The following Fedora 15 Security updates need testing: https://admin.fedoraproject.org/updates/FEDORA-2012-5631/phpMyAdmin-3.5.0-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5805/samba-3.5.14-73.fc15.1 https://admin.fedoraproject.org/updates/FEDORA-2012-5822/gallery3-3.0.3-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5814/gallery2-2.3.2-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5436/quagga-0.99.20.1-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5915/python-2.7.3-1.fc15,python-docs-2.7.3-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5916/python3-3.2.3-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5923/wicd-1.7.0-12.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5420/rpm-4.9.1.3-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5422/freetype-2.4.4-8.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-6055/puppet-2.6.16-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-6001/gajim-0.15-2.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5515/libpng-1.2.49-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15 The following Fedora 15 Critical Path updates have yet to be approved: https://admin.fedoraproject.org/updates/FEDORA-2012-6025/openssh-5.6p1-36.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5915/python-2.7.3-1.fc15,python-docs-2.7.3-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5905/kernel-2.6.43.2-2.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5745/nss-util-3.13.4-2.fc15,nss-3.13.4-2.fc15,nss-softokn-3.13.4-1.fc15,nspr-4.9-2.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5515/libpng-1.2.49-1.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5422/freetype-2.4.4-8.fc15 https://admin.fedoraproject.org/updates/FEDORA-2012-5420/rpm-4.9.1.3-1.fc15 https://admin.fedoraproject.org/updates/dracut-009-15.fc15 https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15 The following builds have been pushed to Fedora 15 updates-testing Zim-0.56-1.fc15 gajim-0.15-2.fc15 gdesklets-0.36.3-6.1.fc15 gfal2-2.0.0-0.6.2012041515snap.fc15 imapsync-1.488-1.fc15 janino-parent-2.6.1-3.fc15 josm-0-0.29.5181svn.fc15 kde-plasma-networkmanagement-0.9.0.1-1.fc15 munin-1.4.7-2.fc15 openssh-5.6p1-36.fc15 perl-DBIx-Class-DynamicDefault-0.04-1.fc15 perl-Mail-IMAPClient-3.31-1.fc15 procServ-2.6.0-1.fc15 puppet-2.6.16-1.fc15 python-libcloud-0.9.1-1.fc15 qlandkartegt-1.4.0-2.fc15 rbldnsd-0.996b-6.fc15 rear-1.13.0-1.fc15 rubygem-mustache-0.99.4-4.fc15 sane-backends-1.0.22-10.fc15 sugar-maze-18-1.fc15 Details about builds: ================================================================================ Zim-0.56-1.fc15 (FEDORA-2012-6036) Desktop wiki & notekeeper -------------------------------------------------------------------------------- Update Information: New upstream release. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 4 2012 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 0.56-1 - Update to 0.56 -------------------------------------------------------------------------------- ================================================================================ gajim-0.15-2.fc15 (FEDORA-2012-6001) Jabber client written in PyGTK -------------------------------------------------------------------------------- Update Information: Fixes CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Michal Schmidt <mschmidt@xxxxxxxxxx> 0.15-2 - CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file -------------------------------------------------------------------------------- References: [ 1 ] Bug #811651 - CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file https://bugzilla.redhat.com/show_bug.cgi?id=811651 -------------------------------------------------------------------------------- ================================================================================ gdesklets-0.36.3-6.1.fc15 (FEDORA-2012-6048) Architecture for desktop applets -------------------------------------------------------------------------------- Update Information: Backport fix from F16 related memory leak bug -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 20 2012 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.36.3-6 - Adhered to Fedora guideline for desktop declaration - Ported patch from OpenSuse spec version - Patch addressing memory leak (rhbz #747420, launchpad #190894) - Drop patch for vfs * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.36.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Dec 6 2011 Adam Jackson <ajax@xxxxxxxxxx> - 0.36.3-4 - Rebuild for new libpng * Mon Dec 5 2011 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.36.3-3 - Patch for vfs declaration (rhbz#740610) - Added gvfs-devel and python3-devel for BuildRequires -------------------------------------------------------------------------------- References: [ 1 ] Bug #747420 - Memory leak in gdesklets-daemon https://bugzilla.redhat.com/show_bug.cgi?id=747420 -------------------------------------------------------------------------------- ================================================================================ gfal2-2.0.0-0.6.2012041515snap.fc15 (FEDORA-2012-6030) Grid file access library 2.0 -------------------------------------------------------------------------------- Update Information: initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #809614 - Review Request: gfal2 - Grid file access library 2.0 https://bugzilla.redhat.com/show_bug.cgi?id=809614 -------------------------------------------------------------------------------- ================================================================================ imapsync-1.488-1.fc15 (FEDORA-2012-6021) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Upgrade to 1.488 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.488-1 - Upgrade to 1.488 -------------------------------------------------------------------------------- ================================================================================ janino-parent-2.6.1-3.fc15 (FEDORA-2012-6067) Parent POM for Janino -------------------------------------------------------------------------------- Update Information: Parent POM for Janino -------------------------------------------------------------------------------- ================================================================================ josm-0-0.29.5181svn.fc15 (FEDORA-2012-6023) An editor for OpenStreetMap (OSM) -------------------------------------------------------------------------------- Update Information: Update to 5181 svn revision Update to 5177 svn revision -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Cédric OLIVIER <cedric.olivier@xxxxxxx> 0-0.29.5181svn - Update to 5181 svn revision * Thu Apr 12 2012 Cédric OLIVIER <cedric.olivier@xxxxxxx> 0-0.28.5177svn - Update to 5177 svn revision -------------------------------------------------------------------------------- ================================================================================ kde-plasma-networkmanagement-0.9.0.1-1.fc15 (FEDORA-2012-6011) NetworkManager KDE 4 integration -------------------------------------------------------------------------------- Update Information: New upstream bugfix release -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 10 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1:0.9.0.1-1 - 0.9.0.1 - simplify/pkgconfig'ize deps a bit -------------------------------------------------------------------------------- ================================================================================ munin-1.4.7-2.fc15 (FEDORA-2012-6010) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: Workaround for issue with all plugins being disabled on upgrade. If you updated to 1.4.7-1, you will need to re-enable plugins you wish to be running. '/usr/sbin/munin-node-configure --shell | sh' -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 15 2012 Kevin Fenzi <kevin@xxxxxxxxx> - 1.4.7-2 - Fix node postun from messing up plugins on upgrade. Works around bug #811867 -------------------------------------------------------------------------------- References: [ 1 ] Bug #811867 - Latest munin-node update clears all plugin settings https://bugzilla.redhat.com/show_bug.cgi?id=811867 -------------------------------------------------------------------------------- ================================================================================ openssh-5.6p1-36.fc15 (FEDORA-2012-6025) An open source implementation of SSH protocol versions 1 and 2 -------------------------------------------------------------------------------- Update Information: This update fixes oom killer patch to set correct values for sshd child processes. This sshd update should be restarted from a console in order not to inherit oom values from the running ssh shell. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Petr Lautrbach <plautrba@xxxxxxxxxx> 5.6p1-36 + 0.9.2-29 - fix out-of-memory killer patch (#812676) -------------------------------------------------------------------------------- References: [ 1 ] Bug #812676 - sshd does not reset oom_score_adj to 0 https://bugzilla.redhat.com/show_bug.cgi?id=812676 -------------------------------------------------------------------------------- ================================================================================ perl-DBIx-Class-DynamicDefault-0.04-1.fc15 (FEDORA-2012-6044) Automatically set and update fields -------------------------------------------------------------------------------- Update Information: This update fixes a massive pessimisation causing repeated ->result_source_instance invocations resulting in get_inherited from C::A::Grouped being the biggest thing in a startup profile. -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Iain Arnell <iarnell@xxxxxxxxx> 0.04-1 - update to latest upstream version - clean up spec for modern rpmbuild * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.03-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Thu Jul 21 2011 Petr Sabata <contyk@xxxxxxxxxx> - 0.03-9 - Perl mass rebuild * Wed Jul 20 2011 Petr Sabata <contyk@xxxxxxxxxx> - 0.03-8 - Perl mass rebuild -------------------------------------------------------------------------------- ================================================================================ perl-Mail-IMAPClient-3.31-1.fc15 (FEDORA-2012-6032) An IMAP Client API -------------------------------------------------------------------------------- Update Information: Upgrade to 3.31 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 3.31-1 - Upgrade to 3.31 * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.30-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ procServ-2.6.0-1.fc15 (FEDORA-2012-6008) Process server with telnet console and log access -------------------------------------------------------------------------------- Update Information: New upstream version. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Ralph Lange <Ralph.Lange@xxxxxx> 2.6.0-1 - New upstream version - Added libtelnet dependency * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ puppet-2.6.16-1.fc15 (FEDORA-2012-6055) A network tool for managing many disparate systems -------------------------------------------------------------------------------- Update Information: This update fixes several security issues recently found in puppet related to filebucket functionality. For full details, refer to the upstream release notes: http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 11 2012 Todd Zullinger <tmz@xxxxxxxxx> - 2.6.16-1 - Update to 2.6.16, fixes CVE-2012-1986, CVE-2012-1987, and CVE-2012-1988 - Correct permissions of /var/log/puppet (0750) -------------------------------------------------------------------------------- References: [ 1 ] Bug #810069 - CVE-2012-1986 puppet: Filebucket arbitrary file read https://bugzilla.redhat.com/show_bug.cgi?id=810069 [ 2 ] Bug #810070 - CVE-2012-1987 puppet: Filebucket denial of service https://bugzilla.redhat.com/show_bug.cgi?id=810070 [ 3 ] Bug #810071 - CVE-2012-1988 puppet: Filebucket arbitrary code execution https://bugzilla.redhat.com/show_bug.cgi?id=810071 -------------------------------------------------------------------------------- ================================================================================ python-libcloud-0.9.1-1.fc15 (FEDORA-2012-6016) A Python library to address multiple cloud provider APIs -------------------------------------------------------------------------------- Update Information: update to 0.9.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Daniel Bruno dbruno@xxxxxxxxxxxxxxxxx - 0.9.1-1 - update to 0.9.1 -------------------------------------------------------------------------------- ================================================================================ qlandkartegt-1.4.0-2.fc15 (FEDORA-2012-6046) GPS device mapping tool -------------------------------------------------------------------------------- Update Information: - fix crash when editing diary -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Dan Horák <dan[at]danny.cz> 1.4.0-2 - fix crash when editing diary (#812605) -------------------------------------------------------------------------------- References: [ 1 ] Bug #812605 - [abrt] qlandkartegt-1.4.0-1.fc16: data: Process /usr/bin/qlandkartegt was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=812605 -------------------------------------------------------------------------------- ================================================================================ rbldnsd-0.996b-6.fc15 (FEDORA-2012-6017) Small, fast daemon to serve DNSBLs -------------------------------------------------------------------------------- Update Information: This update fixes some initscript issues: * Hanging when started from systemd (Bug #807504) * Only starting the first instance when multiple instances are specified in /etc/sysconfig/rbldnsd -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 16 2012 Paul Howarth <paul@xxxxxxxxxxxx> 0.996b-6 - fix some initscript issues (#807504) - do a hardened build (PIE) where possible * Thu Jan 5 2012 Paul Howarth <paul@xxxxxxxxxxxx> 0.996b-5 - nobody else likes macros for commands -------------------------------------------------------------------------------- References: [ 1 ] Bug #807504 - "service rbldnsd start" hangs, times out https://bugzilla.redhat.com/show_bug.cgi?id=807504 -------------------------------------------------------------------------------- ================================================================================ rear-1.13.0-1.fc15 (FEDORA-2012-6028) Relax and Recover (Rear) is a Linux Disaster Recovery framework -------------------------------------------------------------------------------- Update Information: Rear-1.13.0 release -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Gratien D'haese <gdha at sourceforge.net> - 1.13.0-1 - placeholder for release * Sun Mar 4 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 1.12.0-3 - merge F-16 newer version to F-17+ - Clean out long obsolete Fedora versions (F-9) checks * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.12.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rubygem-mustache-0.99.4-4.fc15 (FEDORA-2012-6037) Framework-agnostic way to render logic-free views -------------------------------------------------------------------------------- Update Information: Update to Mustache 0.99.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-4 - Compatibility fixes with older Fedoras and RHELs. - Add missing .gemspec. * Fri Jan 20 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-3 - Rebuilt for Ruby 1.9.3. * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.99.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Wed Jul 27 2011 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-1 - Update to Mustache 0.99.4 - Dropped optional Sinatra dependency. - Removed deprecated %clean section. - Added man pages. -------------------------------------------------------------------------------- ================================================================================ sane-backends-1.0.22-10.fc15 (FEDORA-2012-6066) Scanner access software -------------------------------------------------------------------------------- Update Information: This update fixes a bug in the avision backend which broke initialization of devices. -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.22-10 - fix avision device initialization (#706877) * Tue Jan 10 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.22-9 - rebuild for gcc 4.7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #706877 - Scanner doesn't access avision device with scanimage (Invalid argument) https://bugzilla.redhat.com/show_bug.cgi?id=706877 -------------------------------------------------------------------------------- ================================================================================ sugar-maze-18-1.fc15 (FEDORA-2012-6014) Maze for Sugar -------------------------------------------------------------------------------- Update Information: Version 18 release New Release V 17 New Release V 17 New Release V 17 -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 17 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 18-1 - Release 18 * Fri Apr 13 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 17-1 - Release 17 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test