Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -5 articles for you...
98
security advisorymoderatesecurity issueRed Hat MRG 2.5 RHSA-2014:0441-01 Moderate: Messaging Update Security Issue
Updated Messaging component packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise MRG 2.5 for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Moderate. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat Enterprise MRG Messaging 2.5 security, bug fix, and enhancement update Advisory ID: RHSA-2014:0441-01 Product: Red Hat Enterprise MRG for RHEL-5 Advisory URL: https://access.redhat.com/errata/RHSA-2014:0441.html Issue date: 2014-04-28 CVE Names: CVE-2013-6445 ==================================================================== 1. Summary: Updated Messaging component packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise MRG 2.5 for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: MRG Grid Execute Node for RHEL 5 Server v.2 - noarch MRG Grid for RHEL 5 Server v.2 - noarch MRG Management for RHEL 5 Server v.2 - noarch Red Hat MRG Messaging for RHEL 5 Server v.2 - noarch 3. Description: Red Hat Enterprise MRG (Messaging, Realtime, and Grid) is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP (Advanced Message Queuing Protocol), an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to makeenterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. It was found that MRG Management Console (cumin) used the crypt(3) DES-based hash function to hash passwords. DES-based hashing has known weaknesses that allow an attacker to more easily recover plain text passwords from hashes via brute-force guessing. An attacker able to compromise a cumin user database could potentially use this flaw to recover plain text passwords from the password hashes stored in that database. (CVE-2013-6445) Note: In deployments where user account information is stored in a database managed by cumin, it is recommended that users change their passwords after this update is applied. This issue was discovered by Tomáš NováÄik of the Red Hat MRG Quality Engineering team. This update also fixes several bugs and adds enhancements. Documentation for these changes will be available shortly from the Technical Notes document linked to in the References section. All users of the Messaging capabilities of Red Hat Enterprise MRG are advised to upgrade to these updated packages, which resolve these issues and add these enhancements. After installing the updated packages, stop the cluster by either running "service qpidd stop" on all nodes, or "qpid-cluster --all-stop" on any one of the cluster nodes. Once stopped, restart the cluster with "service qpidd start" on all nodes for the update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1044315 - CVE-2013-6445 cumin: weak password hashing 6. Package List: MRG Grid forRHEL 5 Server v.2: Source: noarch: cumin-0.1.5796-2.el5_9.noarch.rpm mrg-release-2.5.0-1.el5.noarch.rpm MRG Grid Execute Node for RHEL 5 Server v.2: Source: noarch: mrg-release-2.5.0-1.el5.noarch.rpm MRG Management for RHEL 5 Server v.2: Source: noarch: cumin-0.1.5796-2.el5_9.noarch.rpm mrg-release-2.5.0-1.el5.noarch.rpm Red Hat MRG Messaging for RHEL 5 Server v.2: Source: noarch: mrg-release-2.5.0-1.el5.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2013-6445 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2014 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFTXoZzXlSAg2UNWIIRAltaAKCe3ffv2vkLuowfKLQaDFNF8hLq0gCfTCKE 3sVJuz9Md4kkBS2+yUEWeSs=fQ8e -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Apr 28, 2014
Red Hat
98
