Stay Vigilant with Timely Linux Security Advisories

security advisorymoderateaccess restrictions

RedHat RHSA-2019-4090:01 Moderate OpenShift 4.1 libseccomp-golang Update

An update for openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshift-enterprise-hypershift-container, openshift-enterprise-node-container, and ose-cli-artifacts-container is now. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: OpenShift Container Platform 4.1 libseccomp-golang security update Advisory ID: RHSA-2019:4090-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2019:4090 Issue date: 2019-12-17 CVE Names: CVE-2017-18367 ==================================================================== 1. Summary: An update for openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshift-enterprise-hypershift-container, openshift-enterprise-node-container, and ose-cli-artifacts-container is now available for Red Hat OpenShift Container Platform 4.1. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Description: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. Security Fix(es): * libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions (CVE-2017-18367) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 3. Solution: For OpenShift Container Platform 4.1 see the following documentation, which will be updated shortly for release 4.1.27, for important instructions on how to upgrade your cluster and fully apply thisasynchronous errata update: https://docs.redhat.com/en/documentation/openshift_container_platform/4.1/html/release_notes/ocp-4-1-release-notes Details on how to access this content are available at - -cli.html. 4. Bugs fixed (https://bugzilla.redhat.com/): 1706826 - CVE-2017-18367 libseccomp-golang: mishandling of multiple argument rules leading to a bypass of intended access restrictions 5. References: https://access.redhat.com/security/cve/CVE-2017-18367 https://access.redhat.com/security/updates/classification/#moderate 6. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXfiGktzjgjWX9erEAQgp1Q/9EjtQiNa09je9qHH3h84SR7I4BzQGyqlk AkCrnrtFRWxbYocLgbK4GW772h5j8XvjXNExMDjjxYkPWqjlqYkTc0CJPHt77lwz gRFPFfYex3dxgmflf23S5UK0GPQegzx4e1IOO4cHLzy/0MCLue2LOEEvw+b3z9VO L6mz8Bw9hTiuLiuzzkC5Yrn1IguIz2y3xsX+KNqrU43a60OS34ErJwwnx72tf3nT +Kqop+yN8RceJX5fYWIt13el7pUQM+vsXDnfyNvZ469tbAN8u9n4BSTIFanLFsRy WadY5SvYLtfwlOlrCg19b6HBVS0Om3Ov6fp4sh9H8BLqc+BHFFfL2nGF4lp2cUJ+ mnn0spXr1EOMowSQ7l5xAevfql8XBCpkKPICVWScqXfk/LivvGCccmxoQu5zcTwP lhcgl61MasoAKhI7GiOTTKHU4gr3R5g44c985GdhyDYeW9YvKVeBvKs3IAlUoSPX 1506J7TJNVmdlnRRCU36Y5UU4z4QW8pINxfn1ZXhmNxNBrDCpG1ur1EePElLz90A qheFY2p71BbivzKp/ahVK3Ay9bPVFJ4OOXUhnALGVRgg59NMgfoYZ2mRBJcenKHy ZmetMLVG4xqQou9q6cUienxLLQH/4+2SlFNQoROTERy89WYrLe1iIwZuTyDWOCFZ tR0RN1pGARA=B1rm -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ====================================================. update, openshift-enterprise-cli-container, openshift-enterprise-hyperkube-container, openshif. . LinuxSecurity.com Team

Dec 17, 2019 Red Hat

security advisorycode executioninformation disclosure

ArchLinux: ASA-201709-1 Critical: Code Execution and Access Risks

The package chromium before version 61.0.3163.79-1 is vulnerable to multiple issues including arbitrary code execution, access restriction bypass, information disclosure and silent downgrade. . Arch Linux Security Advisory ASA-201709-1 ======================================== Severity: Critical Date : 2017-09-06 CVE-ID : CVE-2017-5111 CVE-2017-5112 CVE-2017-5113 CVE-2017-5114 CVE-2017-5115 CVE-2017-5116 CVE-2017-5117 CVE-2017-5118 CVE-2017-5119 CVE-2017-5120 Package : chromium Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-391 Summary ====== The package chromium before version 61.0.3163.79-1 is vulnerable to multiple issues including arbitrary code execution, access restriction bypass, information disclosure and silent downgrade. Resolution ========= Upgrade to 61.0.3163.79-1. # pacman -Syu "chromium> =61.0.3163.79-1" The problems have been fixed upstream in version 61.0.3163.79. Workaround ========= None. Description ========== - CVE-2017-5111 (arbitrary code execution) A use-after-free vulnerability has been found in the PDFium component of the Chromium browser < 61.0.3163.79. - CVE-2017-5112 (arbitrary code execution) A heap-based buffer overflow vulnerability has been found in the WebGL component of the Chromium browser < 61.0.3163.79. - CVE-2017-5113 (arbitrary code execution) A heap-based buffer overflow vulnerability has been found in the Skia component of the Chromium browser < 61.0.3163.79. - CVE-2017-5114 (arbitrary code execution) A memory lifecycle vulnerability has been found in the PDFium component of the Chromium browser < 61.0.3163.79. - CVE-2017-5115 (arbitrary code execution) A type confusion vulnerability has been found in the V8 component of the Chromium browser < 61.0.3163.79. - CVE-2017-5116 (arbitrary code execution) A type confusion vulnerability has been found in the V8 component of the Chromium browser < 61.0.3163.79. - CVE-2017-5117(information disclosure) A use of initialized value issue has been found in the Skia component of the Chromium browser < 61.0.3163.79. - CVE-2017-5118 (access restriction bypass) A content security policy bypass vulnerability has been found in the Blink component of the Chromium browser < 61.0.3163.79. - CVE-2017-5119 (information disclosure) A use of initialized value issue has been found in the Skia component of the Chromium browser < 61.0.3163.79. - CVE-2017-5120 (silent downgrade) A potential issue leading to HTTPS downgrade during redirect navigation has been found in the Chromium browser < 61.0.3163.79. Impact ===== A remote attacker can access sensitive information, bypass the content security policy, force a downgrade from HTTPS to HTTP and execute arbitrary code on the affected host. References ========= https://chromereleases.googleblog.com/2017/09/stable-channel-update-for-desktop.html https://bugs.chromium.org/p/chromium/issues/detail?id=737023 https://bugs.chromium.org/p/chromium/issues/detail?id=740603 https://bugs.chromium.org/p/chromium/issues/detail?id=747043 https://bugs.chromium.org/p/chromium/issues/detail?id=752829 https://bugs.chromium.org/p/chromium/issues/detail?id=744584 https://bugs.chromium.org/p/chromium/issues/detail?id=759624 https://bugs.chromium.org/p/chromium/issues/detail?id=739190 https://bugs.chromium.org/p/chromium/issues/detail?id=747847 https://bugs.chromium.org/p/chromium/issues/detail?id=725127 https://bugs.chromium.org/p/chromium/issues/detail?id=718676 https://security.archlinux.org/CVE-2017-5111 https://security.archlinux.org/CVE-2017-5112 https://security.archlinux.org/CVE-2017-5113 https://security.archlinux.org/CVE-2017-5114 https://security.archlinux.org/CVE-2017-5115 https://security.archlinux.org/CVE-2017-5116 https://security.archlinux.org/CVE-2017-5117 https://security.archlinux.org/CVE-2017-5118 https://security.archlinux.org/CVE-2017-5119 https://security.archlinux.org/CVE-2017-5120 . DebianSecurity Advisory DSA-2023-007 identifies severe vulnerabilities in firefox prior to version 93.0-1.. Arch Linux, Chromium Security, Code Execution, Access Restrictions. . Severity: Critical. LinuxSecurity.com Team

