The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-5631/phpMyAdmin-3.5.0-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5805/samba-3.5.14-73.fc15.1
https://admin.fedoraproject.org/updates/FEDORA-2012-5822/gallery3-3.0.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5814/gallery2-2.3.2-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5436/quagga-0.99.20.1-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5915/python-2.7.3-1.fc15,python-docs-2.7.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5916/python3-3.2.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5923/wicd-1.7.0-12.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5420/rpm-4.9.1.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5422/freetype-2.4.4-8.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6055/puppet-2.6.16-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6001/gajim-0.15-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5515/libpng-1.2.49-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-6025/openssh-5.6p1-36.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5915/python-2.7.3-1.fc15,python-docs-2.7.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5905/kernel-2.6.43.2-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5745/nss-util-3.13.4-2.fc15,nss-3.13.4-2.fc15,nss-softokn-3.13.4-1.fc15,nspr-4.9-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5515/libpng-1.2.49-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5422/freetype-2.4.4-8.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5420/rpm-4.9.1.3-1.fc15
https://admin.fedoraproject.org/updates/dracut-009-15.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15
The following builds have been pushed to Fedora 15 updates-testing
Zim-0.56-1.fc15
gajim-0.15-2.fc15
gdesklets-0.36.3-6.1.fc15
gfal2-2.0.0-0.6.2012041515snap.fc15
imapsync-1.488-1.fc15
janino-parent-2.6.1-3.fc15
josm-0-0.29.5181svn.fc15
kde-plasma-networkmanagement-0.9.0.1-1.fc15
munin-1.4.7-2.fc15
openssh-5.6p1-36.fc15
perl-DBIx-Class-DynamicDefault-0.04-1.fc15
perl-Mail-IMAPClient-3.31-1.fc15
procServ-2.6.0-1.fc15
puppet-2.6.16-1.fc15
python-libcloud-0.9.1-1.fc15
qlandkartegt-1.4.0-2.fc15
rbldnsd-0.996b-6.fc15
rear-1.13.0-1.fc15
rubygem-mustache-0.99.4-4.fc15
sane-backends-1.0.22-10.fc15
sugar-maze-18-1.fc15
Details about builds:
================================================================================
Zim-0.56-1.fc15 (FEDORA-2012-6036)
Desktop wiki & notekeeper
--------------------------------------------------------------------------------
Update Information:
New upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 4 2012 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 0.56-1
- Update to 0.56
--------------------------------------------------------------------------------
================================================================================
gajim-0.15-2.fc15 (FEDORA-2012-6001)
Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:
Fixes CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Michal Schmidt <mschmidt@xxxxxxxxxx> 0.15-2
- CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #811651 - CVE-2012-2093 gajim (LaTeX module): Insecure creation of temporary file
https://bugzilla.redhat.com/show_bug.cgi?id=811651
--------------------------------------------------------------------------------
================================================================================
gdesklets-0.36.3-6.1.fc15 (FEDORA-2012-6048)
Architecture for desktop applets
--------------------------------------------------------------------------------
Update Information:
Backport fix from F16 related memory leak bug
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 20 2012 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.36.3-6
- Adhered to Fedora guideline for desktop declaration
- Ported patch from OpenSuse spec version
- Patch addressing memory leak (rhbz #747420, launchpad #190894)
- Drop patch for vfs
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.36.3-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <ajax@xxxxxxxxxx> - 0.36.3-4
- Rebuild for new libpng
* Mon Dec 5 2011 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.36.3-3
- Patch for vfs declaration (rhbz#740610)
- Added gvfs-devel and python3-devel for BuildRequires
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #747420 - Memory leak in gdesklets-daemon
https://bugzilla.redhat.com/show_bug.cgi?id=747420
--------------------------------------------------------------------------------
================================================================================
gfal2-2.0.0-0.6.2012041515snap.fc15 (FEDORA-2012-6030)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
initial import
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #809614 - Review Request: gfal2 - Grid file access library 2.0
https://bugzilla.redhat.com/show_bug.cgi?id=809614
--------------------------------------------------------------------------------
================================================================================
imapsync-1.488-1.fc15 (FEDORA-2012-6021)
Tool to migrate email between IMAP servers
--------------------------------------------------------------------------------
Update Information:
Upgrade to 1.488
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.488-1
- Upgrade to 1.488
--------------------------------------------------------------------------------
================================================================================
janino-parent-2.6.1-3.fc15 (FEDORA-2012-6067)
Parent POM for Janino
