Fedora 15 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 15 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-2011-15560/nss-3.12.10-7.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-16284/krb5-1.9.2-4.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0372/torque-3.0.3-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0250/openssl-1.0.0f-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0144/plib-1.8.5-5.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0233/rubygem-rack-1.1.0-4.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0247/wordpress-3.3.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0318/kernel-2.6.41.8-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0328/bugzilla-3.6.7-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17399/nspr-4.8.9-2.fc15,nss-softokn-3.13.1-14.fc15,nss-util-3.13.1-3.fc15,nss-3.13.1-9.fc15,thunderbird-lightning-1.1-0.1.rc1.fc15,thunderbird-9.0-4.fc15,gnome-python2-extras-2.25.3-35.fc15.4,perl-Gtk2-MozEmbed-0.09-1.fc15.8,firefox-9.0.1-1.fc15,xulrunner-9.0.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0353/pdns-2.9.22.5-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0266/t1lib-5.1.2-9.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0018/glibc-2.14.1-5
    https://admin.fedoraproject.org/updates/FEDORA-2011-16980/asterisk-1.8.7.2-1.fc15


The following Fedora 15 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/FEDORA-2012-0327/orc-0.4.16-5.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0318/kernel-2.6.41.8-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0250/openssl-1.0.0f-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0167/mysql-5.5.19-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0105/xine-lib-1.1.20.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0095/pyOpenSSL-0.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0073/kdebase-workspace-4.6.5-8.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0088/setup-2.8.33-2.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-0018/glibc-2.14.1-5
    https://admin.fedoraproject.org/updates/FEDORA-2012-0027/pcre-8.12-6.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17565/qt-4.7.4-8.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17399/nspr-4.8.9-2.fc15,nss-softokn-3.13.1-14.fc15,nss-util-3.13.1-3.fc15,nss-3.13.1-9.fc15,thunderbird-lightning-1.1-0.1.rc1.fc15,thunderbird-9.0-4.fc15,gnome-python2-extras-2.25.3-35.fc15.4,perl-Gtk2-MozEmbed-0.09-1.fc15.8,firefox-9.0.1-1.fc15,xulrunner-9.0.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-11955/evolution-mapi-3.0.3-2.fc15,evolution-exchange-3.0.3-1.fc15,evolution-3.0.3-1.fc15,evolution-data-server-3.0.3-1.fc15,gtkhtml3-4.0.2-1.fc15


The following builds have been pushed to Fedora 15 updates-testing

    ack-1.96-1.fc15
    condor-ec2-enhanced-1.2-2.fc15
    condor-ec2-enhanced-hooks-1.2-3.fc15
    condor-job-hooks-1.5-4.fc15
    condor-low-latency-1.2-2.fc15
    condor-wallaby-4.1.2-2.fc15
    freeipa-2.1.4-3.fc15
    gofer-0.64-1.fc15
    grinder-0.0.136-1.fc15
    icc-profiles-openicc-1.3.0-1.fc15
    kde-plasma-networkmanagement-0.9-0.69.20120108git.nm09.fc15
    perl-smartmatch-engine-core-0.02-1.fc15
    powertop-1.98-3.fc15
    rubygem-declarative_authorization-0.5.5-1.fc15
    torque-3.0.3-1.fc15
    transifex-1.2.1-1.fc15

Details about builds:


================================================================================
 ack-1.96-1.fc15 (FEDORA-2012-0378)
 Grep-like text finder
--------------------------------------------------------------------------------
Update Information:

New upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan 11 2012 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 1.96-1
- Update to 1.96
- License changed to 'Artistic 2.0' since 1.90
* Mon Jun 20 2011 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 1.94-2
- Perl mass rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #740386 - ReE: New release 1.96 of ack is available from upstream
        https://bugzilla.redhat.com/show_bug.cgi?id=740386
--------------------------------------------------------------------------------


================================================================================
 condor-ec2-enhanced-1.2-2.fc15 (FEDORA-2012-0389)
 EC2 Enhanced
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 29 2011 <rrati@redhat> - 1.2-2
- Fixed configfile warning
- Updated dep on python-condorutils
- Added missing config params to config file
* Wed Jun 29 2011 <rrati@redhat> - 1.2-1
- Install config file into /etc/condor/config.d
- Changed daemon name in config to CARONIAD, old name still supported
- Updated docs
--------------------------------------------------------------------------------


