The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/avahi-0.6.27-8.fc14
https://admin.fedoraproject.org/updates/phpMyAdmin-3.4.4-1.fc14
https://admin.fedoraproject.org/updates/cups-1.4.8-2.fc14
https://admin.fedoraproject.org/updates/ecryptfs-utils-90-1.fc14
https://admin.fedoraproject.org/updates/freetype-2.4.2-5.fc14
https://admin.fedoraproject.org/updates/system-config-firewall-1.2.27-2.fc14
https://admin.fedoraproject.org/updates/libsndfile-1.0.25-1.fc14
https://admin.fedoraproject.org/updates/libcap-2.22-1.fc14
https://admin.fedoraproject.org/updates/libvpx-0.9.7.1-1.fc14
https://admin.fedoraproject.org/updates/rubygem-actionpack-2.3.8-4.fc14
https://admin.fedoraproject.org/updates/dhcp-4.2.0-23.P2.fc14
https://admin.fedoraproject.org/updates/php-5.3.8-1.fc14,maniadrive-1.2-32.fc14,php-eaccelerator-0.9.6.1-9.fc14
https://admin.fedoraproject.org/updates/libsoup-2.32.2-2.fc14
https://admin.fedoraproject.org/updates/rubygem-activesupport-2.3.8-4.fc14
https://admin.fedoraproject.org/updates/pidgin-2.10.0-1.fc14
https://admin.fedoraproject.org/updates/foomatic-4.0.8-3.fc14
https://admin.fedoraproject.org/updates/hplip-3.11.7-2.fc14
https://admin.fedoraproject.org/updates/tomcat6-6.0.26-21.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/avahi-0.6.27-8.fc14
https://admin.fedoraproject.org/updates/setup-2.8.28-2.fc14
https://admin.fedoraproject.org/updates/system-config-date-1.9.64-1.fc14
https://admin.fedoraproject.org/updates/curl-7.21.0-10.fc14
https://admin.fedoraproject.org/updates/audit-2.1.3-1.fc14
https://admin.fedoraproject.org/updates/system-config-users-1.2.110-1.fc14
https://admin.fedoraproject.org/updates/libcap-2.22-1.fc14
https://admin.fedoraproject.org/updates/ModemManager-0.4.998-1.git20110706.fc14
https://admin.fedoraproject.org/updates/unique-1.1.6-3.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-savage-2.3.2-3.fc14
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc14
https://admin.fedoraproject.org/updates/perl-5.12.4-146.fc14
https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-30.2.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-8.fc14.2
https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20101010git8c8f15c.fc14
https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
The following builds have been pushed to Fedora 14 updates-testing
389-ds-base-1.2.9.7-1.fc14
BackupPC-3.2.1-4.fc14
SDL-1.2.14-11.fc14
avahi-0.6.27-8.fc14
baekmuk-bdf-fonts-2.2-10.fc14
cluster-3.1.6-1.fc14
django-authopenid-1.0.1-2.fc14
esteid-browser-plugin-1.3.0-2.fc14
farsight2-0.0.22-1.fc14
fedora-easy-karma-0-0.15.20110825git36efb338.fc14
fpaste-0.3.7-1.fc14
indent-2.2.11-3.fc14
libmnl-1.0.1-4.fc14
libqxt-0.6.0-4.fc14
maniadrive-1.2-32.fc14
mfiler3-4.4.2-1.fc14
nagios-plugins-rhev-1.0.0-2.fc14
opendkim-2.4.2-3.fc14
openoffice.org-3.3.0-20.7.fc14
perl-Config-IniFiles-2.68-1.fc14
perl-Digest-Perl-MD5-1.8-2.fc14
perl-indirect-0.24-2.fc14
php-5.3.8-1.fc14
php-eaccelerator-0.9.6.1-9.fc14
php-libvirt-0.4.4-2.fc14
phpMyAdmin-3.4.4-1.fc14
pidgin-2.10.0-1.fc14
plowshare-0.9.4-0.12.20110816git.fc14
python-atfork-0.1.2-1.fc14
python-rhsm-0.96.10-1.fc14
python-signalfd-0.1-1.fc14
rgmanager-3.1.6-1.fc14
rubygem-actionpack-2.3.8-4.fc14
rubygem-activesupport-2.3.8-4.fc14
saphire-3.4.9-1.fc14
spamass-milter-0.3.2-3.fc14
teeworlds-0.6.1-1.fc14
traceroute-2.0.18-1.fc14
votca-csg-1.2.1-1.fc14
votca-tools-1.2.1-1.fc14
yagf-0.8.6-6.fc14
yourls-1.5-4.fc14
Details about builds:
================================================================================
389-ds-base-1.2.9.7-1.fc14 (FEDORA-2011-11568)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
a handful of bug fixes and a new feature to allow the server to start with an expired cert
Fixes for update, winsync, ruv/counters
Fix another coverity NULL deref in previous patch
Fix coverity NULL deref defect in 1.2.9.3
A few bug fixes
The 1.2.9.0 release - several bug fixes found during alpha testing
389-ds-base-1.2.9.a2 - several bug fixes - automember improvements
look for separate openldap ldif library
Split automember regex rules into separate entries
writing Inf file shows SchemaFile = ARRAY(0xhexnum)
add support for ldif files with changetype: add
Auto Membership
More Coverity fixes
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.7-1
- Bug 733103 - large targetattr list with syntax errors cause server to crash or hang
- Bug 633803 - passwordisglobalpolicy attribute brakes TLS chaining
- Bug 732541 - Ignore error 32 when adding automember config
- Bug 728592 - Allow ns-slapd to start with an invalid server cert
* Wed Aug 10 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.6-1
- Bug 728510 - Run dirsync after sending updates to AD
- Bug 729717 - Fatal error messages when syncing deletes from AD
- Bug 729369 - upgrade DB to upgrade from entrydn to entryrdn format is not working.
