The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/foomatic-4.0.7-3.fc15
https://admin.fedoraproject.org/updates/samba-3.5.11-71.fc15.1
https://admin.fedoraproject.org/updates/freetype-2.4.4-5.fc15
https://admin.fedoraproject.org/updates/clamav-0.97.2-1500.fc15
https://admin.fedoraproject.org/updates/bugzilla-3.6.6-1.fc15
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.4-1.fc15
https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.fc15
https://admin.fedoraproject.org/updates/libvpx-0.9.7-1.fc15
https://admin.fedoraproject.org/updates/zabbix-1.8.6-1.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/xfce4-notifyd-0.2.2-1.fc15
https://admin.fedoraproject.org/updates/libtalloc-2.0.6-1.fc15
https://admin.fedoraproject.org/updates/selinux-policy-3.9.16-37.fc15
https://admin.fedoraproject.org/updates/perl-Compress-Raw-Lzma-2.036-2.fc15,xz-5.0.3-1.fc15
https://admin.fedoraproject.org/updates/kernel-2.6.40-3.fc15
https://admin.fedoraproject.org/updates/cyrus-sasl-2.1.23-18.fc15
https://admin.fedoraproject.org/updates/pinentry-0.8.1-4.fc15
https://admin.fedoraproject.org/updates/sendmail-8.14.5-3.fc15
https://admin.fedoraproject.org/updates/nspr-4.8.8-4.fc15
https://admin.fedoraproject.org/updates/nss-softokn-3.12.10-4.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-wacom-0.11.1-3.fc15
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-14.fc15.1
https://admin.fedoraproject.org/updates/lldpad-0.9.41-3.fc15
https://admin.fedoraproject.org/updates/libfprint-0.4.0-1.fc15,fprintd-0.4.1-1.fc15
The following builds have been pushed to Fedora 15 updates-testing
389-admin-console-1.1.8-1.fc15
OpenImageIO-0.10.1-2.fc15
R-2.13.1-4.fc15
blender-2.49b-17.fc15
choqok-1.1-4.fc15
ecryptfs-utils-87-9.fc15
geeqie-1.0-11.fc15
libtalloc-2.0.6-1.fc15
libvpx-0.9.7-1.fc15
php-pear-Net-Sieve-1.3.2-1.fc15
polyml-5.4.1-1.fc15
rubygem-foreigner-1.1.1-1.fc15
thunderbird-lightning-1.0-0.47.b5rc3.fc15
transfig-3.2.5d-3.fc15
unbound-1.4.12-1.fc15
worker-2.18.0-7.fc15
xfce4-notifyd-0.2.2-1.fc15
zabbix-1.8.6-1.fc15
Details about builds:
================================================================================
389-admin-console-1.1.8-1.fc15 (FEDORA-2011-10619)
389 Admin Server Management Console
--------------------------------------------------------------------------------
Update Information:
UI bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.1.8-1
- Bug 723126 - Configure Admin Server -> Connection Restriction --> Add Screen is flicking consistently.
--------------------------------------------------------------------------------
================================================================================
OpenImageIO-0.10.1-2.fc15 (FEDORA-2011-10597)
Library for reading and writing images
--------------------------------------------------------------------------------
Update Information:
Fixed private shared library issue with a Python library.
Minor bugfix release.
Minor bugfix release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 4 2011 Richard Shaw <hobbes1069@xxxxxxxxx> - 0.10.1-2
- New upstream release.
- Fix private shared object provides with python library.