Sep 06, 2017 •Critical ArchLinux

security advisorydenial of servicecritical

SUSE: 2016:1690-1 Important: Kernel Security Updates and Fixes

An update that solves 29 vulnerabilities and has 89 fixes An update that solves 29 vulnerabilities and has 89 fixes An update that solves 29 vulnerabilities and has 89 fixes is now available. is now available.. SUSE Security Update: Security update for the Linux Kernel ______________________________________________________________________________ Announcement ID: SUSE-SU-2016:1690-1 Rating: important References: #676471 #880007 #889207 #899908 #903279 #928547 #931448 #940413 #943989 #944309 #945345 #947337 #953233 #954847 #956491 #956852 #957805 #957986 #960857 #962336 #962846 #962872 #963193 #963572 #963762 #964461 #964727 #965319 #966054 #966245 #966573 #966831 #967251 #967292 #967299 #967903 #968010 #968141 #968448 #968512 #968667 #968670 #968687 #968812 #968813 #969439 #969571 #969655 #969690 #969735 #969992 #969993 #970062 #970114 #970504 #970506 #970604 #970892 #970909 #970911 #970948 #970955 #970956 #970958 #970970 #971049 #971124 #971125 #971126 #971159 #971170 #971360 #971600 #971628 #971947 #972003 #972174 #972844 #972891 #972933 #972951 #973378 #973556 #973570 #973855 #974165 #974308 #974406 #974418 #974646 #975371 #975488 #975533 #975945 #976739 #976868 #977582 #977685 #978401 #978822 #979169 #979213 #979419 #979485 #979548 #979867 #979879 #980348 #980371 #981143 #981344 #982354 #982698 #983213 #983318 #983394 #983904 #984456 Cross-References: CVE-2014-9717 CVE-2015-8816 CVE-2015-8845 CVE-2016-0758 CVE-2016-2053 CVE-2016-2143 CVE-2016-2184 CVE-2016-2185 CVE-2016-2186 CVE-2016-2188 CVE-2016-2782 CVE-2016-2847 CVE-2016-3134 CVE-2016-3136 CVE-2016-3137 CVE-2016-3138 CVE-2016-3139 CVE-2016-3140 CVE-2016-3156 CVE-2016-3672 CVE-2016-3689 CVE-2016-3951 CVE-2016-4482 CVE-2016-4486 CVE-2016-4565 CVE-2016-4569 CVE-2016-4578 CVE-2016-4805 CVE-2016-5244 Affected Products: SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Desktop 12 ______________________________________________________________________________ An update that solves 29 vulnerabilities and has 89 fixes is now available. Description: The SUSE Linux Enterprise 12 kernel was updated to 3.12.60 to receive various security and bugfixes. The following security bugs were fixed: - CVE-2014-9717: fs/namespace.c in the Linux kernel processes MNT_DETACH umount2 system called without verifying that the MNT_LOCKED flag is unset, which allowed local users to bypass intended access restrictions and navigate to filesystem locations beneath a mount by calling umount2 within a user namespace (bnc#928547). - CVE-2015-8816: The hub_activate function in drivers/usb/core/hub.c in the Linux kernel did not properly maintain a hub-interface data structure, which allowed physically proximate attackers to cause a denial of service (invalid memory access and system crash) or possibly have unspecified other impact by unplugging a USB hub device (bnc#968010). - CVE-2015-8845: The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel on powerpc platforms did not ensure that TM suspend mode exists before proceeding with a tm_reclaim call, which allowed local users to causea denial of service (TM Bad Thing exception and panic) via a crafted application (bnc#975533). - CVE-2016-0758: Fix ASN.1 indefinite length object parsing (bsc#979867). - CVE-2016-2053: The asn1_ber_decoder function in lib/asn1_decoder.c in the Linux kernel allowed attackers to cause a denial of service (panic) via an ASN.1 BER file that lacks a public key, leading to mishandling by the public_key_verify_signature function in crypto/asymmetric_keys/public_key.c (bnc#963762). - CVE-2016-2143: The fork implementation in the Linux kernel on s390 platforms mishandled the case of four page-table levels, which allowed local users to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted application, related to arch/s390/include/asm/mmu_context.h and arch/s390/include/asm/pgalloc.h. (bnc#970504) - CVE-2016-2184: The create_fixed_stream_quirk function in sound/usb/quirks.c in the snd-usb-audio driver in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference or double free, and system crash) via a crafted endpoints value in a USB device descriptor (bnc#971125). - CVE-2016-2185: The ati_remote2_probe function in drivers/input/misc/ati_remote2.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#971124). - CVE-2016-2186: The powermate_probe function in drivers/input/misc/powermate.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970958). - CVE-2016-2188: The iowarrior_probe function in drivers/usb/misc/iowarrior.c in the Linux kernel allowed physically proximate attackers to cause a denial ofservice (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970956). - CVE-2016-2782: The treo_attach function in drivers/usb/serial/visor.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact by inserting a USB device that lacks a (1) bulk-in or (2) interrupt-in endpoint (bnc#968670). - CVE-2016-2847: fs/pipe.c in the Linux kernel did not limit the amount of unread data in pipes, which allowed local users to cause a denial of service (memory consumption) by creating many pipes with non-default sizes (bnc#970948). - CVE-2016-3134: The netfilter subsystem in the Linux kernel did not validate certain offset fields, which allowed local users to gain privileges or cause a denial of service (heap memory corruption) via an IPT_SO_SET_REPLACE setsockopt call (bnc#971126). - CVE-2016-3136: The mct_u232_msr_to_state function in drivers/usb/serial/mct_u232.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted USB device without two interrupt-in endpoint descriptors (bnc#970955). - CVE-2016-3137: drivers/usb/serial/cypress_m8.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both an interrupt-in and an interrupt-out endpoint descriptor, related to the cypress_generic_port_probe and cypress_open functions (bnc#970970). - CVE-2016-3138: The acm_probe function in drivers/usb/class/cdc-acm.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a USB device without both a control and a data endpoint descriptor (bnc#970911). -CVE-2016-3139: The wacom_probe function in drivers/input/tablet/wacom_sys.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970909). - CVE-2016-3140: The digi_port_init function in drivers/usb/serial/digi_acceleport.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (NULL pointer dereference and system crash) via a crafted endpoints value in a USB device descriptor (bnc#970892). - CVE-2016-3156: The IPv4 implementation in the Linux kernel mishandled destruction of device objects, which allowed guest OS users to cause a denial of service (host OS networking outage) by arranging for a large number of IP addresses (bnc#971360). - CVE-2016-3672: The arch_pick_mmap_layout function in arch/x86/mm/mmap.c in the Linux kernel did not properly randomize the legacy base address, which made it easier for local users to defeat the intended restrictions on the ADDR_NO_RANDOMIZE flag, and bypass the ASLR protection mechanism for a setuid or setgid program, by disabling stack-consumption resource limits (bnc#974308). - CVE-2016-3689: The ims_pcu_parse_cdc_data function in drivers/input/misc/ims-pcu.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (system crash) via a USB device without both a master and a slave interface (bnc#971628). - CVE-2016-3951: Double free vulnerability in drivers/net/usb/cdc_ncm.c in the Linux kernel allowed physically proximate attackers to cause a denial of service (system crash) or possibly have unspecified other impact by inserting a USB device with an invalid USB descriptor (bnc#974418). - CVE-2016-4482: The proc_connectinfo function in drivers/usb/core/devio.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory via a crafted USBDEVFS_CONNECTINFO ioctl call (bnc#978401). - CVE-2016-4486: The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory by reading a Netlink message (bnc#978822). - CVE-2016-4565: The InfiniBand (aka IB) stack in the Linux kernel incorrectly relied on the write system call, which allowed local users to cause a denial of service (kernel memory write operation) or possibly have unspecified other impact via a uAPI interface (bnc#979548). - CVE-2016-4569: The snd_timer_user_params function in sound/core/timer.c in the Linux kernel did not initialize a certain data structure, which allowed local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface (bnc#979213). - CVE-2016-4578: sound/core/timer.c in the Linux kernel did not initialize certain r1 data structures, which allowed local users to obtain sensitive information from kernel stack memory via crafted use of the ALSA timer interface, related to the (1) snd_timer_user_ccallback and (2) snd_timer_user_tinterrupt functions (bnc#979879). - CVE-2016-4805: Use-after-free vulnerability in drivers/net/ppp/ppp_generic.c in the Linux kernel allowed local users to cause a denial of service (memory corruption and system crash, or spinlock) or possibly have unspecified other impact by removing a network namespace, related to the ppp_register_net_channel and ppp_unregister_channel functions (bnc#980371). - CVE-2016-5244: Fixed an infoleak in rds_inc_info_copy (bsc#983213). The following non-security bugs were fixed: - ALSA: hrtimer: Handle start/stop more properly (bsc#973378). - ALSA: timer: Call notifier in the same spinlock (bsc#973378). - ALSA: timer: Protectthe whole snd_timer_close() with open race (bsc#973378). - ALSA: timer: Sync timer deletion at closing the system timer (bsc#973378). - ALSA: timer: Use mod_timer() for rearming the system timer (bsc#973378). - Btrfs-8394-qgroup-Account-data-space-in-more-proper-timin.patch: (bsc#963193). - Btrfs: do not collect ordered extents when logging that inode exists (bsc#977685). - Btrfs: do not use src fd for printk (bsc#980348). - Btrfs: fix deadlock between direct IO reads and buffered writes (bsc#973855). - Btrfs: fix empty symlink after creating symlink and fsync parent dir (bsc#977685). - Btrfs: fix file loss on log replay after renaming a file and fsync (bsc#977685). - Btrfs: fix file/data loss caused by fsync after rename and new inode (bsc#977685). - Btrfs: fix for incorrect directory entries after fsync log replay (bsc#957805, bsc#977685). - Btrfs: fix loading of orphan roots leading to BUG_ON (bsc#972844). - Btrfs: fix race between fsync and lockless direct IO writes (bsc#977685). - Btrfs: fix unreplayable log after snapshot delete + parent dir fsync (bsc#977685). - Btrfs: handle non-fatal errors in btrfs_qgroup_inherit() (bsc#972951). - Btrfs: qgroup: Fix dead judgement on qgroup_rescan_leaf() return value (bsc#969439). - Btrfs: qgroup: Fix qgroup accounting when creating snapshot (bsc#972933). - Btrfs: qgroup: return EINVAL if level of parent is not higher than child's (bsc#972951). - Btrfs: teach backref walking about backrefs with underflowed offset values (bsc#975371). - CacheFiles: Fix incorrect test for in-memory object collision (bsc#971049). - CacheFiles: Handle object being killed before being set up (bsc#971049). - Ceph: Remove racey watch/notify event infrastructure (bsc#964727) - Driver: Vmxnet3: set CHECKSUM_UNNECESSARY for IPv6 packets (bsc#976739). - FS-Cache: Add missing initialization of ret in cachefiles_write_page() (bsc#971049). - FS-Cache:Count culled objects and objects rejected due to lack of space (bsc#971049). - FS-Cache: Fix cancellation of in-progress operation (bsc#971049). - FS-Cache: Handle a new operation submitted against a killed object (bsc#971049). - FS-Cache: Move fscache_report_unexpected_submission() to make it more available (bsc#971049). - FS-Cache: Out of line fscache_operation_init() (bsc#971049). - FS-Cache: Permit fscache_cancel_op() to cancel in-progress operations too (bsc#971049). - FS-Cache: Put an aborted initialised op so that it is accounted correctly (bsc#971049). - FS-Cache: Reduce cookie ref count if submit fails (bsc#971049). - FS-Cache: Synchronise object death state change vs operation submission (bsc#971049). - FS-Cache: The operation cancellation method needs calling in more places (bsc#971049). - FS-Cache: Timeout for releasepage() (bsc#971049). - FS-Cache: When submitting an op, cancel it if the target object is dying (bsc#971049). - FS-Cache: fscache_object_is_dead() has wrong logic, kill it (bsc#971049). - Fix cifs_uniqueid_to_ino_t() function for s390x (bsc#944309) - Fix kabi issue (bsc#971049). - Fix kmalloc overflow in LPFC driver at large core count (bsc#969690). - Fix problem with setting ACL on directories (bsc#967251). - Input: i8042 - lower log level for "no controller" message (bsc#945345). - KVM: SVM: add rdmsr support for AMD event registers (bsc#968448). - MM: increase safety margin provided by PF_LESS_THROTTLE (bsc#956491). - NFSv4.1: do not use machine credentials for CLOSE when using "sec=sys" (bsc#972003). - PCI/AER: Fix aer_inject error codes (bsc#931448). - PCI/AER: Log actual error causes in aer_inject (bsc#931448). - PCI/AER: Log aer_inject error injections (bsc#931448). - PCI/AER: Use dev_warn() in aer_inject (bsc#931448). - Revert "libata: Align ata_device's id on a cacheline". - Revert "net/ipv6: add sysctl option accept_ra_min_hop_limit". - USB: quirk tostop runtime PM for Intel 7260 (bnc#984456). - USB: usbip: fix potential out-of-bounds write (bnc#975945). - USB: xhci: Add broken streams quirk for Frescologic device id 1009 (bnc#982698). - Update patches.drivers/0001-nvme-fix-max_segments-integer-truncation.patch (bsc#979419). Fix reference. - Update patches.drivers/drm-ast-Initialize-data-needed-to-map-fbdev-memory.patch (bnc#880007). Fix refs and upstream status. - Update patches.kernel.org/patch-3.12.55-56 references (add bsc#973570). - Update patches.suse/kgr-0102-add-TAINT_KGRAFT.patch (bsc#974406). - acpi: Disable ACPI table override when UEFI Secure Boot is enabled (bsc#970604). - acpi: Disable APEI error injection if securelevel is set (bsc#972891). - cachefiles: perform test on s_blocksize when opening cache file (bsc#971049). - cpuset: Fix potential deadlock w/ set_mems_allowed (bsc#960857, bsc#974646). - dmapi: fix dm_open_by_handle_rvp taking an extra ref to mnt (bsc#967292). - drm/core: Preserve the framebuffer after removing it (bsc#968812). - drm/mgag200: Add support for a new G200eW3 chipset (bsc#983904). - drm/mgag200: Add support for a new rev of G200e (bsc#983904). - drm/mgag200: Black screen fix for G200e rev 4 (bsc#983904). - drm/mgag200: remove unused variables (bsc#983904). - drm/radeon: fix-up some float to fixed conversion thinkos (bsc#968813). - drm/radeon: use HDP_MEM_COHERENCY_FLUSH_CNTL for sdma as well (bsc#968813). - drm: qxl: Workaround for buggy user-space (bsc#981344). - efifb: Fix 16 color palette entry calculation (bsc#983318). - ehci-pci: enable interrupt on BayTrail (bnc#947337). - enic: set netdev-> vlan_features (bsc#966245). - ext4: fix races between page faults and hole punching (bsc#972174). - ext4: fix races of writeback with punch