Fedora 14 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 14 Security updates need testing:

    https://admin.fedoraproject.org/updates/rpm-4.8.1-7.fc14
    https://admin.fedoraproject.org/updates/quagga-0.99.20-1.fc14
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.5.92-1.git20110927.fc14
    https://admin.fedoraproject.org/updates/bcfg2-1.1.3-1.fc14
    https://admin.fedoraproject.org/updates/tomcat6-6.0.26-27.fc14
    https://admin.fedoraproject.org/updates/kernel-2.6.35.14-97.fc14
    https://admin.fedoraproject.org/updates/php-5.3.8-3.fc14
    https://admin.fedoraproject.org/updates/cyrus-imapd-2.3.17-1.fc14
    https://admin.fedoraproject.org/updates/puppet-2.6.6-3.fc14
    https://admin.fedoraproject.org/updates/thunderbird-3.1.15-1.fc14
    https://admin.fedoraproject.org/updates/phpPgAdmin-5.0.3-1.fc14


The following Fedora 14 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/rpm-4.8.1-7.fc14
    https://admin.fedoraproject.org/updates/livecd-tools-14.5-1.fc14
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.5.92-1.git20110927.fc14
    https://admin.fedoraproject.org/updates/lldpad-0.9.41-4.fc14
    https://admin.fedoraproject.org/updates/ModemManager-0.4.998-1.git20110706.fc14
    https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc14
    https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-30.3.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-8.fc14.2
    https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20101010git8c8f15c.fc14
    https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14


The following builds have been pushed to Fedora 14 updates-testing

    check_postgres-2.18.0-1.fc14
    freeradius-2.1.12-1.fc14
    ghc-http-types-0.3.1-1.fc14
    ghc-wai-0.3.2-2.fc14
    ghc-xss-sanitize-0.2.6-1.fc14
    hplip-3.11.10-1.fc14
    perl-Test-Mojibake-0.3-3.fc14
    phpPgAdmin-5.0.3-1.fc14
    python-mako0.4-0.4.2-7.fc14
    rpm-4.8.1-7.fc14
    travelccm-0.5.0-2.fc14
    xmlstarlet-1.3.0-1.fc14

Details about builds:


================================================================================
 check_postgres-2.18.0-1.fc14 (FEDORA-2011-13814)
 PostgreSQL monitoring script
--------------------------------------------------------------------------------
Update Information:

Update to 2.18.0, per changes described at
  https://mail.endcrypt.com/pipermail/check_postgres-announce/2011-October/000027.html

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  3 2011 - Devrim GUNDUZ <devrim@xxxxxxxxxx> 2.18.0-1
- Update to 2.18.0, per changes described at
  https://mail.endcrypt.com/pipermail/check_postgres-announce/2011-October/000027.html
--------------------------------------------------------------------------------


================================================================================
 freeradius-2.1.12-1.fc14 (FEDORA-2011-13793)
 High-performance and highly configurable free RADIUS server
--------------------------------------------------------------------------------
Update Information:

Upgrade to latest upstream release, 2.1.12. See RPM changelog for details.
Upgrade to latest upstream release, 2.1.11
See changelog for details

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  3 2011 John Dennis <jdennis@xxxxxxxxxx> - 2.1.12-1
- Upgrade to latest upstream release: 2.1.12
- Upstream changelog for 2.1.12:
  Feature improvements
  * Updates to dictionary.erx, dictionary.siemens, dictionary.starent,
    dictionary.starent.vsa1, dictionary.zyxel, added dictionary.symbol
  * Added support for PCRE from Phil Mayers
  * Configurable file permission in rlm_linelog
  * Added "relaxed" option to rlm_attr_filter.  This copies attributes
    if at least one match occurred.
  * Added documentation on dynamic clients.
    See raddb/modules/dynamic_clients.
  * Added support for elliptical curve cryptography.
    See ecdh_curve in raddb/eap.conf.
  * Added support for 802.1X MIBs in checkrad
  * Added support for %{rand:...}, which generates a uniformly
    distributed number between 0 and the number you specify.
  * Created "man" pages for all installed commands, and documented
    options for all commands.  Patch from John Dennis.
  * Allow radsniff to decode encrypted VSAs and CoA packets.
    Patch from Bjorn Mork.
  * Always send Message-Authenticator in radtest. Patch from John Dennis.
    radclient continues to be more flexible.
  * Updated Oracle schema and queries
  * Added SecurID module.  See src/modules/rlm_securid/README

