Fedora 14 updates-testing report

updates@xxxxxxxxxxxxxxxxx · Wed, 23 Nov 2011 23:35:06 +0000

The following Fedora 14 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-2011-14737/hardlink-1.0-12.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-14202/xmlrpc3-3.0-6.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15127/openswan-2.6.33-3.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15586/nss-3.12.10-7.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16031/tomcat6-6.0.26-28.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15080/tor-0.2.1.31-1400.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-14981/kdeutils-4.6.5-3.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-14986/phpldapadmin-1.2.1.1-2.20111006git.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15684/java-1.6.0-openjdk-1.6.0.0-55.1.9.11.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15332/net6-1.3.14-1.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-14660/cherokee-1.2.101-1.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-14744/arora-0.11.0-3.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16295/dovecot-2.0.16-1.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16346/kernel-2.6.35.14-106.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15956/freetype-2.4.2-7.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16002/bind-9.7.4-2.P1.fc14

The following Fedora 14 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/FEDORA-2011-16346/kernel-2.6.35.14-106.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16245/pcre-8.10-3.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-16073/sane-backends-1.0.22-6.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15998/qt-4.7.4-7.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15956/freetype-2.4.2-7.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15829/libass-0.10.0-1.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15657/gdb-7.2-52.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15586/nss-3.12.10-7.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-15573/virtuoso-opensource-6.1.4-2.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-8401/policycoreutils-2.0.85-30.3.fc14
    https://admin.fedoraproject.org/updates/FEDORA-2011-2451/cairomm-1.9.8-2.fc14.2,libsigc++20-2.2.8-1.fc14.1,gstreamermm-0.10.8-2.fc14.1,goocanvasmm-0.15.4-2.fc14,gtkmm24-2.22.0-2.fc14.2,atkmm-2.22.2-2.fc14.1,glibmm24-2.24.2-2.fc14.1

The following builds have been pushed to Fedora 14 updates-testing

    cabal2spec-0.24.1-1.fc14
    gofer-0.60-1.fc14
    kernel-2.6.35.14-106.fc14
    mksh-40c-1.fc14
    scap-workbench-0.5.2-1.fc14

Details about builds:

================================================================================
 cabal2spec-0.24.1-1.fc14 (FEDORA-2011-16327)
 Tool for creating .spec files for Haskell Cabal Packages
--------------------------------------------------------------------------------
Update Information:

- drop redundant defattr's from templates
- make hscolour BR conditional again
- add comment about cabal_configure_options
- replace multiple @NAME@'s on same line
- drop ghc_lib_package and ghc_binlib_package and bring back
  explicit subpackages, post/postun, and files sections
- drop old GHC_VERSION substitution

--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep  8 2011 Jens Petersen <petersen@xxxxxxxxxx> - 0.24.1-1
- drop redundant defattr's from templates
- make hscolour BR conditional again
- add comment about cabal_configure_options (Lakshmi Narasimhan)
- replace multiple @NAME@'s on same line
* Wed Jun 29 2011 Jens Petersen <petersen@xxxxxxxxxx> - 0.24-1
- drop ghc_lib_package and ghc_binlib_package and bring back
  explicit subpackages, post/postun, and files sections
- drop old GHC_VERSION substitution (#716676)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #716676 - Needs ghc dependency?
        https://bugzilla.redhat.com/show_bug.cgi?id=716676
--------------------------------------------------------------------------------

================================================================================
 gofer-0.60-1.fc14 (FEDORA-2011-16340)
 A lightweight, extensible python agent
--------------------------------------------------------------------------------
Update Information:

