The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/foomatic-4.0.7-2.fc14
https://admin.fedoraproject.org/updates/samba-3.5.11-79.fc14
https://admin.fedoraproject.org/updates/freetype-2.4.2-5.fc14
https://admin.fedoraproject.org/updates/clamav-0.97.2-1400.fc14
https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.fc14
https://admin.fedoraproject.org/updates/bugzilla-3.6.6-1.fc14
https://admin.fedoraproject.org/updates/NetworkManager-0.8.4-2.git20110622.fc14
https://admin.fedoraproject.org/updates/system-config-firewall-1.2.27-2.fc14
https://admin.fedoraproject.org/updates/libsndfile-1.0.25-1.fc14
https://admin.fedoraproject.org/updates/glpi-0.78.5-2.svn14966.fc14,glpi-data-injection-2.0.2-1.fc14,glpi-mass-ocs-import-1.4.2-1.fc14,glpi-pdf-0.7.2-1.fc14
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.4-1.fc14
https://admin.fedoraproject.org/updates/libcap-2.22-1.fc14
https://admin.fedoraproject.org/updates/libvpx-0.9.7-1.fc14
https://admin.fedoraproject.org/updates/zabbix-1.8.6-1.fc14
https://admin.fedoraproject.org/updates/libsoup-2.32.2-2.fc14
https://admin.fedoraproject.org/updates/dbus-1.4.0-3.fc14
https://admin.fedoraproject.org/updates/tomcat6-6.0.26-21.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/glibc-2.13-2
https://admin.fedoraproject.org/updates/PackageKit-0.6.12-4.fc14
https://admin.fedoraproject.org/updates/dbus-1.4.0-3.fc14
https://admin.fedoraproject.org/updates/libsoup-2.32.2-2.fc14
https://admin.fedoraproject.org/updates/libcap-2.22-1.fc14
https://admin.fedoraproject.org/updates/pinentry-0.8.1-4.fc14
https://admin.fedoraproject.org/updates/freetype-2.4.2-5.fc14
https://admin.fedoraproject.org/updates/mdadm-3.1.3-0.git20100804.3.fc14
https://admin.fedoraproject.org/updates/libsndfile-1.0.25-1.fc14
https://admin.fedoraproject.org/updates/ModemManager-0.4.998-1.git20110706.fc14
https://admin.fedoraproject.org/updates/unique-1.1.6-3.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-savage-2.3.2-3.fc14
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc14
https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14
https://admin.fedoraproject.org/updates/perl-5.12.4-146.fc14
https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-30.2.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-8.fc14.2
https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20101010git8c8f15c.fc14
https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
The following builds have been pushed to Fedora 14 updates-testing
389-admin-console-1.1.8-1.fc14
OpenImageIO-0.10.1-2.fc14
R-2.13.1-4.fc14
blender-2.49b-17.fc14
ecryptfs-utils-87-8.fc14
geeqie-1.0-11.fc14
libvpx-0.9.7-1.fc14
mhddfs-0.1.38-7.fc14
php-pear-Net-Sieve-1.3.2-1.fc14
polyml-5.4.1-1.fc14
unbound-1.4.12-1.fc14
zabbix-1.8.6-1.fc14
Details about builds:
================================================================================
389-admin-console-1.1.8-1.fc14 (FEDORA-2011-10609)
389 Admin Server Management Console
--------------------------------------------------------------------------------
Update Information:
UI bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.1.8-1
- Bug 723126 - Configure Admin Server -> Connection Restriction --> Add Screen is flicking consistently.
--------------------------------------------------------------------------------
================================================================================
OpenImageIO-0.10.1-2.fc14 (FEDORA-2011-10613)
Library for reading and writing images
--------------------------------------------------------------------------------
Update Information:
Fixed private shared library issue with a Python library.
Minor bugfix release.
Minor bugfix release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 4 2011 Richard Shaw <hobbes1069@xxxxxxxxx> - 0.10.1-2
- New upstream release.
- Fix private shared object provides with python library.
