http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/latest-feed.xmlLatest packages for Scientific Linux Fermi slf58 x86_64 Security ErrataWed, 22 Mar 2017 09:08:14 -0500Repoview-0.6.6-1.el6http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/thunderbird.html+0:45.8.0-1.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/thunderbird.htmlTue, 14 Mar 2017 12:16:26 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> thunderbird<br /> <strong>Summary:</strong> Mozilla Thunderbird mail/newsgroup client </p> <p> <strong>Description:</strong><br /> Mozilla Thunderbird is a standalone mail and newsgroup client. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.8.0-1.el5_11.x86_64.rpm">thunderbird-45.8.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-03-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.7.0-1.el5_11.x86_64.rpm">thunderbird-45.7.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-01-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.6.0-1.el5_11.x86_64.rpm">thunderbird-45.6.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2016-12-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to the latest upstream (45.6.0)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.5.1-1.el5_11.x86_64.rpm">thunderbird-45.5.1-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-12-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.1</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.5.0-1.el5_11.x86_64.rpm">thunderbird-45.5.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.4.0-1.el5_11.x86_64.rpm">thunderbird-45.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-09-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.3.0-1.el5_11.x86_64.rpm">thunderbird-45.3.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-45.2-1.el5_11.x86_64.rpm">thunderbird-45.2-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-06-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.8.0-1.el5_11.x86_64.rpm">thunderbird-38.8.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-05-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.7.0-1.el5_11.x86_64.rpm">thunderbird-38.7.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-03-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.6.0-1.el5_11.x86_64.rpm">thunderbird-38.6.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-02-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.5.0-1.el5_11.x86_64.rpm">thunderbird-38.5.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-12-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.4.0-1.el5_11.x86_64.rpm">thunderbird-38.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-11-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.3.0-1.el5_11.x86_64.rpm">thunderbird-38.3.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">63.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-09-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-38.2.0-4.el5_11.x86_64.rpm">thunderbird-38.2.0-4.el5_11.x86_64</a> [<span style="white-space: nowrap">63.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.8.0-1.el5_11.x86_64.rpm">thunderbird-31.8.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">54.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-07-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.7.0-1.el5_11.x86_64.rpm">thunderbird-31.7.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">54.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.6.0-1.el5_11.x86_64.rpm">thunderbird-31.6.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">54.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-03-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.5.0-1.el5_11.x86_64.rpm">thunderbird-31.5.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">54.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-02-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.4.0-1.el5_11.x86_64.rpm">thunderbird-31.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">54.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.3.0-1.el5_11.x86_64.rpm">thunderbird-31.3.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">49.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.3.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-31.2.0-2.el5_11.x86_64.rpm">thunderbird-31.2.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">49.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.2.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.8.0-1.el5_10.x86_64.rpm">thunderbird-24.8.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-08-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.8.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.7.0-1.el5_10.x86_64.rpm">thunderbird-24.7.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-07-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.7.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.6.0-1.el5_10.x86_64.rpm">thunderbird-24.6.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">45.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-06-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.6.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.5.0-1.el5_10.x86_64.rpm">thunderbird-24.5.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.5.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.4.0-1.el5_10.x86_64.rpm">thunderbird-24.4.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-03-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.4.0</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.3.0-2.el5_10.x86_64.rpm">thunderbird-24.3.0-2.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-02-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.3.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-24.2.0-2.el5_10.x86_64.rpm">thunderbird-24.2.0-2.el5_10.x86_64</a> [<span style="white-space: nowrap">45.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.10-1.el5_10.x86_64.rpm">thunderbird-17.0.10-1.el5_10.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-10-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.9-1.el5_9.x86_64.rpm">thunderbird-17.0.9-1.el5_9.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-09-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.8-5.el5_9.x86_64.rpm">thunderbird-17.0.8-5.el5_9.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-08-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.8 ESR - Added strict aliasing patch (mozbz#821502)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.7-1.el5_9.x86_64.rpm">thunderbird-17.0.7-1.el5_9.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-06-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.6-1.el5_9.x86_64.rpm">thunderbird-17.0.6-1.el5_9.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.5-1.el5_9.x86_64.rpm">thunderbird-17.0.5-1.el5_9.x86_64</a> [<span style="white-space: nowrap">41.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-03-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.3-2.el5_9.x86_64.rpm">thunderbird-17.0.3-2.el5_9.x86_64</a> [<span style="white-space: nowrap">40.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-03-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added fix for #848644</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-17.0.3-1.el5_9.x86_64.rpm">thunderbird-17.0.3-1.el5_9.x86_64</a> [<span style="white-space: nowrap">40.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-02-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.12-3.el5_9.x86_64.rpm">thunderbird-10.0.12-3.el5_9.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.12 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.11-1.el5_8.x86_64.rpm">thunderbird-10.0.11-1.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.11 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.10-1.el5_8.x86_64.rpm">thunderbird-10.0.10-1.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.8-2.el5_8.x86_64.rpm">thunderbird-10.0.8-2.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Added patches from 10.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.8-1.el5_8.x86_64.rpm">thunderbird-10.0.8-1.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.7-1.el5_8.x86_64.rpm">thunderbird-10.0.7-1.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-08-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.6-1.el5_8.x86_64.rpm">thunderbird-10.0.6-1.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/thunderbird-10.0.5-2.el5_8.x86_64.rpm">thunderbird-10.0.5-2.el5_8.x86_64</a> [<span style="white-space: nowrap">37.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.5 ESR</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/tzdata.html+0:2017a-1.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/tzdata.htmlWed, 08 Mar 2017 23:40:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> tzdata<br /> <strong>Summary:</strong> Timezone data </p> <p> <strong>Description:</strong><br /> This package contains data files with rules for various time zones around the world. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2017a-1.el5.x86_64.rpm">tzdata-2017a-1.el5.x86_64</a> [<span style="white-space: nowrap">755 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2017-03-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2017a - Mongolia no longer observes DST (BZ #1425223) - Add upstream patch to fix over-runing of POSIX limit on zone abbreviations. - Add zone1970.tab to the install files. (BZ #1427696)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016j-1.el5.x86_64.rpm">tzdata-2016j-1.el5.x86_64</a> [<span style="white-space: nowrap">765 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016ij - Saratov region of Russia is moving from +03 offset to +04 offset on 2016-12-04.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016i-1.el5.x86_64.rpm">tzdata-2016i-1.el5.x86_64</a> [<span style="white-space: nowrap">764 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016i: - Cyprus is now split into two time zones as of 2016-10-30 - Tonga will reintroduce DST on 2016-11-06</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016h-1.el5.x86_64.rpm">tzdata-2016h-1.el5.x86_64</a> [<span style="white-space: nowrap">761 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016h: - Palestine will end DST on 2016-10-29 not 2016-10-21.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016g-2.el5.x86_64.rpm">tzdata-2016g-2.el5.x86_64</a> [<span style="white-space: nowrap">774 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016g. - Turkey changed from EET/EEST (+02/+03) to permanent +03, on 2016-09-07. - A new leap second will be added on 2016-12-31 23:59:60 UTC.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016f-1.el5.x86_64.rpm">tzdata-2016f-1.el5.x86_64</a> [<span style="white-space: nowrap">774 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-07-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016f - Egypt cancelled DST. - Asia/Novosibirsk transitions from +06 to +07 on 2016-07-24 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016e-1.el5.x86_64.rpm">tzdata-2016e-1.el5.x86_64</a> [<span style="white-space: nowrap">788 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016e - Egypt reinstates DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016d-1.el5.x86_64.rpm">tzdata-2016d-1.el5.x86_64</a> [<span style="white-space: nowrap">773 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016d - America/Caracas switches from -0430 to -04 on 2016-05-01 at 02:30. - Asia/Magadan switches from +10 to +11 on 2016-04-24 at 02:00. - New zone Asia/Tomsk, split off from Asia/Novosibirsk. It covers Tomsk Oblast, Russia, which switches from +06 to +07 on 2016-05-29 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016c-1.el5.x86_64.rpm">tzdata-2016c-1.el5.x86_64</a> [<span style="white-space: nowrap">773 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016c - Azerbaijan no longer observes DST. - Chile reverts from permanent to seasonal DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016b-1.el5.x86_64.rpm">tzdata-2016b-1.el5.x86_64</a> [<span style="white-space: nowrap">734 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch from +06 to +07 on the same date and local time. The Astrakhan change is already official; the others have passed the first reading in the State Duma and are extremely likely. Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial of a new system that needs less information to be made up, the new zones use numeric time zone abbreviations like "+04" instead of invented abbreviations like "ASTT". - Haiti will not observe DST in 2016. - Palestine's spring-forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future transitions will be March's last Saturday at 01:00, not March's last Friday at 24:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2016a-1.el5.x86_64.rpm">tzdata-2016a-1.el5.x86_64</a> [<span style="white-space: nowrap">730 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016a - America/Cayman will not observe daylight saving this year after all. Revert our guess that it would. - Asia/Chita switches from +0800 to +0900 on 2016-03-27 at 02:00. - Asia/Tehran now has DST predictions for the year 2038 and later, to be March 21 00:00 to September 21 00:00. This is likely better than predicting no DST, albeit off by a day every now and then.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2015g-1.el5.x86_64.rpm">tzdata-2015g-1.el5.x86_64</a> [<span style="white-space: nowrap">733 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-10-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015g - Turkey's 2015 fall-back transition is scheduled for Nov. 8, not Oct. 25. - Norfolk moves from +1130 to +1100 on 2015-10-04 at 02:00 local time. - Fiji's 2016 fall-back transition is scheduled for January 17, not 24. - Fort Nelson, British Columbia will not fall back on 2015-11-01. It has effectively been on MST (-0700) since it advanced its clocks on 2015-03-08. New zone America/Fort_Nelson.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2015e-1.el5.x86_64.rpm">tzdata-2015e-1.el5.x86_64</a> [<span style="white-space: nowrap">742 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015e: - Morocco will suspend DST from 2015-06-14 03:00 through 2015-07-19 02:00, not 06-13 and 07-18 as we had guessed. (Thanks to Milamber.) - Assume Cayman Islands will observe DST starting next year, using US rules. Although it isn't guaranteed, it is the most likely.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2015d-1.el5.x86_64.rpm">tzdata-2015d-1.el5.x86_64</a> [<span style="white-space: nowrap">741 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015d: - The Egyptian Cabinet announced that DST will be cancelled for 2015. - The abbreviations for Hawaii-Aleutian standard and daylight times have been changed from HAST/HADT to HST/HDT, as per US Government Printing Office style. This affects only America/Adak since 1983, as America/Honolulu was already using the new style.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2015b-1.el5.x86_64.rpm">tzdata-2015b-1.el5.x86_64</a> [<span style="white-space: nowrap">754 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015b - Mongolia will start observing DST again this year, from the last Saturday in March at 02:00 to the last Saturday in September at 00:00. - Palestine will start DST on March 28, not March 27. Also, correct the fall 2014 transition from September 26 to October 24. Adjust future predictions accordingly.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2015a-1.el5.x86_64.rpm">tzdata-2015a-1.el5.x86_64</a> [<span style="white-space: nowrap">748 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015a - New leap second 2015-06-30 23:59:60 UTC as per IERS Bulletin C 49. - The Mexican state of Quintana Roo, represented by America/Cancun, will shift from Central Time with DST to Eastern Time without DST on 2015-02-01 at 02:00. - Chile will not change clocks in April or thereafter; its new standard time will be its old daylight saving time. This affects America/Santiago, Pacific/Easter, and Antarctica/Palmer.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2014i-1.el5.x86_64.rpm">tzdata-2014i-1.el5.x86_64</a> [<span style="white-space: nowrap">788 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014i - Pacific/Fiji will observe DST from 2014-11-02 02:00 to 2015-01-18 03:00. - A new Zone Pacific/Bougainville, for the part of Papua New Guinea that plans to switch from UTC+10 to UTC+11 on 2014-12-28 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2014e-1.el5.x86_64.rpm">tzdata-2014e-1.el5.x86_64</a> [<span style="white-space: nowrap">787 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014e - Morrocco suspends DTS for Ramadan June 28 at 03:00 and August 2 at 02:00 - Egypt suspends DTS for Ramadan June 26 and July 31 at 24:00</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2014d-1.el5.x86_64.rpm">tzdata-2014d-1.el5.x86_64</a> [<span style="white-space: nowrap">786 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014d - zic no longer generates files containing time stamps before the Big Bang. This works around GNOME bug 730332</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2014b-1.el5.x86_64.rpm">tzdata-2014b-1.el5.x86_64</a> [<span style="white-space: nowrap">773 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014b - Crimea switches to Moscow time on 2014-03-30 at 02:00 local time. - New entry for Troll station, Antarctica.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2014a-1.el5.x86_64.rpm">tzdata-2014a-1.el5.x86_64</a> [<span style="white-space: nowrap">772 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-03-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Turkey begins DST on 2014-03-31, not 03-30.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2013i-2.el5.x86_64.rpm">tzdata-2013i-2.el5.x86_64</a> [<span style="white-space: nowrap">771 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fiji ends DST on 2014-01-19 at 02:00, not the previously-scheduled 03:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2013i-1.el5.x86_64.rpm">tzdata-2013i-1.el5.x86_64</a> [<span style="white-space: nowrap">770 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2013-12-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase with early release of 2013i from Paul Eggert github. - Jordan switches back to standard time at 00:00 on December 20,2013. - The 2006-2011 transition schedule is planned to resume in 2014. - The compile-time flag NOSOLAR has been removed. - The files solar87, solar88, and solar89 are no longer distributed. - tz-link.htm now mentions Noda Time.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2013c-2.el5.x86_64.rpm">tzdata-2013c-2.el5.x86_64</a> [<span style="white-space: nowrap">808 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-07-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update descriptions in iso3166.tab; make Jerusalem coordinates in zone.tab more precise (0001-Adjust-commentary-to-try-to-defuse-recent-issues-som.patch) - Update local mean time for Jerusalem to match more-precise longitude (0002-asia-Asia-Jerusalem-Fix-LMT-to-match-more-precise-lo.patch) - Move Morocco's midsummer 2013 transitions (0003-Move-Morocco-s-midsummer-2013-transitions.patch) Fixes 980805 980807 981019 981020 - Israel now falls back on the last Sunday of October (0004-Israel-now-falls-back-on-the-last-Sunday-of-October.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2013c-1.el5.x86_64.rpm">tzdata-2013c-1.el5.x86_64</a> [<span style="white-space: nowrap">808 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-05-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013c - Sync past stamps for Palestine and West Bank with timeanddate.com - Assume that the recent change to Paraguay's DST rules is permanent - Macquarie was uninhabited between 1919 and 1948. It's also part of Australia (update in zone.tab).</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2013b-1.el5.x86_64.rpm">tzdata-2013b-1.el5.x86_64</a> [<span style="white-space: nowrap">796 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-03-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013b - Paraguay will end DST on March 24 this year - Haiti uses US daylight-saving rules this year - Morocco does not observe DST during Ramadan - Upstream 2013a - Retire Chile patch, 2013a has the data - New Zones Asia/Khandyga, Asia/Ust-Nera, Europe/Busingen - Many changes in historical timestamps</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2012j-2.el5.x86_64.rpm">tzdata-2012j-2.el5.x86_64</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- DTS in Chile will end on 2013-04-28 (0016-Chile-is-changing-its-DST-rules.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2012j-1.el5.x86_64.rpm">tzdata-2012j-1.el5.x86_64</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012j - Libya moved to CET</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2012i-2.el5.x86_64.rpm">tzdata-2012i-2.el5.x86_64</a> [<span style="white-space: nowrap">792 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Preserve hardlinks that zic leaves behind, install with cp -d</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2012f-1.el5.x86_64.rpm">tzdata-2012f-1.el5.x86_64</a> [<span style="white-space: nowrap">778 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012f - Fiji will start daylight savings at 2 am on Sunday 21st October 2012 and end at 3 am on Sunday 20th January 2013. Guess it will be like that in following years as well. - Upstream 2012e - Tokelau is in time zone UTC+13, not UTC+14 (and always was) - Upstream 2012d - Morocco will not observe DST during the month of Ramadan. DST cessation end date was corrected. - Drop tzdata-2012c-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-2012c-3.el5.x86_64.rpm">tzdata-2012c-3.el5.x86_64</a> [<span style="white-space: nowrap">766 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco will not observe DST during the month of Ramadan (tzdata-2012c-morocco.patch)</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/tzdata-java.html+0:2017a-1.