security advisorymoderateRed Hat Enterprise MRGRed Hat Enterprise MRG: RHSA-2013-1024-01 Moderate TLS Attack Fix
Updated Messaging component packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat Enterprise MRG Messaging 2.3.3 security update Advisory ID: RHSA-2013:1024-01 Product: Red Hat Enterprise MRG for RHEL-6 Advisory URL: https://access.redhat.com/errata/RHSA-2013:1024.html Issue date: 2013-07-11 CVE Names: CVE-2013-1909 ==================================================================== 1. Summary: Updated Messaging component packages that fix one security issue and multiple bugs are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section. 2. Relevant releases/architectures: MRG Grid Execute Node for RHEL 6 ComputeNode v.2 - noarch, x86_64 Red Hat MRG Messaging for RHEL 6 Server v.2 - i386, noarch, x86_64 3. Description: Red Hat Enterprise MRG (Messaging, Realtime, and Grid) is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution for Linux based on AMQP (Advanced Message Queuing Protocol), an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messagingbroker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. It was discovered that the Qpid Python client library for AMQP did not properly perform TLS/SSL certificate validation of the remote server's certificate, even when the 'ssl_trustfile' connection option was specified. A rogue server could use this flaw to conduct man-in-the-middle attacks, possibly leading to the disclosure of sensitive information. (CVE-2013-1909) With this update, Python programs can instruct the library to validate server certificates by specifying a path to a file containing trusted CA certificates. This issue was discovered by Petr Matousek of the Red Hat MRG Messaging team. This update also fixes multiple bugs. Documentation for these changes will be available shortly from the Technical Notes document linked to in the References section. All users of the Messaging capabilities of Red Hat Enterprise MRG 2.3 are advised to upgrade to these updated packages, which resolve the issues noted in the Red Hat Enterprise MRG 2 Technical Notes. After installing the updated packages, stop the cluster by either running "service qpidd stop" on all nodes, or "qpid-cluster --all-stop" on any one of the cluster nodes. Once stopped, restart the cluster with "service qpidd start" on all nodes for the update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/site/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 928530 - CVE-2013-1909 python-qpid: client does not validate qpid server TLS/SSL certificate 6. Package List: MRG Grid Execute Node for RHEL 6 ComputeNodev.2: Source: noarch: python-qpid-0.18-5.el6_4.noarch.rpm qpid-tools-0.18-10.el6_4.noarch.rpm x86_64: python-qpid-qmf-0.18-18.el6_4.x86_64.rpm qpid-cpp-client-0.18-17.el6_4.i686.rpm qpid-cpp-client-0.18-17.el6_4.x86_64.rpm qpid-cpp-client-ssl-0.18-17.el6_4.i686.rpm qpid-cpp-client-ssl-0.18-17.el6_4.x86_64.rpm qpid-cpp-debuginfo-0.18-17.el6_4.i686.rpm qpid-cpp-debuginfo-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-0.18-17.el6_4.i686.rpm qpid-cpp-server-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-ssl-0.18-17.el6_4.x86_64.rpm qpid-qmf-0.18-18.el6_4.i686.rpm qpid-qmf-0.18-18.el6_4.x86_64.rpm qpid-qmf-debuginfo-0.18-18.el6_4.i686.rpm qpid-qmf-debuginfo-0.18-18.el6_4.x86_64.rpm ruby-qpid-qmf-0.18-18.el6_4.x86_64.rpm Red Hat MRG Messaging for RHEL 6 Serverv.2: Source: i386: python-qpid-qmf-0.18-18.el6_4.i686.rpm qpid-cpp-client-0.18-17.el6_4.i686.rpm qpid-cpp-client-devel-0.18-17.el6_4.i686.rpm qpid-cpp-client-rdma-0.18-17.el6_4.i686.rpm