9160 matches found
wireshark security update
1.0.15-1.0.1.el55.1 - Add oracle-ocfs2-network.patch 1.0.15-1 - upgrade to 1.0.15 - http://www.wireshark.org/docs/relnotes/wireshark-1.0.15.html - fixes CVE-2010-2287 CVE-2010-2284 - Related: 612239 1.0.14-1.2 - fix corner case in CVE-2010-2284 - Related: 612239 1.0.14-1 - upgrade to 1.0.14 -...
dbus-glib security update
NetworkManager: 1:0.7.0-10.el55.1 - Rebuild to fix D-Bus property access for dbus-glib CVE-2010-1172 dbus-glib: 0.73-10 - Add patch to fix CVE-2010-1172 Drop broken-xml.patch which this one now incorporates Resolves: 588397 and 585395...
libvirt security and bug fix update
0.6.3-33.0.1.el55.3 - Replaced docs/et.png in tarball 0.6.3-33.el55.3 - Explicitly set qcow2 backing store format CVE-2010-2239 - Remap privileged source ports from guests behind NAT CVE-2010-2242 - Eliminate memory leak in xenUnifiedDomainInfoListFree rhbz 619711 0.6.3-33.el55.2 - Fix discrepanc...
kernel security and bug fix update
2.6.18-194.11.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug...
freetype security update
2.1.1-26 - Add freetype-2.2.1-CVE-2010-1797.patch - Resolves: CVE-2010-1797...
kernel security and bug fix update
2.6.9-89.0.28.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
gnupg2 security update
2.0.10-3.1 - fix use after free when importing certain X509 certificates CVE-2010-2547 618156...
tomcat5 security update
0:5.5.23-0jpp.9 - Resolves: rhbz619424 fixed servlet-api typo. serve4-api to servlet-api - RHSA-2010:9748 0:5.5.23-0jpp.8 - Patches backported from RHEL-5 tomcat5-5.5.23-0jpp.10.el5 - Updated init script for LSB compliance, catalina.log permissions - Resolves: CVE-2009-2693, CVE-2009-2902,...
lftp security update
3.7.11-4.el55.3 - Related: CVE-2010-2251 - document change of xfer:clobber default value in manpage, respect xfer:clobber on with xfer:auto-rename on old behaviour 3.7.11-4.el55.2 - Related: CVE-2010-2251 - describe new option xfer:auto-rename which could restore old behaviour in manpage...
freetype security update
2.1.4-15.el3 - Add freetype-2.1.4-axis-name-overflow.patch Avoid overflow when dealing with names of axes - Resolves: 614014 2.1.4-14.el3 - Add freetype-2.1.4-CVE-2010-2527.patch Use precision for '%s' where appropriate to avoid buffer overflows - Resolves: 614014 2.1.4-13.el3 - Add...
freetype security update
2.2.1-25 - Add freetype-2.2.1-axis-name-overflow.patch Avoid overflow when dealing with names of axes - Resolves: 614012 2.2.1-24 - Modify freetype-2.2.1-CVE-2010-2519.patch additional fix If the type of the POST fragment is 0, the segment is completely ignored - Resolves: 614012 2.2.1-23 - Add...
lvm2-cluster security update
2.02.56-el55.4 - CVE-2010-2526: Fix insecurity when communicating between lvm2 and clvmd. Resolves: 616044...
w3m security update
0.5.1-17 - Resolves:rh604861:Clear execstack requirement also for ia64 architecture 0.5.1-16 - Resolves:rh604861:CVE-2010-2074 w3m: doesn't handle NULL in Common Name properly...
firefox security update
3.6.7-3.0.1.el4 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-3 - Include fix for 575836...
firefox security update
firefox: 3.6.7-3.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-3 - Rebuild xulrunner: 1.9.2.7-3.0.1.el5 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one. 1.9.2.7-3 - Include...
seamonkey security update
1.0.9-61.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-61.el4 - Include fix for mozbz575836...
