8987 matches found
kernel security and bug fix update
2.6.9-89.35.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
exim security update
4.63-5.el56.2 - fix privilege escalation CVE-2010-4345, 662012...
wireshark security update
1.2.13-1.0.1.el60.2 - Add oracle-ocfs2-network.patch to allow disassembly of OCFS2 interconnect packets bug11486 1.2.13-1.1 - fix buffer overflow in ENTTEC dissector - Resolves: 667337 1.2.13-1 - upgrade to 1.2.13 - see http://www.wireshark.org/docs/relnotes/wireshark-1.2.11.html - see...
kernel security, bug fix, and enhancement update
2.6.18-194.32.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kvm security and bug fix update
kvm-83-164.0.1.el55.30 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch to replace RHEL with OEL - Added kvm-Introduce-oel-machine-type.patch so that OEL is a recognized VM kvm-83-164.el55.30 - Revert the bz661397 patches as they are not enough -...
bind security update
20:9.2.4-30.6 - fix CVE-2010-3613...
HelixPlayer removal
1.0.6-3.1 - Empty package, and add uninstall subpackage with explanation for the emptiness. Related: bz662779...
openssl security update
0.9.8e-12.7 - fix CVE-2010-4180 - completely disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462...
openssl security update
0.9.7a-43.17.6 - CVE-2010-4180 - disable code for SSLOPNETSCAPEREUSECIPHERCHANGEBUG 659462 - CVE-2009-3245 - fix missing checks on allocation failure in bnwexpand 570924...
bind security update
30:9.3.6-4.P1.3 - fixes for CVE-2010-3762, CVE-2010-3613 and CVE-2010-3614...
seamonkey security update
1.0.9-66.0.1.el48 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-66.el4 - Added fixes from 1.9.1.16...
thunderbird security update
1.5.0.12-34.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-34 - Added fixes from 1.9.1.16...
exim security update
4.63-3.el55.2 - fix buffer overflow in stringformat CVE-2010-4344, 662019...
firefox security update
firefox: 3.6.13-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js bugz 11762 3.6.13-2 - Update to 3.6.13 build3 3.6.13-1 - Update to 3.6.13 3.6.12-1 - Update to 3.6.12 3.6.11-1 - Update to 3.6.11 xulrunner: 1.9.2.13-3.0.1.el60 - Added...
Unbreakable enterprise kernel security and bug fix update
Following Security fixes are included in this unbreakable enterprise kernel errata: CVE-2010-3432 The sctppacketconfig function in net/sctp/output.c in the Linux kernel before 2.6.35.6 performs extraneous initializations of packet data structures, which allows remote attackers to cause a denial o...
apr-util security update
1.3.9-3.1 - add security fix for CVE-2010-1623 659253...
kvm security update
kvm-83-164.0.1.el55.25 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-164.el55.25 - Adding loadgsindex to kmod symbol greylist - Related: bz639886 CVE-2010-3698 kvm: invalid selector in fs/gs causes kernel panic rhel-5.5.z...
kernel security and bug fix update
2.6.9-89.33.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
krb5 security update
1.6.1-36.el55.6 - incorporate candidate patch for checksum acceptance issues from MITKRB5-SA-2010-007 CVE-2010-1323, 652307...
php security update
5.1.6-27.3 - add security fix for CVE-2010-3870 626735 5.1.6-27.2 - fix varexport test cases 626735 5.1.6-27.1 - add security fixes for CVE-2010-1917, CVE-2010-3065, CVE-2010-2531, CVE-2010-1128, CVE-2010-0397 626735...
systemtap security update
0.6.2-2.3.0.1.el48.3 - Detect enterprise-release 0.6.2-2.3 - CVE-2010-4170, n/a - CVE-2010-4171...
systemtap security update
1.2-11.0.1.el60 - rebuild without docs - remove doc/SystemTapBeginnersGuide/en-US in tarball 1.2-11 - CVE-2010-4170 - CVE-2010-4171...
freetype security update
2.3.11-6.el60.2 - Add freetype-2.3.11-CVE-2010-3855.patch Protect against invalid runcnt values. - Resolves: 651761 2.3.11-6.el60.1 - Add freetype-2.3.11-CVE-2010-2805.patch Fix comparison. - Add freetype-2.3.11-CVE-2010-2806.patch Protect against negative stringsize. Fix comparison. - Add...
kernel security and bug fix update
2.6.18-194.26.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
mysql security update
5.0.77-4.4 - Add fixes for CVE-2010-3677, CVE-2010-3680, CVE-2010-3681, CVE-2010-3682, CVE-2010-3833, CVE-2010-3835, CVE-2010-3836, CVE-2010-3837, CVE-2010-3838, CVE-2010-3839, CVE-2010-3840 Resolves: 645642 - Backpatch strmov fix so that code can be tested on more recent platforms...
mysql security update
4.1.22-2.el4.4 - Add fixes for CVE-2010-1848, CVE-2010-3681, CVE-2010-3840 Resolves: 645637 - Backpatch longlong overflow fix so that code can be tested on more recent platforms...