hole and zero range (bsc#972174). - fix: print ext4 mountopt data_err=abort correctly (bsc#969735). - fs, seq_file: fallback to vmalloc instead of oom kill processes (bnc#968687). - fs, seqfile: always allow oom killer (bnc#968687). - fs/pipe.c: skip file_update_time on frozen fs (bsc#975488). - hid-elo: kill not flush the work (bnc#982354). - ibmvscsi: Remove unsupported host config MAD (bsc#973556). - ipv6: make fib6 serial number per namespace (bsc#965319). - ipv6: mld: fix add_grhead skb_over_panic for devs with large MTUs (bsc#956852). - ipv6: per netns FIB garbage collection (bsc#965319). - ipv6: per netns fib6 walkers (bsc#965319). - ipv6: replace global gc_args with local variable (bsc#965319). - ipvs: count pre-established TCP states as active (bsc#970114). - kABI: kgr: fix subtle race with kgr_module_init(), going notifier and kgr_modify_kernel(). - kABI: protect enum enclosure_component_type. - kABI: protect function file_open_root. - kABI: protect include in evm. - kABI: protect struct dm_exception_store_type. - kABI: protect struct fib_nh_exception. - kABI: protect struct module. - kABI: protect struct rq. - kABI: protect struct sched_class. - kABI: protect struct scm_creds. - kABI: protect struct user_struct. - kABI: protect struct user_struct. - kabi fix for patches.fixes/reduce-m_start-cost (bsc#966573). - kabi/severities: Whitelist libceph and rbd (bsc#964727). - kabi: kgr, add reserved fields - kabi: protect struct fc_rport_priv (bsc#953233, bsc#962846). - kabi: protect struct netns_ipv6 after FIB6 GC series (bsc#965319). - kgr: add TAINT_KGRAFT - kgr: add kgraft annotation to hwrng kthread. - kgr: add kgraft annotations to kthreads' wait_event_freezable() API calls. - kgr: add objname to kgr_patch_fun struct. - kgr: add sympos and objname to error and debug messages. - kgr: add sympos as disambiguator field to kgr_patch_fun structure. - kgr: add sympos to sysfs. - kgr: call kgr_init_ftrace_ops() only for loaded objects. - kgr: change to kallsyms_on_each_symbol iterator. - kgr: define pr_fmt and modify all pr_* messages. -kgr: do not print error for !abort_if_missing symbols (bnc#943989). - kgr: do not return and print an error only if the object is not loaded. - kgr: do not use WQ_MEM_RECLAIM workqueue (bnc#963572). - kgr: fix an asymmetric dealing with delayed module loading. - kgr: fix redirection on s390x arch (bsc#903279). - kgr: fix subtle race with kgr_module_init(), going notifier and kgr_modify_kernel(). - kgr: handle btrfs kthreads (bnc#889207). - kgr: kmemleak, really mark the kthread safe after an interrupt. - kgr: log when modifying kernel. - kgr: mark some more missed kthreads (bnc#962336). - kgr: remove abort_if_missing flag. - kgr: usb/storage: do not emit thread awakened (bnc#899908). - kgraft/gfs2: Do not block livepatching in the log daemon for too long. - kgraft/xen: Do not block livepatching in the XEN blkif kthread. - libfc: replace 'rp_mutex' with 'rp_lock' (bsc#953233, bsc#962846). - memcg: do not hang on OOM when killed by userspace OOM access to memory reserves (bnc#969571). - mld, igmp: Fix reserved tailroom calculation (bsc#956852). - mmc: Allow forward compatibility for eMMC (bnc#966054). - mmc: sdhci: Allow for irq being shared (bnc#977582). - net/qlge: Avoids recursive EEH error (bsc#954847). - net: Account for all vlan headers in skb_mac_gso_segment (bsc#968667). - net: Start with correct mac_len in skb_network_protocol (bsc#968667). - net: disable fragment reassembly if high_thresh is set to zero (bsc#970506). - net: fix wrong mac_len calculation for vlans (bsc#968667). - net: irda: Fix use-after-free in irtty_open() (bnc#967903). - nfs4: treat lock owners as opaque values (bnc#968141). - nfs: fix high load average due to callback thread sleeping (bsc#971170). - nfsd: fix nfsd_setattr return code for HSM (bsc#969992). - nvme: fix max_segments integer truncation (bsc#676471). - ocfs2: do not set fs read-only if rec[0] is empty while committing truncate (bnc#971947). - ocfs2: extend enoughcredits for freeing one truncate record while replaying truncate records (bnc#971947). - ocfs2: extend transaction for ocfs2_remove_rightmost_path() and ocfs2_update_edge_lengths() before to avoid inconsistency between inode and et (bnc#971947). - perf, nmi: Fix unknown NMI warning (bsc#968512). - pipe: limit the per-user amount of pages allocated in pipes (bsc#970948). - rbd: do not log miscompare as an error (bsc#970062). - rbd: handle OBJ_REQUEST_SG types for copyup (bsc#983394). - rbd: report unsupported features to syslog (bsc#979169). - rbd: use GFP_NOIO consistently for request allocations (bsc#971159). - reduce m_start() cost.. (bsc#966573). - rpm/modprobe-xen.conf: Revert comment change to allow parallel install (bsc#957986). This reverts commit 6c6d86d3cdc26f7746fe4ba2bef8859b5aeb346c. - s390/pageattr: do a single TLB flush for change_page_attr (bsc#940413). - sched/x86: Fix up typo in topology detection (bsc#974165). - scsi: proper state checking and module refcount handling in scsi_device_get (boo#966831). - series.conf: move netfilter section at the end of core networking - supported.conf: Add bridge.ko for OpenStack (bsc#971600) - supported.conf: Add isofs to -base (bsc#969655). - supported.conf:Add drivers/infiniband/hw/ocrdma/ocrdma.ko to supported.conf (bsc#964461) - target/rbd: do not put snap_context twice (bsc#981143). - target/rbd: remove caw_mutex usage (bsc#981143). - target: Drop incorrect ABORT_TASK put for completed commands (bsc#962872). - target: Fix LUN_RESET active I/O handling for ACK_KREF (bsc#962872). - target: Fix LUN_RESET active TMR descriptor handling (bsc#962872). - target: Fix TAS handling for multi-session se_node_acls (bsc#962872). - target: Fix race with SCF_SEND_DELAYED_TAS handling (bsc#962872). - target: Fix remote-port TMR ABORT + se_cmd fabric stop (bsc#962872). - vgaarb: Add more context to error messages (bsc#976868). - x86, sched: Add new topologyfor multi-NUMA-node CPUs (bsc#974165). - x86/efi: parse_efi_setup() build fix (bsc#979485). - x86: standardize mmap_rnd() usage (bnc#974308). - xen/acpi: Disable ACPI table override when UEFI Secure Boot is enabled (bsc#970604). - xfs/dmapi: drop lock over synchronous XFS_SEND_DATA events (bsc#969993). - xfs/dmapi: propertly send postcreate event (bsc#967299). Patch Instructions: To install this SUSE Security Update use YaST online_update. Alternatively you can run the command listed for your product: - SUSE Linux Enterprise Workstation Extension 12: zypper in -t patch SUSE-SLE-WE-12-2016-1001=1 - SUSE Linux Enterprise Software Development Kit 12: zypper in -t patch SUSE-SLE-SDK-12-2016-1001=1 - SUSE Linux Enterprise Server 12: zypper in -t patch SUSE-SLE-SERVER-12-2016-1001=1 - SUSE Linux Enterprise Module for Public Cloud 12: zypper in -t patch SUSE-SLE-Module-Public-Cloud-12-2016-1001=1 - SUSE Linux Enterprise Live Patching 12: zypper in -t patch SUSE-SLE-Live-Patching-12-2016-1001=1 - SUSE Linux Enterprise Desktop 12: zypper in -t patch SUSE-SLE-DESKTOP-12-2016-1001=1 To bring your system up-to-date, use "zypper patch". Package List: - SUSE Linux Enterprise Workstation Extension 12 (x86_64): kernel-default-debuginfo-3.12.60-52.49.1 kernel-default-debugsource-3.12.60-52.49.1 kernel-default-extra-3.12.60-52.49.1 kernel-default-extra-debuginfo-3.12.60-52.49.1 - SUSE Linux Enterprise Software Development Kit 12 (ppc64le s390x x86_64): kernel-obs-build-3.12.60-52.49.1 kernel-obs-build-debugsource-3.12.60-52.49.1 - SUSE Linux Enterprise Software Development Kit 12 (noarch): kernel-docs-3.12.60-52.49.3 - SUSE Linux Enterprise Server 12 (ppc64le s390x x86_64): kernel-default-3.12.60-52.49.1 kernel-default-base-3.12.60-52.49.1 kernel-default-base-debuginfo-3.12.60-52.49.1 kernel-default-debuginfo-3.12.60-52.49.1 kernel-default-debugsource-3.12.60-52.49.1 kernel-default-devel-3.12.60-52.49.1 kernel-syms-3.12.60-52.49.1 - SUSE Linux Enterprise Server 12 (noarch): kernel-devel-3.12.60-52.49.1 kernel-macros-3.12.60-52.49.1 kernel-source-3.12.60-52.49.1 - SUSE Linux Enterprise Server 12 (x86_64): kernel-xen-3.12.60-52.49.1 kernel-xen-base-3.12.60-52.49.1 kernel-xen-base-debuginfo-3.12.60-52.49.1 kernel-xen-debuginfo-3.12.60-52.49.1 kernel-xen-debugsource-3.12.60-52.49.1 kernel-xen-devel-3.12.60-52.49.1 - SUSE Linux Enterprise Server 12 (s390x): kernel-default-man-3.12.60-52.49.1 - SUSE Linux Enterprise Module for Public Cloud 12 (x86_64): kernel-ec2-3.12.60-52.49.1 kernel-ec2-debuginfo-3.12.60-52.49.1 kernel-ec2-debugsource-3.12.60-52.49.1 kernel-ec2-devel-3.12.60-52.49.1 kernel-ec2-extra-3.12.60-52.49.1 kernel-ec2-extra-debuginfo-3.12.60-52.49.1 - SUSE Linux Enterprise Live Patching 12 (x86_64): kgraft-patch-3_12_60-52_49-default-1-2.1 kgraft-patch-3_12_60-52_49-xen-1-2.1 - SUSE Linux Enterprise Desktop 12 (x86_64): kernel-default-3.12.60-52.49.1 kernel-default-debuginfo-3.12.60-52.49.1 kernel-default-debugsource-3.12.60-52.49.1 kernel-default-devel-3.12.60-52.49.1 kernel-default-extra-3.12.60-52.49.1 kernel-default-extra-debuginfo-3.12.60-52.49.1 kernel-syms-3.12.60-52.49.1 kernel-xen-3.12.60-52.49.1 kernel-xen-debuginfo-3.12.60-52.49.1 kernel-xen-debugsource-3.12.60-52.49.1 kernel-xen-devel-3.12.60-52.49.1 - SUSE Linux Enterprise Desktop 12 (noarch): kernel-devel-3.12.60-52.49.1 kernel-macros-3.12.60-52.49.1 kernel-source-3.12.60-52.49.1 References: https://www.suse.com/security/cve/CVE-2014-9717.html https://www.suse.com/security/cve/CVE-2015-8816.html https://www.suse.com/security/cve/CVE-2015-8845.html https://www.suse.com/security/cve/CVE-2016-0758.html https://www.suse.com/security/cve/CVE-2016-2053.html https://www.suse.com/security/cve/CVE-2016-2143.html https://www.suse.com/security/cve/CVE-2016-2184.html https://www.suse.com/security/cve/CVE-2016-2185.html https://www.suse.com/security/cve/CVE-2016-2186.html https://www.suse.com/security/cve/CVE-2016-2188.html https://www.suse.com/security/cve/CVE-2016-2782.html https://www.suse.com/security/cve/CVE-2016-2847.html https://www.suse.com/security/cve/CVE-2016-3134.html https://www.suse.com/security/cve/CVE-2016-3136.html https://www.suse.com/security/cve/CVE-2016-3137.html https://www.suse.com/security/cve/CVE-2016-3138.html https://www.suse.com/security/cve/CVE-2016-3139.html https://www.suse.com/security/cve/CVE-2016-3140.html https://www.suse.com/security/cve/CVE-2016-3156.html https://www.suse.com/security/cve/CVE-2016-3672.html https://www.suse.com/security/cve/CVE-2016-3689.html https://www.suse.com/security/cve/CVE-2016-3951.html https://www.suse.com/security/cve/CVE-2016-4482.html https://www.suse.com/security/cve/CVE-2016-4486.html https://www.suse.com/security/cve/CVE-2016-4565.html https://www.suse.com/security/cve/CVE-2016-4569.html https://www.suse.com/security/cve/CVE-2016-4578.html https://www.suse.com/security/cve/CVE-2016-4805.html https://www.suse.com/security/cve/CVE-2016-5244.html https://bugzilla.suse.com/676471 https://bugzilla.suse.com/880007 https://bugzilla.suse.com/889207 https://bugzilla.suse.com/899908 https://bugzilla.suse.com/903279 https://bugzilla.suse.com/928547 https://bugzilla.suse.com/931448 https://bugzilla.suse.com/940413 https://bugzilla.suse.com/943989 https://bugzilla.suse.com/944309 https://bugzilla.suse.com/945345 https://bugzilla.suse.com/947337 https://bugzilla.suse.com/953233 https://bugzilla.suse.com/954847 https://bugzilla.suse.com/956491 https://bugzilla.suse.com/956852 https://bugzilla.suse.com/957805 https://bugzilla.suse.com/957986 https://bugzilla.suse.com/960857 https://bugzilla.suse.com/962336 https://bugzilla.suse.com/962846 https://bugzilla.suse.com/962872 https://bugzilla.suse.com/963193 https://bugzilla.suse.com/963572 https://bugzilla.suse.com/963762 https://bugzilla.suse.com/964461 https://bugzilla.suse.com/964727 https://bugzilla.suse.com/965319 https://bugzilla.suse.com/966054 https://bugzilla.suse.com/966245 https://bugzilla.suse.com/966573 https://bugzilla.suse.com/966831 https://bugzilla.suse.com/967251 https://bugzilla.suse.com/967292 https://bugzilla.suse.com/967299 https://bugzilla.suse.com/967903 https://bugzilla.suse.com/968010 https://bugzilla.suse.com/968141 https://bugzilla.suse.com/968448 https://bugzilla.suse.com/968512 https://bugzilla.suse.com/968667 https://bugzilla.suse.com/968670 https://bugzilla.suse.com/968687 https://bugzilla.suse.com/968812 https://bugzilla.suse.com/968813 https://bugzilla.suse.com/969439 https://bugzilla.suse.com/969571 https://bugzilla.suse.com/969655 https://bugzilla.suse.com/969690 https://bugzilla.suse.com/969735 https://bugzilla.suse.com/969992 https://bugzilla.suse.com/969993 https://bugzilla.suse.com/970062 https://bugzilla.suse.com/970114 https://bugzilla.suse.com/970504 https://bugzilla.suse.com/970506 https://bugzilla.suse.com/970604 https://bugzilla.suse.com/970892 https://bugzilla.suse.com/970909 https://bugzilla.suse.com/970911 https://bugzilla.suse.com/970948 https://bugzilla.suse.com/970955 https://bugzilla.suse.com/970956 https://bugzilla.suse.com/970958 https://bugzilla.suse.com/970970 https://bugzilla.suse.com/971049 https://bugzilla.suse.com/971124 https://bugzilla.suse.com/971125 https://bugzilla.suse.com/971126 https://bugzilla.suse.com/971159 https://bugzilla.suse.com/971170 https://bugzilla.suse.com/971360 https://bugzilla.suse.com/971600 https://bugzilla.suse.com/971628 https://bugzilla.suse.com/971947 https://bugzilla.suse.com/972003 https://bugzilla.suse.com/972174 https://bugzilla.suse.com/972844 https://bugzilla.suse.com/972891 https://bugzilla.suse.com/972933 https://bugzilla.suse.com/972951 https://bugzilla.suse.com/973378 https://bugzilla.suse.com/973556 https://bugzilla.suse.com/973570 https://bugzilla.suse.com/973855 https://bugzilla.suse.com/974165 https://bugzilla.suse.com/974308 https://bugzilla.suse.com/974406 https://bugzilla.suse.com/974418 https://bugzilla.suse.com/974646 https://bugzilla.suse.com/975371 https://bugzilla.suse.com/975488 https://bugzilla.suse.com/975533 https://bugzilla.suse.com/975945 https://bugzilla.suse.com/976739 https://bugzilla.suse.com/976868 https://bugzilla.suse.com/977582 https://bugzilla.suse.com/977685 https://bugzilla.suse.com/978401 https://bugzilla.suse.com/978822 https://bugzilla.suse.com/979169 https://bugzilla.suse.com/979213 https://bugzilla.suse.com/979419 https://bugzilla.suse.com/979485 https://bugzilla.suse.com/979548 https://bugzilla.suse.com/979867 https://bugzilla.suse.com/979879 https://bugzilla.suse.com/980348 https://bugzilla.suse.com/980371 https://bugzilla.suse.com/981143 https://bugzilla.suse.com/981344 https://bugzilla.suse.com/982354 https://bugzilla.suse.com/982698 https://bugzilla.suse.com/983213 https://bugzilla.suse.com/983318 https://bugzilla.suse.com/983394 https://bugzilla.suse.com/983904 https://bugzilla.suse.com/984456 . SUSE releases an essential kernel security patch, resolving 29 vulnerabilities with vital corrections aimed at improving overall system reliability.. Kernel Security, SUSE Linux, Denial of Service, Access Restrictions. . Severity: Important. LinuxSecurity.com Team