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/tzdata-java.htmlWed, 08 Mar 2017 23:40:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> tzdata-java<br /> <strong>Summary:</strong> Timezone data for Java </p> <p> <strong>Description:</strong><br /> This package contains timezone information for use by Java runtimes. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2017a-1.el5.x86_64.rpm">tzdata-java-2017a-1.el5.x86_64</a> [<span style="white-space: nowrap">176 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2017-03-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2017a - Mongolia no longer observes DST (BZ #1425223) - Add upstream patch to fix over-runing of POSIX limit on zone abbreviations. - Add zone1970.tab to the install files. (BZ #1427696)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016j-1.el5.x86_64.rpm">tzdata-java-2016j-1.el5.x86_64</a> [<span style="white-space: nowrap">175 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016ij - Saratov region of Russia is moving from +03 offset to +04 offset on 2016-12-04.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016i-1.el5.x86_64.rpm">tzdata-java-2016i-1.el5.x86_64</a> [<span style="white-space: nowrap">175 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-11-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016i: - Cyprus is now split into two time zones as of 2016-10-30 - Tonga will reintroduce DST on 2016-11-06</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016h-1.el5.x86_64.rpm">tzdata-java-2016h-1.el5.x86_64</a> [<span style="white-space: nowrap">174 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016h: - Palestine will end DST on 2016-10-29 not 2016-10-21.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016g-2.el5.x86_64.rpm">tzdata-java-2016g-2.el5.x86_64</a> [<span style="white-space: nowrap">174 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to tzdata-2016g. - Turkey changed from EET/EEST (+02/+03) to permanent +03, on 2016-09-07. - A new leap second will be added on 2016-12-31 23:59:60 UTC.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016f-1.el5.x86_64.rpm">tzdata-java-2016f-1.el5.x86_64</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-07-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016f - Egypt cancelled DST. - Asia/Novosibirsk transitions from +06 to +07 on 2016-07-24 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016e-1.el5.x86_64.rpm">tzdata-java-2016e-1.el5.x86_64</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016e - Egypt reinstates DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016d-1.el5.x86_64.rpm">tzdata-java-2016d-1.el5.x86_64</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-04-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016d - America/Caracas switches from -0430 to -04 on 2016-05-01 at 02:30. - Asia/Magadan switches from +10 to +11 on 2016-04-24 at 02:00. - New zone Asia/Tomsk, split off from Asia/Novosibirsk. It covers Tomsk Oblast, Russia, which switches from +06 to +07 on 2016-05-29 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016c-1.el5.x86_64.rpm">tzdata-java-2016c-1.el5.x86_64</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016c - Azerbaijan no longer observes DST. - Chile reverts from permanent to seasonal DST.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016b-1.el5.x86_64.rpm">tzdata-java-2016b-1.el5.x86_64</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-03-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch from +06 to +07 on the same date and local time. The Astrakhan change is already official; the others have passed the first reading in the State Duma and are extremely likely. Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial of a new system that needs less information to be made up, the new zones use numeric time zone abbreviations like "+04" instead of invented abbreviations like "ASTT". - Haiti will not observe DST in 2016. - Palestine's spring-forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future transitions will be March's last Saturday at 01:00, not March's last Friday at 24:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2016a-1.el5.x86_64.rpm">tzdata-java-2016a-1.el5.x86_64</a> [<span style="white-space: nowrap">170 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2016-01-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2016a - America/Cayman will not observe daylight saving this year after all. Revert our guess that it would. - Asia/Chita switches from +0800 to +0900 on 2016-03-27 at 02:00. - Asia/Tehran now has DST predictions for the year 2038 and later, to be March 21 00:00 to September 21 00:00. This is likely better than predicting no DST, albeit off by a day every now and then.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2015g-1.el5.x86_64.rpm">tzdata-java-2015g-1.el5.x86_64</a> [<span style="white-space: nowrap">170 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-10-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015g - Turkey's 2015 fall-back transition is scheduled for Nov. 8, not Oct. 25. - Norfolk moves from +1130 to +1100 on 2015-10-04 at 02:00 local time. - Fiji's 2016 fall-back transition is scheduled for January 17, not 24. - Fort Nelson, British Columbia will not fall back on 2015-11-01. It has effectively been on MST (-0700) since it advanced its clocks on 2015-03-08. New zone America/Fort_Nelson.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2015e-1.el5.x86_64.rpm">tzdata-java-2015e-1.el5.x86_64</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015e: - Morocco will suspend DST from 2015-06-14 03:00 through 2015-07-19 02:00, not 06-13 and 07-18 as we had guessed. (Thanks to Milamber.) - Assume Cayman Islands will observe DST starting next year, using US rules. Although it isn't guaranteed, it is the most likely.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2015d-1.el5.x86_64.rpm">tzdata-java-2015d-1.el5.x86_64</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-04-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015d: - The Egyptian Cabinet announced that DST will be cancelled for 2015. - The abbreviations for Hawaii-Aleutian standard and daylight times have been changed from HAST/HADT to HST/HDT, as per US Government Printing Office style. This affects only America/Adak since 1983, as America/Honolulu was already using the new style.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2015b-1.el5.x86_64.rpm">tzdata-java-2015b-1.el5.x86_64</a> [<span style="white-space: nowrap">169 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015b - Mongolia will start observing DST again this year, from the last Saturday in March at 02:00 to the last Saturday in September at 00:00. - Palestine will start DST on March 28, not March 27. Also, correct the fall 2014 transition from September 26 to October 24. Adjust future predictions accordingly.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2015a-1.el5.x86_64.rpm">tzdata-java-2015a-1.el5.x86_64</a> [<span style="white-space: nowrap">168 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-01-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2015a - New leap second 2015-06-30 23:59:60 UTC as per IERS Bulletin C 49. - The Mexican state of Quintana Roo, represented by America/Cancun, will shift from Central Time with DST to Eastern Time without DST on 2015-02-01 at 02:00. - Chile will not change clocks in April or thereafter; its new standard time will be its old daylight saving time. This affects America/Santiago, Pacific/Easter, and Antarctica/Palmer.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2014i-1.el5.x86_64.rpm">tzdata-java-2014i-1.el5.x86_64</a> [<span style="white-space: nowrap">170 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-10-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014i - Pacific/Fiji will observe DST from 2014-11-02 02:00 to 2015-01-18 03:00. - A new Zone Pacific/Bougainville, for the part of Papua New Guinea that plans to switch from UTC+10 to UTC+11 on 2014-12-28 at 02:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2014e-1.el5.x86_64.rpm">tzdata-java-2014e-1.el5.x86_64</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-06-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014e - Morrocco suspends DTS for Ramadan June 28 at 03:00 and August 2 at 02:00 - Egypt suspends DTS for Ramadan June 26 and July 31 at 24:00</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2014d-1.el5.x86_64.rpm">tzdata-java-2014d-1.el5.x86_64</a> [<span style="white-space: nowrap">173 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014d - zic no longer generates files containing time stamps before the Big Bang. This works around GNOME bug 730332</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2014b-1.el5.x86_64.rpm">tzdata-java-2014b-1.el5.x86_64</a> [<span style="white-space: nowrap">172 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2015-03-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase to 2014b - Crimea switches to Moscow time on 2014-03-30 at 02:00 local time. - New entry for Troll station, Antarctica.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2014a-1.el5.x86_64.rpm">tzdata-java-2014a-1.el5.x86_64</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-03-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Turkey begins DST on 2014-03-31, not 03-30.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2013i-2.el5.x86_64.rpm">tzdata-java-2013i-2.el5.x86_64</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2014-01-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fiji ends DST on 2014-01-19 at 02:00, not the previously-scheduled 03:00.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2013i-1.el5.x86_64.rpm">tzdata-java-2013i-1.el5.x86_64</a> [<span style="white-space: nowrap">171 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Patsy Franklin (2013-12-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rebase with early release of 2013i from Paul Eggert github. - Jordan switches back to standard time at 00:00 on December 20,2013. - The 2006-2011 transition schedule is planned to resume in 2014. - The compile-time flag NOSOLAR has been removed. - The files solar87, solar88, and solar89 are no longer distributed. - tz-link.htm now mentions Noda Time.</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2013c-2.el5.x86_64.rpm">tzdata-java-2013c-2.el5.x86_64</a> [<span style="white-space: nowrap">185 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-07-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update descriptions in iso3166.tab; make Jerusalem coordinates in zone.tab more precise (0001-Adjust-commentary-to-try-to-defuse-recent-issues-som.patch) - Update local mean time for Jerusalem to match more-precise longitude (0002-asia-Asia-Jerusalem-Fix-LMT-to-match-more-precise-lo.patch) - Move Morocco's midsummer 2013 transitions (0003-Move-Morocco-s-midsummer-2013-transitions.patch) Fixes 980805 980807 981019 981020 - Israel now falls back on the last Sunday of October (0004-Israel-now-falls-back-on-the-last-Sunday-of-October.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2013c-1.el5.x86_64.rpm">tzdata-java-2013c-1.el5.x86_64</a> [<span style="white-space: nowrap">184 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-05-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013c - Sync past stamps for Palestine and West Bank with timeanddate.com - Assume that the recent change to Paraguay's DST rules is permanent - Macquarie was uninhabited between 1919 and 1948. It's also part of Australia (update in zone.tab).</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2013b-1.el5.x86_64.rpm">tzdata-java-2013b-1.el5.x86_64</a> [<span style="white-space: nowrap">184 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-03-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2013b - Paraguay will end DST on March 24 this year - Haiti uses US daylight-saving rules this year - Morocco does not observe DST during Ramadan - Upstream 2013a - Retire Chile patch, 2013a has the data - New Zones Asia/Khandyga, Asia/Ust-Nera, Europe/Busingen - Many changes in historical timestamps</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2012j-2.el5.x86_64.rpm">tzdata-java-2012j-2.el5.x86_64</a> [<span style="white-space: nowrap">183 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- DTS in Chile will end on 2013-04-28 (0016-Chile-is-changing-its-DST-rules.patch)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2012j-1.el5.x86_64.rpm">tzdata-java-2012j-1.el5.x86_64</a> [<span style="white-space: nowrap">183 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012j - Libya moved to CET</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2012i-2.el5.x86_64.rpm">tzdata-java-2012i-2.el5.x86_64</a> [<span style="white-space: nowrap">182 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Preserve hardlinks that zic leaves behind, install with cp -d</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2012f-1.el5.x86_64.rpm">tzdata-java-2012f-1.el5.x86_64</a> [<span style="white-space: nowrap">181 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-09-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Upstream 2012f - Fiji will start daylight savings at 2 am on Sunday 21st October 2012 and end at 3 am on Sunday 20th January 2013. Guess it will be like that in following years as well. - Upstream 2012e - Tokelau is in time zone UTC+13, not UTC+14 (and always was) - Upstream 2012d - Morocco will not observe DST during the month of Ramadan. DST cessation end date was corrected. - Drop tzdata-2012c-morocco.patch</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/tzdata-java-2012c-3.el5.x86_64.rpm">tzdata-java-2012c-3.el5.x86_64</a> [<span style="white-space: nowrap">181 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Machata (2012-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Morocco will not observe DST during the month of Ramadan (tzdata-2012c-morocco.patch)</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/firefox.html+0:45.8.0-2.el5_11.i386http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/firefox.htmlWed, 08 Mar 2017 18:11:51 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> firefox<br /> <strong>Summary:</strong> Mozilla Firefox Web browser </p> <p> <strong>Description:</strong><br /> Mozilla Firefox is an open-source web browser, designed for standards compliance, performance and portability. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.8.0-2.el5_11.i386.rpm">firefox-45.8.0-2.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.8.0 ESR (B2)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.8.0-2.el5_11.x86_64.rpm">firefox-45.8.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">82.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2017-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.8.0 ESR (B2)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.7.0-2.el5_11.i386.rpm">firefox-45.7.0-2.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-02-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enabled ppc/s390 arches (rhbz#1418765)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.7.0-2.el5_11.x86_64.rpm">firefox-45.7.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">82.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-02-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enabled ppc/s390 arches (rhbz#1418765)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.7.0-1.el5_11.i386.rpm">firefox-45.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 45.7.0 (B1)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.7.0-1.el5_11.x86_64.rpm">firefox-45.7.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2017-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to 45.7.0 (B1)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.6.0-1.el5_11.i386.rpm">firefox-45.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.6.0-1.el5_11.x86_64.rpm">firefox-45.6.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.5.1-1.el5_11.x86_64.rpm">firefox-45.5.1-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.5.1-1.el5_11.i386.rpm">firefox-45.5.1-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.5.0-1.el5_11.x86_64.rpm">firefox-45.5.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.5.0-1.el5_11.i386.rpm">firefox-45.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-11-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.4.0-1.el5_11.x86_64.rpm">firefox-45.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-09-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.4.0-1.el5_11.i386.rpm">firefox-45.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-09-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.3.0-1.el5_11.x86_64.rpm">firefox-45.3.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.3.0-1.el5_11.i386.rpm">firefox-45.3.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.2.0-1.el5_11.i386.rpm">firefox-45.2.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.2.0-1.el5_11.x86_64.rpm">firefox-45.2.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.1.0-1.el5_11.x86_64.rpm">firefox-45.1.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">82.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-04-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-45.1.0-1.el5_11.i386.rpm">firefox-45.1.0-1.el5_11.i386</a> [<span style="white-space: nowrap">83.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-04-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 45.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.7.0-1.el5_11.x86_64.rpm">firefox-38.7.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-03-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.7.0-1.el5_11.i386.rpm">firefox-38.7.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-03-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.6.1-1.el5_11.x86_64.rpm">firefox-38.6.1-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2016-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.6.1-1.el5_11.i386.rpm">firefox-38.6.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2016-02-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.6.0-1.el5_11.i386.rpm">firefox-38.6.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-01-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.6.0-1.el5_11.x86_64.rpm">firefox-38.6.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2016-01-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.5.0-2.el5_11.x86_64.rpm">firefox-38.5.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.5.0-2.el5_11.i386.rpm">firefox-38.5.0-2.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.4.0-1.el5_11.x86_64.rpm">firefox-38.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.4.0-1.el5_11.i386.rpm">firefox-38.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-10-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.3.0-2.el5_11.x86_64.rpm">firefox-38.3.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-09-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.3.0-2.el5_11.i386.rpm">firefox-38.3.0-2.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-09-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.3.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.2.1-1.el5_11.x86_64.rpm">firefox-38.2.1-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.2.1-1.el5_11.i386.rpm">firefox-38.2.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.2.0-4.el5_11.i386.rpm">firefox-38.2.0-4.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.2.0-4.el5_11.x86_64.rpm">firefox-38.2.0-4.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.1.1-1.el5_11.x86_64.rpm">firefox-38.1.1-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.1.1-1.el5_11.i386.rpm">firefox-38.1.1-1.el5_11.i386</a> [<span style="white-space: nowrap">79.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-08-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.1 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.1.0-1.el5_11.i386.rpm">firefox-38.1.0-1.el5_11.i386</a> [<span style="white-space: nowrap">78.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-06-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.1.0-1.el5_11.x86_64.rpm">firefox-38.1.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-06-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 38.1.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.0-4.el5_11.i386.rpm">firefox-38.0-4.el5_11.i386</a> [<span style="white-space: nowrap">78.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-05-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Obsolete Firefox 31</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-38.0-4.el5_11.x86_64.rpm">firefox-38.0-4.el5_11.x86_64</a> [<span style="white-space: nowrap">79.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-05-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Obsolete Firefox 31</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.6.0-2.el5_11.i386.rpm">firefox-31.6.0-2.el5_11.i386</a> [<span style="white-space: nowrap">65.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.6.