8986 matches found
openssl security update
0.9.7a-43.17.5 - do not disable SSLv2 in the renegotiation patch - SSLv2 does not support renegotiation - allow unsafe renegotiation on clients with SSLOPLEGACYSERVERCONNECT 0.9.7a-43.17.4 - mention the RFC5746 in the renegotiation fix doc 0.9.7a-43.17.3 - CVE-2009-3555 - support the secure...
openssl097a security update
0.9.7a-9.2 - CVE-2009-3555 - support the secure renegotiation RFC 533125...
gnutls security update
1.0.20-4.0.1.el48.7 - Bump release to resolve ULN up2date issue 1.0.20-4.7 - fix crash in the gnutls-cli tool needed for testing 1.0.20-4.5 - fix safe renegotiation in SSL3 protocol 1.0.20-4.4 - implement safe renegotiation - CVE-2009-3555 533125...
gnutls security update
1.4.1-3.8 - fix safe renegotiation on SSL3 protocol 1.4.1-3.7 - implement safe renegotiation - CVE-2009-3555 533125 - do not allow MD2 in certificate signatures by default - CVE-2009-2409 510197...
nss security update
nspr: 4.8.4-1 - Update to NSPR 4.8.4 nss: 3.12.6-1.0.1.el54 - Update clean.gif in the nss-3.12.6-stripped.tar.bz2 tarball 3.12.6-1 - Update to 3.12.6 3.12.5.99-1.2 - Fix an unsatified tools runtime dependency 3.12.5.99-1.1 - Preserve file attributes and include some test cleanup 3.12.5.99-1 -...
kernel security and bug fix update
2.6.9-89.0.23.0.1 - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
kernel security and bug fix update
2.6.18-164.15.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
thunderbird security update
1.5.0.12-25.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-25 - Added patches from 2.0.0.24 1.5.0.12-24 - Update patchset to fix regression as per 1.9.0.13...
cpio security update
2.5-16.1 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive...
pango security update
1.14.9-8.el5 - Updated synthetic-gdef patch - Resolves: 559169 1.14.9-7.el5 - Add synthetic-gdef patch - Resolves: 559169...
tar security update
1.13.25-16.RHEL3 - CVE-2010-0624 - fix heap-based buffer overflow by expanding a specially-crafted archive...
tar security update
2:1.15.1-23.0.1.2 - CVE-2007-4476 - fix stack crashing in safernamesuffix - CVE-2010-0624 - fix heap-based buffer overflow by expanding a specially-crafted archive...
cpio security update
2.5-6 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive 2.5-5.RHEL3 - fix buffer overflow on 64-bit systems 229191...
cpio security update
2.6-23.1 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive - CVE-2007-4476 fix stack crashing in safernamesuffix...
cups security update
1:1.3.7-11:.6 - Applied patch for CVE-2010-0302 incomplete fix for CVE-2009-3553, bug 557775...
kvm security and bug fix update
kvm-83-105.0.1.el54.27 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.27 - kvm-kernel-KVM-VMX-Check-cpl-before-emulating-debug-register-ac.patch bz563516 - Resolves: bz563516 KVM: Check cpl before emulating debug register access rhel-5.4.z kvm-83-105.el54.26 -...
systemtap security update
0.9.7-5.3 - rhbz556564-2: CVE-2009-4273 cont'd aka CVE-2010-0412 - rhbz559719: CVE-2010-0411 - pr11286: stap-client --server operation 0.9.7-5.2 - rhbz556564: CVE-2009-4273...
systemtap security update
0.6.2-2.0.1.el48.1 - Detect enterprise-release 0.6.2-2.1 Resolve bug 561886, CVE-2010-0411...
sudo security update
1.6.9p17-6 - added patches for CVE-2010-0426 and CVE-2010-0427 Resolves: 567689...
pidgin security update
2.6.6-1 - 2.6.6 with security and numerous minor bug fixes CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 - Bug 528796: Get rid of !/usr/bin/env python...
firefox security update
firefox: 3.0.18-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.18-1 - Update to 3.0.18 xulrunner: 1.9.0.18-1.0.1.el54...
seamonkey security update
1.0.9-52.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding RedHat ones 1.0.9-52.el4 - Added fixes from 1.9.0.18...
mysql security update
4.1.22-2.el4.3 - Add comment suggesting disabling symbolic links in /etc/my.cnf 4.1.22-2.el4.2 - Add fixes for CVE-2008-4098, CVE-2009-4030 two successive attempts to fix DATA/INDEX DIRECTORY vulnerabilities and CVE-2008-4456 mysql command line client XSS flaw Resolves: 512255 4.1.22-2.el4.1 - Ad...