thunderbird security update
1.5.0.12-28.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-28 - Added fixes from 1.9.1.11 1.5.0.12-26 - Added patches from 1.9.1.10...
firefox security update
firefox: 3.6.7-2.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.7-2 - Update to 3.6.7 beta2 3.6.7-1 - Update to 3.6.7 3.6.4-9 - Fixed rhbz531159 - default browser check xulrunner: 1.9.2.7-2.0.1.el5 - Added...
seamonkey security update
1.0.9-60.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-60.el4 - Added fixes from 1.9.1.11 1.0.9-59.el4 - Added fix for mozbz570451...
openldap security update
2.2.13-12.3 - fixed modrdn segfault issues 606399 - fixed handling of null character when using TLS 606399, patches for both main and compat library backported by Jan Vcelak...
openldap security update
2.3.43-12.1 - fixed segfault issues in modrdn 606375 - added patch handling null char in TLS to compat package 606375, patch backported by Jan Vcelak...
pcsc-lite security update
1.4.4-4 - Fix second typo in overflow patch from upstream 1.4.4-3 - Fix typo in patch 1.4.4-2 - Fix buffer overflow issues...
libpng security update
2:1.2.10-7.1.el55.3 - Back-port fixes for CVE-2009-2042, CVE-2010-0205, CVE-2010-1205, CVE-2010-2249 Resolves: 609921...
avahi security update
0.6.16-9.el5 - Related: 609318 - Fixes CVE-2010-2244 0.6.16-8.el5 - Related: 609318 - Fixes CVE-2010-2244...
libtiff security update
3.5.7-34.el3 - Add fixes for multiple SIGSEGV problems, including CVE-2010-1411 Resolves: 602549, 460661 - Fix breakage on ppc64, per QE report Resolves: 511392...
libtiff security update
3.8.2-7.el5.5 - Add fixes for multiple SIGSEGV problems, including CVE-2010-1411 Resolves: 602552...
scsi-target-utils security update
0.0-6.20091205snap.3 - Fix buffer overflow in isns scn handling CVE-2010-2221...
kernel security and bug fix update
2.6.18-194.8.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug 69930...
perl-Archive-Tar security update
1.39.1-1.el5.1 - cleaning spec and nvr - Related: rhbz595733 1.40-1.el5.1 - update to real version 1.3901, but for rpm updates, it will be 1.40 - Resolves: rhbz595733 1.40-1 - update to 1.40 - Resolves: rhbz595733...
firefox security, bug fix, and enhancement update
3.6.4-8.0.1.el4 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.4-8.el4 - Update to 3.6.4 build 7 - Disable checking for updates since they can't be applied 3.6.4-7.el4 - Update to 3.6.4 build 6 3.6.4-6.el4 - Update to...
firefox security, bug fix, and enhancement update
devhelp: 0.12-21 - Rebuild against xulrunner esc: 1.1.0-12 - Rebuild for xulrunner update firefox: 3.6.4-8.0.1.el5 - Add firefox-oracle-default-prefs.js and firefox-oracle-default-bookmarks.html and remove the corresponding Red Hat ones 3.6.4-8 - Fixing NVR 3.6.4-7 - Update to 3.6.4 build7 -...
seamonkey security update
1.0.9-58.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and emoved corresponding RedHat ones 1.0.9-58.el4 - Added fix for mozbz555109 1.0.9-57.el4 - Added fixes from 1.9.1.10 1.0.9-55.el4 - Added fix for mozbz537356...
cups security update
1:1.3.7-18:.4 - Don't set domain= for cookies. 1:1.3.7-18:.3 - Save classes.conf when a class member printer is deleted bug 594621, STR 3505. 1:1.3.7-18:.2 - Applied patch for CVE-2010-1748 web interface memory disclosure, STR 3577, bug 591983. - Applied patch for CVE-2010-0542 texttops unchecked...
sudo security update
1.7.2p1-7 - added patch that fixes insufficient environment sanitization issue 598154 Resolves: 598381...
