The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2011-15560/nss-3.12.10-7.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-15006/kdeutils-4.6.5-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16859/perl-PAR-1.002-4.fc15,perl-PAR-Packer-1.008-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17119/icu-4.4.2-9.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16282/ejabberd-2.1.9-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16786/phpMyAdmin-3.4.8-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16284/krb5-1.9.2-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16893/freeipa-2.1.4-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16903/moodle-1.9.15-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16955/jasper-1.900.1-18.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16976/dhcp-4.2.1-14.P1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16980/asterisk-1.8.7.2-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17040/clearsilver-0.10.5-15.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17049/cacti-0.8.7i-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17071/ipmitool-1.8.11-7.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2011-17116/perl-5.12.4-164.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17089/selinux-policy-3.9.16-50.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17054/xorg-x11-drv-intel-2.17.0-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17034/polkit-kde-0.99.0-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17007/polkit-qt-0.99.0-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17035/kernel-2.6.41.5-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16959/flac-1.2.1-8.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16967/xfce-utils-4.8.3-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16976/dhcp-4.2.1-14.P1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16955/jasper-1.900.1-18.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16923/mesa-7.11.2-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16858/phonon-4.5.1-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16872/xdg-utils-1.1.0-0.10.20111207.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16890/procmail-3.22-27.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16286/pcre-8.12-5.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16284/krb5-1.9.2-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-14053/glibc-2.14.1-1
https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-11955/evolution-mapi-3.0.3-2.fc15,evolution-exchange-3.0.3-1.fc15,evolution-3.0.3-1.fc15,evolution-data-server-3.0.3-1.fc15,gtkhtml3-4.0.2-1.fc15
The following builds have been pushed to Fedora 15 updates-testing
Field3D-1.2.1-1.fc15
audacity-1.3.14-0.5.fc15
clthreads-2.4.0-7.fc15
clxclient-3.6.1-5.fc15
espeak-1.46.01-2.fc15
glances-1.3-1.fc15
icu-4.4.2-9.fc15
imapsync-1.476-1.fc15
libpinyin-0.3.0-2.fc15
mcomix-0.95-2.fc15
perl-5.12.4-164.fc15
selinux-policy-3.9.16-50.fc15
sks-1.1.2-1.fc15
zita-at1-0.2.3-4.fc15
zita-rev1-0.2.1-4.fc15
Details about builds:
================================================================================
Field3D-1.2.1-1.fc15 (FEDORA-2011-17122)
Library for storing voxel data
--------------------------------------------------------------------------------
Update Information:
Library for storing voxel data.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #753453 - Review Request: Field3D - Library for storing voxel data
https://bugzilla.redhat.com/show_bug.cgi?id=753453
--------------------------------------------------------------------------------
================================================================================
audacity-1.3.14-0.5.fc15 (FEDORA-2011-17091)
Multitrack audio editor
--------------------------------------------------------------------------------
Update Information:
The Audacity Team is pleased to announce the release of Audacity 1.3.14 (Beta) for Windows, Mac and Linux/Unix. 1.3.14 contains important fixes for data loss problems when reopening saved projects.
Please help us progress to a new Audacity 2.0 by reporting any problems you find in 1.3.14 to our feedback address:
http://audacity.sourceforge.net/contact/#feedback.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 13 2011 David Timms <iinet.net.au@dtimms> - 1.3.14-0.5
- fix Source1 help reference (again).
