The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/foomatic-4.0.7-3.fc15
https://admin.fedoraproject.org/updates/samba-3.5.11-71.fc15.1
https://admin.fedoraproject.org/updates/freetype-2.4.4-5.fc15
https://admin.fedoraproject.org/updates/cifs-utils-5.0-2.fc15
https://admin.fedoraproject.org/updates/drupal7-7.6-1.fc15
https://admin.fedoraproject.org/updates/clamav-0.97.2-1500.fc15
https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.fc15
https://admin.fedoraproject.org/updates/bugzilla-3.6.6-1.fc15
https://admin.fedoraproject.org/updates/wireshark-1.4.8-1.fc15
https://admin.fedoraproject.org/updates/p7zip-9.20.1-2.fc15
https://admin.fedoraproject.org/updates/openarena-0.8.5-4.fc15,quake3-1.36-11.svn2102.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/selinux-policy-3.9.16-37.fc15
https://admin.fedoraproject.org/updates/perl-5.12.4-160.fc15
https://admin.fedoraproject.org/updates/curl-7.21.3-9.fc15
https://admin.fedoraproject.org/updates/shadow-utils-4.1.4.2-13.fc15
https://admin.fedoraproject.org/updates/perl-Compress-Raw-Lzma-2.036-2.fc15,xz-5.0.3-1.fc15
https://admin.fedoraproject.org/updates/PackageKit-0.6.17-1.fc15
https://admin.fedoraproject.org/updates/logrotate-3.7.9-14.fc15
https://admin.fedoraproject.org/updates/kernel-2.6.40-3.fc15
https://admin.fedoraproject.org/updates/cyrus-sasl-2.1.23-18.fc15
https://admin.fedoraproject.org/updates/pinentry-0.8.1-4.fc15
https://admin.fedoraproject.org/updates/sendmail-8.14.5-3.fc15
https://admin.fedoraproject.org/updates/nspr-4.8.8-4.fc15
https://admin.fedoraproject.org/updates/nss-softokn-3.12.10-4.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-wacom-0.11.1-3.fc15
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-14.fc15.1
https://admin.fedoraproject.org/updates/lldpad-0.9.41-3.fc15
https://admin.fedoraproject.org/updates/libfprint-0.4.0-1.fc15,fprintd-0.4.1-1.fc15
The following builds have been pushed to Fedora 15 updates-testing
autoconf-archive-2011.07.17-1.fc15
btrfs-progs-0.19-16.fc15
bugzilla-3.6.6-1.fc15
cups-pk-helper-0.1.3-1.fc15
diaser-1.1.0-3.fc15
marathi-typing-booster-0.0.1-4.fc15
microcode_ctl-1.17-18.fc15
perl-5.12.4-160.fc15
perl-Gtk2-WebKit-0.09-1.fc15
perl-POE-Test-Loops-1.312-2.fc15
selinux-policy-3.9.16-37.fc15
sssd-1.5.12-1.fc15
upnp-inspector-0.2.2-5.fc15
zyGrib-5.0.2-1.fc15
Details about builds:
================================================================================
autoconf-archive-2011.07.17-1.fc15 (FEDORA-2011-10418)
The Autoconf Macro Archive
--------------------------------------------------------------------------------
Update Information:
Update to 2011.07.17
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Takanori MATSUURA <t.matsuu@xxxxxxxxx> - 2011.07.17-1
- update to 2011.07.17
--------------------------------------------------------------------------------
================================================================================
btrfs-progs-0.19-16.fc15 (FEDORA-2011-10424)
Userspace programs for btrfs
--------------------------------------------------------------------------------
Update Information:
Include btrfs-zero-log
Update to latest upstream, added a couple of crash recovery tools.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Josef Bacik <josef@xxxxxxxxxxxxxx> 0.19-16
- fix a typo
* Fri Aug 5 2011 Josef Bacik <josef@xxxxxxxxxxxxxx> 0.19-15
- actually build btrfs-zero-log
* Thu Aug 4 2011 Josef Bacik <josef@xxxxxxxxxxxxxx> 0.19-14
- bring btrfs-progs uptodate with upstream
--------------------------------------------------------------------------------
================================================================================
bugzilla-3.6.6-1.fc15 (FEDORA-2011-10426)
Bug tracking system
--------------------------------------------------------------------------------
Update Information:
The Bugzilla developers have discovered a number of security bugs in Bugzilla. These are CVE-2011-2379, CVE-2011-2380, CVE-2011-2979, CVE-2011-2381, CVE-2011-2978, CVE-2011-2977.
