The following Fedora 15 Security updates need testing: https://admin.fedoraproject.org/updates/qt-4.7.4-2.fc15 https://admin.fedoraproject.org/updates/cyrus-imapd-2.4.11-1.fc15 https://admin.fedoraproject.org/updates/foomatic-4.0.8-3.fc15 https://admin.fedoraproject.org/updates/rsyslog-5.8.5-1.fc15 https://admin.fedoraproject.org/updates/quassel-0.7.3-1.fc15 https://admin.fedoraproject.org/updates/cherokee-1.2.99-1.fc15 https://admin.fedoraproject.org/updates/opensaml-2.3-4.fc15 https://admin.fedoraproject.org/updates/phpMyAdmin-3.4.5-1.fc15 https://admin.fedoraproject.org/updates/openttd-1.1.3-1.fc15 The following Fedora 15 Critical Path updates have yet to be approved: https://admin.fedoraproject.org/updates/redhat-rpm-config-9.1.0-13.fc15 https://admin.fedoraproject.org/updates/curl-7.21.3-12.fc15 https://admin.fedoraproject.org/updates/rpm-4.9.1.1-2.fc15 https://admin.fedoraproject.org/updates/sendmail-8.14.5-2.fc15.1 https://admin.fedoraproject.org/updates/evolution-data-server-3.0.3-2.fc15 https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-5.fc15 https://admin.fedoraproject.org/updates/libxfce4util-4.8.2-1.fc15 https://admin.fedoraproject.org/updates/openldap-2.4.24-5.fc15 https://admin.fedoraproject.org/updates/grubby-7.0.16-5.fc15 https://admin.fedoraproject.org/updates/lldpad-0.9.41-4.fc15 https://admin.fedoraproject.org/updates/evolution-mapi-3.0.3-2.fc15,evolution-exchange-3.0.3-1.fc15,evolution-3.0.3-1.fc15,evolution-data-server-3.0.3-1.fc15,gtkhtml3-4.0.2-1.fc15 https://admin.fedoraproject.org/updates/livecd-tools-15.8-1.fc15 https://admin.fedoraproject.org/updates/gcc-4.6.1-9.fc15,libtool-2.4-6.fc15 https://admin.fedoraproject.org/updates/nspr-4.8.8-4.fc15 https://admin.fedoraproject.org/updates/nss-softokn-3.12.10-4.fc15 https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc15 https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-14.fc15.1 https://admin.fedoraproject.org/updates/libfprint-0.4.0-1.fc15,fprintd-0.4.1-1.fc15 The following builds have been pushed to Fedora 15 updates-testing amavisd-new-2.6.6-1.fc15 automaton-1.11r8-1.fc15 curl-7.21.3-12.fc15 dovecot-2.0.15-1.fc15 kde-plasma-networkmanagement-0.9-0.59.20110919git.nm09.fc15 lis-1.2.53-3.fc15 nut-2.6.2-1.fc15 openttd-1.1.3-1.fc15 perl-CGI-Emulate-PSGI-0.13-1.fc15 perl-DBIx-SearchBuilder-1.61-1.fc15 perl-Devel-CallChecker-0.003-1.fc15 perl-DynaLoader-Functions-0.000-1.fc15 perl-HTML-Selector-XPath-0.08-1.fc15 perl-HTTP-Server-Simple-Authen-0.04-1.fc15 perl-Number-Compare-0.02-1.fc15 php-channel-bartlett-1.3-1.fc15 redhat-rpm-config-9.1.0-13.fc15 rpm-4.9.1.1-2.fc15 rubygem-deltacloud-client-0.4.0-1.fc15 rubygem-test-unit-2.4.0-1.fc15 Details about builds: ================================================================================ amavisd-new-2.6.6-1.fc15 (FEDORA-2011-12964) Email filter with virus scanner and spamassassin support -------------------------------------------------------------------------------- Update Information: This update fixes various problems related to /var/run being moved to tmpfs in Fedora 15, as well as some other long-standing issues. -------------------------------------------------------------------------------- ChangeLog: * Sun Sep 18 2011 Steven Pritchard <steve@xxxxxxxxx> 2.6.6-1 - Update to 2.6.6. - Make /var/spool/amavisd g+x (BZ 548234). - %ghost /var/run/amavisd and add /etc/tmpfiles.d/amavisd-new-tmpfiles.conf (BZ 656544, 676430, 710984, 734271). - Also add /var/run/clamd.amavisd (which seems to be a bug itself). Fixes BZ 696725. -------------------------------------------------------------------------------- References: [ 1 ] Bug #548234 - Freshclam cannot notify clamd of database updates due to permission denied https://bugzilla.redhat.com/show_bug.cgi?id=548234 [ 2 ] Bug #656544 - Please Update Spec File to use %ghost on files in /var/run and /var/lock https://bugzilla.redhat.com/show_bug.cgi?id=656544 [ 3 ] Bug #676430 - amavisd-new does not work with systemd https://bugzilla.redhat.com/show_bug.cgi?id=676430 [ 4 ] Bug #710984 - clamd.amavisd does not start without manual intervention https://bugzilla.redhat.com/show_bug.cgi?id=710984 [ 5 ] Bug #734271 - Missing /etc/tmpfiles.d/amavisd.conf file https://bugzilla.redhat.com/show_bug.cgi?id=734271 [ 6 ] Bug #696725 - RPM doesn't create /var/run/amavisd https://bugzilla.redhat.com/show_bug.cgi?id=696725 -------------------------------------------------------------------------------- ================================================================================ automaton-1.11r8-1.fc15 (FEDORA-2011-12976) A Java finite state automata/regular expression library -------------------------------------------------------------------------------- Update Information: This updated