The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-6371/nginx-1.0.15-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5631/phpMyAdmin-3.5.0-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6395/openssl-1.0.0i-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6414/rubygems-1.7.2-5.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6383/gdb-7.3.1-49.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6349/samba4-4.0.0-26.alpha11.fc15.6
https://admin.fedoraproject.org/updates/FEDORA-2012-6396/bugzilla-3.6.9-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6406/kernel-2.6.43.2-6.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5916/python3-3.2.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5923/wicd-1.7.0-12.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5422/freetype-2.4.4-8.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6055/puppet-2.6.16-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6001/gajim-0.15-2.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6177/gridengine-6.2u5-10.fc15.3
https://admin.fedoraproject.org/updates/FEDORA-2012-5515/libpng-1.2.49-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6398/cifs-utils-5.4-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-6406/kernel-2.6.43.2-6.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6383/gdb-7.3.1-49.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6395/openssl-1.0.0i-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6378/pcre-8.12-7.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-6373/fuse-2.8.7-1.fc15.1
https://admin.fedoraproject.org/updates/FEDORA-2012-5915/python-2.7.3-2.fc15,python-docs-2.7.3-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-5745/nss-util-3.13.4-2.fc15,nss-3.13.4-2.fc15,nss-softokn-3.13.4-1.fc15,nspr-4.9-2.fc15
https://admin.fedoraproject.org/updates/dracut-009-15.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15
The following builds have been pushed to Fedora 15 updates-testing
RackTables-0.19.12-1.fc15
bugzilla-3.6.9-1.fc15
cifs-utils-5.4-1.fc15
clamtk-4.39-1.fc15
drupal7-calendar-3.2-1.fc15
drupal7-date-2.5-1.fc15
dvd+rw-tools-7.1-9.fc15
fuse-2.8.7-1.fc15.1
fuse-sshfs-2.4-1.fc15
fvwm-2.6.4-1.fc15
gdb-7.3.1-49.fc15
kernel-2.6.43.2-6.fc15
liquibase-2.0.3-6.fc15
mspdebug-0.19-1.fc15
nginx-1.0.15-1.fc15
opensips-1.7.2-1.fc15
openssl-1.0.0i-1.fc15
openttd-opengfx-0.4.4-1.fc15
pcre-8.12-7.fc15
python-sphinx-1.0.8-2.fc15
rubygems-1.7.2-5.fc15
samba4-4.0.0-26.alpha11.fc15.6
sems-1.4.2-5.fc15
sugar-visualmatch-36-1.fc15
sugar-visualmatch-37-1.fc15
uget-1.8.1-1.fc15
youtube-dl-2012.02.27-1.fc15
Details about builds:
================================================================================
RackTables-0.19.12-1.fc15 (FEDORA-2012-6384)
A data-center asset management system
--------------------------------------------------------------------------------
Update Information:
Rebase to v0.19.12
Rebase to v0.19.11
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Colin Coe <colin.coe@xxxxxxxxx> - 0.19.12-1
- Rebase to v0.19.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812305 - RackTables-0.19.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=812305
[ 2 ] Bug #746944 - RackTables-0.19.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=746944
--------------------------------------------------------------------------------
================================================================================
bugzilla-3.6.9-1.fc15 (FEDORA-2012-6396)
Bug tracking system
--------------------------------------------------------------------------------
Update Information:
The following security issues have been discovered
in Bugzilla:
* When abusing the X-FORWARDED-FOR header, an attacker could bypass the lockout policy allowing a possible brute-force discovery of a valid user password.
* An attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page.