This release fixes these bugs.
See http://www.bugzilla.org/security/3.4.11/ for all known details.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Emmanuel Seyman <emmanuel.seyman@xxxxxxxxxxxxxxxx> - 3.6.6-1
- Update to 3.6.6
- Move graphs to /var/lib/bugzilla/graphs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #710142 - SELinux is preventing /usr/bin/perl from 'write' accesses on the directory /usr/share/bugzilla/graphs.
https://bugzilla.redhat.com/show_bug.cgi?id=710142
--------------------------------------------------------------------------------
================================================================================
cups-pk-helper-0.1.3-1.fc15 (FEDORA-2011-10408)
A helper that makes system-config-printer use PolicyKit
--------------------------------------------------------------------------------
Update Information:
This update fixes bug #724959 and updates cups-pk-helper to cups-pk-helper-0.1.3.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Marek Kasik <mkasik@xxxxxxxxxx> - 0.1.3-1
- Update to 0.1.3
- Fix #724959
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #724959 - Segfaults if cannot connect to CUPS
https://bugzilla.redhat.com/show_bug.cgi?id=724959
--------------------------------------------------------------------------------
================================================================================
diaser-1.1.0-3.fc15 (FEDORA-2011-10415)
Geo-data replication long-term archive system (WAN vault)
--------------------------------------------------------------------------------
Update Information:
Wan vault for long term archiving.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #644711 - Review Request: diaser - disk based backup volume accumulator, replication and management system
https://bugzilla.redhat.com/show_bug.cgi?id=644711
--------------------------------------------------------------------------------
================================================================================
marathi-typing-booster-0.0.1-4.fc15 (FEDORA-2011-10416)
Marathi Typing Booster Table for IBus Indic Tables
--------------------------------------------------------------------------------
Update Information:
This is an update that enhances freq. of basic charactes
This is an update that fixes problem with dny character.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Pravin Satpute <psatpute@xxxxxxxxxx> - 0.0.1-4
- improved freq of basic characters
* Tue Aug 2 2011 Pravin Satpute <psatpute@xxxxxxxxxx> - 0.0.1-3
- corrected dny key
--------------------------------------------------------------------------------
================================================================================
microcode_ctl-1.17-18.fc15 (FEDORA-2011-10403)
Tool to update x86/x86-64 CPU microcode.
--------------------------------------------------------------------------------
Update Information:
Ship splitted microcode or Intel CPUs [#690930]
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 4 2011 Anton Arapov <anton@xxxxxxxxxx> 1.17-18
- Ship splitted microcode for Intel CPUs [#690930]
- Include tool for splitting microcode for Intl CPUs (Kay Sievers )
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #690930 - microcode_ctl loops, impossible to boot
https://bugzilla.redhat.com/show_bug.cgi?id=690930
--------------------------------------------------------------------------------
================================================================================
perl-5.12.4-160.fc15 (FEDORA-2011-10417)
Practical Extraction and Report Language
--------------------------------------------------------------------------------
Update Information:
Move xsubpp to ExtUtils::ParseXS
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Petr Sabata <contyk@xxxxxxxxxx> - 4:5.12.3-160
- Move xsubpp to ExtUtils::ParseXS (#728393)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #728393 - /usr/bin/xsubpp should be part of perl-ExtUtils-ParseXS rather than perl-devel
https://bugzilla.redhat.com/show_bug.cgi?id=728393
--------------------------------------------------------------------------------
================================================================================
perl-Gtk2-WebKit-0.09-1.fc15 (FEDORA-2011-10409)
Web content engine library for Gtk2
--------------------------------------------------------------------------------
Update Information:
WebKit is a web content engine, derived from KHTML and KJS from KDE, and used primarily in Apple's Safari browser. It is made to be embedded in other applications, such as mail readers, or web browsers.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #728296 - Review Request: perl-Gtk2-WebKit - Web content engine library for Gtk2
https://bugzilla.redhat.com/show_bug.cgi?id=728296
--------------------------------------------------------------------------------
================================================================================
perl-POE-Test-Loops-1.312-2.fc15 (FEDORA-2011-10412)
Reusable tests for POE::Loop authors
--------------------------------------------------------------------------------
Update Information:
There was incorrectly provided module Switch.
