[RedHat-Announcements] BES Auto Notification: New Fixlets Published
in Fixlet Site: PatchesforRedHatEnterpriseLinux
redhat-announcements at bigmail.bigfix.com
redhat-announcements at bigmail.bigfix.com
Thu Jun 23 02:15:16 PDT 2005
Fixlet Site - PatchesforRedHatEnterpriseLinux
Current Version: 32 Published: Thu, 23 Jun 2005 00:42:14 GMT
***************************************************************
Title: RHSA-2005:232 - Ipsec-Tools Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200523202
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-232.html
Fixlet Description: An updated ipsec-tools package that fixes a bug in parsing of ISAKMP headers is now available. However, this security update requires the package "initscripts" to be installed at a version of at least "7.31.11.EL-1". You must install or upgrade this package in order for this security update to become relevant.
***************************************************************
Title: RHSA-2005:256 - Glibc Security Update - Red Hat Enterprise 3.0
Severity: Low
Fixlet ID: 200525602
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-256.html
Fixlet Description: Updated glibc packages that address several bugs are now available. However, this security update requires the package "shadow-utils" to be installed at a version of at least "4.0.3-20". You must install or upgrade this package in order for this security update to become relevant.
***************************************************************
Title: RHSA-2005:344 - Gtk2 Security Update - Red Hat Enterprise 3.0
Severity: Important
Fixlet ID: 200534402
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-344.html
Fixlet Description: Updated gtk2 packages that fix a double free vulnerability are now available. However, this security update requires the package "librsvg2" to be installed at a version of at least "2.2.3-3". You must install or upgrade this package in order for this security update to become relevant.
***************************************************************
Title: RHSA-2005:357 - Gzip Security Update - Red Hat Enterprise 3.0
Severity: Low
Fixlet ID: 200535701
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-357.html
Fixlet Description: An updated gzip package is now available.Users of gzip should upgrade to this updated package, which contains backported patches to correct these issues.
***************************************************************
Title: RHSA-2005:410 - Gftp Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200541001
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-410.html
Fixlet Description: An updated gFTP package that fixes a directory traversal issue is now available.This update has been rated as having moderate security impact by the Red Hat Security Response Team.A directory traversal bug was found in gFTP. If a user can be tricked into downloading a file from a malicious ftp server, it is possible to overwrite arbitrary files owned by the victim. Users of gftp should upgrade to this updated package, which contains a backported fix for this issue.
***************************************************************
Title: RHSA-2005:415 - Squid Security Update - Red Hat Enterprise 3.0
Severity: Low
Fixlet ID: 200541501
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-415.html
Fixlet Description: An updated squid package that fixes several security issues is now available. Users of Squid should upgrade to this updated package, which containsbackported patches to correct these issues.
***************************************************************
Title: RHSA-2005:474 - Bzip2 Security Update - Red Hat Enterprise 3.0
Severity: Low
Fixlet ID: 200547401
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-474.html
Fixlet Description: Updated bzip2 packages that fix multiple issues are now available.Users of Bzip2 should upgrade to these updated packages, which contain backported patches to correct these issues.
***************************************************************
Title: RHSA-2005:499 - Gedit Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200549901
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-499.html
Fixlet Description: An updated gedit package that fixes a file name format string vulnerability is now available.Users of gEdit should upgrade to this updated package, which contains a backported patch to correct this issue.
***************************************************************
Title: RHSA-2005:502 - Sysreport Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200550201
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-502.html
Fixlet Description: An updated sysreport package that fixes an information disclosure flaw is now available.Users of sysreport should update to this erratum package, which contains a patch that removes any proxy authentication passwords.
***************************************************************
Title: RHSA-2005:504 - Telnet Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200550401
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-504.html
Fixlet Description: Updated telnet packages that fix an information disclosure issue are nowavailable.Users of telnet should upgrade to this updated package, which contains abackported patch to correct this issue.
***************************************************************
Title: RHSA-2005:506 - Mikmod Security Update - Red Hat Enterprise 3.0
Severity: Low
Fixlet ID: 200550601
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-506.html
Fixlet Description: Updated mikmod packages that fix a security issue are now available.This update has been rated as having low security impact by the Red Hat Security Response Team.A buffer overflow bug was found in mikmod during the processing of archive filenames. An attacker could create a malicious archive that when opened by mikmod could result in arbitrary code execution. Users of mikmod are advised to upgrade to these erratum packages, which contain backported security patches and are not vulnerable to these issues.
***************************************************************
Title: RHSA-2005:518 - Gaim Security Update - Red Hat Enterprise 3.0
Severity: Moderate
Fixlet ID: 200551801
Fixlet Link: https://rhn.redhat.com/errata/RHSA-2005-518.html
Fixlet Description: An updated gaim package that fixes two denial of service issues is now available. Users of gaim are advised to upgrade to this updated package, which contains version 1.3.1 and is not vulnerable to these issues.
More information about the RedHat-Announcements
mailing list