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.6.0-2.el5_11.x86_64.rpm">firefox-31.6.0-2.el5_11.x86_64</a> [<span style="white-space: nowrap">67.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.6.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.5.3-1.el5_11.x86_64.rpm">firefox-31.5.3-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.5.3-1.el5_11.i386.rpm">firefox-31.5.3-1.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-03-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.5.0-1.el5_11.x86_64.rpm">firefox-31.5.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">66.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.5.0-1.el5_11.i386.rpm">firefox-31.5.0-1.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2015-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.5.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.4.0-1.el5_11.i386.rpm">firefox-31.4.0-1.el5_11.i386</a> [<span style="white-space: nowrap">65.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.4.0-1.el5_11.x86_64.rpm">firefox-31.4.0-1.el5_11.x86_64</a> [<span style="white-space: nowrap">67.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2015-01-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.3.0-4.el5_11.i386.rpm">firefox-31.3.0-4.el5_11.i386</a> [<span style="white-space: nowrap">65.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-11-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.3.0 ESR Build 2 - Fix for geolocation API (rhbz#1063739)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.3.0-4.el5_11.x86_64.rpm">firefox-31.3.0-4.el5_11.x86_64</a> [<span style="white-space: nowrap">65.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-11-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.3.0 ESR Build 2 - Fix for geolocation API (rhbz#1063739)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.2.0-3.el5_11.x86_64.rpm">firefox-31.2.0-3.el5_11.x86_64</a> [<span style="white-space: nowrap">68.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.2.0 ESR - Fix for mozbz#1042889</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.2.0-3.el5_11.i386.rpm">firefox-31.2.0-3.el5_11.i386</a> [<span style="white-space: nowrap">68.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 31.2.0 ESR - Fix for mozbz#1042889</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.1.0-6.el5.x86_64.rpm">firefox-31.1.0-6.el5.x86_64</a> [<span style="white-space: nowrap">68.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-09-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enable all NPAPI plugins by default to keep compatibility with the FF24 line</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-31.1.0-6.el5.i386.rpm">firefox-31.1.0-6.el5.i386</a> [<span style="white-space: nowrap">67.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-09-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enable all NPAPI plugins by default to keep compatibility with the FF24 line</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.8.0-2.el5_10.i386.rpm">firefox-24.8.0-2.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.8.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.8.0-2.el5_10.x86_64.rpm">firefox-24.8.0-2.el5_10.x86_64</a> [<span style="white-space: nowrap">50.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.8.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.7.0-1.el5_10.i386.rpm">firefox-24.7.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-07-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.7.0-1.el5_10.x86_64.rpm">firefox-24.7.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">50.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-07-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.7.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.6.0-1.el5_10.x86_64.rpm">firefox-24.6.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">50.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.6.0-1.el5_10.i386.rpm">firefox-24.6.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.6.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.5.0-1.el5_10.i386.rpm">firefox-24.5.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.5.0-1.el5_10.x86_64.rpm">firefox-24.5.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">50.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-04-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.5.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.4.0-1.el5_10.i386.rpm">firefox-24.4.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-03-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.4.0-1.el5_10.x86_64.rpm">firefox-24.4.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">50.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2014-03-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.4.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.3.0-2.el5_10.x86_64.rpm">firefox-24.3.0-2.el5_10.x86_64</a> [<span style="white-space: nowrap">50.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-02-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.3.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.3.0-2.el5_10.i386.rpm">firefox-24.3.0-2.el5_10.i386</a> [<span style="white-space: nowrap">49.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2014-02-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.3.0 ESR Build 2</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.2.0-1.el5_10.x86_64.rpm">firefox-24.2.0-1.el5_10.x86_64</a> [<span style="white-space: nowrap">50.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-24.2.0-1.el5_10.i386.rpm">firefox-24.2.0-1.el5_10.i386</a> [<span style="white-space: nowrap">49.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-12-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 24.2.0 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.10-1.el5_10.i386.rpm">firefox-17.0.10-1.el5_10.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-10-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.10-1.el5_10.x86_64.rpm">firefox-17.0.10-1.el5_10.x86_64</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-10-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.9-1.el5_9.i386.rpm">firefox-17.0.9-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-09-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.9-1.el5_9.x86_64.rpm">firefox-17.0.9-1.el5_9.x86_64</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-09-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.9 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.8-1.el5_9.x86_64.rpm">firefox-17.0.8-1.el5_9.x86_64</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-07-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.8-1.el5_9.i386.rpm">firefox-17.0.8-1.el5_9.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-07-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.7-1.el5_9.i386.rpm">firefox-17.0.7-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-06-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.7-1.el5_9.x86_64.rpm">firefox-17.0.7-1.el5_9.x86_64</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-06-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.6-1.el5_9.x86_64.rpm">firefox-17.0.6-1.el5_9.x86_64</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.6-1.el5_9.i386.rpm">firefox-17.0.6-1.el5_9.i386</a> [<span style="white-space: nowrap">25.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2013-05-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.5-1.el5_9.i386.rpm">firefox-17.0.5-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-03-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.5-1.el5_9.x86_64.rpm">firefox-17.0.5-1.el5_9.x86_64</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-03-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.3-1.el5_9.x86_64.rpm">firefox-17.0.3-1.el5_9.x86_64</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-02-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-17.0.3-1.el5_9.i386.rpm">firefox-17.0.3-1.el5_9.i386</a> [<span style="white-space: nowrap">26.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-02-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 17.0.3 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.12-1.el5_9.i386.rpm">firefox-10.0.12-1.el5_9.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.12 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.12-1.el5_9.x86_64.rpm">firefox-10.0.12-1.el5_9.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2013-01-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.12 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.11-1.el5_8.i386.rpm">firefox-10.0.11-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.11 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.11-1.el5_8.x86_64.rpm">firefox-10.0.11-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.11 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.10-2.el5_8.x86_64.rpm">firefox-10.0.10-2.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enabled OOP for wrapped plugins (rhbz#871568)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.10-2.el5_8.i386.rpm">firefox-10.0.10-2.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-11-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Enabled OOP for wrapped plugins (rhbz#871568)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.10-1.el5_8.x86_64.rpm">firefox-10.0.10-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-10-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.10-1.el5_8.i386.rpm">firefox-10.0.10-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-10-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.10 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.8-1.el5_8.i386.rpm">firefox-10.0.8-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.8-1.el5_8.x86_64.rpm">firefox-10.0.8-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-10-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.8 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.7-1.el5_8.i386.rpm">firefox-10.0.7-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.7-1.el5_8.x86_64.rpm">firefox-10.0.7-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jan Horak (2012-08-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.7 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.6-1.el5_8.x86_64.rpm">firefox-10.0.6-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-07-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.6-1.el5_8.i386.rpm">firefox-10.0.6-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-07-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.6 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.5-1.el5_8.x86_64.rpm">firefox-10.0.5-1.el5_8.x86_64</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.5 ESR</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/firefox-10.0.5-1.el5_8.i386.rpm">firefox-10.0.5-1.el5_8.i386</a> [<span style="white-space: nowrap">20.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Martin Stransky (2012-06-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Update to 10.0.5 ESR</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kmod-kvm.html+0:83-277.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kmod-kvm.htmlTue, 07 Mar 2017 14:59:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kmod-kvm<br /> <strong>Summary:</strong> kvm kernel module(s) </p> <p> <strong>Description:</strong><br /> This package provides the kvm kernel modules built for the Linux kernel 2.6.18-419.el5 for the x86_64 family of processors. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-277.el5_11.x86_64.rpm">kmod-kvm-83-277.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2017-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch [bz#1421564] - kvm-cirrus_vga-fix-division-by-0-for-color-expansion-rop.patch [bz#1421564] - kvm-cirrus-fix-blit-region-check.patch [bz#1421564] - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrus_bltbuf.patch [bz#1421564] - kvm-cirrus_vga-fix-off-by-one-in-blit_region_is_unsafe.patch [bz#1421564] - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch [bz#1421564] - kvm-display-cirrus-ignore-source-pitch-value-as-needed-i.patch [bz#1421564] - kvm-cirrus-handle-negative-pitch-in-cirrus_invalidate_re.patch [bz#1421564] - kvm-cirrus-allow-zero-source-pitch-in-pattern-fill-rops.patch [bz#1421564] - kvm-cirrus-fix-blit-address-mask-handling.patch [bz#1421564] - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch [bz#1421564] - kvm-cirrus-fix-patterncopy-checks.patch [bz#1421564] - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1421564] - kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1421564] - Resolves: bz#1421564 (CVE-2017-2615 kvm: Qemu: display: cirrus: oob access while doing bitblt copy backward mode [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-276.el5_11.x86_64.rpm">kmod-kvm-83-276.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2016-08-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359723] - Resolves: bz#1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-5.11.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-274.el5_11.x86_64.rpm">kmod-kvm-83-274.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- net-add-checks-to-validate-ring-buffer-pointers.patch [bz#1263272] - Resolves: bz#1263272 (CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000_receive() function [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-273.el5_11.x86_64.rpm">kmod-kvm-83-273.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch [bz#1225896] - kvm-pcnet-fix-Negative-array-index-read.patch [bz#1225896] - kvm-pcnet-force-the-buffer-access-to-be-in-bounds-during.patch [bz#1225896] - Resolves: bz#1225896 (EMBARGOED CVE-2015-3209 kvm: qemu: pcnet: multi-tmd buffer overflow in the tx path [rhel-5.11.z)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-272.el5_11.x86_64.rpm">kmod-kvm-83-272.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-05-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219266] - Resolves: bz#1219266 (kvm: qemu: floppy disk controller flaw [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-270.el5_11.x86_64.rpm">kmod-kvm-83-270.el5_11.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: Check non canonical addresses upon WRMSR - Resolves: bz#1152982 (CVE-2014-3610 kernel: kvm: noncanonical MSR writes [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-266.el5_10.1.x86_64.rpm">kmod-kvm-83-266.el5_10.1.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2014-02-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-262.el5_9.3.x86_64.rpm">kmod-kvm-83-262.el5_9.3.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-04-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#947363] - Resolves: bz#947363 (RHEL.5.8.32 guest hang when installing)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-262.el5_9.1.x86_64.rpm">kmod-kvm-83-262.el5_9.1.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910839] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910839] - Resolves: bz#910839 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.9.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-83-249.el5_8.5.x86_64.rpm">kmod-kvm-83-249.el5_8.5.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2012-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-console-bounds-check-whenever-changing-the-cursor-du-58.patch [bz#851255] - CVE: CVE-2012-3515 - Resolves: bz#851255 (EMBARGOED CVE-2012-3515 qemu/kvm: VT100 emulation vulnerability [rhel-5.8.z])</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kmod-kvm-debug.html+0:83-277.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kmod-kvm-debug.htmlTue, 07 Mar 2017 14:59:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kmod-kvm-debug<br /> <strong>Summary:</strong> kvm kernel module(s) </p> <p> <strong>Description:</strong><br /> This package provides the kvm kernel modules built for the Linux kernel 2.6.18-419.el5debug for the x86_64 family of processors. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-277.el5_11.x86_64.rpm">kmod-kvm-debug-83-277.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2017-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch [bz#1421564] - kvm-cirrus_vga-fix-division-by-0-for-color-expansion-rop.patch [bz#1421564] - kvm-cirrus-fix-blit-region-check.patch [bz#1421564] - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrus_bltbuf.patch [bz#1421564] - kvm-cirrus_vga-fix-off-by-one-in-blit_region_is_unsafe.patch [bz#1421564] - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch [bz#1421564] - kvm-display-cirrus-ignore-source-pitch-value-as-needed-i.patch [bz#1421564] - kvm-cirrus-handle-negative-pitch-in-cirrus_invalidate_re.patch [bz#1421564] - kvm-cirrus-allow-zero-source-pitch-in-pattern-fill-rops.patch [bz#1421564] - kvm-cirrus-fix-blit-address-mask-handling.patch [bz#1421564] - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch [bz#1421564] - kvm-cirrus-fix-patterncopy-checks.patch [bz#1421564] - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1421564] - kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1421564] - Resolves: bz#1421564 (CVE-2017-2615 kvm: Qemu: display: cirrus: oob access while doing bitblt copy backward mode [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-276.el5_11.x86_64.rpm">kmod-kvm-debug-83-276.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2016-08-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359723] - Resolves: bz#1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-5.11.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-274.el5_11.x86_64.rpm">kmod-kvm-debug-83-274.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- net-add-checks-to-validate-ring-buffer-pointers.patch [bz#1263272] - Resolves: bz#1263272 (CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000_receive() function [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-273.el5_11.x86_64.rpm">kmod-kvm-debug-83-273.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch [bz#1225896] - kvm-pcnet-fix-Negative-array-index-read.patch [bz#1225896] - kvm-pcnet-force-the-buffer-access-to-be-in-bounds-during.patch [bz#1225896] - Resolves: bz#1225896 (EMBARGOED CVE-2015-3209 kvm: qemu: pcnet: multi-tmd buffer overflow in the tx path [rhel-5.11.z)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-272.el5_11.x86_64.rpm">kmod-kvm-debug-83-272.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-05-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219266] - Resolves: bz#1219266 (kvm: qemu: floppy disk controller flaw [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-270.el5_11.x86_64.rpm">kmod-kvm-debug-83-270.el5_11.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: Check non canonical addresses upon WRMSR - Resolves: bz#1152982 (CVE-2014-3610 kernel: kvm: noncanonical MSR writes [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-266.el5_10.1.x86_64.rpm">kmod-kvm-debug-83-266.el5_10.1.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2014-02-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-262.el5_9.3.x86_64.rpm">kmod-kvm-debug-83-262.el5_9.3.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-04-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#947363] - Resolves: bz#947363 (RHEL.5.8.32 guest hang when installing)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-262.el5_9.1.x86_64.rpm">kmod-kvm-debug-83-262.el5_9.1.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910839] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910839] - Resolves: bz#910839 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.9.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kmod-kvm-debug-83-249.el5_8.5.x86_64.rpm">kmod-kvm-debug-83-249.el5_8.5.x86_64</a> [<span style="white-space: nowrap">1.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2012-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-console-bounds-check-whenever-changing-the-cursor-du-58.patch [bz#851255] - CVE: CVE-2012-3515 - Resolves: bz#851255 (EMBARGOED CVE-2012-3515 qemu/kvm: VT100 emulation vulnerability [rhel-5.8.z])</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm.html+0:83-277.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm.htmlTue, 07 Mar 2017 14:59:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kvm<br /> <strong>Summary:</strong> Kernel-based Virtual Machine </p> <p> <strong>Description:</strong><br /> KVM (for Kernel-based Virtual Machine) is a full virtualization solution for Linux on x86 hardware. Using KVM, one can run multiple virtual machines running unmodified Linux or Windows images. Each virtual machine has private virtualized hardware: a network card, disk, graphics adapter, etc. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-277.el5_11.x86_64.rpm">kvm-83-277.el5_11.x86_64</a> [<span style="white-space: nowrap">941 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2017-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch [bz#1421564] - kvm-cirrus_vga-fix-division-by-0-for-color-expansion-rop.patch [bz#1421564] - kvm-cirrus-fix-blit-region-check.patch [bz#1421564] - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrus_bltbuf.patch [bz#1421564] - kvm-cirrus_vga-fix-off-by-one-in-blit_region_is_unsafe.patch [bz#1421564] - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch [bz#1421564] - kvm-display-cirrus-ignore-source-pitch-value-as-needed-i.patch [bz#1421564] - kvm-cirrus-handle-negative-pitch-in-cirrus_invalidate_re.patch [bz#1421564] - kvm-cirrus-allow-zero-source-pitch-in-pattern-fill-rops.patch [bz#1421564] - kvm-cirrus-fix-blit-address-mask-handling.patch [bz#1421564] - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch [bz#1421564] - kvm-cirrus-fix-patterncopy-checks.patch [bz#1421564] - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1421564] - kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1421564] - Resolves: bz#1421564 (CVE-2017-2615 kvm: Qemu: display: cirrus: oob access while doing bitblt copy backward mode [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-276.el5_11.x86_64.rpm">kvm-83-276.el5_11.x86_64</a> [<span style="white-space: nowrap">940 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2016-08-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359723] - Resolves: bz#1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-5.11.