8984 matches found
Important: kernel security update
2.6.18-53.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET Fix msi issue with kexec/kdump Michael Chan orabug 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin orabug 6187457 - splice Fix bad unlockpage in error case Jens Axboe...
Critical: firefox security update
1.5.0.12-9.0.1 - Added Oracle specific links into default bookmarks 1.5.0.12-9 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Critical: seamonkey security update
1.0.9-0.9.el3.0.1 - Add mozilla-home-page.patch, mozilla-oracle-default-bookmarks.html, and mozilla-oracle-default-prefs.js 1.0.9-0.9.el3 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Moderate: thunderbird security update
1.5.0.12-8.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-8 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Important: kernel security and bug fix update
2.6.9-67.0.4.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 - remove patch sysrq-b that queues upto keventd thread orab...
Important: icu security update
3.6-5.11.1 - Resolves: rhbz429706 CVE-2007-4770 CVE-2007-4771...
Important: kernel security and bug fix update
2.6.18-53.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin ORA 6187457 - splice Fix bad unlockpage in error case Jens Axboe ORA 6263574 ...
Moderate: wireshark security update
wireshark-0.99.7-EL3.1.0.1: 0.99.7-1.EL3.1.0.1 - add oracle-ocfs2-network.patch 0.99.7-1 - upgrade to 0.99.7 - switch to libsmi from net-snmp - disable ADNS due to its lack of Ipv6 support - Resolves: 397431 0.99.6-1 - upgrade to 0.99.6 - Wireshark could crash when dissecting an HTTP chunked...
Moderate: wireshark security update
wireshark-0.99.7-1.el5.0.1: 0.99.7-1.el5.0.1 - Add oracle-ocfs2-network.patch 0.99.7-1 - upgrade to 0.99.7 - switch to libsmi from net-snmp - disable ADNS due to its lack of Ipv6 support - Resolves: 397411 libsmi-0.4.5-2.el5: 0.4.5-2 - Handle rpath problems in 64-bit systems 209522. 0.4.5-1 -...
Important: XFree86 security update
4.3.0-125.EL.0.1 - Add oracle detection to Imake. 4.3.0-125.EL - cve-2007-4568.patch: XFS Integer Overflow Vulnerability - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure vulnerability - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability - cve-2007-6428.patch:...
Important: libXfont security update
1.2.2-1.0.3 - cve-2008-0006.patch: XFS Integer Overflow Vulnerability...
Important: xorg-x11-server security update
1.1.1-48.26.4.0.1 - Add Enterprise Linux detection 1.1.1-48.26.4 - cve-2007-5760.patch: XFree86-Misc Extension Invalid Array Index Vulnerability - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure vulnerability - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability -...
Important: xorg-x11 security update
6.8.2-1.EL.33.0.1.0.1 - Add Enterprise Linux detection - Add XFree86-4.3.0-oracle-bug-report-address-update.patch 6.8.2-1.EL.33.0.1 - cve-2007-4568.patch: XFS Integer Overflow Vulnerability - cve-2007-5760.patch: XFree86-Misc Extension Invalid Array Index Vulnerability - cve-2007-5958.patch: Xorg...
Moderate: httpd security update
2.0.52-38.ent.2.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent.2 - add security fix for CVE-2007-6388 427236 - add security fix for modproxyftp UTF-7 XSS 427743 2.0.52-38.ent.1 - add security fixes for CVE-2007-4465, CVE-2007-5000 421611...
Moderate: httpd security update
2.2.3-12.el51.3.0.1 - use oracle index page oracleindex.html, update vstring and distro 2.2.3-12.el51.3 - further update to backport for CVE-2007-6421 427240 2.2.3-12.el51.2 - updated backport for CVE-2007-6421 427240 2.2.3-11.el51.1 - add security fixes for CVE-2007-6388, CVE-2007-6421 and...
Moderate: httpd security update
2.0.46-70.ent.0.1 - use oracle index page oracleindex.html and logo removal - add apr-configure.patch 2.0.46-70.ent - add security fix for CVE-2007-6388 427235 - add security fix for modproxyftp UTF-7 XSS 427742 2.0.46-69.ent - add security fix for CVE-2007-3847 250759 - add security fixes for...