qpid-cpp-client-ssl-0.18-17.el6_4.i686.rpm qpid-cpp-debuginfo-0.18-17.el6_4.i686.rpm qpid-cpp-server-0.18-17.el6_4.i686.rpm qpid-cpp-server-cluster-0.18-17.el6_4.i686.rpm qpid-cpp-server-devel-0.18-17.el6_4.i686.rpm qpid-cpp-server-rdma-0.18-17.el6_4.i686.rpm qpid-cpp-server-ssl-0.18-17.el6_4.i686.rpm qpid-cpp-server-store-0.18-17.el6_4.i686.rpm qpid-cpp-server-xml-0.18-17.el6_4.i686.rpm qpid-qmf-0.18-18.el6_4.i686.rpm qpid-qmf-debuginfo-0.18-18.el6_4.i686.rpm qpid-qmf-devel-0.18-18.el6_4.i686.rpm ruby-qpid-qmf-0.18-18.el6_4.i686.rpm noarch: python-qpid-0.18-5.el6_4.noarch.rpm qpid-cpp-client-devel-docs-0.18-17.el6_4.noarch.rpm qpid-java-client-0.18-8.el6_4.noarch.rpm qpid-java-common-0.18-8.el6_4.noarch.rpm qpid-java-example-0.18-8.el6_4.noarch.rpm qpid-tools-0.18-10.el6_4.noarch.rpm x86_64: python-qpid-qmf-0.18-18.el6_4.x86_64.rpm qpid-cpp-client-0.18-17.el6_4.i686.rpm qpid-cpp-client-0.18-17.el6_4.x86_64.rpm qpid-cpp-client-devel-0.18-17.el6_4.x86_64.rpm qpid-cpp-client-rdma-0.18-17.el6_4.x86_64.rpm qpid-cpp-client-ssl-0.18-17.el6_4.i686.rpm qpid-cpp-client-ssl-0.18-17.el6_4.x86_64.rpm qpid-cpp-debuginfo-0.18-17.el6_4.i686.rpm qpid-cpp-debuginfo-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-0.18-17.el6_4.i686.rpm qpid-cpp-server-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-cluster-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-devel-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-rdma-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-ssl-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-store-0.18-17.el6_4.x86_64.rpm qpid-cpp-server-xml-0.18-17.el6_4.x86_64.rpm qpid-qmf-0.18-18.el6_4.i686.rpm qpid-qmf-0.18-18.el6_4.x86_64.rpm qpid-qmf-debuginfo-0.18-18.el6_4.i686.rpm qpid-qmf-debuginfo-0.18-18.el6_4.x86_64.rpm qpid-qmf-devel-0.18-18.el6_4.x86_64.rpm ruby-qpid-qmf-0.18-18.el6_4.x86_64.rpm These packages are GPG signed by Red Hat for security. Our keyand details on how to verify the signature are available from https://access.redhat.com/security/team/key#package 7. References: https://access.redhat.com/security/cve/CVE-2013-1909 https://access.redhat.com/security/updates/classification#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFR3rWAXlSAg2UNWIIRAp26AJ9NRQIgya9znpPORYhNW1I4HXHiNwCaAnQ5 fmSjAqk/Tl9CglvuGJ64ELU=gzMX -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Jul 11, 2013
Red Hat
98
security advisorymoderatesoftware patchRed Hat Enterprise MRG Messaging 2.3 Advisory RHSA-2013-0562-01 Moderate
Updated Messaging component packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Moderate: Red Hat Enterprise MRG Messaging 2.3 security update Advisory ID: RHSA-2013:0562-01 Product: Red Hat Enterprise MRG for RHEL-6 Advisory URL: https://access.redhat.com/errata/RHSA-2013:0562.html Issue date: 2013-03-06 CVE Names: CVE-2012-4446 CVE-2012-4458 CVE-2012-4459 ==================================================================== 1. Summary: Updated Messaging component packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise MRG 2.3 for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: MRG Grid Execute Node for RHEL 6 ComputeNode v.2 - noarch, x86_64 MRG Grid Execute Node for RHEL 6 Server v.2 - noarch MRG Grid for RHEL 6 Server v.2 - noarch MRG Management for RHEL 6 ComputeNode v.2 - noarch MRG Management for RHEL 6 Server v.2 - noarch MRG Realtime for RHEL 6 Server v.2 - noarch Red Hat MRG Messaging for RHEL 6 Server v.2 - i386, noarch, x86_64 3. Description: Red Hat Enterprise MRG (Messaging, Realtime, and Grid) is a next-generation IT infrastructure for enterprise computing. MRG offers