9172 matches found
squid security and bug fix update
3.1.10-1 - Resolves: 639365 - Rebase squid to version 3.1.10 - Resolves: 666533 - small memleak in squid-3.1.4...
sudo security and bug fix update
1.7.4p5-5 - patch: log failed user role changes Resolves: rhbz665131 1.7.4p5-4 - added includedir /etc/sudoers.d to sudoers Resolves: rhbz615087 1.7.4p5-3 - added !visiblepw option to sudoers Resolves: rhbz688640 1.7.4p5-2 - added patch for rhbz665131 Resolves: rhbz665131 1.7.4p5-1 - rebase to...
qemu-kvm security, bug fix, and enhancement update
qemu-kvm-0.12.1.2-2.160.el6 - kvm-virtio-blk-fail-unaligned-requests.patch bz698910 - kvm-Ignore-pci-unplug-requests-for-unpluggable-devices.patch bz699789 - Resolves: bz698910 CVE-2011-1750 virtio-blk: heap buffer overflow caused by unaligned requests rhel-6.1 - Resolves: bz699789 CVE-2011-1751...
openssl security, bug fix, and enhancement update
1.0.0-10 - fix OCSP stapling vulnerability - CVE-2011-0014 676063 - correct the README.FIPS document 1.0.0-8 - add -x931 parameter to openssl genrsa command to use the ANSI X9.31 key generation method - use FIPS-186-3 method for DSA parameter generation - add OPENSSLFIPSNONAPPROVEDMD5ALLOW...
eclipse security, bug fix, and enhancement update
eclipse: 1:3.6.1-6.13 - Drop patch to remove ant-trax needed by test runs. 1:3.6.1-6.12 - Add two upstream patches to allow for running SDK JUnit tests. 1:3.6.1-6.11 - Bring in line with Fedora. - Remove some stuff that is now done in eclipse-build. - Fix sources URL. - Add PDE dependency on zip...
Oracle Linux 6.1 kernel security, bug fix and enhancement update
2.6.32-131.0.15.el6 - build disable Werr for external modules Aristeu Rozanski 703504 2.6.32-131.0.14.el6 - scsi hpsa: fix reading a write only register causes a hang Rob Evers 703262 - scsi mpt2sas: remove the use of writeq, since writeq is not atomic Tomas Henzl 701947 2.6.32-131.0.13.el6 - scs...
sssd security, bug fix, and enhancement update
1.5.1-34 - Resolves: rhbz701700 - sssd client libraries use select but should use - poll instead 1.5.1-33 - Related: rhbz693818 - Automatic TGT renewal overwrites cached password - Fix segfault in TGT renewal 1.5.1-32 - Related: rhbz693818 - Automatic TGT renewal overwrites cached password - Fix...
dovecot security and enhancement update
2.0.9-2 - fix issues and assert crashes found in 2.0.9 lmtp,dotlock,zlib 2.0.9-1 - dovecot updated to 2.0.9 - fixed a high system CPU usage / high context switch count performance problem - lda: Fixed a crash when trying to send 'out of quota' reply 2.0.8-1 - dovecot updated to 2.0.8 fixes 654226...
pidgin security and bug fix update
2.7.9-3.el6 - Add patch for RH bug 684685 zero-out crypto keys before freeing. 2.7.9-2.el6 - Add patch for CVE-2011-1091 RH bug 683031. 2.7.9-1.el6 - Update to 2.7.9 RH bug 616917. - Remove patches now included upstream: pidgin-2.6.6-clientLogin-proxy-fix.patch...
avahi security and bug fix update
0.6.25-11 - Fix for CVE-2011-1002 - Resolves: 684886 - Actually apply the patch 0.6.25-10 - Fix for CVE-2011-1002 - Resolves: 684886 0.6.25-9 - Don't stomp on rpm's default CFLAGS when building...
python security, bug fix, and enhancement update
python: 2.6.6-20 Resolves: CVE-2010-3493 2.6.6-19 Resolves: CVE-2011-1015 2.6.6-18 Resolves: CVE-2011-1521 2.6.6-17 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-16 - recompile against systemtap 1.4 Related: rhbz569695 2.6.6-15 - fix race condition that sometimes breaks the build wi...
perl security and bug fix update
5.10.1-119 - 692862 - lc launders tainted flag, CVE-2011-1487 - make SOURCE1 executable, because it missed +x in brew - Resolves: rhbz692862 5.10.1-118 - Correct perl-5.10.1-rt77352.patch - Related: rhbz640720 5.10.1-117 - 671352 CGI-3.51 security update - Resolves: rhbz671352 5.10.1-116 - requir...
tomcat6 security and bug fix update
6.0.24-33 - resolves: rhbz 695284 - multiple instances logging fiasco 6.0.24-32 - Resolves: rhbz 698624 - inet4address can't be cast to String 6.0.24-31 - Resolves: rhbz 656403 - cve-2010-4172 jsp syntax error 6.0.24-30 - Resolves: rhbz697504 initscript logging location 6.0.24-29 - Resolves:...