* Tue Dec 13 2011 David Timms <iinet.net.au@dtimms> - 1.3.14-0.4
- update to 1.3.14 beta release
* Thu Dec 8 2011 David Timms <iinet.net.au@dtimms> - 1.3.14-0.3.alpha20111101svn11296
- add ffmpeg-0.8 patch from Leland Lucius
- add test patch to workaround gtypes-include problem
* Tue Dec 6 2011 Adam Jackson <ajax@xxxxxxxxxx> - 1.3.14-0.2.alpha20111101svn11296
- Rebuild for new libpng
* Tue Nov 1 2011 David Timms <iinet.net.au@dtimms> - 1.3.14-0.1.alpha20111101svn11296
- update to 1.3.14 alpha svn snapshot
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #710631 - [abrt] audacity-1.3.13-0.4.beta.fc15: Terminate: Process /usr/bin/audacity was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=710631
[ 2 ] Bug #710819 - [abrt] audacity-1.3.13-0.4.beta.fc15: __udivmoddi4: Process /usr/bin/audacity was killed by signal 8 (SIGFPE)
https://bugzilla.redhat.com/show_bug.cgi?id=710819
[ 3 ] Bug #714284 - [abrt] audacity-1.3.13-0.4.beta.fc15: pa_mutex_lock: Process /usr/bin/audacity was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=714284
[ 4 ] Bug #732359 - [abrt] audacity-1.3.13-0.4.beta.fc15: wxMBConv::FromWChar: Process /usr/bin/audacity was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=732359
--------------------------------------------------------------------------------
================================================================================
clthreads-2.4.0-7.fc15 (FEDORA-2011-17120)
POSIX threads C++ access library
--------------------------------------------------------------------------------
Update Information:
Fixes rpmlint warnings about undefined-non-weak-synmbols
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 11 2011 Brendan Jones <brendan.jones.it@xxxxxxxxx> - 2.4.0-7
- correct URL and download link
* Tue Oct 4 2011 Brendan Jones <brendan.jones.it@xxxxxxxxx> - 2.4.0-6
- Corrected rpmlint 'undefined-non-weak-symbol /usr/lib64/libclthreads.so.2.4.0
clock_gettime' and unused-direct-shlib-dependency for libm - BZ#751466
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #751466 - clthreads: undefined non-weak symbol "clock_gettime"
https://bugzilla.redhat.com/show_bug.cgi?id=751466
--------------------------------------------------------------------------------
================================================================================
clxclient-3.6.1-5.fc15 (FEDORA-2011-17087)
C++ X Windows Library
--------------------------------------------------------------------------------
Update Information:
clxclient is a C++ X windows library used in some audio applications
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #749753 - Review Request: clxclient - a C++ X windows library
https://bugzilla.redhat.com/show_bug.cgi?id=749753
--------------------------------------------------------------------------------
================================================================================
espeak-1.46.01-2.fc15 (FEDORA-2011-17121)
Software speech synthesizer (text-to-speech)
--------------------------------------------------------------------------------
Update Information:
This is an update that adds runtime detection of sound system / pulseaudio support.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 14 2011 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 1.46.01-2
- Runtime detection is the default again
Resolves: rhbz#767434
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #767434 - Runtime PulseAudio detection not working with espeak 1.46.01
https://bugzilla.redhat.com/show_bug.cgi?id=767434
--------------------------------------------------------------------------------
================================================================================
glances-1.3-1.fc15 (FEDORA-2011-17109)
CLI curses based monitoring tool
--------------------------------------------------------------------------------
Update Information:
Upgrade to version 1.3
upgrade to version 1.2
Glances is a CLI curses based monitoring tool
Glances is a CLI curses based monitoring tool
upgrade to version 1.2
Glances is a CLI curses based monitoring tool
Glances is a CLI curses based monitoring tool
--------------------------------------------------------------------------------
================================================================================
icu-4.4.2-9.fc15 (FEDORA-2011-17119)
International Components for Unicode
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2011-4599
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 13 2011 Eike Rathke <erack@xxxxxxxxxx> - 4.4.2-9
- Resolves: rhbz#766542 CVE-2011-4599 Stack-based buffer overflow
- add icu.8984.CVE-2011-4599.patch
* Thu Aug 25 2011 Caolán McNamara <caolanm@xxxxxxxxxx> - 4.4.2-8
- Resolves: rhbz#733162 F-14 only arm workaround
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #766542 - CVE-2011-4599 icu: Stack-based buffer overflow by canonicalizing the given localeID [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=766542
--------------------------------------------------------------------------------
================================================================================
imapsync-1.476-1.fc15 (FEDORA-2011-17099)
Tool to migrate email between IMAP servers
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.476
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 13 2011 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.476-1
- Upgrade to 1.476
* Mon Nov 21 2011 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.468-1
- Upgrade to 1.468
--------------------------------------------------------------------------------
================================================================================
libpinyin-0.3.0-2.fc15 (FEDORA-2011-17117)
Library to deal with pinyin
--------------------------------------------------------------------------------
Update Information:
Fixes training code
--------------------------------------------------------------------------------
ChangeLog:
* Fri Nov 25 2011 Peng Wu <pwu@xxxxxxxxxx> - 0.3.0-2
- Increase train factor
* Fri Nov 18 2011 Peng Wu <pwu@xxxxxxxxxx> - 0.3.0-1
- Update to 0.3.0
--------------------------------------------------------------------------------
================================================================================
mcomix-0.95-2.fc15 (FEDORA-2011-17090)
User-friendly, customizable image viewer for comic books
--------------------------------------------------------------------------------
Update Information:
A bug is reported that mcomix emits some error when being terminated from non-x (i.e. by keyboard interrupt). This new rpm will fix this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 14 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 0.95-2
- Prevent RuntimeError when terminating mcomix from terminal
(bug 767300)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #767300 - [abrt] mcomix-0.95-1.fc16: main.py:1123:terminate_program:RuntimeError: called outside of a mainloop
https://bugzilla.redhat.com/show_bug.cgi?id=767300
--------------------------------------------------------------------------------
================================================================================
perl-5.12.4-164.fc15 (FEDORA-2011-17116)
Practical Extraction and Report Language
--------------------------------------------------------------------------------
Update Information:
This update fixes memory leak when referring named capture group that does not match.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 14 2011 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.12.4-164
- Fix leak with non-matching named captures (bug #767597)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #767597 - Memory leak with non-matching named captures
https://bugzilla.redhat.com/show_bug.cgi?id=767597
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.9.16-50.fc15 (FEDORA-2011-17089)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
- BOinc fixes
- Allow mysqld_safe to delete the mysql_db_t sock_file
- Dovecot has a new fifo_file /var/run/stats-mail
- Allow gnomeclock to send system log msgs
- Users that use X and spice need to use the virtio device
- squashfs supports extended attributes
- Allow system_cronjob to dbus chat with NetworkManager
- Allow all postfix domains to use the fifo_file
- Allow squid to check the network state
- Allow spamd to send mail
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 14 2011 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.9.16-50
- BOinc fixes
- Allow mysqld_safe to delete the mysql_db_t sock_file
- Dovecot has a new fifo_file /var/run/stats-mail
* Fri Dec 2 2011 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.9.16-49
- Allow gnomeclock to send system log msgs
- Users that use X and spice need to use the virtio device
- squashfs supports extended attributes
- Allow system_cronjob to dbus chat with NetworkManager
- Allow all postfix domains to use the fifo_file
- Allow squid to check the network state
- Allow spamd to send mail
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #737643 - bad selinux policy for system-config-kdump, grubby and /etc/mtab
https://bugzilla.redhat.com/show_bug.cgi?id=737643
[ 2 ] Bug #741718 - SELinux errors for bounced messages from PostFix
https://bugzilla.redhat.com/show_bug.cgi?id=741718
[ 3 ] Bug #742664 - Access from exim to dovecot auth denied
https://bugzilla.redhat.com/show_bug.cgi?id=742664
[ 4 ] Bug #758571 - system_cronjob_t needs to be able to check network status
https://bugzilla.redhat.com/show_bug.cgi?id=758571
[ 5 ] Bug #741753 - SELinux is preventing /sbin/ifconfig from 'search' accesses on the katalog net.