================================================================================
 condor-ec2-enhanced-hooks-1.2-3.fc15 (FEDORA-2012-0393)
 Condor EC2 Enhanced hooks
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug 30 2011 <rrati@redhat> - 1.2-3
- Raise exception if the translate hook is unable to read important files
* Tue Jul  5 2011 <rrati@redhat> - 1.2-2
- Updated docs
- Changed example config file to be easily dropped into /etc/condor/config.d
- Set WantAWS = False in classad sent to the EC2 AMI
- Fixed issues using 64-bit AMIs
* Wed Apr 27 2011 <rrati@redhat> - 1.2-1
- Fixed compatibility with ec2_gahp
- Enhanced check for the ec2_gahp binary
- Fixed issue with HookKeyword getting updated in original job and preventing
  cleanup hook from running
- Updated dep on python-condorec2e to match hooks package version
* Thu Mar 17 2011 <rrati@redhat> - 1.1-3
- Removed the setting of the GridResource in the example routes
- Updated the job finalize hook to work with newer versions of python
- Added dep on python-condorutils >= 1.5
--------------------------------------------------------------------------------


================================================================================
 condor-job-hooks-1.5-4.fc15 (FEDORA-2012-0374)
 Condor Job Hooks
--------------------------------------------------------------------------------
Update Information:

Update to latest from upstream
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 <rrati@redhat> - 1.5-4
- Added optional arg to read_condor_config to control lookup of param without
  subsystem
- Fixed error message raised from read_condor_config if a param with a
  subsystem is not found
* Wed Apr 27 2011 <rrati@redhat> - 1.5-3
- Fixed param lookup issues in read_condor_config
* Mon Mar 14 2011 <rrati@redhat> - 1.5-2
- Fixed issue with run_cmd parsing args on windows
--------------------------------------------------------------------------------


================================================================================
 condor-low-latency-1.2-2.fc15 (FEDORA-2012-0408)
 Low Latency Scheduling
--------------------------------------------------------------------------------
Update Information:

Update to latest from upstream
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 <rrati@redhat> - 1.2-2
- Updated python-condorutils dep
* Fri Jul  1 2011 <rrati@redhat> - 1.2-1
- Change config param names:
  LL_DAEMON -> CAROD
  LL_BROKER -> CAROD_BROKER
- Fixed issues with message expiration
- Updated docs
- Provided example configuration file
--------------------------------------------------------------------------------


================================================================================
 condor-wallaby-4.1.2-2.fc15 (FEDORA-2012-0406)
 Condor configuration using wallaby
--------------------------------------------------------------------------------
Update Information:

condor specific tools for interacting with wallaby
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #755104 - Review Request: condor-wallaby - condor related tools for interacting with wallaby
        https://bugzilla.redhat.com/show_bug.cgi?id=755104
--------------------------------------------------------------------------------


================================================================================
 freeipa-2.1.4-3.fc15 (FEDORA-2012-0387)
 The Identity, Policy and Audit system
--------------------------------------------------------------------------------
Update Information:

This update fixes problems with FreeIPA server and replica installation scripts.

Fixed bugs in *ipa-server-install*:
* Installation crashed when sslget failed to read a certificate due to sslget bug (#771357)
* ipaserver-install.log may not be produced under some circumstances

Fixed bugs in *ipa-replica-install*:
* Script may crash due to invalid Python calls
* Final service restart may fail if krb5kdc server is started before dirsrv server is up

A Cross-Site Request Forgery (CSRF) flaw was found in FreeIPA due to a lack of checking the Referer Header in the server (it is not set in the CLI utilities).  If a remote attacker could trick a user, who was logged into the FreeIPA management interface, into visiting a specially-crafted URL, the attacker could perform FreeIPA oonfiguration changes with the privileges of the logged in
user.

CVE-2011-3636
Fixes SELinux issue in ipa_kpasswd preventing users from changing passwords.
Introduced upgrade script to recover existing configuration after systemd migration
  as user has no means to recover FreeIPA from systemd migration
- Upgrade script:
  - recovers symlinks in Dogtag instance install
  - recovers systemd configuration for FreeIPA's directory server instances
  - recovers freeipa.service
  - migrates directory server and KDC configs to use proper keytabs for systemd services
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan 11 2012 Martin Kosek <mkosek@xxxxxxxxxx> - 2.1.4-3
- Fix ipa-replica-install crashes
- Fix ipa-server-install and ipa-dns-install logging
- Set minimum version of pki-ca to 9.0.17 to fix sslget problem
  caused by FEDORA-2011-17400 update (#771357)
* Wed Dec 21 2011 Alexander Bokovoy <abokovoy@xxxxxxxxxx> - 2.1.4-2
- Rebuild slapi plugins against re-enterant version of libldap
* Tue Dec  6 2011 Rob Crittenden <rcritten@xxxxxxxxxx> - 2.1.4-1
- Update to upstream 2.1.4 (CVE-2011-3636)
* Fri Oct 21 2011 Rob Crittenden <rcritten@xxxxxxxxxx> - 2.1.3-3
- Set minimum nvr of selinux-policy to 3.9.16-38
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #759679 - ipa_kpasswd does not work with selinux in enforcing mode
        https://bugzilla.redhat.com/show_bug.cgi?id=759679
--------------------------------------------------------------------------------