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-274.el5_11.x86_64.rpm">kvm-83-274.el5_11.x86_64</a> [<span style="white-space: nowrap">939 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- net-add-checks-to-validate-ring-buffer-pointers.patch [bz#1263272] - Resolves: bz#1263272 (CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000_receive() function [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-273.el5_11.x86_64.rpm">kvm-83-273.el5_11.x86_64</a> [<span style="white-space: nowrap">939 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch [bz#1225896] - kvm-pcnet-fix-Negative-array-index-read.patch [bz#1225896] - kvm-pcnet-force-the-buffer-access-to-be-in-bounds-during.patch [bz#1225896] - Resolves: bz#1225896 (EMBARGOED CVE-2015-3209 kvm: qemu: pcnet: multi-tmd buffer overflow in the tx path [rhel-5.11.z)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-272.el5_11.x86_64.rpm">kvm-83-272.el5_11.x86_64</a> [<span style="white-space: nowrap">938 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-05-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219266] - Resolves: bz#1219266 (kvm: qemu: floppy disk controller flaw [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-270.el5_11.x86_64.rpm">kvm-83-270.el5_11.x86_64</a> [<span style="white-space: nowrap">938 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: Check non canonical addresses upon WRMSR - Resolves: bz#1152982 (CVE-2014-3610 kernel: kvm: noncanonical MSR writes [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-266.el5_10.1.x86_64.rpm">kvm-83-266.el5_10.1.x86_64</a> [<span style="white-space: nowrap">938 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2014-02-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-262.el5_9.3.x86_64.rpm">kvm-83-262.el5_9.3.x86_64</a> [<span style="white-space: nowrap">937 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-04-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#947363] - Resolves: bz#947363 (RHEL.5.8.32 guest hang when installing)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-262.el5_9.1.x86_64.rpm">kvm-83-262.el5_9.1.x86_64</a> [<span style="white-space: nowrap">936 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910839] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910839] - Resolves: bz#910839 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.9.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-83-249.el5_8.5.x86_64.rpm">kvm-83-249.el5_8.5.x86_64</a> [<span style="white-space: nowrap">893 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2012-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-console-bounds-check-whenever-changing-the-cursor-du-58.patch [bz#851255] - CVE: CVE-2012-3515 - Resolves: bz#851255 (EMBARGOED CVE-2012-3515 qemu/kvm: VT100 emulation vulnerability [rhel-5.8.z])</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm-qemu-img.html+0:83-277.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm-qemu-img.htmlTue, 07 Mar 2017 14:59:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kvm-qemu-img<br /> <strong>Summary:</strong> Qemu disk image utility </p> <p> <strong>Description:</strong><br /> This package contains qemu-img, the qemu command line tool for manipulating disk images, built from the qemu source code included on the KVM source. This package should be useful for systems that don't have a qemu package but need qemu-img. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-277.el5_11.x86_64.rpm">kvm-qemu-img-83-277.el5_11.x86_64</a> [<span style="white-space: nowrap">192 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2017-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch [bz#1421564] - kvm-cirrus_vga-fix-division-by-0-for-color-expansion-rop.patch [bz#1421564] - kvm-cirrus-fix-blit-region-check.patch [bz#1421564] - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrus_bltbuf.patch [bz#1421564] - kvm-cirrus_vga-fix-off-by-one-in-blit_region_is_unsafe.patch [bz#1421564] - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch [bz#1421564] - kvm-display-cirrus-ignore-source-pitch-value-as-needed-i.patch [bz#1421564] - kvm-cirrus-handle-negative-pitch-in-cirrus_invalidate_re.patch [bz#1421564] - kvm-cirrus-allow-zero-source-pitch-in-pattern-fill-rops.patch [bz#1421564] - kvm-cirrus-fix-blit-address-mask-handling.patch [bz#1421564] - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch [bz#1421564] - kvm-cirrus-fix-patterncopy-checks.patch [bz#1421564] - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1421564] - kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1421564] - Resolves: bz#1421564 (CVE-2017-2615 kvm: Qemu: display: cirrus: oob access while doing bitblt copy backward mode [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-276.el5_11.x86_64.rpm">kvm-qemu-img-83-276.el5_11.x86_64</a> [<span style="white-space: nowrap">191 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2016-08-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359723] - Resolves: bz#1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-5.11.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-274.el5_11.x86_64.rpm">kvm-qemu-img-83-274.el5_11.x86_64</a> [<span style="white-space: nowrap">191 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- net-add-checks-to-validate-ring-buffer-pointers.patch [bz#1263272] - Resolves: bz#1263272 (CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000_receive() function [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-273.el5_11.x86_64.rpm">kvm-qemu-img-83-273.el5_11.x86_64</a> [<span style="white-space: nowrap">191 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch [bz#1225896] - kvm-pcnet-fix-Negative-array-index-read.patch [bz#1225896] - kvm-pcnet-force-the-buffer-access-to-be-in-bounds-during.patch [bz#1225896] - Resolves: bz#1225896 (EMBARGOED CVE-2015-3209 kvm: qemu: pcnet: multi-tmd buffer overflow in the tx path [rhel-5.11.z)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-272.el5_11.x86_64.rpm">kvm-qemu-img-83-272.el5_11.x86_64</a> [<span style="white-space: nowrap">190 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-05-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219266] - Resolves: bz#1219266 (kvm: qemu: floppy disk controller flaw [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-270.el5_11.x86_64.rpm">kvm-qemu-img-83-270.el5_11.x86_64</a> [<span style="white-space: nowrap">190 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: Check non canonical addresses upon WRMSR - Resolves: bz#1152982 (CVE-2014-3610 kernel: kvm: noncanonical MSR writes [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-266.el5_10.1.x86_64.rpm">kvm-qemu-img-83-266.el5_10.1.x86_64</a> [<span style="white-space: nowrap">190 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2014-02-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-262.el5_9.3.x86_64.rpm">kvm-qemu-img-83-262.el5_9.3.x86_64</a> [<span style="white-space: nowrap">189 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-04-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#947363] - Resolves: bz#947363 (RHEL.5.8.32 guest hang when installing)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-262.el5_9.1.x86_64.rpm">kvm-qemu-img-83-262.el5_9.1.x86_64</a> [<span style="white-space: nowrap">188 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910839] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910839] - Resolves: bz#910839 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.9.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-qemu-img-83-249.el5_8.5.x86_64.rpm">kvm-qemu-img-83-249.el5_8.5.x86_64</a> [<span style="white-space: nowrap">185 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2012-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-console-bounds-check-whenever-changing-the-cursor-du-58.patch [bz#851255] - CVE: CVE-2012-3515 - Resolves: bz#851255 (EMBARGOED CVE-2012-3515 qemu/kvm: VT100 emulation vulnerability [rhel-5.8.z])</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm-tools.html+0:83-277.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kvm-tools.htmlTue, 07 Mar 2017 14:59:27 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kvm-tools<br /> <strong>Summary:</strong> KVM debugging and diagnostics tools </p> <p> <strong>Description:</strong><br /> This package contains some diagnostics and debugging tools for KVM, such as kvmtrace and kvm_stat. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-277.el5_11.x86_64.rpm">kvm-tools-83-277.el5_11.x86_64</a> [<span style="white-space: nowrap">200 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2017-02-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-Fix-hardware-accelerated-video-to-video-copy-on-Cirr.patch [bz#1421564] - kvm-cirrus_vga-fix-division-by-0-for-color-expansion-rop.patch [bz#1421564] - kvm-cirrus-fix-blit-region-check.patch [bz#1421564] - kvm-cirrus-don-t-overflow-CirrusVGAState-cirrus_bltbuf.patch [bz#1421564] - kvm-cirrus_vga-fix-off-by-one-in-blit_region_is_unsafe.patch [bz#1421564] - kvm-display-cirrus-check-vga-bits-per-pixel-bpp-value.patch [bz#1421564] - kvm-display-cirrus-ignore-source-pitch-value-as-needed-i.patch [bz#1421564] - kvm-cirrus-handle-negative-pitch-in-cirrus_invalidate_re.patch [bz#1421564] - kvm-cirrus-allow-zero-source-pitch-in-pattern-fill-rops.patch [bz#1421564] - kvm-cirrus-fix-blit-address-mask-handling.patch [bz#1421564] - kvm-cirrus-fix-oob-access-issue-CVE-2017-2615.patch [bz#1421564] - kvm-cirrus-fix-patterncopy-checks.patch [bz#1421564] - kvm-Revert-cirrus-allow-zero-source-pitch-in-pattern-fil.patch [bz#1421564] - kvm-cirrus-add-blit_is_unsafe-call-to-cirrus_bitblt_cput.patch [bz#1421564] - Resolves: bz#1421564 (CVE-2017-2615 kvm: Qemu: display: cirrus: oob access while doing bitblt copy backward mode [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-276.el5_11.x86_64.rpm">kvm-tools-83-276.el5_11.x86_64</a> [<span style="white-space: nowrap">199 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2016-08-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-virtio-error-out-if-guest-exceeds-virtqueue-size.patch [bz#1359723] - Resolves: bz#1359723 CVE-2016-5403 kvm: Qemu: virtio: unbounded memory allocation on host via guest leading to DoS [rhel-5.11.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-274.el5_11.x86_64.rpm">kvm-tools-83-274.el5_11.x86_64</a> [<span style="white-space: nowrap">198 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-09-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- net-add-checks-to-validate-ring-buffer-pointers.patch [bz#1263272] - Resolves: bz#1263272 (CVE-2015-5279 kvm: qemu: Heap overflow vulnerability in ne2000_receive() function [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-273.el5_11.x86_64.rpm">kvm-tools-83-273.el5_11.x86_64</a> [<span style="white-space: nowrap">198 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-06-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-pcnet-Properly-handle-TX-requests-during-Link-Fail.patch [bz#1225896] - kvm-pcnet-fix-Negative-array-index-read.patch [bz#1225896] - kvm-pcnet-force-the-buffer-access-to-be-in-bounds-during.patch [bz#1225896] - Resolves: bz#1225896 (EMBARGOED CVE-2015-3209 kvm: qemu: pcnet: multi-tmd buffer overflow in the tx path [rhel-5.11.z)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-272.el5_11.x86_64.rpm">kvm-tools-83-272.el5_11.x86_64</a> [<span style="white-space: nowrap">197 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2015-05-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-fdc-force-the-fifo-access-to-be-in-bounds-of-the-all.patch [bz#1219266] - Resolves: bz#1219266 (kvm: qemu: floppy disk controller flaw [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-270.el5_11.x86_64.rpm">kvm-tools-83-270.el5_11.x86_64</a> [<span style="white-space: nowrap">197 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jeff E. Nelson (2015-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: Check non canonical addresses upon WRMSR - Resolves: bz#1152982 (CVE-2014-3610 kernel: kvm: noncanonical MSR writes [rhel-5.11.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-266.el5_10.1.x86_64.rpm">kvm-tools-83-266.el5_10.1.x86_64</a> [<span style="white-space: nowrap">197 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Miroslav Rezanina (2014-02-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- KVM: x86: prevent cross page vapic_addr access (CVE-2013-6368) [bz#1032219] - KVM: x86: Fix potential divide by 0 in lapic (CVE-2013-6367) [bz#1032216] - Resolves: bz#1032219 (CVE-2013-6368 kvm: cross page vapic_addr access [rhel-5.10]) - Resolves: bz#1032216 CVE-2013-6367 kvm: division by zero in apic_get_tmcct() [rhel-5.10.z]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-262.el5_9.3.x86_64.rpm">kvm-tools-83-262.el5_9.3.x86_64</a> [<span style="white-space: nowrap">196 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-04-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-kernel-kvm-accept-unaligned-MSR_KVM_SYSTEM_TIME-writes.patch [bz#947363] - Resolves: bz#947363 (RHEL.5.8.32 guest hang when installing)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-262.el5_9.1.x86_64.rpm">kvm-tools-83-262.el5_9.1.x86_64</a> [<span style="white-space: nowrap">195 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2013-02-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-e1000-Discard-packets-that-are-too-long-if-SBP-and-L.patch [bz#910839] - kvm-e1000-Discard-oversized-packets-based-on-SBP-LPE.patch [bz#910839] - Resolves: bz#910839 (CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled [rhel-5.9.z])</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kvm-tools-83-249.el5_8.5.x86_64.rpm">kvm-tools-83-249.el5_8.5.x86_64</a> [<span style="white-space: nowrap">193 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Michal Novotny (2012-09-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- kvm-console-bounds-check-whenever-changing-the-cursor-du-58.patch [bz#851255] - CVE: CVE-2012-3515 - Resolves: bz#851255 (EMBARGOED CVE-2012-3515 qemu/kvm: VT100 emulation vulnerability [rhel-5.8.z])</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5xen.html+0:1.4.15-90.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 18:58:17 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-openafs-2.6.18-419.el5xen<br /> <strong>Summary:</strong> OpenAFS Kernel Module for Kernel 2.6.18-419.el5xen </p> <p> <strong>Description:</strong><br /> The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.18-419.el5xen and architecture x86_64. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-openafs-2.6.18-419.el5xen-1.4.15-90.sl5.x86_64.rpm">kernel-module-openafs-2.6.18-419.el5xen-1.4.15-90.sl5.x86_64</a> [<span style="white-space: nowrap">268 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2016-12-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- patches 1096..1099 to fix OPEANFS-SA-2016-003 (from release 1.6.20)</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5xen.html+0:1.2.0-2.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 18:56:12 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-ipw3945-2.6.18-419.el5xen<br /> <strong>Summary:</strong> Kernel module for the Intel® PRO/Wireless 3945. </p> <p> <strong>Description:</strong><br /> This package contains kernel drivers for the Intel® PRO/Wireless 3945. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-ipw3945-2.6.18-419.el5xen-1.2.0-2.sl5.x86_64.rpm">kernel-module-ipw3945-2.6.18-419.el5xen-1.2.0-2.sl5.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2007-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix kernel_moduledir - mode 755 for ipw3945.ko</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5xen.html+0:0.20090202.cvs-6.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5xen.htmlFri, 24 Feb 2017 18:56:02 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-aufs-2.6.18-419.el5xen<br /> <strong>Summary:</strong> kernel modules for aufs. </p> <p> <strong>Description:</strong><br /> Kernel modules for aufs. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-aufs-2.6.18-419.el5xen-0.20090202.cvs-6.sl5.x86_64.rpm">kernel-module-aufs-2.6.18-419.el5xen-0.20090202.cvs-6.sl5.x86_64</a> [<span style="white-space: nowrap">130 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2009-02-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- update to latest CVS version 2009-02-02 - add aufs-struct_path.patch</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5.html+0:1.4.15-90.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-openafs-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:55:33 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-openafs-2.6.18-419.el5<br /> <strong>Summary:</strong> OpenAFS Kernel Module for Kernel 2.6.18-419.el5 </p> <p> <strong>Description:</strong><br /> The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.18-419.el5 and architecture x86_64. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-openafs-2.6.18-419.el5-1.4.15-90.sl5.x86_64.rpm">kernel-module-openafs-2.6.18-419.el5-1.4.15-90.sl5.x86_64</a> [<span style="white-space: nowrap">268 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Stephan Wiesand (2016-12-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- patches 1096..1099 to fix OPEANFS-SA-2016-003 (from release 1.6.20)</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5.html+0:1.2.0-2.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-ipw3945-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:53:30 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-ipw3945-2.6.18-419.el5<br /> <strong>Summary:</strong> Kernel module for the Intel® PRO/Wireless 3945. </p> <p> <strong>Description:</strong><br /> This package contains kernel drivers for the Intel® PRO/Wireless 3945. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-ipw3945-2.6.18-419.el5-1.2.0-2.sl5.x86_64.rpm">kernel-module-ipw3945-2.6.18-419.el5-1.2.0-2.sl5.x86_64</a> [<span style="white-space: nowrap">329 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2007-11-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix kernel_moduledir - mode 755 for ipw3945.ko</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5.html+0:0.20090202.cvs-6.sl5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-module-aufs-2.6.18-419.el5.htmlFri, 24 Feb 2017 18:53:19 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-module-aufs-2.6.18-419.el5<br /> <strong>Summary:</strong> kernel modules for aufs. </p> <p> <strong>Description:</strong><br /> Kernel modules for aufs. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-module-aufs-2.6.18-419.el5-0.20090202.cvs-6.sl5.x86_64.rpm">kernel-module-aufs-2.6.18-419.el5-0.20090202.cvs-6.sl5.x86_64</a> [<span style="white-space: nowrap">130 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Urs Beyerle (2009-02-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- update to latest CVS version 2009-02-02 - add aufs-struct_path.patch</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel<br /> <strong>Summary:</strong> The Linux kernel (the core of the Linux operating system) </p> <p> <strong>Description:</strong><br /> The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-419.el5.x86_64.rpm">kernel-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-417.el5.x86_64.rpm">kernel-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-416.el5.x86_64.rpm">kernel-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-409.el5.x86_64.rpm">kernel-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-408.el5.x86_64.rpm">kernel-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-406.el5.x86_64.rpm">kernel-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-404.el5.x86_64.rpm">kernel-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-402.el5.x86_64.rpm">kernel-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-400.1.1.el5.x86_64.rpm">kernel-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-400.el5.x86_64.rpm">kernel-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.12.1.el5.x86_64.rpm">kernel-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.11.1.el5.x86_64.rpm">kernel-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.9.1.el5.x86_64.rpm">kernel-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.8.1.el5.x86_64.rpm">kernel-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.6.1.el5.x86_64.rpm">kernel-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.4.1.el5.x86_64.rpm">kernel-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.3.1.el5.x86_64.rpm">kernel-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.1.2.el5.x86_64.rpm">kernel-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">22.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-371.el5.x86_64.rpm">kernel-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">21.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.18.1.el5.x86_64.rpm">kernel-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.16.1.el5.x86_64.rpm">kernel-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.12.1.el5.x86_64.rpm">kernel-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.6.1.el5.x86_64.rpm">kernel-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.4.1.el5.x86_64.rpm">kernel-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.3.1.el5.x86_64.rpm">kernel-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.2.1.el5.x86_64.rpm">kernel-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-348.1.1.el5.x86_64.rpm">kernel-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">22.1 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.24.1.el5.x86_64.rpm">kernel-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.20.1.el5.x86_64.rpm">kernel-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.16.1.el5.x86_64.rpm">kernel-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.13.1.el5.x86_64.rpm">kernel-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.11.1.el5.x86_64.rpm">kernel-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.8.2.el5.x86_64.rpm">kernel-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-2.6.18-308.8.1.el5.x86_64.rpm">kernel-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">21.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-debug.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-debug.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-debug<br /> <strong>Summary:</strong> The Linux kernel compiled with extra debugging enabled. </p> <p> <strong>Description:</strong><br /> The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. This variant of the kernel has numerous debugging options enabled. It should only be installed when trying to gather additional information on kernel bugs, as some of these options impact performance noticably. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-419.el5.x86_64.rpm">kernel-debug-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-417.el5.x86_64.rpm">kernel-debug-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-416.el5.x86_64.rpm">kernel-debug-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-409.el5.x86_64.rpm">kernel-debug-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-408.el5.x86_64.rpm">kernel-debug-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-406.el5.x86_64.rpm">kernel-debug-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-404.el5.x86_64.rpm">kernel-debug-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-402.el5.x86_64.rpm">kernel-debug-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-400.1.1.el5.x86_64.rpm">kernel-debug-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-400.el5.x86_64.rpm">kernel-debug-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.12.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.11.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.9.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.8.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.6.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.4.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.3.1.el5.x86_64.rpm">kernel-debug-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.1.2.el5.x86_64.rpm">kernel-debug-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-371.el5.x86_64.rpm">kernel-debug-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">22.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.18.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.16.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.12.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.6.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.4.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.3.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.2.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-348.1.1.el5.x86_64.rpm">kernel-debug-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.24.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.20.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.16.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.13.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.11.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.8.2.el5.x86_64.rpm">kernel-debug-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-2.6.18-308.8.1.el5.x86_64.rpm">kernel-debug-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">21.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-debug-devel.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-debug-devel.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-debug-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-419.el5.x86_64.rpm">kernel-debug-devel-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-417.el5.x86_64.rpm">kernel-debug-devel-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-416.el5.x86_64.rpm">kernel-debug-devel-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-409.el5.x86_64.rpm">kernel-debug-devel-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-408.el5.x86_64.rpm">kernel-debug-devel-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-406.el5.x86_64.rpm">kernel-debug-devel-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-404.el5.x86_64.rpm">kernel-debug-devel-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-402.el5.x86_64.rpm">kernel-debug-devel-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-400.1.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-400.el5.x86_64.rpm">kernel-debug-devel-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.12.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.11.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">6.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.9.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.8.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.6.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.4.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.3.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.1.2.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-371.el5.x86_64.rpm">kernel-debug-devel-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.18.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.16.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.12.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.6.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.4.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.3.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.2.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-348.1.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.24.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.20.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.16.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.13.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.11.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.8.2.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-debug-devel-2.6.18-308.8.1.el5.x86_64.rpm">kernel-debug-devel-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-devel.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-devel.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-419.el5.x86_64.rpm">kernel-devel-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-417.el5.x86_64.rpm">kernel-devel-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-416.el5.x86_64.rpm">kernel-devel-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-409.el5.x86_64.rpm">kernel-devel-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-408.el5.x86_64.rpm">kernel-devel-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-406.el5.x86_64.rpm">kernel-devel-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-404.el5.x86_64.rpm">kernel-devel-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-402.el5.x86_64.rpm">kernel-devel-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-400.1.1.el5.x86_64.rpm">kernel-devel-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-400.el5.x86_64.rpm">kernel-devel-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.12.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.11.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.9.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.8.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.6.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.4.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.3.1.el5.x86_64.rpm">kernel-devel-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.1.2.el5.x86_64.rpm">kernel-devel-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-371.el5.x86_64.rpm">kernel-devel-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.18.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.16.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.12.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.6.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.4.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.3.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.2.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-348.1.1.el5.x86_64.rpm">kernel-devel-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">5.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.24.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.20.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.16.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.13.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.11.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.8.2.el5.x86_64.rpm">kernel-devel-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-devel-2.6.18-308.8.1.el5.x86_64.rpm">kernel-devel-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-headers.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-headers.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-headers<br /> <strong>Summary:</strong> Header files for the Linux kernel for use by glibc </p> <p> <strong>Description:</strong><br /> Kernel-headers includes the C header files that specify the interface between the Linux kernel and userspace libraries and programs. The header files define structures and constants that are needed for building most standard programs and are also needed for rebuilding the glibc package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-419.el5.x86_64.rpm">kernel-headers-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-417.el5.x86_64.rpm">kernel-headers-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-416.el5.x86_64.rpm">kernel-headers-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-409.el5.x86_64.rpm">kernel-headers-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-408.el5.x86_64.rpm">kernel-headers-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-406.el5.x86_64.rpm">kernel-headers-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-404.el5.x86_64.rpm">kernel-headers-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-402.el5.x86_64.rpm">kernel-headers-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-400.1.1.el5.x86_64.rpm">kernel-headers-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-400.el5.x86_64.rpm">kernel-headers-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.12.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.11.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.9.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.8.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.6.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.4.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.3.1.el5.x86_64.rpm">kernel-headers-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.1.2.el5.x86_64.rpm">kernel-headers-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-371.el5.x86_64.rpm">kernel-headers-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.18.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.16.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.12.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.6.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.4.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.3.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.2.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-348.1.1.el5.x86_64.rpm">kernel-headers-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">1.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.24.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.20.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.16.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.13.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.11.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.8.2.el5.x86_64.rpm">kernel-headers-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-headers-2.6.18-308.8.1.el5.x86_64.rpm">kernel-headers-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">1.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-xen.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-xen.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-xen<br /> <strong>Summary:</strong> The Linux kernel compiled for Xen VM operations </p> <p> <strong>Description:</strong><br /> This package includes a Xen hypervisor and a version of the Linux kernel which can run Xen VMs for privileged hosts and unprivileged paravirtualized hosts. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-419.el5.x86_64.rpm">kernel-xen-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-417.el5.x86_64.rpm">kernel-xen-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-416.el5.x86_64.rpm">kernel-xen-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-409.el5.x86_64.rpm">kernel-xen-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-408.el5.x86_64.rpm">kernel-xen-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-406.el5.x86_64.rpm">kernel-xen-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-404.el5.x86_64.rpm">kernel-xen-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-402.el5.x86_64.rpm">kernel-xen-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-400.1.1.el5.x86_64.rpm">kernel-xen-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-400.el5.x86_64.rpm">kernel-xen-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.12.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.11.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.9.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.8.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.6.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.4.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.3.1.el5.x86_64.rpm">kernel-xen-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.1.2.el5.x86_64.rpm">kernel-xen-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-371.el5.x86_64.rpm">kernel-xen-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">22.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.18.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.16.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.12.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.6.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.4.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.3.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.2.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-348.1.1.el5.x86_64.rpm">kernel-xen-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">23.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.24.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.20.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.16.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.13.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.11.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.8.2.el5.x86_64.rpm">kernel-xen-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-2.6.18-308.8.1.el5.x86_64.rpm">kernel-xen-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">22.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-xen-devel.html+0:2.6.18-419.el5.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-xen-devel.htmlFri, 24 Feb 2017 18:04:29 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-xen-devel<br /> <strong>Summary:</strong> Development package for building kernel modules to match the kernel. </p> <p> <strong>Description:</strong><br /> This package provides kernel headers and makefiles sufficient to build modules against the kernel package. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-419.el5.x86_64.rpm">kernel-xen-devel-2.6.18-419.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-417.el5.x86_64.rpm">kernel-xen-devel-2.6.18-417.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-416.el5.x86_64.rpm">kernel-xen-devel-2.6.18-416.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-409.el5.x86_64.rpm">kernel-xen-devel-2.6.18-409.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-408.el5.x86_64.rpm">kernel-xen-devel-2.6.18-408.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-406.el5.x86_64.rpm">kernel-xen-devel-2.6.18-406.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-404.el5.x86_64.rpm">kernel-xen-devel-2.6.18-404.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-402.el5.x86_64.rpm">kernel-xen-devel-2.6.18-402.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-400.1.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-400.1.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-400.el5.x86_64.rpm">kernel-xen-devel-2.6.18-400.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.12.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.12.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.11.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.11.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.9.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.9.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.8.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.6.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.4.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.3.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.1.2.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.1.2.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-371.el5.x86_64.rpm">kernel-xen-devel-2.6.18-371.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.18.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.18.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.16.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.12.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.12.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.6.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.6.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.4.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.4.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.3.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.3.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.2.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.2.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-348.1.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-348.1.1.el5.x86_64</a> [<span style="white-space: nowrap">5.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.24.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.24.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.20.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.20.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.16.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.16.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.13.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.13.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.11.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.11.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.8.2.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.8.2.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-xen-devel-2.6.18-308.8.1.el5.x86_64.rpm">kernel-xen-devel-2.6.18-308.8.1.el5.x86_64</a> [<span style="white-space: nowrap">5.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-doc.html+0:2.6.18-419.el5.noarchhttp://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/kernel-doc.htmlFri, 24 Feb 2017 17:15:47 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> kernel-doc<br /> <strong>Summary:</strong> Various documentation bits found in the kernel source. </p> <p> <strong>Description:</strong><br /> This package contains documentation files from the kernel source. Various bits of information about the Linux kernel and the device drivers shipped with it are documented in these files. You'll want to install this package if you need a reference to the options that can be passed to Linux kernel modules at load time. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-419.el5.noarch.rpm">kernel-doc-2.6.18-419.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2017-02-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] dccp: Use AF-independent rebuild_header routine (Hannes Frederic Sowa) [1424751] - [net] dccp: fix freeing skb too early for IPV6_RECVPKTINFO (Hannes Frederic Sowa) [1424633] {CVE-2017-6074} - [redhat] kernel.spec.template: disable autoloading for dccp proto (Hannes Frederic Sowa) [1425177]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-417.el5.noarch.rpm">kernel-doc-2.6.18-417.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-11-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] hv: do not lose pending heartbeat vmbus packets (Vitaly Kuznetsov) [1391167] - [net] Fix use after free in the recvmmsg exit path (Davide Caratti) [1390044] {CVE-2016-7117}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-416.el5.noarch.rpm">kernel-doc-2.6.18-416.