9157 matches found
Important: perl security update
5.8.5-36.el45.2.0.1 - Added patch perl-5.8.5-OEL-mock-build.patch to disable test lib/Net/t/hostname.t, so that mock build succeeds 5.8.5-36.el4.2 - Resolves: bug323791 - fix previous patch 5.8.5-36.el4.1 - Resolves: bug323791 - fix regular expression UTF parsing errors...
Critical: pcre security update
6.6-2.1 - Resolves: 315951, CVE-2007-1659, CVE-2007-1660 6.6-1.2 - Resolves: 315951, CVE-2007-1659, CVE-2007-1660...
Important: kernel security update
2.6.9-55.0.12.0.1 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix for nfs open call taking longer issue Chuck Lever orabug 5580407 bz 219412 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach...
Important: cups security and bug fix update
1.2.4-11.14.el51.1 - Applied patch to fix CVE-2007-4351 STR 2561, bug 353981. 1.2.4-11.14 - Applied patch to fix cupsd crash when failing to open a file: URI STR 2351, bug 250415. 1.2.4-11.13 - Moved LSPP security attributes check before job creation bug 231522. 1.2.4-11.12 - Moved LSPP access...
Important:kernel security update
2.6.18-8.1.15.0.1.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.15.el5 - dlm A TCP connection to DLM port blocks DLM operations Patrick Caulfield 245922 CVE-2007-3380 - ppc 4k page mapping support for...
Moderate: libpng security update
1.2.7-3.el45.1 - Back-port critical fixes from libpng 1.2.22, primarily to fix CVE-2007-5269 Resolves: 337501 - Update License tag and some other obsolete bits in specfile 1.0.16-3.el45.1 - Back-port critical fixes from libpng 1.0.30, primarily to fix CVE-2007-5269 Resolves: 337561...
Important: flac security update
1.1.0-7.el4.2 - Add RHEL-5 patch to remove execstack requirement Related: rhbz 332591 1.1.0-7.el4.1 - Add patch from Takashi Iwai to fix CVE-2007-4619 Resolves: rhbz 332591...
Moderate: openssl security update
0.9.7a-33.24 - CVE-2007-3108 remove conditionals in BNdiv, BNmod and final Montgomery reduction 250579 - CVE-2007-5135 off by one buffer overflow in SSLgetsharedciphers 309841...
Moderate: thunderbird security update
1.5.0.12-0.5.el4.0.1 - Add thunderbird-oracle-default-prefs.js for errata rebuild 1.5.0.12-0.5.el3 - Update to latest snapshot of Mozilla 1.8.0 branch 1.5.0.12-0.4.el3 - added pathes for Mozilla bugs 199088,267833,309322,345305,361745,...
Critical: firefox security update
1.5.0.12-0.7.el4.0.1 - Add firefox-oracle-default-bookmarks.html and firefox-oracle-default-prefs.js for errata rebuild 1.5.0.12-0.7.el4 - Update to latest snapshot of Mozilla 1.8.0 branch 1.5.0.12-0.6.el4 - added pathes for Mozilla bugs 325761 and 392149 1.5.0.12-0.5.el4 - added pathes for Mozil...
Critical: seamonkey security update
1.0.9-0.5.el3.0.1 - Added default Oracle URLs 1.0.9-0.5.el3 - Update to latest snapshot of Mozilla 1.8.0 branch 1.0.9-0.4.el3 - added pathes for Mozilla bugs 267833,309322,345305,361745, 362901,372309,378787,381300,384105,386914,387033,387881,388121,388784 390078,393537,395942,325761,392149...
Important: openssl security update
0.9.8b-8.3.2 - more DTLS fixes 321211 0.9.8b-8.3.1 - fix CVE-2007-3108 - side channel attack on private keys 322891 - fix CVE-2007-5135 - off-by-one in SSLgetsharedciphers 309871 - fix CVE-2007-4995 - out of order DTLS fragments buffer overflow 321211...
Important: hplip security update
1.6.7-4.1.el50.3 - Fixed post scriptlet to make sure it restarts the daemon on upgrade part of bug 320011. 1.6.7-4.1.el50.2 - Build requires openssl-devel part of bug 320011. 1.6.7-4.1.el50.1 - Applied patch to fix CVE-2007-5208 bug 320011...