Unbreakable Enterprise kernel security fix update
A 2.6.32-100.28.17.el6 - net Extend prot-slab size when add sock extend fields. 2.6.32-100.28.16.el6 - kernel: Fix unlimited socket backlog DoS CVE-2010-4251 - RDS: Fix congestion issues for loopback - rds: prevent BUGON triggering on congestion map updates CVE-2011-1023 - epoll: prevent creating...
rdesktop security update
1.6.0-8.1 - Prevent remote file access 676252...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.15.el6 - sctp: fix to calc the INIT/INIT-ACK chunk length correctly is set CVE-2011-1573 - dccp: fix oops on Reset after close CVE-2011-1093 - bridge: netfilter: fix information leak CVE-2011-1080 - Bluetooth: bnep: fix buffer overflow CVE-2011-1079 - net: don't allow CAPNETADMIN to...
apr security update
1.3.9-3.1 - add fix for CVE-2011-0419 703520...
kernel security, bug fix, and enhancement update
2.6.32-71.29.1.el6 - mm Revert 'mm pdpte registers are not flushed when PGD entry is changed in x86 PAE mode' Larry Woodman 695256 691310 2.6.32-71.28.1.el6 - net bonding: fix jiffy comparison issues Andy Gospodarek 698109 696337 - drm radeon/kms: check AA resolve registers on r300 + regression f...
xen security update
3.0.3-120.el56.2 - Fix logic and integer overflow in xctrybzip2decode rhbz 696938 - Fix logic and integer overflow in xctrylzmadecode rhbz 696938 - Fix integer and buffer overflows in xcdomprobebzimagekernel rhbz 696938...
python security update
2.3.4-14.10 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat 1.95.7 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in th...
python security update
2.4.3-44 - add patch adapted from upstream patch 208 to add support for building against system expat; add --with-system-expat to configure invocation; remove embedded copy of expat-1.95.8 from the source tree during prep - ensure pyexpat.so gets built by explicitly listing all C modules in the...
xmlsec1 security and bug fix update
1.2.9-8.1.2 - disable xslt i/o support in library, tools and examples, CVE-2011-1425 - Resolves: rhbz694124 - limit the paths used for searching the security library loaded dynamically...
libvirt security and bug fix update
0.8.1-27.0.1.el60.6 - Replace docs/et.png in tarball with blank image 0.8.1-27.el60.6 - Properly initialize supplementary groups for qemu process rhbz668692 - Make error reporting in libvirtd thread safe CVE-2011-1486...
libvirt security update
0.8.2-15.0.1.el56.4 - Replaced docs/et.png in tarball 0.8.2-15.el56.4 - Make error reporting in libvirtd thread safe CVE-2011-1486...
gstreamer-plugins security update
0.8.5-1.0.1.EL.3 - Update release to address ULN up2date 0.8.5-1.EL.3 - Add patches for CVE-2006-4192 and CVE-2011-1574 Related: rhbz 696507...
seamonkey security update
1.0.9-70.0.1.el48 - Add mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and remove corresponding RedHat ones 1.0.9-70.el4 - Added fixes for mozbz645565 and mozbz646460 1.0.9-69.el4 - Added fixes from 1.9.1.19...
nss security update
3.12.8-3.0.1.el60 - Use blank image instead of clean.gif in nss-3.12.8-stripped.tar.bz2 - Update expired PayPalEE.cert to fix build failure 3.12.8-3 - Update builtin certs to NSS3.12.9WITHCKBI182RTM via a patch 3.12.8-2 - Update to builtin certs from NSS3.12.9WITHCKBI182RTM...
firefox security update
firefox: 3.6.17-1.0.1.el60 - Added firefox-oracle-default-prefs.js and removed firefox-redhat-default-prefs.js 3.6.17-1 - Update to 3.6.17 xulrunner: 1.9.2.17-4.0.1.el60 - Replace xulrunner-redhat-default-prefs.js with xulrunner-oracle-default-prefs.js 1.9.2.17-4 - Rebuild 1.9.2.17-3 - Update to...
thunderbird security update
3.1.10-1.0.1.el60 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replace clean.gif in tarball 3.1.10-1 - Update to 3.1.10...
thunderbird security update
1.5.0.12-38.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-38 - Added fixes for mozbz645565 and mozbz646460 1.5.0.12-37 - Added fixes from 1.9.1.19...
kdenetwork security update
7:4.3.4-11.1 - CVE-2010-1000, improper sanitization of metalink attribute for downloading files...
kdelibs security update
6:4.3.4-11.2 - rebase the fix for CVE-2011-1094 6:4.3.4-11.1 - fixes CVE-2011-1094, CVE-2011-1168...
polkit security update
0.96-2.el60.1 - Include fixes for CVE-2011-1485 - Resolves: 692941...
libtiff security update
3.9.4-1.el60.3 - Add fix for CVE-2009-5022 Resolves: 696143...