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-10-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [mm] Fix Privilege escalation via MAP_PRIVATE (Larry Woodman) [1385112] {CVE-2016-5195}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-409.el5.noarch.rpm">kernel-doc-2.6.18-409.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2016-02-12)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] ext4: limit group search loop for non-extent files (Lukas Czerner) [1301100] - [fb] vm: convert fb_mmap to vm_iomap_memory() helper (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [s390] add dummy io_remap_pfn_range() to asm-s390/pgtable.h (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [mm] vm: add vm_iomap_memory() helper function (Jacob Tanenbaum) [1035240] {CVE-2013-2596} - [sched] prevent division by zero x->cpu_power (Denys Vlasenko) [1209728] - [xen] x86: fully ignore segment override for register-only ops (Mateusz Guzik) [1200373] {CVE-2015-2151}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-408.el5.noarch.rpm">kernel-doc-2.6.18-408.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-12-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] udp: fix behavior of wrong checksums (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] ipv6/udp: Use correct var to determine non-blocking cond (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366} - [net] SNMP: Restore Udp6InErrors incrementation (Denys Vlasenko) [1240757] {CVE-2015-5364 CVE-2015-5366}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-406.el5.noarch.rpm">kernel-doc-2.6.18-406.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-05-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] pipe: fix pipe corruption and iovec overrun on partial copy (Mateusz Guzik) [1203787] {CVE-2015-1805}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-404.el5.noarch.rpm">kernel-doc-2.6.18-404.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-03-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [infiniband] core: Prevent integer overflow in ib_umem_get (Doug Ledford) [1179353] {CVE-2014-8159}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-402.el5.noarch.rpm">kernel-doc-2.6.18-402.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [block] virtio: Reset device after blk_cleanup_queue() (Stefan Hajnoczi) [1006536] - [block] virtio: Call del_gendisk() before disable guest kick (Stefan Hajnoczi) [1006536] - [block] virtio: Drop unused request tracking list (Stefan Hajnoczi) [1006536] - [fs] cifs: setfacl removes part of ACL when setting POSIX ACLs (Sachin Prabhu) [1105625] - [fs] splice: perform generic write checks (Eric Sandeen) [1155908] {CVE-2014-7822} - [fs] ext4: verify block bitmap (Lukas Czerner) [1034403] - [fs] ext4: fix type declaration of ext4_validate_block_bitmap (Lukas Czerner) [1034403] - [fs] ext4: error out if verifying the block bitmap fails (Lukas Czerner) [1034403] - [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-400.1.1.el5.noarch.rpm">kernel-doc-2.6.18-400.1.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86] traps: stop using IST for #SS (Petr Matousek) [1172809] {CVE-2014-9322}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-400.el5.noarch.rpm">kernel-doc-2.6.18-400.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2014-10-17)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] bridge: disable snooping if there is no querier (Frantisek Hrbata) [902454] - [s390] kernel: sysinfo: convert /proc/sysinfo to seqfile (Alexander Gordeev) [1131283] - [net] netlink: verify permisions of socket creator (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: store effective caps at socket() time (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Rename netlink_capable netlink_allowed (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Fix permission check in netlink_connect() (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix possible spoofing from non-root processes (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: Make NETLINK_USERSOCK work again (Jiri Benc) [1094266] {CVE-2014-0181} - [net] netlink: fix for too early rmmod (Jiri Benc) [1094266] {CVE-2014-0181}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.12.1.el5.noarch.rpm">kernel-doc-2.6.18-371.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-08-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [audit] auditsc: audit_krule mask accesses need bounds checking (Denys Vlasenko) [1102702 1102703] {CVE-2014-3917} - [mm] writeback: Fix hang when low on memory due to NFS traffic (Larry Woodman) [1125246 1080194] - [net] tg3: Fix Read DMA workaround for 5719 A0 (Ivan Vecera) [1121017 924590] - [fs] jbd: don't wake kjournald unnecessarily (Denys Vlasenko) [1116027 1081785] - [fs] jbd: don't wait (forever) for stale tid caused by wraparound (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix waiting and sending of barrier in ext4_sync_file() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: Add function jbd2_trans_will_send_data_barrier() (Denys Vlasenko) [1116027 1081785] - [fs] jbd2: fix sending of data flush on journal commit (Denys Vlasenko) [1116027 1081785] - [fs] ext4, jbd2: Add barriers for file systems with ext journals (Denys Vlasenko) [1116027 1081785] - [fs] jbd: fix fsync() tid wraparound bug (Denys Vlasenko) [1116027 1081785] - [fs] ext4: fix fdatasync() for files with only i_size changes (Eric Sandeen) [1117665 1102768]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.11.1.el5.noarch.rpm">kernel-doc-2.6.18-371.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-06-30)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [fs] dcache: fix cleanup on warning in d_splice_alias (Denys Vlasenko) [1109720 1080606] - [net] neigh: Make neigh_add_timer symmetrical to neigh_del_timer (Marcelo Ricardo Leitner) [1111195 1109888] - [net] neigh: set NUD_INCOMPLETE when probing router reachability (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: router reachability probing (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: probe routes asynchronous in rt6_probe (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ndisc: Update neigh->updated with write lock (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: remove the unnecessary statement in find_match() (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: fix route selection if CONFIG_IPV6_ROUTER_PREF unset (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Fix def route failover when CONFIG_IPV6_ROUTER_PREF=n (Marcelo Ricardo Leitner) [1106354 1090806] - [net] ipv6: Prefer reachable nexthop only if the caller requests (Marcelo Ricardo Leitner) [1106354 1090806] - [fs] ext4/jbd2: don't wait forever stale tid caused by wraparound (Eric Sandeen) [1097528 980268] - [fs] ext4: Initialize fsync transaction ids in ext4_new_inode() (Eric Sandeen) [1097528 980268] - [fs] jbd2: don't wake kjournald unnecessarily (Eric Sandeen) [1097528 980268] - [fs] jbd2: fix fsync() tid wraparound bug (Eric Sandeen) [1097528 980268] - [infiniband] rds: do not deref NULL dev in rds_iw_laddr_check() (Jacob Tanenbaum) [1093311 1093312] {CVE-2014-2678} - [fs] nfs4: Add recovery for individual stateids - partial backport. (Dave Wysochanski) [1113468 867570] - [fs] nfs4: Don't start state recovery in nfs4_close_done - clean backport. (Dave Wysochanski) [1113468 867570] - [xen] page-alloc: scrub anonymous domain heap pages upon freeing (Vitaly Kuznetsov) [1103648 1103649] {CVE-2014-4021}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.9.1.el5.noarch.rpm">kernel-doc-2.6.18-371.9.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-05-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [nfs] sunrpc: don't use a credential with extra groups (Mateusz Guzik) [1095062 976201] - [scsi] lpfc: Remove NDLP reference put in lpfc_cmpl_els_logo_acc (Rob Evers) [1096061 1075228] - [infiniband] rds: dereference of a NULL device (Jacob Tanenbaum) [1079216 1079217] {CVE-2013-7339} - [kernel] futex: check relative timeouts for overflow (Denys Vlasenko) [1091832 1084168] - [virt] kvm: correctly detect KVM when hv emulation is enalbed (Jason Wang) [1094152 985767] - [security] Fix spurious warnings in security_ops_task_setrlimit (Mateusz Guzik) [1092869 916235] - [block] floppy: don't write kernel-only members to FDRAWCMD output (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737} - [block] floppy: ignore kernel-only members in FDRAWCMD input (Denys Vlasenko) [1094302 1094303] {CVE-2014-1738 CVE-2014-1737}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.8.1.el5.noarch.rpm">kernel-doc-2.6.18-371.8.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-03-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] HID: memory corruption flaw drivers/usb/input/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [virt] HID: memory corruption flaw in drivers/hv/hid-core.c (Jacob Tanenbaum) [1032996 1032999] {CVE-2013-2888} - [scsi] lpfc: Fix task management commands having a fixed timeout (Ewan Milne) [1073123 1061120] - [net] tcp: drop SYN+FIN messages (Jiri Pirko) [1066057 1066058] {CVE-2012-6638} - [fs] GFS2: Check if glock held in gfs2_readpage (Robert S Peterson) [1073953 1063434] - [net] sunrpc: fix deadlock in task wakeup code (Jeff Layton) [1073731 998126]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.6.1.el5.noarch.rpm">kernel-doc-2.6.18-371.6.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use skb_get_queue_mapping() (Ivan Vecera) [1066302 1063955] - [ipc] change refcount to atomic_t (Phillip Lougher) [1024866 1024868] {CVE-2013-4483} - [s390] qeth: buffer overflow in snmp ioctl (Jacob Tanenbaum) [1034402 1034404] {CVE-2013-6381} - [scsi] AACRAID Driver compat IOCTL missing capability check (Jacob Tanenbaum) [1033531 1033532] {CVE-2013-6383} - [xen] x86/AMD: work around erratum 793 (Radim Krcmar) [1035834 1035836] {CVE-2013-6885} - [xen] do not expose hypercalls to rings 1 and 2 of HVM guests (Andrew Jones) [1029112 1029113] {CVE-2013-4554} - [redhat] kabi: Adding symbol print_hex_dump (Jiri Olsa) [1054055 662558] - [scsi] Add 'eh_deadline' to limit SCSI EH runtime (Ewan Milne) [1050097 956132] - [scsi] remove check for 'resetting' (Ewan Milne) [1050097 956132] - [scsi] dc395: Move 'last_reset' into internal host structure (Ewan Milne) [1050097 956132] - [scsi] tmscsim: Move 'last_reset' into host structure (Ewan Milne) [1050097 956132] - [scsi] advansys: Remove 'last_reset' references (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: return SCSI_MLQUEUE_HOST_BUSY when in reset (Ewan Milne) [1050097 956132] - [scsi] dpt_i2o: Remove DPTI_STATE_IOCTL (Ewan Milne) [1050097 956132] - [net] ipv6: fix leaking uninit port number of offender sockaddr (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] fix addr_len/msg->msg_namelen assign in recv_error funcs (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] prevent leakage of uninitialized memory to user in recv (Florian Westphal) [1035880 1035881] {CVE-2013-7264 CVE-2013-7265 CVE-2013-7281 CVE-2013-7263} - [net] be2net: prevent Tx stall on SH-R when packet size &lt; 32 (Ivan Vecera) [1051535 1007995] - [net] be2net: Trim padded packets for Lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: Pad skb to meet min Tx pkt size in lancer (Ivan Vecera) [1051535 1007995] - [net] be2net: refactor HW workarounds in be_xmit() (Ivan Vecera) [1051535 1007995] - [fs] exec/ptrace: fix get_dumpable() incorrect tests (Petr Oros) [1039483 1039484] {CVE-2013-2929}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.4.1.el5.noarch.rpm">kernel-doc-2.6.18-371.4.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2014-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: fix message handling during panics (Tony Camuso) [1049731 995293] - [net] igb: Use 32bit mask calculating the flow control watermarks (Stefan Assmann) [1041694 1036115] - [fs] NTLM auth and sign - Use appropriate server challenge (Sachin Prabhu) [1029865 1018286] - [xen] gnttab: correct locking order reversal (Radim Krcmar) [1026245 1026246] {CVE-2013-4494}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.3.1.el5.noarch.rpm">kernel-doc-2.6.18-371.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-11-11)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: don't use GRO for packets w/ re-inserted VLAN tags (Ivan Vecera) [1023348 1008691] - [net] tg3: call pci_enable_wake() to set power state (John Feeney) [1014973 996331] - [misc] backport fixes for percpu-rw-semaphore (Mikulas Patocka) [1014715 867997] - [xen] information leak via I/O instruction emulation (Igor Mammedov) [1009602 1009603] {CVE-2013-4355}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.1.2.el5.noarch.rpm">kernel-doc-2.6.18-371.1.2.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Radomir Vrbovsky (2013-10-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86: check segment descriptor read result in 64-bit OUTS emulation (Radim Krcmar) [1012958 1012959] {CVE-2013-4368} - [md] dm snapshot: fix data corruption (Mikulas Patocka) [1004734 975353] {CVE-2013-4299}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-371.el5.noarch.rpm">kernel-doc-2.6.18-371.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Phillip Lougher (2013-09-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [987539]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.18.1.el5.noarch.rpm">kernel-doc-2.6.18-348.18.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-09-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] be2net: enable polling prior enabling interrupts globally (Ivan Vecera) [1005239 987539] - [kernel] signals: stop info leak via tkill and tgkill syscalls (Oleg Nesterov) [970874 970875] {CVE-2013-2141} - [net] ipv6: do udp_push_pending_frames AF_INET sock pending data (Jiri Benc) [987647 987648] {CVE-2013-4162} - [mm] use-after-free in madvise_remove() (Jacob Tanenbaum) [849735 849736] {CVE-2012-3511} - [fs] autofs: remove autofs dentry mount check (Ian Kent) [1001488 928098]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.16.1.el5.noarch.rpm">kernel-doc-2.6.18-348.16.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [x86_64] Fix kdump failure due to 'x86_64: Early segment setup' (Paolo Bonzini) [988251 987244] - [xen] skip tracing if it was disabled instead of dying (Igor Mammedov) [987976 967053] - [ia64] fix KABI breakage on ia64 (Prarit Bhargava) [966878 960783] - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.12.1.el5.noarch.rpm">kernel-doc-2.6.18-348.12.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-07-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] afs: export a couple of core functions for AFS write support (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: drop ec_type from the ext4_ext_cache structure (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: handle NULL p_ext in ext4_ext_next_allocated_block() (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: make FIEMAP and delayed allocation play well together (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: Fix possibly very long loop in fiemap (Lukas Czerner) [960014 692071] - Revert: [fs] ext4: prevent race while walking extent tree for fiemap (Lukas Czerner) [960014 692071]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.6.1.el5.noarch.rpm">kernel-doc-2.6.18-348.6.1.el5.noarch</a> [<span style="white-space: nowrap">3.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-04-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [char] ipmi: use a tasklet for handling received messages (Tony Camuso) [953435 947732] - [char] ipmi: do run_to_completion properly in deliver_recv_msg (Tony Camuso) [953435 947732] - [fs] nfs4: fix locking around cl_state_owners list (Dave Wysochanski) [954296 948317] - [fs] nfs: Fix bugs on short read (Sachin Prabhu) [952098 924011] - [xen] AMD IOMMU: spot missing IO-APIC entries in IVRS table (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Make per-device interrupt remap table default (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: Disable IOMMU if SATA Combined mode is on (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] AMD, IOMMU: On creating entry clean up in remapping tables (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] ACPI: acpi_table_parse() should return handler's err code (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [xen] introduce xzalloc() &amp; Co (Igor Mammedov) [910912 910913] {CVE-2013-0153} - [x86] fpu: fix CONFIG_PREEMPT=y corruption of FPU stack (Prarit Bhargava) [948187 731531] - [i386] add sleazy FPU optimization (Prarit Bhargava) [948187 731531] - [x86-64] non lazy 'sleazy' fpu implementation (Prarit Bhargava) [948187 731531]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.4.1.el5.noarch.rpm">kernel-doc-2.6.18-348.4.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [virt] xen-netback: backports (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] xen-netback: netif_schedulable should take a netif (Andrew Jones) [910884 910885] {CVE-2013-0216} - [virt] pciback: rate limit error mess from pciback_enable_msi() (Igor Mammedov) [910876 910877] {CVE-2013-0231} - [net] be2net: remove BUG_ON() in be_mcc_compl_is_new() (Ivan Vecera) [923910 907524] - [net] ipv4: Update MTU to all related cache entries (Amerigo Wang) [923353 905190] - [net] annotate rt_hash_code() users (Amerigo Wang) [923353 905190] - [net] xfrm_user: fix info leak in copy_to_user_state() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_policy() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] xfrm_user: fix info leak in copy_to_user_tmpl() (Thomas Graf) [922426 922427] {CVE-2012-6537} - [net] atm: fix info leak in getsockopt(SO_ATMPVC) (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] atm: fix info leak via getsockname() (Thomas Graf) [922384 922385] {CVE-2012-6546} - [net] tun: fix ioctl() based info leaks (Thomas Graf) [922348 922349] {CVE-2012-6547} - [net] llc, zero sockaddr_llc struct (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] llc: fix info leak via getsockname() (Thomas Graf) [922327 922329] {CVE-2012-6542} - [net] xfrm_user: return error pointer instead of NULL (Thomas Graf) [919386 919387] {CVE-2013-1826} - [net] ixgbevf: allocate room for mailbox MSI-X interrupt's name (Laszlo Ersek) [924134 862862] - [fs] knfsd: allow nfsd READDIR to return 64bit cookies (Niels de Vos) [924087 918952]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.3.1.el5.noarch.rpm">kernel-doc-2.6.18-348.3.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-03-05)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [utrace] ensure arch_ptrace() can never race with SIGKILL (Oleg Nesterov) [912071 912072] {CVE-2013-0871} - [x86] msr: Add capabilities check (Nikola Pajkovsky) [908696 908697] {CVE-2013-0268}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.2.1.el5.noarch.rpm">kernel-doc-2.6.18-348.2.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [misc] tainted flags, fix buffer size (Prarit Bhargava) [905829 901547] - [net] be2net: fix unconditionally returning IRQ_HANDLED in INTx (Ivan Vecera) [884704 878316] - [net] be2net: fix INTx ISR for interrupt behaviour on BE2 (Ivan Vecera) [884704 878316] - [net] be2net: fix a possible events_get() race on BE2 (Ivan Vecera) [884704 878316] - [firmware] Expand kernel boot-time storage for DMI table structs (Lenny Szubowicz) [902683 862865] - [fs] udf: Fortify loading of sparing table (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Improve table length check to avoid possible overflow (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400} - [fs] udf: Avoid run away loop when partition table is corrupted (Nikola Pajkovsky) [843140 843141] {CVE-2012-3400}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-348.1.1.el5.noarch.rpm">kernel-doc-2.6.18-348.1.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [pci] intel-iommu: reduce max num of domains supported (Don Dutile) [886876 885125] - [fs] gfs2: Fix leak of cached directory hash table (Steven Whitehouse) [886124 831330] - [x86] mm: randomize SHLIB_BASE (Petr Matousek) [804953 804954] {CVE-2012-1568} - [net] be2net: create RSS rings even in multi-channel configs (Ivan Vecera) [884702 878209] - [net] tg3: Avoid dma read error (John Feeney) [885692 877474] - [misc] Fix unsupported hardware message (Prarit Bhargava) [885063 876587] - [net] ipv6: discard overlapping fragment (Jiri Pirko) [874837 874838] {CVE-2012-4444} - [usb] Fix serial port reference counting on hotplug remove (Don Zickus) [885700 845447] - [net] bridge: export its presence and fix bonding igmp reporting (Veaceslav Falico) [884742 843473] - [fs] nfs: move wait for server->active from put_super to kill_sb (Jeff Layton) [884708 839839] - [scsi] libfc: fix indefinite rport restart (Neil Horman) [884740 595184] - [scsi] libfc: Retry a rejected PRLI request (Neil Horman) [884740 595184] - [scsi] libfc: Fix remote port restart problem (Neil Horman) [884740 595184] - [xen] memop: limit guest specified extent order (Laszlo Ersek) [878449 878450] {CVE-2012-5515} - [xen] get bottom of EBDA from the multiboot data structure (Paolo Bonzini) [885062 881885]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.24.1.el5.noarch.rpm">kernel-doc-2.6.18-308.24.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-21)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [scsi] sg: fix races during device removal (Ewan Milne) [868950 861004]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.20.1.el5.noarch.rpm">kernel-doc-2.6.18-308.20.