- Bug 729378 - delete user subtree container in AD + modify password in DS == DS crash
- Bug 723937 - Slapi_Counter API broken on 32-bit F15
- fixed again - separate tests for atomic ops and atomic bool cas
* Mon Aug 8 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.5-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
- Fix another coverity NULL deref in previous patch
* Thu Aug 4 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.4-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
- Fix coverity NULL deref in previous patch
* Wed Aug 3 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.3-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
- previous patch broke build on el5
* Wed Aug 3 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.2-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
* Tue Aug 2 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.1-2
- Bug 723937 - Slapi_Counter API broken on 32-bit F15
- fixed to use configure test for GCC provided 64-bit atomic functions
* Wed Jul 27 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.1-1
- Bug 663752 - Cert renewal for attrcrypt and encchangelog
- this was "re-fixed" due to a deadlock condition with cl2ldif task cancel
- Bug 725953 - Winsync: DS entries fail to sync to AD, if the User's CN entry contains a comma
- Bug 725743 - Make memberOf use PRMonitor for it's operation lock
- Bug 725542 - Instance upgrade fails when upgrading 389-ds-base package
- Bug 723937 - Slapi_Counter API broken on 32-bit F15
* Fri Jul 15 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9.0-1
- Bug 720059 - RDN with % can cause crashes or missing entries
- Bug 709468 - RSA Authentication Server timeouts when using simple paged results on RHDS 8.2.
- Bug 691313 - Need TLS/SSL error messages in repl status and errors log
- Bug 712855 - Directory Server 8.2 logs "Netscape Portable Runtime error -5961 (TCP connection reset by peer.)" to error log whereas Directory Server 8.1 did not
- Bug 713209 - Update sudo schema
- Bug 719069 - clean up compiler warnings in 389-ds-base 1.2.9
- Bug 718303 - Intensive updates on masters could break the consumer's cache
- Bug 711679 - unresponsive LDAP service when deleting vlv on replica
* Mon Jun 27 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9-0.2.a2
- 389-ds-base-1.2.9.a2
- look for separate openldap ldif library
- Split automember regex rules into separate entries
- writing Inf file shows SchemaFile = ARRAY(0xhexnum)
- add support for ldif files with changetype: add
- Bug 716980 - winsync uses old AD entry if new one not found
- Bug 697694 - rhds82 - incr update state stop_fatal_error "requires administrator action", with extop_result: 9
- bump console version to 1.2.6
- Bug 711679 - unresponsive LDAP service when deleting vlv on replica
- Bug 703703 - setup-ds-admin.pl asks for legal agreement to a non-existant file
- Bug 706209 - LEGAL: RHEL6.1 License issue for 389-ds-base package
- Bug 663752 - Cert renewal for attrcrypt and encchangelog
- Bug 706179 - DS can not restart after create a new objectClass has entryusn attribute
- Bug 711906 - ns-slapd segfaults using suffix referrals
- Bug 707384 - only allow FIPS approved cipher suites in FIPS mode
- Bug 710377 - Import with chain-on-update crashes ns-slapd
- Bug 709826 - Memory leak: when extra referrals configured
* Thu May 26 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.9-0.1.a1
- 389-ds-base-1.2.9.a1
- Auto Membership
- More Coverity fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #733103 - large targetattr list with syntax errors cause server to crash or hang
https://bugzilla.redhat.com/show_bug.cgi?id=733103
[ 2 ] Bug #633803 - passwordisglobalpolicy attribute brakes TLS chaining
https://bugzilla.redhat.com/show_bug.cgi?id=633803
[ 3 ] Bug #732541 - Ignore an error 32 in this case since we're adding a new AutoMember definition
https://bugzilla.redhat.com/show_bug.cgi?id=732541
[ 4 ] Bug #728592 - RFE: add option to allow server to start with an expired certificate
https://bugzilla.redhat.com/show_bug.cgi?id=728592
[ 5 ] Bug #728510 - WinSync: Renaming an user(which is synced from DS to AD) at AD is creating a new user at DS.
https://bugzilla.redhat.com/show_bug.cgi?id=728510
[ 6 ] Bug #729717 - Windows sync logs errors when a delete is synced from AD
https://bugzilla.redhat.com/show_bug.cgi?id=729717
--------------------------------------------------------------------------------
================================================================================
BackupPC-3.2.1-4.fc14 (FEDORA-2011-11616)
High-performance backup system
--------------------------------------------------------------------------------
Update Information:
- change macro conditionals to include tmpfiles.d support starting at
Fedora 15 (bz #730053)
- change install lines to preserve timestamps
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 12 2011 Bernard Johnson <bjohnson@xxxxxxxxxxxx> - 3.2.1-4
- change macro conditionals to include tmpfiles.d support starting at
Fedora 15 (bz #730053)
- change install lines to preserve timestamps
--------------------------------------------------------------------------------
================================================================================
SDL-1.2.14-11.fc14 (FEDORA-2011-11553)
A cross-platform multimedia library
--------------------------------------------------------------------------------
Update Information:
Fix grabbing input if window is not viewable by immediate return.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Aug 26 2011 Petr Pisar <ppisar@xxxxxxxxxx> - 1.2.14-11
- Don't block SDL_WM_GrabInput() if window is not viewable (bug #480065)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #480065 - SDL_WM_GrabInput() blocks if the window is not viewable - causes KVM to stall
https://bugzilla.redhat.com/show_bug.cgi?id=480065
--------------------------------------------------------------------------------
================================================================================
avahi-0.6.27-8.fc14 (FEDORA-2011-11588)
Local network service discovery
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2011-1002.
