9157 matches found
Important: php security update
4.3.9-3.22.3 - add security fix for CVE-2007-0988 4.3.9-3.22.2 - add security fixes for CVE-2007-0906, CVE-2007-0907, CVE-2007-0908, CVE-2007-0909, CVE-2007-0910 4.3.9-3.22.1 - update oci8 build from upstream Bastien Nocera, 162241 - add conditionally patch for lib64 oci8 build Xixi D'Moon, 17396...
Moderate: ImageMagick security update
6.0.7.1-16.0.3 - update fix for CVS-2006-5456 6.0.7.1-16.0.2 - more security issues 217558, CVE-2006-5868; 192278, CVE-2006-2440 6.0.7.1-16.0.1 - fix more overflows 210921...
Moderate: samba security update
3.0.10-1.4E.11 - Fix regression in smb.init found by rpmdiff Resolves: rhbz225513: CVE-2007-0452 Samba smbd denial of service 3.0.10-1.4E.10 - Include backported patch from upstream Resolves: rhbz225513: CVE-2007-0452 Samba smbd denial of service...
Moderate: dbus security update
0.22-12EL.8 - CVE-2006-6107: D-Bus denial of service - Resolves: 218055...
Moderate: postgresql security update
7.4.16-1.RHEL4.1 - Update to PostgreSQL 7.4.16 to fix CVE-2007-0555 Resolves: 225493...
Moderate: bind security update
20:9.2.4-24.EL4 - fixed a multilib regression 20:9.2.4-22.EL4 - added fix for 225222: CVE-2007-0494 BIND dnssec denial of service 20:9.2.4-20.EL4 - fix bug 203070: rndc.conf change breaks working bind config - fix bug 204288: postinstall scriptlet sets wrong permission 0655 20:9.2.4-18.EL4 - fix...
Moderate: squirrelmail security update
1.4.8-4.el4.1 - remove banners 1.4.8-4 - Clean up .orig files 223648 1.4.8-3 - CVE-2006-6142...
Moderate: fetchmail security update
6.2.5-6.el4.5 - Fix a KPOP support regression Related: 221985 223661 6.2.5-6.el4.4 - Fix V2,V3,V4 of CAN-2006-5867 Resolves: 221985 6.2.5-6.el4.3 - Fix CAN-2005-4348 176266 - Add BuildRequires: gettext-devel 164351 6.2.5-6.el4.1 - Fix CAN-2005-2335 163816, patch by Ludwig Nussel...
Important: kernel security update
2.6.0-42.0.8.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.0-42.0.8 -fix ext2 readdir fpos revalidation logic David Milburn 193877 2.6.9-42.0.7 -re-spin 2.6.9-42.0.6 -x8664: increase nmi watchdog timeout from 5 to 30 seconds Larry Woodman 205 722 2.6.9-42.0.5...
Moderate: gtk2 security update
2.4.13-22 - Fix a problem with the pixbuf loader closing patch 2.4.13-21 - Make update scripts handle slight variations in 2.4.13-20 - Fix error handling in pixbuf loaders 218932, CVE-2007-0010 -------------- next part -------------- An HTML attachment was scrubbed... URL:...
Moderate: libgsf security update
1.10.1-2 - Resolves: rhbz217949 CVE-2006-4514...
Important: xorg-x11 security update
6.8.2-1.EL.13.37.5.1 - Add oracle detection to Imake and xprint 6.8.2-1.EL.13.37.5 - Add xorg-x11-6.8.2-sorted-xkbcomp-dirs.patch to fix rpmdiff multilib failure. 6.8.2-1.EL.13.37.4 - Add xorg-x11-server-CVE-2006-6101.patch. 218871...
Important openoffice.org security update
1.1.5-6 - ensure correct permissions 1.1.5-5 - Resolves: rhbz217347 CVE-2006-5780 WMF heap overflow ooo70042 Known Issue: bz 2005: May get kde error message when exiting ooimpress and oodraw appears to be an existing problem See http://bugzilla.oracle.com for more details...
Moderate tar security update
1.14-12.RHEL4 - fix CVE-2006-6097 GNU tar directory traversal 216937 1.14-11.RHEL4 - fix verbose output 192770...
Critical firefox security update
1.5.0.9-0.1.el4.1 - Replace default bookmarks and prefs 1.5.0.9-0.1.el4 - Update to 1.5.0.9 RC - Update the pango patches to support mathml and various other fixes. - Let Firefox handle gcc warnings; it weeds out frequent offenders...
