Scientific Linux Errata 44 x86_64

Update: pidgin-perl-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: pidgin-perl-2.6.5-1.el4.1
Summary: Perl scripting support for Pidgin

Description:
Perl plugin loader for Pidgin. This package will allow you to write or use Pidgin plugins written in the Perl programming language.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: pidgin-devel-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: pidgin-devel-2.6.5-1.el4.1
Summary: Development headers and libraries for pidgin

Description:
The pidgin-devel package contains the header files, developer documentation, and libraries required for development of Pidgin scripts and plugins.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: pidgin-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: pidgin-2.6.5-1.el4.1
Summary: A Gtk+ based multiprotocol instant messaging client

Description:
Pidgin allows you to talk to anyone using a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr. These protocols are implemented using a modular, easy to use design. To use a protocol, just add an account using the account editor. Pidgin supports many common features of other clients, as well as many unique features, such as perl scripting, TCL scripting and C plugins. Pidgin is not affiliated with or endorsed by America Online, Inc., Microsoft Corporation, Yahoo! Inc., or ICQ Inc.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: libpurple-tcl-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: libpurple-tcl-2.6.5-1.el4.1
Summary: Tcl scripting support for libpurple

Description:
Tcl plugin loader for libpurple. This package will allow you to write or use libpurple plugins written in the Tcl programming language.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: libpurple-perl-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: libpurple-perl-2.6.5-1.el4.1
Summary: Perl scripting support for libpurple

Description:
Perl plugin loader for libpurple. This package will allow you to write or use libpurple plugins written in the Perl programming language.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: libpurple-devel-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: libpurple-devel-2.6.5-1.el4.1
Summary: Development headers, documentation, and libraries for libpurple

Description:
The libpurple-devel package contains the header files, developer documentation, and libraries required for development of libpurple based instant messaging clients or plugins for any libpurple based client.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: libpurple-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: libpurple-2.6.5-1.el4.1
Summary: libpurple library for IM clients like Pidgin and Finch

Description:
libpurple contains the core IM support for IM clients such as Pidgin and Finch. libpurple supports a variety of messaging protocols including AIM, MSN, Yahoo!, Jabber, Bonjour, Gadu-Gadu, ICQ, IRC, Novell Groupwise, QQ, Lotus Sametime, SILC, Simple and Zephyr.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: finch-devel-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: finch-devel-2.6.5-1.el4.1
Summary: Headers etc. for finch stuffs

Description:
The finch-devel package contains the header files, developer documentation, and libraries required for development of Finch scripts and plugins.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: finch-2.6.5-1.el4.1

Thu, 14 Jan 2010 12:56:16 +0000

Package: finch-2.6.5-1.el4.1
Summary: A text-based user interface for Pidgin

Description:
A text-based user interface for using libpurple. This can be run from a standard text console or from a terminal within X Windows. It uses ncurses and our homegrown gnt library for drawing windows and text.

ChangeLog:

* Fri Jan 8 18:00:00 2010 Warren Togami <wtogami{%}redhat{*}com> - 2.6.5-1.el4.1

- 2.6.5
- CVE-2010-0013
- Other bug fixes
- build with old gcc

* Tue Dec 8 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> - 2.6.4-4

- temporarily disable evolution integration in F13 until it is fixed

* Wed Dec 2 18:00:00 2009 Warren Togami <wtogami{%}redhat{*}com> 2.6.4-2

- disable SILC in EL6 builds

(More info)

Update: php-xmlrpc-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-xmlrpc-4.3.9-3.29
Summary: A module for PHP applications which use the XML-RPC protocol

Description:
The php-xmlrpc package contains a dynamic shared object that will add support for the XML-RPC protocol to PHP.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-snmp-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-snmp-4.3.9-3.29
Summary: A module for PHP applications that query SNMP-managed devices.

Description:
The php-snmp package contains a dynamic shared object that will add support for querying SNMP devices to PHP. PHP is an HTML-embeddable scripting language. If you need SNMP support for PHP applications, you will need to install this package and the php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-pgsql-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-pgsql-4.3.9-3.29
Summary: A PostgreSQL database module for PHP.

Description:
The php-pgsql package includes a dynamic shared object (DSO) that can be compiled in to the Apache Web server to add PostgreSQL database support to PHP. PostgreSQL is an object-relational database management system that supports almost all SQL constructs. PHP is an HTML-embedded scripting language. If you need back-end support for PostgreSQL, you should install this package in addition to the main php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-pear-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-pear-4.3.9-3.29
Summary: PHP Extension and Application Repository Components

Description:
PEAR is a framework and distribution system for reusable PHP components. This package contains a set of PHP components from the PEAR repository.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-odbc-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-odbc-4.3.9-3.29
Summary: A module for PHP applications that use ODBC databases.