The MITRE CVE dictionary describes this issue as:
avahi-core/socket.c in avahi-daemon in Avahi before 0.6.29 allows remote attackers to cause a denial of service (infinite loop) via an empty mDNS (1) IPv4 or (2) IPv6 UDP packet to port 5353. NOTE: this vulnerability exists because of an incorrect fix for CVE-2010-2244.
Find out more about CVE-2011-1002 from the MITRE CVE dictionary and NIST NVD.
This also disables gtk3 support. Unfortunately gtk3 support in F14 is broken and Avahi cannot be compiled against it. Since gtk3 will not be fixed in F14 anymore and nobody uses it we instead disable it in Avahi.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 0.6.27-8
- Obsolete the gtk3 package, newer releases in F15+ will pull in fixed gtk3 packages by deps
* Tue Aug 23 2011 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 0.6.27-7
- Rebuild because Fix CVE-2011-1002 never made it as an update
* Wed Mar 9 2011 Lennart Poettering <lpoetter@xxxxxxxxxx> - 0.6.27-6
- Explicitly pass --disable-gtk3
* Wed Mar 9 2011 Lennart Poettering <lpoetter@xxxxxxxxxx> - 0.6.27-5
- Drop gtk3 support, since Gtk3 is not usable on F14
* Wed Mar 9 2011 Lennart Poettering <lpoetter@xxxxxxxxxx> - 0.6.27-4
- Fix CVE-2011-1002
* Wed Aug 4 2010 Lennart Poettering <lpoetter@xxxxxxxxxx> - 0.6.27-3
- convert from systemd-install to systemctl enable
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #667187 - CVE-2011-1002 avahi: daemon infinite loop triggered by an empty UDP packet (CVE-2010-2244 fix regression)
https://bugzilla.redhat.com/show_bug.cgi?id=667187
--------------------------------------------------------------------------------
================================================================================
baekmuk-bdf-fonts-2.2-10.fc14 (FEDORA-2011-11619)
Korean bitmap fonts
--------------------------------------------------------------------------------
Update Information:
fix fonts.alias for gulim20b
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Daiki Ueno <dueno@xxxxxxxxxx> - 2.2-10
- add baekmuk-bdf-fonts-fix-fonts-alias.patch (#733105)
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #733105 - broken alias line for -baekmuk-gulim-bold-r-normal--20-200-75-75-m-202-ksx1001.1998-0
https://bugzilla.redhat.com/show_bug.cgi?id=733105
--------------------------------------------------------------------------------
================================================================================
cluster-3.1.6-1.fc14 (FEDORA-2011-11622)
Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:
This update addresses a few minor issues and align cman features with corosync 1.4.1 redundant ring support
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Fabio M. Di Nitto <fdinitto@xxxxxxxxxx> - 3.1.6-1
- new upstream release
* Thu Jul 21 2011 Petr Sabata <contyk@xxxxxxxxxx> - 3.1.5-3
- Perl mass rebuild
* Wed Jul 20 2011 Petr Sabata <contyk@xxxxxxxxxx> - 3.1.5-2
- Perl mass rebuild
--------------------------------------------------------------------------------
================================================================================
django-authopenid-1.0.1-2.fc14 (FEDORA-2011-11536)
Openid authentification application for Django
--------------------------------------------------------------------------------
Update Information:
* Initial bodhi push
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 18 2011 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 1.0.1-2
- use pypi sources
* Wed Aug 17 2011 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 1.0.1-1
- repackage to unretire
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #731455 - Review Request: django-authopenid - Django application to integrate Django authentication system with OpenID
https://bugzilla.redhat.com/show_bug.cgi?id=731455
--------------------------------------------------------------------------------
================================================================================
esteid-browser-plugin-1.3.0-2.fc14 (FEDORA-2011-11604)
Estonian ID card digital signing browser plugin
--------------------------------------------------------------------------------
Update Information:
esteid-browser-plugin is cross-browser plugin exposing Estonian eID card's digital signing functions in JavaScript. Digital signing is a common operation on Estonian electronic bank sites. To protect privacy, the plugin only allows access for web sites in an editable whitelist.
--------------------------------------------------------------------------------
================================================================================
farsight2-0.0.22-1.fc14 (FEDORA-2011-11587)
Libraries for videoconferencing
--------------------------------------------------------------------------------
Update Information:
Minor 0.0.22 update to fix FTBFS on x86 and ARM
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 1 2010 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.0.22-1
- Update to 0.0.22.
- Add shm-transmitter plugin to files.
- Drop clean section and buildroot. No longer needed.
- Bump min requires for pyobject2 & glib2.
--------------------------------------------------------------------------------
================================================================================
fedora-easy-karma-0-0.15.20110825git36efb338.fc14 (FEDORA-2011-11631)
Fedora update feedback made easy
--------------------------------------------------------------------------------
Update Information:
* improve ignore support
* handle CTRL-C
* store ignored updates when exiting because of CTRL-D
- Allow to ignore updates
* Display URLs of test cases for updates
* Show critpath information for updates
* Fix referenced bug
This is a new package.
* Display URLs of test cases for updates
* Show critpath information for updates
* Fix referenced bug
This is a new package.