Critical seamonkey security update
1.0.7-0.1.el4.1 - Replace default bookmarks and prefs 1.0.7-0.1.el4 - Update to 1.0.7 RC...
Critical thunderbird security update
1.5.0.9-0.1.el4.1 - Replace default bookmarks and prefs 1.5.0.9-0.1.el4 - Update to 1.5.0.9 RC - Update the pango patches to support mathml and various fixes. - Let Thunderbird handle gcc warnings; it weeds out frequent offenders...
Low mod_auth_kerb security update
5.0-1.3.el4 - add fix for CVE-2006-5989 Nalin Dahyabhai, 216482...
Important gnupg security update
1.2.6-8 - incorporate patch from Werner to fix use of stack variable after it goes out of scope CVE-2006-6235, 218480 1.2.6-7 - add patch for overflow in openfile.c from Werner's mail CVE-2006-6169...
Critical firefox security update
1.5.0.8-0.1.1.el4 - Replace default-bookmarks.html and default-prefs.js 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
Critical seamonkey security update
1.0.6-0.1.1.el4 - Replace bookmarks and prefs 1.0.6-0.1.el4 - Update to 1.0.6 RC 1.0.5-0.1.el4 - Update to 1.0.5...
Critical thunderbird security update
1.5.0.8-0.1.1.el4 - defaults changed to oracle... 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.2 - Fix the launcher and icons 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
Critical seamonkey security update
1.0.6-0.1.1.el4 - Replace bookmarks and prefs 1.0.6-0.1.el4 - Update to 1.0.6 RC 1.0.5-0.1.el4 - Update to 1.0.5...
Critical firefox security update
1.5.0.8-0.1.1.el4 - Replace default-bookmarks.html and default-prefs.js 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
Moderate gnupg security update
1.2.6-6 - backport fixes for two more malloc overflows from 1.4.5rc1 200502...
Critical thunderbird security update
1.5.0.8-0.1.1.el4 - defaults changed to oracle... 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.2 - Fix the launcher and icons 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
Moderate wireshark security update
0.99.4-EL4.1.1 - Oracle OCFS2 network patch 0.99.4-1 - upgrade to 0.99.4, fixes multiple security issues 211993 - use dist tag - CVE-2006-5468 - The HTTP dissector could dereference a null pointer. - CVE-2006-5469 - The WBXML dissector could crash. - CVE-2006-5470 - The LDAP dissector and possibl...
Moderate wireshark security update
0.99.4-EL4.1.1 - Oracle OCFS2 network patch 0.99.4-1 - upgrade to 0.99.4, fixes multiple security issues 211993 - use dist tag - CVE-2006-5468 - The HTTP dissector could dereference a null pointer. - CVE-2006-5469 - The WBXML dissector could crash. - CVE-2006-5470 - The LDAP dissector and possibl...
Moderate wireshark security update
0.99.4-EL4.1.1 - Oracle OCFS2 network patch 0.99.4-1 - upgrade to 0.99.4, fixes multiple security issues 211993 - use dist tag - CVE-2006-5468 - The HTTP dissector could dereference a null pointer. - CVE-2006-5469 - The WBXML dissector could crash. - CVE-2006-5470 - The LDAP dissector and possibl...
Critical thunderbird security update
1.5.0.8-0.1.1.el4 - defaults changed to oracle... 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.2 - Fix the launcher and icons 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
Critical firefox security update
1.5.0.8-0.1.1.el4 - Replace default-bookmarks.html and default-prefs.js 1.5.0.8-0.1.el4 - Update to 1.5.0.8 RC 1.5.0.7-0.1.el4 - Update to 1.5.0.7 1.5.0.5-0.el4.1 - Update to 1.5.0.5...
python security update
2.3.4-14.2 - Fixed bug 166335, CVE-2005-2491 - PCRE heap overflow 2.3.4-14.1 - Fixed security issue in SimpleXMLRPCServer.py 146649...
Important openssl security update
0.9.7a-43.14 - fix CVE-2006-2937 - mishandled error on ASN.1 parsing 207276 - fix CVE-2006-2940 - parasitic public keys DoS 207274 - fix CVE-2006-3738 - buffer overflow in SSLgetsharedciphers 206940 - fix CVE-2006-4343 - sslv2 client DoS 206940 0.9.7a-43.11 - fix CVE-2006-4339 - prevent attack on...
