8984 matches found
dbus security update
1.0.0-7.el52.1 - CVE-2008-3834 - Resolves: 466226...
lcms security update
1.15-1.2.2.el52.2 - Fix Requires to ensure subpackages match the parent package 1.15-1.2.2.el52.1 - Fix insufficient input validation in ReadEmbeddedTextTag - Fix unsigned - signed integer cast issue in cmsAllocGamma - Resolves: 473469...
thunderbird security update
1.5.0.12-18.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js 1.5.0.12-18 - Update patchset to fix regression as per 1.8.1.19...
xterm security update
215-5.el52.2 - Fix CVE-2008-2383...
openssl security update
openssl: 0.9.8b-10.1 - fix CVE-2008-5077 - incorrect checks for malformed signatures 476671 openssl097a: 0.9.7a-9.1 - CVE-2008-5077 - incorrect checks for malformed signatures 476671...
kernel security and bug fix update
2.4.21-58.0.0.0.1.EL - add directio support for qla drivers herb ora 6346849 - support PT Quad card ora 5751043 - io to nfs partition hangs ora 5088963 - add entropy for bnx2 nic ora 5931647 - avoid large allocation-fragmentation in MTU zab - fix clear highpage wli 2.4.21-58.EL - copyuser doesn't...
firefox security update
firefox : 3.0.5-1.0.1 - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html - Removed the corresponding files of Red Hat. - Added patch oracle-firefox-branding.patch - Update firstrun URL in spec file 3.0.5-1 - Update to Firefox 3.0.5 nspr: 4.7.3-2 - Update to NSPR 4.7.3...
seamonkey security update
1.0.9-32.0.1.el4 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html Removed corresponding ones of Red Hat. 1.0.9-32.el4 - Removed mozilla-355126-x.patch 1.0.9-31.el4 - Patch mozilla-355126-x.patch fixed 1.0.9-30.el4 - Add patches for backported fixes from 1.8.1.19...
kernel security and bug fix update
2.6.18-92.1.22.0.1.el5 - net Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - net Add xen pv/bonding netconsole support Tina yang orabug 6993043 bz 7258 - mm shrink zone patch John Sobecki,Chris Mason orabug 6086839 - nfs nfs attribute timeout fix Trond Myklebust orabug 7156607...
pidgin security and bug fix update
2.5.2-6 - Automatically detect booleans to enable build features from dist tag - Unify RHEL4 and RHEL5 spec with Fedora to make both easier to maintain 2.5.2-2 - Upstream backports: 100: sametime-redirect-null crash 101: NetworkManager-improvement 102: no-password-in-dialog-if-not-remembering 103...
cups security update
1.1.17-13.3.55 - Applied patch to fix STR 2974 bug 473905, CVE-2008-5286, CVE-2008-1722...
enscript security update
1.6.1-33.el4.1 - fixed CVE-2008-5078 1.6.1-33.0.1.el4 - fixed CVE-2008-3863 and CVE-2008-4306...
cups security update
1.2.4-11.18:.3 - Applied patch to fix RSS subscription limiting bug 473901, CVE-2008-5183...
enscript security update
1.6.4-4.1.1 - fixed CVE-2008-3863 and CVE-2008-4306...
ruby security update
1.8.5-5.el52.6 - security fix 470262 - CVE-2008-4310: real fix for CVE-2008-3656. original patch named as fix for CVE-2008-3656 actually fixed different issue CVE-2008-1145, hence we are providing correct patch and renaming original patch to refer to proper CVE...
vim security update
7.0.109-4.4z - fix netrw 7.0.109-4.3z - fixes CVE-2008-3074 tar plugin - fixes CVE-2008-3075 zip plugin - fixes CVE-2008-3076 netrw plugin - fixes CVE-2008-4101 keyword and tag lookup 7.0.109-4.2z - fix some issues with netrw and remote file editing caused by the CVE-2008-2712 patch 7.0.109-4.1z ...
tog-pegasus security update
2.7.0-2.0.1.el52.1 - Added pegasus-enterprise.patch to allow detection of enterprise-release 2.7.0-2.el52.1 - Fix local-or-remote-auth patch and enhance PAM security settings Resolves: 471370...
