9157 matches found
cups security update
cups 1.1.22-0.rc1.9.20.2:.6 - Applied patch to fix CVE-2008-0053 HP-GL/2 input processing, bug 438117. - Applied patch to fix CVE-2008-1373 GIF overflow, bug 438303. - Applied patch to fix CVE-2008-1374 64-bit PDF crash, bug 438336...
cups security update
cups 1.2.4-11.14:.6 - Applied patch to fix CVE-2008-0053 HP-GL/2 input processing, bug 438117. - Applied patch to fix CVE-2008-1373 GIF overflow, bug 438303. 1.2.4-11.14:.5 - Applied patch to prevent heap-based buffer overflow in CUPS helper program bug 436153, CVE-2008-0047, STR 2729...
seamonkey security update
1.0.9-15.el4.0.1 - Add mozilla-oracle-default-bookmarks.html, mozilla-oracle-default-prefs.js, and mozilla-home-page.patch with Oracle default URLs 1.0.9-15.el4 - Fix SMTP regression 1.0.9-14.el4 - Don't deny for native wrappers in an XBL Binding 1.0.9-13.el4 - Fix assertions in script 1.0.9-12.e...
firefox security update
1.5.0.12-14.0.1 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js 1.5.0.12-14 - Fix assertions from script 1.5.0.12-13 - Ensure wrappers are properly disposed of 1.5.0.12-12 - Update to latest snapshot of Mozilla 1.8.0 branch - Add patches for backported fixes from...
Critical: krb5 security update
1.2.7-68 - add preliminary patch to fix use of uninitialized pointer / double-free in KDC CVE-2008-0062,CVE-2008-0063 432620, 432621 - add preliminary patch to fix incorrect handling of high-numbered descriptors in the RPC library CVE-2008-0948 435087...
Critical: krb5 security update
1.3.4-54.el46.1 - add preliminary patch to fix use of uninitialized pointer / double-free in KDC CVE-2008-0062,CVE-2008-0063 432620, 432621 - add backported patch to fix double-free in libgssapikrb5 CVE-2007-5971 415351...
Moderate: unzip security update
5.50-36.EL3 - Resolves: 436531 free called for uninitialized or already freed pointer...
Critical: krb5 security and bugfix update
1.6.1-17.el51.1 - add preliminary patch to fix use of uninitialized pointer / double-free in KDC CVE-2008-0062,CVE-2008-0063 432620, 432621 - add backported patch to fix use-after-free in libgssapikrb5 CVE-2007-5901 415321 - add backported patch to fix double-free in libgssapikrb5 CVE-2007-5971...
Moderate: kernel security and bug fix update
2.6.9-67.0.7.0.1.EL - fix skb alignment that was causing sendto to fail with EFAULT Olaf Kirch orabug 6845794 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with...
Moderate: tomcat security update
5.5.23-0jpp.3.0.3 - Patch for CVE-2007-5342 Resolves: bz 427776 - Patch for CVE-2007-5461 Resolves: bz 334561...
Important: kernel security and bug fix update
2.6.18-53.1.14.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET Fix msi issue with kexec/kdump Michael Chan orabug 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin orabug 6187457 - splice Fix bad unlockpage in error case Jens Axboe...
Critical: evolution security update
evolution-2.0.2-35.0.4.el46.1: 2.0.2-35.0.4.el4.1 - Add patch for RH bug 435797 format string vulnerability. evolution28-2.8.0-53.el46.2.0.1: 2.8.0-53.el46.2.0.1 - Comment evolution-2.8.0-red-hat-branding.patch to make evolution as vendor neutral 2.8.0-53.el46.2 - Fix hardcoded %dist tag for...
Moderate: dbus security update
1.0.0-6.3.el51 - CVE-2008-0595: D-Bus security policy circumvention - Resolves: 432437 1.0.0-6.el51 - CVE-2006-6107: D-Bus denial of service - Resolves: 219601...
Moderate: netpbm security update
10.25-2.EL4.6.1 - fix CVE-2008-0554 vulnerability in giftopnm 432485, backported from upstream Resolves: 432485...
Important: ghostscript security update
7.05-32.1.13 - Applied patch to fix CVE-2008-0411 bug 433366...
Moderate: gd security update
2.0.28-5.E4.1 - security fixes - Resolves: 432784...
