An updated squid package has been released for Red Hat Enterprise Linux
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated squid package fixes security vulnerability
Advisory ID: RHSA-2004:133-01
Issue date: 2004-04-14
Updated on: 2004-04-14
Product: Red Hat Enterprise Linux
Keywords: Phishing Spoofing
Cross references:
Obsoletes:
CVE Names: CAN-2004-0189
----------------------------------------------------------------------
1. Topic:
An updated squid package is avaliable that fixes a security vulnerability in URL decoding and provides a new ACL type for protecting vulnerable clients.
A federal judge denies SCO's motion to throw out a suit brought by the Linux seller but put the case on hold, awaiting an outcome in a related case.
Read more
Red Hat is turning off its Red Hat Linux 9 support April 30, but on May 1, Progeny will be turning on its support for the distribution.
Read more
BOSTON - Red Hat Chief Executive Officer (CEO) Matthew Szulik had the air of a motivational speaker Monday evening, citing his company's improving finances and growing user base as evidence of a sea change in the IT industry and promising more Red Hat jobs for beleaguered Massachusetts workers.
Read more
Red Hat has released updated Ethereal packages for Red Hat Enterprise Linux
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated Ethereal packages fix security issues
Advisory ID: RHSA-2004:136-01
Issue date: 2004-03-30
Updated on: 2004-03-30
Product: Red Hat Enterprise Linux
Keywords:
Cross references:
Obsoletes: RHSA-2004:002
CVE Names: CAN-2004-0176 CAN-2004-0365 CAN-2004-0367
----------------------------------------------------------------------
1. Topic:
Updated Ethereal packages that fix various security vulnerabilities are now available.
Updated Mozilla packages are available for Red Hat Enterprise Linux
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated Mozilla packages fix security issues
Advisory ID: RHSA-2004:110-01
Issue date: 2004-03-29
Updated on: 2004-03-29
Product: Red Hat Enterprise Linux
Keywords: nss mozilla
Cross references:
Obsoletes:
CVE Names: CAN-2003-0564 CAN-2003-0594 CAN-2004-0191
----------------------------------------------------------------------
1. Topic:
Updated Mozilla packages that fix vulnerabilities in S/MIME parsing as well as other issues and bugs are now available.
The top Linux seller reports a net income of $5 million and revenue that grew 43 percent for its most recent quarter.
Read more
IBM and Red Hat have expanded their partnership to make it possible for customers to order Red Hat Enterprise Linux and accompanying support options directly with purchases of Big Blue servers that use its Power processor.
Read more
Updated httpd packages for Red Hat Enterprise Linux 3 are available
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated httpd packages fix mod_ssl security issue
Advisory ID: RHSA-2004:084-01
Issue date: 2004-03-23
Updated on: 2004-03-23
Product: Red Hat Enterprise Linux
Keywords: Apache httpd DoS SSL
Cross references:
Obsoletes:
CVE Names: CAN-2004-0113
----------------------------------------------------------------------
1. Topic:
Updated httpd packages are now available that fix a denial of service vulnerability in mod_ssl and include various other bug fixes.