Jun 27, 2016 •Important SuSE

security advisorymoderateupdate

Red Hat OpenShift 2.2 RHSA-2014:1796-01 Moderate Access Restrictions

Red Hat OpenShift Enterprise release 2.2, which fixes a security issue, several bugs and includes various enhancements, is now available. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat OpenShift Enterprise 2.2 Release Advisory Advisory ID: RHSA-2014:1796-01 Product: Red Hat OpenShift Enterprise Advisory URL: https://access.redhat.com/errata/RHSA-2014:1796.html Issue date: 2014-11-03 CVE Names: CVE-2014-3602 CVE-2014-3674 ==================================================================== 1. Summary: Red Hat OpenShift Enterprise release 2.2, which fixes a security issue, several bugs and includes various enhancements, is now available. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: RHOSE Client 2.2 - noarch RHOSE Infrastructure 2.2 - noarch, x86_64 RHOSE JBoss EAP add-on 2.2 - noarch RHOSE Node 2.2 - noarch, x86_64 3. Description: OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service (PaaS) solution designed for on-premise or private cloud deployments. It was reported that OpenShift Enterprise 2.2 did not properly restrict access to services running on different gears. This could allow an attacker to access unprotected network resources running in another user's gear. OpenShift Enterprise 2.2 introduces the oo-gear-firewall command which creates firewall rules and SELinux policy to contain services running on gears to their own internal gear IPs. The command is invoked by default duringnew installations of OpenShift Enterprise 2.2 to prevent this security issue. Administrators should run the following on node hosts in existing deployments after upgrading to 2.2 to address this security issue: # oo-gear-firewall -i enable -s enable Please see the man page for the oo-gear-firewall command for more details. (CVE-2014-3674) It was reported that OpenShift Enterprise did not restrict access to the /proc/net/tcp file on gears, which allowed local users to view all listening connections and connected sockets. This could result in remote systems IP or port numbers in use being exposed which may be useful for further targeted attacks. Note that for local listeners, OSE restricts connections to within the gear by default, so even with the knowledge of the local port and IP the attacker is unable to connect. This bug fix updates the SELinux policy on node hosts to prevent this gear information from being accessed by local users. (CVE-2014-3602) The OpenShift Enterprise 2.2 Release Notes provide information about new features and notable technical changes in this release, as well as notes on initial installations. For more information about OpenShift Enterprise, see the documentation available at: https://access.redhat.com/site/documentation/en-US/OpenShift_Enterprise/2/ All OpenShift Enterprise users are advised to upgrade to release 2.2. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. See the latest OpenShift Enterprise Deployment Guide at https://access.redhat.com/site/documentation/en-US/OpenShift_Enterprise/2/ for instructions on initial installations and upgrades from previous versions. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258. 5. Bugs fixed (https://bugzilla.redhat.com/): 1004479 - [RFE] Add the ability to limit a user's access to certain cartridges 1093192 -/etc/openshift-enterprise-release does not update with releases 1100102 - oo-diagnostics tools should check the source of packages that are installed for python-3.3 cartridge. 1121195 - oo-iptables-port-proxy fails unhelpfully if EXTERNAL_ETH_DEV is set incorrectly 1123850 - Openshift overwrites data/postgresql.conf during restart, destroying Locale and Formatting configuration 1130347 - "rhc server list" show that an unexpected server is in use if user change libra_server manually. 1131167 - oo-install proceeds with install when user has requested quit 1131190 - No stop related info shows in $cartridge.log when stop for jboss app 1131680 - CVE-2014-3602 OpenShift: /proc/net/tcp information disclosure 1133075 - OpenShift Enterprise 2.2 Errata Tool Advisory Bug 1134139 - [RFE] Track real person for gear SSH logins 1140289 - Background requests made to the broker are done under a hard-coded timeout. 1144057 - Gear size is still added to a user account if adding to the domain fails 1144940 - Console should show error info when adding invalid SSL certificate file. 1145810 - Scaled application fails when HTTP Basic authentication is used 1145877 - Console should show downloadable cartridge with vendor name to distinguish with original cartridge. 1146224 - Update haproxy15side to 1.5.4 1148170 - CVE-2014-3674 OpenShift Enterprise: gears fail to properly isolate network traffic 1148192 - Race condition in `oo-httpd-singular graceful` when using apache-vhost 1150971 - Console failed to add restricted gear size cartridge to scalable app with different gear size. 1151244 - Files placed in the .cartridge_repository will break mcollective on a node 1152698 - PostGresSQL Logging datetime 1152699 - Proper SSL setup for custom domain 1152700 - node - skip partial deployments 1153750 - oo-iptables-port-proxy should have "showproxy" instead of "showproxies" in its usage 1154026 - syntax error in /usr/lib/ruby/site_ruby/1.8/ose-upgrade/node/upgrades/4/maintenance_mode/02-poodle-disable-SSLv3 1154471 - OSE install failed due towrong incompatible rsyslog7-7.4.10-3.el6_6.x86_64 installation 1156200 - oo-admin-ctl-iptables-port-proxy is needlessly slow under DNS failures 1156613 - routing-daemon.conf has NGINX_PLUS settings on by default, they should commented out 6. Package List: RHOSE Client 2.2: Source: rhc-1.31.3.1-1.el6op.src.rpm rubygem-archive-tar-minitar-0.5.2-3.1.el6op.src.rpm rubygem-commander-4.0.3-4.el6op.src.rpm rubygem-highline-1.6.16-1.el6op.src.rpm rubygem-httpclient-2.4.0-3.el6op.src.rpm rubygem-net-scp-1.1.2-2.el6op.src.rpm rubygem-net-ssh-2.7.0-1.el6op.src.rpm rubygem-net-ssh-gateway-1.2.0-1.el6op.src.rpm rubygem-net-ssh-multi-1.2.0-1.el6op.src.rpm rubygem-open4-1.3.0-2.el6op.src.rpm rubygem-parseconfig-0.5.2-5.el6op.src.rpm rubygem-test-unit-2.2.0-3.el6op.src.rpm rubygems-1.8.24-6.el6op.src.rpm noarch: rhc-1.31.3.1-1.el6op.noarch.rpm rubygem-archive-tar-minitar-0.5.2-3.1.el6op.noarch.rpm rubygem-commander-4.0.3-4.el6op.noarch.rpm rubygem-highline-1.6.16-1.el6op.noarch.rpm rubygem-httpclient-2.4.0-3.el6op.noarch.rpm rubygem-net-scp-1.1.2-2.el6op.noarch.rpm rubygem-net-ssh-2.7.0-1.el6op.noarch.rpm rubygem-net-ssh-gateway-1.2.0-1.el6op.noarch.rpm rubygem-net-ssh-multi-1.2.0-1.el6op.noarch.rpm rubygem-open4-1.3.0-2.el6op.noarch.rpm rubygem-parseconfig-0.5.2-5.el6op.noarch.rpm rubygem-test-unit-2.2.0-3.el6op.noarch.rpm rubygems-1.8.24-6.el6op.noarch.rpm rubygems-devel-1.8.24-6.el6op.noarch.rpm RHOSE Infrastructure2.2: Source: activemq-5.9.0-5.redhat.610328.el6op.src.rpm js-1.70-12.el6op.src.rpm json-c-0.10-3.el6op.src.rpm libestr-0.1.9-2.el6op.src.rpm libev-4.04-4.el6op.src.rpm mongodb-2.4.6-2.el6op.src.rpm openshift-enterprise-upgrade-2.2.0.4-1.el6op.src.rpm openshift-origin-broker-1.16.2.1-1.el6op.src.rpm openshift-origin-broker-util-1.30.4.0-1.el6op.src.rpm openshift-origin-console-1.16.3.0-2.el6op.src.rpm openshift-origin-logshifter-1.8.1.0-1.el6op.src.rpm openshift-origin-msg-common-1.21.1.0-1.el6op.src.rpm openshift-origin-util-scl-1.19.1.0-1.el6op.src.rpm rsyslog7-7.4.10-3.el6op.src.rpm ruby-RMagick-2.13.1-6.el6op.1.src.rpm ruby193-js-1.8.5-10.el6op.src.rpm ruby193-mcollective-2.4.1-6.el6op.src.rpm ruby193-ruby-mysql-2.8.2-8.el6op.src.rpm ruby193-ruby-wrapper-0.0.2-2.el6op.src.rpm ruby193-rubygem-bson-1.8.1-1.el6op.src.rpm ruby193-rubygem-bson_ext-1.8.1-2.el6op.src.rpm ruby193-rubygem-chunky_png-1.2.6-3.el6op.src.rpm ruby193-rubygem-compass-0.12.2-4.el6op.src.rpm ruby193-rubygem-compass-rails-1.0.3-2.el6op.src.rpm ruby193-rubygem-daemon_controller-1.1.0-1.el6op.src.rpm ruby193-rubygem-daemons-1.0.10-4.el6op.src.rpm ruby193-rubygem-dnsruby-1.53-3.el6op.src.rpm ruby193-rubygem-excon-0.32.1-2.el6op.src.rpm ruby193-rubygem-fastthread-1.0.7-7.el6op.src.rpm ruby193-rubygem-file-tail-1.0.5-5.el6op.src.rpm ruby193-rubygem-fog-1.21.0-3.el6op.src.rpm ruby193-rubygem-fog-brightbox-0.0.1-2.el6op.src.rpm ruby193-rubygem-fog-core-1.21.1-2.el6op.src.rpm ruby193-rubygem-fog-json-1.0.0-2.el6op.src.rpm ruby193-rubygem-formatador-0.2.1-9.el6op.src.rpm ruby193-rubygem-formtastic-1.2.4-2.el6op.src.rpm ruby193-rubygem-fssm-0.2.8.1-2.el6op.src.rpm ruby193-rubygem-haml-4.0.3-2.el6op.src.rpm ruby193-rubygem-httpclient-2.4.0-1.el6op.src.rpm ruby193-rubygem-jquery-rails-3.1.0-1.el6op.src.rpm ruby193-rubygem-json-1.7.3-5.el6op.src.rpm ruby193-rubygem-json_pure-1.7.3-1.el6.src.rpm ruby193-rubygem-minitest-3.5.0-3.el6op.src.rpm ruby193-rubygem-mongo-1.8.1-1.el6op.src.rpm ruby193-rubygem-mongoid-3.1.4-2.el6op.src.rpm ruby193-rubygem-moped-1.5.0-2.el6op.src.rpm ruby193-rubygem-net-ldap-0.3.1-1.el6op.src.rpm ruby193-rubygem-net-scp-1.1.2-1.el6op.src.rpm ruby193-rubygem-net-ssh-2.7.0-1.el6op.src.rpm ruby193-rubygem-nokogiri-1.5.11-1.el6op.src.rpm ruby193-rubygem-open4-1.3.0-3.el6op.src.rpm ruby193-rubygem-origin-1.0.7-2.el6op.src.rpm ruby193-rubygem-parseconfig-1.0.2-1.el6op.src.rpm ruby193-rubygem-passenger-3.0.21-3.el6op.src.rpm ruby193-rubygem-pg-0.12.2-4.el6op.src.rpm ruby193-rubygem-rdiscount-1.6.8-3.el6op.src.rpm ruby193-rubygem-regin-0.3.7-4.el6op.src.rpm ruby193-rubygem-rest-client-1.6.1-2.el6op.src.rpm ruby193-rubygem-ruby2ruby-1.3.1-2.el6op.src.rpm ruby193-rubygem-ruby_parser-2.3.1-3.el6op.src.rpm ruby193-rubygem-safe_yaml-0.9.1-1.el6op.src.rpm ruby193-rubygem-sass-twitter-bootstrap-2.0.1-1.el6op.src.rpm ruby193-rubygem-sexp_processor-3.2.0-2.el6op.src.rpm ruby193-rubygem-spruz-0.2.5-5.el6op.src.rpm ruby193-rubygem-state_machine-1.1.2-7.el6op.src.rpm ruby193-rubygem-stomp-1.2.14-1.el6op.src.rpm ruby193-rubygem-syslog-logger-1.6.8-1.el6op.src.rpm ruby193-rubygem-systemu-2.5.2-2.el6op.src.rpm ruby193-rubygem-term-ansicolor-1.0.7-2.el6op.src.rpm ruby193-rubygem-xml-simple-1.0.12-10.el6op.src.rpm rubygem-ParseTree-3.0.5-2.el6op.src.rpm rubygem-RubyInline-3.8.4-3.el6op.src.rpm rubygem-ZenTest-4.3.3-1.el6op.src.rpm rubygem-archive-tar-minitar-0.5.2-3.1.el6op.src.rpm rubygem-bson-1.8.3-1.el6op.src.rpm rubygem-bson_ext-1.8.3-1.el6op.src.rpm rubygem-bundler-1.0.21-3.el6op.src.rpm rubygem-diff-lcs-1.1.2-5.el6op.src.rpm rubygem-fastthread-1.0.7-4.el6op.src.rpm rubygem-file-tail-1.0.5-4.el6op.src.rpm rubygem-highline-1.6.16-1.el6op.src.rpm rubygem-json-1.7.3-2.el6op.src.rpm rubygem-net-ssh-2.7.0-1.el6op.src.rpm rubygem-openshift-origin-admin-console-1.26.2.0-1.el6op.src.rpm rubygem-openshift-origin-auth-remote-user-1.21.1.0-1.el6op.src.rpm rubygem-openshift-origin-common-1.28.3.0-1.el6op.src.rpm rubygem-openshift-origin-console-1.31.3.1-1.el6op.src.rpm rubygem-openshift-origin-controller-1.31.5.1-1.el6op.src.rpm rubygem-openshift-origin-dns-dynect-1.13.1.0-1.el6op.src.rpm rubygem-openshift-origin-dns-fog-1.0.1.0-1.el6op.src.rpm rubygem-openshift-origin-dns-nsupdate-1.16.3.0-1.el6op.src.rpm rubygem-openshift-origin-gear-placement-0.0.2.0-1.el6op.src.rpm rubygem-openshift-origin-msg-broker-mcollective-1.30.2.2-1.el6op.src.rpm rubygem-openshift-origin-routing-activemq-0.6.1.0-1.el6op.src.rpm rubygem-openshift-origin-routing-daemon-0.17.1.4-1.el6op.src.rpm rubygem-parseconfig-0.5.2-5.el6op.src.rpm rubygem-passenger-3.0.21-12.el6op.src.rpm rubygem-rack-1.3.0-4.el6op.src.rpm rubygem-rake-0.8.7-2.1.el6.src.rpm rubygem-regin-0.3.7-4.el6op.src.rpm rubygem-ruby2ruby-1.2.4-3.el6op.src.rpm rubygem-ruby_parser-2.0.4-6.el6op.src.rpm rubygem-sexp_processor-3.0.4-2.el6op.src.rpm rubygem-spruz-0.2.5-4.el6op.src.rpm rubygem-stomp-1.1.8-1.el6op.src.rpm rubygem-systemu-1.2.0-3.el6op.src.rpm rubygem-thor-0.14.6-2.el6op.src.rpm rubygem-thread-dump-0.0.5-93.el6op.src.rpm rubygems-1.8.24-6.el6op.src.rpm v8-3.14.5.10-2.el6op.src.rpm yum-utils-1.1.30-17.el6_5.src.rpm noarch: json-c-doc-0.10-3.el6op.noarch.rpm openshift-enterprise-release-2.2.0.4-1.el6op.noarch.rpm openshift-enterprise-upgrade-broker-2.2.0.4-1.el6op.noarch.rpm