Important: cups security update
1.1.17-13.3.51 - Prevented invalid memory accesses when a class and its singleton printer are timed out in the same sweep CVE-2008-0597, bug 433827. 1.1.17-13.3.50 - Back-ported mimeDeleteType from 1.2.x CVE-2008-0596, bug 433827. 1.1.17-13.3.49 - Prevent double-free when a browsed class has the...
Important: cups security update
1.1.22-0.rc1.9.20.2:.5 - Prevented invalid memory accesses when a class and its singleton printer are timed out in the same sweep CVE-2008-0597, bug 433828. - Back-ported mimeDeleteType from 1.2.x CVE-2008-0596, bug 433828. 1.1.22-0.rc1.9.20.2:.4 - Prevent double-free when a browsed class has the...
Moderate: tcltk security update
8.3.5-92.8 - CVE-2008-0553 CVE-2007-5378 CVE-2007-4772 - problems: regexp, GIF overflow and also GIF overflow Resolves: 432511...
Moderate: tk security update
8.4.7-3.EL46.1 - CVE-2008-0553 CVE-2007-5378 - GIF overflow and also GIF overflow Resolves: rhbz 432512...
Important: cups security update
1.2.4-11.14:.4 - Prevent double-free when a browsed class has the same name as a printer or vice versa bug 433766, STR 2656. 1.2.4-11.14:.3 - pdftops: Fix invalid dereference from bad Info object found during testing of bug 356571. 1.2.4-11.14:.2 - Applied patch to fix CVE-2007-4045 bug 356571. -...
Moderate: openldap security update
2.3.27-8.3 - better fix for CVE-2007-6698 431407, now it fixes also modrdn operations 2.3.27-8.2 - fix CVE-2007-6698 431407...
Moderate: tk security update
8.4.13-5.EL51.1 - CVE-2008-0553 CVE-2007-5378 - GIF overflow and also GIF overflow Resolves: rhbz432514...
Important: kernel security update
2.6.18-53.1.13.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki orabug 6045759 - NET Fix msi issue with kexec/kdump Michael Chan orabug 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin orabug 6187457 - splice Fix bad unlockpage in error case Jens Axboe...
Critical: seamonkey security update
1.0.9-0.9.el3.0.1 - Add mozilla-home-page.patch, mozilla-oracle-default-bookmarks.html, and mozilla-oracle-default-prefs.js 1.0.9-0.9.el3 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Moderate: thunderbird security update
1.5.0.12-8.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-8 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Critical: firefox security update
1.5.0.12-9.0.1 - Added Oracle specific links into default bookmarks 1.5.0.12-9 - Update to latest snapshot of Mozilla 1.8.0 branch - Added a patch with backported fixes from 1.8.1.12...
Important: kernel security and bug fix update
2.6.9-67.0.4.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 - remove patch sysrq-b that queues upto keventd thread orab...
Important: icu security update
3.6-5.11.1 - Resolves: rhbz429706 CVE-2007-4770 CVE-2007-4771...
Important: kernel security and bug fix update
2.6.18-53.1.6.0.1.el5 - NET Add entropy support to e1000 and bnx2 John Sobecki ORA 6045759 - NET Fix msi issue with kexec/kdump Michael Chan ORA 6219364 - MM Fix allocpagesnode static nid' race made kernel crash Joe Jin ORA 6187457 - splice Fix bad unlockpage in error case Jens Axboe ORA 6263574 ...
Moderate: wireshark security update
wireshark-0.99.7-EL3.1.0.1: 0.99.7-1.EL3.1.0.1 - add oracle-ocfs2-network.patch 0.99.7-1 - upgrade to 0.99.7 - switch to libsmi from net-snmp - disable ADNS due to its lack of Ipv6 support - Resolves: 397431 0.99.6-1 - upgrade to 0.99.6 - Wireshark could crash when dissecting an HTTP chunked...
Moderate: wireshark security update
wireshark-0.99.7-1.el5.0.1: 0.99.7-1.el5.0.1 - Add oracle-ocfs2-network.patch 0.99.7-1 - upgrade to 0.99.7 - switch to libsmi from net-snmp - disable ADNS due to its lack of Ipv6 support - Resolves: 397411 libsmi-0.4.5-2.el5: 0.4.5-2 - Handle rpath problems in 64-bit systems 209522. 0.4.5-1 -...
Important: XFree86 security update
4.3.0-125.EL.0.1 - Add oracle detection to Imake. 4.3.0-125.EL - cve-2007-4568.patch: XFS Integer Overflow Vulnerability - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure vulnerability - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability - cve-2007-6428.patch:...