References: https://bugzilla.mozilla.org/show_bug.cgi?id=745397
CVE Number: CVE-2012-0466
References: https://bugzilla.mozilla.org/show_bug.cgi?id=728639
CVE Number: CVE-2012-0465
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Emmanuel Seyman <emmanuel.seyman@xxxxxxxxxxxxxxxx> - 3.6.9-1
- Update to 3.6.9 (CVE-2012-0465, CVE-2012-0466)
--------------------------------------------------------------------------------
================================================================================
cifs-utils-5.4-1.fc15 (FEDORA-2012-6398)
Utilities for mounting and managing CIFS mounts
--------------------------------------------------------------------------------
Update Information:
This updates the cifs-utils package to version 5.4, which contains a number of bugfixes and enhancements. Highlights include:
* mount.cifs now supports the -s option by passing "sloppy" to the kernel in the options string
* cifs.upcall now properly respects the domain_realm section in krb5.conf
* unprivileged users can no longer mount onto dirs into which they can't chdir (fixes CVE-2012-1586)
* the cifscreds, getcifsacl and setcifsacl programs have been added to the package
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 18 2012 Jeff Layton <jlayton@xxxxxxxxxx> 5.4-1
- update to 5.4
- add patch to fix up more warnings
- add cifscreds, getcifsacl and setcifsacl to package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #807252 - CVE-2012-1586 samba, samba3x, cifs-utils: mount.cifs file existence disclosure vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=807252
--------------------------------------------------------------------------------
================================================================================
clamtk-4.39-1.fc15 (FEDORA-2012-6352)
Easy to use graphical user interface for Clam anti virus
--------------------------------------------------------------------------------
Update Information:
Update to 4.39
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Dave M. <dave.nerd@xxxxxxxxx> - 4.39-1
- Updated to release 4.39.
--------------------------------------------------------------------------------
================================================================================
drupal7-calendar-3.2-1.fc15 (FEDORA-2012-6388)
This module will display any Views date field in calendar formats
--------------------------------------------------------------------------------
Update Information:
Updated to 3.2, http://drupal.org/node/1540864.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Peter Borsa <peter.borsa@xxxxxxxxx> - 3.2-1
- New upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814632 - drupal7-calendar-3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=814632
--------------------------------------------------------------------------------
================================================================================
drupal7-date-2.5-1.fc15 (FEDORA-2012-6377)
This package contains both the Date module and a Date API module
--------------------------------------------------------------------------------
Update Information:
Update to upstream 2.5 release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 2.5-1
- Update to upstream release 2.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814147 - drupal7-date-2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=814147
--------------------------------------------------------------------------------
================================================================================
dvd+rw-tools-7.1-9.fc15 (FEDORA-2012-5490)
Toolchain to master DVD+RW/+R media
--------------------------------------------------------------------------------
Update Information:
This is an update that fixes problems with writing a media with a Teac drive and wrong blocks count in DAO mode.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Honza Horak <hhorak@xxxxxxxxxx> - 7.1-9
- Allow buffer length of the block to be shorter than multiple of 16,
even in case of DAO writing (replaces the previous fix)
Resolves: #810483
* Fri Apr 6 2012 Honza Horak <hhorak@xxxxxxxxxx> - 7.1-8
- Align blocks count to multiple of 16 also in case of DAO writing
Resolves: #810483
* Wed Mar 7 2012 Honza Horak <hhorak@xxxxxxxxxx> - 7.1-7
- applied patch from Petr Sumbera to handle Teac DVD drive timeout issue
Resolves: #799299
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 7.1-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799299 - growisofs cannot write twice to a TEAC DV-W28SS-R (fix = apply specified patch)
https://bugzilla.redhat.com/show_bug.cgi?id=799299
[ 2 ] Bug #810483 - Burning DVD media using growisofs sometimes fails
https://bugzilla.redhat.com/show_bug.cgi?id=810483
--------------------------------------------------------------------------------
================================================================================
fuse-2.8.7-1.fc15.1 (FEDORA-2012-6373)
File System in Userspace (FUSE) utilities
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.8.7
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 2.8.7-1
- Ver. 2.8.7
--------------------------------------------------------------------------------
================================================================================
fuse-sshfs-2.4-1.fc15 (FEDORA-2012-6358)
FUSE-Filesystem to access remote filesystems via SSH
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.4
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 2.4-1
- Ver. 2.4
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
fvwm-2.6.4-1.fc15 (FEDORA-2012-6408)
Highly configurable multiple virtual desktop window manager
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.6.4 (latest supported release)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 2.6.4-1
- Ver. 2.6.4
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5.30-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <ajax@xxxxxxxxxx> - 2.5.30-5
- Rebuild for new libpng
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #709899 - fvwn 2.6.1 is released
https://bugzilla.redhat.com/show_bug.cgi?id=709899
[ 2 ] Bug #741132 - RFE: need fvwm update to stable version
https://bugzilla.redhat.com/show_bug.cgi?id=741132
[ 3 ] Bug #799348 - RFE: fvwm needs an update to stable version
https://bugzilla.redhat.com/show_bug.cgi?id=799348
--------------------------------------------------------------------------------
================================================================================
gdb-7.3.1-49.fc15 (FEDORA-2012-6383)
A GNU source-level debugger for C, C++, Java and other languages
--------------------------------------------------------------------------------
Update Information:
Security fix for loading untrusted inferiors, see "set auto-load".