increased performance, reliability, interoperability, and faster computing for enterprise customers. MRG Messaging is a high-speed reliable messaging distribution forLinux based on AMQP (Advanced Message Queuing Protocol), an open protocol standard for enterprise messaging that is designed to make mission critical messaging widely available as a standard service, and to make enterprise messaging interoperable across platforms, programming languages, and vendors. MRG Messaging includes an AMQP 0-10 messaging broker; AMQP 0-10 client libraries for C++, Java JMS, and Python; as well as persistence libraries and management tools. It was found that the Apache Qpid daemon (qpidd) treated AMQP connections with the federation_tag attribute set as a broker-to-broker connection, rather than a client-to-server connection. This resulted in the source user ID of messages not being checked. A client that can establish an AMQP connection with the broker could use this flaw to bypass intended authentication. For Condor users, if condor-aviary is installed, this flaw could be used to submit jobs that would run as any user (except root, as Condor does not run jobs as root). (CVE-2012-4446) It was found that the AMQP type decoder in qpidd allowed arbitrary data types in certain messages. A remote attacker could use this flaw to send a message containing an excessively large amount of data, causing qpidd to allocate a large amount of memory. qpidd would then be killed by the Out of Memory killer (denial of service). (CVE-2012-4458) An integer overflow flaw, leading to an out-of-bounds read, was found in the Qpid qpid::framing::Buffer::checkAvailable() function. An unauthenticated, remote attacker could send a specially-crafted message to Qpid, causing it to crash. (CVE-2012-4459) The CVE-2012-4446, CVE-2012-4458, and CVE-2012-4459 issues were discovered by Florian Weimer of the Red Hat Product Security Team. This update also fixes several bugs and adds enhancements. Documentation for these changes will be available shortly from the Technical Notes document linked to in the References section. All users of the Messaging capabilities of Red Hat Enterprise MRG are advised to upgrade to theseupdated packages, which resolve these issues, and fix the bugs and add the enhancements noted in the Red Hat Enterprise MRG 2 Technical Notes. After installing the updated packages, stop the cluster by either running "service qpidd stop" on all nodes, or "qpid-cluster --all-stop" on any one of the cluster nodes. Once stopped, restart the cluster with "service qpidd start" on all nodes for the update to take effect. 4. Solution: Before applying this update, make sure all previously-released errata relevant to your system have been applied. This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/knowledge/articles/11258 5. Bugs fixed (http://bugzilla.redhat.com/): 851355 - CVE-2012-4446 qpid-cpp: qpid authentication bypass 861234 - CVE-2012-4458 qpid-cpp: long arrays of zero-width types cause a denial of service 861241 - CVE-2012-4459 qpid-cpp: crash due to qpid::framing::Buffer::checkAvailable() wraparound 6. Package List: MRG Grid Execute Node for RHEL 6 ComputeNodev.2: Source: noarch: mrg-release-2.3.0-1.el6.noarch.rpm python-qpid-0.18-4.el6.noarch.rpm qpid-tests-0.18-2.el6.noarch.rpm qpid-tools-0.18-8.el6.noarch.rpm rubygem-rake-0.8.7-2.1.el6.noarch.rpm rubygems-1.8.16-1.el6.noarch.rpm xerces-c-doc-3.0.1-20.el6.noarch.rpm xqilla-doc-2.2.3-8.el6.noarch.rpm x86_64: python-qpid-qmf-0.18-15.el6.x86_64.rpm python-saslwrapper-0.18-1.el6_3.x86_64.rpm qpid-cpp-client-0.18-14.el6.i686.rpm