[El-errata] ELSA-2017-0794 Moderate: Oracle Linux 6 quagga security and bug fix update
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Tue Mar 28 10:06:47 PDT 2017
Oracle Linux Security Advisory ELSA-2017-0794
http://linux.oracle.com/errata/ELSA-2017-0794.html
The following updated rpms for Oracle Linux 6 have been uploaded to the
Unbreakable Linux Network:
i386:
quagga-0.99.15-14.el6.i686.rpm
quagga-contrib-0.99.15-14.el6.i686.rpm
quagga-devel-0.99.15-14.el6.i686.rpm
x86_64:
quagga-0.99.15-14.el6.x86_64.rpm
quagga-contrib-0.99.15-14.el6.x86_64.rpm
quagga-devel-0.99.15-14.el6.i686.rpm
quagga-devel-0.99.15-14.el6.x86_64.rpm
SRPMS:
http://oss.oracle.com/ol6/SRPMS-updates/quagga-0.99.15-14.el6.src.rpm
Description of changes:
[0.99.15-14]
- Resolves: #1416013 - CVE-2017-5495 quagga: Telnet interface input
buffer allocates unbounded amounts of memory
[0.99.15-13]
- fix path of ripd pid file (#842308)
[0.99.15-12]
- fix start() function in watchqugga initscript (#862826, #1208617)
[0.99.15-11]
- fix for CVE-2013-2236 (#1391918)
- fix for CVE-2016-1245 (#1391914)
- fix for CVE-2016-2342 (#1391916)
- fix for CVE-2016-4049 (#1391919)
[0.99.15-11]
- ospf6d: Fix crash when '[no] ipv6 ospf6 advertise prefix-list' is in
startup-config (#770731)
[0.99.15-10]
- add watchquagga initscript (#862826, #1208617)
- remove pidfile when service is stopped (#842308)
- use QCONFDIR correctly in initscripts (#839620)
- include watchquagga and ospfclient manpages (#674862)
[0.99.15-9]
- improve fix for CVE-2011-3325
[0.99.15-8]
- fix CVE-2011-3323
- fix CVE-2011-3324
- fix CVE-2011-3325
- fix CVE-2011-3326
- fix CVE-2011-3327
- fix CVE-2012-0255
- fix CVE-2012-0249 and CVE-2012-0250
- fix CVE-2012-1820
More information about the El-errata
mailing list