The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/couchdb-1.0.2-4.fc14
https://admin.fedoraproject.org/updates/rssh-2.3.3-1.fc14
https://admin.fedoraproject.org/updates/kdenetwork-4.6.2-2.fc14
https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-3.fc14
https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc14
https://admin.fedoraproject.org/updates/tomcat6-6.0.26-21.fc14
https://admin.fedoraproject.org/updates/cyrus-imapd-2.3.16-8.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/xen-4.0.1-11.fc14
https://admin.fedoraproject.org/updates/viewvc-1.1.11-1.fc14
https://admin.fedoraproject.org/updates/mumble-1.2.3-2.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/dash-0.5.6-3.fc14
https://admin.fedoraproject.org/updates/nspr-4.8.8-1.fc14,nss-util-3.12.10-1.fc14,nss-softokn-3.12.10-1.fc14,nss-3.12.10-1.fc14
https://admin.fedoraproject.org/updates/pcre-8.10-2.fc14
https://admin.fedoraproject.org/updates/lvm2-2.02.84-2.fc14
https://admin.fedoraproject.org/updates/libedit-3.0-3.20090923cvs.fc14
https://admin.fedoraproject.org/updates/libpcap-1.1.1-3.fc14
https://admin.fedoraproject.org/updates/binutils-2.20.51.0.7-8.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
https://admin.fedoraproject.org/updates/evolution-exchange-2.32.3-1.fc14,evolution-data-server-2.32.3-1.fc14,evolution-2.32.3-1.fc14
https://admin.fedoraproject.org/updates/pygtk2-2.17.0-9.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20101010git8c8f15c.fc14
https://admin.fedoraproject.org/updates/dosfstools-3.0.9-6.fc14
https://admin.fedoraproject.org/updates/libimobiledevice-1.0.6-1.fc14
https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
https://admin.fedoraproject.org/updates/usbmuxd-1.0.7-1.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-geode-2.11.11-4.fc14
The following builds have been pushed to Fedora 14 updates-testing
couchdb-1.0.2-4.fc14
dash-0.5.6-3.fc14
dovecot-2.0.13-1.fc14
drupal6-features-1.0-3.fc14
drupal6-token-1.16-1.fc14
eclipse-ptp-4.0.7-1.fc14
gcal-3.6-3.fc14
gpodder-2.15-1.fc14
hiredis-0.10.0-3.fc14
input-pad-1.0.1-2.fc14
libidn2-0.5-1.fc14
os-prober-1.47-1.fc14
perl-CGI-Application-Plugin-RateLimit-1.0-2.fc14
perl-HTTP-Server-Simple-PSGI-0.14-2.fc14.1
perl-Parallel-Iterator-1.00-1.fc14
perl-Plack-0.9979-1.fc14
perl-Sys-Virt-0.2.4-3.fc14
pymol-1.4.1-3.20110502svn3947.fc14
rcsslogplayer-15.0.0-1.fc14
rcssmonitor-15.0.0-1.fc14
rcssserver-15.0.0-1.fc14
rssh-2.3.3-1.fc14
springlobby-0.131-1.fc14
Details about builds:
================================================================================
couchdb-1.0.2-4.fc14 (FEDORA-2011-7232)
A document database server, accessible via a RESTful JSON API
--------------------------------------------------------------------------------
Update Information:
- Fixed Futon test failures with Erlang/OTP R14B02
* Ver. 1.0.2 (Bugfix release)
* Ver. 1.0.2 (Bugfix release)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.0.2-4
- Fixed issue with R14B02
* Thu May 5 2011 Jan Horak <jhorak@xxxxxxxxxx> - 1.0.2-3
- Added Spidermonkey 1.8.5 patch
* Mon Mar 7 2011 CaolÃn McNamara <caolanm@xxxxxxxxxx> 1.0.2-2
- rebuild for icu 4.6
* Thu Nov 25 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 1.0.2-1
- Ver. 1.0.2
- Patches were rebased
* Tue Oct 12 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 1.0.1-4
- Added patches for compatibility with R12B5
* Mon Oct 11 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 1.0.1-3
- Narrowed list of BuildRequires
* Thu Aug 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 1.0.1-2
- Cleaned up spec-file a bit
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674146 - CVE-2010-3854 couchdb: XSS vulnerability [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=674146
[ 2 ] Bug #674145 - CVE-2010-3854 couchdb: XSS vulnerability [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=674145
--------------------------------------------------------------------------------
================================================================================
dash-0.5.6-3.fc14 (FEDORA-2011-7283)
Small and fast POSIX-compliant shell
--------------------------------------------------------------------------------
Update Information:
'dash' now gets properly installed to /etc/shells.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Petr Sabata <psabata@xxxxxxxxxx> - 0.5.6-3
- Install/remove dash from /etc/shells (#706138)
- Buildroot and defattr cleanup
- Add INSTALL, COPYING, ChangeLog to doc
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706138 - /etc/shells should contain dash
https://bugzilla.redhat.com/show_bug.cgi?id=706138
--------------------------------------------------------------------------------
================================================================================
dovecot-2.0.13-1.fc14 (FEDORA-2011-7258)
Secure imap and pop3 server
--------------------------------------------------------------------------------
Update Information:
- dovecot updated to 2.0.13
- mdbox purge: Fixed wrong warning about corrupted extrefs.
