9159 matches found
kernel security and bug fix update
2.6.18-92.1.17.0.1.el5 - MM shrink zone patch John Sobecki,Chris Mason orabug 6086839 - NFS nfs attribute timeout fix Trond Myklebust orabug 7156607 RHBZ 446083 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.17.el5...
openoffice.org security update
1.1.5-10.0.7 - CVE-2008-2237 WMF integer overflow - CVE-2008-2237 Multiple EMF flaws - Resolves: rhbz462720 Multiple flaws...
net-snmp security update
5.3.1-24.2 - fix crash in bulk request processing 469373...
lynx security update
2.8.5-28.1.1 - add patch for CVE-2008-4690 rhbz468184 - prompt user before executing commands from the lynxcgi: handler, even in the advanced user mode - mark all lynxcgi: URIs as untrusted in the default lynx.cfg - add patch to prevent lynx from opening configuration files in the current working...
ruby security update
1.8.5-5.el52.5 - Build with -fno-strict-aliasing. 1.8.5-5.el52.4 - security fixes. 461590 - CVE-2008-3655: multiple insufficient safe mode restrictions. - CVE-2008-3656: WEBrick DoS vulnerability CPU consumption. - CVE-2008-3657: missing taintness checks in dl module. - CVE-2008-3905: use of...
ed security update
0.2-39 - add fix for CVE-2008-3916...
ruby security update
1.6.8-13.el3 - security fixes. 461578 - CVE-2008-3655: multiple insufficient safe mode restrictions - CVE-2008-3443: Memory allocation failure in Ruby regex engine remotely exploitable DoS - CVE-2008-3905: use of predictable source port and transaction id in DNS requests done by resolve.rb module...
cups security update
1.2.4-11.18:.2 - Applied patch to fix CVE-2008-3639 STR 2918, bug 464721. - Applied patch to fix CVE-2008-3640 STR 2919, bug 464721. - Applied patch to fix CVE-2008-3641 STR 2911, bug 464721...
pam_krb5 security update
2.2.14-1.el52.1 - add backported fix for ccache permissions bypass when the existingticket option is used CVE-2008-3825, 462112...
wireshark security update
1.0.3-4.0.1.el52 - Add oracle-ocfs2-network.patch 1.0.3-4 - fix pam session file, wireshark requires root pswd everytime its started 1.0.3-3 - fix pie flags 1.0.3-1 - upgrade to 1.0.3 - fixes several security issues - Resolves: 461569...
thunderbird security update
1.5.0.12-16.0.1.el4 - Add thunderbird-oracle-default-prefs.js for errata rebuild and remove thunderbird-redhat-default-prefs.js 1.5.0.12-16 - Update patchset to fix regression as per 1.8.1.17 1.5.0.12-15 - Rebuild with system nss and nspr 1.5.0.12-14 - Add patches for backported fixes from 1.8.1....
xen security and bug fix update
3.0.3-64.el52.3 - Fix overflow in qemu-img rhbz 454651 3.0.3-64.el52.2 - Correctly limit PVFB size CVE-2008-1952 rhbz 447760 - Disable QEMU USB disk image format auto-detection CVE-2008-1945 rhbz 445845...
seamonkey security update
devhelp: 0.10-0.10.el4 - Rebuild against newer gecko seamonkey: 1.0.9-26.0.1.el4 - Added mozilla-oracle-default-prefs.js and mozilla-oracle-default-bookmarks.html. - Removed corresponding ones of Red Hat. 1.0.9-26.el4 - Add missing patches from 1.8.1.17 1.0.9-25.el4 - Add patches for backported...
firefox security update
devhelp: 0.12-19 - Rebuild against xulrunner firefox: 3.0.2-3.0.1.el5 - Added firefox-oracle-default-prefs.js/firefox-oracle-default-bookmarks.html - Removed the corresponding files of Red Hat. - Added patch oracle-firefox-branding.patch - Update firstrun URL 3.0.2-3 - Update to Firefox 3.0.2 bui...
kernel security and bug fix update
2.6.18-92.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.13.el5 - md fix crashes in iteraterdev Doug Ledford 460128 455471 - sound...
bzip2 security update
1.0.3-4 - Resolves: 461587 fix cash on malformed archive file - CVE-2008-1372 apply upstream patch...
libxml2 security update
2.6.26-2.1.2.6.0.1 - Add libxml2-enterprise.patch and update logos in tarball 2.6.26-2.1.2.6 - Patch to fix an entity name copy buffer overflow CVE-2008-3529 - Resolves: rhbz461023...