================================================================================
 gofer-0.64-1.fc15 (FEDORA-2012-0371)
 A lightweight, extensible python agent
--------------------------------------------------------------------------------
Update Information:

Update to 0.64.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jan  9 2012 Jeff Ortel <jortel@xxxxxxxxxx> 0.64-1
- Enhanced package (plugin) API. (jortel@xxxxxxxxxx)
* Wed Nov 30 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.63-1
- Mitigate systemd issues on F15. (jortel@xxxxxxxxxx)
* Wed Nov 30 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.62-1
- plugin: package; extra monkey business with yum optparser to support
  INTERACTIVE yum plugins. (jortel@xxxxxxxxxx)
* Wed Nov 23 2011 Jeff Ortel <jortel@xxxxxxxxxx> 0.61-1
- mocks: add support for mock constructors. (jortel@xxxxxxxxxx)
- plugin: package; Fix problem of yum interactive plugins accessing contributed
  options. (jortel@xxxxxxxxxx)
--------------------------------------------------------------------------------


================================================================================
 grinder-0.0.136-1.fc15 (FEDORA-2012-0398)
 A tool for synchronizing content from yum repositories
--------------------------------------------------------------------------------
Update Information:

Initial import
--------------------------------------------------------------------------------


================================================================================
 icc-profiles-openicc-1.3.0-1.fc15 (FEDORA-2012-0369)
 The OpenICC profiles
--------------------------------------------------------------------------------
Update Information:

The OpenICC profiles are provided to serve color managed
applications and services.
--------------------------------------------------------------------------------


================================================================================
 kde-plasma-networkmanagement-0.9-0.69.20120108git.nm09.fc15 (FEDORA-2012-0392)
 NetworkManager KDE 4 integration
--------------------------------------------------------------------------------
Update Information:

New plasma-nm snapshot, includes many bugfixes, namely shared connection improvements
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jan  8 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1:0.9-0.69.20120108git.nm09
- 20120108 snapshot
* Tue Dec 27 2011 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1:0.9-0.68.20111227git.nm09
- 20111227 snapshot
* Sun Dec  4 2011 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1:0.9-0.67.20111203git.nm09
- 20111203 snapshot
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #772252 - Shared connection network security always fallback to None
        https://bugzilla.redhat.com/show_bug.cgi?id=772252
--------------------------------------------------------------------------------


================================================================================
 perl-smartmatch-engine-core-0.02-1.fc15 (FEDORA-2012-0386)
 Default smartmatch implementation from 5.10---5.14
--------------------------------------------------------------------------------
Update Information:

Default smartmatch implementation.
--------------------------------------------------------------------------------


================================================================================
 powertop-1.98-3.fc15 (FEDORA-2012-0382)
 Power consumption monitor
--------------------------------------------------------------------------------
Update Information:

This is an update that fixes bug in acpi_power_meter parser that can lead to crash under several circumstances.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jan 10 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 1.98-3
- Fixed 'unknown' readings from ACPI meters
  Resolves: rhbz#770289
- Fixed compilation on f17
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #770289 - [abrt] powertop-1.98-2.fc16: strcpy: Process /usr/bin/powertop was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=770289
--------------------------------------------------------------------------------


================================================================================
 rubygem-declarative_authorization-0.5.5-1.fc15 (FEDORA-2012-0405)
 Provides readable authorization rules for Rails
--------------------------------------------------------------------------------
Update Information:

Release 0.5.5 of declarative_authorization.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jan 10 2012 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.5.5-1
- Release 0.5.5 of declarative_authorization.
- Adjusted the description and summary to remove warnings.
--------------------------------------------------------------------------------


================================================================================
 torque-3.0.3-1.fc15 (FEDORA-2012-0372)
 Tera-scale Open-source Resource and QUEue manager
--------------------------------------------------------------------------------
Update Information:

Fixes the ability for one user to impersonate another within a batch system.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan 11 2012 Steve Traylen <steve.traylen@xxxxxxx> - 3.0.3-1
- New upstream.
* Sun Oct  9 2011 Steve Traylen <steve.traylen@xxxxxxx> - 3.0.2-4
- Add patch torque-initd-hangs-rhbz-744138.patch
* Mon Sep 19 2011 Steve Traylen <steve.traylen@xxxxxxx> - 3.0.2-3
- Add --with-tcp-retry-limit=2 to build, rhbz#738576.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #752079 - Torque and Munge impersonation vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=752079
--------------------------------------------------------------------------------


================================================================================
 transifex-1.2.1-1.fc15 (FEDORA-2012-0367)
 A system for distributed translation submissions
--------------------------------------------------------------------------------
Update Information:

Update to new upstream
version.
Update to new upstream
version.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jan 10 2012 Domingo Becker <domingobecker@xxxxxxxxx> - 1.2.1-1
- Update to new upstream version.
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test



[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux