8987 matches found
pango security update
1.28.1-3.el60.5 - Prevent an integer overflow in hbbufferensure Related: 679693 1.28.1-3.el60.4 - Check for realloc failures in hbbufferensure CVE-2011-0064...
kernel security, bug fix, and enhancement update
2.6.32-71.18.1.el6 - netdrv ixgbe: make sure FCoE DDP user buffers are really released by the HW Frantisek Hrbata 674002 617193 - netdrv ixgbe: invalidate FCoE DDP context when no error status is available Frantisek Hrbata 674002 617193 - netdrv ixgbe: avoid doing FCoE DDP when adapter is DOWN or...
Oracle Linux 4.9 kernel security and bug fix update
2.6.9-100 -cxgb3: prevent reading uninitialized stack memory to fix xgbextensionioctl infoleak Eugene Teo 633153 CVE-2010-3296 -mlx4: disable MSI-X by default Andy Gospodarek 530596 -ext3: call fs invalidatepage instead of blockinvalidatepage Josef Bacik 488611 -av7110: check for negative array...
python security and bug fix update
2.3.4-14.9 - rgbimg module integer overflows CVE-2010-1450 Resolves: rhbz650936 2.3.4-14.8 - Backport fix for socket.htons on s390x from 2.4 patch 37 - Resolves: rhbz513341 - Backport fixes for grp.getgrgid patch 38 and for pwd.getpwuid patch 39 - Resolves: rhbz497540 - Backport fixes to strptime...
sendmail security and bug fix update
8.13.1-6 - rpm attributes S,5,T not recorded for statistics file - fix specfile for passing rpm -V test 8.13.1-5 - recompile with -fno-strict-aliasing - fix typo, purge-mqueue script - remove README.certcnnul 8.13.1-4 - fix CVE-2009-4565 554987 - fix MAXHOSTNAMELEN 485380 - fix stale files in...
bash security and bug fix update
3.0-27 - Dont include backup files Resolves: 657500 3.0-26 - Fixed bash-3.0-tmpfile.patch Resolves: 657500 3.0-25 - Dont include backup files Resolves: 657500 3.0-24 - Use mktemp for temporary files Resolves: 657500 3.0-23 - bash globbing sometimes ignores locale settings Resolves: 539538 - check...
java-1.6.0-openjdk security update
1.6.0.0-1.39.b17 - respin of IcedTea6 1.7.10 - Resolves: rhbz676276 1.6.0.0-1.37.b17 - Updated to IcedTea6 1.7.10 - Resolves: rhbz676276...
dhcp security update
12:4.1.1-12.P1.2 - CVE-2011-0413: Unexpected abort caused by a DHCPv6 decline message 672994...
subversion security update
1.6.11-2.2 - add security fixes for CVE-2010-4644, CVE-2010-4539 672678 1.6.11-2.1 - add security fix for CVE-2010-3315 640322...
subversion security update
1.6.11-7.1 - add security fixes for CVE-2010-4644, CVE-2010-4539 672676...
kernel security and bug fix update
2.6.32-71.14.1.0.1.el6 - replace Red Hat with Oracle in files genkey and kernel.spec 2.6.32-71.14.1.el6 - kvm x86: zero kvmvcpuevents-interrupt.pad Marcelo Tosatti 665471 665409 CVE-2010-4525 2.6.32-71.13.1.el6 email6.RHSA-2011-0007 178L, 11970C written - scsi lpfc: Fixed crashes for NULL pnode...
nss security update
nss: 3.12.8-1.0.1.el6 - Update expired PayPalEE.cert to fix build failure - Use blank image instead of clean.gif in nss-3.12.8-stripped.tar.bz2 3.12.8-1 - Update to 3.12.8 nss-softokn: 3.12.8-1 - Update to 3.12.8 nss-util: 3.12.7-1 - Update to 3.12.7...
java-1.6.0-openjdk security update
1.6.0.0-1.36.b17 - removed plugin. How it comes in?! - Resolves: rhbz676295 1.6.0.0-1.33.b17 - bumped release number, it was accidentaly reduced, and now lower version then last one was released. - Resolves: rhbz676295 1.6.0.0-1.22.b17 - Updated to 1.7.9 tarball - removed patch6, fixed upstrream ...
git security update
1.7.1-2.1 - fix CVE-2010-3906...
mod_auth_mysql security update
1:3.0.0-11.1 - add security fix for CVE-2008-2384 663617...
glibc security and bug fix update
2.12-1.7.el60.3 - Require suid bit on audit objects in privileged programs 645679, CVE-2010-3856 2.12-1.7.el60.2 - Never expand in privileged programs 643821 2.12-1.7.el60.1 - Fix bug in generic strstr/memmem implementation handling certain repeated patterns 643341 - Correctly align TCB for AVX...
php security update
5.3.2-6.1 - add security fixes for CVE-2010-3709, CVE-2010-3870, CVE-2009-5016, CVE-2010-4645 670461...
libvpx security update
0.9.0-8 - Fix CVE-2010-4203 Resolves: rhbz652440 0.9.0-7 - Import 0.9.0-6 package from Fedora - Add patch porting yasm syntax to gas Related: rhbz603113...
openoffice.org security and bug fix update
3.2.1-19.3.0.1.el60.5 - Replaced RedHat colors with Oracle colors, OOOVENDOR with Oracle Corp., and the filename redhat.soc with oracle.soc in specfile bug10911 1:3.2.1-19.6.5 - Related: rhbz671087 set right file permissions 1:3.2.1-19.6.4 - Resolves: rhbz671087 file locks are not created with...
openswan security update
2.6.24-8.1 Resolves: 635058 CVE-2010-3302 CVE-2010-3308 CVE-2010-2752 CVE-2010-3753...
evince security update
2.28.2-14.el60.1 - Fixes CVE-2010-2640, CVE-2010-2641, CVE-2010-2642 and CVE-2010-2643 - Resolves: 666323...
cvs security update
1.11.23-11.el60.1 - Fix CVE-2010-3846 Resolves: 644813...
mysql security update
5.1.52-1.1 - Update to MySQL 5.1.52, for various fixes described at http://dev.mysql.com/doc/refman/5.1/en/news-5-1-52.html including numerous small security issues Resolves: 652553 - Sync with current Fedora package; this includes: - Duplicate COPYING and EXCEPTIONS-CLIENT in -libs and -embedded...
bind security update
32:9.7.0-5.P2.1 - fix CVE-2010-3613 and CVE-2010-3614...
quagga security update
0.99.15-5el60.1 - Resolves: 644830 - CVE-2010-2948 CVE-2010-2949 quagga various flaws...
openssl security update
1.0.0-4.2 - disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG - CVE-2010-3864 649304 1.0.0-4.1 - fix race in extension parsing code - CVE-2010-3864 649304...
cups security update
1:1.4.2-35:.1 - Applied patch to fix cupsd memory corruption vulnerability CVE-2010-2941, STR 3648, bug 624438...
pidgin security update
2.6.6-6.el6 - Add patch for CVE-2010-3711 RH bug 645413...
pam security update
1.1.1-4.1 - fix insecure dropping of priviledges in pamxauth, pamenv, and pammail - CVE-2010-3316 637898, CVE-2010-3435 641335 - fix insecure executing of scripts with user supplied environment variables in pamnamespace - CVE-2010-3853 643043...
poppler security update
0.12.4-3.el6.1 - Add poppler-0.12.4-CVE-2010-3702.patch Properly initialize parser - Add poppler-0.12.4-CVE-2010-3703.patch Properly initialize stack - Add poppler-0.12.4-CVE-2010-3704.patch Fix crash in broken pdf code 0 - Resolves: 639859...
krb5 security update
1.8.2-3.4 - add upstream patches to fix standalone kpropd exiting if the per-client child process exits with an error, and hang or crash in the KDC when using the LDAP kdb backend CVE-2010-4022, CVE-2011-0281, CVE-2011-0282, 671101 1.8.2-3.3 - pull up crypto changes made between 1.8.2 and 1.8.3 t...
thunderbird security update
3.1.7-3.0.1.el6 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js 3.1.7-3 - Update to 3.1.7 build3 3.1.7-2 - Update to 3.1.7 build2 3.1.7-1 - Update to 3.1.7 3.1.6-1 - Update to 3.1.6 3.1.5-1 - Update to 3.1.5...