pam security update
0.99.6.2-6.2 - fix insecure dropping of priviledges in pamxauth and pammail - CVE-2010-3316 637898, CVE-2010-3435 641335 - fix insecure executing of scripts with user supplied environment variables in pamnamespace - CVE-2010-3853 643043...
thunderbird security update
1.5.0.12-33.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-33 - Added fixes from 1.9.1.15...
cups security update
1.3.7-18:.8 - Applied patch to fix cupsd memory corruption vulnerability CVE-2010-2941, STR 3648, bug 624438. - Fix latent privilege escalation vulnerability CVE-2010-2431, STR 3510, bug 605397...
xulrunner security update
1.9.2.11-4.0.1.el55 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. 1.9.2.11-4.el55 - Add upstream patch for CVE-2010-3765...
seamonkey security update
1.0.9-65.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-65.el4 - Added fix for mozbz607222...
firefox security update
3.6.11-4.0.1.el48 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.11-4.el48 - Add upstream patch for CVE-2010-3765...
kernel security update
2.6.18-194.17.4.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
glibc security update
2.5-49.el55.7 - Require suid bit on audit objects in privileged programs 645677, CVE-2010-3856...
kernel security update
2.6.18-194.17.1.0.2.el5 - rds fix access issue with rds Chris Mason CVE-2010-3904 orabug 10226701...
Oracle Linux 5 Unbreakable Enterprise kernel security fix update
Following security bugs are fixed in this errata CVE-2010-3904 When copying data to userspace, the RDS protocol failed to verify that the user-provided address was a valid userspace address. A local unprivileged user could issue specially crafted socket calls to write arbitrary values into kernel...
glibc security update
2.5-49.el55.6 - Never expand in privileged programs 643818, CVE-2010-3847...
pidgin security update
2.6.6-5 - Add patch for CVE-2010-1624 RH bug 644153. 2.6.6-4 - Initial patch for CVE-2010-3711 was incomplete. Here's the rest. 2.6.6-3 - Add patch for CVE-2010-3711 RH bug 644153...
thunderbird security update
1.5.0.12-31.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-31 - Added fixes from 1.9.1.14...
kernel security and bug fix update
2.6.9-89.31.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
quagga security update
0.98.6-5.el55.2 - Resolves: 638627 - CVE-2007-4826 CVE-2010-2948 quagga: various flaws...
seamonkey security update
1.0.9-64.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-64.el4 - Added fixes from 1.9.1.14...
firefox security update
firefox: 3.6.11-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.11-2 - Update to 3.6.11 Build 2 3.6.11-1 - Update to 3.6.11 nss: 3.12.8-1.0.1.el5 - Update clean.gif in the nss-3.12.8-stripped.tar.bz2 tarball...
java-1.6.0-openjdk security and bug fix update
1.6.0.0-1.16.b17.0.1.el5 - Add oracle-enterprise.patch 1.6.0.0-1.16.b17.el5 - Updated 1.7.5 tarball contains additional security fixes - Resolves: bz639951 1.6.0.0-1.15.b17.el5 - Rebuild - Resolves: bz639951 1.6.0.0-1.14.b17.el5 - Synched with el6 branch - Updated to IcedTea 1.7.5 - Resolves:...
gpdf security update
2.8.2-7.7.2.el48.7 - Add gpdf-2.8.2-CVE-2010-3702.patch Properly initialize parser - Add gpdf-2.8.2-CVE-2010-3704.patch Fix crash in broken pdf code 0 - Resolves: 639831...
cups security update
1:1.1.17-13.3.70 - Reinstated fix for CVE-2010-3702 bug 595245. 1:1.1.17-13.3.69 - Temporarily removed fix for CVE-2010-3702. 1:1.1.17-13.3.68 - Added bounds checking to Type1CFontFile::getWord in order to verify fix for CVE-2010-3702. - Applied small fix to CVE-2009-0791 change: allow objSize=0 ...
xpdf security update
2.02-19.el3 - Resolves: 639826, CVE-2010-3702, uninitialized Gfx::parser pointer dereference 2.02-18.el3 - Resolves: 639826, CVE-2010-3702, uninitialized Gfx::parser pointer dereference...
poppler security update
0.5.4-4.4.el55.14 - Add poppler-0.5.4-CVE-2010-3702.patch Properly initialize parser - Add poppler-0.5.4-CVE-2010-3704.patch Fix crash in broken pdf code 0 - Resolves: 639839...
xpdf security update
3.00-24.1 - Resolves: 639829 CVE-2010-3702, uninitialized Gfx::parser pointer dereference CVE-2010-3704, array indexing error in FoFiType1::parse...
kdegraphics security update
3.3.1-18.1 - Resolves: 639833 CVE-2010-3702, uninitialized Gfx::parser pointer dereference CVE-2010-3704, array indexing error in FoFiType1::parse...