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.3.1-49.fc15
- Security fix for loading untrusted inferiors, see "set auto-load" (BZ 756117).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #756117 - CVE-2011-4355 gdb: arbitrary code execution via .debug_gdb_scripts [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=756117
--------------------------------------------------------------------------------
================================================================================
kernel-2.6.43.2-6.fc15 (FEDORA-2012-6406)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
Fixes CVEs:
CVE-2012-2123
CVE-2012-2121
CVE-2012-2119
Also fixes a boot regression on some Dell machines
Linux 3.3.2
There was a regression at the DVB core, affecting applications that require the DVB status before having a lock. In order to allow a broader test (including my environment).
All new patches from the upstream media tree up to Apr, 10 got backported plus the fix patches, in order to have, among other things, the az6007 and af9035 drivers backported.
Various bugfixes.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Josh Boyer <jwboyer@xxxxxxxxxx> - 2.6.43.2-6
- Fix error check in memblock that prevented boot on various Dells (rhbz 811225)
* Fri Apr 20 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- CVE-2012-2123 fcaps: clear the same personality flags as suid when fcaps
are used (rhbz 814523 806722)
* Thu Apr 19 2012 Justin M. Forbes <jforbes@xxxxxxxxxx> 2.6.43.2-4
- CVE-2012-2119 macvtap: zerocopy: vector length is not validated before
pinning user pages (rhbz 814278 814289)
* Thu Apr 19 2012 Justin M. Forbes <jforbes@xxxxxxxxxx>
- Fix KVM device assignment page leak (rhbz 814149 814155)
* Wed Apr 18 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Change patch to resolve libata hotplug (rhbz 807632)
- Disable CONFIG_HID_BATTERY_STRENGTH (rhbz 806295)
* Tue Apr 17 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Fix oops in nfs_have_delegation (rhbz 811138)
- Fix oops on invalid AMD microcode load (rhbz 797559)
* Sat Apr 14 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Add ALSA quirk for MacPro 5,1 machines (rhbz 808559)
* Fri Apr 13 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Reapply rebased drivers-media-update.patch
* Fri Apr 13 2012 Dave Jones <davej@xxxxxxxxxx> 2.6.43.2-1
- Linux 3.3.2
* Thu Apr 12 2012 Dennis Gilmore <dennis@xxxxxxxx>
- KALLSYMS_EXTRA_PASS=1 has to be passed in on the command line so do so only for arm
* Tue Apr 10 2012 Mauro Carvalho Chehab <mchehab@xxxxxxxxxx>
- Backport dvb-core and a few driver fixes from media tree (rhbz808871)
* Tue Apr 10 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Apply upstream patch to add USB device 13d3:3375 (rhbz 811087)
- Backport fixes for correct register constraints in cmpxchg.h (rhbz 809014)
* Thu Apr 5 2012 Dave Jones <davej@xxxxxxxxxx>
- Better watermark the number of pages used by hibernation I/O (Bojan Smojver) (rhbz 785384)
* Wed Apr 4 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Disable runtime PM for hotpluggable ATA ports (rhbz 806676 807632)
- Fix NULL pointer dereference in i2400m (rhbz 808603)
* Tue Apr 3 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Fix crash in uvc_video_clock_update from Laurent Pinchart (rhbz 806433)
- iwl{wifi,legacy}: Fix warnings on remove interface from Stanislaw Gruszka
(rhbz 770467)
* Tue Apr 3 2012 Dave Jones <davej@xxxxxxxxxx> 2.6.43.1-2
- Disable CONFIG_DEBUG_PAGEALLOC in -debug builds again.
