8986 matches found
postgresql and postgresql84 security update
postgresql: 8.1.22-1.el55.1 - Update to PostgreSQL 8.1.22, for various fixes described at http://www.postgresql.org/docs/8.1/static/release.html including the fix for CVE-2010-3433 Resolves: 639931 postgresql84: 8.4.5-1.el55.1 - Update to PostgreSQL 8.4.5, for various fixes described at...
freetype security update
2.2.1-28 - Modify freetype-2.2.1-CVE-2010-3054.patch - Resolves: 638142 2.2.1-27 - Add freetype-2.2.1-CVE-2010-2806.patch Protect against negative stringsize. Fix comparison. - Add freetype-2.2.1-CVE-2010-3311.patch Don't seek behind end of stream. - Add freetype-2.2.1-CVE-2010-3054.patch Protect...
Unbreakable enterprise kernel security update
2.6.32-100.20.1.el5 - fs xfs: return inode fork offset in bulkstat for fsr Dave Chinner - fs xfs: always use iget in bulkstat Dave Chinner CVE-2010-2943 - fs xfs: validate untrusted inode numbers during lookup Dave Chinner CVE-2 010-2943 - fs xfs: rename XFSIGETBULKSTAT to XFSIGETUNTRUSTED Dave...
freetype security update
2.1.4-18.el3 - Modify freetype-2.1.4-CVE-2010-3054.patch - Resolves: 638139 2.1.4-17.el3 - Add freetype-2.1.4-CVE-2010-2806.patch Protect against negative stringsize. Fix comparison. - Add freetype-2.1.4-CVE-2010-3311.patch Don't seek behind end of stream. - Add freetype-2.1.4-CVE-2010-3054.patch...
kernel security and bug fix update
2.6.18-194.17.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
kernel security update
2.6.9-89.29.1.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
mikmod security update
3.1.6-39.el55.1 - fix CVE-2007-6720, CVE-2009-3995,3996 617486...
kernel security update
2.6.18-194.11.4.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
bzip2 security update
1.0.3-6 - Related: 632173 use the upstream patch 1.0.3-5 - Resolves: 632173 integer overflow flaw in BZ2decompress - CVE-2010-0405...
samba3x security update
3.3.8-0.52.2 - Security Release, fixes CVE-2010-3069 - resolves: 632231...
samba security and bug fix update
3.0.33-3.29.el5.1 - Security Release, fixes CVE-2010-3069 - resolves: 632229...
seamonkey security update
1.0.9-63.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-63.el4 - Added fixes for mozbz576447, 583225 1.0.9-62.el4 - Added fixes from 1.9.1.12...
thunderbird security update
1.5.0.12-30.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js Replaced clean.gif in tarball 1.5.0.12-30 - Added fixes for mozbz576447, 583225 1.5.0.12-29 - Added fixes from 1.9.1.12...
firefox security update
firefox: 3.6.9-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.9-2 - Fixed xulrunner version 3.6.9-1 - Update to 3.6.9 nspr: 4.8.6-1 - update to 4.8.6 nss: 3.12.7-2.0.1.el55 - Update clean.gif in the...
kernel security update
2.6.9-89.0.29.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
rpm security and bug fix update
4.4.2.3-20.el55.1 - make the sbits removal behavior consistent with all the RHELs - add proper suffix for Z branch 4.4.2.3-19 - fix CVE-2010-2059, fails to drop SUID/SGID bits on package upgrade 626707 - fix SELinux memory leak 627630, patch from Florian Festi...
sudo security update
1.7.2p1-8 - added patch for CVE-2010-2956 628628...
rpm security update
4.3.3-33nonptl - fix CVE-2010-2059, fails to drop SUID/SGID bits on package upgrade 626709 - add dist tag...
kernel security update
2.6.18-194.11.3.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
httpd security and bug fix update
2.2.3-43.0.1.el55.3 - replace index.html with Oracle's index page oracleindex.html - update vstring and distro in specfile 2.2.3-43.3 - modssl: improved fix for SSLRequire's OID function 625452 2.2.3-43.2 - add security fixes for CVE-2010-1452, CVE-2010-2791 623210 - moddeflate: rebase to 2.2.15...
gdm security and bug fix update
1:2.6.0.5-7.rhel4.19.el48.2 - Fix tcpwrappers on 64-bit arches Resolves: 625916 1:2.6.0.5-7.rhel4.19.el48.1 - Do less unsavory work after jumping out of a signal handler Resolves: 625818...
ImageMagick security and bug fix update
6.2.8.0-4.el55.2 - Fix SGI image decoding 625058 6.2.8.0-4.el55.1 - Add fix for CVE-2009-1882 504304...
ImageMagick security update
6.0.7.1-20.el48.1 - Add fix for CVE-2009-1882 504302...
openoffice.org security update
1.1.5-10.0.7.5 - Resolves: rhbz622858 CVE-2010-2935 CVE-2010-2936...
qspice security update
0.3.0-54.el55.2 - Fix unsafe accesses + spice: drop libpng from windows components 537849 + libspice: fix unsafe guest data accessing Resolves: 568719 + fix unsafe free call. Resolves: 568723 + spice server: fix unsafe cursor items handling. Resolves: 568719...
kvm security and bug fix update
kvm-83-164.0.1.el55.21 - Added kvm-add-oracle-workaround-for-libvirt-bug.patch - Added kvm-Introduce-oel-machine-type.patch kvm-83-164.el55.21 - kvm-Fix-segfault-in-mmio-subpage-handling-code.patch bz619412 - Resolves: bz619412 CVE-2010-2784 qemu: insufficient constraints checking in...
wireshark security update
1.0.15-1.0.1.el55.1 - Add oracle-ocfs2-network.patch 1.0.15-1 - upgrade to 1.0.15 - http://www.wireshark.org/docs/relnotes/wireshark-1.0.15.html - fixes CVE-2010-2287 CVE-2010-2284 - Related: 612239 1.0.14-1.2 - fix corner case in CVE-2010-2284 - Related: 612239 1.0.14-1 - upgrade to 1.0.14 -...
kernel security and bug fix update
2.6.18-194.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
dbus-glib security update
NetworkManager: 1:0.7.0-10.el55.1 - Rebuild to fix D-Bus property access for dbus-glib CVE-2010-1172 dbus-glib: 0.73-10 - Add patch to fix CVE-2010-1172 Drop broken-xml.patch which this one now incorporates Resolves: 588397 and 585395...
libvirt security and bug fix update
0.6.3-33.0.1.el55.3 - Replaced docs/et.png in tarball 0.6.3-33.el55.3 - Explicitly set qcow2 backing store format CVE-2010-2239 - Remap privileged source ports from guests behind NAT CVE-2010-2242 - Eliminate memory leak in xenUnifiedDomainInfoListFree rhbz 619711 0.6.3-33.el55.2 - Fix discrepanc...
freetype security update
2.1.1-26 - Add freetype-2.2.1-CVE-2010-1797.patch - Resolves: CVE-2010-1797...
kernel security and bug fix update
2.6.9-89.0.28.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
gnupg2 security update
2.0.10-3.1 - fix use after free when importing certain X509 certificates CVE-2010-2547 618156...
tomcat5 security update
0:5.5.23-0jpp.9 - Resolves: rhbz619424 fixed servlet-api typo. serve4-api to servlet-api - RHSA-2010:9748 0:5.5.23-0jpp.8 - Patches backported from RHEL-5 tomcat5-5.5.23-0jpp.10.el5 - Updated init script for LSB compliance, catalina.log permissions - Resolves: CVE-2009-2693, CVE-2009-2902,...
lftp security update
3.7.11-4.el55.3 - Related: CVE-2010-2251 - document change of xfer:clobber default value in manpage, respect xfer:clobber on with xfer:auto-rename on old behaviour 3.7.11-4.el55.2 - Related: CVE-2010-2251 - describe new option xfer:auto-rename which could restore old behaviour in manpage...
freetype security update
2.2.1-25 - Add freetype-2.2.1-axis-name-overflow.patch Avoid overflow when dealing with names of axes - Resolves: 614012 2.2.1-24 - Modify freetype-2.2.1-CVE-2010-2519.patch additional fix If the type of the POST fragment is 0, the segment is completely ignored - Resolves: 614012 2.2.1-23 - Add...
freetype security update
2.1.4-15.el3 - Add freetype-2.1.4-axis-name-overflow.patch Avoid overflow when dealing with names of axes - Resolves: 614014 2.1.4-14.el3 - Add freetype-2.1.4-CVE-2010-2527.patch Use precision for '%s' where appropriate to avoid buffer overflows - Resolves: 614014 2.1.4-13.el3 - Add...
lvm2-cluster security update
2.02.56-el55.4 - CVE-2010-2526: Fix insecurity when communicating between lvm2 and clvmd. Resolves: 616044...
w3m security update
0.5.1-17 - Resolves:rh604861:Clear execstack requirement also for ia64 architecture 0.5.1-16 - Resolves:rh604861:CVE-2010-2074 w3m: doesn't handle NULL in Common Name properly...
seamonkey security update
1.0.9-61.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-61.el4 - Include fix for mozbz575836...
firefox security update
3.6.7-3.0.1.el4 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-3 - Include fix for 575836...
firefox security update
firefox: 3.6.7-3.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-3 - Rebuild xulrunner: 1.9.2.7-3.0.1.el5 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. 1.9.2.7-3 - Include...
seamonkey security update
1.0.9-60.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-60.el4 - Added fixes from 1.9.1.11 1.0.9-59.el4 - Added fix for mozbz570451...
firefox security update
firefox: 3.6.7-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-2 - Update to 3.6.7 beta2 3.6.7-1 - Update to 3.6.7 3.6.4-9 - Fixed rhbz531159 - default browser check xulrunner: 1.9.2.7-2.0.1.el5 - Added...
thunderbird security update
1.5.0.12-28.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-28 - Added fixes from 1.9.1.11 1.5.0.12-26 - Added patches from 1.9.1.10...
openldap security update
2.3.43-12.1 - fixed segfault issues in modrdn 606375 - added patch handling null char in TLS to compat package 606375, patch backported by Jan Vcelak...
openldap security update
2.2.13-12.3 - fixed modrdn segfault issues 606399 - fixed handling of null character when using TLS 606399, patches for both main and compat library backported by Jan Vcelak...
pcsc-lite security update
1.4.4-4 - Fix second typo in overflow patch from upstream 1.4.4-3 - Fix typo in patch 1.4.4-2 - Fix buffer overflow issues...
libpng security update
2:1.2.10-7.1.el55.3 - Back-port fixes for CVE-2009-2042, CVE-2010-0205, CVE-2010-1205, CVE-2010-2249 Resolves: 609921...
avahi security update
0.6.16-9.el5 - Related: 609318 - Fixes CVE-2010-2244 0.6.16-8.el5 - Related: 609318 - Fixes CVE-2010-2244...