[El-errata] ELSA-2011-0486 Moderate: Oracle Linux 4 xmlsec1 security and bug fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed May 4 21:56:48 PDT 2011
Oracle Linux Security Advisory ELSA-2011-0486
https://rhn.redhat.com/errata/RHSA-2011-0486.html
The following updated rpms for Oracle Linux 4 have been uploaded to the
Unbreakable Linux Network:
i386:
xmlsec1-1.2.6-3.2.i386.rpm
xmlsec1-devel-1.2.6-3.2.i386.rpm
xmlsec1-openssl-1.2.6-3.2.i386.rpm
xmlsec1-openssl-devel-1.2.6-3.2.i386.rpm
x86_64:
xmlsec1-1.2.6-3.2.i386.rpm
xmlsec1-1.2.6-3.2.x86_64.rpm
xmlsec1-devel-1.2.6-3.2.x86_64.rpm
xmlsec1-openssl-1.2.6-3.2.i386.rpm
xmlsec1-openssl-1.2.6-3.2.x86_64.rpm
xmlsec1-openssl-devel-1.2.6-3.2.x86_64.rpm
ia64:
xmlsec1-1.2.6-3.2.i386.rpm
xmlsec1-1.2.6-3.2.ia64.rpm
xmlsec1-devel-1.2.6-3.2.ia64.rpm
xmlsec1-openssl-1.2.6-3.2.i386.rpm
xmlsec1-openssl-1.2.6-3.2.ia64.rpm
xmlsec1-openssl-devel-1.2.6-3.2.ia64.rpm
SRPMS:
http://oss.oracle.com/el4/SRPMS-updates/xmlsec1-1.2.6-3.2.src.rpm
Description of changes:
[1.2.6-3.2]
- disable xslt i/o support in library, tools and examples, CVE-2011-1425
- Resolves: rhbz#694122
- limit the paths used for searching the security library loaded dynamically
- Resolves: rhbz#558480
More information about the El-errata
mailing list