* Mon Apr 2 2012 Dave Jones <davej@xxxxxxxxxx>
- Linux 3.3.1
* Mon Apr 2 2012 Dave Jones <davej@xxxxxxxxxx>
- Linux 3.3
* Fri Mar 30 2012 Dave Jones <davej@xxxxxxxxxx>
- Silence the timekeeping "Adjusting tsc more then 11%" spew. (rhbz 798600)
* Fri Mar 30 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- CVE-2012-1601: kvm: NULL dereference from irqchip_in_kernel and
vcpu->arch.apic inconsistency (rhbz 808207)
- Add patch to fix incorrect buffer length in __nfs4_get_acl_uncached
* Thu Mar 29 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- Drop __cpuinitdata on disable_nx for x86_32 (rhbz 808075)
* Mon Mar 26 2012 Dave Jones <davej@xxxxxxxxxx>
- Linux 3.2.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806722 - CVE-2012-2123 kernel: fcaps: clear the same personality flags as suid when fcaps are used
https://bugzilla.redhat.com/show_bug.cgi?id=806722
[ 2 ] Bug #814278 - CVE-2012-2119 kernel: macvtap: zerocopy: vector length is not validated before pinning user pages
https://bugzilla.redhat.com/show_bug.cgi?id=814278
[ 3 ] Bug #814149 - CVE-2012-2121 kvm: device assignment page leak
https://bugzilla.redhat.com/show_bug.cgi?id=814149
--------------------------------------------------------------------------------
================================================================================
liquibase-2.0.3-6.fc15 (FEDORA-2012-6353)
Database Refactoring Tool
--------------------------------------------------------------------------------
Update Information:
First Fedora release of the liquibase database refactoring tool.
--------------------------------------------------------------------------------
================================================================================
mspdebug-0.19-1.fc15 (FEDORA-2012-6419)
Debugger and gdb proxy for MSP430 MCUs
--------------------------------------------------------------------------------
Update Information:
Update to 0.19
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 21 2012 Rob Spanton <rspanton@xxxxxxxxxx> - 0.19-1
- Bump up to 0.19
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nginx-1.0.15-1.fc15 (FEDORA-2012-6371)
A high performance web server and reverse proxy server
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.15
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jamie Nguyen <jamie@xxxxxxxxxxxxxxxxx> - 1.0.15-1
- update to upstream release 1.0.15
- CVE-2012-2089 (#812093)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812093 - CVE-2012-2089 nginx: arbitrary code execution in mp4 pseudo-streaming module
https://bugzilla.redhat.com/show_bug.cgi?id=812093
--------------------------------------------------------------------------------
================================================================================
opensips-1.7.2-1.fc15 (FEDORA-2012-6412)
Open Source SIP Server
--------------------------------------------------------------------------------
Update Information:
Ver. 1.7.2 (bugfix release)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.7.2-1
- update to 1.7.2 (bugfix release).