NetworkManager security update
1:0.7.0-9.el54 - Ensure a connection is not used after its CA certificate has been deleted - Resolves: CVE-2009-4144 - Fix possible information disclosure by nm-connection-editor - Resolves: CVE-2009-4145...
mysql security update
5.0.77-4.2 - Add fixes for CVE-2009-4019, CVE-2009-4028, CVE-2009-4030 Resolves: 556505 - Use non-expired certificates for SSL testing upstream bug 50702 - Emit explicit error message if user tries to build RPM as root - Add comment suggesting disabling symbolic links in /etc/my.cnf...
openoffice.org security update
1.1.5-10.0.7.3 - Resolves: rhbz529748 openoffice.org various flaws - CVE-2009-3301 OpenOffice.org Word sprmTDefTable Memory Corruption - CVE-2009-3302 OpenOffice.org Word sprmTSetBrc Memory Corruption 1.1.5-10.0.7.2 - Resolves: rhbz529748 openoffice.org various flaws - CVE-2009-2950 GIF file...
kvm security and bug fix update
kvm-83-105.0.1.el54.22 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.22 - kvm-CVE-2010-0297-usb-linux.c-fix-buffer-overflow.patch bz560769 - Resolves: bz560769 CVE-2010-0297 kvm-userspace-rhel5: usb-linux.c: fix buffer overflow rhel-5.4.z kvm-83-105.el54.21 -...
HelixPlayer security update
1.0.6-1.0.1.el48.1 - Identify enterprise-release 1.0.6-1.1 - Multiple security fixes: http://service.real.com/realplayer/security/01192010player/en/...
kernel security and bug fix update
2.6.9-89.0.20.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
kernel security and bug fix update
2.6.18-164.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
openssl security update
0.9.8e-12.1 - fix CVE-2009-2409 - drop MD2 algorithm from EVP tables 510197 - fix CVE-2009-4355 - do not leak memory when CRYPTOcleanupallexdata is called prematurely by application 546707...
bind security update
30:9.3.6-4.P1.2 - NSEC validation code could cause wrong NXDOMAIN responses 554851, CVE-2010-0097 - improve fix for CVE-2009-4022 538744 - C,DNAMEs could be returned to clients without proper DNSSEC validation - don't validate + cache out-of-bailiwick data returned with a secure answer. Refetch i...
gzip security update
1.3.5-11.0.1.el54.1 - Updated description in specfile to be product neutral 1.3.5-11:.1 - Added fix for CVE-2010-0001: 64 bit Integer underflow by decompressing LZW format files Resolves: rhbz555088...
pidgin security update
2.6.5-1.el4.1 - 2.6.5 - CVE-2010-0013 - Other bug fixes - build with old gcc 2.6.4-4 - temporarily disable evolution integration in F13 until it is fixed 2.6.4-2 - disable SILC in EL6 builds 2.6.4-1 - 2.6.4...
php security update
5.1.6-24.5 - add security fix for CVE-2009-4142 543469 5.1.6-24.4 - build fix pdomysql on biarch systems 543469 5.1.6-24.3 - add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292, CVE-2009-3546 CVE-2009-4017 541597 - add build fix for mysqli on some biarch systems 543469...
gcc and gcc4 security update
4.1.2-46.el54.2 - fix libjava to avoid opening .la/dlopening .so files from current working directory or subdirectories thereof 545672, CVE-2009-3736...
krb5 security update
1.6.1-36.el54.1 - add candidate patch to correct KDC integer overflows which could be triggered by malformed RC4 and AES ciphertexts CVE-2009-4212, 546347...
kernel security update
2.6.18-164.10.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
kernel security update
2.6.9-89.0.19.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
dbus security update
1.1.2-12.el54.1 - CVE-2009-1189 dbus: invalid fix for CVE-2008-3834...
PyXML security update
0.8.4-4.2 - Use system expat library Resolves: 531852 0.8.4-4.1 - Fix buffer over read Resolves: 531852...
gd security update
2.0.33-9.4.el54.2 - rpmdiff fixes - Resolves: 541632 2.0.33-9.4.el54.1 - security fixes - CVE-2009-3546 gd: insufficient input validation in gdGetColors...
kdegraphics security update
3.3.1-17.1 - Resolves: 543494, CVE-2009-4035, buffer overflow in FoFiType1::parse...
seamonkey security update
1.0.9-51.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding RedHat ones 1.0.9-51.el4 - Added fixes from 1.9.0.16...
kernel security and bug fix update
2.6.9-89.0.18.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - backout patch sysrq-b that queues upto keventd thread Guru Anbalagane orabug 6125546 - netrx/netpoll race...
xpdf security update
3.00-23.1 - Resolves: 543489, CVE-2009-4035, buffer overflow in FoFiType1::parse...
gpdf security update
2.8.2-7.7.2.el48.6 - Add patch for CVE-2009-4035 - Resolves: 543491...
firefox security update
firefox: 3.0.16-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones 3.0.16-1 - Update to 3.0.16 xulrunner: 1.9.0.16-2.0.1.el5...
kernel security and bug fix update
2.6.18-164.9.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug 69930...
kvm security and bug fix update
kvm-83-105.0.1.el54.13 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.13 - kvm-kernel-KVM-x86-emulator-limit-instructions-to-15-bytes.patch bz541164 - Resolves: bz541164 CVE-2009-4031 kernel: KVM: x86 emulator: limit instructions to 15 bytes rhel-5.4.z kvm-83-105.el54.12 -...