Moderate: kdebase security update
3.3.1-6.el4.0.1 - turn off ' 3.3.1-6.l4 - Resolves: 290851, CVE-2007-4569, kdm password-less login vulnerability CVE-2007-3820, CVE-2007-4224 CVE-2007-4225, Konqueror address bar spoofin...
Moderate: kdelibs security update
3.5.4-13.el5.0.1 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/-mime-rpm 3.5.4-13.el5 - Resolves: 293571 CVE-2007-0537 Konqueror improper HTML comment rendering CVE-2007-1564 FTP protocol PASV design flaw affects konqueror 3.5.4-12.el5 - resolves: 293421,...
Moderate: elinks security update
0.9.2-3.3.5.2 - fix elinks-0.9.2-httpspostdata.patch 303881 0.9.2-3.3.5.1 - fix 297611 - CVE-2007-5034 elinks reveals POST data to HTTPS proxy 0.9.2-3.3 - fix 215731 - elinks smb protocol arbitrary file access...
Important: xen security update
3.0.3-25.0.4.el5 - QEmu cirrus bitblit bounds check - CVE-2007-1320 rhbz 296271 - QEmu NE2000 overflow check - CVE-2007-1321 rhbz 296271 - Pygrub guest escape - CVE-2007-4993 rhbz 302821...
Important: nfs-utils-lib security update
1.0.8-7.2.z2 - Updated libnfsidmap to -17 to fix a security issue bz 254041 1.0.8-7.2.z1 - Fixed RPC library buffer overflow bz 265061...
Important: kernel security update
2.6.18-8.1.14.0.2.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.14.el5 - Revert changes back to 2.6.18-8.1.10. - x8664 Zero extend all registers after ptrace in 32bit entry path Anton Arapov 297871...
Important: kernel security update
2.6.9-55.0.9.0.1 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix for nfs open call taking longer issue Chuck Lever orabug 5580407 bz 219412 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach...
Important: kernel security update
2.4.21-52.EL - Validate all 64bits of ptrace information...
Moderate: php security update
4.3.2-43.ent - improve fix for CVE-2007-3996 278361 4.3.2-42.ent - add security fixes for CVE-2007-2509, CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658 278361...
Moderate: tomcat security update
5.5.23-0jpp.3.0.2 - Patch for CVE-2007-3382 and CVE-2007-3385 Resolves: rhbz254155 5.5.23-0jpp.3.0.1 - Patch for CVE-2007-3386 Resolves: rhbz254155...
Moderate: gimp security update
1.2.3-20.9.el3 - validate bytesperline header field when loading PCX files 247570 1.2.3-20.8.el3 - reduce GIMPMAXIMAGESIZE to 2^18 to detect bogus image widths/heights 247570 1.2.3-20.7.el3 - replace gimperror by gimpmessage/gimpquit in a few plugins so they don't crash but gracefully exit when...
Moderate: php security update
5.1.6-15.el5 - improve fix for CVE-2007-3997 278411 5.1.6-14.el5 - fix backport for CVE-2007-3996 278411 5.1.6-13.el5 - add security fixes for CVE-2007-2756, CVE-2007-2872, CVE-2007-3799, CVE-2007-3996, CVE-2007-3998, CVE-2007-4658, CVE-2007-4670 278411...
Important: nfs-utils-lib security update
1.0.6-8.z1 - Fixed RPC library buffer overflow bz 265001...
Moderate: xorg-x11 security update
6.8.2-1.EL.31.0.1 - Add Enterprise Linux detection 6.8.2-1.EL.31 - Rebuild due to missing patch 6.8.2-1.EL.30 - Add patch9832 -p1 -b .cve-2007-4730 286081...
Important:libvorbis security update
1.0-8.el3 - Add 16 patches to fix various CVEs. - Resolves: 245995...
Important: openoffice.org security update
1.1.5-10.0.2 - Resolves: rhbz251972 CVE-2007-2834 TIFF parsing heap overflow...
Important: kernel security update
2.6.18-8.1.10.0.1.el5 - Fix bonding primary=ethX Bert Barbe IT 101532 ORA 5136660 - Add entropy module option to e1000/bnx2 John Sobecki ORA 6045759 2.6.18-8.1.10.el5 - mm Prevent the stack growth into hugetlb reserved regions Konrad Rzeszutek 253313 CVE-2007-3739 2.6.18-8.1.9.el5 - misc cpuset...