Important: libxml2 security update
2.5.10-8.0.1 - Add patch libxml2-enterprise.patch, and other logo changes in tarball 2.5.10-8 - Patch to fix UTF-8 decoding problem CVE-2007-6284 - Resolves: rhbz425930...
Moderate: postgresql security update
7.4.19-1.el46.1 - Update to PostgreSQL 7.4.19 to fix CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601 Resolves: 427135...
Moderate: postgresql security update
7.3.21-1 - Update to PostgreSQL 7.3.21 to fix CVE-2007-6600, CVE-2007-6601 Resolves: 427134...
Moderate: e2fsprogs security update
1.32-15.4 - Fix integer overflows 414611 / CVE-2007-5497...
Critical: tog-pegasus security update
2.6.1-2.el51.1.0.1 - Added pegasus-enterprise.patch to allow detection of enterprise-release 2.6.1-2.el51.1 - Fix PAM authentication buffer overflow CVE-2008-0003 Resolves: 427213...
Important: kernel security and bug fix update
2.6.9-67.0.1.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 2.6.9-67.0.1 -kernel ieee80211 off-by-two integer underflow...
Important: autofs5 security update
5.0.1-0.rc2.55.el46.2 - Bugzilla Bug 426221: CVE-2007-6285 autofs default doesn't set nodev in /net rhel-4.6.z - use mount option nodev for -hosts map unless dev is explicily specified. - Related: rhbz426221...
Important: autofs security update
5.0.1-0.rc2.55.el5.2 - Bug 426219: CVE-2007-6285 autofs default doesn't set nodev in /net rhel-5.1.z - use mount option nodev for -hosts map unless dev is explicily specified. - Related: rhbz426219...
Moderate: libexif security update
0.5.12-5.1.0.2.el46.1 - Add patch for CVE-2007-6352. Fixes bug 425651...
Moderate: thunderbird security update
1.5.0.12-7.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-7 - Add patches for mozilla bugs: 369814,373911,391028,393326,402649,403331...
Moderate:libexif security update
0.6.13-4.0.2.el51.1 - Add patch for CVE-2007-6351. Fixes bug 425681 - Add patch for CVE-2007-6352. Fixes bug 425681...
Moderate: squid security update
2.5.STABLE3-8.3E - fix for 410181 - CVE-2007-6239 Squid DoS in cache updates 2.5.STABLE3-7 - resolves: 238103: 'forwardedfor off' in squid.conf does not work...
Important: mysql security update
4.1.20-3.RHEL4.1.el46.1 - Back-port upstream fixes for CVE-2007-5925, CVE-2007-5969. Resolves: 422181...
Important: autofs5 security update
5.0.1-0.rc2.55.el46.1 - Bug 412621: CVE-2007-5964 autofs defaults don't restrict suid in /net - use mount option nosuid for -hosts map unless suid is explicily specified. - Resolves: rhbz412621...
Important: autofs security update
5.0.1-0.rc2.55.el5.1 - Bug 410041: CVE-2007-5964 autofs defaults don't restrict suid in /net - use mount option nosuid for -hosts map unless suid is explicily specified. - Related: rhbz410041...
Moderate: python security update
2.2.3-6.8 - Fix possible integer overflow in image ops - Fix off by one strxfrm malloc - Fix pypcre bugs - Resolves: 392031...
Critical: samba security and bug fix update
3.0.9-1.3E.14.3 - Security fix for CVE-2007-6015 - Fix for regression introduced with CVE-2007-4572 - resolves: 407321 - resolves: 389021...
Important: kernel security and bug fix update
kernel-2.4.21-53.EL - Fix ipv4 treason uncloaked message Anton Arapov 249237 - Fix ipv4 fib-sem-out-of-bounds checking Don Howard 250429 CVE-2007-2172 - Reset current-pdeathsignal on SUID binary execution Peter Zijlstra 251117 CVE-2007-3848 - Fix local DoS with corrupted elf on ia64 Don Howard...
Critical: samba security update
3.0.25b-1 - samba incorrect primary group assignment for domain users using the rfc2307 or sfu winbind nss info plugin - samba buffer overflow - Samba "replynetbiospacket" Buffer Overflow Vulnerability...