- script-login binary wasn't actually dropping privileges to the
user/group/chroot specified by its service settings.
- Fixed potential crashes and other problems when parsing header names
that contained NUL characters.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 12 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.13-1
- dovecot updated to 2.0.13
- mdbox purge: Fixed wrong warning about corrupted extrefs.
- script-login binary wasn't actually dropping privileges to the
user/group/chroot specified by its service settings.
- Fixed potential crashes and other problems when parsing header names
that contained NUL characters.
--------------------------------------------------------------------------------
================================================================================
drupal6-features-1.0-3.fc14 (FEDORA-2011-7267)
Provides feature management for Drupal
--------------------------------------------------------------------------------
Update Information:
The features module enables the capture and management of
features in Drupal. A feature is a collection of Drupal entities which taken together satisfy a certain use-case.
The features module enables the capture and management of features in Drupal. A feature is a collection of Drupal entities which taken together satisfy a certain use-case.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #705375 - README.txt should appear in module directory for use in-module
https://bugzilla.redhat.com/show_bug.cgi?id=705375
[ 2 ] Bug #698590 - Review Request: drupal6-features - Provides feature management for Drupal
https://bugzilla.redhat.com/show_bug.cgi?id=698590
--------------------------------------------------------------------------------
================================================================================
drupal6-token-1.16-1.fc14 (FEDORA-2011-7269)
Tokens are small bits of text that can be placed into larger documents
--------------------------------------------------------------------------------
Update Information:
Tokens are small bits of text that can be placed into larger documents
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706046 - drupal6-token-1.16 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706046
[ 2 ] Bug #655954 - Review Request: drupal6-token - Tokens are small bits of text that can be placed into larger documents
https://bugzilla.redhat.com/show_bug.cgi?id=655954
--------------------------------------------------------------------------------
================================================================================
eclipse-ptp-4.0.7-1.fc14 (FEDORA-2011-7265)
Eclipse Parallel Tools Platform
--------------------------------------------------------------------------------
Update Information:
Update to 4.0.7
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 18 2011 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.7-1
- Update to PTP 4.0.7, photran 6.0.7
* Wed Mar 2 2011 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.6-1
- Update to PTP 4.0.6, photran 6.0.6
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Nov 15 2010 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.5-1
- Update to PTP 4.0.5, photran 6.0.5
* Fri Nov 5 2010 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.4-1
- Update to PTP 4.0.4, photran 6.0.4
--------------------------------------------------------------------------------
================================================================================
gcal-3.6-3.fc14 (FEDORA-2011-7239)
GNU Gregorian calendar program
--------------------------------------------------------------------------------
Update Information:
Gcal is a program for calculating and printing calendars. Gcal
displays hybrid and proleptic Julian and Gregorian calendar sheets.
It also displays holiday lists for many countries around the globe.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #704088 - Review Request: gcal - GNU Gregorian calendar program
https://bugzilla.redhat.com/show_bug.cgi?id=704088
--------------------------------------------------------------------------------
================================================================================
gpodder-2.15-1.fc14 (FEDORA-2011-7277)
Podcast receiver/catcher written in Python
--------------------------------------------------------------------------------
Update Information:
Latest bugfix release. For more information, refer to http://blog.gpodder.org/2011/05/gpodder-215-night-of-desirable-objects.html
The dependency on gstreamer-python has been removed. Upstream removed gstreamer track length detection because it was too crashy.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 18 2011 Ville-Pekka Vainio <vpivaini AT cs.helsinki.fi> - 2.15-1
- New upstream release
- Remove dependency on gstreamer-python. Upstream removed gstreamer track
length detection because it was too crashy.