* Display URLs of test cases for updates
* Show critpath information for updates
* Fix referenced bug
This is a new package.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Till Maas <opensource@xxxxxxxxx> - 0-0.15.20110825git36efb338
- Update to new release
* Wed Aug 24 2011 Till Maas <opensource@xxxxxxxxx> - 0-0.14.20110824gitb3e2f900
- Update to new release
* Tue Aug 23 2011 Till Maas <opensource@xxxxxxxxx> - 0-0.13.20110823gitb0706146
- Update to new release
- Fix Red Hat Bug #732610
* Fri Aug 19 2011 Till Maas <opensource@xxxxxxxxx> - 0-0.12.20110819gitadba3055
- Update to new release
- Fix Red Hat Bug #718446
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.11.20101123gitf70e9b6d
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732610 - RFE: some way to tell fedora-easy-karma to not show an update when run again
https://bugzilla.redhat.com/show_bug.cgi?id=732610
[ 2 ] Bug #718446 - [abrt] fedora-easy-karma-0-0.11.20101123gitf70e9b6d.fc15: fedora-easy-karma:281:__init__:IOError: [Errno 2] No such file or directory: '/home/eduardo/.fedora-easy-karma/bodhi-cache-F15.cpickle'
https://bugzilla.redhat.com/show_bug.cgi?id=718446
[ 3 ] Bug #637349 - [abrt] fedora-easy-karma-0-0.7.20100709git561718c8.fc14: fedora-easy-karma:420:wrap_paragraphs_prefix:IndexError: list index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=637349
[ 4 ] Bug #730427 - make build available for epel6
https://bugzilla.redhat.com/show_bug.cgi?id=730427
--------------------------------------------------------------------------------
================================================================================
fpaste-0.3.7-1.fc14 (FEDORA-2011-11606)
A simple tool for pasting info onto fpaste.org
--------------------------------------------------------------------------------
Update Information:
* Update to latest release 0.3.7 - 20110823
* Replace fpaste.org url literal with FPASTE_URL for fpaste-server
* Hide the now-misleading 'paste too large' 500 server error
* Fix URLError
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 0.3.7-1
- Update to latest upstream release
--------------------------------------------------------------------------------
================================================================================
indent-2.2.11-3.fc14 (FEDORA-2011-11632)
A GNU program for formatting C code
--------------------------------------------------------------------------------
Update Information:
Recognize decimal float suffixes to stick them with number
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Petr Pisar <ppisar@xxxxxxxxxx> - 2.2.11-3
- Fix decimal float constant suffixes (bug #733051)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #733051 - Decimal float constant suffixes are incorrectly separated
https://bugzilla.redhat.com/show_bug.cgi?id=733051
--------------------------------------------------------------------------------
================================================================================
libmnl-1.0.1-4.fc14 (FEDORA-2011-11626)
A minimalistic Netlink library
--------------------------------------------------------------------------------
Update Information:
libmnl - A minimalistic Netlink library
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732159 - Review Request: libmnl - A minimalistic Netlink library
https://bugzilla.redhat.com/show_bug.cgi?id=732159
--------------------------------------------------------------------------------
================================================================================
libqxt-0.6.0-4.fc14 (FEDORA-2011-11628)
Qt extension library
--------------------------------------------------------------------------------
Update Information:
Fix wrong header includes in libqxtnetwork.h
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Orcan Ogetbil <oget[dot]fedora[at]gmail[dot]com> - 0.6.0-4
- Fix wrong includes RHBZ#733222
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #733222 - libqxt-devel package is broken
https://bugzilla.redhat.com/show_bug.cgi?id=733222
--------------------------------------------------------------------------------
================================================================================
maniadrive-1.2-32.fc14 (FEDORA-2011-11537)
3D stunt driving game
--------------------------------------------------------------------------------
Update Information:
Security Enhancements and Fixes:
* Updated crypt_blowfish to 1.2. (CVE-2011-2483)
* Fixed crash in error_log(). Reported by Mateusz Kocielski
* Fixed buffer overflow on overlog salt in crypt().
* Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload filename). Reported by Krzysztof Kotowicz. (CVE-2011-2202)
* Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
* Fixed bug #54238 (use-after-free in substr_replace()). (CVE-2011-1148)
Upstream announce for 5.3.8: http://www.php.net/archive/2011.php#id2011-08-23-1
Upstream announce for 5.3.7: http://www.php.net/archive/2011.php#id2011-08-18-1
Full Changelog: http://www.php.net/ChangeLog-5.php#5.3.8
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.2-32
- rebuild against PHP 5.3.8
* Fri Aug 19 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.2-31
- rebuild against PHP 5.3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732516 - CVE-2011-3182 PHP multiple NULL pointer dereferences
https://bugzilla.redhat.com/show_bug.cgi?id=732516
[ 2 ] Bug #715025 - CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows different password pairs to produce the same hash
https://bugzilla.redhat.com/show_bug.cgi?id=715025
[ 3 ] Bug #713194 - CVE-2011-2202 php: file path injection vulnerability in RFC1867 file upload filename
https://bugzilla.redhat.com/show_bug.cgi?id=713194
[ 4 ] Bug #709067 - CVE-2011-1938 php: stack-based buffer overflow in socket_connect()
https://bugzilla.redhat.com/show_bug.cgi?id=709067
[ 5 ] Bug #688958 - CVE-2011-1148 php: use-after-free vulnerability in substr_replace()
https://bugzilla.redhat.com/show_bug.cgi?id=688958
--------------------------------------------------------------------------------
================================================================================
mfiler3-4.4.2-1.fc14 (FEDORA-2011-11570)
Two pane file manager under UNIX console
--------------------------------------------------------------------------------
Update Information:
New version 4.4.2 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 4.4.2-1
- 4.4.2
* Sun Aug 21 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 4.4.1-3
- Rebuild against new saphire
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-rhev-1.0.0-2.fc14 (FEDORA-2011-11610)
Nagios Plugin - check_rhev
--------------------------------------------------------------------------------
Update Information:
Nagios Plugin to rhev
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #730888 - Review Request: nagios-plugins-rhev - Nagios Plugin to monitor RHEV
https://bugzilla.redhat.com/show_bug.cgi?id=730888
--------------------------------------------------------------------------------
================================================================================
opendkim-2.4.2-3.fc14 (FEDORA-2011-11573)
DomainKeys Identified Mail (DKIM) Signature milter and library
--------------------------------------------------------------------------------
Update Information:
OpenDKIM is a DomainKeys Identified Mail (DKIM) Signature milter and library that implements the DKIM service for Sendmail, Postfix, or any other MTA that supports the milter protocol.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #731898 - Review Request: opendkim - DKIM library and milter
https://bugzilla.redhat.com/show_bug.cgi?id=731898
--------------------------------------------------------------------------------
================================================================================
openoffice.org-3.3.0-20.7.fc14 (FEDORA-2011-11597)
OpenOffice.org comprehensive office suite
--------------------------------------------------------------------------------
Update Information:
Update for commonly reported crashes
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 8 2011 Caolán McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-20.7
- Related: rhbz#702833 addEventListener without removeEventListener
- Resolves: rhbz#693265 fix crash from unhandled exception
- Resolves: rhbz#697176 framework crash in dock restoration
- Resolves: rhbz#667082 do not crash importing section containing just
an empty paragraph (dtardon)
- Resolves: rhbz#728945 unable to export into XHTML/HTML (dtardon)
- Resolves: rhbz#657783 dead ViewShell, possibly on selection
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #702833 - [abrt] openoffice.org-writer-1:3.3.0-20.5.fc14: gcc3::raiseException: Process /usr/lib64/openoffice.org3/program/swriter.bin was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=702833
[ 2 ] Bug #693265 - [abrt] openoffice.org-writer-1:3.3.0-20.2.fc14: unhandled exception in graphic swapin (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=693265
[ 3 ] Bug #697176 - [abrt] openoffice.org-brand-1:3.3.0-20.5.fc14: implts_setDockingAreaWindowSizes killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=697176
[ 4 ] Bug #667082 - [abrt] openoffice.org-writer-1:3.3.0-18.2.fc14: SwXTextSection::attach: Process /usr/lib64/openoffice.org3/program/swriter.bin was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=667082
[ 5 ] Bug #728945 - unable to export in XHTML/HTML
https://bugzilla.redhat.com/show_bug.cgi?id=728945
--------------------------------------------------------------------------------
================================================================================
perl-Config-IniFiles-2.68-1.fc14 (FEDORA-2011-11585)
A module for reading .ini-style configuration files
--------------------------------------------------------------------------------
Update Information:
Update to 2.68, fixes many bugs (especially in EPEL branches).
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.68-1
- update to 2.68
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 2.58-5
- Perl mass rebuild
* Thu Jun 9 2011 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 2.58-4
- Perl 5.14 mass rebuild
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.58-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Wed Dec 15 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 2.58-2
- 661697 rebuild for fixing problems with vendorach/lib
--------------------------------------------------------------------------------
================================================================================
perl-Digest-Perl-MD5-1.8-2.fc14 (FEDORA-2011-11602)
Perl implementation of Ron Rivest's MD5 Algorithm
--------------------------------------------------------------------------------
Update Information:
This is the first Fedora/EPEL release of perl-Digest-Perl-MD5.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732484 - Review Request: perl-Digest-Perl-MD5 - Perl implementation of Ron Rivest's MD5 Algorithm
https://bugzilla.redhat.com/show_bug.cgi?id=732484
--------------------------------------------------------------------------------
================================================================================
perl-indirect-0.24-2.fc14 (FEDORA-2011-11609)
Lexically warn about using the indirect object syntax
--------------------------------------------------------------------------------
Update Information:
New package - perl-indirect
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #730069 - Review Request: perl-indirect - Lexically warn about using the indirect object syntax
https://bugzilla.redhat.com/show_bug.cgi?id=730069
--------------------------------------------------------------------------------
================================================================================
php-5.3.8-1.fc14 (FEDORA-2011-11537)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
Security Enhancements and Fixes:
* Updated crypt_blowfish to 1.2. (CVE-2011-2483)
* Fixed crash in error_log(). Reported by Mateusz Kocielski
* Fixed buffer overflow on overlog salt in crypt().
* Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload filename). Reported by Krzysztof Kotowicz. (CVE-2011-2202)
* Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
* Fixed bug #54238 (use-after-free in substr_replace()). (CVE-2011-1148)
Upstream announce for 5.3.8: http://www.php.net/archive/2011.php#id2011-08-23-1
Upstream announce for 5.3.7: http://www.php.net/archive/2011.php#id2011-08-18-1
Full Changelog: http://www.php.net/ChangeLog-5.php#5.3.8
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.3.8-1
- update to 5.3.8
http://www.php.net/ChangeLog-5.php#5.3.8
* Thu Aug 18 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.3.7-1
- update to 5.3.7
http://www.php.net/ChangeLog-5.php#5.3.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732516 - CVE-2011-3182 PHP multiple NULL pointer dereferences
https://bugzilla.redhat.com/show_bug.cgi?id=732516
[ 2 ] Bug #715025 - CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows different password pairs to produce the same hash
https://bugzilla.redhat.com/show_bug.cgi?id=715025
[ 3 ] Bug #713194 - CVE-2011-2202 php: file path injection vulnerability in RFC1867 file upload filename
https://bugzilla.redhat.com/show_bug.cgi?id=713194
[ 4 ] Bug #709067 - CVE-2011-1938 php: stack-based buffer overflow in socket_connect()
https://bugzilla.redhat.com/show_bug.cgi?id=709067
[ 5 ] Bug #688958 - CVE-2011-1148 php: use-after-free vulnerability in substr_replace()
https://bugzilla.redhat.com/show_bug.cgi?id=688958
--------------------------------------------------------------------------------
================================================================================
php-eaccelerator-0.9.6.1-9.fc14 (FEDORA-2011-11537)
PHP accelerator, optimizer, encoder and dynamic content cacher
--------------------------------------------------------------------------------
Update Information:
Security Enhancements and Fixes:
* Updated crypt_blowfish to 1.2. (CVE-2011-2483)
* Fixed crash in error_log(). Reported by Mateusz Kocielski
* Fixed buffer overflow on overlog salt in crypt().
* Fixed bug #54939 (File path injection vulnerability in RFC1867 File upload filename). Reported by Krzysztof Kotowicz. (CVE-2011-2202)
* Fixed stack buffer overflow in socket_connect(). (CVE-2011-1938)
* Fixed bug #54238 (use-after-free in substr_replace()). (CVE-2011-1148)
Upstream announce for 5.3.8: http://www.php.net/archive/2011.php#id2011-08-23-1
Upstream announce for 5.3.7: http://www.php.net/archive/2011.php#id2011-08-18-1
Full Changelog: http://www.php.net/ChangeLog-5.php#5.3.8
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1:0.9.6.1-9
- rebuild against PHP 5.3.8
* Thu Aug 18 2011 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1:0.9.6.1-8
- rebuild against PHP 5.3.7
- add filter (to avoid private-shared-object-provides)
* Wed Jul 13 2011 Matthias Saou <http://freshrpms.net/> 1:0.9.6.1-7
- Add missing tmpwatch requirement (#711236).
- Stop using macros for simple commands, following recent guidelines changes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732516 - CVE-2011-3182 PHP multiple NULL pointer dereferences
https://bugzilla.redhat.com/show_bug.cgi?id=732516
[ 2 ] Bug #715025 - CVE-2011-2483 crypt_blowfish: 8-bit character mishandling allows different password pairs to produce the same hash
https://bugzilla.redhat.com/show_bug.cgi?id=715025
[ 3 ] Bug #713194 - CVE-2011-2202 php: file path injection vulnerability in RFC1867 file upload filename
https://bugzilla.redhat.com/show_bug.cgi?id=713194
[ 4 ] Bug #709067 - CVE-2011-1938 php: stack-based buffer overflow in socket_connect()
https://bugzilla.redhat.com/show_bug.cgi?id=709067
[ 5 ] Bug #688958 - CVE-2011-1148 php: use-after-free vulnerability in substr_replace()
https://bugzilla.redhat.com/show_bug.cgi?id=688958
--------------------------------------------------------------------------------
================================================================================
php-libvirt-0.4.4-2.fc14 (FEDORA-2011-11580)
PHP language binding for Libvirt
--------------------------------------------------------------------------------
Update Information:
Fix for debuginfo package
Update 0.4.4
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 22 2011 Michal Novotny <minovotn@xxxxxxxxxx> - 0.4.4
- Several bugfixes for VNC and updated SPEC file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732800 - php-libvirt-debuginfo 0.4.4-1 is empty, *.so unstripped
https://bugzilla.redhat.com/show_bug.cgi?id=732800
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-3.4.4-1.fc14 (FEDORA-2011-11594)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
Changes for 3.4.4.0 (2011-08-24):
- [parser] SQL parser breaks AJAX requests if query has unclosed quotes
- [parser] Invalid escape sequence in SQL parser
- [config] $cfg['Export']['asfile'] set to false does not select as Text option
- [export] Working SQL query exports error page
- [interface] "Create an index on X columns" form not validated
- [interface] JS error in Table->Structure->Index->Edit
- [interface] Info message has "error" class
- [interface] TABbing through a NULL field in the inline mode resets NULL
- [various] remove version number in /setup
- [usability] Missing "Generate Password" button
- [display] Missing Server Parameter on inline sql query
- [navi] Drop field -> lost active table
- [various] remove misleading comment on the "Rename database" interface
- [interface] Fix footnote for inexact count while browsing
- [interface] Fix security warning link in setup
- [display] Backquotes in normal text on import page
- [core] With Suhosin, urls are too long in edit links
- [security] Missing sanitization on the table, column and index names leads to XSS vulnerabilities, see PMASA-2011-13 (http://www.phpmyadmin.net/home_page/security/PMASA-2011-13.php)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.4.4-1
- Upgrade to 3.4.4 (#733475, #733477, #733480)
* Tue Jul 26 2011 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.4.3.2-2
- Disabled the warning for missing internal database relation
- Reworked spec file to build phpMyAdmin3 for RHEL 5 (#725885)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #733475 - CVE-2011-3181 phpMyAdmin XSS flaw
https://bugzilla.redhat.com/show_bug.cgi?id=733475
--------------------------------------------------------------------------------
================================================================================
pidgin-2.10.0-1.fc14 (FEDORA-2011-11595)
A Gtk+ based multiprotocol instant messaging client
--------------------------------------------------------------------------------
Update Information:
New release 2.10.0
Full Upstream ChangeLog:
http://developer.pidgin.im/wiki/ChangeLog
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 21 2011 Stu Tomlinson <stu@xxxxxxxxxxxxx> 2.10.0-1
- 2.10.0
- Link against system libgadu instead of using internal copy (#713888)
* Tue Aug 16 2011 Milan Crha <mcrha@xxxxxxxxxx> 2.9.0-3
- Rebuild against newer evolution-data-server
* Thu Jul 21 2011 Petr Sabata <contyk@xxxxxxxxxx> - 2.9.0-2
- Perl mass rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #732405 - CVE-2011-3184 pidgin: Remote crash in MSN protocol plugin
https://bugzilla.redhat.com/show_bug.cgi?id=732405
--------------------------------------------------------------------------------
================================================================================
plowshare-0.9.4-0.12.20110816git.fc14 (FEDORA-2011-11613)
Download and upload files from file-sharing websites
--------------------------------------------------------------------------------
Update Information:
New upstream snapshot.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 17 2011 Elder Marco <eldermarco@xxxxxxxxxxxxxxxxx> - 0.9.4-0.12.20110816git
- Update to new upstream snapshot
- Add Brazilian Portuguese Translation (summary and description)
- New file from upstream: plowshare.completion
- Upstream is now using git instead of svn
--------------------------------------------------------------------------------
================================================================================
python-atfork-0.1.2-1.fc14 (FEDORA-2011-11592)
Provides an API to register callbacks when forking
--------------------------------------------------------------------------------
Update Information:
Atfork provides a pthread_atfork() work-a-like API for Python 2.4, 2.5 and 2.6 along with fixers to monkey patch standard library modules at run time to be safe in programs using both threading and forking.
--------------------------------------------------------------------------------
================================================================================
python-rhsm-0.96.10-1.fc14 (FEDORA-2011-11533)
A Python library to communicate with a Red Hat Unified Entitlement Platform
--------------------------------------------------------------------------------
Update Information:
Small new features and bug fixes:
- Submit a Content-Length when body of request is empty.
- Support installed products when registering.
- Add ability to update a consumer's installed products list.
- Support for new bind method
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Devan Goodwin <dgoodwin@xxxxxxxx> 0.96.10-1
- Submit a Content-Length when body of request is empty. (dgoodwin@xxxxxxxxxx)
- Support installed products when registering. (dgoodwin@xxxxxxxxxx)
- Add ability to update a consumer's installed products list.
(dgoodwin@xxxxxxxxxx)
- Support for new bind method (cduryee@xxxxxxxxxx)
* Wed Aug 17 2011 James Bowes <jbowes@xxxxxxxxxx> 0.96.9-1
- self.sanitize, and add support for quote_plus. (cduryee@xxxxxxxxxx)
- Enhance the insecure mode to not do peer checks. (bkearney@xxxxxxxxxx)
- Wrap urllib.quote in a helper method to cast int to str as needed.
(cduryee@xxxxxxxxxx)
- 728266: Unsubscribe from subscription manager GUI is broken
(cduryee@xxxxxxxxxx)
- Remove quantity for bind by product. (dgoodwin@xxxxxxxxxx)
--------------------------------------------------------------------------------
================================================================================
python-signalfd-0.1-1.fc14 (FEDORA-2011-11562)
Python bindings to the Linux signalfd library/system call
--------------------------------------------------------------------------------
Update Information:
The python-signalfd package is a simple wrapper around the POSIX sigprocmask(2) and the Linux signalfd(2) platform APIs, providing very direct access to them.
--------------------------------------------------------------------------------
================================================================================
rgmanager-3.1.6-1.fc14 (FEDORA-2011-11622)
Open Source HA Resource Group Failover for Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:
This update addresses a few minor issues and align cman features with corosync 1.4.1 redundant ring support
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Fabio M. Di Nitto <fdinitto@xxxxxxxxxx> - 3.1.6-1
- new upstream release
--------------------------------------------------------------------------------
================================================================================
rubygem-actionpack-2.3.8-4.fc14 (FEDORA-2011-11567)
Web-flow and rendering framework putting the VC in MVC
--------------------------------------------------------------------------------
Update Information:
fixes for BZs #731436, #732156
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Mo Morsi <mmorsi@xxxxxxxxxx> - 1:2.3.8-4
- Fixed BZs #731436 and #732156
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #731436 - rubygem-actionpack: XSS vulnerability in strip_tags helper (Ruby on Rails)
https://bugzilla.redhat.com/show_bug.cgi?id=731436
[ 2 ] Bug #732156 - rubygem-actionpack: response splitting flaw
https://bugzilla.redhat.com/show_bug.cgi?id=732156
--------------------------------------------------------------------------------
================================================================================
rubygem-activesupport-2.3.8-4.fc14 (FEDORA-2011-11600)
Support and utility classes used by the Rails framework
--------------------------------------------------------------------------------
Update Information:
fix for BZ #731435
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 23 2011 Mo Morsi <mmorsi@xxxxxxxxxx> - 1:2.3.8-4
- included fix for BZ #731435
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #731435 - rubygem-activesupport: XSS vulnerability in escaping function (Ruby on Rails)
https://bugzilla.redhat.com/show_bug.cgi?id=731435
--------------------------------------------------------------------------------
================================================================================
saphire-3.4.9-1.fc14 (FEDORA-2011-11564)
Yet another shell
--------------------------------------------------------------------------------
Update Information:
New version 3.4.9 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 3.4.7-1
- 3.4.7
* Sat Aug 20 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 3.4.5-1
- 3.4.5
--------------------------------------------------------------------------------
================================================================================
spamass-milter-0.3.2-3.fc14 (FEDORA-2011-11571)
Milter (mail filter) for spamassassin
--------------------------------------------------------------------------------
Update Information:
This change is to help systems with Postfix handle mail from authenticated users better.
