Resolves: rhbz732335 2.7.6-2 - Fix a...
Unbreakable Enterprise kernel security and bug fix update
2.6.32-300.3.1.el6uek - proc: fix oops on invalid /proc/ /maps access Linux Torvalds - Revert 'capabilities: do not grant full privs for setuid w/ file caps + no effective caps' Joe Jin - mm: Use MMFCOMPAT instead ia32compat to prevent kabi be broken Joe Jin - proc: enable writing to /proc/pid/me...
Oracle Linux 6 kernel security, bug fix and enhancement update
2.6.32-220.el6 - drm i915: fix unmap race condition introduced with VT-d fix Dave Airlie 750583 - scsi iscsi: revert lockless queuecommand dispatch Rob Evers 751426 2.6.32-219.el6 - kernel KEYS: Fix a NULL pointer deref in the user-defined key type David Howells 751190 CVE-2011-4110 - scsi fc...
kexec-tools security, bug fix, and enhancement update
2.0.0-209.0.1.el6 - Make sure '--allow-missing' is effective by adding to MKDUMPRDARGS in kdump.sysconfig, kdump.sysconfig.i386, and kdump.sysconfig.x8664 12590865 11678808 2.0.0-209 - Improve debugfs mounting code, from Dave Young. Resolve bug 748748. 2.0.0-208 - Search DUP firmware directory to...
cups security and bug fix update
1.4.2-44 - Init script should source /etc/sysconfig/cups bug 744791 1.4.2-43 - The scheduler might leave old job data files in the spool directory STR 3795, STR 3880, bug 735505. 1.4.2-42 - A further fix for imageto filters crashing with bad GIF files STR 3914, bug 714118. 1.4.2-41 - The imageto...
icu security update
4.2.1-9.1 - Resolves: rhbz766539 CVE-2011-4599 localeID overflow...
netpbm security update
10.35.58-8.el5.3 - Actually apply the patch for - CVE-2009-4274 760849 10.35.58-8.el5.2 - fix xpmtoppm overfow - CVE-2009-4274 760849 10.35.58-8.el5.1 - fix libjasper heap buffer overflow CVE-2011-4516 CVE-2011-4517 760849...
perl security update
4:5.8.8-32.0.1.el57.6 - Up release number and rebuild 4:5.8.8-32.el5.6 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fixed by security patch based on commit from version 3.50 - Related: rhbz743626 4:5.8.8-32.el5.5 - CVE-2010-2761 CVE-2010-4410 perl: CGI module multiple issues fix...
tomcat6 security and bug fix update
0:6.0.24-35 - Resolves: cve-2011-3190 - Resolves: cve-2011-2204 - Resolves: cve-2011-2526 - Resolves: cve-2011-1184 - Resolves: rhbz 748807 - tomcat6 broken when LANG=fr...
cyrus-imapd security update
2.3.16-6.4 - fix CVE-2011-3481: NULL pointer dereference via crafted References header in email 738391 - fix CVE-2011-3372: nntpd authentication bypass 740822...
libarchive security update
2.8.3-3 - Security fixes CVE-2011-1777, CVE-2011-1778 739939...
bind security update
20:9.2.4-38 - fix CVE-2011-4313...
kernel security, bug fix, and enhancement update
kernel 2.6.18-274.12.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boo...
Unbreakable Enterprise kernel security update
2.6.32-200.23.1.el6uek - net: Remove atmclip.h to prevent break kabi check. - KConfig: add CONFIGUEK5=n to ol6/config-generic 2.6.32-200.22.1.el6uek - ipv6: make fragment identifications less predictable Joe Jin CVE-2011-2699 - vlan: fix panic when handling priority tagged frames Joe Jin...
kernel security and bug fix update
2.6.32-131.21.1.el6 - net ipv6/udp: fix the wrong headroom check Thomas Graf 753167 698170 2.6.32-131.20.1.el6 - net vlan: fix panic when handling priority tagged frames Andy Gospodarek 742849 714936 CVE-2011-3593 - netdrv igb: fix WOL on second port of i350 device Frantisek Hrbata 743807 718293 ...
bind security update
32:9.7.3-2.3.P3 - fix DOS against recursive servers 754398 32:9.7.3-2.2.P3 - update to 9.7.3-P3 CVE-2011-2464 32:9.7.3-2.1.P1 - update to 9.7.3-P1 CVE-2011-1910...
bind97 security update
32:9.7.0-6.P2.4 - fix DOS against recursive servers 754398...
freetype security update
2.3.11-6.el61.8 - Add freetype-2.3.11-CVE-2011-3439.patch Various loading fixes. - Resolves: 754011...
thunderbird security update
3.1.16-2.0.1.el61 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.16-2 - Update to 3.1.16...
seamonkey security update
1.0.9-77.0.1.el4 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-77.el4 - Added fixes from 1.9.2.24...
nss security update
nspr: 4.8.7-2 - Update to 4.8.8 nss: 3.12.10-2.0.1.el61 - Update clean.gif in the nss-3.12.10-stripped.tar.bz2 tarball 3.12.10-2 - Update builtins certs to those from NSSCKBI188RTM 3.12.10-1 - Update to 3.12.10 nss-util: 3.12.10-1 - Update to 3.12.10...
icedtea-web security update
1.0.6-1 - Updated to 1.0.6 - Resolves: rhbz744738 - Resolves: rhbz745414...
thunderbird security update
1.5.0.12-45.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-45 - Added fixes from 1.9.2.24...
