8984 matches found
php security update
5.1.6-23.2.el5 - ext/gd: fix overflow2 usage for CVE-2007-3996, CVE-2008-3658 5.1.6-23.1.el5 - add security fixes for CVE-2008-3658, CVE-2008-3660, CVE-2008-5498, CVE-2008-5557, CVE-2008-5814, and mbstring funcoverload issue 487369...
gstreamer-plugins-base security update
0.10.20-3.0.1 - CVE-2009-0586: integer overflow in gstvorbistagaddcoverart 488210...
php security update
4.3.9-3.22.15 - fix merge of CVE-2008-3658 patch 4.3.9-3.22.14 - add security fixes for CVE-2008-3658, CVE-2008-3660, CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 487360 - split out gd overflow2 and make global with sane symbol name...
kernel security and bug fix update
2.6.18-128.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
openswan security update
2.6.14-1.2 - security update CVE-2009-0790, CVE-2008-4190 Resolves: CVE-2009-0790, CVE-2008-4190...
firefox security update
xulrunner: 1.9.0.7-3.0.1.el5 - Added xulrunner-oracle-default-prefs.js and removed the corresponding RedHat one 1.9.0.7-3 - Updated per 1.9.0.8 firefox: 3.0.7-3.0.1.el4 - Update firstrun and homepage URLS - Add oracle-firefox-branding.patch - Add firefox-oracle-default-prefs.js and...
seamonkey security update
1.0.9-40.0.1.el4 - Added mozilla-oracle-default-prefs.js, and mozilla-oracle-default-bookmarks.html and removed corresponding Redhat ones 1.0.9-40.el4 - Added fixes from 1.9.0.8...
net-snmp security update
5.0.9-2.30E.27 - rebuild for new rpm 5.0.9-2.30E.26 - fix tcpwrappers checks 485278...
systemtap security update
0.7.2-3.0.1.el53 - Add oracle-enterprise.patch 0.7.2-3 - Resolves: bug 489979, CVE-2009-0784...
NetworkManager security update
0.3.1-5 - CVE-2009-0365: getNetworkKey disclosure - Resolves: 487776...
NetworkManager security update
0.7.0-4 - CVE-2009-0365: GetSecrets disclosure - CVE-2009-0578: local users can modify the connection settings - Resolves: 487778...
thunderbird security update
1.5.0.12-19.0.1.el4 - Replaced thunderbird-redhat-default-prefs.js with thunderbird-oracle-default-prefs.js - Replaced clean.gif in tarball 1.5.0.12-19 - Update patchset to fix regression as per 1.8.1.21 - Added missing required packages...
glib2 security update
2.12.3-4 - Build with -fno-strict-aliasing 2.12.3-3 - Fix CVE-2008-4316, overflows in the base64 handling functions - Fixes 487497...
curl security update
7.15.5-2.1.el53.4 - another correction of the patch for CVE-2009-0037 7.15.5-2.1.el53.3 - forwardport one hunk from upstream curl-7.15.1 Related: 485290 7.15.5-2.1.el53.2 - fix hunk applied to wrong place due to nonzero patch fuzz Related: 485289 7.15.5-2.1.el53.1 - fix CVE-2009-0037 Resolves:...
ghostscript security update
8.15.2-9.4:.4 - Avoid dividing by zero while checking for integer overflows. 8.15.2-9.4:.1 - Applied patch to fix CVE-2009-0583 bug 487742 and CVE-2009-0584 bug 487744...
lcms security update
1.18-beta1.1.el53.2 - Add patch theoretically preventing division by zero 1.18-beta1.1.el53.1 - Rebase to upstream 1.18beta1 - CVE-2009-0581 LittleCms memory leak - CVE-2009-0723 LittleCms integer overflow - CVE-2009-0733 LittleCms lack of upper-bounds check on sizes - Resolves: 487513...
libvirt security update
0.3.3-14.0.1.el53.1 - Replaced docs/redhat.gif in tarball 0.3.3-14.el53.1 - Add missing readonly checks for APIs CVE-2008-5086 - Add missing buf check in proxy daemon CVE-2009-0036...
evolution security update
1.4.5-25 - Fix some typos in the NTLM patch. 1.4.5-24 - Add patch for RH bug 488923 CVE-2009-0587, NTLM authentication. 1.4.5-23 - Add patch for RH bug 488293 CVE-2009-0587, Base64 encoding...
libsoup security update
2.2.98-2.el5.1 - Add patch for RH bug 488030 CVE-2009-0585, soupbase64encode...
evolution-data-server security update
1.12.3-10.el53.3 - Add patch for RH bug 488280 CVE-2009-0547, S/MIME signatures. 1.12.3-10.el53.2 - Add patch for RH bug 488280 CVE-2009-0582, NTLM authentication. 1.12.3-10.el53.1 - Add patch for RH bug 488280 CVE-2009-0587, Base64 encoding...
evolution and evolution-data-server security update
evolution: 2.0.2-41.el47.2 - Add patch for RH bug 488439 CVE-2009-0547, S/MIME signatures. 2.0.2-41.el47.1 - Add patch for RH bug 488439 CVE-2009-0582, NTLM authentication. - Add patch for RH bug 488439 CVE-2009-0587, Base64 encoding. evolution-data-server: 1.0.2-14.el47.1 - Add patch for RH bug...
kernel security and bug fix update
2.6.9-78.0.17.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
icu security update
3.6-5.11.2 - Resolves: rhbz467949 CVE-2008-1036...
firefox security update
firefox: 3.0.7-1.0.1 - Update firstrun and homepage URLs - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones - Added patch oracle-firefox-branding.patch 3.0.7-1 - Update to Firefox 3.0.7 3.0.6-2 - Fixed 481805 Unowned directory...
seamonkey security update
1.0.9-38.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html and removed corresponding ones of Red Hat. 1.0.9-38.el4 - Added mising fix 1.0.9-37.el4 - Added fixes from 1.9.0.7 1.0.9-36.el4 - Fixed build ID...
wireshark security update
1.0.6-2.0.1.el53 - Add oracle-ocfs2-network.patch 1.0.6-2 - bring back pie - Resolves: 486551 1.0.6-1 - various security flaws fixed - upgrade to 1.0.6 - Resolves: 486551...
libpng security update
libpng: 1.2.2-29 - Back-port fix for CVE-2009-0040. Resolves: 487165 - Note: so far as I can tell, this version isn't affected by CVE-2008-1382. libpng10: 1.0.13-20 - Fix inter-subpackage Requires, per rpmdiff complaint Related: 487170 1.0.13-19 - Back-port fix for CVE-2009-0040. Resolves: 487170...
libpng security update
1.2.10-7.1.el53.2 - Back-port fixes for CVE-2008-1382 and CVE-2009-0040. Resolves: 487168...
imap security update
2002d-15 - Backport patch for buffer overflows in dmail and tmail from upstream version 2007d CVE-2008-5005, 469667...
cups security update
1.1.17-13.3.56 - Applied patch to fix CVE-2008-3640 STR 2919, bug 486052, which was not fixed in previous attempt...
netpbm security update
10.35-6.1.el53.1 - fix NVR to be greater than previous release in the main branch Related: 472947 10.35-6.el53.1 - fix CVE-2007-2721 and CVE-2008-3520 libjasper issues 472947 Resolves: 472947...
mod_auth_mysql security update
3.0.0-3.2 - add security fix for CVE-2008-2384 480613...
kernel security update
2.6.18-128.1.1.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki,Guru Anbalagane orabug 6045759 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NET Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - nfs convert ENETUNREACH to ENOTCONN Guru...
vnc security update
4.1.2-14.el53.1 - CVE-2008-4770...
gstreamer-plugins security update
0.6.0-19 - Add patch for CVE-2009-0398 Related: rhbz 483216...
gstreamer-plugins-good security update
0.10.9-1.el5.1 - Add patch for CVE-2009-0386 CVE-2009-0387 CVE-2009-0397 Related: rhbz 483220...
gstreamer-plugins security update
0.8.5-1.0.1.EL.2 - Update release to address ULN up2date 0.8.5-1.EL.2 - Add patch for CVE-2009-0397 Related: rhbz 483217...
sudo security update
1.6.9p17-3.el53.1 - audit patch rediff one chunk failed to apply due to fuzz=0 - Fix for incorrect handling of groups in RunasUser 481720 Resolves: 481820...
seamonkey security update
1.0.9-35.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html and removed corresponding ones of Red Hat. 1.0.9-35.el4 - Added fixes from 1.9.0.6 1.0.9-34.el4 - Package build fixes 1.0.9-33.el4 - Added missing ghost directive to solve 471048...
firefox security update
firefox: 3.0.6-1.0.1.el5 - Update firstrun and homepage URLs - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html and removed the corresponding Red Hat ones - Added patch oracle-firefox-branding.patch 3.0.6-1 - Update to Firefox 3.0.6 - Fixed 447390 wrong size of icons ns...
ntp security update
4.2.2p1-9.el53.1 - fix check for malformed signatures 479698, CVE-2009-0021...
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2.6.18-128.el5 - cifs cifswritepages may skip unwritten pages Jeff Layton 470267 2.6.18-127.el5 - Revert: i386: check for dmidata in powernowk8 driver Prarit Bhargava 476184 - xen re-enable using xenpv in boot path for FV guests Don Dutile 473899 - xen pvhvm: guest hang on FV save/restore Don...
dovecot security and bug fix update
1.0.7-7 - permissions of deliver and dovecot.conf from 1.0.7-5 reverted - password can be stored in different file readable only for root now - Resolves: 436287, CVE-2008-4870 1.0.7-6 - added missing directory in file list - Resolves: 436287 1.0.7-5 - change permissions of deliver and dovecot.con...
squirrelmail security update
1.4.8-5.0.1.el52.3 - Remove Redhat splash screen images 1.4.8-5.3 - Update patch for CVE-2008-3663 to fix a session handling regression 480224...
kernel security and bug fix update
2.6.9-78.0.13.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
squirrelmail security update
1.4.8-5.0.1.el52.2 - Remove Redhat splash screen images 1.4.8-5.2 - Resolves: CVE-2008-2379 - fix XSS issue caused by an insufficient html mail sanitation 1.4.8-5.1 - don't transmit cookies under non-SSL connections if the session is started under an SSL https connection - Resolves: CVE-2008-3663...
avahi security update
0.6.16-1.el5.1 - Resolves: CVE-2008-5081...
bind security update
9.3.4-6.0.3.P1 - check DSAdoverify return value correctly...
xen security and bug fix update
3.0.3-64.el52.9 - More fixes for Xenstore unsafe data access CVE-2008-4405, rhbz 464817 - Fix block-detach regression due to CVE-2008-4405, rhbz 473882 3.0.3-64.el52.8 - Remove unneccessary patch & rebuild 3.0.3-64.el52.7 - Fix reboots after CVE-2008-4405 changes rhbz 471588 3.0.3-64.el52.6 -...
gnome-vfs, gnome-vfs2 security update
gnome-vfs2 2.8.2-8.7.EL47.2 - Fix Requires to ensure subpackages match the parent package 2.8.2-8.7.EL47.1 - CVE-2005-0706: buffer overflow caused by large amount of CDDB replies - Resolves: 471051 samba 3.0.28-0.0.2.el4.9 - Remove samba-oracle.patch as the gnome-vfs2 build issue is fixed...