qpid-cpp-client-0.18-14.el6.x86_64.rpm qpid-cpp-client-ssl-0.18-14.el6.i686.rpm qpid-cpp-client-ssl-0.18-14.el6.x86_64.rpm qpid-cpp-debuginfo-0.18-14.el6.i686.rpm qpid-cpp-debuginfo-0.18-14.el6.x86_64.rpm qpid-cpp-server-0.18-14.el6.i686.rpm qpid-cpp-server-0.18-14.el6.x86_64.rpm qpid-cpp-server-ssl-0.18-14.el6.x86_64.rpm qpid-qmf-0.18-15.el6.i686.rpm qpid-qmf-0.18-15.el6.x86_64.rpm qpid-qmf-debuginfo-0.18-15.el6.i686.rpm qpid-qmf-debuginfo-0.18-15.el6.x86_64.rpm ruby-qpid-qmf-0.18-15.el6.x86_64.rpm ruby-saslwrapper-0.18-1.el6_3.x86_64.rpm saslwrapper-0.18-1.el6_3.i686.rpm saslwrapper-0.18-1.el6_3.x86_64.rpm saslwrapper-debuginfo-0.18-1.el6_3.i686.rpm saslwrapper-debuginfo-0.18-1.el6_3.x86_64.rpm saslwrapper-devel-0.18-1.el6_3.i686.rpm saslwrapper-devel-0.18-1.el6_3.x86_64.rpm xerces-c-3.0.1-20.el6.x86_64.rpm xerces-c-debuginfo-3.0.1-20.el6.x86_64.rpm xerces-c-devel-3.0.1-20.el6.x86_64.rpm xqilla-2.2.3-8.el6.x86_64.rpm xqilla-debuginfo-2.2.3-8.el6.x86_64.rpm xqilla-devel-2.2.3-8.el6.x86_64.rpm MRG Management for RHEL 6 ComputeNode v.2: Source: noarch: mrg-release-2.3.0-1.el6.noarch.rpm MRG Grid for RHEL 6 Server v.2: Source: noarch: mrg-release-2.3.0-1.el6.noarch.rpm rubygem-rake-0.8.7-2.1.el6.noarch.rpm rubygems-1.8.16-1.el6.noarch.rpm MRG Grid Execute Node for RHEL 6 Server v.2: Source: noarch: mrg-release-2.3.0-1.el6.noarch.rpm MRG Management for RHEL 6 Server v.2: Source: noarch: cumin-messaging-0.1.1-2.el6.noarch.rpm mrg-release-2.3.0-1.el6.noarch.rpm Red Hat MRG Messaging for RHEL 6 Serverv.2: Source: i386: python-qpid-qmf-0.18-15.el6.i686.rpm python-saslwrapper-0.18-1.el6_3.i686.rpm qpid-cpp-client-0.18-14.el6.i686.rpm qpid-cpp-client-devel-0.18-14.el6.i686.rpm qpid-cpp-client-rdma-0.18-14.el6.i686.rpm qpid-cpp-client-ssl-0.18-14.el6.i686.rpm qpid-cpp-debuginfo-0.18-14.el6.i686.rpm qpid-cpp-server-0.18-14.el6.i686.rpm qpid-cpp-server-cluster-0.18-14.el6.i686.rpm qpid-cpp-server-devel-0.18-14.el6.i686.rpm qpid-cpp-server-rdma-0.18-14.el6.i686.rpm qpid-cpp-server-ssl-0.18-14.el6.i686.rpm qpid-cpp-server-store-0.18-14.el6.i686.rpm qpid-cpp-server-xml-0.18-14.el6.i686.rpm qpid-qmf-0.18-15.el6.i686.rpm qpid-qmf-debuginfo-0.18-15.el6.i686.rpm qpid-qmf-devel-0.18-15.el6.i686.rpm ruby-qpid-qmf-0.18-15.el6.i686.rpm ruby-saslwrapper-0.18-1.el6_3.i686.rpm saslwrapper-0.18-1.el6_3.i686.rpm saslwrapper-debuginfo-0.18-1.el6_3.i686.rpm saslwrapper-devel-0.18-1.el6_3.i686.rpm xerces-c-3.0.1-20.el6.i686.rpm xerces-c-debuginfo-3.0.1-20.el6.i686.rpm xerces-c-devel-3.0.1-20.el6.i686.rpm xqilla-2.2.3-8.el6.i686.rpm xqilla-debuginfo-2.2.3-8.el6.i686.rpm xqilla-devel-2.2.3-8.el6.i686.rpm noarch: mrg-release-2.3.0-1.el6.noarch.rpm python-qpid-0.18-4.el6.noarch.rpm qpid-cpp-client-devel-docs-0.18-14.el6.noarch.rpm qpid-java-client-0.18-7.el6.noarch.rpm qpid-java-common-0.18-7.el6.noarch.rpm qpid-java-example-0.18-7.el6.noarch.rpm qpid-jca-0.18-8.el6.noarch.rpm qpid-jca-xarecovery-0.18-8.el6.noarch.rpm qpid-tests-0.18-2.el6.noarch.rpm qpid-tools-0.18-8.el6.noarch.rpm rhm-docs-0.18-2.el6.noarch.rpm xerces-c-doc-3.0.1-20.el6.noarch.rpm xqilla-doc-2.2.3-8.el6.noarch.rpm x86_64: python-qpid-qmf-0.18-15.el6.x86_64.rpm python-saslwrapper-0.18-1.el6_3.x86_64.rpm qpid-cpp-client-0.18-14.el6.i686.rpm qpid-cpp-client-0.18-14.el6.x86_64.rpm qpid-cpp-client-devel-0.18-14.el6.x86_64.rpm qpid-cpp-client-rdma-0.18-14.el6.x86_64.rpm qpid-cpp-client-ssl-0.18-14.el6.i686.rpm qpid-cpp-client-ssl-0.18-14.el6.x86_64.rpm qpid-cpp-debuginfo-0.18-14.el6.i686.rpm qpid-cpp-debuginfo-0.18-14.el6.x86_64.rpm qpid-cpp-server-0.18-14.el6.i686.rpm qpid-cpp-server-0.18-14.el6.x86_64.rpm