update to: 0.60.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov 18 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.60-1
- plugin: package; revise API for constructors; add Yum wrapper class.
  (jortel@xxxxxxxxxx)
- Support remote class constructor arguments. (jortel@xxxxxxxxxx)
* Wed Nov 16 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.59-1
- plugin: package; Initialize yum plugins. (jortel@xxxxxxxxxx)
* Wed Nov 16 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.58-1
- Add 'apply' flag on Pacakge.update(); handle obsoletes; better return info.
  (jortel@xxxxxxxxxx)
- Test commit for SSH key changed. (jortel@xxxxxxxxxx)
- Better handling of corrupted files in pending store. (jortel@xxxxxxxxxx)
- Fix bug in non-eager plugin loading. (jortel@xxxxxxxxxx)
* Thu Nov 10 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.57-1
- Impl plugin: System, rename shutdown() to: halt(); add cancel().
  (jortel@xxxxxxxxxx)
* Thu Nov 10 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.56-1
- Impl plugin: Package.update(). (jortel@xxxxxxxxxx)
- Impl plugin: system.shutdown() & reboot(). (jortel@xxxxxxxxxx)
* Thu Nov 10 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.55-1
- change to 'importkeys' semantics; add importkeys to group installs.
  (jortel@xxxxxxxxxx)
- Restrict Plugin.export() to class|function; split test agent & plugin.
  (jortel@xxxxxxxxxx)
- Add tools. (jortel@xxxxxxxxxx)
--------------------------------------------------------------------------------

================================================================================
 kernel-2.6.35.14-106.fc14 (FEDORA-2011-16346)
 The Linux kernel
--------------------------------------------------------------------------------
Update Information:

and CVE-2011-4110
Fix CVE-2011-4326 and CVE-2011-4132
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 22 2011 Josh Boyer <jwboyer@xxxxxxxxxx> 2.6.35.14-106
- CVE-2011-4110 keys: NULL pointer deref in the user-defined key type
* Mon Nov 21 2011 Josh Boyer <jwboyer@xxxxxxxxxx> 2.6.35.14-105
- CVE-2011-4326: wrong headroom check in udp6_ufo_fragment() (rhbz 755590)
* Mon Nov 14 2011 Josh Boyer <jwboyer@xxxxxxxxxx>
- CVE-2011-4132: jbd/jbd2: invalid value of first log block leads to oops (rhbz 753346)
* Tue Nov  1 2011 Dave Jones <davej@xxxxxxxxxx>
- Add another Sony laptop to the nonvs blacklist. (rhbz 641789)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #755584 - CVE-2011-4326 kernel: wrong headroom check in udp6_ufo_fragment()
        https://bugzilla.redhat.com/show_bug.cgi?id=755584
  [ 2 ] Bug #753341 - CVE-2011-4132 kernel: jbd/jbd2: invalid value of first log block leads to oops
        https://bugzilla.redhat.com/show_bug.cgi?id=753341
--------------------------------------------------------------------------------

================================================================================
 mksh-40c-1.fc14 (FEDORA-2011-16348)
 MirBSD enhanced version of the Korn Shell
--------------------------------------------------------------------------------
Update Information:

mksh R40c collects stable development, mostly fixes:

 * Fix ${foo%\?} in -o sh
 * Fix spelling mistakes
 * Fix bugs spotted during porting to OPENSTEP
 * Unbreak building stristr with MKSH_ASSUME_UTF8 defined
 * Fix most of the issues Jerker Bäck encountered on Interix
 * Wrap access(2) as it may return false positive for X_OK on root
 * Upper bound Emacs mode command repeat by input line length
 * Improve CPPFLAGS mangling in Build.sh
 * Several comment, documentation and website fixes/updates
 * Avoid identifiers and cpp(1) macros with two underscores in a row, and those with a trailing underscore; they are reserved for the OS
 * Fix accidental behavioural change wrt some built-in parameters
 * Port to MSYS
 * Interix select(2) bug workaround
 * Manpage fixes
 * Deprecate the “command line begins with ‘!’ for fc -e -” wbx hack
 * Promote x=(a b); x+=(c d) to a core mksh(1) feature
 * Testsuite fixes for Hurd, MSYS; warning fixes for dietlibc
 * Fix R40 regression misparsing $(case x in (x) :; esac)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 22 2011 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 40c-1
- Upgrade to 40c
--------------------------------------------------------------------------------

================================================================================
 scap-workbench-0.5.2-1.fc14 (FEDORA-2011-16309)
 Scanning, tailoring, editing and validation tool for SCAP content
--------------------------------------------------------------------------------
Update Information:

Updated to 0.5.2, I am not going to push 0.6.x to fedora 14 because it's using gtk3
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov 18 2011 Martin Preisler <mpreisle@xxxxxxxxxx> 0.5.2-1
- New upstream version 0.5.2
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test