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-11-06)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [x86] mm: randomize SHLIB_BASE (Dave Anderson) [804953 804954] {CVE-2012-1568}</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.16.1.el5.noarch.rpm">kernel-doc-2.6.18-308.16.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-09-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Revert: [fs] nfsd4: Remove check for a 32-bit cookie in nfsd4_readdir() (Eric Sandeen) [847943 784191] - Revert: [fs] add new FMODE flags: FMODE_32bithash and FMODE_64bithash (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: rename 'int access' to 'int may_flags' in nfsd_open() (Eric Sandeen) [847943 784191] - Revert: [fs] nfsd: vfs_llseek() with 32 or 64 bit offsets (hashes) (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: add generic_file_llseek_size (Eric Sandeen) [847943 784191] - Revert: [s390/ppc64] add is_compat_task() for s390 and ppc64 (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: improve llseek error handling for large seek offsets (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: return 32/64-bit dir name hash according to usage type (Eric Sandeen) [847943 784191] - Revert: [fs] vfs: allow custom EOF in generic_file_llseek code (Eric Sandeen) [847943 784191] - Revert: [fs] ext4: use core vfs llseek code for dir seeks (Eric Sandeen) [847943 784191] - Revert: [fs] ext3: pass custom EOF to generic_file_llseek_size() (Eric Sandeen) [847943 784191]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.13.1.el5.noarch.rpm">kernel-doc-2.6.18-308.13.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-07-26)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] e1000e: Cleanup logic in e1000_check_for_serdes_link_82571 (Dean Nelson) [841370 771366] - [net] e1000e: Correct link check logic for 82571 serdes (Dean Nelson) [841370 771366] - [mm] NULL pointer dereference in __vm_enough_memory (Jerome Marchand) [840077 836244] - [fs] dlm: fix slow rsb search in dir recovery (David Teigland) [838140 753244] - [fs] autofs: propogate LOOKUP_DIRECTORY flag only for last comp (Ian Kent) [830264 814418] - [fs] ext4: properly dirty split extent nodes (Eric Sandeen) [840946 839770] - [scsi] don't offline devices with a reservation conflict (David Jeffery) [839196 835660] - [fs] ext4: Fix overflow caused by missing cast in ext4_fallocate (Lukas Czerner) [837226 830351] - [net] dl2k: Clean up rio_ioctl (Weiping Pan) [818822 818823] {CVE-2012-2313} - [x86] sched: Avoid unnecessary overflow in sched_clock (Prarit Bhargava) [835450 834562] - [net] tg3: Fix TSO handling (John Feeney) [833182 795672] - [input] evdev: use after free from open/disconnect race (David Jeffery) [832448 822166]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.11.1.el5.noarch.rpm">kernel-doc-2.6.18-308.11.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-06-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] ixgbe: remove flow director stats (Andy Gospodarek) [832169 830226] - [net] ixgbe: fix default return value for ixgbe_cache_ring_fdir (Andy Gospodarek) [832169 830226] - [net] ixgbe: reverting setup redirection table for multiple packet buffers (Andy Gospodarek) [832169 830226]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.8.2.el5.noarch.rpm">kernel-doc-2.6.18-308.8.2.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-29)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [xen] x86_64: check address on trap handlers or guest callbacks (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86_64: Do not execute sysret with a non-canonical return address (Paolo Bonzini) [813430 813431] {CVE-2012-0217} - [xen] x86: prevent hv boot on AMD CPUs with Erratum 121 (Laszlo Ersek) [824969 824970]</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/kernel-doc-2.6.18-308.8.1.el5.noarch.rpm">kernel-doc-2.6.18-308.8.1.el5.noarch</a> [<span style="white-space: nowrap">3.4 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Alexander Gordeev (2012-05-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- [net] sock: validate data_len before allocating skb in sock_alloc_send_pskb() (Jason Wang) [816290 816106] {CVE-2012-2136} - [net] tg3: Fix VLAN tagging assignments (John Feeney) [817691 797011] - [net] ixgbe: do not stop stripping VLAN tags in promiscuous mode (Andy Gospodarek) [809791 804800] - [s390] zcrypt: Fix parameter checking for ZSECSENDCPRB ioctl (Hendrik Brueckner) [810123 808489] - [x86] unwind information fix for the vsyscall DSO (Prarit Bhargava) [807930 805799]</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk.html+1:1.7.0.131-2.6.9.0.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk.htmlMon, 13 Feb 2017 12:17:34 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk<br /> <strong>Summary:</strong> OpenJDK Runtime Environment </p> <p> <strong>Description:</strong><br /> The OpenJDK runtime environment. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.131-2.6.9.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.121-2.6.8.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.121-2.6.8.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.111-2.6.7.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.111-2.6.7.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.101-2.6.6.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.101-2.6.6.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.99-2.6.5.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.99-2.6.5.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.95-2.6.4.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.95-2.6.4.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.91-2.6.2.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.91-2.6.2.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.85-2.6.1.3.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.85-2.6.1.3.el5_11.x86_64</a> [<span style="white-space: nowrap">39.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.79-2.5.5.2.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.79-2.5.5.2.el5_11.x86_64</a> [<span style="white-space: nowrap">39.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.75-2.5.4.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.75-2.5.4.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.71-2.5.3.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-1.7.0.71-2.5.3.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el5_10.x86_64.rpm">java-1.7.0-openjdk-1.7.0.65-2.5.1.2.el5_10.x86_64</a> [<span style="white-space: nowrap">39.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.55-2.4.7.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-1.7.0.55-2.4.7.1.el5_10.x86_64</a> [<span style="white-space: nowrap">39.0 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.51-2.4.4.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-1.7.0.51-2.4.4.1.el5_10.x86_64</a> [<span style="white-space: nowrap">38.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.45-2.4.3.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-1.7.0.45-2.4.3.1.el5_10.x86_64</a> [<span style="white-space: nowrap">38.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.25-2.3.10.4.el5_9.x86_64.rpm">java-1.7.0-openjdk-1.7.0.25-2.3.10.4.el5_9.x86_64</a> [<span style="white-space: nowrap">38.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-1.7.0.19-2.3.9.1.el5_9.x86_64</a> [<span style="white-space: nowrap">38.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.8.0.el5_9.x86_64.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.8.0.el5_9.x86_64</a> [<span style="white-space: nowrap">38.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.7.1.el5_9.x86_64</a> [<span style="white-space: nowrap">38.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.5.3.el5_9.x86_64.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.5.3.el5_9.x86_64</a> [<span style="white-space: nowrap">38.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-1.7.0.9-2.3.4.el5_9.1.x86_64.rpm">java-1.7.0-openjdk-1.7.0.9-2.3.4.el5_9.1.x86_64</a> [<span style="white-space: nowrap">38.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-demo.html+1:1.7.0.131-2.6.9.0.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-demo.htmlMon, 13 Feb 2017 12:17:34 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-demo<br /> <strong>Summary:</strong> OpenJDK Demos </p> <p> <strong>Description:</strong><br /> The OpenJDK demos. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.131-2.6.9.0.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.121-2.6.8.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.121-2.6.8.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.111-2.6.7.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.111-2.6.7.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.101-2.6.6.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.101-2.6.6.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.99-2.6.5.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.99-2.6.5.0.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.95-2.6.4.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.91-2.6.2.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.91-2.6.2.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.85-2.6.1.3.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.79-2.5.5.2.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.79-2.5.5.2.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.75-2.5.4.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.75-2.5.4.0.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.71-2.5.3.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.71-2.5.3.1.el5_11.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el5_10.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.65-2.5.1.2.el5_10.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.55-2.4.7.1.el5_10.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.51-2.4.4.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.51-2.4.4.1.el5_10.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.45-2.4.3.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.45-2.4.3.1.el5_10.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.25-2.3.10.4.el5_9.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.25-2.3.10.4.el5_9.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.19-2.3.9.1.el5_9.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.8.0.el5_9.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.8.0.el5_9.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.7.1.el5_9.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.5.3.el5_9.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.5.3.el5_9.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-demo-1.7.0.9-2.3.4.el5_9.1.x86_64.rpm">java-1.7.0-openjdk-demo-1.7.0.9-2.3.4.el5_9.1.x86_64</a> [<span style="white-space: nowrap">2.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-devel.html+1:1.7.0.131-2.6.9.0.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-devel.htmlMon, 13 Feb 2017 12:17:34 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-devel<br /> <strong>Summary:</strong> OpenJDK Development Environment </p> <p> <strong>Description:</strong><br /> The OpenJDK development tools. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.131-2.6.9.0.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.121-2.6.8.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.121-2.6.8.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.111-2.6.7.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.111-2.6.7.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.101-2.6.6.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.101-2.6.6.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.99-2.6.5.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.99-2.6.5.0.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.95-2.6.4.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.91-2.6.2.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.91-2.6.2.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.85-2.6.1.3.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.79-2.5.5.2.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.79-2.5.5.2.el5_11.x86_64</a> [<span style="white-space: nowrap">12.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.75-2.5.4.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.75-2.5.4.0.el5_11.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.71-2.5.3.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.71-2.5.3.1.el5_11.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el5_10.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.65-2.5.1.2.el5_10.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.55-2.4.7.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.55-2.4.7.1.el5_10.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.51-2.4.4.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.51-2.4.4.1.el5_10.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.45-2.4.3.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.45-2.4.3.1.el5_10.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.25-2.3.10.4.el5_9.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.25-2.3.10.4.el5_9.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.19-2.3.9.1.el5_9.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.8.0.el5_9.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.8.0.el5_9.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.7.1.el5_9.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.5.3.el5_9.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.5.3.el5_9.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-devel-1.7.0.9-2.3.4.el5_9.1.x86_64.rpm">java-1.7.0-openjdk-devel-1.7.0.9-2.3.4.el5_9.1.x86_64</a> [<span style="white-space: nowrap">12.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-javadoc.html+1:1.7.0.131-2.6.9.0.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-javadoc.htmlMon, 13 Feb 2017 12:17:34 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-javadoc<br /> <strong>Summary:</strong> OpenJDK API Documentation </p> <p> <strong>Description:</strong><br /> The OpenJDK API documentation. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.131-2.6.9.0.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.121-2.6.8.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.121-2.6.8.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.111-2.6.7.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.111-2.6.7.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.101-2.6.6.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.101-2.6.6.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.99-2.6.5.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.99-2.6.5.0.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.95-2.6.4.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.95-2.6.4.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.91-2.6.2.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.91-2.6.2.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.85-2.6.1.3.el5_11.x86_64</a> [<span style="white-space: nowrap">21.3 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.79-2.5.5.2.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.79-2.5.5.2.el5_11.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.75-2.5.4.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.75-2.5.4.0.el5_11.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.71-2.5.3.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.71-2.5.3.1.el5_11.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el5_10.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.65-2.5.1.2.el5_10.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.55-2.4.7.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.55-2.4.7.1.el5_10.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.51-2.4.4.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.51-2.4.4.1.el5_10.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.45-2.4.3.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.45-2.4.3.1.el5_10.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.25-2.3.10.4.el5_9.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.25-2.3.10.4.el5_9.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.19-2.3.9.1.el5_9.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.8.0.el5_9.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.8.0.el5_9.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.7.1.el5_9.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.5.3.el5_9.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.5.3.el5_9.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.4.el5_9.1.x86_64.rpm">java-1.7.0-openjdk-javadoc-1.7.0.9-2.3.4.el5_9.1.x86_64</a> [<span style="white-space: nowrap">21.2 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-src.html+1:1.7.0.131-2.6.9.0.el5_11.x86_64http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/java-1.7.0-openjdk-src.htmlMon, 13 Feb 2017 12:17:34 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> java-1.7.0-openjdk-src<br /> <strong>Summary:</strong> OpenJDK Source Bundle </p> <p> <strong>Description:</strong><br /> The OpenJDK source bundle. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.131-2.6.9.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.8 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2017-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Add blacklisted.certs to installation file list. - Resolves: rhbz#1410612</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.121-2.6.8.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.121-2.6.8.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-11-01)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- New variable, @prefix@, needs to be substituted in tapsets (rhbz1371005) - Resolves: rhbz#1381990</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.111-2.6.7.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.111-2.6.7.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-07-22)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to jdk7u111 b01 to fix TCK regressions (7081817 &amp; 8162344) - Resolves: rhbz#1350038</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.101-2.6.6.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.101-2.6.6.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2016-04-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added Patch666 fontpath.patch to fix tck regressions - Resolves: rhbz#1325424</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.99-2.6.5.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.99-2.6.5.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Explictly required libXcomposite-devel for PR2867 as nothing else pulls it in - Resolves: rhbz#1320655</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.95-2.6.4.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.95-2.6.4.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2016-01-19)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump release as previous version did build :-( - Resolves: rhbz#1295764</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.91-2.6.2.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.91-2.6.2.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2015-10-20)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied patch500 8072932or8074489.patch to fix tck failure - Resolves: rhbz#1271918</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.85-2.6.1.3.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.85-2.6.1.3.el5_11.x86_64</a> [<span style="white-space: nowrap">39.7 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-07-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Check return value of gio_init in gsettings_init and return false if necessary. - Re-enable the use of system GConf. - Only ifdef g_type_init&amp;g_free if USE_SYSTEM_GIO and USE_SYSTEM_GCONF are undefined. - Resolves: rhbz#1242587</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.79-2.5.5.2.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.79-2.5.5.2.el5_11.x86_64</a> [<span style="white-space: nowrap">39.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2015-04-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Repacked sources - Resolves: rhbz#1209069</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.75-2.5.4.0.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.75-2.5.4.0.el5_11.x86_64</a> [<span style="white-space: nowrap">39.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2015-01-08)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.4 using OpenJDK 7u75 b13. - Fix elliptic curve list as part of fsg.sh - Resolves: rhbz#1180294</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.71-2.5.3.1.el5_11.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.71-2.5.3.1.el5_11.x86_64</a> [<span style="white-space: nowrap">39.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Andrew Hughes (2014-10-03)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Bump to 2.5.3 with security updates. - Remove obsolete patches which are now included upstream. - Disable LCMS via environment variables rather than maintaining a patch. - Resolves: rhbz#1148890</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el5_10.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.65-2.5.1.2.el5_10.x86_64</a> [<span style="white-space: nowrap">39.6 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-07-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- added and applied fix for samrtcard io patch405, pr1864_smartcardIO.patch - Resolves: rhbz#1115872</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.55-2.4.7.