9160 matches found
wireshark security update
1.0.11-1.0.1.el55.5 - Add oracle-ocfs2-network.patch 1.0.11-1.5 - rebuild without smp flags fixes problems with doc generating 1.0.11-1.4 - add erf overflow patch - Resolves 532479 1.0.11-1.3 - bring back pie patch from Jindrich Novy - no GUI freeze - Resolves: 549583...
sudo security update
1.7.2p1-6 - added second patch for CVE-2010-0426 580441 Resolves: 580525...
scsi-target-utils security update
0.0-6.20091205snap.2 - 576359 Fix format string vulnerability CVE-2010-0743...
kdebase security update
6:3.5.4-21.0.1.el55.1 - Update definition of KONQUERORVERSION in specfile 6:3.5.4-21.1 - Resolves: 570622, CVE-2010-0436 kdm privilege escalation flaw...
nss_db security update
2.2-35.4 - import Kees Cook's patch to fix accidental leakage of part of ./DBCONFIG 580542, CVE-2010-0826...
krb5 security and bug fix update
1.6.1-36.el55.3 - add upstream patch to fix a few use-after-free bugs, including one in kadmind CVE-2010-0629, 578185 1.6.1-36.el55.2 - pull changes to libkrb5 to properly handle and chase off-path referrals back from 1.7 574387...
java-1.6.0-openjdk security update
1:1.6.0.0-1.11.b16.0.1.el5 - Add oracle-enterprise.patch 1:1.6.0.0-1.11.b16.el5 - Remove javaws alternative due to conflict with java-1.6.0-sun's alternatives 1:1.6.0-1.10.b16 - Update to openjdk build b16 - Update to icedtea6-1.6 - Added tzdata-java requirement - Added autoconf and automake buil...
openldap security and bug fix update
2.3.43-12 - updated spec file, so the compat-libs linking patch applies correctly 2.3.43-11 - backported patch to handle null character in TLS certificates 560912 2.3.43-10 - updated chase-referral patch to compile cleanly - updated init script 562714 2.3.43-9 - updated ldap.sysconf to include...
automake security update
1.9.6-2.3 - increase delay in self checks - add delays in aclocal7 self check http://osdir.com/ml/sysutils.automake.bugs/2006-09/msg00012.html - preserve timestamps of configure files 1.9.6-2.2 - add fix for CVE-2009-4029...
sendmail security and bug fix update
8.13.8-8 - rpm attributes S,5,T not recorded for statistics file 8.13.8-7 - fix specfile for passing rpm -V test 555277 8.13.8-6.el5 - fix verification of SSL certificate with NUL in name 553618, CVE-2009-4565 - do not accept localhost.localdomain as valid address from smtp 449391 - skip colon...
Oracle Enterprise Linux 5.5 kernel security and bug fix update
2.6.18-194.el5 - net mlx4: pass attributes down to vlan interfaces Doug Ledford 573098 - block cfq-iosched: fix sequential read perf regression Jeff Moyer 571818 2.6.18-193.el5 - fs gfs2: locking fix for potential dos Steven Whitehouse 572390 CVE-2010-0727 - acpi powermeter: avoid oops on driver...
curl security, bug fix and enhancement update
7.15.5-9 - http://curl.haxx.se/docs/adv20100209.html 565408 7.15.5-8 - mention lack of IPv6, FTPS and LDAP support while using a socks proxy 473128 - avoid tight loop if an upload connection is broken 479967 - add options --ftp-account and --ftp-alternative-to-user to program help 517084 - fix...
kvm security, bug fix and enhancement update
kvm-83-164.0.1.el5 - Add kvm-Introduce-oel-machine-type.patch - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-164.el5 - kvm-Fix-Windows-guests-SVVP-tests.patch bz495844 - Resolves: bz495844 KVM SVVP: 'Signed Driver check' failure - on the disabled vCPUs that the VM's BIOS doesn't hid...
pam_krb5 security and bug fix update
2.2.14-15 - update backport for selecting which key to use for validation so that it prefers services with the local host name as the instance, from HEAD more of 450776 2.2.14-14 - backport the 'multipleccaches' option from HEAD, requiring that it be enabled to not immediately remove an old ccach...
brltty security and bug fix update
3.7.2-4 - use rpm macros more consistently - add manual page for brltty.conf - add more documentation - install the default brltty-pm.conf to docdir only - Resolves: 530554 - silence the postinstall scriptlet - Resolves: 529163 3.7.2-3 - escape rpm macros in the rpm change log - remove bogus rpat...