- enable systemd support where possible
* Fri Apr 13 2012 Jindrich Novy <jnovy@xxxxxxxxxx> - 1.7.1-6
- rebuild against new librpm and libdb
* Sat Mar 3 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.7.1-5
- rebuild against libmemcached.so.9
* Fri Feb 10 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 1.7.1-4
- Rebuild against PCRE 8.30
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.7.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
openssl-1.0.0i-1.fc15 (FEDORA-2012-6395)
A general purpose cryptography library with TLS implementation
--------------------------------------------------------------------------------
Update Information:
Upstream security update fixing CVE-2012-2110 - memory corruption in when reading ASN.1 structures through BIO interface.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Tomas Mraz <tmraz@xxxxxxxxxx> 1.0.0i-1
- new upstream release fixing CVE-2012-2110 - memory corruption
when loading asn1 from BIO
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814185 - CVE-2012-2110 openssl: asn1_d2i_read_bio integer errors leading to buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=814185
--------------------------------------------------------------------------------
================================================================================
openttd-opengfx-0.4.4-1.fc15 (FEDORA-2012-6359)
OpenGFX replacement graphics for OpenTTD
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.4
Build Sprites from PNG Sources using GIMPscript
Update to 0.4.3
Update to 0.4.3
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 0.4.4-1
- update to 0.4.4
- use clean-gfx target to build completely from source
* Thu Mar 29 2012 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 0.4.3-1
- update to 0.4.3
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.3.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
pcre-8.12-7.fc15 (FEDORA-2012-6378)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
Fix matching \s*\R.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 8.12-7
- Possesify \s*\R (bug #813237)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #813237 - \s*\R does not match
https://bugzilla.redhat.com/show_bug.cgi?id=813237
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.0.8-2.fc15 (FEDORA-2012-6418)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Update to latest 1.0.x Sphinx release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 5 2012 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 1.0.8-2
- BR on texlive-latex for LaTeX tests
* Thu Apr 5 2012 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 1.0.8-1
- Update to upstream 1.0.8
--------------------------------------------------------------------------------
================================================================================
rubygems-1.7.2-5.fc15 (FEDORA-2012-6414)
The Ruby standard for packaging ruby libraries
--------------------------------------------------------------------------------
Update Information:
With this new rubygems, HTTPS connection no longer redirects to HTTP. Also now rubygems verify SSL connection.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.7.2-5
- Backport fix for insecure connection to SSL repository (bug 814718)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814718 - rubygems: Two security fixes in v1.8.23
https://bugzilla.redhat.com/show_bug.cgi?id=814718
--------------------------------------------------------------------------------
================================================================================
samba4-4.0.0-26.alpha11.fc15.6 (FEDORA-2012-6349)
The Samba4 CIFS and AD client and server suite
--------------------------------------------------------------------------------
Update Information:
This update fixes CVE-2012-1182.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Andreas Schneider <asn@xxxxxxxxxx> - 4.0.0-26.alpha11.6
- Fixes CVE-2012-1182.
--------------------------------------------------------------------------------
================================================================================
sems-1.4.2-5.fc15 (FEDORA-2012-6374)
SIP Express Media Server, an extensible SIP media server
--------------------------------------------------------------------------------
Update Information:
* Enabled iLBC ( https://bugzilla.redhat.com/728302#c26 )
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.4.2-5
- Enabled iLBC ( https://bugzilla.redhat.com/728302#c26 )
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.2-4
- Rebuilt for c++ ABI breakage
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
sugar-visualmatch-36-1.fc15 (FEDORA-2012-6413)
A visual matching game
--------------------------------------------------------------------------------
Update Information:
New version 36 release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 36-1
- New 36 release
--------------------------------------------------------------------------------
================================================================================
sugar-visualmatch-37-1.fc15 (FEDORA-2012-6380)
A visual matching game
--------------------------------------------------------------------------------
Update Information:
BUG FIX:
* Fixed typo that prevented help animation from terminating
ENHANCEMENT:
* Autoadvance levels when play improves
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 37-1
- New 37 release
* Fri Apr 20 2012 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 36-1
- New 36 release
--------------------------------------------------------------------------------
================================================================================
uget-1.8.1-1.fc15 (FEDORA-2012-6391)
Download manager using GTK+ and libcurl
--------------------------------------------------------------------------------
Update Information:
New version 1.8.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.1-1
- 1.8.1
* Thu Jan 5 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.0-4
- F-17: rebuild against gcc47
* Wed Nov 9 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.0-3
- F-17: Use deprecated declaration in GTK 3 for now
* Wed Nov 9 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.0-2
- Rebuild
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2012.02.27-1.fc15 (FEDORA-2012-6360)
Small command-line program to download videos from YouTube
--------------------------------------------------------------------------------
Update Information:
New upstream release with various minor bugfixes.
Upstream changelog:
https://github.com/rg3/youtube-dl/commits/master
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Till Maas <opensource@xxxxxxxxx> - 2012.02.27-1
- Update to new release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #768623 - youtube-dl-2012.02.27 is available
https://bugzilla.redhat.com/show_bug.cgi?id=768623
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