--------------------------------------------------------------------------------
================================================================================
R-2.13.1-4.fc15 (FEDORA-2011-10614)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
- use 'less' as the default pager
- Symlink LaTeX files, and rehash on package change when possible (so \usepackage{Sweave} works out of the box)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.13.1-4
- fix salimma's scriptlets to be on -core instead of the metapackage
* Tue Aug 9 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 2.13.1-3
- Symlink LaTeX files, and rehash on package change when possible (# 630835)
* Mon Aug 8 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.13.1-2
- add BuildRequires: less
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #630835 - Sweave style not at the good place
https://bugzilla.redhat.com/show_bug.cgi?id=630835
--------------------------------------------------------------------------------
================================================================================
blender-2.49b-17.fc15 (FEDORA-2011-10605)
3D modeling, animation, rendering and post-production
--------------------------------------------------------------------------------
Update Information:
Try to fix crashes by adding
third-party patches
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Jochen Schmitt <Jochen herr-schmitt de> 1:2.49b-17
- Add third-party patches
--------------------------------------------------------------------------------
================================================================================
choqok-1.1-4.fc15 (FEDORA-2011-10612)
KDE Micro-Blogging Client
--------------------------------------------------------------------------------
Update Information:
Fix rhbz 729464 - "This method requires authentication" error, cannot send PMs anymore
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Sven Lankes <sven@xxxxxxx> - 1.1-4
- fix bug on friendlist update (rhbz #729464)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #729464 - "This method requires authentication" error, cannot send PMs anymore
https://bugzilla.redhat.com/show_bug.cgi?id=729464
--------------------------------------------------------------------------------
================================================================================
ecryptfs-utils-87-9.fc15 (FEDORA-2011-10604)
The eCryptfs mount helper and support libraries
--------------------------------------------------------------------------------
Update Information:
- improve logging messages of ecryptfs pam module
- keep own copy of passphrase, pam clears it too early
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 87-9
- improve logging messages of ecryptfs pam module
- keep own copy of passphrase, pam clears it too early
* Wed Aug 3 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 87-8
- keyring from auth stack does not survive, use pam_data and delayed
keyring initialization
--------------------------------------------------------------------------------
================================================================================
geeqie-1.0-11.fc15 (FEDORA-2011-10598)
Image browser and viewer
--------------------------------------------------------------------------------
Update Information:
Fix for a corner-case bug.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.0-11
- Patch another place where not to exif_free_fd NULL ptr (#728802).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #728802 - [abrt] geeqie-1.0-10.fc15: exif_free_fd: assertion failed: (fd->exif == exif)
https://bugzilla.redhat.com/show_bug.cgi?id=728802
--------------------------------------------------------------------------------
================================================================================
libtalloc-2.0.6-1.fc15 (FEDORA-2011-10616)
The talloc library
--------------------------------------------------------------------------------
Update Information:
This release includes a few bugfixes for talloc pools, plus a fix for the core free code that could cause a use after free error. It also includes some fixes for better reporting of memory errors when valgrind is used.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Simo Sorce <ssorce@xxxxxxxxxx> - 2.0.6-1
- New upstream release
- Fixes various bugs with talloc_free_children and freeing complex
hierarchies with many siblinbgs.
--------------------------------------------------------------------------------
================================================================================
libvpx-0.9.7-1.fc15 (FEDORA-2011-10606)
VP8 Video Codec SDK
--------------------------------------------------------------------------------
Update Information:
Update to libvpx 0.9.7
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Adam Jackson <ajax@xxxxxxxxxx> 0.9.7-1
- libvpx 0.9.7
* Mon Mar 21 2011 Dan Horák <dan[at]danny.cz> - 0.9.6-2
- add 2 symbols to the shared library for generic targets
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #651213 - CVE-2010-4203 libvpx: memory corruption flaw
https://bugzilla.redhat.com/show_bug.cgi?id=651213
--------------------------------------------------------------------------------
================================================================================
php-pear-Net-Sieve-1.3.2-1.fc15 (FEDORA-2011-10602)
Handles talking to a sieve server
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog Version 1.3.2 :
* Fix referrals if host data or user credentials are passed to connect() and login() instead of the constructor (Aleksander Machniak, Bug #17107).
Version 1.3.1:
* Query capabilities again after successful authentication (Jesse Crawford, Request #18382).
* Escape quotes and backslashes in script names, and use literal strings for script names with non-ASCII characters (Aleksander Machniak, Bug #16691).
* Work around broken STARTTLS behavior in Cyrus versions before 2.3.10 (Aleksander Machniak, Bug #18241).
* Improve string literal parsing (Aleksander Machniak, Bug #18228).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.3.2-1
- Version 1.3.2 (stable) - API 1.3.0 (stable)
* Sat Aug 6 2011 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.3.1-1
- Version 1.3.1 (stable) - API 1.3.0 (stable)
--------------------------------------------------------------------------------
================================================================================
polyml-5.4.1-1.fc15 (FEDORA-2011-10607)
Poly/ML compiler and runtime system
--------------------------------------------------------------------------------
Update Information:
Upstream states that this is a bug-fix release, but does not specify the nature of the fixed bugs.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Jerry James <loganjerry@xxxxxxxxx> - 5.4.1-1
- New upstream release
* Fri Apr 29 2011 Dan Horák <dan[at]danny.cz> - 5.4-3
- updated the supported arch list
--------------------------------------------------------------------------------
================================================================================
rubygem-foreigner-1.1.1-1.fc15 (FEDORA-2011-10625)
Foreign Keys for Rails
--------------------------------------------------------------------------------
Update Information:
Release 1.1.1 of Foreigner.
Release 1.1.0 of Foreigner.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 1.1.1-1
- Release 1.1.1 of Foreigner gem.