libtiff security update
3.5.7-31.el3 - Fix some additional LZW decoding vulnerabilities back-port from tiff-3.6.1 Resolves: 458810 - Force debug symbols to be generated by adding GCOPTS=-g; the test used by this old configure script is too easily confused 3.5.7-25.el3.5 - Fix LZW decoding vulnerabilities CVE-2008-2327...
libtiff security and bug fix update
3.6.1-12.el4.2 - Get rid of html pages for un-shipped programs, too Resolves: 459404 3.6.1-12.el4.1 - Fix LZW decoding vulnerabilities CVE-2008-2327 Resolves: 458814 - Back-port fix for CVE-2006-2193 Resolves: 458814 - Remove sgi2tiff.1 and tiffsv.1, since they are for programs we don't ship...
libtiff security and bug fix update
3.8.2-7.el5.2 - Use -fno-strict-aliasing per rpmdiff recommendation 3.8.2-7.el5.1 - Fix LZW decoding vulnerabilities CVE-2008-2327 Resolves: 458812 - Remove sgi2tiff.1 and tiffsv.1, since they are for programs we don't ship Resolves: 460120...
tomcat security update
5.5.23-0jpp.7.el52.1 - add patch for CVE-2008-1232 Resolves: rhbz457727 - add patch for CVE-2008-1947 Resolves: rhbz449916 - add patch for CVE-2008-2370 Resolves: rhbz458634 - add patch for CVE-2008-2938 Resolves: rhbz456214...
ipsec-tools security update
0.6.5-9.3 - fix for DoS through various memory leaks CVE-2008-3651 456660, CVE-2008-3652 458846...
openssh security update
4.3p2-26.el52.1 - CVE-2007-4752 - Prevent ssh1 from using a trusted X11 cookie if creation of an untrusted cookie fails 280361...
libxml2 security update
2.6.26-2.1.2.3.0.1 - Add libxml2-enterprise.patch and update logos in tarball 2.6.26-2.1.2.3 - Patch to fix recursive entities handling CVE-2008-3281 - Resolves: rhbz458095...
postfix security update
2.3.3-2.1 - fixed postfix privilege problem with symlinks in the mail spool directory CVE-2008-2936 Resolves: rhbz456717...
hplip security update
1.6.7-4.1.el52.4 - Applied patch to make hpssd message parser more robust bug 457052. - Applied patches to fix insecure alert emails bug 455235...
dnsmasq security update
2.45-1.el5.1 - update to new upstream version - fixes for CVE-2008-1447/CERT VU800113 - Resolves: rhbz454869...
kernel security and bug fix update
2.6.18-92.1.10.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - splice Fix bad unlockpage in error case Jens Axboe orabug 6263574 - dio fix error-path crashes Linus Torvalds orabug 6242289 - NET fix netpoll race Tina Yang orabugz 5791 2.6.18-92.1.10.el5 - ia64...
mysql security, bug fix, and enhancement update
4.1.22-2 - Back-patch three upstream security fixes from 4.1.23 and 4.1.24 Resolves: 445321 4.1.22-1 - Update to not-so-new-anymore upstream version 4.1.22 Resolves: 278461, 327771, 218009, 201988 - Use default port number if out-of-range port number is specified Resolves: 206067 - Sync mysql.ini...
vsftpd security and bug fix update
2.0.1-6 - add option maxloginfails that kicks the session after few login fails - Resolves: 197141 - fix bad handling of unique files - Resolves: 250727 - increase maximum length of allowed username - Resolves: 236326 - fix create/lock race condition when more clients are uploading to a file -...
Updated kernel packages for Oracle Enterprise Linux 4.7
2.6.9-78 -alsa: Fix mic not working for HP XW series Brian Maly 453783 2.6.9-77 -alsa: Add missing quirks for alc262 Brian Maly 453783 -Revert 'i8042: remove polling timer support - Original bz 246233' Vivek Goyal 450918 2.6.9-76 -tty: fix tty holes Vivek Goyal 453155 CVE-2008-2812 -xen: fix use ...
rdesktop security and bug fix update
1.3.1-9 - Fix for bug 452981 CVE 2008-1801 1.3.1-8 - Bump release to something that hasnt been used before 1.3.1-6 - Add option to allow embedded windows 164462...
nss_ldap security and bug fix update
253-5 - build with strict-aliasing disabled, because pamldap breaks strict-aliasing rules without it tools 253-4 - block SIGPIPE in the atfork handler, so that it doesnt trip up when attempting to drop a connection to the server 448833 253-3 - add patch to make netgroup enumeration fail due to la...