--------------------------------------------------------------------------------
Update Information:
Parent POM for Janino
--------------------------------------------------------------------------------
================================================================================
josm-0-0.29.5181svn.fc15 (FEDORA-2012-6023)
An editor for OpenStreetMap (OSM)
--------------------------------------------------------------------------------
Update Information:
Update to 5181 svn revision
Update to 5177 svn revision
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Cédric OLIVIER <cedric.olivier@xxxxxxx> 0-0.29.5181svn
- Update to 5181 svn revision
* Thu Apr 12 2012 Cédric OLIVIER <cedric.olivier@xxxxxxx> 0-0.28.5177svn
- Update to 5177 svn revision
--------------------------------------------------------------------------------
================================================================================
kde-plasma-networkmanagement-0.9.0.1-1.fc15 (FEDORA-2012-6011)
NetworkManager KDE 4 integration
--------------------------------------------------------------------------------
Update Information:
New upstream bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1:0.9.0.1-1
- 0.9.0.1
- simplify/pkgconfig'ize deps a bit
--------------------------------------------------------------------------------
================================================================================
munin-1.4.7-2.fc15 (FEDORA-2012-6010)
Network-wide graphing framework (grapher/gatherer)
--------------------------------------------------------------------------------
Update Information:
Workaround for issue with all plugins being disabled on upgrade. If you updated to 1.4.7-1, you will need to re-enable plugins you wish to be running. '/usr/sbin/munin-node-configure --shell | sh'
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 15 2012 Kevin Fenzi <kevin@xxxxxxxxx> - 1.4.7-2
- Fix node postun from messing up plugins on upgrade. Works around bug #811867
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #811867 - Latest munin-node update clears all plugin settings
https://bugzilla.redhat.com/show_bug.cgi?id=811867
--------------------------------------------------------------------------------
================================================================================
openssh-5.6p1-36.fc15 (FEDORA-2012-6025)
An open source implementation of SSH protocol versions 1 and 2
--------------------------------------------------------------------------------
Update Information:
This update fixes oom killer patch to set correct values for sshd child processes.
This sshd update should be restarted from a console in order not to
inherit oom values from the running ssh shell.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Petr Lautrbach <plautrba@xxxxxxxxxx> 5.6p1-36 + 0.9.2-29
- fix out-of-memory killer patch (#812676)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812676 - sshd does not reset oom_score_adj to 0
https://bugzilla.redhat.com/show_bug.cgi?id=812676
--------------------------------------------------------------------------------
================================================================================
perl-DBIx-Class-DynamicDefault-0.04-1.fc15 (FEDORA-2012-6044)
Automatically set and update fields
--------------------------------------------------------------------------------
Update Information:
This update fixes a massive pessimisation causing repeated ->result_source_instance invocations resulting in get_inherited from C::A::Grouped being the biggest thing in a startup profile.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Iain Arnell <iarnell@xxxxxxxxx> 0.04-1
- update to latest upstream version
- clean up spec for modern rpmbuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.03-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Thu Jul 21 2011 Petr Sabata <contyk@xxxxxxxxxx> - 0.03-9
- Perl mass rebuild
* Wed Jul 20 2011 Petr Sabata <contyk@xxxxxxxxxx> - 0.03-8
- Perl mass rebuild
--------------------------------------------------------------------------------
================================================================================
perl-Mail-IMAPClient-3.31-1.fc15 (FEDORA-2012-6032)
An IMAP Client API
--------------------------------------------------------------------------------
Update Information:
Upgrade to 3.31
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 3.31-1
- Upgrade to 3.31
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.30-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
procServ-2.6.0-1.fc15 (FEDORA-2012-6008)
Process server with telnet console and log access
--------------------------------------------------------------------------------
Update Information:
New upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Ralph Lange <Ralph.Lange@xxxxxx> 2.6.0-1
- New upstream version
- Added libtelnet dependency
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5.1-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
puppet-2.6.16-1.fc15 (FEDORA-2012-6055)
A network tool for managing many disparate systems
--------------------------------------------------------------------------------
Update Information:
This update fixes several security issues recently found in puppet related to filebucket functionality. For full details, refer to the upstream release notes:
http://projects.puppetlabs.com/projects/1/wiki/Release_Notes#2.6.15
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 11 2012 Todd Zullinger <tmz@xxxxxxxxx> - 2.6.16-1
- Update to 2.6.16, fixes CVE-2012-1986, CVE-2012-1987, and CVE-2012-1988
- Correct permissions of /var/log/puppet (0750)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810069 - CVE-2012-1986 puppet: Filebucket arbitrary file read
https://bugzilla.redhat.com/show_bug.cgi?id=810069
[ 2 ] Bug #810070 - CVE-2012-1987 puppet: Filebucket denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=810070
[ 3 ] Bug #810071 - CVE-2012-1988 puppet: Filebucket arbitrary code execution
https://bugzilla.redhat.com/show_bug.cgi?id=810071
--------------------------------------------------------------------------------
================================================================================
python-libcloud-0.9.1-1.fc15 (FEDORA-2012-6016)
A Python library to address multiple cloud provider APIs
--------------------------------------------------------------------------------
Update Information:
update to 0.9.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Daniel Bruno dbruno@xxxxxxxxxxxxxxxxx - 0.9.1-1
- update to 0.9.1
--------------------------------------------------------------------------------
================================================================================
qlandkartegt-1.4.0-2.fc15 (FEDORA-2012-6046)
GPS device mapping tool
--------------------------------------------------------------------------------
Update Information:
- fix crash when editing diary
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Dan Horák <dan[at]danny.cz> 1.4.0-2
- fix crash when editing diary (#812605)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812605 - [abrt] qlandkartegt-1.4.0-1.fc16: data: Process /usr/bin/qlandkartegt was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=812605
--------------------------------------------------------------------------------
================================================================================
rbldnsd-0.996b-6.fc15 (FEDORA-2012-6017)
Small, fast daemon to serve DNSBLs
--------------------------------------------------------------------------------
Update Information:
This update fixes some initscript issues:
* Hanging when started from systemd (Bug #807504)
* Only starting the first instance when multiple instances are specified in /etc/sysconfig/rbldnsd
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Paul Howarth <paul@xxxxxxxxxxxx> 0.996b-6
- fix some initscript issues (#807504)
- do a hardened build (PIE) where possible
* Thu Jan 5 2012 Paul Howarth <paul@xxxxxxxxxxxx> 0.996b-5
- nobody else likes macros for commands
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #807504 - "service rbldnsd start" hangs, times out
https://bugzilla.redhat.com/show_bug.cgi?id=807504
--------------------------------------------------------------------------------
================================================================================
rear-1.13.0-1.fc15 (FEDORA-2012-6028)
Relax and Recover (Rear) is a Linux Disaster Recovery framework
--------------------------------------------------------------------------------
Update Information:
Rear-1.13.0 release
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Gratien D'haese <gdha at sourceforge.net> - 1.13.0-1
- placeholder for release
* Sun Mar 4 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 1.12.0-3
- merge F-16 newer version to F-17+
- Clean out long obsolete Fedora versions (F-9) checks
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.12.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
rubygem-mustache-0.99.4-4.fc15 (FEDORA-2012-6037)
Framework-agnostic way to render logic-free views
--------------------------------------------------------------------------------
Update Information:
Update to Mustache 0.99.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-4
- Compatibility fixes with older Fedoras and RHELs.
- Add missing .gemspec.
* Fri Jan 20 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-3
- Rebuilt for Ruby 1.9.3.
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.99.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Wed Jul 27 2011 Vít Ondruch <vondruch@xxxxxxxxxx> - 0.99.4-1
- Update to Mustache 0.99.4
- Dropped optional Sinatra dependency.
- Removed deprecated %clean section.
- Added man pages.
--------------------------------------------------------------------------------
================================================================================
sane-backends-1.0.22-10.fc15 (FEDORA-2012-6066)
Scanner access software
--------------------------------------------------------------------------------
Update Information:
This update fixes a bug in the avision backend which broke initialization of devices.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.22-10
- fix avision device initialization (#706877)
* Tue Jan 10 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.22-9
- rebuild for gcc 4.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #706877 - Scanner doesn't access avision device with scanimage (Invalid argument)
https://bugzilla.redhat.com/show_bug.cgi?id=706877
--------------------------------------------------------------------------------
================================================================================
sugar-maze-18-1.fc15 (FEDORA-2012-6014)
Maze for Sugar
--------------------------------------------------------------------------------
Update Information:
Version 18 release
New Release V 17
New Release V 17
New Release V 17
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 18-1
- Release 18
* Fri Apr 13 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 17-1
- Release 17
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