qpid-cpp-server-cluster-0.18-14.el6.x86_64.rpm qpid-cpp-server-devel-0.18-14.el6.x86_64.rpm qpid-cpp-server-rdma-0.18-14.el6.x86_64.rpm qpid-cpp-server-ssl-0.18-14.el6.x86_64.rpm qpid-cpp-server-store-0.18-14.el6.x86_64.rpm qpid-cpp-server-xml-0.18-14.el6.x86_64.rpm qpid-qmf-0.18-15.el6.i686.rpm qpid-qmf-0.18-15.el6.x86_64.rpm qpid-qmf-debuginfo-0.18-15.el6.i686.rpm qpid-qmf-debuginfo-0.18-15.el6.x86_64.rpm qpid-qmf-devel-0.18-15.el6.x86_64.rpm ruby-qpid-qmf-0.18-15.el6.x86_64.rpm ruby-saslwrapper-0.18-1.el6_3.x86_64.rpm saslwrapper-0.18-1.el6_3.i686.rpm saslwrapper-0.18-1.el6_3.x86_64.rpm saslwrapper-debuginfo-0.18-1.el6_3.i686.rpm saslwrapper-debuginfo-0.18-1.el6_3.x86_64.rpm saslwrapper-devel-0.18-1.el6_3.i686.rpm saslwrapper-devel-0.18-1.el6_3.x86_64.rpm xerces-c-3.0.1-20.el6.x86_64.rpm xerces-c-debuginfo-3.0.1-20.el6.x86_64.rpm xerces-c-devel-3.0.1-20.el6.x86_64.rpm xqilla-2.2.3-8.el6.x86_64.rpm xqilla-debuginfo-2.2.3-8.el6.x86_64.rpm xqilla-devel-2.2.3-8.el6.x86_64.rpm MRG Realtime for RHEL 6 Server v.2: Source: noarch: mrg-release-2.3.0-1.el6.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/#package 7. References: https://access.redhat.com/security/cve/CVE-2012-4446 https://access.redhat.com/security/cve/CVE-2012-4458 https://access.redhat.com/security/cve/CVE-2012-4459 https://access.redhat.com/security/updates/classification/#moderate 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2013 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.4 (GNU/Linux) iD8DBQFRN6CKXlSAg2UNWIIRAusEAJ0Uohc/qqH1VE1tvhSQSm/2cFOpHgCgxL6B yaM1Uo3GO2H0QLwcMtAspSI=+aTq -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Mar 06, 2013
Red Hat
89
security advisoryFedora Corecritical fixFedora: 2004-526 Critical: gaim 1.1.0 Messaging Client Update
Gaim allows you to talk to anyone using a variety of messaging protocols, including AIM (Oscar and TOC), ICQ, IRC, Yahoo!, MSN Messenger, Jabber, Gadu-Gadu, Napster, and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2004-526 2004-12-06 ---------------------------------------------------------------------Product : Fedora Core 3 Name : gaim Version : 1.1.0 Release : 0.FC3 Summary : A Gtk+ based multiprotocol instant messaging client Description : Gaim allows you to talk to anyone using a variety of messaging protocols, including AIM (Oscar and TOC), ICQ, IRC, Yahoo!, MSN Messenger, Jabber, Gadu-Gadu, Napster, and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Gaim supports many common features of other clients, as well as many unique features, such as perl scripting and C plugins. Gaim is NOT affiliated with or endorsed by America Online, Inc., Microsoft Corporation, or Yahoo! Inc. or other messaging service providers. ---------------------------------------------------------------------* Thu Dec 02 2004 Warren Togami 1.1.0-0.FC3 - FC3 update * Thu Dec 02 2004 Warren Togami 1.1.0-1 - upgrade 1.1.0 (mostly bugfixes) - fix PIE patch ---------------------------------------------------------------------This update can be downloaded from: 186afecbcb4b00c9e85cdc7210034a95 SRPMS/gaim-1.1.0-0.FC3.src.rpm 31f4e3bbcd7ac8dbb53eb57caf12be46 x86_64/gaim-1.1.0-0.FC3.x86_64.rpm e6fd9f7ede34c9597fdd461771864d4b x86_64/debug/gaim-debuginfo-1.1.0-0.FC3.x86_64.rpm 4edf6a70e43319119af5e0667bdb6ede i386/gaim-1.1.0-0.FC3.i386.rpm 5d293ccec23534f77f0fe9fde60b0166 i386/debug/gaim-debuginfo-1.1.0-0.FC3.i386.rpm This update can also be installed with the UpdateAgent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list
Dec 06, 2004
•Critical
Fedora
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!