  Bug fixes
  * Fix memory leak in rlm_detail
  * Fix "failed to insert event"
  * Allow virtual servers to be reloaded on HUP.
    It no longer complains about duplicate virtual servers.
  * Fix %{string:...} expansion
  * Fix "server closed socket" loop in radmin
  * Set ownership of control socket when starting up
  * Always allow root to connect to control socket, even if
    "uid" is set.  They're root.  They can already do anything.
  * Save all attributes in Access-Accept when proxying inner-tunnel
    EAP-MSCHAPv2
  * Fixes for DHCP relaying.
  * Check certificate validity when using OCSP.
  * Updated Oracle "configure" script
  * Fixed typos in dictionary.alvarion
  * WARNING on potential proxy loop.
  * Be more aggressive about clearing old requests from the
    internal queue
  * Don't open network sockets when using -C
* Wed Sep 21 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.1.11-7
- restore defattr customization in the main package
* Fri Sep  9 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.1.11-6
- add missing systemd scriptlets
* Thu Sep  8 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.1.11-5
- convert to systemd
* Thu Jul 21 2011 Petr Sabata <contyk@xxxxxxxxxx> - 2.1.11-4
- Perl mass rebuild
* Wed Jul 20 2011 Petr Sabata <contyk@xxxxxxxxxx> - 2.1.11-3
- Perl mass rebuild
--------------------------------------------------------------------------------


================================================================================
 ghc-http-types-0.3.1-1.fc14 (FEDORA-2011-13791)
 Generic HTTP types for Haskell
--------------------------------------------------------------------------------
Update Information:

Generic HTTP types for Haskell
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #717867 - Review Request: ghc-http-types - Generic HTTP types for Haskell
        https://bugzilla.redhat.com/show_bug.cgi?id=717867
--------------------------------------------------------------------------------


================================================================================
 ghc-wai-0.3.2-2.fc14 (FEDORA-2011-13800)
 Haskell Web Application Interface library
--------------------------------------------------------------------------------
Update Information:

Haskell Web Application Interface library.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #736602 - Review Request: ghc-wai -  Web Application Interface library
        https://bugzilla.redhat.com/show_bug.cgi?id=736602
--------------------------------------------------------------------------------


================================================================================
 ghc-xss-sanitize-0.2.6-1.fc14 (FEDORA-2011-13808)
 Sanitize untrusted HTML to prevent XSS attacks
--------------------------------------------------------------------------------
Update Information:

Sanitize untrusted HTML to prevent cross-site scripting attacks.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #648250 - Review Request: ghc-xss-sanitize - Sanitize untrusted HTML to prevent XSS attacks
        https://bugzilla.redhat.com/show_bug.cgi?id=648250
--------------------------------------------------------------------------------


================================================================================
 hplip-3.11.10-1.fc14 (FEDORA-2011-13807)
 HP Linux Imaging and Printing Project
--------------------------------------------------------------------------------
Update Information:

New upstream release that fixes several bugs and adds support for new printers.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct  4 2011 Jiri Popelka <jpopelka@xxxxxxxxxx> 3.11.10-1
- 3.11.10
- Use _cups_serverbin macro from cups-devel for where to put driver executables.
- No need to define BuildRoot and clean it in clean and install section anymore.
- Corrected IEEE 1284 Device IDs:
  Officejet 6300 series (bug #689378)
  LaserJet Professional M1212nf MFP (bug #742490)
* Fri Sep 23 2011 Tim Waugh <twaugh@xxxxxxxxxx> 3.11.7-5
- Fixed broken patch for pstotiff.
* Tue Sep  6 2011 Jiri Popelka <jpopelka@xxxxxxxxxx> 3.11.7-4
- Fixed xsane crash when doing a multi-image scan (bug #725878)
* Fri Sep  2 2011 Tim Waugh <twaugh@xxxxxxxxxx> 3.11.7-3
- Fixed hpcups crash when required plugin missing (bug #733461).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #742490 - Incorrect IEEE 1284 Device ID, HP LaserJet Professional M1212nf MFP
        https://bugzilla.redhat.com/show_bug.cgi?id=742490
  [ 2 ] Bug #733461 - [abrt] hpijs-1:3.11.7-2.fc14: __libc_start_main: Process /usr/lib/cups/filter/hpcups was killed by signal 6 (SIGABRT)
        https://bugzilla.redhat.com/show_bug.cgi?id=733461
  [ 3 ] Bug #725878 - [abrt] xsane-0.998-4.fc15: bb_start_scan: Process /usr/bin/xsane was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=725878
  [ 4 ] Bug #689378 - Missing Device ID for HP Officejet 6300 series
        https://bugzilla.redhat.com/show_bug.cgi?id=689378
--------------------------------------------------------------------------------


================================================================================
 perl-Test-Mojibake-0.3-3.fc14 (FEDORA-2011-13812)
 Check your source for encoding misbehavior
--------------------------------------------------------------------------------
Update Information:

This update offers significantly improved performance by pulling in the Unicode::CheckUTF8 module as a requirement.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct  4 2011 Paul Howarth <paul@xxxxxxxxxxxx> - 0.3-3
- BR/R: perl(Unicode::CheckUTF8) for improved performance
--------------------------------------------------------------------------------


================================================================================
 phpPgAdmin-5.0.3-1.fc14 (FEDORA-2011-13805)
 Web-based PostgreSQL administration
--------------------------------------------------------------------------------
Update Information:

* Update to 5.0.3, per changes described at:
   http://sourceforge.net/mailarchive/forum.php?thread_name=4E897F6C.90905%40free.fr&forum_name=phppgadmin-news

which also fixes a security flaw:
http://www.openwall.com/lists/oss-security/2011/10/04/1
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  3 2011 Devrim Gunduz <devrim@xxxxxxxxxx> 5.0.3-1
- Update to 5.0.3, per changes described at:
  http://sourceforge.net/mailarchive/forum.php?thread_name=4E897F6C.90905%40free.fr&forum_name=phppgadmin-news
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #743205 - CVE-2011-3598 phpPgAdmin: Multiple XSS flaws fixed in v5.0.3
        https://bugzilla.redhat.com/show_bug.cgi?id=743205
--------------------------------------------------------------------------------


================================================================================
 python-mako0.4-0.4.2-7.fc14 (FEDORA-2011-13789)
 Mako template library for Python
--------------------------------------------------------------------------------
Update Information:

New mako templating forward compat package.
--------------------------------------------------------------------------------


================================================================================
 rpm-4.8.1-7.fc14 (FEDORA-2011-13795)
 The RPM package management system
--------------------------------------------------------------------------------
Update Information:

This update fixes some crashes which can occur when reading malformed package headers.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct  4 2011 Panu Matilainen <pmatilai@xxxxxxxxxx> - 4.8.1-7
- fix CVE-2011-3378
* Fri May 27 2011 Paul Whalen <paul.whalen@xxxxxxxxxxxxx> - 4.8.1-6
- Added meego patch for ARM macros
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #741606 - CVE-2011-3378 rpm: crashes and overflows on malformed header
        https://bugzilla.redhat.com/show_bug.cgi?id=741606
--------------------------------------------------------------------------------


================================================================================
 travelccm-0.5.0-2.fc14 (FEDORA-2011-13788)
 C++ Travel Customer Choice Model (CCM) Library
--------------------------------------------------------------------------------
Update Information:

First RPM release on Fedora.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #732218 - Review Request: travelccm - C++ Travel Customer Choice Model Library
        https://bugzilla.redhat.com/show_bug.cgi?id=732218
--------------------------------------------------------------------------------


================================================================================
 xmlstarlet-1.3.0-1.fc14 (FEDORA-2011-13821)
 Command Line XML Toolkit
--------------------------------------------------------------------------------
Update Information:

This new upstream release fixes several issues:
* avoid ASCII CRs in UTF-16/32 text (reported by Ming Chen)
* --value-of outputs concat values of all nodes (Req #2563866)
* encode special chars for ed -u -x
* allow use of exslt functions in ed -u -x
* add --var to select (allow --var <name>=<value> as well as --var <name> <value> --break)
* work around libxml bug that passes bogus data to error handler (Bug #3362217)

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  3 2011 Paul W. Frields <stickster@xxxxxxxxx> - 1.3.0-1
- Update to upstream 1.3.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #742908 - xmlstarlet-1.3.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=742908
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test


[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux