Fixlet Site - PatchesforRedHatEnterpriseLinux Current Version: 200 Published: Mon, 02 Jul 2007 23:06:39 GMT *************************************************************** Title: RHBA-2007:0026 - Htdig Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200702601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0026.html Fixlet Description: An updated htdig package that fixes various bugs is now available. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0026 - Htdig Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200702602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0026.html Fixlet Description: An updated htdig package that fix various bugs is now available. Rundig script (/usr/bin/rundig) missed "$opts" on two calls to htfuzzy. Please see bulletin page for more detailed information. Users should upgrade to this updated package, which resolves these issues. *************************************************************** Title: RHBA-2007:0080 - Gcc Bug Fix Update - Red Hat Enterprise 3.0 (ES/WS) (x86_64) (Superseded) Severity: Fixlet ID: 200708002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0080.html Fixlet Description: Note: RHSA-2007:0473 supersedes this errata. Updated GNU Compiler Collection (GCC) packages that use system timezone data in libgcj instead of providing libgcj's own The gcc packages include C, C++, Java, Fortran 77, Objective C, and Ada 95 GNU compilers and related support libraries. These packages provide updated timezone information for libgcj. libgcj previously used its hardcoded simple timezone information. This information was not kept up to date with the system timezone data updates and did not handle historical daylight saving information. Instead, it used the latest applicable daylight saving time changing rule for each timezone as of the time the gcc release branch had been created. These updated packages read the timezone information data from system tzdata package files and are able to handle daylight saving time transitions even for past years. For full details regarding all fixed bugs, refer to the package changelog as well as the specified list of bug reports from bugzilla. All users of gcc should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHEA-2007:0128 - Tzdata Enhancement Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200712802 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0128.html Fixlet Description: A tzdata enhancement, with updates for Nunavut/Resolute, Cuba, Turkey, and Mongolia is now available. This package contains an updated version with the following changes: - Turkey will use EU rules this year, changing at 01:00 UTC rather than 01:00 standard time. - Mongolia has abolished DST. - Cuba observed DST starting Sunday. - Resolute, Nunavut switched from Central to Eastern time last November. Users in affected countries should upgrade to this updated package. *************************************************************** Title: RHBA-2007:0209 - Httpd Bug Fix Update - Red Hat Enterprise 4.0 (x86_64) (Superseded) Severity: Fixlet ID: 200720902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0209.html Fixlet Description: Note: RHSA-2007:0534 supersedes this errata. Updated httpd packages that fix several bugs are now available. The Apache HTTP Server is a popular and freely-available Web server. A race condition was found in the httpd init script. When stopping or restarting the httpd service using the init script, it was possible for the httpd parent process to be terminated before all child processes had exited. This could leave zombie processes. A bug in the handling of malformed response headers could cause a child process crash if using the mod_disk_cache module. A bug in the mod_deflate module could cause corrupt response pages if used to compress responses when configured as a reverse proxy. The logresolve utility was unable to read lines longer the 1024 bytes. Users of the httpd package are advised to upgrade to the updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0217 - Nfs-Utils-Lib Update - Red Hat Enterprise 4.0 Severity: Fixlet ID: 200721701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0217.html Fixlet Description: Updated nfs-utils-lib packages that fix a bug in 64-bit architectures are now available. When attempting to mount an NFS filesystem using kerberos security (sec=krb5 or sec=krb5i), 64-bit architectures would often fail to mount, and gssd would log an error similar to the following: WARNING: can't create rpc_clnt for server host. foo. redhat. com for user with uid 0. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0238 - Krb5 Bug Fix Update - Red Hat Enterprise 4.0 (x86_64) (Superseded) Severity: Fixlet ID: 200723802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0238.html Fixlet Description: Note: RHSA-2007:0562 supersedes this errata. Updated krb5 packages that fix several bugs are now available. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartext passwords. This update addresses the following issues: - Several non-binary files in the krb5-devel package contain information about the target platform for which the package was built. On multilib systems, these files created file-level package conflicts which prevented installation of more than one version of the package on a system. - The krb5_parse_name() function is used to convert the string representation of a Kerberos principal name into a krb5_principal structure. When the string representation of a user's principal did not explicitly include a realm name, krb5_parse_name() used the name of the system's default realm, even if the calling application had previously used the krb5_set_default_realm() function to override this value. - If the krb5_get_init_creds_keytab() function failed to obtain initial credentials using the default KDC, it attempted to contact the master KDC for the realm. If it was unable to locate a master KDC, the error code that it returned indicated that the KDC could not be located, rather than the error that was reported by the KDC that it first contacted. - After successfully authenticating a user and spawning a shell, ksu always reported an error via its exit status, even if the shell exited without indicating an error had occurred. - The kshd daemon erroneously sent a SIGTERM signal to members of its child's process group when reporting that its child had exited. All users of Kerberos V5 should upgrade to these updated packages, which contain backported patches to correct these issues. *************************************************************** Title: RHBA-2007:0272 - Wpa_supplicant Enhancement Update - Red Hat Enterprise 4.0 Severity: Fixlet ID: 200727201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0272.html Fixlet Description: A new wpa_supplicant package that adds connectivity support is now available. When used in combination with kernel and wireless-tools updates, it adds the ability to connect to WPA and WPA2 enabled 802.11 wireless access points. Please see patch page for more detailed information. *************************************************************** Title: RHBA-2007:0304 - Updated Kernel Packages Available for Red Hat Enterprise Linux 4 Update 5 - Red Hat Enterprise 4.0 (x86_64) (Superseded) Severity: Fixlet ID: 200730402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0304.html Fixlet Description: Note: RHSA-2007:0488 supersedes this errata. Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version 4. The Linux kernel handles the basic functions of the operating system. This is the fifth regular update to Red Hat Enterprise Linux 4. New features introduced in this update include: * Xen paravirt kernels for x86/x86_64* * CONFIG_SERIAL_8250_NR_UARTS is increased to 64 * implement diskdump support for sata_nv driver * implement diskdump support for ibmvscsi driver * add netdump support to 8139cp driver * update CIFS to 1.45 Added Platform support: * add support to allow disabling of MSI on PHX6700/6702 SHPC * add support for Intel ICH9 chipset * add PCIe power management quirk * add support for H206 processor PowerNow! with new freqency control * add support for AMD quad-core systems * add support for RDTSCP * add MCE Thresholding support for AMD 0x10 family processors * add PCI-Express support for Altix * add support for eClipz * add new ppc host ethernet adapter device driver * update SHUB2 hardware support The following device drivers have been upgraded to new versions: 3w-9xxx: 2.26.04.010 to 2.26.05.007 ahci: 1.2 to 2.0 ata_piix: 1.05 to 2.00ac7 bnx2: 1.4.38 to 1.4.43-rh bonding: 2.6.3 to 2.6.3-rh cciss: 2.6.10 to 2.6.14 e1000: 7.0.33-k2-NAPI to 7.2.7-k2-NAPI ibmvscsic: 1.5.6 to 1.5.7 ipr: 2.0.11.2 to 2.0.11.4 ixgb: 1.0.100-k2-NAPI to 1.0.109-k2-NAPI libata: 1.20 to 2.00 megaraid_mm: 2.20.2.6 to 2.20.2.6rh megaraid_sas: 00.00.02.03-RH1 to 00.00.03.05 mptbase: 3.02.62.01rh to 3.02.73rh pdc_adma: 0.03 to 0.04 qla2100: 8.01.04-d7 to 8.01.04-d8-rh1 qla2200: 8.01.04-d7 to 8.01.04-d8-rh1 qla2300: 8.01.04-d7 to 8.01.04-d8-rh1 qla2322: 8.01.04-d7 to 8.01.04-d8-rh1 qla2400: 8.01.04-d7 to 8.01.04-d8-rh1 qla2xxx: 8.01.04-d7 to 8.01.04-d8-rh1 qla6312: 8.01.04-d7 to 8.01.04-d8-rh1 r8169: 1.2 to 2.2LK-NAPI sata_mv: 0.6 to 0.7 sata_nv: 0.8 to 3.2 sata_promise: 1.04 to 1.05 sata_qstor: 0.05 to 0.06 sata_sil: 0.9 to 2.0 sata_sis: 0.5 to 0.6 sata_svw: 1.07 to 2.0 sata_sx4: 0.8 to 0.9 sata_uli: 0.5 to 1.0 sata_via: 1.1 to 2.0 sata_vsc: 1.2 to 2.0 sky2: 1.1 to 1.6 stex: 2.9.0.13 to 3.0.0.1 tg3: 3.52-rh to 3.64-rh Infiniband update from 1.0 to OFED-1.1 code base There were several bug fixes in various parts of the kernel. The ongoing effort to resolve these problems has resulted in a marked improvement in the reliability and scalability of Red Hat Enterprise Linux 4. *************************************************************** Title: RHSA-2007:0358 - Squirrelmail Security Update - Red Hat Enterprise 3.0 (noarch) Severity: Moderate Fixlet ID: 200735802 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0358.html Fixlet Description: A new squirrelmail package that fixes security issues is now available for Red Hat Enterprise Linux. Several HTML filtering bugs were discovered in SquirrelMail. An attacker could inject arbitrary JavaScript leading to cross-site scripting attacks by sending an e-mail viewed by a user within SquirrelMail. Please see bulletin page for more detailed information. Users of SquirrelMail should upgrade to this erratum package, which contains a backported patch to correct these issues. *************************************************************** Title: RHSA-2007:0358 - Dependencies Needed - Red Hat Enterprise 3.0 (noarch) Severity: Moderate Fixlet ID: 200735806 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0358.html Fixlet Description: A new squirrelmail package that fixes security issues is now available for Red Hat