squid security and bug fix update
7:2.6.STABLE21-6 - Resolves: 561828 - CVE-2009-2855 CVE-2010-0308 squid various flaws rhel-5.5 7:2.6.STABLE21-5 - Resolves: 538738 - improved patch 7:2.6.STABLE21-4 - Resolves: 521926 - squid 'stop after stop' is not LSB compliant - Resolves: 496170 - Add arp filter option - Resolves: 516245 -...
gfs-kmod security, bug fix and enhancement update
0.1.34-12 - Fixes a problem where improper locking commands can crash the system. - Resolves: rhbz571298 0.1.34-11 - Fixes 'Resource tempory unavailable' for EWOULDBLOCK message with flocks on gfs file - Resolves: rhbz515717 0.1.34-10 - Fixes 'Resource tempory unavailable' for EWOULDBLOCK message...
firefox security update
firefox: 3.0.19-1.0.1.el55 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.19-1 - Update to 3.0.19 xulrunner: 1.9.0.19-1.0.1.el55...
curl security update
7.12.1-11.1.el48.3 - http://curl.haxx.se/docs/adv20100209.html 565406...
seamonkey security update
1.0.9-54.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding RedHat ones 1.0.9-54.el4 - Added fix for mozbz497056 1.0.9-53.el4 - Added fixes from 1.9.0.19...
openssl096b security update
0.9.6b-22.46.1 - CVE-2009-3245 - add missing checks for bnwexpand failures 570924...
httpd security, bug fix, and enhancement update
2.0.52-41.ent.7.0.1 - Use oracle index page oracleindex.html - Update vstring and distro in specfile 2.0.52-41.ent.7 - add security fix for CVE-2010-0434 572955 - moddav: don't delete the existing resource if a PUT fails 572932 - modssl: add SSLInsecureRenegotiation directive 575805 - Require and...
httpd security and enhancement update
2.2.3-31.0.1.el54.4 - Replace index.html with Oracle's index page oracleindex.html - Update vstring and distro in specfile 2.2.3-31.4 - require and BR a version of OpenSSL with the secure reneg API 567980 2.2.3-31.3 - modssl: add SSLInsecureRenegotiation 567980 - add security fixes for...
nss security update
nspr: 4.8.4-1 - Update to NSPR 4.8.4 nss: 3.12.6-1.0.1.el54 - Update clean.gif in the nss-3.12.6-stripped.tar.bz2 tarball 3.12.6-1 - Update to 3.12.6 3.12.5.99-1.2 - Fix an unsatified tools runtime dependency 3.12.5.99-1.1 - Preserve file attributes and include some test cleanup 3.12.5.99-1 -...
gnutls security update
1.4.1-3.8 - fix safe renegotiation on SSL3 protocol 1.4.1-3.7 - implement safe renegotiation - CVE-2009-3555 533125 - do not allow MD2 in certificate signatures by default - CVE-2009-2409 510197...
openssl097a security update
0.9.7a-9.2 - CVE-2009-3555 - support the secure renegotiation RFC 533125...
openssl security update
0.9.8e-12.6 - fix CVE-2009-3245 - add missing bnwexpand return checks 570924 0.9.8e-12.5 - fix CVE-2010-0433 - do not pass NULL princ to krb5ktgetentry which in the RHEL-5 and newer versions will crash in such case 569774 0.9.8e-12.4 - do not disable SSLv2 in the renegotiation patch - SSLv2 does...
gnutls security update
1.0.20-4.0.1.el48.7 - Bump release to resolve ULN up2date issue 1.0.20-4.7 - fix crash in the gnutls-cli tool needed for testing 1.0.20-4.5 - fix safe renegotiation in SSL3 protocol 1.0.20-4.4 - implement safe renegotiation - CVE-2009-3555 533125...
openssl security update
0.9.7a-43.17.5 - do not disable SSLv2 in the renegotiation patch - SSLv2 does not support renegotiation - allow unsafe renegotiation on clients with SSLOPLEGACYSERVERCONNECT 0.9.7a-43.17.4 - mention the RFC5746 in the renegotiation fix doc 0.9.7a-43.17.3 - CVE-2009-3555 - support the secure...
kernel security and bug fix update
2.6.9-89.0.23.0.1 - XEN fix cpu hotplug crash Joe Jin orabug 7521308 - XEN Bring up vcpus before khelper init Joe Jin orabug 7521308 - XEN flush the tlb cache immediately Dave McCracken, Scott Shi orabug 9138767 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug...