Description:
The php-odbc package contains a dynamic shared object that will add database support through ODBC to PHP. ODBC is an open specification which provides a consistent API for developers to use for accessing data sources (which are often, but not always, databases). PHP is an HTML-embeddable scripting language. If you need ODBC support for PHP applications, you will need to install this package and the php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-ncurses-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-ncurses-4.3.9-3.29
Summary: A module for PHP applications for using ncurses interfaces

Description:
The php-ncurses package contains a dynamic shared object that will add support for using the ncurses terminal output interfaces.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-mysql-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-mysql-4.3.9-3.29
Summary: A module for PHP applications that use MySQL databases.

Description:
The php-mysql package contains a dynamic shared object that will add MySQL database support to PHP. MySQL is an object-relational database management system. PHP is an HTML-embeddable scripting language. If you need MySQL support for PHP applications, you will need to install this package and the php or mod_php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-mbstring-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-mbstring-4.3.9-3.29
Summary: A module for PHP applications which need multi-byte string handling

Description:
The php-mbstring package contains a dynamic shared object that will add support for multi-byte string handling to PHP.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-ldap-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-ldap-4.3.9-3.29
Summary: A module for PHP applications that use LDAP.

Description:
The php-ldap package is a dynamic shared object (DSO) for the Apache Web server that adds Lightweight Directory Access Protocol (LDAP) support to PHP. LDAP is a set of protocols for accessing directory services over the Internet. PHP is an HTML-embedded scripting language. If you need LDAP support for PHP applications, you will need to install this package in addition to the php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-imap-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-imap-4.3.9-3.29
Summary: An Apache module for PHP applications that use IMAP.

Description:
The php-imap package contains a dynamic shared object (DSO) for the Apache Web server. When compiled into Apache, the php-imap module will add IMAP (Internet Message Access Protocol) support to PHP. IMAP is a protocol for retrieving and uploading e-mail messages on mail servers. PHP is an HTML-embedded scripting language. If you need IMAP support for PHP applications, you will need to install this package and the php package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-gd-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-gd-4.3.9-3.29
Summary: A module for PHP applications for using the gd graphics library

Description:
The php-gd package contains a dynamic shared object that will add support for using the gd graphics library to PHP.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-domxml-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-domxml-4.3.9-3.29
Summary: A module for PHP applications which manipulate XML data

Description:
The php-domxml package contains a dynamic shared object that will add support for manipulating XML data as a DOM tree to PHP.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-devel-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-devel-4.3.9-3.29
Summary: Files needed for building PHP extensions.

Description:
The php-devel package contains the files needed for building PHP extensions. If you need to compile your own PHP extensions, you will need to install this package.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: php-4.3.9-3.29

Wed, 13 Jan 2010 17:05:32 +0000

Package: php-4.3.9-3.29
Summary: The PHP HTML-embedded scripting language. (PHP: Hypertext Preprocessor)

Description:
PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated webpages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is fairly simple. The most common use of PHP coding is probably as a replacement for CGI scripts. The mod_php module enables the Apache Web server to understand and process the embedded PHP language in Web pages.

ChangeLog:

* Mon Jan 4 18:00:00 2010 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.29

- add security fix for CVE-2009-4142 (#541595)

* Tue Dec 1 18:00:00 2009 Joe Orton <jorton{%}redhat{*}com> - 4.3.9-3.28

- add security fixes for CVE-2009-2687, CVE-2009-3291, CVE-2009-3292,
  CVE-2009-3546, CVE-2009-4017 (#541595)

* Wed Apr 1 19:00:00 2009 Joe Orton <jorton{%}redhat{*}com> 4.3.9-3.26

- add security fixes for CVE-2008-3658, CVE-2008-3660,
  CVE-2008-5498, CVE-2008-5557, CVE-2009-0754 (#487361)
- split out gd overflow2() and make global with sane symbol name

(More info)

Update: krb5-libs-1.3.4-62.el4_8.1

Wed, 13 Jan 2010 14:52:06 +0000

Package: krb5-libs-1.3.4-62.el4_8.1
Summary: The shared libraries used by Kerberos 5.

Description:
Kerberos is a network authentication system. The krb5-libs package contains the shared libraries needed by Kerberos 5. If you are using Kerberos, you need to install this package.