introduces caching of isDebug, to avoid a synchronized call to System.getProperty(). -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Jerry James <loganjerry@xxxxxxxxx> - 1.11r8-1 - Upgrade to 1.11-8 - Drop clean at start of %install and %defattr - Update BuildRequires and Requires -------------------------------------------------------------------------------- ================================================================================ curl-7.21.3-12.fc15 (FEDORA-2011-12985) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: curl-config now provides dummy --static-libs option (#733956) -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Kamil Dudka <kdudka@xxxxxxxxxx> 7.21.3-12 - curl-config now provides dummy --static-libs option (#733956) - break busy loops in tests 502, 555, and 573 -------------------------------------------------------------------------------- References: [ 1 ] Bug #733956 - options of curl-config should be compatible with upstream https://bugzilla.redhat.com/show_bug.cgi?id=733956 -------------------------------------------------------------------------------- ================================================================================ dovecot-2.0.15-1.fc15 (FEDORA-2011-12987) Secure imap and pop3 server -------------------------------------------------------------------------------- Update Information: - dovecot updated to 2.0.15 - v2.0.14: Index reading could have eaten a lot of memory in some situations - mbox: Fixed crash during mail delivery when mailbox didn't yet have GUID assigned to it. - zlib+mbox: Fetching last message from compressed mailboxes crashed. - do not enable insecure connections by default - userdb extra fields can now return name+=value to append to an existing name - script-login attempted an unnecessary config lookup, which usually failed with "Permission denied". - lmtp: Fixed parsing quoted strings with spaces as local-part for MAIL FROM and RCPT TO. - imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not returned all data sometimes. - ldap: Fixed random assert-crashing with with sasl_bind=yes. - Fixes to handling mail chroots - Fixed renaming mailboxes under different parent with FS layout when using separate ALT, INDEX or CONTROL paths. - zlib: Fixed reading concatenated .gz files. - userdb extra fields can now return name+=value to append to an existing name - script-login attempted an unnecessary config lookup, which usually failed with "Permission denied". - lmtp: Fixed parsing quoted strings with spaces as local-part for MAIL FROM and RCPT TO. - imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not returned all data sometimes. - ldap: Fixed random assert-crashing with with sasl_bind=yes. - Fixes to handling mail chroots - Fixed renaming mailboxes under different parent with FS layout when using separate ALT, INDEX or CONTROL paths. - zlib: Fixed reading concatenated .gz files. - userdb extra fields can now return name+=value to append to an existing name - script-login attempted an unnecessary config lookup, which usually failed with "Permission denied". - lmtp: Fixed parsing quoted strings with spaces as local-part for MAIL FROM and RCPT TO. - imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not returned all data sometimes. - ldap: Fixed random assert-crashing with with sasl_bind=yes. - Fixes to handling mail chroots - Fixed renaming mailboxes under different parent with FS layout when using separate ALT, INDEX or CONTROL paths. - zlib: Fixed reading concatenated .gz files. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.15-1 - dovecot updated to 2.0.15 - v2.0.14: Index reading could have eaten a lot of memory in some situations - mbox: Fixed crash during mail delivery when mailbox didn't yet have GUID assigned to it. - zlib+mbox: Fetching last message from compressed mailboxes crashed. * Mon Aug 29 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.14-1 - dovecot updated to 2.0.14 - userdb extra fields can now return name+=value to append to an existing name - script-login attempted an unnecessary config lookup, which usually failed with "Permission denied". - lmtp: Fixed parsing quoted strings with spaces as local-part for MAIL FROM and RCPT TO. - imap: FETCH BODY[HEADER.FIELDS (..)] may have crashed or not returned all data sometimes. - ldap: Fixed random assert-crashing with with sasl_bind=yes. - Fixes to handling mail chroots - Fixed renaming mailboxes under different parent with FS layout when using separate ALT, INDEX or CONTROL paths. - zlib: Fixed reading concatenated .gz files. -------------------------------------------------------------------------------- References: [ 1 ] Bug #737416 - Upgrade to Fedora 15 enabled insecure login https://bugzilla.redhat.com/show_bug.cgi?id=737416 -------------------------------------------------------------------------------- ================================================================================ kde-plasma-networkmanagement-0.9-0.59.20110919git.nm09.fc15 (FEDORA-2011-12789) NetworkManager KDE 4 integration -------------------------------------------------------------------------------- Update Information: This update updates kde-plasma-networkmanagement to a newer snapshot, fixing many bugs, see: http://lamarque-lvs.blogspot.com/2011/09/plasma-nm-bugs-fixed-after-470.html A few other bugs were fixed between September 7 and 19, in particular: * connecting to PPPoE over wired Ethernet, as commonly used by (A)DSL ISPs (#605527) * OpenConnect VPN connections only worked once (kde#282282) It also enables support for OpenConnect (i.e. interoperability with Cisco AnyConnect VPNs), in a new kde-plasma-networkmanagement-openconnect subpackage. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 1:0.9-0.59.20110919git.nm09 - update to 20110919 snapshot (kde#282282 (OpenConnect), small UI improvements) * Sun Sep 18 2011 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 1:0.9-0.58.20110918git.nm09 - update to 20110918 snapshot, fixes #605527 (wired PPPoE) among other things * Wed Sep 7 2011 Lukas Tinkl <ltinkl@xxxxxxxxxx> - 1:0.9-0.57.20110907git.nm09 - update to current git nm09 snapshot, for details see: http://lamarque-lvs.blogspot.com/2011/09/plasma-nm-bugs-fixed-after-470.html - fix #605527: KNetworkManager can´t connect to DSL/PPPoE connection - fix #715459: KDE's wireless broken on secure AP w/ "hidden" setup - fix #715461: KDE's wireless broken on secure AP w/ manual entry * Sun Aug 28 2011 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 1:0.9-0.56.20110828git.nm09 - update to 20110828 snapshot, fixes kde#280913 (OpenConnect) among other things - bump minimum required NM version to 0.9.0 as required by the new snapshot * Fri Aug 26 2011 David Woodhouse <dwmw2@xxxxxxxxxxxxx> - 0.9-0.55.20110812git.nm09 - Build OpenConnect VPN support (#717250) -------------------------------------------------------------------------------- References: [ 1 ] Bug #717250 - OpenConnect VPN support missing https://bugzilla.redhat.com/show_bug.cgi?id=717250 [ 2 ] Bug #605527 - KNetworkManager can´t connect to DSL/PPPoE connection https://bugzilla.redhat.com/show_bug.cgi?id=605527 [ 3 ] Bug #715459 - KDE's wireless broken on secure AP w/ "hidden" setup https://bugzilla.redhat.com/show_bug.cgi?id=715459 [ 4 ] Bug #715461 - KDE's wireless broken on secure AP w/ manual entry https://bugzilla.redhat.com/show_bug.cgi?id=715461 -------------------------------------------------------------------------------- ================================================================================ lis-1.2.53-3.fc15 (FEDORA-2011-12991) A library for solving linear equations and eigenvalue problems -------------------------------------------------------------------------------- Update Information: First release in Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #737574 - Review Request: lis - A library for solving linear equations and eigenvalue problems https://bugzilla.redhat.com/show_bug.cgi?id=737574 -------------------------------------------------------------------------------- ================================================================================ nut-2.6.2-1.fc15 (FEDORA-2011-12978) Network UPS Tools -------------------------------------------------------------------------------- Update Information: - NUT can now monitor power supply units (PSU) in servers, through IPMI, using the new experimental 'nut-ipmipsu' driver. Users are encouraged to test it (only on Fedora 15 and newer). - NUT now provides a tool, called 'nut-scanner', to discover supported devices, both local and remote. nut-scanner will help to ease the configuration step, and power infrastructure discovery. A separate library, called 'libnutscan', is also available to provide these features. - support for new devices: Eaton 3S ; Cyber Power Systems CP1000AVRLCD ; various APC models equiped with APC AP9618 management card, including APC Smart-UPS RT XL ; Orvaldi 750 / 900SP ; POWEREX VI 1000 LED ; PowerWalker VI 850 LCD ; SVEN Power Pro+ series (USB ID ffff:0000). - A regression has been fixed in udev rules file. This previously caused permission issues to owners of some USB devices. - usbhid-ups has had Eaton completion: some features have been improved, such as 'output.voltage.nominal' ; 3S Eco control support has been added, along with battery.runtime.low and end of battery life (life cycle monitoring) support ; new measurements for 5 PX are also supported now (outlet power factor, power, real power and current). - apcsmart has been updated to support more variables and features ; the previous driver is however still available as 'apcsmart-old', in case of issues. - bcmxcp now supports per outlet startup and shutdown delays setting ; shutdown delay is also used, when available, for outlet.n.shutdown.return instead of the default 3 seconds. - snmp-ups.c has a new initialization method, that uses sysObjectID, which is a pointer to the prefered MIB of the device, to detect supported devices. This speeds up even more init stage and should render void the use of 'mib' option. SNMP v3 session initialisation has also been fixed, and Eaton PDU support has been completed. - Initial support has been added for systemd, the System and Service Manager -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 16 2011 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 2.6.2-1 - nut updated to 2.6.2 -------------------------------------------------------------------------------- ================================================================================ openttd-1.1.3-1.fc15 (FEDORA-2011-12981) Transport system simulation game -------------------------------------------------------------------------------- Update Information: This update fixes some crash issues which can have security implications. -------------------------------------------------------------------------------- ChangeLog: * Sun Sep 18 2011 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 1.1.3-1 - update to 1.1.3 - fixes CVE-2011-3341, CVE-2011-3342 and CVE-2011-3343 * Fri Sep 9 2011 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 1.1.2-2 - rebuild for new icu -------------------------------------------------------------------------------- References: [ 1 ] Bug #735841 - CVE-2011-3341 CVE-2011-3342 CVE-2011-3343 Security update available (in testing) for openttd https://bugzilla.redhat.com/show_bug.cgi?id=735841 -------------------------------------------------------------------------------- ================================================================================ perl-CGI-Emulate-PSGI-0.13-1.fc15 (FEDORA-2011-12989) PSGI adapter for CGI applications -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> 0.13-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-DBIx-SearchBuilder-1.61-1.fc15 (FEDORA-2011-12972) Encapsulate SQL queries and rows in simple perl objects -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.61-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-Devel-CallChecker-0.003-1.fc15 (FEDORA-2011-12982) Custom op checking attached to subroutines -------------------------------------------------------------------------------- Update Information: Function-oriented interface for dynamic loading. Needed for perl-smartmatch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #720327 - Review Request: perl-DynaLoader-Functions - Deconstructed dynamic C library loading https://bugzilla.redhat.com/show_bug.cgi?id=720327 [ 2 ] Bug #720333 - Review Request: perl-Devel-CallChecker - Custom op checking attached to subroutines https://bugzilla.redhat.com/show_bug.cgi?id=720333 -------------------------------------------------------------------------------- ================================================================================ perl-DynaLoader-Functions-0.000-1.fc15 (FEDORA-2011-12982) Deconstructed dynamic C library loading -------------------------------------------------------------------------------- Update Information: Function-oriented interface for dynamic loading. Needed for perl-smartmatch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #720327 - Review Request: perl-DynaLoader-Functions - Deconstructed dynamic C library loading https://bugzilla.redhat.com/show_bug.cgi?id=720327 [ 2 ] Bug #720333 - Review Request: perl-Devel-CallChecker - Custom op checking attached to subroutines https://bugzilla.redhat.com/show_bug.cgi?id=720333 -------------------------------------------------------------------------------- ================================================================================ perl-HTML-Selector-XPath-0.08-1.fc15 (FEDORA-2011-12992) CSS Selector to XPath compiler -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> 0.08-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-HTTP-Server-Simple-Authen-0.04-1.fc15 (FEDORA-2011-12980) Authentication plugin for HTTP::Server::Simple -------------------------------------------------------------------------------- Update Information: HTTP::Server::Simple::Authen is an HTTP::Server::Simple plugin to allow HTTP authentication. Authentication scheme is pluggable and you can use whatever Authentication protocol that Authen::Simple supports. -------------------------------------------------------------------------------- References: [ 1 ] Bug #739278 - Review Request: perl-HTTP-Server-Simple-Authen - Authentication plugin for HTTP::Server::Simple https://bugzilla.redhat.com/show_bug.cgi?id=739278 -------------------------------------------------------------------------------- ================================================================================ perl-Number-Compare-0.02-1.fc15 (FEDORA-2011-12979) Perl module for numeric comparisons -------------------------------------------------------------------------------- Update Information: c -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.02-1 - Upstream update. - Spec file cleanup. -------------------------------------------------------------------------------- ================================================================================ php-channel-bartlett-1.3-1.fc15 (FEDORA-2011-12973) Adds bartlett channel to PEAR -------------------------------------------------------------------------------- Update Information: This package adds the bartlett channel which allows PEAR packages from this channel to be installed. -------------------------------------------------------------------------------- References: [ 1 ] Bug #693198 - Review Request: php-channel-bartlett - Adds bartlett channel to PEAR https://bugzilla.redhat.com/show_bug.cgi?id=693198 -------------------------------------------------------------------------------- ================================================================================ redhat-rpm-config-9.1.0-13.fc15 (FEDORA-2011-12971) Red Hat specific rpm configuration files -------------------------------------------------------------------------------- Update Information: This update changes a few ARMv7 specific RPM macros to the defaults chosen for use by the Fedora ARM team. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Jon Masters <jcm@xxxxxxxxxx> - 9.1.0-13 - rework a patch we had been sitting on to fix F15 ARM hardfp bootstrap - redhat-rpm-config-9.1.0-arm.patch: do NOT make armv7hl default on v7 - redhat-rpm-config-9.1.0-arm.patch: disable Thumb on v7hl systems * Sat Jul 2 2011 Jon Masters <jcm@xxxxxxxxxxxxxx> - 9.1.0-12 - redhat-rpm-config-9.1.0-arm.patch: Make armv7hl default on all v7 ARM * Tue Jun 21 2011 Jens Petersen <petersen@xxxxxxxxxx> - 9.1.0-10 - revert last build since releng prefers exclusivearch here * Sat Jun 18 2011 Jens Petersen <petersen@xxxxxxxxxx> - 9.1.0-9 - replace ghc_archs with ghc_excluded_archs -------------------------------------------------------------------------------- References: [ 1 ] Bug #739636 - Fedora specific armv7hl (hardfp) configuration required for F15 HardFP Bootstrap https://bugzilla.redhat.com/show_bug.cgi?id=739636 -------------------------------------------------------------------------------- ================================================================================ rpm-4.9.1.1-2.fc15 (FEDORA-2011-12983) The RPM package management system -------------------------------------------------------------------------------- Update Information: This update fixes a signal handling regression causing DB_RUNRECOVERY errors on ctrl-C during database operations. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Panu Matilainen <pmatilai@xxxxxxxxxx> - 4.9.1.1-2 - fix signal blocking/unblocking regression on rpmdb open/close (#739492) -------------------------------------------------------------------------------- References: [ 1 ] Bug #739492 - error: rpmdb: Thread/process 15537/140084772542400 failed: Thread died in Berkeley DB library https://bugzilla.redhat.com/show_bug.cgi?id=739492 -------------------------------------------------------------------------------- ================================================================================ rubygem-deltacloud-client-0.4.0-1.fc15 (FEDORA-2011-12967) Deltacloud REST Client -------------------------------------------------------------------------------- Update Information: Version bump -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Michal Fojtik <mfojtik@xxxxxxxxxx> - 0.4.0-1 - Version bump - Added patch to fix incorrect hardware properties handling for architecture property -------------------------------------------------------------------------------- ================================================================================ rubygem-test-unit-2.4.0-1.fc15 (FEDORA-2011-12974) Improved version of Test::Unit bundled in Ruby 1.8.x -------------------------------------------------------------------------------- Update Information: New version 2.4.0 is released. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 19 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 2.4.0-1 - 2.4.0 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test