openshift-enterprise-yum-validator-2.2.0.4-1.el6op.noarch.rpm openshift-origin-broker-1.16.2.1-1.el6op.noarch.rpm openshift-origin-broker-util-1.30.4.0-1.el6op.noarch.rpm openshift-origin-console-1.16.3.0-2.el6op.noarch.rpm openshift-origin-msg-common-1.21.1.0-1.el6op.noarch.rpm openshift-origin-util-scl-1.19.1.0-1.el6op.noarch.rpm ruby193-mcollective-2.4.1-6.el6op.noarch.rpm ruby193-mcollective-client-2.4.1-6.el6op.noarch.rpm ruby193-mcollective-common-2.4.1-6.el6op.noarch.rpm ruby193-ruby-wrapper-0.0.2-2.el6op.noarch.rpm ruby193-rubygem-bson-1.8.1-1.el6op.noarch.rpm ruby193-rubygem-chunky_png-1.2.6-3.el6op.noarch.rpm ruby193-rubygem-compass-0.12.2-4.el6op.noarch.rpm ruby193-rubygem-compass-rails-1.0.3-2.el6op.noarch.rpm ruby193-rubygem-daemon_controller-1.1.0-1.el6op.noarch.rpm ruby193-rubygem-daemons-1.0.10-4.el6op.noarch.rpm ruby193-rubygem-dnsruby-1.53-3.el6op.noarch.rpm ruby193-rubygem-excon-0.32.1-2.el6op.noarch.rpm ruby193-rubygem-excon-doc-0.32.1-2.el6op.noarch.rpm ruby193-rubygem-file-tail-1.0.5-5.el6op.noarch.rpm ruby193-rubygem-fog-1.21.0-3.el6op.noarch.rpm ruby193-rubygem-fog-brightbox-0.0.1-2.el6op.noarch.rpm ruby193-rubygem-fog-core-1.21.1-2.el6op.noarch.rpm ruby193-rubygem-fog-doc-1.21.0-3.el6op.noarch.rpm ruby193-rubygem-fog-json-1.0.0-2.el6op.noarch.rpm ruby193-rubygem-fog-json-doc-1.0.0-2.el6op.noarch.rpm ruby193-rubygem-formatador-0.2.1-9.el6op.noarch.rpm ruby193-rubygem-formatador-doc-0.2.1-9.el6op.noarch.rpm ruby193-rubygem-formtastic-1.2.4-2.el6op.noarch.rpm ruby193-rubygem-fssm-0.2.8.1-2.el6op.noarch.rpm ruby193-rubygem-haml-4.0.3-2.el6op.noarch.rpm ruby193-rubygem-httpclient-2.4.0-1.el6op.noarch.rpm ruby193-rubygem-jquery-rails-3.1.0-1.el6op.noarch.rpm ruby193-rubygem-json_pure-1.7.3-1.el6.noarch.rpm ruby193-rubygem-minitest-3.5.0-3.el6op.noarch.rpm ruby193-rubygem-mongo-1.8.1-1.el6op.noarch.rpm ruby193-rubygem-mongoid-3.1.4-2.el6op.noarch.rpm ruby193-rubygem-moped-1.5.0-2.el6op.noarch.rpm ruby193-rubygem-net-ldap-0.3.1-1.el6op.noarch.rpm ruby193-rubygem-net-scp-1.1.2-1.el6op.noarch.rpm ruby193-rubygem-net-scp-doc-1.1.2-1.el6op.noarch.rpm ruby193-rubygem-net-ssh-2.7.0-1.el6op.noarch.rpm ruby193-rubygem-net-ssh-doc-2.7.0-1.el6op.noarch.rpm ruby193-rubygem-open4-1.3.0-3.el6op.noarch.rpm ruby193-rubygem-origin-1.0.7-2.el6op.noarch.rpm ruby193-rubygem-parseconfig-1.0.2-1.el6op.noarch.rpm ruby193-rubygem-regin-0.3.7-4.el6op.noarch.rpm ruby193-rubygem-rest-client-1.6.1-2.el6op.noarch.rpm ruby193-rubygem-ruby2ruby-1.3.1-2.el6op.noarch.rpm ruby193-rubygem-ruby_parser-2.3.1-3.el6op.noarch.rpm ruby193-rubygem-safe_yaml-0.9.1-1.el6op.noarch.rpm ruby193-rubygem-sass-twitter-bootstrap-2.0.1-1.el6op.noarch.rpm ruby193-rubygem-sexp_processor-3.2.0-2.el6op.noarch.rpm ruby193-rubygem-spruz-0.2.5-5.el6op.noarch.rpm ruby193-rubygem-state_machine-1.1.2-7.el6op.noarch.rpm ruby193-rubygem-stomp-1.2.14-1.el6op.noarch.rpm ruby193-rubygem-syslog-logger-1.6.8-1.el6op.noarch.rpm ruby193-rubygem-systemu-2.5.2-2.el6op.noarch.rpm ruby193-rubygem-term-ansicolor-1.0.7-2.el6op.noarch.rpm ruby193-rubygem-xml-simple-1.0.12-10.el6op.noarch.rpm rubygem-ParseTree-3.0.5-2.el6op.noarch.rpm rubygem-RubyInline-3.8.4-3.el6op.noarch.rpm rubygem-ZenTest-4.3.3-1.el6op.noarch.rpm rubygem-archive-tar-minitar-0.5.2-3.1.el6op.noarch.rpm rubygem-bson-1.8.3-1.el6op.noarch.rpm rubygem-bundler-1.0.21-3.el6op.noarch.rpm rubygem-diff-lcs-1.1.2-5.el6op.noarch.rpm rubygem-file-tail-1.0.5-4.el6op.noarch.rpm rubygem-highline-1.6.16-1.el6op.noarch.rpm rubygem-net-ssh-2.7.0-1.el6op.noarch.rpm rubygem-openshift-origin-admin-console-1.26.2.0-1.el6op.noarch.rpm rubygem-openshift-origin-auth-remote-user-1.21.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-common-1.28.3.0-1.el6op.noarch.rpm rubygem-openshift-origin-console-1.31.3.1-1.el6op.noarch.rpm rubygem-openshift-origin-controller-1.31.5.1-1.el6op.noarch.rpm rubygem-openshift-origin-dns-dynect-1.13.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-dns-fog-1.0.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-dns-nsupdate-1.16.3.0-1.el6op.noarch.rpm rubygem-openshift-origin-gear-placement-0.0.2.0-1.el6op.noarch.rpm rubygem-openshift-origin-msg-broker-mcollective-1.30.2.2-1.el6op.noarch.rpm rubygem-openshift-origin-routing-activemq-0.6.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-routing-daemon-0.17.1.4-1.el6op.noarch.rpm rubygem-parseconfig-0.5.2-5.el6op.noarch.rpm rubygem-rack-1.3.0-4.el6op.noarch.rpm rubygem-rake-0.8.7-2.1.el6.noarch.rpm rubygem-regin-0.3.7-4.el6op.noarch.rpm rubygem-ruby2ruby-1.2.4-3.el6op.noarch.rpm rubygem-ruby_parser-2.0.4-6.el6op.noarch.rpm rubygem-sexp_processor-3.0.4-2.el6op.noarch.rpm rubygem-spruz-0.2.5-4.el6op.noarch.rpm rubygem-stomp-1.1.8-1.el6op.noarch.rpm rubygem-systemu-1.2.0-3.el6op.noarch.rpm rubygem-thor-0.14.6-2.el6op.noarch.rpm rubygems-1.8.24-6.el6op.noarch.rpm rubygems-devel-1.8.24-6.el6op.noarch.rpm yum-plugin-priorities-1.1.30-17.el6_5.noarch.rpm x86_64: activemq-5.9.0-5.redhat.610328.el6op.x86_64.rpm activemq-client-5.9.0-5.redhat.610328.el6op.x86_64.rpm js-1.70-12.el6op.x86_64.rpm js-debuginfo-1.70-12.el6op.x86_64.rpm js-devel-1.70-12.el6op.x86_64.rpm json-c-0.10-3.el6op.x86_64.rpm json-c-debuginfo-0.10-3.el6op.x86_64.rpm json-c-devel-0.10-3.el6op.x86_64.rpm libestr-0.1.9-2.el6op.x86_64.rpm libestr-debuginfo-0.1.9-2.el6op.x86_64.rpm libestr-devel-0.1.9-2.el6op.x86_64.rpm libev-4.04-4.el6op.x86_64.rpm libev-debuginfo-4.04-4.el6op.x86_64.rpm libev-devel-4.04-4.el6op.x86_64.rpm libmongodb-2.4.6-2.el6op.x86_64.rpm mod_passenger-3.0.21-12.el6op.x86_64.rpm mongodb-2.4.6-2.el6op.x86_64.rpm mongodb-debuginfo-2.4.6-2.el6op.x86_64.rpm mongodb-server-2.4.6-2.el6op.x86_64.rpm openshift-origin-logshifter-1.8.1.0-1.el6op.x86_64.rpm rsyslog7-debuginfo-7.4.10-3.el6op.x86_64.rpm rsyslog7-mmopenshift-7.4.10-3.el6op.x86_64.rpm ruby-RMagick-2.13.1-6.el6op.1.x86_64.rpm ruby-RMagick-debuginfo-2.13.1-6.el6op.1.x86_64.rpm ruby193-js-1.8.5-10.el6op.x86_64.rpm ruby193-js-debuginfo-1.8.5-10.el6op.x86_64.rpm ruby193-js-devel-1.8.5-10.el6op.x86_64.rpm ruby193-mod_passenger-3.0.21-3.el6op.x86_64.rpm ruby193-ruby-mysql-2.8.2-8.el6op.x86_64.rpm ruby193-ruby-mysql-debuginfo-2.8.2-8.el6op.x86_64.rpm ruby193-rubygem-bson_ext-1.8.1-2.el6op.x86_64.rpm ruby193-rubygem-bson_ext-debuginfo-1.8.1-2.el6op.x86_64.rpm ruby193-rubygem-fastthread-1.0.7-7.el6op.x86_64.rpm ruby193-rubygem-fastthread-debuginfo-1.0.7-7.el6op.x86_64.rpm ruby193-rubygem-json-1.7.3-5.el6op.x86_64.rpm ruby193-rubygem-json-debuginfo-1.7.3-5.el6op.x86_64.rpm ruby193-rubygem-nokogiri-1.5.11-1.el6op.x86_64.rpm ruby193-rubygem-nokogiri-debuginfo-1.5.11-1.el6op.x86_64.rpm ruby193-rubygem-nokogiri-doc-1.5.11-1.el6op.x86_64.rpm ruby193-rubygem-passenger-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-debuginfo-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-devel-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-native-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-native-libs-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-pg-0.12.2-4.el6op.x86_64.rpm ruby193-rubygem-pg-debuginfo-0.12.2-4.el6op.x86_64.rpm ruby193-rubygem-rdiscount-1.6.8-3.el6op.x86_64.rpm ruby193-rubygem-rdiscount-debuginfo-1.6.8-3.el6op.x86_64.rpm rubygem-bson_ext-1.8.3-1.el6op.x86_64.rpm rubygem-bson_ext-debuginfo-1.8.3-1.el6op.x86_64.rpm rubygem-fastthread-1.0.7-4.el6op.x86_64.rpm rubygem-json-1.7.3-2.el6op.x86_64.rpm rubygem-json-debuginfo-1.7.3-2.el6op.x86_64.rpm rubygem-passenger-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-debuginfo-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-devel-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-native-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-native-libs-3.0.21-12.el6op.x86_64.rpm rubygem-thread-dump-0.0.5-93.el6op.x86_64.rpm rubygem-thread-dump-debuginfo-0.0.5-93.el6op.x86_64.rpm v8-3.14.5.10-2.el6op.x86_64.rpm v8-debuginfo-3.14.5.10-2.el6op.x86_64.rpm v8-devel-3.14.5.10-2.el6op.x86_64.rpm RHOSE JBoss EAP add-on 2.2: Source: openshift-origin-cartridge-jbosseap-2.21.1.0-1.el6op.src.rpm noarch: openshift-origin-cartridge-dependencies-optional-jbosseap-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-jbosseap-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-jbosseap-2.21.1.0-1.el6op.noarch.rpm RHOSE Node2.2: Source: CharLS-1.0-1.el6op.src.rpm ImageMagick-6.5.4.7-7.el6_5.src.rpm activemq-5.9.0-5.redhat.610328.el6op.src.rpm armadillo-3.800.2-1.el6op.src.rpm atlas-3.8.4-2.el6.src.rpm cfitsio-3.240-3.el6op.src.rpm facter-1.6.6-1.el6op.src.rpm freexl-1.0.0d-1.el6op.src.rpm gd-2.0.35-11.el6.src.rpm gdal-1.9.2-8.el6op.src.rpm geos-3.3.2-1.el6op.src.rpm ghostscript-8.70-19.el6.src.rpm gpsbabel-1.4.4-4.el6op.src.rpm haproxy-1.4.22-5.el6op.src.rpm haproxy15side-1.5.4-1.el6op.src.rpm hdf5-1.8.5.patch1-7.el6op.src.rpm icu-4.2.1-9.1.el6_2.src.rpm jasper-1.900.1-15.el6_1.1.src.rpm jboss-eap6-modules-6.0.0.GA-8.el6op.src.rpm jboss-openshift-metrics-module-1.0.2.redhat_1-1.2.el6_5.src.rpm jenkins-1.565.3-1.el6op.src.rpm jenkins-plugin-openshift-0.6.40.1-0.el6op.src.rpm js-1.70-12.el6op.src.rpm json-c-0.10-3.el6op.src.rpm jython-2.2.1-4.8.el6.src.rpm lapack-3.2.1-4.el6.src.rpm lcms-1.19-1.el6.src.rpm libc-client-2007e-11.el6.src.rpm libcgroup-0.40.rc1-15.el6_6.src.rpm libdap-3.11.0-1.el6op.src.rpm libestr-0.1.9-2.el6op.src.rpm libev-4.04-4.el6op.src.rpm libffi-3.0.5-3.2.el6.src.rpm libgeotiff-1.2.5-5.el6op.src.rpm libgta-1.0.2-2.el6op.src.rpm libmcrypt-2.5.8-10.el6op.src.rpm libreadline-java-0.8.0-24.3.el6.src.rpm libspatialite-2.4.0-0.6.RC4.el6op.src.rpm libwebp-0.3.0-2.el6op.src.rpm maven3-3.0.3-4.src.rpm netcdf-4.1.1-3.el6op.3.src.rpm nodejs010-nodejs-bignumber.js-1.1.1-2.el6op.src.rpm nodejs010-nodejs-bson-0.2.2-3.el6op.src.rpm nodejs010-nodejs-buffer-crc32-0.2.1-2.el6op.src.rpm nodejs010-nodejs-bytes-0.2.1-2.el6op.src.rpm nodejs010-nodejs-colors-0.6.2-2.el6op.src.rpm nodejs010-nodejs-commander-1.1.1-3.el6op.src.rpm nodejs010-nodejs-connect-2.7.10-2.el6op.src.rpm nodejs010-nodejs-cookie-0.1.0-2.el6op.src.rpm nodejs010-nodejs-cookie-signature-1.0.1-2.el6op.src.rpm nodejs010-nodejs-debug-0.7.2-1.el6op.src.rpm nodejs010-nodejs-express-3.2.5-2.el6op.src.rpm nodejs010-nodejs-formidable-1.0.14-3.el6op.src.rpm nodejs010-nodejs-fresh-0.2.0-1.el6op.src.rpm nodejs010-nodejs-generic-pool-2.0.3-3.el6op.src.rpm nodejs010-nodejs-keypress-0.2.1-1.el6op.src.rpm nodejs010-nodejs-methods-0.0.1-2.el6op.src.rpm nodejs010-nodejs-mongodb-1.3.17-2.el6op.src.rpm nodejs010-nodejs-mysql-2.0.0-alpha9.1.el6op.src.rpm nodejs010-nodejs-node-static-0.6.9-2.el6op.src.rpm nodejs010-nodejs-optimist-0.4.0-2.el6op.src.rpm nodejs010-nodejs-options-0.0.5-2.el6op.src.rpm nodejs010-nodejs-pause-0.0.1-2.el6op.src.rpm nodejs010-nodejs-pg-0.12.3-3.el6op.src.rpm nodejs010-nodejs-range-parser-0.0.4-2.el6op.src.rpm nodejs010-nodejs-require-all-0.0.8-2.el6op.src.rpm nodejs010-nodejs-send-0.1.4-2.el6op.src.rpm nodejs010-nodejs-supervisor-0.5.2-3.el6op.src.rpm nodejs010-nodejs-tinycolor-0.0.1-5.el6op.src.rpm nodejs010-nodejs-wordwrap-0.0.2-2.el6op.src.rpm nodejs010-nodejs-ws-0.4.25-8.el6op.src.rpm openshift-enterprise-upgrade-2.2.0.4-1.el6op.src.rpm openshift-origin-cartridge-cron-1.23.1.0-1.el6op.src.rpm openshift-origin-cartridge-diy-1.24.1.0-1.el6op.src.rpm openshift-origin-cartridge-haproxy-1.27.2.0-1.el6op.src.rpm openshift-origin-cartridge-jbossews-1.29.1.0-1.el6op.src.rpm openshift-origin-cartridge-jenkins-1.25.1.0-1.el6op.src.rpm openshift-origin-cartridge-jenkins-client-1.25.1.0-1.el6op.src.rpm openshift-origin-cartridge-mock-1.21.1.0-1.el6op.src.rpm openshift-origin-cartridge-mock-plugin-1.20.1.0-1.el6op.src.rpm openshift-origin-cartridge-mongodb-1.23.2.0-1.el6op.src.rpm openshift-origin-cartridge-mysql-1.28.1.0-1.el6op.src.rpm openshift-origin-cartridge-nodejs-1.30.1.0-1.el6op.src.rpm openshift-origin-cartridge-perl-1.26.1.0-1.el6op.src.rpm openshift-origin-cartridge-php-1.29.1.0-1.el6op.src.rpm openshift-origin-cartridge-postgresql-1.29.2.0-1.el6op.src.rpm openshift-origin-cartridge-python-1.29.1.0-1.el6op.src.rpm openshift-origin-cartridge-ruby-1.28.1.0-1.el6op.src.rpm openshift-origin-logshifter-1.8.1.0-1.el6op.src.rpm openshift-origin-msg-common-1.21.1.0-1.el6op.src.rpm