Test: rpm -q --provides perl-POE-Test-Loops
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 1.312-2
- filter also Switch from provides, just to be sure
* Wed Jul 27 2011 Petr Sabata <contyk@xxxxxxxxxx> - 1.312-1
- 1.312 bump (needed by current POE)
- Drop Buildroot and defattr support
- Fix dependencies a bit
- Add RPM 4.9 style filters
- Filter POE::Kernel and PoeTestWorker from Provides
* Thu Jun 16 2011 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 1.035-4
- Perl mass rebuild
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.9.16-37.fc15 (FEDORA-2011-10410)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
- Fixes for zarafa, postfix policy
- Backport collect policy
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.9.16-37
- Fixes for zarafa, postfix policy
- Backport collect policy
* Wed Jul 27 2011 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.9.16-36
- Backport ABRT changes
- Make tmux working with scree policy
- Allow root cron jobs can't run without unconfined
- add interface to dontaudit writes to urand, needed by libra
- Add label for /var/cache/krb5rcache directory
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #707157 - SELinux is preventing /usr/sbin/lircd from using the 'signal' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=707157
[ 2 ] Bug #722747 - SELinux is preventing abrt-dump-oops from 'syslog_read' accesses on the system Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=722747
[ 3 ] Bug #723391 - tmux doesn't work without unconfined, but this may be a tmux behaviour issue
https://bugzilla.redhat.com/show_bug.cgi?id=723391
[ 4 ] Bug #723403 - Root cron jobs can't run without unconfined
https://bugzilla.redhat.com/show_bug.cgi?id=723403
[ 5 ] Bug #726180 - SELinux is preventing /usr/libexec/gdm-crash-logger from 'append' accesses on the file /var/log/gdm/:0-slave.log.
https://bugzilla.redhat.com/show_bug.cgi?id=726180
[ 6 ] Bug #727052 - SELinux is preventing /bin/systemctl from using the 'signal' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=727052
[ 7 ] Bug #727999 - SELinux is preventing /usr/sbin/lircd from 'read' accesses on the directory devices.
https://bugzilla.redhat.com/show_bug.cgi?id=727999
[ 8 ] Bug #725117 - SELinux is preventing /bin/hostname from read access on the chr_file /dev/null
https://bugzilla.redhat.com/show_bug.cgi?id=725117
--------------------------------------------------------------------------------
================================================================================
sssd-1.5.12-1.fc15 (FEDORA-2011-10411)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
* Fixes a regression introduced in 1.5.11 with hostname resolution
* Fixes an issue where sssd_pam would leak file descriptors until resource exhaustion
* Complete rewrite of the FreeIPA Host-Based Access Control (HBAC) resolver
* New shared library for HBAC access-control
* Fixes for password expiration handling with LDAP auth
* New option to veto certain centrally-managed shells (Patch by John Hodrien)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.5.12-1
- New upstream release 1.5.12
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.12
- Fixes a regression introduced in 1.5.11 with hostname resolution
- Fixes an issue where sssd_pam would leak file descriptors until resource
exhaustion
- Complete rewrite of the FreeIPA Host-Based Access Control (HBAC) resolver
- New shared library for HBAC access-control
- Fixes for password expiration handling with LDAP auth
- New option to veto certain centrally-managed shells (Patch by John Hodrien)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #709178 - "groups user" and "finger gecos" fails
https://bugzilla.redhat.com/show_bug.cgi?id=709178
--------------------------------------------------------------------------------
================================================================================
upnp-inspector-0.2.2-5.fc15 (FEDORA-2011-10402)
UPnP Device and Service analyzer
--------------------------------------------------------------------------------
Update Information:
Added missing Requires (BZ #704051)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Andrea Musuruane <musuruan@xxxxxxxxx> 0.2.2-5
- Added missing Requires (BZ #704051)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #704051 - [abrt] upnp-inspector-0.2.2-3.fc14: extract.py:121:_toggle_tar:AttributeError: 'Extract' object has no attribute 'email_button'
https://bugzilla.redhat.com/show_bug.cgi?id=704051
--------------------------------------------------------------------------------
================================================================================
zyGrib-5.0.2-1.fc15 (FEDORA-2011-10414)
Visualization of meteo data from files in GRIB Format 1
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 5 2011 Pavel Zhukov <landgraf@xxxxxxxxxxxxxxxxx> - 5.0.2-1
- New version
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