vim security update
6.3.046-1.el47.5z - remove duplicate vimtutor manpage 6.3.046-1.el47.4z - fix netrw 6.3.046-1.el47.3z - add fix for CVE-2008-4101 6.3.046-1.el46.2z - don't add empty line when editing files with netrw 6.3.046-1.el46.1z - fix erroneous quoting in CVE-2008-2712 patch 6.3.046-1.el46.z - add fix for...
thunderbird security update
1.5.0.12-17.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove - thunderbird-redhat-default-prefs.js 1.5.0.12-17 - Update patchset to fix regression as per 1.8.1.18...
kernel security and bug fix update
2.6.9-78.0.8.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...
libxml2 security update
2.6.26-2.1.2.7.0.1 - Add libxml2-enterprise.patch and update logos in tarball 2.6.26-2.1.2.7 - two patches for size overflows problems CVE-2008-4225 and CVE-2008-4226 - Resolves: rhbz470474...
firefox security update
devhelp: 0.12-20 - Rebuild against xulrunner firefox: 3.0.4-1.0.1.el5 - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html Removed the corresponding files of Red Hat. - Added patch oracle-firefox-branding.patch - Update firstrun URL in spec file 3.0.4-5 - Update to Firefo...
seamonkey security update
1.0.9-28.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html. - Removed corresponding ones of Red Hat. 1.0.9-28.el4 - Add patches for backported fixes from 1.8.1.18...
gnutls security update
1.4.1-3.1 - fix chain verification issue CVE-2008-4989 470079...
httpd security and bug fix update
2.2.3-11.0.1.el52.4 - use oracle index page oracleindex.html - update vstring and distro in specfile 2.2.3-11.el52.4 - add security fixes for CVE-2008-2364, CVE-2008-2939 468840...
kernel security and bug fix update
2.6.18-92.1.17.0.1.el5 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NFS nfs attribute timeout fix Trond Myklebust orabug 7156607 RHBZ 446083 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.17.el5...
openoffice.org security update
1.1.5-10.0.7 - CVE-2008-2237 WMF integer overflow - CVE-2008-2237 Multiple EMF flaws - Resolves: rhbz462720 Multiple flaws...
net-snmp security update
5.3.1-24.2 - fix crash in bulk request processing 469373...
lynx security update
2.8.5-28.1.1 - add patch for CVE-2008-4690 rhbz468184 - prompt user before executing commands from the lynxcgi: handler, even in the advanced user mode - mark all lynxcgi: URIs as untrusted in the default lynx.cfg - add patch to prevent lynx from opening configuration files in the current working...
ed security update
0.2-39 - add fix for CVE-2008-3916...
ruby security update
1.6.8-13.el3 - security fixes. 461578 - CVE-2008-3655: multiple insufficient safe mode restrictions - CVE-2008-3443: Memory allocation failure in Ruby regex engine remotely exploitable DoS - CVE-2008-3905: use of predictable source port and transaction id in DNS requests done by resolve.rb module...
ruby security update
1.8.5-5.el52.5 - Build with -fno-strict-aliasing. 1.8.5-5.el52.4 - security fixes. 461590 - CVE-2008-3655: multiple insufficient safe mode restrictions. - CVE-2008-3656: WEBrick DoS vulnerability CPU consumption. - CVE-2008-3657: missing taintness checks in dl module. - CVE-2008-3905: use of...
cups security update
1.2.4-11.18:.2 - Applied patch to fix CVE-2008-3639 STR 2918, bug 464721. - Applied patch to fix CVE-2008-3640 STR 2919, bug 464721. - Applied patch to fix CVE-2008-3641 STR 2911, bug 464721...
pam_krb5 security update
2.2.14-1.el52.1 - add backported fix for ccache permissions bypass when the existingticket option is used CVE-2008-3825, 462112...
thunderbird security update
1.5.0.12-16.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js 1.5.0.12-16 - Update patchset to fix regression as per 1.8.1.17 1.5.0.12-15 - Rebuild with system nss and nspr 1.5.0.12-14 - Add patches for backported fixes from 1.8.1....
wireshark security update
1.0.3-4.0.1.el52 - Add oracle-ocfs2-network.patch 1.0.3-4 - fix pam session file, wireshark requires root pswd everytime its started 1.0.3-3 - fix pie flags 1.0.3-1 - upgrade to 1.0.3 - fixes several security issues - Resolves: 461569...
xen security and bug fix update
3.0.3-64.el52.3 - Fix overflow in qemu-img rhbz 454651 3.0.3-64.el52.2 - Correctly limit PVFB size CVE-2008-1952 rhbz 447760 - Disable QEMU USB disk image format auto-detection CVE-2008-1945 rhbz 445845...
firefox security update
devhelp: 0.12-19 - Rebuild against xulrunner firefox: 3.0.2-3.0.1.el5 - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html - Removed the corresponding files of Red Hat. - Added patch oracle-firefox-branding.patch - Update firstrun URL 3.0.2-3 - Update to Firefox 3.0.2 bui...
seamonkey security update
devhelp: 0.10-0.10.el4 - Rebuild against newer gecko seamonkey: 1.0.9-26.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html. - Removed corresponding ones of Red Hat. 1.0.9-26.el4 - Add missing patches from 1.8.1.17 1.0.9-25.el4 - Add patches for backported...
kernel security and bug fix update
2.6.18-92.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.13.el5 - md fix crashes in iteraterdev Doug Ledford 460128 455471 - sound...
bzip2 security update
1.0.3-4 - Resolves: 461587 fix cash on malformed archive file - CVE-2008-1372 apply upstream patch...
libxml2 security update
2.6.26-2.1.2.6.0.1 - Add libxml2-enterprise.patch and update logos in tarball 2.6.26-2.1.2.6 - Patch to fix an entity name copy buffer overflow CVE-2008-3529 - Resolves: rhbz461023...
libtiff security and bug fix update
3.6.1-12.el4.2 - Get rid of html pages for un-shipped programs, too Resolves: 459404 3.6.1-12.el4.1 - Fix LZW decoding vulnerabilities CVE-2008-2327 Resolves: 458814 - Back-port fix for CVE-2006-2193 Resolves: 458814 - Remove sgi2tiff.1 and tiffsv.1, since they are for programs we don't ship...
libtiff security and bug fix update
3.8.2-7.el5.2 - Use -fno-strict-aliasing per rpmdiff recommendation 3.8.2-7.el5.1 - Fix LZW decoding vulnerabilities CVE-2008-2327 Resolves: 458812 - Remove sgi2tiff.1 and tiffsv.1, since they are for programs we don't ship Resolves: 460120...
libtiff security update
3.5.7-31.el3 - Fix some additional LZW decoding vulnerabilities back-port from tiff-3.6.1 Resolves: 458810 - Force debug symbols to be generated by adding GCOPTS=-g; the test used by this old configure script is too easily confused 3.5.7-25.el3.5 - Fix LZW decoding vulnerabilities CVE-2008-2327...
tomcat security update
5.5.23-0jpp.7.el52.1 - add patch for CVE-2008-1232 Resolves: rhbz457727 - add patch for CVE-2008-1947 Resolves: rhbz449916 - add patch for CVE-2008-2370 Resolves: rhbz458634 - add patch for CVE-2008-2938 Resolves: rhbz456214...
ipsec-tools security update
0.6.5-9.3 - fix for DoS through various memory leaks CVE-2008-3651 456660, CVE-2008-3652 458846...
openssh security update
4.3p2-26.el52.1 - CVE-2007-4752 - Prevent ssh1 from using a trusted X11 cookie if creation of an untrusted cookie fails 280361...
libxml2 security update
2.6.26-2.1.2.3.0.1 - Add libxml2-enterprise.patch and update logos in tarball 2.6.26-2.1.2.3 - Patch to fix recursive entities handling CVE-2008-3281 - Resolves: rhbz458095...
postfix security update
2.3.3-2.1 - fixed postfix privilege problem with symlinks in the mail spool directory CVE-2008-2936 Resolves: rhbz456717...