Enterprise Linux. However, this update requires that the package "php" be installed and at least version "4.3.2-37". *************************************************************** Title: RHSA-2007:0384 - Krb5 Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Critical Fixlet ID: 200738402 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0384.html Fixlet Description: Updated krb5 packages that fix several security flaws are now available for Red Hat Enterprise Linux. An uninitialized pointer free flaw in the RPC library used by kadmind was discovered. A remote unauthenticated attacker who can access kadmind could trigger this flaw and cause kadmind to crash or potentially execute arbitrary code as root. Please see bulletin page for more detailed information. Users of krb5-server are advised to update to these erratum packages which contain backported fixes to correct these issues. *************************************************************** Title: RHSA-2007:0385 - Fetchmail Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200738502 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0385.html Fixlet Description: An updated fetchmail package that fixes a security bug is now available for Red Hat Enterprise Linux. A flaw was found in the way fetchmail processed certain APOP authentication requests. By sending certain responses when fetchmail attempted to authenticate against an APOP server, a remote attacker could potentially acquire certain portions of a user's authentication credentials. Please see bulletin page for more detailed information. All users of fetchmail should upgrade to this updated package, which contains a backported patch to correct this issue. *************************************************************** Title: RHSA-2007:0389 - Quagga Security Update - Red Hat Enterprise 3.0 (AS/ES) (x86_64) Severity: Moderate Fixlet ID: 200738902 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0389.html Fixlet Description: An updated quagga package that fixes a security bug is now available for Red Hat Enterprise Linux. An out of bounds memory read flaw was discovered in Quagga's bgpd. A configured peer of bgpd could cause Quagga to crash, leading to a denial of service. Please see bulletin page for more detailed information. All users of Quagga should upgrade to this updated package, which contains a backported patch to correct these issues. *************************************************************** Title: RHSA-2007:0395 - Mod_perl Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Low Fixlet ID: 200739502 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0395.html Fixlet Description: Updated mod_perl packages that fix a security issue are now available for Red Hat Enterprise Linux. An issue was found in the "namespace_from_uri" method of the ModPerl::RegistryCooker class. If a server implemented a mod_perl registry module using this method, a remote attacker requesting a carefully crafted URI can cause resource consumption, which could lead to a denial of service. Please see bulletin page for more detailed information. Users of mod_perl should update to these erratum packages which contain a backported fix to correct this issue. *************************************************************** Title: RHSA-2007:0395 - Mod_perl Security Update - Red Hat Enterprise 4.0 (x86_64) Severity: Low Fixlet ID: 200739504 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0395.html Fixlet Description: Updated mod_perl packages that fix a security issue are now available for Red Hat Enterprise Linux. An issue was found in the "namespace_from_uri" method of the ModPerl::RegistryCooker class. If a server implemented a mod_perl registry module using this method, a remote attacker requesting a carefully crafted URI can cause resource consumption, which could lead to a denial of service. Please see bulletin page for more detailed information. *************************************************************** Title: RHSA-2007:0402 - Seamonkey Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Critical Fixlet ID: 200740202 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0402.html Fixlet Description: Updated seamonkey packages that fix several security bugs are now available for Red Hat Enterprise Linux. Several flaws were found in the way SeaMonkey processed certain malformed JavaScript code. A web page containing malicious JavaScript code could cause SeaMonkey to crash or potentially execute arbitrary code as the user running SeaMonkey. Please see patch page for more detailed information. Users of SeaMonkey are advised to upgrade to these erratum packages, which contain SeaMonkey version 1.0.9 that corrects these issues. *************************************************************** Title: RHSA-2007:0403 - Freetype Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200740302 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0403.html Fixlet Description: Updated freetype packages that fix a security flaw are now available for Red Hat Enterprise Linux. An integer overflow flaw was found in the way the FreeType font engine processed TTF font files. If a user loaded a carefully crafted font file with a program linked against FreeType, it could cause the application to crash or execute arbitrary code. While it is uncommon for a user to explicitly load a font file, there are several application file formats which contain embedded fonts that are parsed by FreeType. Please see bulletin page for more detailed information. Users of FreeType should upgrade to these updated packages, which contain a backported patch to correct this issue. *************************************************************** Title: RHSA-2007:0406 - OpenOffice.Org Security Update - Red Hat Enterprise 3.0 (i386) Severity: Important Fixlet ID: 200740602 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0406.html Fixlet Description: Updated openoffice. org packages to correct a security issue are now available for Red Hat Enterprise Linux. A heap overflow flaw was found in the RTF import filer. An attacker could create a carefully crafted RTF file that could cause OpenOffice. org to crash or possibly execute arbitrary code if the file was opened by a victim. Please see bulletin page for more detailed information. All users of OpenOffice. org are advised to upgrade to these updated packages, which contain a backported fix to correct this issue. *************************************************************** Title: RHSA-2007:0406 - Dependencies Needed - Red Hat Enterprise 3.0 (i386) Severity: Important Fixlet ID: 200740605 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0406.html Fixlet Description: Updated openoffice. org packages that fix several integer overflow bugs are now available. However, this security update requires at least version "0.5-1" of the i386 package "startup-notification", at least version "1.1.2-35.2.0.EL3" of the i386 package "redhat-artwork", at least version "2.6.2-1" of the i386 package "ORBit2", at least version "2.2.3-1" of the i386 package "libbonobo", at least version "2.2.5-2"" of the i386 package "gnome-vfs2" and at least version "1.0.3-1" of the i386 package "linc". You must install or upgrade these packages in order for this security update to become relevant. *************************************************************** Title: RHBA-2007:0408 - Man-Pages Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200740801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0408.html Fixlet Description: An updated man-pages package that fixes various contradictions is now available. All users should upgrade to this updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0408 - Man-Pages Bug Fix Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200740802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0408.html Fixlet Description: An updated man-pages package that fixes various contradictions is now available. The man-pages package provides man (manual) pages from the Linux Documentation Project. This update fixes several contradictions in various manual pages. All users of man-pages should upgrade to this updated package, which resolves this issue. *************************************************************** Title: RHBA-2007:0408 - Dependency Conflict - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200740803 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0408.html Fixlet Description: An updated man-pages package that fixes various contradictions is now available. However, this update requires that the package "bind-utils" be updated to at least version "9.2.4-EL3_10" *************************************************************** Title: RHBA-2007:0408 - Dependency Conflict - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200740807 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0408.html Fixlet Description: An updated man-pages package that fixes various contradictions is now available. However, the listed computers have the package "bind-utils" installed, less than version "9.2.4-1_EL3" which conflicts with this bug fix. You must uninstall or upgrade this package in order for this bug fix to become relevant. *************************************************************** Title: RHBA-2007:0409 - Psacct Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200740901 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0409.html Fixlet Description: An updated psacct package that works with uid's and gid's greater then 2^16 is available. Users of psacct should upgrade to the updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0409 - Psacct Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200740902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0409.html Fixlet Description: Updated psacct packages that work with uid's and gid's greater then 2^16. Please see bulletin page for more detailed information. Users of psacct should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0410 - Rsh Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741001 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0410.html Fixlet Description: Updated rsh packages that fix a bug are now available. All users of rsh should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0410 - Rsh Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0410.html Fixlet Description: Updated rsh packages that fix a bug are now available. The rlogin utility used incorrect line feeds which could cause a user to be incorrectly challenged when entering their password. Please see bulletin page for more detailed information. All users of rsh should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0411 - Gdm Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741101 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0411.html Fixlet Description: An updated gdm package that fixes