webkitgtk security update
1.2.6-2 - Added fix for js regression 1.2.6-1 - Update to 1.2.6...
dhcp security update
12:4.1.1-12.P1.1 - CVE-2010-3611: NULL pointer dereference crash via crafted DHCPv6 packet 651913...
bzip2 security update
1.0.5-7 - Resolves: 632268 integer overflow flaw in BZ2decompress - CVE-2010-0405 upstream patch...
samba security update
3.5.4-68.1 - Security Release, fixes CVE-2010-3069 - resolves: 632264...
krb5 security update
add upstream patch to fix hang or crash in the KDC when using the LDAP kdb backend CVE-2011-0281, CVE-2011-0282, 671096...
kernel security and bug fix update
2.6.18-238.1.1.0.1.el5 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - net Enable...
postgresql security update
8.4.7-1.el60.1 - Update to PostgreSQL 8.4.7, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-7.html http://www.postgresql.org/docs/8.4/static/release-8-4-6.html including the fix for CVE-2010-4015 Resolves: 672634 8.4.5-1.el60.2 - Ensure we don't package any...
postgresql84 security update
8.4.7-1.el56.1 - Update to PostgreSQL 8.4.7, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-7.html http://www.postgresql.org/docs/8.4/static/release-8-4-6.html including the fix for CVE-2010-4015 Resolves: 672636 - Ensure we don't package any .gitignore files...
php53 security update
5.3.3-1.1 - add security fixes for CVE-2010-3710, CVE-2010-4156, CVE-2010-4645 670463...
openoffice.org security update
openoffice.org 1.1.5-10.7.10 - Resolves: rhbz642175 openoffice.org various flaws - CVE-2010-4643 heap based buffer overflow when parsing TGA files 1.1.5-10.7.8 - Resolves: rhbz642175 openoffice.org various flaws - CVE-2010-3450 directory traversal flaws in handling of XSLT jar filter descriptions...
pango security update
1.28.1-3.el60.3 - Fix a division by zero found in testing 1.28.1-3.el60.2 - Use -fno-strict-aliasing for C++, too - Escape macros in %changelog 1.28.1-3.el60.1 - Prevent heap corruption with malformed fonts. CVE-2011-0020 - Resolves: 671529...
java-1.6.0-openjdk security update
1:1.6.0.0-1.17.b17.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-1.17.b17.el5 - Updated to 1.7.7 tarball - Resolves: bz668487 - Also resolves bz668488...
hplip security update
3.9.8-33:.1 - Applied patch to fix CVE-2010-4267, remote stack overflow vulnerability bug 662740...
python security, bug fix, and enhancement update
2.4.3-43 - add missing patch 206 Related: rhbz549372 2.4.3-42 - fix testpyclbr to match the urllib change in patch 204 patch 206 - allow the 'noproxy' environment variable to override 'ftpproxy' in urllib2 patch 207 - fix typos in names of patches 204 and 205 Related: rhbz549372 2.4.3-41 - backpo...
gcc security and bug fix update
4.1.2-50.el5 - fix up fastjar directory traversal bugs CVE-2010-0831 4.1.2-49.el5 - fix ICE in setuidsinptset 605803 - fix ICE in makertlfornonlocaldecl 582682, 508735, 503565, PR c++/33094 - dont build gcjwebplugin 596097 - fix IPP handling in libgcj 578382 - document -print-multi-os-directory...
kvm security and bug fix update
kvm-83-224.0.1 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-224.el5 - kvm-kernel-KVM-x86-zero-kvmvcpuevents-interrupt.pad.patch bz665407 - Resolves: bz665407 kvmvcpuevents.interrupt.pad must be zeroed - CVE: CVE-2010-4525 kvm-83-223.e...
libuser security update
0.56.13-4 - Correctly mark the LDAP default password value as encrypted CVE-2011-0002 Resolves: 668020...
Oracle Linux 5.6 kernel security and bug fix update
2.6.18-238.el5 - net bnx2: remove extra call to pcimappage John Feeney 663509 - fs nfs: set lockcontext field in nfsreadpagesync Jeff Layton 663853 2.6.18-237.el5 - block fully zeroize request struct in rqinit Rob Evers 662154 - scsi qla4xxx: update to 5.02.04.02.05.06-d0 Chad Dupuis 656999 - scs...