--------------------------------------------------------------------------------
================================================================================
hiredis-0.10.0-3.fc14 (FEDORA-2011-7254)
A minimalistic C client library for Redis
--------------------------------------------------------------------------------
Update Information:
Hiredis is a minimalistic C client library for the Redis database.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #698067 - Review Request: hiredis - A C client library for redis
https://bugzilla.redhat.com/show_bug.cgi?id=698067
--------------------------------------------------------------------------------
================================================================================
input-pad-1.0.1-2.fc14 (FEDORA-2011-7255)
On-screen Input Pad to Send Characters with Mouse
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Takao Fujiwara <tfujiwar@xxxxxxxxxx> - 1.0.1-2
- Bumped to 1.0.1
- Added input-pad-xx-old-eek.patch for eekboard.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #660034 - input-pad variant and option support
https://bugzilla.redhat.com/show_bug.cgi?id=660034
--------------------------------------------------------------------------------
================================================================================
libidn2-0.5-1.fc14 (FEDORA-2011-7244)
Library to support IDNA2008 internationalized domain names
--------------------------------------------------------------------------------
Update Information:
Libidn2 is an implementation of the IDNA2008 specifications in RFC 5890, 5891, 5892 and 5893 for internationalized domain names (IDN). It is a standalone library, without any dependency on libidn.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #702861 - Review Request: libidn2 - Library to support IDNA2008 internationalized domain names
https://bugzilla.redhat.com/show_bug.cgi?id=702861
--------------------------------------------------------------------------------
================================================================================
os-prober-1.47-1.fc14 (FEDORA-2011-7233)
Probes disks on the system for installed operating systems
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 1.47-1
- Updated to the new upstream version 1.47
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #704999 - os-prober-1.47 is available
https://bugzilla.redhat.com/show_bug.cgi?id=704999
--------------------------------------------------------------------------------
================================================================================
perl-CGI-Application-Plugin-RateLimit-1.0-2.fc14 (FEDORA-2011-7262)
Limits runmode call rate per user
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #701183 - Review Request: perl-CGI-Application-Plugin-RateLimit - Limits runmode call rate per user
https://bugzilla.redhat.com/show_bug.cgi?id=701183
--------------------------------------------------------------------------------
================================================================================
perl-HTTP-Server-Simple-PSGI-0.14-2.fc14.1 (FEDORA-2011-7234)
PSGI handler for HTTP::Server::Simple
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Ralf CorsÃpius <corsepiu@xxxxxxxxxxxxxxxxx> 0.14-2.1
- R: perl(HTTP::Server::Simple::CGI) (BZ #705966).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #705966 - perl-HTTP-Server-Simple-PSGI: the F13 and F14 RPMS fail to require perl(HTTP::Server::Simple::CGI)
https://bugzilla.redhat.com/show_bug.cgi?id=705966
--------------------------------------------------------------------------------
================================================================================
perl-Parallel-Iterator-1.00-1.fc14 (FEDORA-2011-7231)
Simple parallel execution
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #704705 - Review Request: perl-Parallel-Iterator - Simple parallel execution
https://bugzilla.redhat.com/show_bug.cgi?id=704705
--------------------------------------------------------------------------------
================================================================================
perl-Plack-0.9979-1.fc14 (FEDORA-2011-7246)
Perl Superglue for Web frameworks and Web Servers (PSGI toolkit)
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Ralf CorsÃpius <corsepiu@xxxxxxxxxxxxxxxxx> 0.9979-1
- Upstream update.
- Activate lighttpd and lighttpd-fcgi tests.
* Wed May 11 2011 Ralf CorsÃpius <corsepiu@xxxxxxxxxxxxxxxxx> 0.9978-1
- Upstream update.