several bugs is now available. All users of gdm should upgrade to the updated package, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0411 - Gdm Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741102 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0411.html Fixlet Description: Updated gdm packages that fix several bugs are now available. Reduced logging verbosity of XDMCP subsystem - fixed greeter confusion where it asks for a password instead of username if the Caps Lock key is pressed at the wrong time - fixed a bug where local client connections would be refused after a remote client connection. Please see bulletin page for more detailed information. All users of gdm should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0412 - Mgetty Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0412.html Fixlet Description: An updated mgetty package is now available. Users of mgetty are advised to upgrade to the updated package, which resolves these issues. *************************************************************** Title: RHBA-2007:0412 - Mgetty Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0412.html Fixlet Description: Updated mgetty packages are now available. When going through a shutdown or reboot of the system, mgetty process did not exit nicely and caused the /var partition to not unmount cleanly. Please see patch page for more detailed information. Users of mgetty are advised to upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0413 - Ncompress Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741301 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0413.html Fixlet Description: An updated ncompress package that fixes a problem in compressing zero-sized files is now available. All users of ncompress are advised to upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0413 - Ncompress Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741302 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0413.html Fixlet Description: Updated ncompress packages that fix a problem in compressing zero-sized files are now available. This update resolves an issue which caused compress to create a broken compressed file on IBM zSeries systems. Please see bulletin page for more detailed information. All users of ncompress are advised to upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0414 - Ntp Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0414.html Fixlet Description: An updated ntp package that fixes several bugs is now available. Users of ntp are advised to upgrade to the updated package, which resolves these issues and adds a new option for syncing the hardware clock after a successful run of ntpdate. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0414 - Ntp Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0414.html Fixlet Description: Updated ntp packages that fix several bugs are now available. The ntp daemon could crash with the message "Exiting: No more memory!". Please see bulletin page for more detailed information. Users of ntp are advised to upgrade to these updated packages, which resolve these issues and add a new option for syncing the hardware clock after a successful run of ntpdate. *************************************************************** Title: RHBA-2007:0415 - Rhnlib Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741501 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0415.html Fixlet Description: An updated rhnlib package that fixes various bugs is now available. Users should upgrade to this updated package, which resolve these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0415 - Rhnlib Bug Fix Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200741502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0415.html Fixlet Description: An updated rhnlib package that fixes various bugs is now available. Settimeout attribute error issue is fixed for registration to work. Please see bulletin page for more detailed information. Users should upgrade to this updated package, which resolve these issues. *************************************************************** Title: RHBA-2007:0416 - Autofs Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0416.html Fixlet Description: An updated autofs packages that fixes various bugs are now available. All users of autofs should upgrade to these updated packages to benefit from these fixes. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0416 - Autofs Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0416.html Fixlet Description: Updated autofs packages that fix various bugs are now available. Autofs failed to load maps from an NIS+ server running in NIS compatibility mode. In the event that an automount-managed mount point is hung, it was impossible to restart the automounter to restore functionality. Please see bulletin page for more detailed information. All users of autofs should upgrade to these updated packages to benefit from these fixes. *************************************************************** Title: RHBA-2007:0416 - Dependencies Needed - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741605 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0416.html Fixlet Description: An updated autofs package that fixes various bugs is now available. However, this update requires at least version "2.11y-31.22" of the package "util-linux". You must install or upgrade these packages in order for this update to become relevant. *************************************************************** Title: RHBA-2007:0417 - Updated Quota Package - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0417.html Fixlet Description: An updated quota package that increases the number of supportable outstanding mounted file systems is now available. Users of quota are advised to upgrade to this package, which applies this fix. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0417 - Updated Quota Package - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0417.html Fixlet Description: An updated quota package that increase the number of supportable outstanding mounted file systems is now available. The quota package has been updated to support an indefinite number of mounted file systems. The number of mounted file systems that can be supported is limited only by system memory. Please see bulletin page for more detailed information. Users of quota are advised to upgrade to this package, which applies this fix. *************************************************************** Title: RHBA-2007:0418 - Unzip Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0418.html Fixlet Description: An updated unzip package that addresses various bugs is now available. All users of unzip should upgrade to the updated package, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0418 - Unzip Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0418.html Fixlet Description: Updated unzip packages that address various bugs are now available. A TOCTOU bug that could be exploited to change file permissions. Please see bulletin page for more detailed information. All users of unzip should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0419 - Zlib Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200741901 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0419.html Fixlet Description: Updated zlib packages that fix a memory leak bug are now available. Users should upgrade to these updated packages, which resolve the issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0419 - Zlib Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200741902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0419.html Fixlet Description: Updated zlib packages that fix a memory leak bug are now available. Previous version had a bug in the deflate part of the algorithm which could cause a memory leak. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve the issue. *************************************************************** Title: RHBA-2007:0420 - Procmail Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742001 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0420.html Fixlet Description: An updated procmail package that fixes large file support is now available. Users of procmail are advised to upgrade to the updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0420 - Procmail Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0420.html Fixlet Description: Updated procmail packages that fix large file support are now available. Procmail was unable to deliver mail to mailboxes larger than 2GB on 32-bit architectures. Please see bulletin page for more detailed information. Users of procmail are advised to upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0421 - Dump Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742101 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0421.html Fixlet Description: An updated dump package that fixes a bug is now available. Users should upgrade to the updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0421 - Dump Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742102 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0421.html Fixlet Description: Updated dump packages that fix a bug are now available. Fixed dump crashing when dumping filesystem between 1TB and 2TB. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0422 - Hotplug Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0422.html Fixlet Description: An updated hotplug package is available that fixes a minor issue in the source package. Users should upgrade to this updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0422 - Hotplug Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0422.html Fixlet Description: An updated hotplug package is available that fixes a minor issue in the source package. The hotplug source rpm contained a firmware file which was not freely redistributable; this has been corrected. Please see bulletin page for more detailed information. Users should upgrade to this updated package, which resolves this issue. *************************************************************** Title: RHBA-2007:0422 - Dependencies Needed - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742203 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0422.html Fixlet Description: An updated hotplug package is available that fixes a minor issue in the source package. However, this update requires that the package "initscripts" be installed and at least version "7.31.24.EL". *************************************************************** Title: RHBA-2007:0422 - Dependencies Needed - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742205 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0422.html Fixlet Description: An updated hotplug package that fixes various bugs is now available. However, this update requires at least version "7.31.24.EL" of the package "initscripts". You must install or upgrade these packages in order for this update to become relevant. *************************************************************** Title: RHBA-2007:0423 - Xfree86 Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742301 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0423.html Fixlet Description: Updated XFree86 packages that fix a dependency issue are now available. Users should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0423 - Xfree86 Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742302 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0423.html Fixlet Description: Updated XFree86 packages that fix a dependency issue are now available. Without XFree86-base-fonts installed, the font server would spin at 100% CPU as it needs files provided by that package. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0424 - Chkconfig Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0424.html Fixlet Description: Updated chkconfig packages are now available that fix handling of symbolic links. Users should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0424 - Chkconfig Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0424.html Fixlet Description: Updated chkconfig packages are now available that fix handling of symbolic links. Previously, chkconfig would abort if it encountered a dangling symbolic link in /etc/init. d. This has been corrected; chkconfig now prints an error regarding the dangling link, and continues. Please see patch page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0425 - Vsftpd Bug Fix Update - Red Hat Enterprise 3.0 (AS/ES) Severity: Fixlet ID: 200742501 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0425.html Fixlet Description: An updated vsftpd package that fixes several bugs is now available. All users of vsftpd should upgrade to the updated package, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0425 - Vsftpd Bug Fix Update - Red Hat Enterprise 3.0 (AS/ES) (x86_64) Severity: Fixlet ID: 200742502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0425.html Fixlet Description: Updated vsftpd packages that fix several bugs are now available. When uploading two files with the same name, vsftpd renames one of the files to a unique name. This update resolves a bug that caused vsftpd to create a unique name for all files, whether a file with such a name existed or not. Please see bulletin page for more detailed information. All users of vsftpd should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0426 - Mount Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0426.html Fixlet Description: Updated mount packages that fix various bugs are now available. Users should upgrade to these updated packages, which resolve these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0426 - Mount Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0426.html Fixlet Description: Updated mount packages that fixes various bugs are now available. The mount utility used TCP to communicate with the server's portmapper, even when a UDP mount was specified. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0427 - Gzip Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0427.html Fixlet Description: An updated gzip package that fixes a regression that caused gzip to not uncompress special cases of lzh compressed data is now available. Users should upgrade to the updated package, which fixes this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0427 - Gzip Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0427.html Fixlet Description: Updated gzip packages, that fix a regression that caused gzip to not uncompress special cases of lzh compressed data, are now available. A regression caused gzip not to open some special cases of lzh compressed data archives. Please see patch page for more detailed information. Users should upgrade to these updated packages, which fix this issue. *************************************************************** Title: RHBA-2007:0428 - Pidgin Bug Fix Update (Was Gaim) - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0428.html Fixlet Description: An updated pidgin package that fixes a few bugs and replaces Gaim is now available for Red Hat Enterprise Linux. Users of Gaim or pidgin should upgrade to the updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0428 - Pidgin Bug Fix Update (Was Gaim) - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0428.html Fixlet Description: Updated pidgin packages that fix a few bugs and replace Gaim are now available for Red Hat Enterprise Linux. The Instant Messaging Freedom Corporation has discontinued support for the Gaim client and re-released the software under the Pidgin name due to a legal settlement. Users of Gaim or pidgin should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0429 - Imagemagick Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200742901 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0429.html Fixlet Description: Updated ImageMagick packages that resolve a bug are now available. Please see bulletin page for detailed information. *************************************************************** Title: RHBA-2007:0429 - Imagemagick Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200742902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0429.html Fixlet Description: Updated ImageMagick packages that resolve a bug are now available. An apparent hang when using 'import -frame' and selecting the root window within KDE has been fixed. Users of these applications should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHSA-2007:0430 - OpenLDAP Security and Bug-Fix Update - Red Hat Enterprise 3.0 (AS/ES) (x86_64) Severity: Low Fixlet ID: 200743003 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0430.html Fixlet Description: A updated openldap packages that fix a security flaw and a memory leak bug are now available for Red Hat Enterprise Linux. A flaw was found in the way OpenLDAP handled selfwrite access. Users with selfwrite access were able to modify the distinguished name of any user. Users with selfwrite access should only be able to modify their own distinguished name. Please see patch page for more detailed information. All users are advised to upgrade to this updated openldap package, which contains a backported fix and is not vulnerable to these issues. *************************************************************** Title: RHSA-2007:0430 - OpenLDAP Security and Bug-Fix Update - Red Hat Enterprise 3.0 (WS) (x86_64) Severity: Low Fixlet ID: 200743004 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0430.html Fixlet Description: A updated openldap packages that fix a security flaw and a memory leak bug are now available for Red Hat Enterprise Linux. A flaw was found in the way OpenLDAP handled selfwrite access. Users with selfwrite access were able to modify the distinguished name of any user. Users with selfwrite access should only be able to modify their own distinguished name. Please see bulletin page for more detailed information. All users are advised to upgrade to this updated openldap package, which contains a backported fix and is not vulnerable to these issues. *************************************************************** Title: RHSA-2007:0431 - Shadow-Utils Security and Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Low Fixlet ID: 200743102 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0431.html Fixlet Description: An updated shadow-utils package that fixes a security issue and several bugs is now available. A flaw was found in the useradd tool in shadow-utils. A new user's mailbox, when created, could have random permissions for a short period. This could allow a local attacker to read or modify the mailbox. Please see Bulletin page for more detailed information. All users of shadow-utils are advised to upgrade to this updated package, which contains backported patches to resolve these issues. *************************************************************** Title: RHBA-2007:0432 - Ypbind Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200743201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0432.html Fixlet Description: An updated ypbind package is now available. All users of ypbind should upgrade to this updated package. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0432 - Ypbind Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200743202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0432.html Fixlet Description: An updated ypbind package is now available. This update allows ypbind to log all disconnects from the yp server. Please see bulletin page for more detailed information. All users of ypbind should upgrade to this updated package, which resolves this issue. *************************************************************** Title: RHBA-2007:0433 - Anaconda Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200743302 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0433.html Fixlet Description: Updated anaconda and anaconda-runtime packages that fix various installation bugs are now available. Entering rescue mode resulted in a traceback. RAID on IDE disks for non-i386 platforms was not detected. Please see bulletin page for more detailed information. All users of anaconda should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0434 - Pam_krb5 Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200743401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0434.html Fixlet Description: An updated pam_krb5 package is now available. Users are advised to upgrade to this updated package, which applies these fixes. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0434 - Pam_krb5 Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200743402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0434.html Fixlet Description: An updated pam_krb5 package is now available. When changing a user's password, the module did not inform the user if the password server signaled that an error had occurred (in most cases, that it denied the request). This issue is addressed by this update. Please see bulletin for more detailed information. Users are advised to upgrade to this updated package, which applies these fixes. *************************************************************** Title: RHBA-2007:0435 - Krb5 Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) (Superseded) Severity: Fixlet ID: 200743502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0435.html Fixlet Description: Note: RHSA-2007:0384 supersedes this errata. Updated krb5 packages are now available.When receiving encrypted credentials from a KDC, the Kerberos IV library incorrectly calculated the skew between the client's system clock and that on the KDC, resulting in occasional false error reports in cases where authentication had actually succeeded. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHSA-2007:0436 - Updated Kernel Packages for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (x86_64) Severity: Important Fixlet ID: 200743603 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0436.html Fixlet Description: Updated kernel packages are now available as part of ongoing support and maintenance of Red Hat Enterprise Linux version.This is the ninth regular update. Please see bulletin page for more detailed information. All Red Hat Enterprise Linux 3 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum. *************************************************************** Title: RHBA-2007:0437 - Swig Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200743701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0437.html Fixlet Description: An updated swig package that fixes a bug is now available. Users are advised to upgrade to this updated swig package which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0437 - Swig Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200743702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0437.html Fixlet Description: An updated swig package that fixes a bug is now available. SWIG searched libraries in /usr/lib instead of /usr/lib64 on 64bit architectures. Please see bulletin page for more detailed information. Users are advised to upgrade to this updated swig package which resolves this issue. *************************************************************** Title: RHBA-2007:0438 - Glibc-Kernheaders Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200743801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0438.html Fixlet Description: An updated glibc-kernheaders package which fixes various bugs is now available. Users are advised to upgrade to this updated package which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0438 - Glibc-Kernheaders Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200743802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0438.html Fixlet Description: An updated glibc-kernheaders package which fixes various bugs is now available. Change definition of XTABS on PPC64 to match POSIX. Please see bulletin page for more detailed information. Users are advised to upgrade to this updated package which resolves these issues. *************************************************************** Title: RHEA-2007:0440 - New RPMdb-Redhat Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200744001 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0440.html Fixlet Description: A new rpmdb-redhat package is now available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0440 - New RPMdb-Redhat Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200744002 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0440.html Fixlet Description: A new rpmdb-redhat package is now available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0441 - Hwdata Enhancement Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200744101 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0441.html Fixlet Description: An hwdata package that updates the PCI description tables is now available. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0441 - Hwdata Enhancement Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200744102 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0441.html Fixlet Description: An hwdata package that updates the PCI description tables is now available. This new package updates the pci. ids database used by lspci that matches numeric IDs to descriptive names. Please see patch page for more detailed information. Users of hwdata are advised to upgrade to this updated package. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (AS) Severity: Fixlet ID: 200744201 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (ES) Severity: Fixlet ID: 200744202 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (WS) Severity: Fixlet ID: 200744203 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (AS) (x86_64) Severity: Fixlet ID: 200744204 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (ES) (x86_64) Severity: Fixlet ID: 200744205 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0442 - New Redhat-Release Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (WS) (x86_64) Severity: Fixlet ID: 200744206 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0442.html Fixlet Description: A new redhat-release package is available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (AS) Severity: Fixlet ID: 200744301 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (ES) Severity: Fixlet ID: 200744302 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (WS) Severity: Fixlet ID: 200744303 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (AS) (x86_64) Severity: Fixlet ID: 200744304 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (ES) (x86_64) Severity: Fixlet ID: 200744305 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHEA-2007:0443 - New Comps Package for Red Hat Enterprise Linux 3 Update 9 - Red Hat Enterprise 3.0 (WS) (x86_64) Severity: Fixlet ID: 200744306 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0443.html Fixlet Description: A new comps package is now available for Red Hat Enterprise Linux 3 Update 9. This new package reflects changes made for the release of Red Hat Enterprise Linux 3 Update 9. Users of Red Hat Enterprise Linux 3 should upgrade to this updated package. *************************************************************** Title: RHBA-2007:0444 - Im-Sdk Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200744401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0444.html Fixlet Description: An updated im-sdk packages is now available. Users should upgrade to the updated package. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0444 - Im-Sdk Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200744402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0444.html Fixlet Description: Updated im-sdk packages are now available. IIIMF is a multilingual input method framework for the input of Asian languages. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0445 - Httpd Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) (Superseded) Severity: Fixlet ID: 200744502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0445.html Fixlet Description: Note: RHSA-2007:0533 supersedes this errata. Updated httpd packages that fix several bugs are now available. The mod_expires module prevented Expires headers from being sent in 304 responses. Please see bulletin page for more detailed information. Users of httpd are advised to upgrade to the updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0446 - Net-Tools Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200744601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0446.html Fixlet Description: An updated net-tools package that fixes various bugs is now available. All users of net-tools should upgrade to this updated package, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0446 - Net-Tools Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200744602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0446.html Fixlet Description: An updated net-tools package that fixes various bugs is now available. PID/Program column of netstat is displayed for i-node number larger than 0x7FFFFFFF. Please see bulletin page for more detailed information. All users of net-tools should upgrade to this updated package, which resolves these issues. *************************************************************** Title: RHBA-2007:0447 - OpenSSL Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200744701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0447.html Fixlet Description: Updated OpenSSL packages that improve handling of some CA certificates are now available. Users of openssl should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0447 - OpenSSL Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200744702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0447.html Fixlet Description: Updated OpenSSL packages that improve handling of some CA certificates are now available. The updated OpenSSL packages fix a problem with verification of certificates signed by certain CA certificates. Users of openssl should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0448 - Ypserv Bug Fix Update - Red Hat Enterprise 3.0 (AS/ES) Severity: Fixlet ID: 200744801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0448.html Fixlet Description: An updated ypserv package that fixes various bugs is now available. All users of ypserv should upgrade to the updated packages, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0448 - Ypserv Bug Fix Update - Red Hat Enterprise 3.0 (AS/ES) (x86_64) Severity: Fixlet ID: 200744802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0448.html Fixlet Description: Updated ypserv packages that fix various bugs are now available. Fixed an issue which caused ypserv to segfault under certain circumstances when using the -b/--dns option. Please see bulletin page for more detailed information. All users of ypserv should upgrade to these updated packages, which resolves these issues. *************************************************************** Title: RHBA-2007:0449 - Kdebase Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) (Superseded) Severity: Fixlet ID: 200744902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0449.html Fixlet Description: Note: RHSA-2007:0494 supersedes this errata. Updated kdebase packages that fix several bugs are now available. KDE is a graphical desktop environment for the X Window System. The kdebase packages include core applications for the K Desktop Environment. This erratum includes the following bug fixes: * randr crashed on dual head systems. * set Xkb options if the layouts have been disabled. * kscreensaver/kdm/kcheckpass use a separate PAM config file. * desktop icons were refreshing (blinking) every 5 seconds. KDE users should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0450 - Sg3_utils Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745001 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0450.html Fixlet Description: An updated sg3_utils package that fixes a bug with sg_map is now available. Users of sg3_utils are advised to upgrade to the updated package. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0450 - Sg3_utils Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0450.html Fixlet Description: Updated sg3_utils packages that fix a bug with sg_map are now available. The sg3_utils package contains a collection of tools for SCSI devices that use the Linux SCSI generic (sg) interface. Please see bulletin page for more detailed information. Users of sg3_utils are advised to upgrade to these updated packages. *************************************************************** Title: RHBA-2007:0451 - Raidtools Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745101 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0451.html Fixlet Description: An updated raidtools package that addresses an overflow bug is now available. Users of raidtools should upgrade to the updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0451 - Raidtools Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745102 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0451.html Fixlet Description: Updated raidtools packages that address an overflow bug are now available. While raidtools is deprecated in favor of mdadm and would not normally be updated, there are a few third party applications that make use of raidtools specific programs for gathering information about the software RAID subsystem on linux servers. Please see bulletin page for more detaile dinformation. Users of raidtools should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0452 - Ghostscript Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0452.html Fixlet Description: Updated ghostcript packages that fix a bug are now available. Users are advised to upgrade to these updated ghostscript packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0452 - Ghostscript Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0452.html Fixlet Description: Updated ghostcript packages that fix a bug are now available. A bug was found in handling PDF forms. Please see bulletin page for more detailed information. Users are advised to upgrade to these updated ghostscript packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0453 - Kdegraphics Bugfix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745301 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0453.html Fixlet Description: Updated kdegraphics packages that fix a crash in kdvi are now available. All users of kdegraphics should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0453 - Kdegraphics Bugfix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745302 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0453.html Fixlet Description: Updated kdegraphics packages that fix a crash in kdvi are now available. Fixed kdvi crash on x86_64 plattform. All users of kdegraphics should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0454 - Openipmi Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0454.html Fixlet Description: New OpenIPMI packages that fix a bug in the ipmitool application are now available. All users of OpenIPMI are encouraged to upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0454 - Openipmi Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0454.html Fixlet Description: New OpenIPMI packages that fix a bug in the ipmitool application are now available. The ipmitool application displayed an error when trying to display FRU devices for physical devices. Please see bulletin page for more detailed information. All users of OpenIPMI are encouraged to upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0455 - Kdepim Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745501 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0455.html Fixlet Description: Updated kdepim packages that fix a bug in korganizer are now available. All users of kdepim should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information.s *************************************************************** Title: RHBA-2007:0455 - Kdepim Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0455.html Fixlet Description: Updated kdepim packages that fix a bug in korganizer are now available. Korganizer crashed when viewing . ics files. Please see bulletin page for more detailed information. All users of kdepim should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0456 - Rusers Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0456.html Fixlet Description: Updated rusers packages that fix a bug with rstatd segfaulting while reading large /proc/partitions are now available. All users of rstatd are advised to upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0456 - Rusers Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0456.html Fixlet Description: Updated rusers packages that fix a bug with rstatd segfaulting while reading large /proc/partitions are now available. This update fixes a bug with rstatd which segfaulted when more than 4 disks were installed in the system. Please see bulletin page for more detailed information. All users of rstatd are advised to upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0457 - Redhat-Config-Date Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0457.html Fixlet Description: An updated redhat-config-date package with an up to date configuration template is now available. Users of redhat-config-date are advised to upgrade to this updated package. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0457 - Redhat-Config-Date Bug Fix Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200745702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0457.html Fixlet Description: An updated redhat-config-date package with an up to date configuration template is now available. If /etc/ntp. conf was missing, redhat-config-date used an outdated template to start with. This updated package contains an updated template, which corrects this issue. Please see bulletin page for more detailed inforamtion. Users of redhat-config-date are advised to upgrade to this updated package. *************************************************************** Title: RHBA-2007:0458 - Net-Snmp Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0458.html Fixlet Description: Updated net-snmp packages that fix various bugs are now available. All users of net-snmp should upgrade to these updated packages, which resolve these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0458 - Net-Snmp Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0458.html Fixlet Description: Updated net-snmp packages that fix various bugs are now available. The idle ticks counter no longer overflows. Please see bulletin page for more detailed information. All users of net-snmp should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0458 - Dependencies Needed - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745803 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0458.html Fixlet Description: Updated net-snmp packages that fix various bugs are now available. However, this update requires that the package "elfutils-libelf-devel" be installed and at least version "0.91-3". Additionally, these package must be updated to at least version "5.0.9-2.30E.12" for each architecture for which they are installed: * "net-snmp" * "net-snmp-libs" * "net-snmp-devel" * "net-snmp-perl" * "net-snmp-utils" *************************************************************** Title: RHBA-2007:0458 - Dependency Conflict - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745805 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0458.html Fixlet Description: Updated net-snmp packages that fix various bugs are now available. However, this update requires the following three to be satisfied before you can install this update due to conflicts: 1. Version "0.90-14" of package "hpoj" must be removed or if it is installed; 2. package "elfutils-libelf-devel" must be installed if package "net-snmp-devel" is installed; 3. Package "net-snmp-libs" must be installed. You must install or upgrade or remove these packages in order for this bug fix to become relevant. *************************************************************** Title: RHBA-2007:0459 - Laus Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200745901 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0459.html Fixlet Description: Updated laus packages that fix several bugs are now available. Users are advised to upgrade to these updated packages, which resolve these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0459 - Laus Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200745902 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0459.html Fixlet Description: Updated laus packages that fix several bugs are now available. An appropriately privileged user (CAP_SYS_ADMIN) could perform various control actions on the audit system with an ioctl() on /dev/audit. One of these was the ability to detach a process from the audit system. Such control events were not audited. Please see bulletin page for more detailed information. Users are advised to upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0460 - Ami Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746001 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0460.html Fixlet Description: An updated ami package that fixes a bug is now available. All users of ami are advised to upgrade to this updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0460 - Ami Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0460.html Fixlet Description: An updated ami package that fixes a bug is now available.This update fixes an ami bug that prevented a user from determining the IM status for AMI. Please see bulletin page for more detailed information. All users of ami are advised to upgrade to this updated package, which resolves this issue. *************************************************************** Title: RHEA-2007:0461 - New Pam_ccreds Package - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746101 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0461.html Fixlet Description: New pam_ccreds package were added to the Red Hat Enterprise Linux 3 distribution. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0461 - New Pam_ccreds Packages - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746102 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0461.html Fixlet Description: New pam_ccreds packages were added to the Red Hat Enterprise Linux 3 distribution. The updated pam_ccreds module provides support for caching authentication credentials for cases when the primary source of authentication credentials is unavailable. The module must be properly configured in PAM configuration files to be utilized for authentication. Please see bulletin page for more detailed information. Users requiring the updated caching authentication credentials capabilities should install this newly released package, which adds this enhancement. *************************************************************** Title: RHBA-2007:0462 - OpenSSH Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0462.html Fixlet Description: Updated openssh packages that fix a bug in scp are now available for Red Hat Enterprise Linux. All users of openssh should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0462 - OpenSSH Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0462.html Fixlet Description: Updated openssh packages that fix a bug in scp are now available for Red Hat Enterprise Linux 3. If the ssh server presented a banner to a client, this banner was always displayed when running the scp command. The '-q' option of scp command did not suppress this banner. Please see bulletin page for more detailed information. All users of openssh should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0463 - Redhat-Config-Network Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746301 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0463.html Fixlet Description: Updated redhat-config-network packages that fix a bug are now available for Red Hat Enterprise Linux. All users of redhat-config-network should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0463 - Redhat-Config-Network Bug Fix Update - Red Hat Enterprise 3.0 (noarch) Severity: Fixlet ID: 200746302 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0463.html Fixlet Description: Updated redhat-config-network packages that fix a bug are now available for Red Hat Enterprise Linux. An exception occured when switching profiles. Please see patch page for more detailed information. All users of redhat-config-network should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0464 - Mailman Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0464.html Fixlet Description: An updated mailman that fixes a bug is now available. All users using mailman should upgrade to this updated package. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0464 - Mailman Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0464.html Fixlet Description: An updated mailman that fixes a bug is now available. This update fixes a bug, where configured spam rules were deleted by other actions. Please see bulletin page for more detailed information. All users using mailman should upgrade to this updated package. *************************************************************** Title: RHSA-2007:0465 - Pam Security and Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200746502 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0465.html Fixlet Description: Updated pam packages that resolves several bugs and security flaws are now available for Red Hat Enterprise Linux. A flaw was found in the way the Linux kernel handled certain SG_IO commands. Console users with access to certain device files had the ability to damage recordable CD drives. The way pam_console handled permissions of these files has been modified to disallow access. This change also required modifications to the cdrecord application. Please see bulletin page for more detailed information. All users of PAM should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHEA-2007:0466 - Iproute Enhancement Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746601 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0466.html Fixlet Description: Updated iproute packages able to tune the initial congestion window are now available. Please see bulletin page for detailed information. *************************************************************** Title: RHEA-2007:0466 - Iproute Enhancement Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746602 Fixlet Link: https://rhn.redhat.com/errata/RHEA-2007-0466.html Fixlet Description: Updated iproute packages able to tune the initial congestion window are now available. The ability to set up the initial congestion window was added. Please see bulletin page for more detailed information. Users of iproute are advised to upgrade to these updated packages. *************************************************************** Title: RHBA-2007:0467 - RPM Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0467.html Fixlet Description: Updated rpm packages that fix various issues are now available. Users should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0468 - Python Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200746801 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0468.html Fixlet Description: Updated python packages that fix multiple bugs are now available. Users should apply this update, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0468 - Python Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200746802 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0468.html Fixlet Description: Updated python packages that fix multiple bugs are now available. This update fixes the handling of symlink loops with the os. path. realpath function, and corrects the library path as reported in python distutils. Please see bulletin page for more detailed information. Users should apply this update, which resolves these issues. *************************************************************** Title: RHSA-2007:0469 - Gdb Security and Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Low Fixlet ID: 200746902 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0469.html Fixlet Description: An updated gdb package that fixes a security issue and various bugs is now available. Various buffer overflows and underflows were found in the DWARF expression computation stack in GDB. If an attacker could trick a user into loading an executable containing malicious debugging information into GDB, they may be able to execute arbitrary code with the privileges of the user. Please see bulletin page for more detailed information. All users of gdb should upgrade to this updated package, which contains backported patches to resolve these issues. *************************************************************** Title: RHBA-2007:0470 - Redhat-Config-Printer Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747001 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0470.html Fixlet Description: Updated redhat-config-printer packages that fix a bug are now available. Users should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0470 - Redhat-Config-Printer Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747002 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0470.html Fixlet Description: Updated redhat-config-printer packages that fix a bug are now available. The textonly filter did not support printing multiple copies of a file. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0471 - Glibc Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747101 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0471.html Fixlet Description: Updated glibc packages that address several bugs are now available. All users of glibc should upgrade to these updated packages, which apply these fixes. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0471 - Glibc Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747102 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0471.html Fixlet Description: Updated glibc packages that address several bugs are now available. Please see bulletin page for detailed information. All users of glibc should upgrade to these updated packages, which apply these fixes. *************************************************************** Title: RHBA-2007:0471 - Dependencies Needed - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747105 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0471.html Fixlet Description: An updated autofs package that fixes various bugs is now available. However, this update requires at least version "4.0.3-20" of the package "glibc". You must install or upgrade these packages in order for this update to become relevant. *************************************************************** Title: RHBA-2007:0472 - Sed Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747201 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0472.html Fixlet Description: A sed update, with fixes in handling of escape sequences, is now available. This update is recommended for all sed users. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0472 - Sed Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747202 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0472.html Fixlet Description: A sed update, with fixes in handling of escape sequences, is now available. With this update, handling of escape sequences in 'y' command, in single-byte locales, was fixed. Please see bulletin page for more detailed information. This update is recommended for all sed users. *************************************************************** Title: RHSA-2007:0473 - Gcc Security and Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200747302 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0473.html Fixlet Description: Updated gcc packages that fix a security issue and another bug are now available. A directory traversal flaw in fastjar was discovered. An attacker could create a malicious JAR file which, if unpacked using fastjar, could write to any files the victim had write access to. Please see bulletin page for more detailed information. All users of gcc should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHSA-2007:0473 - Dependencies Needed - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200747303 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0473.html Fixlet Description: Updated gcc packages that fix a security issue and another bug are now available. However, this update requires that the package "binutils" be installed and at least version "2.14.90.0.4-42". *************************************************************** Title: RHBA-2007:0474 - Coreutils Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747401 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0474.html Fixlet Description: An updated coreutils package that fixes several bugs is now available. Users are advised to upgrade to the updated package, which resolves these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0474 - Coreutils Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747402 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0474.html Fixlet Description: Updated coreutils packages that fix several bugs are now available. The sort command ignored the -S buffer size option when run as part of a pipeline. Please see bulletin page for more detailed information. Users are advised to upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0475 - CUPS Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747501 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0475.html Fixlet Description: Updated CUPS packages that fix several problems are now available. Users should upgrade to these updated packages, which resolve these issues. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0475 - CUPS Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747502 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0475.html Fixlet Description: Updated CUPS packages that fix several problems are now available. A bug causes class failover not to work. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve these issues. *************************************************************** Title: RHBA-2007:0476 - IMAP Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747601 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0476.html Fixlet Description: Updated imap packages that fix a bug are now available. Users should upgrade to these updated packages, which resolve this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0476 - IMAP Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747602 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0476.html Fixlet Description: Updated imap packages that fix a bug are now available. This update resolves a bug that occurred when multiple IMAP processes attempted to access the same user mailbox. When this happened, the process owning the mailbox lock hung in a deadlock state and all other IMAP processes denied access to the mailbox in question. Please see bulletin page for more detailed information. Users should upgrade to these updated packages, which resolve this issue. *************************************************************** Title: RHBA-2007:0477 - Gnome-Session Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200747701 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0477.html Fixlet Description: An updated gnome-session package that fixes a bug is now available. All users of gnome-session should upgrade to this updated package, which resolves this issue. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0477 - Gnome-Session Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200747702 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0477.html Fixlet Description: An updated gnome-session package that fixes a bug is now available. Logout "closing iris" animation looked incorrect on multi-head setups. Please see bulletin page for more detailed information. All users of gnome-session should upgrade to this updated package, which resolves this issue. *************************************************************** Title: RHSA-2007:0488 - Kernel Security Update - Red Hat Enterprise 4.0 (x86_64) Severity: Important Fixlet ID: 200748802 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0488.html Fixlet Description: Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available. Please see bulletin page for more detailed information. All Red Hat Enterprise Linux 4 users are advised to upgrade their kernels to the packages associated with their machine architectures and configurations as listed in this erratum. *************************************************************** Title: RHSA-2007:0488 - Dependencies Needed - Red Hat Enterprise 4.0 (x86_64) Severity: Important Fixlet ID: 200748803 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0488.html Fixlet Description: Updated kernel packages that fix several security issues and bugs in the Red Hat Enterprise Linux 4 kernel are now available. However, this update requires that the package "mkdinitrd" be installed and at least version "4.2.1.6-1". *************************************************************** Title: RHBA-2007:0491 - Up2date Bug Fix Update - Red Hat Enterprise 3.0 Severity: Fixlet ID: 200749101 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0491.html Fixlet Description: Updated up2date packages that fix regression bugs are now available. Please see bulletin page for more detailed information. *************************************************************** Title: RHBA-2007:0491 - Up2date Bug Fix Update - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200749102 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0491.html Fixlet Description: Updated up2date packages that fix regression bugs are now available. This update provides the following fixes: * up2date correctly installs packages through activation key with already installed packages in list. *************************************************************** Title: RHBA-2007:0491 - Dependencies Needed - Red Hat Enterprise 3.0 (x86_64) Severity: Fixlet ID: 200749103 Fixlet Link: https://rhn.redhat.com/errata/RHBA-2007-0491.html Fixlet Description: Updated up2date packages that fix regression bugs are now available. However, this update requires that the package "rhnlib" be installed and at least version "1.8.7" as well as the package "rpm" at or above version "4.2.3-24". *************************************************************** Title: RHSA-2007:0494 - Kdebase Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Important Fixlet ID: 200749402 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0494.html Fixlet Description: Updated kdebase packages that resolve an interaction security issue with Adobe Flash Player are now available. A problem with the interaction between the Flash Player and the Konqueror web browser was found. The problem could lead to key presses leaking to the Flash Player applet instead of the browser. Users of Konqueror who have installed the Adobe Flash Player plugin should upgrade to these updated packages, which contain a patch provided by Dirk Müller that protects against this issue. *************************************************************** Title: RHSA-2007:0494 - Dependencies Needed - Red Hat Enterprise 3.0 (x86_64) Severity: Important Fixlet ID: 200749407 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0494.html Fixlet Description: Updated kdebase packages that resolve an interaction security issue with Adobe Flash Player are now available. However, this update requires that the package "XFree86-xfs" be installed and at least version "4.3.0-98" and the package "kdelibs" be installed and at least version "3.1.3-6.6". *************************************************************** Title: RHSA-2007:0509 - Evolution Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Important Fixlet ID: 200750902 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0509.html Fixlet Description: Updated evolution packages that fix a security bug are now available for Red Hat Enterprise Linux. A flaw was found in the way Evolution processes certain IMAP server messages. If a user can be tricked into connecting to a malicious IMAP server it may be possible to execute arbitrary code as the user running evolution. Please see bulletin page for more detailed information. All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue. *************************************************************** Title: RHSA-2007:0509 - Evolution Security Update - Red Hat Enterprise 4.0 (x86_64) Severity: Important Fixlet ID: 200750904 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0509.html Fixlet Description: Updated evolution packages that fix a security bug are now available for Red Hat Enterprise Linux. A flaw was found in the way Evolution processes certain IMAP server messages. If a user can be tricked into connecting to a malicious IMAP server it may be possible to execute arbitrary code as the user running evolution. All users of Evolution should upgrade to these updated packages, which contain a backported patch which resolves this issue. *************************************************************** Title: RHSA-2007:0533 - Httpd Security Update - Red Hat Enterprise 3.0 (x86_64) Severity: Moderate Fixlet ID: 200753302 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0533.html Fixlet Description: Updated Apache httpd packages that correct security issues and bugs are now available for Red Hat Enterprise Linux. A flaw was found in the Apache HTTP Server mod_status module. On sites where the server-status page is publicly accessible and ExtendedStatus is enabled this could lead to a cross-site scripting attack. On Red Hat Enterprise Linux the server-status page is not enabled by default and it is best practice to not make this publicly available. Please see bulletin page for more detailed information. Users of httpd should upgrade to these updated packages, which contain backported patches to correct these issues. Users should restart Apache after installing this update. *************************************************************** Title: RHSA-2007:0534 - Httpd Security Update - Red Hat Enterprise 4.0 (x86_64) Severity: Moderate Fixlet ID: 200753402 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0534.html Fixlet Description: Updated Apache httpd packages that correct two security issues are now available for Red Hat Enterprise Linux. A flaw was found in the Apache HTTP Server mod_status module. On sites where the server-status page is publicly accessible and ExtendedStatus is enabled this could lead to a cross-site scripting attack. Please see bulletin page for more detailed information. Users of httpd should upgrade to these updated packages, which contain backported patches to correct these issues. Users should restart Apache after installing this update. *************************************************************** Title: RHSA-2007:0534 - Dependencies Needed - Red Hat Enterprise 4.0 (x86_64) Severity: Moderate Fixlet ID: 200753403 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0534.html Fixlet Description: Updated Apache httpd packages that correct two security issues are now available for Red Hat Enterprise Linux. However, this update requires that the package "apr" be installed and at least version "0.9.4-24.2" as well as the package "initscripts" be installed and at least version "7.93.26.EL-1". *************************************************************** Title: RHSA-2007:0562 - Krb5 Security Update - Red Hat Enterprise 4.0 (x86_64) Severity: Important Fixlet ID: 200756202 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0562.html Fixlet Description: Updated krb5 packages that fix several security flaws are now available for Red Hat Enterprise Linux. David Coffey discovered an uninitialized pointer free flaw in the RPC library used by kadmind. On Red Hat Enterprise Linux 4 and 5, glibc detects attempts to free invalid pointers. A remote unauthenticated attacker who can access kadmind could trigger this flaw and cause kadmind to crash. Please see bulletin page for more detailed information. Users of krb5-server are advised to update to these erratum packages which contain backported fixes to correct these issues. *************************************************************** Title: RHSA-2007:0605 - Helixplayer Security Update - Red Hat Enterprise 4.0 (i386) Severity: Critical Fixlet ID: 200760502 Fixlet Link: https://rhn.redhat.com/errata/RHSA-2007-0605.html Fixlet Description: An updated HelixPlayer package that fixes a buffer overflow flaw is now available. A buffer overflow flaw was found in the way HelixPlayer processed Synchronized Multimedia Integration Language (SMIL) files. It was possible for a malformed SMIL file to execute arbitrary code with the permissions of the user running HelixPlayer. Please see bulletin page for more detailed information. All users of HelixPlayer are advised to upgrade to this updated package, which contains a backported patch and is not vulnerable to this issue.