Important: xorg-x11-server security update
1.1.1-48.26.4.0.1 - Add Enterprise Linux detection 1.1.1-48.26.4 - cve-2007-5760.patch: XFree86-Misc Extension Invalid Array Index Vulnerability - cve-2007-5958.patch: Xorg / XFree86 file existence disclosure vulnerability - cve-2007-6427.patch: XInput Extension Memory Corruption Vulnerability -...
Important: libXfont security update
1.2.2-1.0.3 - cve-2008-0006.patch: XFS Integer Overflow Vulnerability...
Important: xorg-x11 security update
6.8.2-1.EL.33.0.1.0.1 - Add Enterprise Linux detection - Add XFree86-4.3.0-oracle-bug-report-address-update.patch 6.8.2-1.EL.33.0.1 - cve-2007-4568.patch: XFS Integer Overflow Vulnerability - cve-2007-5760.patch: XFree86-Misc Extension Invalid Array Index Vulnerability - cve-2007-5958.patch: Xorg...
Moderate: httpd security update
2.0.46-70.ent.0.1 - use oracle index page oracleindex.html and logo removal - add apr-configure.patch 2.0.46-70.ent - add security fix for CVE-2007-6388 427235 - add security fix for modproxyftp UTF-7 XSS 427742 2.0.46-69.ent - add security fix for CVE-2007-3847 250759 - add security fixes for...
Moderate: httpd security update
2.0.52-38.ent.2.0.1 - use oracle index page oracleindex.html - updated string and distro in specfile 2.0.52-38.ent.2 - add security fix for CVE-2007-6388 427236 - add security fix for modproxyftp UTF-7 XSS 427743 2.0.52-38.ent.1 - add security fixes for CVE-2007-4465, CVE-2007-5000 421611...
Moderate: httpd security update
2.2.3-12.el51.3.0.1 - use oracle index page oracleindex.html, update vstring and distro 2.2.3-12.el51.3 - further update to backport for CVE-2007-6421 427240 2.2.3-12.el51.2 - updated backport for CVE-2007-6421 427240 2.2.3-11.el51.1 - add security fixes for CVE-2007-6388, CVE-2007-6421 and...
Moderate: postgresql security update
7.4.19-1.el46.1 - Update to PostgreSQL 7.4.19 to fix CVE-2007-4769, CVE-2007-4772, CVE-2007-6067, CVE-2007-6600, CVE-2007-6601 Resolves: 427135...
Important: libxml2 security update
2.5.10-8.0.1 - Add patch libxml2-enterprise.patch, and other logo changes in tarball 2.5.10-8 - Patch to fix UTF-8 decoding problem CVE-2007-6284 - Resolves: rhbz425930...
Moderate: postgresql security update
7.3.21-1 - Update to PostgreSQL 7.3.21 to fix CVE-2007-6600, CVE-2007-6601 Resolves: 427134...
Moderate: e2fsprogs security update
1.32-15.4 - Fix integer overflows 414611 / CVE-2007-5497...
Critical: tog-pegasus security update
2.6.1-2.el51.1.0.1 - Added pegasus-enterprise.patch to allow detection of enterprise-release 2.6.1-2.el51.1 - Fix PAM authentication buffer overflow CVE-2008-0003 Resolves: 427213...
Important: autofs5 security update
5.0.1-0.rc2.55.el46.2 - Bugzilla Bug 426221: CVE-2007-6285 autofs default doesn't set nodev in /net rhel-4.6.z - use mount option nodev for -hosts map unless dev is explicily specified. - Related: rhbz426221...
Important: autofs security update
5.0.1-0.rc2.55.el5.2 - Bug 426219: CVE-2007-6285 autofs default doesn't set nodev in /net rhel-5.1.z - use mount option nodev for -hosts map unless dev is explicily specified. - Related: rhbz426219...
Important: kernel security and bug fix update
2.6.9-67.0.1.0.1.EL - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach Brown orabug 5760648 2.6.9-67.0.1 -kernel ieee80211 off-by-two integer underflow...
Moderate:libexif security update
0.6.13-4.0.2.el51.1 - Add patch for CVE-2007-6351. Fixes bug 425681 - Add patch for CVE-2007-6352. Fixes bug 425681...
Moderate: thunderbird security update
1.5.0.12-7.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-7 - Add patches for mozilla bugs: 369814,373911,391028,393326,402649,403331...
Moderate: libexif security update
0.5.12-5.1.0.2.el46.1 - Add patch for CVE-2007-6352. Fixes bug 425651...