Red Hat has released updated OpenSSL packages for Red Hat Enterprise Linux 3
----------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated OpenSSL packages fix vulnerabilities
Advisory ID: RHSA-2004:120-01
Issue date: 2004-03-17
Updated on: 2004-03-17
Product: Red Hat Enterprise Linux
Keywords: DoS
Cross references:
Obsoletes: RHBA-2003:295
CVE Names: CAN-2004-0079 CAN-2004-0081 CAN-2004-0112
----------------------------------------------------------------------
1. Topic:
Updated OpenSSL packages that fix several remote denial of service vulnerabilities are available for Red Hat Enterprise Linux 3.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS version 3 - i386, i686, ia64, ppc, ppc64, s390, s390x, x86_64
Red Hat Enterprise Linux ES version 3 - i386, i686
Red Hat Enterprise Linux WS version 3 - i386, i686, ia64, x86_64
Updated OpenSSL packages for Red Hat Enterprise Linux 2.1 are available:
---------------------------------------------------------------------
Red Hat Security Advisory
Synopsis: Updated OpenSSL packages fix vulnerabilities
Advisory ID: RHSA-2004:119-01
Issue date: 2004-03-17
Updated on: 2004-03-17
Product: Red Hat Enterprise Linux
Keywords: DoS
Cross references:
Obsoletes: RHSA-2003:293
CVE Names: CAN-2004-0081 CAN-2003-0851
----------------------------------------------------------------------
1. Topic:
Updated OpenSSL packages that fix a remote denial of service vulnerability are now available for Red Hat Enterprise Linux 2.1.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, i686, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386, i686
Red Hat Enterprise Linux WS version 2.1 - i386, i686
Red Hat Security Advisory
Synopsis: Updated sysstat packages fix security vulnerabilities
Advisory ID: RHSA-2004:053-01
Issue date: 2004-03-10
Updated on: 2004-03-10
Product: Red Hat Enterprise Linux
Keywords:
Cross references:
Obsoletes:
CVE Names: CAN-2004-0107 CAN-2004-0108
---------------------------------------------------------------------
1. Topic:
Updated sysstat packages that fix various bugs and security issues are now available.
Red Hat Security Advisory
Synopsis: Updated gdk-pixbuf packages fix crash
Advisory ID: RHSA-2004:103-01
Issue date: 2004-03-10
Updated on: 2004-03-10
Product: Red Hat Enterprise Linux
Keywords: DoS
Cross references:
Obsoletes:
CVE Names: CAN-2004-0111
----------------------------------------------------------------------
1. Topic:
Updated gdk-pixbuf packages that fix a crash are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux ES version 3 - i386
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Security Advisory
Synopsis: Updated kdelibs packages resolve cookie security issue
Advisory ID: RHSA-2004:074-01
Issue date: 2004-03-10
Updated on: 2004-03-10
Product: Red Hat Enterprise Linux
Keywords:
Cross references:
Obsoletes: RHSA-2003:236
CVE Names: CAN-2003-0592
---------------------------------------------------------------------
1. Topic:
Updated kdelibs packages that fix a flaw in cookie path handling are now available.
2. Relevant releases/architectures:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386, ia64
Red Hat Linux Advanced Workstation 2.1 - ia64
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Security Advisory
Synopsis: Updated wu-ftpd package fixes security issues
Advisory ID: RHSA-2004:096-01
Issue date: 2004-03-08
Updated on: 2004-03-08
Product: Red Hat Enterprise Linux
Keywords: ftpd
Cross references:
Obsoletes: RHSA-2003:246
CVE Names: CAN-2004-0148
---------------------------------------------------------------------
1. Topic:
An updated wu-ftpd package that fixes two security issues is now available.
------------------------------------------------------------------------
Fedora Legacy Update Advisory
Synopsis: Updated util-linux resolves security vulnerability
Advisory ID: FLSA:1256
Issue date: 2004-03-04
Product: Red Hat Linux
Keywords: Security
Cross references: https://bugzilla.fedora.us/show_bug.cgi?id=1256
CVE Names: CAN-2004-0080
------------------------------------------------------------------------
----------------------------------------------------------------------
1. Topic:
Updated util-linux packages that fix an information leak in the login program are now available.
2. Relevent releases/architectures:
Red Hat Linux 7.2 - i386
3. Problem description:
The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function.
In some situations, the login program could use a pointer that had been freed and reallocated. This could cause unintentional data leakage.
Note: Red Hat Linux releases newer than 7.2 are not vulnerable to this issue. It is recommended that all users upgrade to these updated packages, which are not vulnerable to this issue.
Linux seller Red Hat has named Joanne Rohde as its executive vice president of worldwide operations, where she will oversee the company's services, product integration and computing systems.
Read more
Red Hat Inc. will make a Linux operating system for embedded devices through a partnership with Wind River Systems Inc., which specializes in software for this type of device, the companies announced Monday.
Read more
The first issue of the Wide Open Magazine (the US edition of the Red Hat Magazine) will be released next month
Red Hat hoped to release a first test version of Linux based on the new 2.6 kernel Monday, but delayed the move until later in the week.
Read more