firefox security update
firefox: 3.6.24-3.0.1.el61 - Add firefox-oracle-default-prefs.js and remove the corresponding Red Hat ones 3.6.24-3 - Update to 3.6.24 xulrunner: 1.9.2.24-2.0.1.el61.1 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.24-2 - Update to 1.9.2.24...
perl security update
4:5.10.1-119.1 - 731246 CVE-2011-2939CVE-2011-2939 heap overflow - decoding Unicode string - 743010 - perl: code injection vulnerability in Digest-new - Resolves: rhbz743090, rhbz743092...
openswan security update
2.6.32-4.4 Resolves: 748969 CVE-2011-4073 updated patch by upstream 2.6.32-4.3 Resolves: 748969 CVE-2011-4073...
php53 and php security update
5.3.3-3.3 - improve CVE-2011-1466 fix to cover CALGREGORIAN, CALJEWISH 5.3.3-3.1 - add security fixes for CVE-2011-2483, CVE-2011-0708, CVE-2011-1148, CVE-2011-1466, CVE-2011-1468, CVE-2011-1469, CVE-2011-1470, CVE-2011-1471, CVE-2011-1938, and CVE-2011-2202 740731...
openssl security update
1.0.0-10.5 - initialize the X509STORECTX properly for CRL lookups - CVE-2011-3207 736087...
freetype security update
2.3.11-6.el61.7 - Add freetype-2.3.11-CVE-2011-3256.patch Handle some border cases. - Resolves: 747083...
xen security and bug fix update
3.0.3-132.el57.2 - Release device backends before restarting guest on the destination machine rhbz 743850 - Fix SCSI buffer overflow and disable SCSI CD-ROMs rhbz 736289 3.0.3-132.el57.1 - hotplug: set netback/tap MTU to the same value as the bridge MTU rhbz 738608 - copy the MTU of the physical...
kernel security, bug fix, and enhancement update
kernel: 2.6.18-274.7.1.0.1.el5 - fix ia64 build error due to add-support-above-32-vcpus.patchZhenzhong Duan - x86 use dynamic vcpuinfo remap to support more than 32 vcpus Zhenzhong Duan - scsi add additional scsi medium error handling John Sobecki orabug 12904887 - x86 Fix lvt0 reset when hvm boo...
httpd security and bug fix update
2.2.3-53.0.2.el57.3 - Fix modssl always performing full renegotiation orabug 12423387 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-53.3 - add security fix for CVE-2011-3368 743903 - fix regressions in byterange handling 736593...
httpd security and bug fix update
2.2.15-9.0.1.el61.3 - replace index.html with Oracle's index page - update vstring in specfile 2.2.15-9.3 - add security fixes for CVE-2011-3347, CVE-2011-3368 743901 - fix regressions in CVE-2011-3192 patch 736592...
kdelibs and kdelibs3 security update
3.5.10-24.1 - Resolves: bz746160, CVE-2011-3365, input validation failure in KSSL...
krb5 security update
1.9-9.2 - apply upstream patch to fix a null pointer derference with the LDAP kdb backend CVE-2011-1527, an assertion failure with multiple kdb backends CVE-2011-1528, and a null pointer dereference with multiple kdb backends CVE-2011-1529 740084...
java-1.6.0-openjdk security update
1:1.6.0.0-1.40.1.9.10 - Resolves: rhbz744788 - Bumped to IcedTea6 1.9.8 -removed font copying Security fixes - S7000600, CVE-2011-3547: InputStream skip information leak - S7019773, CVE-2011-3548: mutable static AWTKeyStroke.ctor - S7023640, CVE-2011-3551: Java2D TransformHelper integer overflow ...
postgresql84 security update
8.4.9-1.el57.1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740739...
postgresql security update
8.4.9-1 - Update to PostgreSQL 8.4.9, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-9.html http://www.postgresql.org/docs/8.4/static/release-8-4-8.html including the fix for CVE-2011-2483 Resolves: 740735...
pidgin security update
2.6.6-7 - Add patch for CVE-2011-3594 RH bug 743798. 2.6.6-6 - Add patch for CVE-2011-1091 RH bug 743798...
kdelibs security and enhancement update
6:4.3.4-11.4 - Resolves: bz743951, use ca-certificates' ca-bundle.crt 6:4.3.4-11.3 - Resolves: bz743515, CVE-2011-3365 - input validation failure...
Unbreakable Enterprise kernel security update
2.6.32-200.20.1.el6uek - afpacket: prevent information leak CVE-2011-2898 - gro: Only reset frag0 when skb can be pulled CVE-2011-2723 - vm: fix vmpgoff wrap in stack expansion CVE-2011-2496 - vm: fix vmpgoff wrap in upward expansion CVE-2011-2496 - taskstats: don't allow duplicate entries in...
xorg-x11-server security update
1.7.7-29.2 - cve-2011-4818.patch: Multiple input sanitization flaws in GLX and Render...
xorg-x11 security update
6.8.2-1.0.1.EL.70 - Add Enterprise Linux detection - Add XFree86-4.3.0-oracle-bug-report-address-update.patch 6.8.2-1.EL.70 - cve-2011-4818.patch: Multiple input sanitization issues in GLX and Render...
openswan security update
2.6.32-4.2 Resolves: 742069 CVE-2011-3380...
kernel security, bug fix, and enhancement update
2.6.32-131.17.1.el6 - Revert: net ipv6: make fragment identifications less predictable Jiri Pirko 723432 723433 CVE-2011-2699 2.6.32-131.16.1.el6 - net brmulticast: Ensure to initialize BRINPUTSKBCBskb-mroutersonly. Frantisek Hrbata 739477 738110 2.6.32-131.15.1.el6 - rebuild 2.6.32-131.14.1.el6 ...