[El-errata] ELSA-2013-0122 Moderate: Oracle Linux 5 tcl security and bug fix update

Errata Announcements for Oracle Linux el-errata at oss.oracle.com
Sat Jan 12 08:23:28 PST 2013


Oracle Linux Security Advisory ELSA-2013-0122

https://rhn.redhat.com/errata/RHSA-2013-0122.html

The following updated rpms for Oracle Linux 5 have been uploaded to the 
Unbreakable Linux Network:

i386:
tcl-8.4.13-6.el5.i386.rpm
tcl-devel-8.4.13-6.el5.i386.rpm
tcl-html-8.4.13-6.el5.i386.rpm

x86_64:
tcl-8.4.13-6.el5.i386.rpm
tcl-8.4.13-6.el5.x86_64.rpm
tcl-devel-8.4.13-6.el5.i386.rpm
tcl-devel-8.4.13-6.el5.x86_64.rpm
tcl-html-8.4.13-6.el5.x86_64.rpm

ia64:
tcl-8.4.13-6.el5.ia64.rpm
tcl-devel-8.4.13-6.el5.ia64.rpm
tcl-html-8.4.13-6.el5.ia64.rpm


SRPMS:
http://oss.oracle.com/ol5/SRPMS-updates/tcl-8.4.13-6.el5.src.rpm



Description of changes:

[8.4.13-6]
- Fixed infinite loop in regex NFA optimization code
   Resolves: CVE-2007-4772
- Fixed O(N^2) compile time (and huge memory requirements) for some regexps
   Resolves: CVE-2007-6067

[8.4.13-5]
- Threaded / nonthreaded versions of tcl are now switchable through 
alternatives
   Resolves: rhbz#478961





More information about the El-errata mailing list