ChangeLog:

* Thu Dec 10 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8.1

- add candidate patch to correct KDC integer overflows which could be
  triggered by malformed RC4 and AES ciphertexts (CVE-2009-4212, #546345)

* Thu Mar 26 19:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8

- add fix for attempt to free uninitialized pointer in the ASN.1 decoder
  (#491836, CVE-2009-0846)
- add fix for bug in length validation in the ASN.1 decoder (CVE-2009-0847)

* Thu Jan 22 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-61.el4_8

- tweak PAM patch to indicate that we're changing an expired password, so
  being root doesn't automatically mean it should be allowed if it's not
  a good password (#479082)
- tweak PAM patch to indicate that login is running with a terminal
  device, so an expired password can trigger a password change, rather
  than requiring a failure (#479083)
- add second PAM patch to also set the PAM_RHOST item (James Leddy, #457844)
- add patch to also report an error in rcp if close() returns an error,
  which could indicate an out-of-space error on an NFS filesystem (Tomas
  Smetana, #461900)

(More info)

Update: krb5-workstation-1.3.4-62.el4_8.1

Wed, 13 Jan 2010 08:54:21 +0000

Package: krb5-workstation-1.3.4-62.el4_8.1
Summary: Kerberos 5 programs for use on workstations.

Description:
Kerberos is a network authentication system. The krb5-workstation package contains the basic Kerberos programs (kinit, klist, kdestroy, kpasswd) as well as kerberized versions of Telnet and FTP. If your network uses Kerberos, this package should be installed on every workstation.

ChangeLog:

* Thu Dec 10 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8.1

- add candidate patch to correct KDC integer overflows which could be
  triggered by malformed RC4 and AES ciphertexts (CVE-2009-4212, #546345)

* Thu Mar 26 19:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8

- add fix for attempt to free uninitialized pointer in the ASN.1 decoder
  (#491836, CVE-2009-0846)
- add fix for bug in length validation in the ASN.1 decoder (CVE-2009-0847)

* Thu Jan 22 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-61.el4_8

- tweak PAM patch to indicate that we're changing an expired password, so
  being root doesn't automatically mean it should be allowed if it's not
  a good password (#479082)
- tweak PAM patch to indicate that login is running with a terminal
  device, so an expired password can trigger a password change, rather
  than requiring a failure (#479083)
- add second PAM patch to also set the PAM_RHOST item (James Leddy, #457844)
- add patch to also report an error in rcp if close() returns an error,
  which could indicate an out-of-space error on an NFS filesystem (Tomas
  Smetana, #461900)

(More info)

Update: krb5-server-1.3.4-62.el4_8.1

Wed, 13 Jan 2010 08:54:21 +0000

Package: krb5-server-1.3.4-62.el4_8.1
Summary: The server programs for Kerberos 5.

Description:
Kerberos is a network authentication system. The krb5-server package contains the programs that must be installed on a Kerberos 5 server. If you are installing a Kerberos 5 server, you need to install this package (in other words, most people should NOT install this package).

ChangeLog:

* Thu Dec 10 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8.1

- add candidate patch to correct KDC integer overflows which could be
  triggered by malformed RC4 and AES ciphertexts (CVE-2009-4212, #546345)

* Thu Mar 26 19:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8

- add fix for attempt to free uninitialized pointer in the ASN.1 decoder
  (#491836, CVE-2009-0846)
- add fix for bug in length validation in the ASN.1 decoder (CVE-2009-0847)

* Thu Jan 22 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-61.el4_8

- tweak PAM patch to indicate that we're changing an expired password, so
  being root doesn't automatically mean it should be allowed if it's not
  a good password (#479082)
- tweak PAM patch to indicate that login is running with a terminal
  device, so an expired password can trigger a password change, rather
  than requiring a failure (#479083)
- add second PAM patch to also set the PAM_RHOST item (James Leddy, #457844)
- add patch to also report an error in rcp if close() returns an error,
  which could indicate an out-of-space error on an NFS filesystem (Tomas
  Smetana, #461900)

(More info)

Update: krb5-devel-1.3.4-62.el4_8.1

Wed, 13 Jan 2010 08:54:21 +0000

Package: krb5-devel-1.3.4-62.el4_8.1
Summary: Development files needed to compile Kerberos 5 programs.

Description:
Kerberos is a network authentication system. The krb5-devel package contains the header files and libraries needed for compiling Kerberos 5 programs. If you want to develop Kerberos-aware programs, you need to install this package.