* Mon Aug 1 2011 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 1.1.0-1
- Release 1.1.0 of Foreigner gem.
- Added the doc subpackage.
- Added requirement on rubygem-activerecord >= 3.0.0
--------------------------------------------------------------------------------
================================================================================
thunderbird-lightning-1.0-0.47.b5rc3.fc15 (FEDORA-2011-10596)
The calendar extension to Thunderbird
--------------------------------------------------------------------------------
Update Information:
- Update to 1.0 b5 rc3
- Package l10n langpacks (bug #504994)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 29 2011 Orion Poplawski <orion@xxxxxxxxxxxxx> 1.0.0.47.b5rc3
- Package l10n langpacks (bug #504994)
* Thu Jul 28 2011 Orion Poplawski <orion@xxxxxxxxxxxxx> 1.0.0.46.b5rc3
- Update to 1.0 b5 rc3
- Use lightning release sources
* Tue Jul 19 2011 Dan Horák <dan[at]danny.cz> - 1.0-0.45.b3pre
- add xulrunner patches for secondary arches
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #504994 - thunderbird-lightning is only in english
https://bugzilla.redhat.com/show_bug.cgi?id=504994
[ 2 ] Bug #723428 - Can't connect using wcap (please upgrade)
https://bugzilla.redhat.com/show_bug.cgi?id=723428
--------------------------------------------------------------------------------
================================================================================
transfig-3.2.5d-3.fc15 (FEDORA-2011-10617)
Utility for converting FIG files (made by xfig) to other formats
--------------------------------------------------------------------------------
Update Information:
fix crash of fig2dev on a failure of ghostscript (#728825)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Kamil Dudka <kdudka@xxxxxxxxxx> - 1:3.2.5d-3
- fix crash of fig2dev on a failure of ghostscript (#728825)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #728825 - fig2dev dies on double-close when ghostscript fails
https://bugzilla.redhat.com/show_bug.cgi?id=728825
--------------------------------------------------------------------------------
================================================================================
unbound-1.4.12-1.fc15 (FEDORA-2011-10599)
Validating, recursive, and caching DNS(SEC) resolver
--------------------------------------------------------------------------------
Update Information:
Updated to 1.4.12. Fixes for python server module. Faster response times
under high load by to disabling extra checking compile time option.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Paul Wouters <paul@xxxxxxxxxxxxx> - 1.4.12-1
- Updated to 1.4.12
- Updated stock unbound.conf for new options introduced
- Added pythonmod docs and examples
- Added ghost for /var/run/unbound (bz#656710)
- Fix for python module load in the server (Tom Hendrikx)
- No longer enable --enable-debug as it causes degraded performance
under load.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #656710 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
https://bugzilla.redhat.com/show_bug.cgi?id=656710
--------------------------------------------------------------------------------
================================================================================
worker-2.18.0-7.fc15 (FEDORA-2011-10600)
File Manager for the X11
--------------------------------------------------------------------------------
Update Information:
Fixes error during install saying that root group not found due to typo in defattr
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Nathan Owe <ndowens at fedoraproject.org> 2.18.0-7
- Fixed error on run "Group root does not exist" caused by a typo in defattr.
--------------------------------------------------------------------------------
================================================================================
xfce4-notifyd-0.2.2-1.fc15 (FEDORA-2011-10615)
Simple notification daemon for Xfce
--------------------------------------------------------------------------------
Update Information:
This update fixes the close timeout for infinite notifications.
The settings dialog has been cleaned up and translations have been updated.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 0.2.2-1
- Update to 0.2.2
- Remove upstreamed Fix-race-with-window-becoming-invalid.patch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #729309 - xfce4-notifyd 0.2.2 released
https://bugzilla.redhat.com/show_bug.cgi?id=729309
--------------------------------------------------------------------------------
================================================================================
zabbix-1.8.6-1.fc15 (FEDORA-2011-10618)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
- update to 1.8.6
- upstream changelog at http://www.zabbix.com/rn1.8.6.php
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Dan Horák <dan[at]danny.cz> - 1.8.6-1
- updated to 1.8.6 (#729164, #729165)
- updated user/group adding scriptlet
* Fri Jul 8 2011 Dan Horák <dan[at]danny.cz> - 1.8.5-5
- rebuilt with net-snmp 5.7
* Mon Jun 13 2011 Dan Horák <dan[at]danny.cz> - 1.8.5-4
- generalize the spec so creating packages like zabbix18 will be much easier
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #729162 - zabbix: improper input sanitization leads to XSS
https://bugzilla.redhat.com/show_bug.cgi?id=729162
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