--------------------------------------------------------------------------------
================================================================================
perl-Sys-Virt-0.2.4-3.fc14 (FEDORA-2011-7256)
Represent and manage a libvirt hypervisor connection
--------------------------------------------------------------------------------
Update Information:
Fix code which prevented passing flags when querying XML configuration
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Matthew Booth <mbooth@xxxxxxxxxx> - 0.2.4-3
- Backport get_xml_description with flags
- Backport fix for connect test failure
--------------------------------------------------------------------------------
================================================================================
pymol-1.4.1-3.20110502svn3947.fc14 (FEDORA-2011-7240)
PyMOL Molecular Graphics System
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 18 2011 Tim Fenn <fenn@xxxxxxxxxxxx> - 1.4.1-3.20110502svn3947
- remove old pymol_path directory if necessary using pre script
* Tue May 17 2011 Tim Fenn <fenn@xxxxxxxxxxxx> - 1.4.1-2.20110502svn3947
- fix broken pymol_path and missing shaders issue (BZ 705144)
* Mon May 2 2011 Tim Fenn <fenn@xxxxxxxxxxxx> - 1.4.1-1.20110502svn3947
- update to 1.4.1 (svn 3947)
* Sat Apr 2 2011 Tim Fenn <fenn@xxxxxxxxxxxx> - 1.4-1.20110402svn3938
- update to 1.4 (svn 3938)
- include python web module
- require glew
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #705144 - pymol packaging mishandles pymol_path
https://bugzilla.redhat.com/show_bug.cgi?id=705144
--------------------------------------------------------------------------------
================================================================================
rcsslogplayer-15.0.0-1.fc14 (FEDORA-2011-7236)
RoboCup Soccer Simulator LogPlayer
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 15.0.0-1
- Updated to upstream version 15.0.0
* Sun Apr 17 2011 Kalev Lember <kalev@xxxxxxxxxxxx> - 14.0.1-5
- Rebuilt for boost 1.46.1 soname bump
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 14.0.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706053 - rcsslogplayer-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706053
[ 2 ] Bug #706054 - rcssmonitor-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706054
[ 3 ] Bug #706055 - rcssserver-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706055
--------------------------------------------------------------------------------
================================================================================
rcssmonitor-15.0.0-1.fc14 (FEDORA-2011-7236)
RoboCup 2D Soccer Simulator Monitor
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 15.0.0-1
- Updated to new upstream version 15.0.0
* Sun Apr 17 2011 Kalev Lember <kalev@xxxxxxxxxxxx> - 14.1.0-4
- Rebuilt for boost 1.46.1 soname bump
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 14.1.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706053 - rcsslogplayer-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706053
[ 2 ] Bug #706054 - rcssmonitor-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706054
[ 3 ] Bug #706055 - rcssserver-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706055
--------------------------------------------------------------------------------
================================================================================
rcssserver-15.0.0-1.fc14 (FEDORA-2011-7236)
Robocup 2D Soccer Simulation Server
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 15.0.0-1
- Updated to 15.0.0 upstream version
* Sun Apr 17 2011 Kalev Lember <kalev@xxxxxxxxxxxx> - 14.0.3-7
- Rebuilt for boost 1.46.1 soname bump
* Sun Feb 13 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 14.0.3-6
- Use CPPFLAGS instead of CXXFLAGS to avoid overwriting RPM flags
* Thu Feb 10 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 14.0.3-5
- Use the old Boost::FileSystem in Boost 1.46
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 14.0.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Feb 7 2011 Thomas Spura <tomspur@xxxxxxxxxxxxxxxxx> - 14.0.3-3
- rebuild for new boost
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706053 - rcsslogplayer-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706053
[ 2 ] Bug #706054 - rcssmonitor-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706054
[ 3 ] Bug #706055 - rcssserver-15.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=706055
--------------------------------------------------------------------------------
================================================================================
rssh-2.3.3-1.fc14 (FEDORA-2011-7229)
Restricted shell for use with OpenSSH, allowing only scp and/or sftp
--------------------------------------------------------------------------------
Update Information:
Security fix
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 19 2011 Rahul Sundaram <sundaram@xxxxxxxxxxxxxxxxx> - 2.3.3-1
- Upstream security fix release. Resolves rhbz#705904
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.2-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #705904 - rssh: potential intended restriction bypass in chroot
https://bugzilla.redhat.com/show_bug.cgi?id=705904
--------------------------------------------------------------------------------
================================================================================
springlobby-0.131-1.fc14 (FEDORA-2011-7261)
A lobby client for the spring RTS game engine
--------------------------------------------------------------------------------
Update Information:
- New upstream release (0.131).
- Large number of fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 18 2011 Gilboa Davara <gilboad [AT] gmail [DOT] com> - 0.131-1
- Version 0.131 (Large number of fixes).
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