openshift-origin-msg-node-mcollective-1.27.1.1-1.el6op.src.rpm openshift-origin-node-proxy-1.25.1.1-1.el6op.src.rpm openshift-origin-node-util-1.30.3.2-1.el6op.src.rpm openshift-origin-port-proxy-1.9.1.0-1.el6op.src.rpm openshift-origin-util-scl-1.19.1.0-1.el6op.src.rpm pam_openshift-1.12.1.0-1.el6op.src.rpm perl-App-cpanminus-1.4008-1.el6op.src.rpm perl-Class-Accessor-0.31-6.1.el6.src.rpm perl-Class-DBI-3.0.17-5.el6op.src.rpm perl-Class-DBI-Pg-0.09-9.el6op.src.rpm perl-Class-Data-Inheritable-0.08-3.1.el6.src.rpm perl-Class-Factory-Util-1.7-5.el6op.src.rpm perl-Class-Trigger-0.13-2.1.el6.src.rpm perl-Clone-0.31-3.1.el6.src.rpm perl-DBIx-ContextualFetch-1.03-7.el6op.src.rpm perl-DateTime-Format-Builder-0.7901-4.el6op.src.rpm perl-DateTime-Format-Pg-0.16004-3.el6op.src.rpm perl-DateTime-Format-Strptime-1.1000-3.el6op.src.rpm perl-IO-stringy-2.110-10.1.el6.src.rpm perl-Ima-DBI-0.35-7.el6op.src.rpm perl-JSON-2.15-5.el6.src.rpm perl-UNIVERSAL-moniker-0.08-9.el6op.src.rpm perl-YAML-0.70-4.el6.src.rpm php-5.3.3-38.el6.src.rpm php-extras-5.3.3-3.el6op.src.rpm php-pear-MDB2-2.5.0-0.3.b3.el6op.src.rpm php-pear-MDB2-Driver-pgsql-1.5.0-0.1.b3.el6op.src.rpm php-pecl-imagick-3.1.2-1.el6_5.src.rpm php-pecl-mongo-1.4.4-1.el6op.src.rpm php-pecl-xdebug-2.1.4-1.el6op.src.rpm php54-php-pecl-imagick-3.1.2-1.el6op.src.rpm php54-php-pecl-mongo-1.4.5-1.el6op.src.rpm php54-php-pecl-xdebug-2.2.3-3.el6op.src.rpm postgis-1.5.3-1.el6op.src.rpm postgresql-ip4r-1.05-1.el6op.src.rpm postgresql92-pgRouting-2.0.0-2.el6op.src.rpm postgresql92-postgis-2.1.0-0.el6op.src.rpm proj-4.7.0-1.el6op.src.rpm python-pymongo-2.5.2-3.el6op.src.rpm python-virtualenv-1.10.1-1.el6op.src.rpm python27-mod_wsgi-3.4-26.el6op.src.rpm python27-python-pip-1.4-7.el6op.src.rpm python33-mod_wsgi-3.4-26.el6op.src.rpm quartz-2.2.1.redhat_1-1.el6_5.src.rpm quartz-2.2.1.redhat_1-1.src.rpm rsyslog7-7.4.10-3.el6op.src.rpm ruby-RMagick-2.13.1-6.el6op.1.src.rpm ruby-mysql-2.8.2-2.el6op.src.rpm ruby193-facter-1.6.6-3.el6op.src.rpm ruby193-js-1.8.5-10.el6op.src.rpm ruby193-mcollective-2.4.1-6.el6op.src.rpm ruby193-ruby-mysql-2.8.2-8.el6op.src.rpm ruby193-ruby-selinux-2.0.94-3.el6op.src.rpm ruby193-rubygem-bson-1.8.1-1.el6op.src.rpm ruby193-rubygem-bson_ext-1.8.1-2.el6op.src.rpm ruby193-rubygem-commander-4.0.3-5.el6op.src.rpm ruby193-rubygem-daemon_controller-1.1.0-1.el6op.src.rpm ruby193-rubygem-daemons-1.0.10-4.el6op.src.rpm ruby193-rubygem-fastthread-1.0.7-7.el6op.src.rpm ruby193-rubygem-file-tail-1.0.5-5.el6op.src.rpm ruby193-rubygem-fssm-0.2.8.1-2.el6op.src.rpm ruby193-rubygem-highline-1.6.16-1.el6op.src.rpm ruby193-rubygem-json-1.7.3-5.el6op.src.rpm ruby193-rubygem-json_pure-1.7.3-1.el6.src.rpm ruby193-rubygem-minitest-3.5.0-3.el6op.src.rpm ruby193-rubygem-mongo-1.8.1-1.el6op.src.rpm ruby193-rubygem-open4-1.3.0-3.el6op.src.rpm ruby193-rubygem-parallel-0.8.0-1.el6op.src.rpm ruby193-rubygem-parseconfig-1.0.2-1.el6op.src.rpm ruby193-rubygem-passenger-3.0.21-3.el6op.src.rpm ruby193-rubygem-pg-0.12.2-4.el6op.src.rpm ruby193-rubygem-rest-client-1.6.1-2.el6op.src.rpm ruby193-rubygem-ruby2ruby-1.3.1-2.el6op.src.rpm ruby193-rubygem-ruby_parser-2.3.1-3.el6op.src.rpm ruby193-rubygem-safe_yaml-0.9.1-1.el6op.src.rpm ruby193-rubygem-sexp_processor-3.2.0-2.el6op.src.rpm ruby193-rubygem-spruz-0.2.5-5.el6op.src.rpm ruby193-rubygem-stomp-1.2.14-1.el6op.src.rpm ruby193-rubygem-systemu-2.5.2-2.el6op.src.rpm ruby193-rubygem-xml-simple-1.0.12-10.el6op.src.rpm ruby200-rubygem-passenger-4.0.18-17.el6op.src.rpm rubygem-ParseTree-3.0.5-2.el6op.src.rpm rubygem-RubyInline-3.8.4-3.el6op.src.rpm rubygem-ZenTest-4.3.3-1.el6op.src.rpm rubygem-bson-1.8.3-1.el6op.src.rpm rubygem-bson_ext-1.8.3-1.el6op.src.rpm rubygem-bundler-1.0.21-3.el6op.src.rpm rubygem-diff-lcs-1.1.2-5.el6op.src.rpm rubygem-fastthread-1.0.7-4.el6op.src.rpm rubygem-file-tail-1.0.5-4.el6op.src.rpm rubygem-json-1.7.3-2.el6op.src.rpm rubygem-nokogiri-1.4.3.1-1.el6op.src.rpm rubygem-open4-1.3.0-2.el6op.src.rpm rubygem-openshift-origin-common-1.28.3.0-1.el6op.src.rpm rubygem-openshift-origin-container-selinux-0.10.1.0-1.el6op.src.rpm rubygem-openshift-origin-frontend-apache-mod-rewrite-0.7.1.2-1.el6op.src.rpm rubygem-openshift-origin-frontend-apache-vhost-0.10.1.1-1.el6op.src.rpm rubygem-openshift-origin-frontend-apachedb-0.6.1.0-1.el6op.src.rpm rubygem-openshift-origin-frontend-haproxy-sni-proxy-0.4.1.0-1.el6op.src.rpm rubygem-openshift-origin-frontend-nodejs-websocket-0.4.1.0-1.el6op.src.rpm rubygem-openshift-origin-node-1.31.3.5-1.el6op.src.rpm rubygem-parseconfig-0.5.2-5.el6op.src.rpm rubygem-passenger-3.0.21-12.el6op.src.rpm rubygem-rack-1.3.0-4.el6op.src.rpm rubygem-rake-0.8.7-2.1.el6.src.rpm rubygem-ruby2ruby-1.2.4-3.el6op.src.rpm rubygem-ruby_parser-2.0.4-6.el6op.src.rpm rubygem-sexp_processor-3.0.4-2.el6op.src.rpm rubygem-spruz-0.2.5-4.el6op.src.rpm rubygem-sqlite3-1.3.3-4.el6op.src.rpm rubygem-stomp-1.1.8-1.el6op.src.rpm rubygem-systemu-1.2.0-3.el6op.src.rpm rubygem-thor-0.14.6-2.el6op.src.rpm rubygem-thread-dump-0.0.5-93.el6op.src.rpm rubygems-1.8.24-6.el6op.src.rpm shapelib-1.3.0b2-10.2.el6op.src.rpm socat-1.7.2.2-1.el6op.src.rpm ta-lib-0.4.0-1.el6op.src.rpm uuid-1.6.1-10.el6.src.rpm xerces-c-3.0.1-20.el6.src.rpm yum-utils-1.1.30-17.el6_5.src.rpm noarch: cfitsio-docs-3.240-3.el6op.noarch.rpm gdal-doc-1.9.2-8.el6op.noarch.rpm gdal-javadoc-1.9.2-8.el6op.noarch.rpm jboss-eap6-modules-6.0.0.GA-8.el6op.noarch.rpm jboss-openshift-metrics-module-1.0.2.redhat_1-1.2.el6_5.noarch.rpm jenkins-1.565.3-1.el6op.noarch.rpm json-c-doc-0.10-3.el6op.noarch.rpm libgta-doc-1.0.2-2.el6op.noarch.rpm maven3-3.0.3-4.noarch.rpm nodejs010-nodejs-bignumber.js-1.1.1-2.el6op.noarch.rpm nodejs010-nodejs-buffer-crc32-0.2.1-2.el6op.noarch.rpm nodejs010-nodejs-bytes-0.2.1-2.el6op.noarch.rpm nodejs010-nodejs-colors-0.6.2-2.el6op.noarch.rpm nodejs010-nodejs-commander-1.1.1-3.el6op.noarch.rpm nodejs010-nodejs-connect-2.7.10-2.el6op.noarch.rpm nodejs010-nodejs-cookie-0.1.0-2.el6op.noarch.rpm nodejs010-nodejs-cookie-signature-1.0.1-2.el6op.noarch.rpm nodejs010-nodejs-debug-0.7.2-1.el6op.noarch.rpm nodejs010-nodejs-express-3.2.5-2.el6op.noarch.rpm nodejs010-nodejs-formidable-1.0.14-3.el6op.noarch.rpm nodejs010-nodejs-fresh-0.2.0-1.el6op.noarch.rpm nodejs010-nodejs-generic-pool-2.0.3-3.el6op.noarch.rpm nodejs010-nodejs-keypress-0.2.1-1.el6op.noarch.rpm nodejs010-nodejs-methods-0.0.1-2.el6op.noarch.rpm nodejs010-nodejs-mongodb-1.3.17-2.el6op.noarch.rpm nodejs010-nodejs-mysql-2.0.0-alpha9.1.el6op.noarch.rpm nodejs010-nodejs-node-static-0.6.9-2.el6op.noarch.rpm nodejs010-nodejs-optimist-0.4.0-2.el6op.noarch.rpm nodejs010-nodejs-options-0.0.5-2.el6op.noarch.rpm nodejs010-nodejs-pause-0.0.1-2.el6op.noarch.rpm nodejs010-nodejs-range-parser-0.0.4-2.el6op.noarch.rpm nodejs010-nodejs-require-all-0.0.8-2.el6op.noarch.rpm nodejs010-nodejs-send-0.1.4-2.el6op.noarch.rpm nodejs010-nodejs-supervisor-0.5.2-3.el6op.noarch.rpm nodejs010-nodejs-tinycolor-0.0.1-5.el6op.noarch.rpm nodejs010-nodejs-wordwrap-0.0.2-2.el6op.noarch.rpm openshift-enterprise-release-2.2.0.4-1.el6op.noarch.rpm openshift-enterprise-upgrade-node-2.2.0.4-1.el6op.noarch.rpm openshift-enterprise-yum-validator-2.2.0.4-1.el6op.noarch.rpm openshift-origin-cartridge-cron-1.23.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-jbossews-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-nodejs-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-perl-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-php-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-python-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-optional-ruby-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-jbossews-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-nodejs-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-perl-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-php-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-python-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-dependencies-recommended-ruby-1.27.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-diy-1.24.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-haproxy-1.27.2.0-1.el6op.noarch.rpm openshift-origin-cartridge-jbossews-1.29.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-jenkins-1.25.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-jenkins-client-1.25.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-mock-1.21.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-mock-plugin-1.20.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-mongodb-1.23.2.0-1.el6op.noarch.rpm openshift-origin-cartridge-mysql-1.28.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-nodejs-1.30.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-perl-1.26.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-php-1.29.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-postgresql-1.29.2.0-1.el6op.noarch.rpm openshift-origin-cartridge-python-1.29.1.0-1.el6op.noarch.rpm openshift-origin-cartridge-ruby-1.28.1.0-1.el6op.noarch.rpm openshift-origin-msg-common-1.21.1.0-1.el6op.noarch.rpm openshift-origin-msg-node-mcollective-1.27.1.1-1.el6op.noarch.rpm openshift-origin-node-proxy-1.25.1.1-1.el6op.noarch.rpm openshift-origin-node-util-1.30.3.2-1.el6op.noarch.rpm openshift-origin-port-proxy-1.9.1.0-1.el6op.noarch.rpm openshift-origin-util-scl-1.19.1.0-1.el6op.noarch.rpm perl-App-cpanminus-1.4008-1.el6op.noarch.rpm perl-Class-Accessor-0.31-6.1.el6.noarch.rpm perl-Class-DBI-3.0.17-5.el6op.noarch.rpm perl-Class-DBI-Pg-0.09-9.el6op.noarch.rpm perl-Class-Data-Inheritable-0.08-3.1.el6.noarch.rpm perl-Class-Factory-Util-1.7-5.el6op.noarch.rpm perl-Class-Trigger-0.13-2.1.el6.noarch.rpm perl-DBIx-ContextualFetch-1.03-7.el6op.noarch.rpm perl-DateTime-Format-Builder-0.7901-4.el6op.noarch.rpm perl-DateTime-Format-Pg-0.16004-3.el6op.noarch.rpm perl-DateTime-Format-Strptime-1.1000-3.el6op.noarch.rpm perl-IO-stringy-2.110-10.1.el6.noarch.rpm perl-Ima-DBI-0.35-7.el6op.noarch.rpm perl-JSON-2.15-5.el6.noarch.rpm perl-UNIVERSAL-moniker-0.08-9.el6op.noarch.rpm perl-YAML-0.70-4.el6.noarch.rpm php-pear-MDB2-2.5.0-0.3.b3.el6op.noarch.rpm php-pear-MDB2-Driver-pgsql-1.5.0-0.1.b3.el6op.noarch.rpm python-virtualenv-1.10.1-1.el6op.noarch.rpm python27-python-pip-1.4-7.el6op.noarch.rpm python27-python-pip-virtualenv-1.4-7.el6op.noarch.rpm quartz-2.2.1.redhat_1-1.el6_5.noarch.rpm quartz-2.2.1.redhat_1-1.noarch.rpm ruby193-mcollective-2.4.1-6.el6op.noarch.rpm ruby193-mcollective-common-2.4.1-6.el6op.noarch.rpm ruby193-rubygem-bson-1.8.1-1.el6op.noarch.rpm ruby193-rubygem-commander-4.0.3-5.el6op.noarch.rpm ruby193-rubygem-daemon_controller-1.1.0-1.el6op.noarch.rpm ruby193-rubygem-daemons-1.0.10-4.el6op.noarch.rpm ruby193-rubygem-file-tail-1.0.5-5.el6op.noarch.rpm ruby193-rubygem-fssm-0.2.8.1-2.el6op.noarch.rpm ruby193-rubygem-highline-1.6.16-1.el6op.noarch.rpm ruby193-rubygem-json_pure-1.7.3-1.el6.noarch.rpm ruby193-rubygem-minitest-3.5.0-3.el6op.noarch.rpm ruby193-rubygem-mongo-1.8.1-1.el6op.noarch.rpm ruby193-rubygem-open4-1.3.0-3.el6op.noarch.rpm ruby193-rubygem-parallel-0.8.0-1.el6op.noarch.rpm ruby193-rubygem-parseconfig-1.0.2-1.el6op.noarch.rpm ruby193-rubygem-rest-client-1.6.1-2.el6op.noarch.rpm ruby193-rubygem-ruby2ruby-1.3.1-2.el6op.noarch.rpm ruby193-rubygem-ruby_parser-2.3.1-3.el6op.noarch.rpm ruby193-rubygem-safe_yaml-0.9.1-1.el6op.noarch.rpm ruby193-rubygem-sexp_processor-3.2.0-2.el6op.noarch.rpm ruby193-rubygem-spruz-0.2.5-5.el6op.noarch.rpm ruby193-rubygem-stomp-1.2.14-1.el6op.noarch.rpm ruby193-rubygem-systemu-2.5.2-2.el6op.noarch.rpm ruby193-rubygem-xml-simple-1.0.12-10.el6op.noarch.rpm ruby200-rubygem-passenger-doc-4.0.18-17.el6op.noarch.rpm rubygem-ParseTree-3.0.5-2.el6op.noarch.rpm rubygem-RubyInline-3.8.4-3.el6op.noarch.rpm rubygem-ZenTest-4.3.3-1.el6op.noarch.rpm rubygem-bson-1.8.3-1.el6op.noarch.rpm rubygem-bundler-1.0.21-3.el6op.noarch.rpm rubygem-diff-lcs-1.1.2-5.el6op.noarch.rpm rubygem-file-tail-1.0.5-4.el6op.noarch.rpm rubygem-open4-1.3.0-2.el6op.noarch.rpm rubygem-openshift-origin-common-1.28.3.0-1.el6op.noarch.rpm rubygem-openshift-origin-container-selinux-0.10.