Low openssh security update
3.9p1-8.RHEL4.17.1 - CVE-2006-5794 properly detect failed key verify in monitor 21640...
Moderate texinfo security update
4.7-5.el4.2 - Fix CVE-2006-4810 211484 4.7-5.el4.1 - Fix CAN-2005-3011 169583...
Moderate ruby security update
1.8.1-7.EL4.8 - BR tcl-devel and tk-devel instead of tcl and tk. 1.8.1-7.EL4.7 - security fix release. - ruby-1.8.1-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212237 1.8.1-7.EL4.6 - security fixes CVE-2006-3694 - fixed the insecure operations on Di...
Moderate ruby security update
1.8.1-7.EL4.8 - BR tcl-devel and tk-devel instead of tcl and tk. 1.8.1-7.EL4.7 - security fix release. - ruby-1.8.1-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212237 1.8.1-7.EL4.6 - security fixes CVE-2006-3694 - fixed the insecure operations on Di...
Moderate mailman security update
3:2.1.5.1-34.rhel4.5 - fixed CVE-2006-3636 bug 198344 3:2.1.5.1-34.rhel4.4 - added patches to fix CVE-2006-2941 bug 198344...
Important gnutls security update
1.0.20-3.2.3 - detect forged signatures - CVE-2006-4790 206411, patch backported from upstream...
Moderate gzip security update
1.3.3-16.rhel4 - fix bug 204676 patches by Tavis Ormandy - cve-2006-4334 - null dereference problem - cve-2006-4335 - buffer overflow problem - cve-2006-4336 - buffer underflow problem - cve-2006-4338 - infinite loop problem - cve-2006-4337 - buffer overflow problem...
Low ncompress security update
4.2.4-43.rhel4 - display statistics when compressing 0 length files 189215 - fix return code when compressing 0 length files 189216 4.2.4-42.rhel4 - fix bss buffer underflow CVE-2006-1168 201335...
Critical kdelibs security update
:3.3.1-6.1 - Remove Version branding - Maximum rpm trademark logos removed pics/crystalsvg/mime-rpm 6:3.3.1-6.RHEL4 - add missing buildreq 6:3.3.1-5.RHEL4 - backport patch to fix integer overflow flaw CVE-2006-4811, bz210742 thank to Dirk M??ller...
Moderate ImageMagick security update
6.0.7.1-16 - fix more integer overflows 202771, CVE-2006-4144 6.0.7.1-15 - fix several integer and buffer overflows 202193, CVE-2006-3743...
kdegraphics security update
7:3.3.1-3.9 - apply xpdf-splash-overflow-CVE-2006-0301-fix.diff to fix CVE-2006-0301 184307 7:3.3.1-3.8 - apply xpdf-splash-overflow-CVE-2006-0301-fix.diff to fix CVE-2006-0301 179055 7:3.3.1-3.7 - apply patch to fix buffer overflow issue in the xpdf codebase when handling splash images...
Critical elinks security update
0.9.2-3.3 - fix 215731 - elinks smb protocol arbitrary file access...
Moderate qt security update
3.3.3-10.RHEL4 - backport fix for 211829, CVE-2006-4811 qt integer overflow...
Moderate nss_ldap security update
226-17 - temporarily disable fixes for 190256 and 206438 for security update 226-16 - include backported fix for off-by-one crasher in various result parsing functions Carsten Clashom, 206438 226-15 - don't suppress policy errors encountered during authentication if the specific policy error isn'...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
Important kernel security update
2.6.9-42.0.3.0.2 -rebuilt for EL 2.6.9-42.0.3.0.1 -Fix bonding primary=ethX so it picks correct network IT 101532 ORA 5136660 2.6.9-42.0.3 -fix mprotect to not allow permission subversion Jason Baron 190073 CVE-2006-2071 -fix sysperfmonctl file descriptor reference count issue Anil Keshavamurthy...
Moderate squirrelmail security update
1.4.8-2.1 - remove banners 1.4.8-2 - more Japanese filename fixes 195639 1.4.8-1 - 1.4.8 release with CVE-2006-4019 and upstream bug fixes 1.4.7-5 - More JP translation updates 194598 1.4.7-4 - Fix fatal typo in configlocal.php 198306 1.4.7-2 - Move sqspellconfig.php to /etc and mark it...