Important: qt security update
3.3.6-23 - Resolves: 277011, Qt UTF8 improper character expansion, CVE-2007-0242 - Resolves: 269141, Qt off by one buffer overflow, CVE-2007-413...
Important: krb5 security update
1.5-29 - update to revised patch for CVE-2007-3999...
Moderate: kernel security and bugfix update
2.6.9-55.0.6.0.1 - fix entropy flag in bnx2 driver to generate entropy pool John Sobecki orabug 5931647 - fix for nfs open call taking longer issue Chuck Lever orabug 5580407 bz 219412 - fix enomem due to larger mtu size page alloc Zach Brown orabug 5486128 - fix percpu api bugon with rds Zach...
Moderate: cyrus-sasl security update
2.1.15-15 - Changed spec file to include the mech patch all the time. - Added patch to prevent printing null realm - Applied existing mech for 1.5 to 2.1 Related: rhbz189814 2.1.15-14 - temporarily back out the fixes for 157012, 190113 2.1.15-13 - add unapplied patches which make the DIGEST-MD5...
Moderate: cyrus-sasl security and bug fix update
2.1.19-14 - Related: bz250732 Fixed a conflict with an earlier test patch 2.1.19-13 - Related: bz250732 Fixed uninitialized stack variable causing segfault 2.1.19-12 - Resolves: bz250732 sasl-sample-server crashes with null realm 2.1.19-11 - Resolves: bz243910 krb5-libs are not thread-safe -...
Moderate: star security update
1.5a08-5 - fix directory traversal vulnerability CVE-2007-4134 - Resolves: rhbz254130...
Moderate: aide security update
0.13.1-2.0.4 - Added the correct new config file Related: rhbz252331 0.13.1-2.0.3 - Fixed file permissions to please release criteria Related: rhbz252331 0.13.1-2.0.2 - Removed saved copies of patched scripts Related: rhbz252331 0.13.1-2 - Fixed a typo Related: rhbz252331 0.13.1-1 - Rebased to...
Important: krb5 security update
1.5-28 - add preliminary patch to fix buffer overflow in rpcsecgss implementation in libgssrpc 250973, CVE-2007-3999 and write through uninitialized pointer in kadmind 250976, CVE-2007-4000...
Important: mysql security update
4.1.20-2.RHEL4.1.0.1 - Fix CVE-2007-3780: remote DOS via bad password length byte Resolves: 257621 - Workaround for new gcc bug on ia64: it locks up while compiling sqltable.cc...
Moderate: tar security update
1.14-12.5.1.RHEL4 - CVE-2007-4131 tar directory traversal vulnerability 251921...
Moderate: kernel security and bugfix update
2.4.21-51.EL - properly initialized e1000 ESB2 NIC RX unit Andy Gospodarek - fix e1000: ESB2 register value causes an rlogin problem Vince Worthington - fix bluetooth setsockopt information leaks Don Howard - fix overflow in CAPI subsystem Don Howard...
Moderate: gdm security and bug fix update
2.16.0-31.0.1 - CVE-2007-3381 Resolves: 247659 2.16.0-31 - change 200d character to 200c character in ml.po...
Moderate: libgtop2 security update
2.8.0-1.0.2 - Update mapfix.patch to get rid of spurious newlines. Related: 249884 2.8.0-1.0.1 - Add mapfix.patch Resolves: 208265, 249884 async errata + 4.6...
Important: tetex security update
2.0.2-22.0.1.EL4.8 - backport upstream fix for xpdf integer overflow CVE-2007-3387 248207 Resolves: 248207...
Moderate: qt security update
3.3.3-11.RHEL4 - Resolves: bz248419, CVE-2007-3388 qt3 format string flaw...
Important: cups security update
1.1.22-0.rc1.9.20.2 - Better patch for CVE-2007-3387 bug 248220. 1.1.22-0.rc1.9.20.1 - Applied patch to fix CVE-2007-3387 bug 248220...
Important: poppler security update
0.5.4-4.1 - Add patch to fix CVE-2007-3387 248212...
Important: xpdf security update
3.00-12.RHEL4 - Resolves: bz248199, CVE-2007-3387 xpdf integer overflow...
Important: gpdf security update
2.8.2-7.7 - Add patch to fix CVE-2007-3387 248204. 2.8.2-7.6 - Apply fix for CVE-2006-0301 bug 179053...
Important: kdegraphics security update
3.3.1-4.RHEL4 - Resolves: bz248215, CVE-2007-3387 xpdf integer overflow...