Postfix doesn't support Sendmail's {auth_ssf} macro and this was causing the milter not to give any indication to SpamAssassin that mail from an authenticated user was trusted; the update enhances the milter to use the {auth_authen} macro (supported by both Postfix and Sendmail) to identify authenticated users to SpamAssassin, which then treats the mail as being from a trusted source.
Of course the -I option (off by default) can still be used to get the milter to accept mail from authenticated users straight away without passing it through SpamAssassin if preferred.
The update also drops the wrapper script that restarts the milter if it crashes; the wrapper hasn't been necessary since version 0.3.1 when its reliability improved significantly.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 18 2011 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.2-3
- Help for users authenticating to Postfix (#730308)
* Mon Jul 18 2011 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.2-2
- Drop the wrapper, which hasn't been needed since 0.3.1 was released
- Nobody else likes macros for commands
* Tue Feb 15 2011 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.2-1
- Update to 0.3.2 (upstream fix for popen unsanitized input vulnerability:
CVE-2010-1132, #572117, #572119, http://savannah.nongnu.org/bugs/?29136)
- Drop popen patch, now upstream
- Rework syntax, rcvd and bits patches to apply against new codebase
* Tue Nov 30 2010 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.1-24
- Require systemd-units for ownership of /etc/tmpfiles.d directory
- Add Default-Stop LSB keyword in initscript
* Fri Nov 26 2010 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.1-23
- Make sure /var/run/spamass-milter and /var/run/spamass-milter/postfix exist
at boot time for systems with /var/run on tmpfs (#656692)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #730308 - spamass-milter does not detect Postfix authenticated mail
https://bugzilla.redhat.com/show_bug.cgi?id=730308
--------------------------------------------------------------------------------
================================================================================
teeworlds-0.6.1-1.fc14 (FEDORA-2011-11591)
Online multi-player platform 2D shooter
--------------------------------------------------------------------------------
Update Information:
New upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 22 2011 Jon Ciesla <limb@xxxxxxxxxxxx> - 0.6.1-1
- New upstream release
* Tue Apr 26 2011 Jon Ciesla <limb@xxxxxxxxxxxx> - 0.6.0-1
- New upstream release
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #701197 - Teeworlds update
https://bugzilla.redhat.com/show_bug.cgi?id=701197
--------------------------------------------------------------------------------
================================================================================
traceroute-2.0.18-1.fc14 (FEDORA-2011-11539)
Traces the route taken by packets over an IPv4/IPv6 network
--------------------------------------------------------------------------------
Update Information:
Update to 2.0.18
Now, if kernel supports it, unprivileged users may perform
ICMP tracerouting without any special rights of the executable
(neither setuid bits nor cap_net_raw settings). It is allowed
if any group of a user matches sysctl range of "net/ipv4/ping_group_range"
(modifiable by sysadmins).
Current kernels (2.6.40 or 3.0) implement it for IPv4 only.
See traceroute(8) for more info.
Fix determination of system "ecn" settings for tcp tracerouting
(which was changed since the kernel 2.6.31).
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 24 2011 Dmitry Butskoy <Dmitry@xxxxxxxxxxxx> - 3:2.0.18-1
- update to 2.0.18 (make possible to use unprivileged icmp echo sockets)
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3:2.0.17-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Dec 14 2010 Dmitry Butskoy <Dmitry@xxxxxxxxxxxx> - 3:2.0.17-1
- update to 2.0.17 (makes possible to use Linux capabilities)
--------------------------------------------------------------------------------
================================================================================
votca-csg-1.2.1-1.fc14 (FEDORA-2011-11596)
VOTCA coarse-graining engine
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.1 by request of upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.2.1-1
- Update to 1.2.1.
* Sat Jul 23 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1-3
- Bump spec due to new boost.
* Thu Apr 7 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1-2
- Bump spec due to boost upgrade.
--------------------------------------------------------------------------------
================================================================================
votca-tools-1.2.1-1.fc14 (FEDORA-2011-11596)
VOTCA tools library
--------------------------------------------------------------------------------
Update Information:
Update to 1.2.1 by request of upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Aug 25 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.2.1-1
- Update to 1.2.1.
* Fri Jul 22 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1-3
- Bump spec due to new boost.
* Wed Apr 6 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1-2
- Bump spec due to Boost upgrade.
--------------------------------------------------------------------------------
================================================================================
yagf-0.8.6-6.fc14 (FEDORA-2011-11565)
Graphical front-end for cuneiform
--------------------------------------------------------------------------------
Update Information:
YAGF is a graphical interface for the cuneiform text recognition program. With YAGF you can scan images via XSane, perform images preprocessing and recognize texts using cuneiform from a single
command center. YAGF also makes it easy to scan and recognize several images sequentially.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693950 - Review Request: yagf - Graphical front-end for cuneiform
https://bugzilla.redhat.com/show_bug.cgi?id=693950
--------------------------------------------------------------------------------
================================================================================
yourls-1.5-4.fc14 (FEDORA-2011-11575)
Your Own URL Shortener
--------------------------------------------------------------------------------
Update Information:
YOURLS is a small set of PHP scripts that will allow you to run your own URL
shortening service (a la TinyURL). You can make it private or public,
you can pick custom keyword URLs, it comes with its own API.
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