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-frontend-apache-mod-rewrite-0.7.1.2-1.el6op.noarch.rpm rubygem-openshift-origin-frontend-apache-vhost-0.10.1.1-1.el6op.noarch.rpm rubygem-openshift-origin-frontend-apachedb-0.6.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-frontend-haproxy-sni-proxy-0.4.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-frontend-nodejs-websocket-0.4.1.0-1.el6op.noarch.rpm rubygem-openshift-origin-node-1.31.3.5-1.el6op.noarch.rpm rubygem-parseconfig-0.5.2-5.el6op.noarch.rpm rubygem-rack-1.3.0-4.el6op.noarch.rpm rubygem-rake-0.8.7-2.1.el6.noarch.rpm rubygem-ruby2ruby-1.2.4-3.el6op.noarch.rpm rubygem-ruby_parser-2.0.4-6.el6op.noarch.rpm rubygem-sexp_processor-3.0.4-2.el6op.noarch.rpm rubygem-spruz-0.2.5-4.el6op.noarch.rpm rubygem-stomp-1.1.8-1.el6op.noarch.rpm rubygem-systemu-1.2.0-3.el6op.noarch.rpm rubygem-thor-0.14.6-2.el6op.noarch.rpm rubygems-1.8.24-6.el6op.noarch.rpm rubygems-devel-1.8.24-6.el6op.noarch.rpm xerces-c-doc-3.0.1-20.el6.noarch.rpm yum-plugin-priorities-1.1.30-17.el6_5.noarch.rpm x86_64: CharLS-1.0-1.el6op.x86_64.rpm CharLS-debuginfo-1.0-1.el6op.x86_64.rpm CharLS-devel-1.0-1.el6op.x86_64.rpm ImageMagick-debuginfo-6.5.4.7-7.el6_5.x86_64.rpm ImageMagick-devel-6.5.4.7-7.el6_5.x86_64.rpm ImageMagick-doc-6.5.4.7-7.el6_5.x86_64.rpm ImageMagick-perl-6.5.4.7-7.el6_5.x86_64.rpm activemq-client-5.9.0-5.redhat.610328.el6op.x86_64.rpm armadillo-3.800.2-1.el6op.x86_64.rpm armadillo-debuginfo-3.800.2-1.el6op.x86_64.rpm armadillo-devel-3.800.2-1.el6op.x86_64.rpm atlas-debuginfo-3.8.4-2.el6.x86_64.rpm atlas-devel-3.8.4-2.el6.x86_64.rpm blas-devel-3.2.1-4.el6.x86_64.rpm cfitsio-3.240-3.el6op.x86_64.rpm cfitsio-debuginfo-3.240-3.el6op.x86_64.rpm cfitsio-devel-3.240-3.el6op.x86_64.rpm cfitsio-static-3.240-3.el6op.x86_64.rpm facter-1.6.6-1.el6op.x86_64.rpm freexl-1.0.0d-1.el6op.x86_64.rpm freexl-debuginfo-1.0.0d-1.el6op.x86_64.rpm freexl-devel-1.0.0d-1.el6op.x86_64.rpm gd-debuginfo-2.0.35-11.el6.x86_64.rpm gd-devel-2.0.35-11.el6.x86_64.rpm gdal-1.9.2-8.el6op.x86_64.rpm gdal-debuginfo-1.9.2-8.el6op.x86_64.rpm gdal-devel-1.9.2-8.el6op.x86_64.rpm gdal-java-1.9.2-8.el6op.x86_64.rpm gdal-libs-1.9.2-8.el6op.x86_64.rpm gdal-perl-1.9.2-8.el6op.x86_64.rpm gdal-python-1.9.2-8.el6op.x86_64.rpm gdal-ruby-1.9.2-8.el6op.x86_64.rpm geos-3.3.2-1.el6op.x86_64.rpm geos-debuginfo-3.3.2-1.el6op.x86_64.rpm geos-devel-3.3.2-1.el6op.x86_64.rpm ghostscript-debuginfo-8.70-19.el6.x86_64.rpm ghostscript-devel-8.70-19.el6.x86_64.rpm ghostscript-doc-8.70-19.el6.x86_64.rpm gpsbabel-1.4.4-4.el6op.x86_64.rpm gpsbabel-debuginfo-1.4.4-4.el6op.x86_64.rpm haproxy-1.4.22-5.el6op.x86_64.rpm haproxy-debuginfo-1.4.22-5.el6op.x86_64.rpm haproxy15side-1.5.4-1.el6op.x86_64.rpm haproxy15side-debuginfo-1.5.4-1.el6op.x86_64.rpm hdf5-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-debuginfo-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-devel-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-mpich2-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-mpich2-devel-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-mpich2-static-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-openmpi-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-openmpi-devel-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-openmpi-static-1.8.5.patch1-7.el6op.x86_64.rpm hdf5-static-1.8.5.patch1-7.el6op.x86_64.rpm icu-debuginfo-4.2.1-9.1.el6_2.x86_64.rpm jasper-debuginfo-1.900.1-15.el6_1.1.x86_64.rpm jasper-devel-1.900.1-15.el6_1.1.x86_64.rpm jenkins-plugin-openshift-0.6.40.1-0.el6op.x86_64.rpm js-1.70-12.el6op.x86_64.rpm js-debuginfo-1.70-12.el6op.x86_64.rpm js-devel-1.70-12.el6op.x86_64.rpm json-c-0.10-3.el6op.x86_64.rpm json-c-debuginfo-0.10-3.el6op.x86_64.rpm json-c-devel-0.10-3.el6op.x86_64.rpm jython-2.2.1-4.8.el6.x86_64.rpm jython-debuginfo-2.2.1-4.8.el6.x86_64.rpm jython-demo-2.2.1-4.8.el6.x86_64.rpm jython-javadoc-2.2.1-4.8.el6.x86_64.rpm jython-manual-2.2.1-4.8.el6.x86_64.rpm lapack-debuginfo-3.2.1-4.el6.x86_64.rpm lapack-devel-3.2.1-4.el6.x86_64.rpm lcms-debuginfo-1.19-1.el6.x86_64.rpm lcms-devel-1.19-1.el6.x86_64.rpm libc-client-2007e-11.el6.x86_64.rpm libc-client-debuginfo-2007e-11.el6.x86_64.rpm libc-client-devel-2007e-11.el6.x86_64.rpm libcgroup-debuginfo-0.40.rc1-15.el6_6.x86_64.rpm libcgroup-pam-0.40.rc1-15.el6_6.x86_64.rpm libdap-3.11.0-1.el6op.x86_64.rpm libdap-debuginfo-3.11.0-1.el6op.x86_64.rpm libdap-devel-3.11.0-1.el6op.x86_64.rpm libdap-doc-3.11.0-1.el6op.x86_64.rpm libestr-0.1.9-2.el6op.x86_64.rpm libestr-debuginfo-0.1.9-2.el6op.x86_64.rpm libestr-devel-0.1.9-2.el6op.x86_64.rpm libev-4.04-4.el6op.x86_64.rpm libev-debuginfo-4.04-4.el6op.x86_64.rpm libev-devel-4.04-4.el6op.x86_64.rpm libffi-debuginfo-3.0.5-3.2.el6.x86_64.rpm libffi-devel-3.0.5-3.2.el6.x86_64.rpm libgeotiff-1.2.5-5.el6op.x86_64.rpm libgeotiff-debuginfo-1.2.5-5.el6op.x86_64.rpm libgeotiff-devel-1.2.5-5.el6op.x86_64.rpm libgta-1.0.2-2.el6op.x86_64.rpm libgta-debuginfo-1.0.2-2.el6op.x86_64.rpm libgta-devel-1.0.2-2.el6op.x86_64.rpm libicu-devel-4.2.1-9.1.el6_2.x86_64.rpm libmcrypt-2.5.8-10.el6op.x86_64.rpm libmcrypt-debuginfo-2.5.8-10.el6op.x86_64.rpm libmcrypt-devel-2.5.8-10.el6op.x86_64.rpm libreadline-java-0.8.0-24.3.el6.x86_64.rpm libreadline-java-debuginfo-0.8.0-24.3.el6.x86_64.rpm libreadline-java-javadoc-0.8.0-24.3.el6.x86_64.rpm libspatialite-2.4.0-0.6.RC4.el6op.x86_64.rpm libspatialite-debuginfo-2.4.0-0.6.RC4.el6op.x86_64.rpm libspatialite-devel-2.4.0-0.6.RC4.el6op.x86_64.rpm libwebp-0.3.0-2.el6op.x86_64.rpm libwebp-debuginfo-0.3.0-2.el6op.x86_64.rpm libwebp-devel-0.3.0-2.el6op.x86_64.rpm libwebp-java-0.3.0-2.el6op.x86_64.rpm libwebp-tools-0.3.0-2.el6op.x86_64.rpm mod_passenger-3.0.21-12.el6op.x86_64.rpm netcdf-4.1.1-3.el6op.3.x86_64.rpm netcdf-debuginfo-4.1.1-3.el6op.3.x86_64.rpm netcdf-devel-4.1.1-3.el6op.3.x86_64.rpm netcdf-static-4.1.1-3.el6op.3.x86_64.rpm nodejs010-nodejs-bson-0.2.2-3.el6op.x86_64.rpm nodejs010-nodejs-bson-debuginfo-0.2.2-3.el6op.x86_64.rpm nodejs010-nodejs-pg-0.12.3-3.el6op.x86_64.rpm nodejs010-nodejs-pg-debuginfo-0.12.3-3.el6op.x86_64.rpm nodejs010-nodejs-ws-0.4.25-8.el6op.x86_64.rpm nodejs010-nodejs-ws-debuginfo-0.4.25-8.el6op.x86_64.rpm openshift-origin-logshifter-1.8.1.0-1.el6op.x86_64.rpm pam_openshift-1.12.1.0-1.el6op.x86_64.rpm pam_openshift-debuginfo-1.12.1.0-1.el6op.x86_64.rpm perl-Clone-0.31-3.1.el6.x86_64.rpm perl-Clone-debuginfo-0.31-3.1.el6.x86_64.rpm php-bcmath-5.3.3-38.el6.x86_64.rpm php-debuginfo-5.3.3-38.el6.x86_64.rpm php-devel-5.3.3-38.el6.x86_64.rpm php-extras-debuginfo-5.3.3-3.el6op.x86_64.rpm php-fpm-5.3.3-38.el6.x86_64.rpm php-imap-5.3.3-38.el6.x86_64.rpm php-intl-5.3.3-38.el6.x86_64.rpm php-mbstring-5.3.3-38.el6.x86_64.rpm php-mcrypt-5.3.3-3.el6op.x86_64.rpm php-pecl-imagick-3.1.2-1.el6_5.x86_64.rpm php-pecl-imagick-debuginfo-3.1.2-1.el6_5.x86_64.rpm php-pecl-mongo-1.4.4-1.el6op.x86_64.rpm php-pecl-mongo-debuginfo-1.4.4-1.el6op.x86_64.rpm php-pecl-xdebug-2.1.4-1.el6op.x86_64.rpm php-pecl-xdebug-debuginfo-2.1.4-1.el6op.x86_64.rpm php-process-5.3.3-38.el6.x86_64.rpm php54-php-pecl-imagick-3.1.2-1.el6op.x86_64.rpm php54-php-pecl-imagick-debuginfo-3.1.2-1.el6op.x86_64.rpm php54-php-pecl-mongo-1.4.5-1.el6op.x86_64.rpm php54-php-pecl-mongo-debuginfo-1.4.5-1.el6op.x86_64.rpm php54-php-pecl-xdebug-2.2.3-3.el6op.x86_64.rpm php54-php-pecl-xdebug-debuginfo-2.2.3-3.el6op.x86_64.rpm postgis-1.5.3-1.el6op.x86_64.rpm postgis-debuginfo-1.5.3-1.el6op.x86_64.rpm postgis-docs-1.5.3-1.el6op.x86_64.rpm postgresql-ip4r-1.05-1.el6op.x86_64.rpm postgresql-ip4r-debuginfo-1.05-1.el6op.x86_64.rpm postgresql92-pgRouting-2.0.0-2.el6op.x86_64.rpm postgresql92-pgRouting-debuginfo-2.0.0-2.el6op.x86_64.rpm postgresql92-postgis-2.1.0-0.el6op.x86_64.rpm postgresql92-postgis-debuginfo-2.1.0-0.el6op.x86_64.rpm postgresql92-postgis-docs-2.1.0-0.el6op.x86_64.rpm postgresql92-postgis-utils-2.1.0-0.el6op.x86_64.rpm proj-4.7.0-1.el6op.x86_64.rpm proj-debuginfo-4.7.0-1.el6op.x86_64.rpm proj-devel-4.7.0-1.el6op.x86_64.rpm proj-nad-4.7.0-1.el6op.x86_64.rpm python-bson-2.5.2-3.el6op.x86_64.rpm python-pymongo-2.5.2-3.el6op.x86_64.rpm python-pymongo-debuginfo-2.5.2-3.el6op.x86_64.rpm python-pymongo-gridfs-2.5.2-3.el6op.x86_64.rpm python27-mod_wsgi-3.4-26.el6op.x86_64.rpm python27-mod_wsgi-debuginfo-3.4-26.el6op.x86_64.rpm python33-mod_wsgi-3.4-26.el6op.x86_64.rpm python33-mod_wsgi-debuginfo-3.4-26.el6op.x86_64.rpm rsyslog7-debuginfo-7.4.10-3.el6op.x86_64.rpm rsyslog7-mmopenshift-7.4.10-3.el6op.x86_64.rpm ruby-RMagick-2.13.1-6.el6op.1.x86_64.rpm ruby-RMagick-debuginfo-2.13.1-6.el6op.1.x86_64.rpm ruby-mysql-2.8.2-2.el6op.x86_64.rpm ruby-mysql-debuginfo-2.8.2-2.el6op.x86_64.rpm ruby-nokogiri-1.4.3.1-1.el6op.x86_64.rpm ruby-sqlite3-1.3.3-4.el6op.x86_64.rpm ruby193-facter-1.6.6-3.el6op.x86_64.rpm ruby193-js-1.8.5-10.el6op.x86_64.rpm ruby193-js-debuginfo-1.8.5-10.el6op.x86_64.rpm ruby193-js-devel-1.8.5-10.el6op.x86_64.rpm ruby193-mod_passenger-3.0.21-3.el6op.x86_64.rpm ruby193-ruby-mysql-2.8.2-8.el6op.x86_64.rpm ruby193-ruby-mysql-debuginfo-2.8.2-8.el6op.x86_64.rpm ruby193-ruby-selinux-2.0.94-3.el6op.x86_64.rpm ruby193-ruby-selinux-debuginfo-2.0.94-3.el6op.x86_64.rpm ruby193-rubygem-bson_ext-1.8.1-2.el6op.x86_64.rpm ruby193-rubygem-bson_ext-debuginfo-1.8.1-2.el6op.x86_64.rpm ruby193-rubygem-fastthread-1.0.7-7.el6op.x86_64.rpm ruby193-rubygem-fastthread-debuginfo-1.0.7-7.el6op.x86_64.rpm ruby193-rubygem-json-1.7.3-5.el6op.x86_64.rpm ruby193-rubygem-json-debuginfo-1.7.3-5.el6op.x86_64.rpm ruby193-rubygem-passenger-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-debuginfo-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-devel-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-native-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-passenger-native-libs-3.0.21-3.el6op.x86_64.rpm ruby193-rubygem-pg-0.12.2-4.el6op.x86_64.rpm ruby193-rubygem-pg-debuginfo-0.12.2-4.el6op.x86_64.rpm ruby200-mod_passenger-4.0.18-17.el6op.x86_64.rpm ruby200-rubygem-passenger-4.0.18-17.el6op.x86_64.rpm ruby200-rubygem-passenger-debuginfo-4.0.18-17.el6op.x86_64.rpm ruby200-rubygem-passenger-devel-4.0.18-17.el6op.x86_64.rpm ruby200-rubygem-passenger-native-4.0.18-17.el6op.x86_64.rpm ruby200-rubygem-passenger-native-libs-4.0.18-17.el6op.x86_64.rpm rubygem-bson_ext-1.8.3-1.el6op.x86_64.rpm rubygem-bson_ext-debuginfo-1.8.3-1.el6op.x86_64.rpm rubygem-fastthread-1.0.7-4.el6op.x86_64.rpm rubygem-json-1.7.3-2.el6op.x86_64.rpm rubygem-json-debuginfo-1.7.3-2.el6op.x86_64.rpm rubygem-nokogiri-1.4.3.1-1.el6op.x86_64.rpm rubygem-nokogiri-debuginfo-1.4.3.1-1.el6op.x86_64.rpm rubygem-passenger-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-debuginfo-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-devel-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-native-3.0.21-12.el6op.x86_64.rpm rubygem-passenger-native-libs-3.0.21-12.el6op.x86_64.rpm rubygem-sqlite3-1.3.3-4.el6op.x86_64.rpm rubygem-sqlite3-debuginfo-1.3.3-4.el6op.x86_64.rpm rubygem-thread-dump-0.0.5-93.el6op.x86_64.rpm rubygem-thread-dump-debuginfo-0.0.5-93.el6op.x86_64.rpm shapelib-1.3.0b2-10.2.el6op.x86_64.rpm shapelib-debuginfo-1.3.0b2-10.2.el6op.x86_64.rpm shapelib-devel-1.3.0b2-10.2.el6op.x86_64.rpm socat-1.7.2.2-1.el6op.x86_64.rpm socat-debuginfo-1.7.2.2-1.el6op.x86_64.rpm ta-lib-0.4.0-1.el6op.x86_64.rpm ta-lib-debuginfo-0.4.0-1.el6op.x86_64.rpm ta-lib-devel-0.4.0-1.el6op.x86_64.rpm uuid-debuginfo-1.6.1-10.el6.x86_64.rpm uuid-devel-1.6.1-10.el6.x86_64.rpm uuid-pgsql-1.6.1-10.el6.x86_64.rpm xerces-c-3.0.1-20.el6.x86_64.rpm xerces-c-debuginfo-3.0.1-20.el6.x86_64.rpm xerces-c-devel-3.0.1-20.el6.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2014-3602 https://access.redhat.com/security/cve/CVE-2014-3674 https://access.redhat.com/security/updates/classification#moderate https://access.redhat.com/site/documentation/en-US/OpenShift_Enterprise/2/ 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFUV+DYXlSAg2UNWIIRAnd/AJ9i3joXDg26kqXzkFH4dvr8wE3H3gCfWPK/ dKNTxnDEgsgWkoMWk8z3VHM=XGOQ -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . OpenShift Origin 3.3 release resolves critical vulnerabilities and improves data protection.. OpenShift Security Update, Network Isolation Improvements, SELinux Management. . LinuxSecurity.com Team