--------------------------------------------------------------------------------
================================================================================
R-2.13.1-4.fc14 (FEDORA-2011-10610)
A language for data analysis and graphics
--------------------------------------------------------------------------------
Update Information:
- use 'less' as the default pager
- Symlink LaTeX files, and rehash on package change when possible (so \usepackage{Sweave} works out of the box)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.13.1-4
- fix salimma's scriptlets to be on -core instead of the metapackage
* Tue Aug 9 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 2.13.1-3
- Symlink LaTeX files, and rehash on package change when possible (# 630835)
* Mon Aug 8 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.13.1-2
- add BuildRequires: less
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #630835 - Sweave style not at the good place
https://bugzilla.redhat.com/show_bug.cgi?id=630835
--------------------------------------------------------------------------------
================================================================================
blender-2.49b-17.fc14 (FEDORA-2011-10622)
3D modeling, animation, rendering and post-production
--------------------------------------------------------------------------------
Update Information:
Try to fix crashes by adding
third-party patches
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Jochen Schmitt <Jochen herr-schmitt de> 1:2.49b-17
- Add third-party patches
--------------------------------------------------------------------------------
================================================================================
ecryptfs-utils-87-8.fc14 (FEDORA-2011-10603)
The eCryptfs mount helper and support libraries
--------------------------------------------------------------------------------
Update Information:
- improve logging messages of ecryptfs pam module
- keep own copy of passphrase, pam clears it too early
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
- keyring from auth stack does not survive, use pam_data and delayed keyring initialization
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 87-8
- improve logging messages of ecryptfs pam module
- keep own copy of passphrase, pam clears it too early
* Wed Aug 3 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 87-7
- keyring from auth stack does not survive, use pam_data and delayed
keyring initialization
* Thu Jul 21 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 87-6
- fix pam module to set ecryptfs gid before mount helper execution
- do not use zombie process, it causes lock ups in ssh
--------------------------------------------------------------------------------
================================================================================
geeqie-1.0-11.fc14 (FEDORA-2011-10620)
Image browser and viewer
--------------------------------------------------------------------------------
Update Information:
Patch another place where not to exif_free_fd NULL ptr (#728802).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.0-11
- Patch another place where not to exif_free_fd NULL ptr (#728802).
--------------------------------------------------------------------------------
================================================================================
libvpx-0.9.7-1.fc14 (FEDORA-2011-10623)
VP8 Video Codec SDK
--------------------------------------------------------------------------------
Update Information:
Update to libvpx 0.9.7
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Adam Jackson <ajax@xxxxxxxxxx> 0.9.7-1
- libvpx 0.9.7
* Mon Mar 21 2011 Dan Horák <dan[at]danny.cz> - 0.9.6-2
- add 2 symbols to the shared library for generic targets
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #651213 - CVE-2010-4203 libvpx: memory corruption flaw
https://bugzilla.redhat.com/show_bug.cgi?id=651213
--------------------------------------------------------------------------------
================================================================================
mhddfs-0.1.38-7.fc14 (FEDORA-2011-10608)
Fuse-based file system for unifying several mount points into one
--------------------------------------------------------------------------------
Update Information:
Added build flags
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #729475 - mhddfs 0.1.38-6 is not built with $RPM_OPT_FLAGS
https://bugzilla.redhat.com/show_bug.cgi?id=729475
--------------------------------------------------------------------------------
================================================================================
php-pear-Net-Sieve-1.3.2-1.fc14 (FEDORA-2011-10621)
Handles talking to a sieve server
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog Version 1.3.2 :
* Fix referrals if host data or user credentials are passed to connect() and login() instead of the constructor (Aleksander Machniak, Bug #17107).
Version 1.3.1:
* Query capabilities again after successful authentication (Jesse Crawford, Request #18382).
* Escape quotes and backslashes in script names, and use literal strings for script names with non-ASCII characters (Aleksander Machniak, Bug #16691).
* Work around broken STARTTLS behavior in Cyrus versions before 2.3.10 (Aleksander Machniak, Bug #18241).
* Improve string literal parsing (Aleksander Machniak, Bug #18228).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.3.2-1
- Version 1.3.2 (stable) - API 1.3.0 (stable)
* Sat Aug 6 2011 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.3.1-1
- Version 1.3.1 (stable) - API 1.3.0 (stable)
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
polyml-5.4.1-1.fc14 (FEDORA-2011-10611)
Poly/ML compiler and runtime system
--------------------------------------------------------------------------------
Update Information:
Upstream states that this is a bug-fix release, but does not specify the nature of the fixed bugs.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Jerry James <loganjerry@xxxxxxxxx> - 5.4.1-1
- New upstream release
* Fri Apr 29 2011 Dan Horák <dan[at]danny.cz> - 5.4-3
- updated the supported arch list
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
unbound-1.4.12-1.fc14 (FEDORA-2011-10624)
Validating, recursive, and caching DNS(SEC) resolver
--------------------------------------------------------------------------------
Update Information:
Updated to 1.4.12. Fixes for python server module. Faster response times
under high load by to disabling extra checking compile time option.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Paul Wouters <paul@xxxxxxxxxxxxx> - 1.4.12-1
- Updated to 1.4.12
- Updated stock unbound.conf for new options introduced
- Added pythonmod docs and examples
- Added ghost for /var/run/unbound (bz#656710)
- Fix for python module load in the server (Tom Hendrikx)
- No longer enable --enable-debug as it causes degraded performance
under load.
- Removed merged in CVE-2011-1922 patch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #656710 - Please Update Spec File to use %ghost on files in /var/run and /var/lock
https://bugzilla.redhat.com/show_bug.cgi?id=656710
--------------------------------------------------------------------------------
================================================================================
zabbix-1.8.6-1.fc14 (FEDORA-2011-10601)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
- update to 1.8.6
- upstream changelog at http://www.zabbix.com/rn1.8.6.php
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 9 2011 Dan Horák <dan[at]danny.cz> - 1.8.6-1
- updated to 1.8.6 (#729164, #729165)
- updated user/group adding scriptlet
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #729162 - zabbix: improper input sanitization leads to XSS
https://bugzilla.redhat.com/show_bug.cgi?id=729162
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