Moderate: htdig security update
3:3.2.0b6-4 - CVE-2007-6110...
Important: pcre security update
4.5-4.6 - Add pcre-4.5-CVE-2007-1659.patch - Update pcre-4.5-CVE-2007-1660.patch - Add pcre-4.5-CVE-2007-7230.patch - Resolves: 380511...
Important: pcre security update
6.6-2.7 - Fix the names of the patches added in 6.6-2.5: mv pcre-6.4-posix.diff pcre-6.6-CVE-2006-7225.patch mv pcre-6.4-fix1.patch pcre-6.6-CVE-2006-7226.patch - Update pcre-6.6-CVE-2007-1659.patch - Update pcre-6.6-CVE-2007-1660.patch - Add pcre-6.6-CVE-2006-7230.patch - Resolves: 380531...
Important: kernel security update
CVE-2007-4571 ALSA memory disclosure flaw - Tick divider bugs on x8664 - CVE-2007-5494 openOATOMICLOOKUP leaks dentry - PATCH jbd: wait for already submitted tsyncdatalist buffer to complete Possibility of in-place data destruction - LSPP: audit rule causes kernel 'out of memory' condition and...
Important: pcre security update
3.9-10.4 - Fix CVE-2007-1660, bug 381991...
Important: cairo security update
1.2.4-3 - Add cairo-1.2.4-alloc-overflow.patch - Resolves: bug 387521...
mailman security and bug fix update
2.1.5.1-34.rhel4.6 - fix 200036 - canceling subscription confirmation crashes mailman - fix 205651 - CVE-2006-4624 logfile CRLF injection - fix 230939 - missing migrate-fhs script - fix 223191 - spam filters gets deleted when sender filter is edited - fix 242677 - wrong init script...
xterm security update
192-8.el4 - use correct tty group 239070...
tcpdump security and bug fix update
3.8.2-12.el4 - fix buffer overflow in BGP dissector 250293, CVE-2007-3798 3.8.2-11.el4 - fix buffer overflow in 802.11 printer 232519, CVE-2007-1218 - fix return codes in arpwatch init script 237780 - with -C option, drop root privileges before opening first savefile 214377...
Critical: seamonkey security update
1.0.9-0.7.el3.0.1 - Add mozilla-home-page.patch, mozilla-oracle-default-bookmarks.html, and mozilla-oracle-default-prefs.js 1.0.9-0.7.el3 - Add patches for mozilla bugs: 369814,373911,391028,393326,402649,403331...
httpd security, bug fix, and enhancement update
2.0.52-38.ent.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent - fix server version string 236419 2.0.52-37.ent - add security fix for CVE-2007-3847 250760 2.0.52-36.ent - add modversion, load in default httpd.conf 248696 2.0.52-35.ent - add...
Critical: firefox security update
1.5.0.12-7.0.1 - Added Oracle specific links into default bookmarks. 1.5.0.12-7 - Add patches for mozilla bugs: 369814,373911,391028,393326,402649,403331...
wireshark security and bug fix update
0.99.6-EL4.1.0.1 - Add oracle-ocfs2-network.patch 0.99.6-1 - upgrade to 0.99.6 - Wireshark could crash when dissecting an HTTP chunked response - Wireshark could crash while reading iSeries capture files - Wireshark could exhaust system memory while reading a malformed DCP ETSI packet - Wireshark...
pam security, bug fix, and enhancement update
0.77-66.23 - pamcracklib should count the last char when computing difference 267201 0.77-66.22 - add pamtally2 module 228044 - unset XAUTHORITY when appropriate 228980 - CVE-2007-1716 always decrement use count 230823 - reset priority only when specified in limits.conf 232407 - CVE-2007-3102...
openssl security and bug fix update
0.9.7a-43.17.1 - CVE-2007-5135 off by one buffer overflow in SSLgetsharedciphers 309851 0.9.7a-43.17 - use poll when reading random device 236164 - make ssl session ID context matching strict 244436 - openssl utility shouldnt crash on invalid PKCS12 files 245083 - CVE-2007-3108 remove conditional...