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.55-2.4.7.1.el5_10.x86_64</a> [<span style="white-space: nowrap">39.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-04-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- regenerated sources to fix TCK failure - Resolves: rhbz#1085000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.51-2.4.4.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.51-2.4.4.1.el5_10.x86_64</a> [<span style="white-space: nowrap">39.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2014-01-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to security icedtea 2.4.4 - icedtea_version set to 2.4.4 - updatever bumped to 51 - release reset to 1 - build requires: java-devel >= 1:1.6.0 changed java7-devel - Resolves: rhbz#1050192</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.45-2.4.3.1.el5_10.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.45-2.4.3.1.el5_10.x86_64</a> [<span style="white-space: nowrap">39.5 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-10-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea 2.4.3 - Resolves: rhbz#1017623</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.25-2.3.10.4.el5_9.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.25-2.3.10.4.el5_9.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-06-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to newer IcedTea7-forest 2.3.10 with 8010118 fix - removed upstreamed patch1000 MBeanFix.patch - Resolves: rhbz#973117</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.19-2.3.9.1.el5_9.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-04-16)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset - Resolves: rhbz#950376</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.9-2.3.8.0.el5_9.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.9-2.3.8.0.el5_9.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-03-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated to icedtea7-forest-2.3 - Resolves: rhbz#917181</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.9-2.3.7.1.el5_9.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-02-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Updated main source tarball - Removed wrong relinking of cacerts (see rhbz 904165) - Resolves: rhbz#911527</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.9-2.3.5.3.el5_9.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.9-2.3.5.3.el5_9.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Omair Majid (2013-02-07)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Sync logging fixes with upstream (icedtea7-forest and jdk7u)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/java-1.7.0-openjdk-src-1.7.0.9-2.3.4.el5_9.1.x86_64.rpm">java-1.7.0-openjdk-src-1.7.0.9-2.3.4.el5_9.1.x86_64</a> [<span style="white-space: nowrap">39.9 MiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Jiri Vanek (2013-01-15)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Rewerted to IcedTea 2.3 - Rewerted patch105: java-1.7.0-openjdk-disable-system-lcms.patch - Removed jcmd and idlj to alternatives - make NOT executed with DISABLE_INTREE_EC=true and UNLIMITED_CRYPTO=true - Reapplied patch302 and deleted systemtap.patch - buildver set to 9 - icedtea_version set to 2.3.4 - Unapplied patch112 java-1.7.openjdk-doNotUseDisabledEcc.patch - removed /lib/security/US_export_policy.jar and lib/security/local_policy.jar - java-1.7.0-openjdk-java-access-bridge-security.patch's path moved from java.security-linux back to java.security - Resolves: rhbz#895031</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/bind97-devel.html+32:9.7.0-21.P2.el5_11.10.i386http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/bind97-devel.htmlMon, 16 Jan 2017 05:47:59 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> bind97-devel<br /> <strong>Summary:</strong> Header files and libraries needed for BIND DNS development </p> <p> <strong>Description:</strong><br /> The bind-devel package contains all the header files and libraries required for development with ISC BIND 9 and BIND 8 </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.10.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.10.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Menšík (2017-01-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-9147</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.10.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.10.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Menšík (2017-01-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-9147</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.9.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.9.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-8864</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.9.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.9.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-8864</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.8.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.8.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2848</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.8.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.8.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2848</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.7.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.7.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-09-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2776</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.7.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.7.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-09-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2776</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.6.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.6.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-03-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-1285 and CVE-2016-1286</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.6.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.6.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-03-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-1285 and CVE-2016-1286</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.5.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.5.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-01-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8704</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.5.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.5.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-01-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8704</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.4.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.4.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.4.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.4.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.3.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.3.i386</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-09-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5722</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.3.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.3.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-09-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5722</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.2.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.2.i386</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Florian Weimer (2015-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5477</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.2.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.2.x86_64</a> [<span style="white-space: nowrap">327 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Florian Weimer (2015-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5477</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.1.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5_11.1.x86_64</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-8500 (#1171972)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5_11.1.i386.rpm">bind97-devel-9.7.0-21.P2.el5_11.1.i386</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-8500 (#1171972)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5.i386.rpm">bind97-devel-9.7.0-21.P2.el5.i386</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-0591</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-21.P2.el5.x86_64.rpm">bind97-devel-9.7.0-21.P2.el5.x86_64</a> [<span style="white-space: nowrap">326 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-0591</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-17.P2.el5_9.2.x86_64.rpm">bind97-devel-9.7.0-17.P2.el5_9.2.x86_64</a> [<span style="white-space: nowrap">325 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2013-07-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix for CVE-2013-4854</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-17.P2.el5_9.2.i386.rpm">bind97-devel-9.7.0-17.P2.el5_9.2.i386</a> [<span style="white-space: nowrap">325 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2013-07-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix for CVE-2013-4854</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-17.P2.el5_9.1.i386.rpm">bind97-devel-9.7.0-17.P2.el5_9.1.i386</a> [<span style="white-space: nowrap">325 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2013-03-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2013-2266</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-17.P2.el5_9.1.x86_64.rpm">bind97-devel-9.7.0-17.P2.el5_9.1.x86_64</a> [<span style="white-space: nowrap">325 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2013-03-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2013-2266</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.4.i386.rpm">bind97-devel-9.7.0-10.P2.el5_8.4.i386</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-10-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-5166</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.4.x86_64.rpm">bind97-devel-9.7.0-10.P2.el5_8.4.x86_64</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-10-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-5166</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.3.x86_64.rpm">bind97-devel-9.7.0-10.P2.el5_8.3.x86_64</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-09-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-4244</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.3.i386.rpm">bind97-devel-9.7.0-10.P2.el5_8.3.i386</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-09-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-4244</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.2.i386.rpm">bind97-devel-9.7.0-10.P2.el5_8.2.i386</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-07-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-3817</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.2.x86_64.rpm">bind97-devel-9.7.0-10.P2.el5_8.2.x86_64</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-07-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-3817</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.1.x86_64.rpm">bind97-devel-9.7.0-10.P2.el5_8.1.x86_64</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-1667 and CVE-2012-1033</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-devel-9.7.0-10.P2.el5_8.1.i386.rpm">bind97-devel-9.7.0-10.P2.el5_8.1.i386</a> [<span style="white-space: nowrap">324 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-1667 and CVE-2012-1033</pre> </td> </tr> </table> </div>http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/bind97-libs.html+32:9.7.0-21.P2.el5_11.10.i386http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/repoview/bind97-libs.htmlMon, 16 Jan 2017 05:47:59 +0000<?xml version="1.0" encoding="utf-8"?> <div> <p> <strong>Package:</strong> bind97-libs<br /> <strong>Summary:</strong> Libraries used by the BIND DNS packages </p> <p> <strong>Description:</strong><br /> Contains libraries used by both the bind server package as well as the utils packages. </p> <h3>Changes:</h3> <table cellpadding="0" cellspacing="5" border="0"> <tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.10.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.10.i386</a> [<span style="white-space: nowrap">890 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Menšík (2017-01-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-9147</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.10.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.10.x86_64</a> [<span style="white-space: nowrap">904 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Petr Menšík (2017-01-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-9147</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.9.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.9.x86_64</a> [<span style="white-space: nowrap">904 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-8864</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.9.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.9.i386</a> [<span style="white-space: nowrap">890 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-31)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-8864</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.8.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.8.x86_64</a> [<span style="white-space: nowrap">904 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2848</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.8.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.8.i386</a> [<span style="white-space: nowrap">889 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-10-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2848</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.7.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.7.i386</a> [<span style="white-space: nowrap">889 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-09-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2776</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.7.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.7.x86_64</a> [<span style="white-space: nowrap">904 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-09-23)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-2776</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.6.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.6.x86_64</a> [<span style="white-space: nowrap">903 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-03-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-1285 and CVE-2016-1286</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.6.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.6.i386</a> [<span style="white-space: nowrap">889 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-03-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2016-1285 and CVE-2016-1286</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.5.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.5.i386</a> [<span style="white-space: nowrap">888 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-01-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8704</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.5.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.5.x86_64</a> [<span style="white-space: nowrap">903 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2016-01-18)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8704</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.4.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.4.x86_64</a> [<span style="white-space: nowrap">903 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.4.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.4.i386</a> [<span style="white-space: nowrap">888 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-12-14)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-8000</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.3.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.3.i386</a> [<span style="white-space: nowrap">888 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-09-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5722</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.3.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.3.x86_64</a> [<span style="white-space: nowrap">903 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2015-09-02)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5722</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.2.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.2.i386</a> [<span style="white-space: nowrap">887 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Florian Weimer (2015-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5477</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.2.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.2.x86_64</a> [<span style="white-space: nowrap">902 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Florian Weimer (2015-07-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2015-5477</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.1.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5_11.1.x86_64</a> [<span style="white-space: nowrap">902 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-8500 (#1171972)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5_11.1.i386.rpm">bind97-libs-9.7.0-21.P2.el5_11.1.i386</a> [<span style="white-space: nowrap">887 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-12-09)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-8500 (#1171972)</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5.i386.rpm">bind97-libs-9.7.0-21.P2.el5.i386</a> [<span style="white-space: nowrap">885 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-0591</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-21.P2.el5.x86_64.rpm">bind97-libs-9.7.0-21.P2.el5.x86_64</a> [<span style="white-space: nowrap">900 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2014-03-24)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- Fix CVE-2014-0591</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-17.P2.el5_9.2.x86_64.rpm">bind97-libs-9.7.0-17.P2.el5_9.2.x86_64</a> [<span style="white-space: nowrap">900 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2013-07-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix for CVE-2013-4854</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-17.P2.el5_9.2.i386.rpm">bind97-libs-9.7.0-17.P2.el5_9.2.i386</a> [<span style="white-space: nowrap">885 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Tomas Hozza (2013-07-28)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix for CVE-2013-4854</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-17.P2.el5_9.1.i386.rpm">bind97-libs-9.7.0-17.P2.el5_9.1.i386</a> [<span style="white-space: nowrap">885 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2013-03-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2013-2266</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-17.P2.el5_9.1.x86_64.rpm">bind97-libs-9.7.0-17.P2.el5_9.1.x86_64</a> [<span style="white-space: nowrap">900 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2013-03-27)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2013-2266</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.4.i386.rpm">bind97-libs-9.7.0-10.P2.el5_8.4.i386</a> [<span style="white-space: nowrap">884 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-10-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-5166</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.4.x86_64.rpm">bind97-libs-9.7.0-10.P2.el5_8.4.x86_64</a> [<span style="white-space: nowrap">899 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-10-10)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-5166</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.3.x86_64.rpm">bind97-libs-9.7.0-10.P2.el5_8.3.x86_64</a> [<span style="white-space: nowrap">899 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-09-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-4244</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.3.i386.rpm">bind97-libs-9.7.0-10.P2.el5_8.3.i386</a> [<span style="white-space: nowrap">884 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-09-13)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-4244</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.2.i386.rpm">bind97-libs-9.7.0-10.P2.el5_8.2.i386</a> [<span style="white-space: nowrap">883 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-07-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-3817</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.2.x86_64.rpm">bind97-libs-9.7.0-10.P2.el5_8.2.x86_64</a> [<span style="white-space: nowrap">899 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-07-25)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-3817</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.1.x86_64.rpm">bind97-libs-9.7.0-10.P2.el5_8.1.x86_64</a> [<span style="white-space: nowrap">899 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-1667 and CVE-2012-1033</pre> </td> </tr><tr> <td valign="top"><a href="http://linux1.fnal.gov/linux/fermi//slf58/x86_64/sites/Fermi/updates/security/bind97-libs-9.7.0-10.P2.el5_8.1.i386.rpm">bind97-libs-9.7.0-10.P2.el5_8.1.i386</a> [<span style="white-space: nowrap">883 KiB</span>]</td> <td valign="top"> <strong>Changelog</strong> by <span>Adam Tkac (2012-06-04)</span>: <pre style="margin: 0pt 0pt 5pt 5pt">- fix CVE-2012-1667 and CVE-2012-1033</pre> </td> </tr> </table> </div>