https://bugzilla.redhat.com/show_bug.cgi?id=741753
[ 6 ] Bug #741755 - SELinux is preventing /bin/ls from 'execute_no_trans' accesses on the plik /bin/ls.
https://bugzilla.redhat.com/show_bug.cgi?id=741755
[ 7 ] Bug #741758 - SELinux is preventing /bin/bash from 'getattr' accesses on the plik /bin/bash.
https://bugzilla.redhat.com/show_bug.cgi?id=741758
[ 8 ] Bug #753707 - SELinux is preventing /usr/sbin/wpa_supplicant from open/read/getattr access on the file .kde/share/apps/networkmanagement/certificates/
https://bugzilla.redhat.com/show_bug.cgi?id=753707
[ 9 ] Bug #754582 - SELinux is preventing /usr/bin/curlftpfs from using the 'sys_nice' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=754582
[ 10 ] Bug #755161 - SELinux is preventing /usr/sbin/mcelog from 'create' accesses on the file mcelog.pid.
https://bugzilla.redhat.com/show_bug.cgi?id=755161
[ 11 ] Bug #756339 - SELinux is preventing /usr/lib/iscan/network from 'execute_no_trans' accesses on the file /usr/lib/iscan/network.
https://bugzilla.redhat.com/show_bug.cgi?id=756339
[ 12 ] Bug #757404 - SELinux is preventing /usr/libexec/fprintd from 'read' accesses on the plik /proc/<pid>/cmdline.
https://bugzilla.redhat.com/show_bug.cgi?id=757404
[ 13 ] Bug #766608 - SELinux is preventing /usr/sbin/skdump from 'module_request' accesses on the system Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=766608
[ 14 ] Bug #767429 - SELinux is preventing /var/lib/boinc/projects/climateprediction.net/hadam3p_saf_6.09_i686-pc-linux-gnu from 'read' accesses on the file /etc/resolv.conf.
https://bugzilla.redhat.com/show_bug.cgi?id=767429
[ 15 ] Bug #767455 - SELinux is preventing /usr/sbin/mcelog from 'getattr' accesses on the file /run/mcelog.pid.
https://bugzilla.redhat.com/show_bug.cgi?id=767455
--------------------------------------------------------------------------------
================================================================================
sks-1.1.2-1.fc15 (FEDORA-2011-17095)
Synchronizing Key Server
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.1.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 13 2011 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.1.2-1
- Upgrade to 1.1.2
* Wed Oct 26 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.1-7
- Rebuilt for glibc bug#747377
* Fri Apr 29 2011 Dan Horák <dan[at]danny.cz> - 1.1.1-6
- updated the supported arch list
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #739512 - sks-1.1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=739512
--------------------------------------------------------------------------------
================================================================================
zita-at1-0.2.3-4.fc15 (FEDORA-2011-17114)
Audio autotuner for JACK
--------------------------------------------------------------------------------
Update Information:
zita-at1 is an 'autotuner', normally used for correcting the pitch of a voice singing slightly out of tune.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #749756 - Review Request: zita-at1 - autotuner for JACK
https://bugzilla.redhat.com/show_bug.cgi?id=749756
--------------------------------------------------------------------------------
================================================================================
zita-rev1-0.2.1-4.fc15 (FEDORA-2011-17092)
Pro-audio reverb for JACK
--------------------------------------------------------------------------------
Update Information:
zita-rev1 is a reworked version of the reverb originally developed for Aeolus. Its character is more 'hall' than 'plate', but it can be used on a wide variety of instruments or voices. It is not a spatialiser - the early reflections are different for the L and R inputs, but do not correspond to any real room. They have been tuned to match left and right sources to some extent.
In Stereo mode a dry/wet mix control is provided, so it can be used either as an insert or in send/return mode. For mono just connect one of the two channels.
In Ambisonic mode (selected by the -B command line option) the only option is the send/return mode.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #749757 - Review Request: zita-rev1 - Proaudio reverb for JACK
https://bugzilla.redhat.com/show_bug.cgi?id=749757
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