Oracle Linux 6 Unbreakable Enterprise kernel security fix update
2.6.32-100.28.11.el6 - fs/partitions: Validate mapcount in Mac partition tables CVE-2011-1010 - nfs4: Ensure that ACL pages sent over NFS were not allocated from the slab v3 CVE-2011-1090 2.6.32-100.28.10.el6 - Use cciss for some Smart Array controller for OL5 orabug 11899706 - CVEs from...
krb5 security update
1.8.2-3.7 - kadmind: add upstream patch to fix free on an invalid pointer 696341, MITKRB5-SA-2011-004, CVE-2011-0285...
kernel security and bug fix update
2.6.18-238.9.1.0.1.el5 - scsi fix scsi hotplug and rescan race orabug 10260172 - fix filpclose race Joe Jin orabug 10335998 - fix missing aiocomplete in endio Joel Becker orabug 10365195 - make xenkbd.abspointer=1 by default orabug 67188919 - xen check to see if hypervisor supports memory...
xorg-x11-server-utils security update
7.4-15.el60.1 - cve-2011-0465: Sanitize cpp macro expansion. CVE 2011-0465...
avahi security update
0.6.16-10 - Fix for CVE-2011-1002 - Resolves: 684884...
xorg-x11 security update
6.8.2-1.0.1.EL.67 - Add Enterprise Linux detection Add XFree86-4.3.0-oracle-bug-report-address-update.patch 6.8.2-1.EL.67 - cve-2011-0465.patch: Sanitize cpp macro expansion. CVE 2011-0465...
dhcp security update
12:4.1.1-12.P1.4 - Better fix for CVE-2011-0997: making domain-name check more lenient 690578 12:4.1.1-12.P1.3 - dhclient: insufficient sanitization of certain DHCP response values CVE-2011-0997, 690578...
kernel security and bug fix update
2.6.32-71.24.1.el6 - fs Revert 'fs inotify: stop kernel memory leak on file creation failure' Eric Paris 656831 656832 CVE-2010-4250 2.6.32-71.23.1.el6 - x86 Revert 'x86 mtrr: Assume SYSCFGTom2ForceMemTypeWB exists on all future AMD CPUs' Frank Arnold 683813 652208 2.6.32-71.22.1.el6 - rebuild...
spice-xpi security update
2.4-1.el60.2 - Fix security vulnerability CVE-2011-0012 rhbz639869 Resolves: rhbz639870 2.4-1.el60.1 - Fix security vulnerability CVE-2011-1179 rhbz689931 Resolves: rhbz689932...
postfix security update
2:2.3.3-2.2 - fix CVE-2011-0411 683387 - fix CVE-2008-2937 683387 - defuzzification of patches...
postfix security update
2:2.6.6-2.1 - fix CVE-2011-0411 682978...
policycoreutils security update
policycoreutils: 2.0.83-19.8 - Fix seunshare to work with /tmp content when SELinux context is not provided Resolves: 679689 2.0.83-19.7 - put back correct chcon - Latest fixes for seunshare 2.0.83-19.6 - Fix rsync command to work if the directory is old. - Fix all tests Resolves: 679689...
glibc security update
2.12-1.7.el60.5 - Avoid too much stack use in fnmatch 681054, CVE-2011-1071 - Properly quote output of locale 625893, CVE-2011-1095 - Don't leave empty element in rpath when skipping the first element, ignore rpath elements containing non-isolated use of when privileged 667974, CVE-2011-0536...
glibc security update
2.5-58.el56.2 - Avoid too much stack use in fnmatch 681054, CVE-2011-1071 - Properly quote output of locale 625893, CVE-2011-1095 - Don't leave empty element in rpath when skipping the first element, ignore rpath elements containing non-isolated use of when privileged 667974, CVE-2011-0536 - Fix...
quagga security update
0.99.15-5el60.2 - Resolves: 684750 - CVE-2010-1674 CVE-2010-1675 quagga various flaws...
logrotate security update
3.7.8-12.1 - fix 688518 - fixed CVE-2011-1154, CVE-2011-1155 and CVE-2011-1098...