ChangeLog:

* Thu Dec 10 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8.1

- add candidate patch to correct KDC integer overflows which could be
  triggered by malformed RC4 and AES ciphertexts (CVE-2009-4212, #546345)

* Thu Mar 26 19:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-62.el4_8

- add fix for attempt to free uninitialized pointer in the ASN.1 decoder
  (#491836, CVE-2009-0846)
- add fix for bug in length validation in the ASN.1 decoder (CVE-2009-0847)

* Thu Jan 22 18:00:00 2009 Nalin Dahyabhai <nalin{%}redhat{*}com> 1.3.4-61.el4_8

- tweak PAM patch to indicate that we're changing an expired password, so
  being root doesn't automatically mean it should be allowed if it's not
  a good password (#479082)
- tweak PAM patch to indicate that login is running with a terminal
  device, so an expired password can trigger a password change, rather
  than requiring a failure (#479083)
- add second PAM patch to also set the PAM_RHOST item (James Leddy, #457844)
- add patch to also report an error in rcp if close() returns an error,
  which could indicate an out-of-space error on an NFS filesystem (Tomas
  Smetana, #461900)

(More info)

Update: kernel-module-openafs-2.6.9-89.0.19.ELxenU-1.4.7-68.2.SL4

Fri, 08 Jan 2010 11:52:05 +0000

Package: kernel-module-openafs-2.6.9-89.0.19.ELxenU-1.4.7-68.2.SL4
Summary: OpenAFS Kernel Module for Kernel 2.6.9-89.0.19.ELxenU

Description:
The AFS distributed filesystem. AFS is a distributed filesystem allowing cross-platform sharing of files among multiple computers. Facilities are provided for access control, authentication, backup and administrative management. This package provides an openafs kernel module for kernel 2.6.9-89.0.19.ELxenU and architecture x86_64.

ChangeLog:

* Tue Apr 7 19:00:00 2009 Stephan Wiesand <stephan wiesand desy de> 1.4.7-68.2.SLx

- added patches 1062, 1063 to address security advisories 2009-0012

* Sun Mar 8 19:00:00 2009 Stephan Wiesand <stephan wiesand desy de> 1.4.7-68.1.SLx

- updated CellServDB from grand.central.org; remove wallace from RAL entry

* Sun Jun 1 19:00:00 2008 Stephan Wiesand <stephan{*}wiesand{%}desy{*}de> 1.4.7-68.SLx

- replace 1056 by 1057: linux-hlist-unhashed-opencoding-20080520
- more post-1.4.7 patches (either trivial, or serious and simple):
  1058: butc-xbsa-lwp-protoize-damage-20080501
  1059: uuid-corrected-duplicate-check-20080501
  1060: viced-large-more-threads-20080506
  1061: vos-sync-flag-voltype-properly-20080521

(More info)

Update: kernel-module-squashfs-2.6.9-89.0.19.ELxenU-3.1.2-3

Fri, 08 Jan 2010 11:48:21 +0000

Package: kernel-module-squashfs-2.6.9-89.0.19.ELxenU-3.1.2-3
Summary: kernel modules for squashfs.

Description:
Kernel modules for squashfs.

ChangeLog:

* Wed Jul 15 19:00:00 2009 Troy Dawson <dawson{%}fnal{*}gov> 3.1.2-3

- Changed spec file to work with my scripts

* Fri Jun 26 19:00:00 2009 Urs Beyerle <urs{*}beyerle{%}env{*}ethz{*}ch> 3.1.r2-2

- build requires zlib-devel

* Sun Oct 15 19:00:00 2006 Urs Beyerle <urs{*}beyerle{%}psi{*}ch> 3.1.r2-1.sl4

- #include <linux/squash...> -> #include "squash..."
- #define CONFIG_SQUASHFS_FRAGMENT_CACHE_SIZE 3 (the default)
- no patching of do_mounts, so no initrd support
- build for RHEL kernel 2.6.9

(More info)

Update: kernel-module-r1000-2.6.9-89.0.19.ELxenU-2.2-2.SL4x

Fri, 08 Jan 2010 11:48:15 +0000

Package: kernel-module-r1000-2.6.9-89.0.19.ELxenU-2.2-2.SL4x
Summary: Driver for some RealTek Ethernet controllers

Description:
This Package contains the kernel modules required for some RealTek Ethernet controllers. This package is built for kernel 2.6.9-89.0.19.ELxenU (x86_64).

ChangeLog:

* Tue Oct 3 19:00:00 2006 Troy Dawson <dawson{%}fnal{*}gov> - 2.2-2.SL4x

- Changed post install scripts

* Mon Feb 13 18:00:00 2006 Troy Dawson <dawson{%}fnal{*}gov> - 2.2-1.SL4x

- Built the spec file for 2.2

(More info)