Nov 03, 2014 Red Hat

security advisoryupdateDoS

Red Hat: RHSA-2014:1795-01 Moderate: cups-filters DoS and Access Issues

Updated cups-filters packages that fix two security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: cups-filters security update Advisory ID: RHSA-2014:1795-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2014:1795.html Issue date: 2014-11-03 CVE Names: CVE-2014-4337 CVE-2014-4338 ==================================================================== 1. Summary: Updated cups-filters packages that fix two security issues are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The cups-filters package contains backends, filters, and other software that was once part of the core CUPS distribution but is now maintained independently. An out-of-bounds read flaw was found in the way the process_browse_data() function of cups-browsed handled certain browse packets. A remote attacker could send a specially crafted browse packet that,when processed by cups-browsed, would crash the cups-browsed daemon. (CVE-2014-4337) A flaw was found in the way the cups-browsed daemon interpreted the "BrowseAllow" directive in the cups-browsed.conf file. An attacker able to add a malformed "BrowseAllow" directive to the cups-browsed.conf file could use this flaw to bypass intended access restrictions. (CVE-2014-4338) All cups-filters users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing this update, the cups-browsed daemon will be restarted automatically. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1091568 - CVE-2014-4338 cups-filters: unsupported BrowseAllow value lets cups-browsed accept from all hosts 1111510 - CVE-2014-4337 cups-filters: cups-browsed DoS via process_browse_data() OOB read 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: cups-filters-1.0.35-15.el7_0.1.src.rpm x86_64: cups-filters-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-libs-1.0.35-15.el7_0.1.i686.rpm cups-filters-libs-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux Client Optional (v. 7): x86_64: cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-devel-1.0.35-15.el7_0.1.i686.rpm cups-filters-devel-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v.7): Source: cups-filters-1.0.35-15.el7_0.1.src.rpm x86_64: cups-filters-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-libs-1.0.35-15.el7_0.1.i686.rpm cups-filters-libs-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-devel-1.0.35-15.el7_0.1.i686.rpm cups-filters-devel-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux Server (v. 7): Source: cups-filters-1.0.35-15.el7_0.1.src.rpm ppc64: cups-filters-1.0.35-15.el7_0.1.ppc64.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.ppc.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.ppc64.rpm cups-filters-libs-1.0.35-15.el7_0.1.ppc.rpm cups-filters-libs-1.0.35-15.el7_0.1.ppc64.rpm s390x: cups-filters-1.0.35-15.el7_0.1.s390x.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.s390.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.s390x.rpm cups-filters-libs-1.0.35-15.el7_0.1.s390.rpm cups-filters-libs-1.0.35-15.el7_0.1.s390x.rpm x86_64: cups-filters-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-libs-1.0.35-15.el7_0.1.i686.rpm cups-filters-libs-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux Server Optional (v. 7): ppc64: cups-filters-debuginfo-1.0.35-15.el7_0.1.ppc.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.ppc64.rpm cups-filters-devel-1.0.35-15.el7_0.1.ppc.rpm cups-filters-devel-1.0.35-15.el7_0.1.ppc64.rpm s390x: cups-filters-debuginfo-1.0.35-15.el7_0.1.s390.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.s390x.rpm cups-filters-devel-1.0.35-15.el7_0.1.s390.rpm cups-filters-devel-1.0.35-15.el7_0.1.s390x.rpm x86_64: cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-devel-1.0.35-15.el7_0.1.i686.rpm cups-filters-devel-1.0.35-15.el7_0.1.x86_64.rpm Red Hat EnterpriseLinux Workstation (v. 7): Source: cups-filters-1.0.35-15.el7_0.1.src.rpm x86_64: cups-filters-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-libs-1.0.35-15.el7_0.1.i686.rpm cups-filters-libs-1.0.35-15.el7_0.1.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v. 7): x86_64: cups-filters-debuginfo-1.0.35-15.el7_0.1.i686.rpm cups-filters-debuginfo-1.0.35-15.el7_0.1.x86_64.rpm cups-filters-devel-1.0.35-15.el7_0.1.i686.rpm cups-filters-devel-1.0.35-15.el7_0.1.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2014-4337 https://access.redhat.com/security/cve/CVE-2014-4338 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFUV9KJXlSAg2UNWIIRAhQXAJ94v3UQHSMi6d7dWtGZf3S5q8Bi5QCfeYZG 1w6uBfxBBPVS+t0n1zFk1pg=diOI -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . A minor refresh has been released for cups-filters that tackles a couple of vulnerabilities in the Red Hat Enterprise Linux 7 distribution.. cups-filters Update, Red Hat Security Advisory, Moderate Impact, Linux Package Fix. . LinuxSecurity.com Team

Nov 03, 2014 Red Hat

security advisoryremote exploitcritical

Ubuntu 12.04 LTS USN-1583-1 Critical Update: Ruby Remote Exploit

Several security issues were fixed in ruby1.9.1. =========================================================================Ubuntu Security Notice USN-1583-1 September 26, 2012 ruby1.9.1 vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.04 LTS Summary: Several security issues were fixed in ruby1.9.1 Software Description: - ruby1.9.1: Interpreter of object-oriented scripting language Ruby Details: It was discovered that Ruby incorrectly allowed untainted strings to be modified in protective safe levels. An attacker could use this flaw to bypass intended access restrictions. (CVE-2011-1005) John Firebaugh discovered that the RubyGems remote gem fetcher did not properly verify SSL certificates. A remote attacker could exploit this to perform a man in the middle attack to alter gem files being downloaded for installation. (CVE-2012-2126) John Firebaugh discovered that the RubyGems remote gem fetcher allowed redirection from HTTPS to HTTP. A remote attacker could exploit this to perform a man in the middle attack to alter gem files being downloaded for installation. (CVE-2012-2125) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.04 LTS: libruby1.9.1 1.9.3.0-1ubuntu2.2 In general, a standard system update will make all the necessary changes. References: CVE-2011-1005, CVE-2012-2125, CVE-2012-2126 Package Information: https://launchpad.net/ubuntu/+source/ruby1.9.1/1.9.3.0-1ubuntu2.2 . Safety Alert USN-2547-2 relates to Python vulnerabilities on Ubuntu 18.04 LTS, implementing updates to strengthen defenses against potential threats.. Ubuntu Update, Ruby Security, Remote Exploit, Man-in-the-Middle, Access Control. . Severity: Critical. LinuxSecurity.com Team

Sep 26, 2012 •Critical Ubuntu

security advisorydenial of serviceinformation leak

Ubuntu 10.04 LTS USN-1294-1 Moderate Denial of Service Risks

Several security issues were fixed in the kernel.. =========================================================================Ubuntu Security Notice USN-1294-1 December 08, 2011 linux-lts-backport-oneiric vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 10.04 LTS Summary: Several security issues were fixed in the kernel. Software Description: - linux-lts-backport-oneiric: Linux kernel backport from Oneiric Details: Peter Huewe discovered an information leak in the handling of reading security-related TPM data. A local, unprivileged user could read the results of a previous TPM command. (CVE-2011-1162) Vasiliy Kulikov discovered that taskstats did not enforce access restrictions. A local attacker could exploit this to read certain information, leading to a loss of privacy. (CVE-2011-2494) Qianfeng Zhang discovered that the bridge networking interface incorrectly handled certain network packets. A remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-2942) Yasuaki Ishimatsu discovered a flaw in the kernel's clock implementation. A local unprivileged attacker could exploit this causing a denial of service. (CVE-2011-3209) Zheng Liu discovered a flaw in how the ext4 filesystem splits extents. A local unprivileged attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-3638) Nick Bowler discovered the kernel GHASH message digest algorithm incorrectly handled error conditions. A local attacker could exploit this to cause a kernel oops. (CVE-2011-4081) Scot Doyle discovered that the bridge networking interface incorrectly handled certain network packets. A remote attacker could exploit this to crash the system, leading to a denial of service. (CVE-2011-4087) A bug was found in the way headroom check was performed in udp6_ufo_fragment() function. A remote attackercould use this flaw to crash the system. (CVE-2011-4326) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 10.04 LTS: linux-image-3.0.0-13-generic 3.0.0-13.22~lucid1 linux-image-3.0.0-13-generic-pae 3.0.0-13.22~lucid1 linux-image-3.0.0-13-server 3.0.0-13.22~lucid1 linux-image-3.0.0-13-virtual 3.0.0-13.22~lucid1 After a standard system update you need to reboot your computer to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1294-1 CVE-2011-1162, CVE-2011-2494, CVE-2011-2942, CVE-2011-3209, CVE-2011-3638, CVE-2011-4081, CVE-2011-4087, CVE-2011-4326 Package Information: https://launchpad.net/ubuntu/+source/linux-lts-backport-oneiric/3.0.0-13.22~lucid1 . Various core vulnerabilities addressed in Ubuntu Security Notice USN-1294-1, resolving potential service disruptions and exposure of sensitive data.. Ubuntu Kernel Security, Oneiric Backport Issues, Linux Kernel Fixes, System Update Risks. . Severity: Important. LinuxSecurity.com Team

Dec 08, 2011 •Important Ubuntu

security advisoryJava updatesession hijacking

Scientific Linux 5.x: Java-1.6.0-OpenJDK Important TLS Issue CVE-2009-3555

Important: java-1.6.0-openjdk security update. Date: Tue, 6 Apr 2010 11:27:17 -0500 Reply-To: Troy Dawson Sender: Security Errata for Scientific Linux From: Troy Dawson Subject: Security ERRATA Important: java-1.6.0-openjdk on SL5.x i386/x86_64 Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it." Synopsis: Important: java-1.6.0-openjdk security update Issue date: 2010-03-31 CVE Names: CVE-2009-3555 CVE-2010-0082 CVE-2010-0084 CVE-2010-0085 CVE-2010-0088 CVE-2010-0091 CVE-2010-0092 CVE-2010-0093 CVE-2010-0094 CVE-2010-0095 CVE-2010-0837 CVE-2010-0838 CVE-2010-0840 CVE-2010-0845 CVE-2010-0847 CVE-2010-0848 A flaw was found in the way the TLS/SSL (Transport Layer Security/Secure Sockets Layer) protocols handle session renegotiation. A man-in-the-middle attacker could use this flaw to prefix arbitrary plain text to a client's session (for example, an HTTPS connection to a website). This could force the server to process an attacker's request as if authenticated using the victim's credentials. (CVE-2009-3555) This update disables renegotiation in the Java Secure Socket Extension (JSSE) component. Unsafe renegotiation can be re-enabled using the sun.security.ssl.allowUnsafeRenegotiation property. A number of flaws have been fixed in the Java Virtual Machine (JVM) and in various Java class implementations. These flaws could allow an unsigned applet or application to bypass intended access restrictions. (CVE-2010-0082, CVE-2010-0084, CVE-2010-0085, CVE-2010-0088, CVE-2010-0094) An untrusted applet could access clipboard information if a drag operation was performed over that applet's canvas. This could lead to an information leak. (CVE-2010-0091) The rawIndex operation incorrectly handled large values, causing the corruption of internal memory structures, resulting in an untrusted applet or application crashing. (CVE-2010-0092) The System.arraycopy operation incorrectly handled large index values, potentially causing array corruption in an untrusted applet or application. (CVE-2010-0093) Subclassesof InetAddress may incorrectly interpret network addresses, allowing an untrusted applet or application to bypass network access restrictions. (CVE-2010-0095) In certain cases, type assignments could result in "non-exact" interface types. This could be used to bypass type-safety restrictions. (CVE-2010-0845) A buffer overflow flaw in LittleCMS (embedded in OpenJDK) could cause an untrusted applet or application using color profiles from untrusted sources to crash. (CVE-2010-0838) An input validation flaw was found in the JRE unpack200 functionality. An untrusted applet or application could use this flaw to elevate its privileges. (CVE-2010-0837) Deferred calls to trusted applet methods could be granted incorrect permissions, allowing an untrusted applet or application to extend its privileges. (CVE-2010-0840) A missing input validation flaw in the JRE could allow an attacker to crash an untrusted applet or application. (CVE-2010-0848) A flaw in Java2D could allow an attacker to execute arbitrary code with the privileges of a user running an untrusted applet or application that uses Java2D. (CVE-2010-0847) Note: The flaws concerning applets in this advisory, CVE-2010-0082, CVE-2010-0084, CVE-2010-0085, CVE-2010-0088, CVE-2010-0091, CVE-2010-0092, CVE-2010-0093, CVE-2010-0094, CVE-2010-0095, CVE-2010-0837, CVE-2010-0838, CVE-2010-0840, CVE-2010-0847, and CVE-2010-0848, can only be triggered in java-1.6.0-openjdk by calling the "appletviewer" application. This update also provides three defense in depth patches. (BZ#575745, BZ#575861, BZ#575789) All running instances of OpenJDK Java must be restarted for the update to take effect. SL 5.x SRPMS: java-1.6.0-openjdk-1.6.0.0-1.11.b16.el5.src.rpm i386: java-1.6.0-openjdk-1.6.0.0-1.11.b16.el5.i386.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.11.b16.el5.i386.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.11.b16.el5.i386.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.11.b16.el5.i386.rpm java-1.6.0-openjdk-src-1.6.0.0-1.11.b16.el5.i386.rpm x86_64: java-1.6.0-openjdk-1.6.0.0-1.11.b16.el5.x86_64.rpm java-1.6.0-openjdk-demo-1.6.0.0-1.11.b16.el5.x86_64.rpm java-1.6.0-openjdk-devel-1.6.0.0-1.11.b16.el5.x86_64.rpm java-1.6.0-openjdk-javadoc-1.6.0.0-1.11.b16.el5.x86_64.rpm java-1.6.0-openjdk-src-1.6.0.0-1.11.b16.el5.x86_64.rpm -Connie Sieh -Troy Dawson . Java-1.6.0-openjdk addresses crucial TLS vulnerabilities with recommended security update instructions.. java security update, TLS issues, application flaws, openjdk vulnerabilities, Scientific Linux. . Severity: Important. LinuxSecurity.com Team

Apr 06, 2010 •Important Scientific Linux

Community Poll

More Polls

Stay Secure with the Latest Linux Advisories

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Refine advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Explore Latest Linux Security advisories

RedHat RHSA-2019-4090:01 Moderate OpenShift 4.1 libseccomp-golang Update

ArchLinux: ASA-201709-1 Critical: Code Execution and Access Risks

SUSE: 2016:1690-1 Important: Kernel Security Updates and Fixes

Red Hat OpenShift 2.2 RHSA-2014:1796-01 Moderate Access Restrictions

Red Hat: RHSA-2014:1795-01 Moderate: cups-filters DoS and Access Issues

Ubuntu 12.04 LTS USN-1583-1 Critical Update: Ruby Remote Exploit

Ubuntu 10.04 LTS USN-1294-1 Moderate Denial of Service Risks

Scientific Linux 5.x: Java-1.6.0-OpenJDK Important TLS Issue CVE-2009-3555

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Ubuntu 25.10 kmod Critical Algif_aead Privilege Escalation USN-8226-1

Ubuntu 26.04 LTS nginx Critical Denial of Service 2026-42945

Ubuntu 26.04 Docker Critical Security Threats USN-8230-1 CVE-2026-33747

Debian OpenSSH Critical DSA-6204-1 CVE-2026-3497 Remote DoS Execution

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Stay Secure with the Latest Linux Advisories

Ubuntu 26.04 LTS python-pip Moderate DoS Regression Fix USN-8344-3

Ubuntu 20.04 LTS GStreamer Base Significant DoS Attack Vulnerability Alert

Ubuntu 20.04 LTS MySQL Important Security Issues USN-8363-2

Ubuntu 20.04 LTS nginx Security Advisory for Critical DoS Vulnerabilities

Oracle Linux 8 gnutls Important Buffer Overflow Auth Bypass ELSA-2026-20611

Oracle Linux 8 ELSA-2026-22315 compat-openssl10 Moderate DoS Fix

Oracle Linux 8 httpd Important Denial of Service Vuln ELSA-2026-22140

Oracle Linux 8 Important Kernel Security Advisory ELSA-2026-21706

Fedora 43 hplip Major Update Addressing Possible Arbitrary Code Execution

Refine advisories

severity

Topics

Distro

Published Date

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Explore Latest Linux Security advisories

Get the latest News and Insights

Community Poll

What got you started with Linux?

Trending News

Search Topics

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!