kernel security and bug fix update
2.6.9-89.0.26.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
samba and samba3x security update
samba: 3.0.33-3.29.el5 - Security Release, fixes CVE-2010-2063 - resolves: 602320 samba3x: 3.3.8-0.52 - Security Release, fixes CVE-2010-2063 - resolves: 602322...
perl security update
3:5.8.5-52.el4 - build system contains new rpm, which can't create list of header files anymore failure of rpm -ql. Arch specific files contain list of all header files for RHEL-4 or mentioned packages. - Related: rhbz591160 3:5.8.5-50.el4 - CVE-2010-1168 perl Safe: Intended restriction bypass vi...
perl security update
4:5.8.8-32.el5.1 - third version of patch fix change of behaviour of rmtree for common user - Resolves: rhbz597203 4:5.8.8-32.el5 - rhbz595416 change documentation of File::Path - Related: rhbz591167 4:5.8.8-31.el5 - remove previous fix - Related: rhbz591167 4:5.8.8-30.el5 - change config to file...
mysql security update
5.0.77-4.3 - Add fixes for CVE-2010-1626, CVE-2010-1848, CVE-2010-1850...
postgresql84 security update
8.4.4-1.el55.1 - Update to PostgreSQL 8.4.4, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-4.html including fixes for CVE-2010-1169 and CVE-2010-1170 Resolves: 586060...
postgresql security update
7.3.21-3 - Fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442 via back-ports of upstream patches for Postgres 7.4 Resolves: 589541...
postgresql security update
8.1.21-1.el55.1 - Update to PostgreSQL 8.1.21 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/8.1/static/release.html Resolves: 586058...
postgresql security update
7.4.29-1.el48.1 - Update to PostgreSQL 7.4.29 to fix CVE-2010-1169, CVE-2010-1170, CVE-2009-4136, CVE-2010-0733, CVE-2010-0442, and assorted other bugs described at http://www.postgresql.org/docs/7.4/static/release.html Resolves: 586056 7.4.26-1.el48.1 - Update to PostgreSQL 7.4.26 to fix...
krb5 security update
1.6.1-36.el55.4 - add candidate patch to correct KDC null pointer dereference which could be triggered by malformed client requests CVE-2010-1321, 583703 1.6.1-36.el55.3 - add upstream patch to fix a few use-after-free bugs, including one in kadmind CVE-2010-0629, 578185...
tetex security update
1.0.7-67.19 - apply patch for CVE-2007-5935 in proper location 1.0.7-67.18 - add overflow check for CVE-2009-0791 - unify pacthes for 2010-0739 and CVE-2010-1440 1.0.7-67.17 - fix version typos in the last changelog entries 1.0.7-67.16 - include limits.h for INTMAX 1.0.7-67.15 - fix CVE-2009-0791...
kernel security and bug fix update
2.6.18-194.3.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina Yang orabug 69930...
tetex security update
2.0.2-22.EL4.16 - fix last changelog entry 2.0.2-22.EL4.15 - unify patches for CVE-2010-0739 and CVE-2010-1440 2.0.2-22.EL4.14 - add missing check in the first hunk in Stream.cc for CVE-2009-0791 2.0.2-22.EL4.13 - add another hunk to CVE-2010-0827 patch to fix tfmload.c as well...
tetex security update
3.0-33.8.el5.5 - unify patches for CVE-2010-0739 and CVE-2010-1440 3.0-33.8.el5.4 - fix CVE-2010-1440 586819 3.0-33.8.el5.3 - initialize data in arithmetic coder elsewhere CVE-2009-0146 3.0-33.8.el5.2 - initialize dataLen to properly fix CVE-2009-0146 3.0-33.8.el5.1 - fix CVE-2010-0739...
kernel security, bug fix, and enhancement update
2.6.9-89.0.25.0.1.EL - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
xorg-x11-server security update
1.1.1-48.76.0.1.el55.1 - Added oracle-enterprise-detect.patch - Replaced 'Red Hat' in spec file 1.1.1-48.76.1 - xserver-1.1.1-mod-macro-parens.patch: Fix insufficient parentheses in Render and arc computation code. 495733...