coreutils security update
5.2.1-31.8.0.1 - Disable test not-owner by adding coreutils-disable-not-owner.patch 5.2.1-31.8 - Fixed minor security related regression in su pam module introduced in RHEL-4.6 update,bug 445697...
libxslt security update
1.1.17-2.0.1.el52.2 - Added libxslt-enterprise.patch and replaced doc/redhat.gif in tarball 1.1.17-2.el52.2 - fix various problems in libexslt RC4 encryption/decryption functions - resolves: rhbz456232...
nfs-utils security update
1.0.9-35z - Added the warning.patch to fix some warning which were flaged by rpmdiff during the errata phasea Errata 2008:0486 1.0.9-34z - Re-enabled tcp wrappers. bz440119...
kernel security and bug fix update
2.6.9-67.0.22.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon wit...
rdesktop security update
1.2.0-3 - Bump version 1.2.0-2 - Fix bug 452980, CVE 2008-1801...
thunderbird security update
1.5.0.12-14.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-13 - Respun for mozilla bugs 439035,439735,440308 1.5.0.12-12 - Update patchset to fix regression as per 1.8.1.15...
rdesktop security update
1.4.1-6 - Update the prototype for xrealloc as well. - Fix bug 452978, cve-2008-1803 - Fix bug 452978, cve-2008-1801...
vsftpd security update
1.2.1-3E.16 - add maxloginfails option - Resolves: 452630...
php security update
5.1.6-20.el52.1 - add security fixes for CVE-2007-5898, CVE-2007-4782, CVE-2007-5899, CVE-2008-2051, CVE-2008-2107, CVE-2008-2108 445923...
seamonkey security update
devhelp: 0.10-0.8.1.el4 - Rebuild against newer gecko seamonkey: 1.0.9-16.4.0.1.el46 - Added mozilla-oracle-default-prefs.js, mozilla-oracle-default-bookmarks.html, and mozilla-home-page.patch 1.0.9-16.4.el4 - Add patches for backported fixes from 1.8.1.16...
firefox security update
devhelp: 0.12-18 - Rebuild against xulrunner firefox: 3.0.1-1.0.1.el5 - Replaced the RedHat prefs and bookmarks with Oracle prefs and bookmarks - Add patch oracle-firefox-branding.patch - Update firstrun URL 3.0.1-1 - Update to Firefox 3.0.1 xulrunner: 1.9.0.1-1.0.1.el5 - Added...
php security and bug fix update
4.3.9-3.22.12 - set higher memorylimit in /usr/bin/pear 263501 4.3.9-3.22.11 - update to PEAR 1.4.9, matching RHEL-5 263501 bundle XMLRPC-1.5.0, ConsoleGetopt-1.2, ArchiveTar-1.3.1 fix paths in default pear.conf, installed PEAR registry replace /usr/bin/pear et al with simpler wrapper scripts...
firefox security update
1.5.0.12-0.21.0.1.el4 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js 1.5.0.12-0.21.el4 - JavaScript error correction 1.5.0.12-0.20.el4 - Add patches for backported fixes from 1.8.1.16...
ruby security update
1.8.5-5.el52.3 - CVE-2008-2376: Integer overflow in rbaryfill. 1.8.5-5.el52.1 - security fixes. 451928 - CVE-2008-2662: Integer overflow in rbstrbufappend. - CVE-2008-2663: Integer overflow in rbarystore. - CVE-2008-2664: Unsafe use of alloca in rbstrformat. - CVE-2008-2725: Integer overflow in...
bluez-libs and bluez-utils security update
bluez-libs: 3.7-1.1 - Fix CVE-2008-2374 Resolves: 452880 bluez-utils: 3.7-2.2 - Add explicit versioned Requires and BuildRequires for new bluez-libs 3.7-2.1 - Fix CVE-2008-2374 452715 SDP payload processing vulnerability...
ruby security update
1.6.8-12.el3 - ruby-1.6.8-string-CVE-2008-2664.patch: wrong patch. Fix a segfault. 1.6.8-11.el3 - CVE-2008-2376: Integer overflow in rbaryfill. 1.6.8-10.el3 - security fixes. 451931 - CVE-2006-6303: Fix the infinite loop issue with the malformed multipart data in cgi.rb. - CVE-2008-2663: Fix the...
openldap security update
2.3.27-8.4 - fix CVE-2008-2952 453639...