kernel security and bug fix update
2.6.18-164.15.1.0.1.el5 - xen check to see if hypervisor supports memory reservation change Chuck Anderson orabug 7556514 - Add entropy support to igb John Sobecki orabug 7607479 - nfs convert ENETUNREACH to ENOTCONN orabug 7689332 - NET Add xen pv/bonding netconsole support Tina yang orabug...
thunderbird security update
1.5.0.12-25.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-25 - Added patches from 2.0.0.24 1.5.0.12-24 - Update patchset to fix regression as per 1.9.0.13...
tar security update
1.13.25-16.RHEL3 - CVE-2010-0624 - fix heap-based buffer overflow by expanding a specially-crafted archive...
cpio security update
2.5-6 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive 2.5-5.RHEL3 - fix buffer overflow on 64-bit systems 229191...
cpio security update
2.6-23.1 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive - CVE-2007-4476 fix stack crashing in safernamesuffix...
pango security update
1.14.9-8.el5 - Updated synthetic-gdef patch - Resolves: 559169 1.14.9-7.el5 - Add synthetic-gdef patch - Resolves: 559169...
tar security update
2:1.15.1-23.0.1.2 - CVE-2007-4476 - fix stack crashing in safernamesuffix - CVE-2010-0624 - fix heap-based buffer overflow by expanding a specially-crafted archive...
cpio security update
2.5-16.1 - CVE-2010-0624 fix heap-based buffer overflow by expanding a specially-crafted archive...
cups security update
1:1.3.7-11:.6 - Applied patch for CVE-2010-0302 incomplete fix for CVE-2009-3553, bug 557775...
systemtap security update
0.6.2-2.0.1.el48.1 - Detect enterprise-release 0.6.2-2.1 Resolve bug 561886, CVE-2010-0411...
systemtap security update
0.9.7-5.3 - rhbz556564-2: CVE-2009-4273 cont'd aka CVE-2010-0412 - rhbz559719: CVE-2010-0411 - pr11286: stap-client --server operation 0.9.7-5.2 - rhbz556564: CVE-2009-4273...
kvm security and bug fix update
kvm-83-105.0.1.el54.27 - Add kvm-add-oracle-workaround-for-libvirt-bug.patch kvm-83-105.el54.27 - kvm-kernel-KVM-VMX-Check-cpl-before-emulating-debug-register-ac.patch bz563516 - Resolves: bz563516 KVM: Check cpl before emulating debug register access rhel-5.4.z kvm-83-105.el54.26 -...
sudo security update
1.6.9p17-6 - added patches for CVE-2010-0426 and CVE-2010-0427 Resolves: 567689...
pidgin security update
2.6.6-1 - 2.6.6 with security and numerous minor bug fixes CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 - Bug 528796: Get rid of !/usr/bin/env python...
firefox security update
firefox: 3.0.18-1.0.1.el54 - Update firstrun and homepage URLs in specfile - Added patch oracle-firefox-branding.patch - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding RedHat ones 3.0.18-1 - Update to 3.0.18 xulrunner: 1.9.0.18-1.0.1.el54...
seamonkey security update
1.0.9-52.0.1.el48 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html and removed corresponding RedHat ones 1.0.9-52.el4 - Added fixes from 1.9.0.18...
NetworkManager security update
1:0.7.0-9.el54 - Ensure a connection is not used after its CA certificate has been deleted - Resolves: CVE-2009-4144 - Fix possible information disclosure by nm-connection-editor - Resolves: CVE-2009-4145...
mysql security update
4.1.22-2.el4.3 - Add comment suggesting disabling symbolic links in /etc/my.cnf 4.1.22-2.el4.2 - Add fixes for CVE-2008-4098, CVE-2009-4030 two successive attempts to fix DATA/INDEX DIRECTORY vulnerabilities and CVE-2008-4456 mysql command line client XSS flaw Resolves: 512255 4.1.22-2.el4.1 - Ad...
mysql security update
5.0.77-4.2 - Add fixes for CVE-2009-4019, CVE-2009-4028, CVE-2009-4030 Resolves: 556505 - Use non-expired certificates for SSL testing upstream bug 50702 - Emit explicit error message if user tries to build RPM as root - Add comment suggesting disabling symbolic links in /etc/my.cnf...
openoffice.org security update
1.1.5-10.0.7.3 - Resolves: rhbz529748 openoffice.org various flaws - CVE-2009-3301 OpenOffice.org Word sprmTDefTable Memory Corruption - CVE-2009-3302 OpenOffice.org Word sprmTSetBrc Memory Corruption 1.1.5-10.0.7.2 - Resolves: rhbz529748 openoffice.org various flaws - CVE-2009-2950 GIF file...