The following Fedora 16 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-7535/rubygem-actionmailer-3.0.10-2.fc16,rubygem-mail-2.4.4-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7586/php-5.3.13-1.fc16,maniadrive-1.2-32.fc16.5,php-eaccelerator-0.9.6.1-9.fc16.5
https://admin.fedoraproject.org/updates/FEDORA-2012-7124/postgresql-pgpoolAdmin-3.1.1-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5833/python3-3.2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6628/dokuwiki-0-0.10.20110525.a.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7293/drupal6-og-2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6614/gdb-7.3.50.20110722-16.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6722/bind-dyndb-ldap-1.1.0-0.11.rc1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6382/samba4-4.0.0-38.alpha16.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7538/kernel-3.3.5-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7593/tomcat6-6.0.35-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7597/moodle-2.0.8-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7141/seamonkey-2.9.1-1.fc16
The following Fedora 16 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-7585/yum-3.4.3-24.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7553/bash-4.2.28-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7532/obexd-0.44-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7561/clutter-1.8.4-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7538/kernel-3.3.5-2.fc16
https://admin.fedoraproject.org/updates/policycoreutils-2.1.4-17.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7427/garcon-0.1.9-4.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7286/livecd-tools-16.15-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7294/lorax-16.4.9-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7238/xorg-x11-drv-nouveau-0.0.16-28.20120321gitab7291d.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7172/NetworkManager-0.9.4-5.git20120502.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7145/mdadm-3.2.3-9.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7168/NetworkManager-0.9.4-4.git20120403.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6993/iproute-2.6.39-6.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6994/upower-0.9.16-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6914/mysql-5.5.23-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-3319/GConf2-3.2.3-4.fc16
The following builds have been pushed to Fedora 16 updates-testing
amarok-2.5.0-8.fc16
apper-0.7.1-5.fc16
autojump-20-1.fc16
bash-4.2.28-1.fc16
bouncycastle-1.46-2.fc16
bouncycastle-mail-1.46-2.fc16
clutter-1.8.4-2.fc16
conky-1.9.0-1.fc16
dnsperf-2.0.0.0-1.fc16
erlang-amf-0-0.6.20110224gitb36dfb6.fc16
erlang-rpm-macros-0.1.3-1.fc16
fcitx-4.2.3-1.fc16
gfal2-2.0.0-0.7.2012050413snap.fc16
ghc-sendfile-0.7.6-1.fc16
git-cola-1.7.7-1.fc16
glusterfs-3.2.6-2.fc16
janino-2.6.1-12.fc16
kernel-3.3.5-2.fc16
kile-2.1.2-2.fc16
logwatch-7.4.0-12.20120229svn100.fc16
lutok-0.1-2.fc16
maniadrive-1.2-32.fc16.5
mod_authnz_external-3.2.6-1.fc16
moodle-2.0.8-2.fc16
novacom-client-1.1.0-0.4.rc1.git.ff7641193a.fc16
novacom-server-1.1.0-0.6.rc1.fc16
nspluginwrapper-1.4.4-8.fc16
obexd-0.44-1.fc16
perl-Plack-Middleware-Test-StashWarnings-0.06-1.fc16
php-5.3.13-1.fc16
php-eaccelerator-0.9.6.1-9.fc16.5
php-pecl-xhprof-0.9.2-5.fc16
pki-core-9.0.20-1.fc16
poweradmin-2.1.6-1.fc16
pwauth-2.3.10-1.fc16
pymol-1.5.0.2-2.20120218svn3982.fc16
python-messaging-0.8-1.fc16
qbittorrent-2.9.8-1.fc16
rubygem-actionmailer-3.0.10-2.fc16
rubygem-mail-2.4.4-1.fc16
scribus-1.4.1-1.fc16
setroubleshoot-3.1.11-1.fc16
setroubleshoot-plugins-3.0.38-1.fc16
subversion-api-docs-1.6.18-1.fc16
sugar-calculator-40-1.fc16
sugar-moon-14-1.fc16
sugar-record-96-1.fc16
texworks-0.4.4-1.fc16
tomcat6-6.0.35-1.fc16
transmission-remote-cli-1.2.2-1.fc16
vim-7.3.515-1.fc16
xca-0.9.2-1.fc16
xen-4.1.2-7.fc16
xscreensaver-5.15-6.fc16
yum-3.4.3-24.fc16
Details about builds:
================================================================================
amarok-2.5.0-8.fc16 (FEDORA-2012-7576)
Media player
--------------------------------------------------------------------------------
Update Information:
Fix crasher related to xspf playlists
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 13 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.5.0-8
- Load all XSPF tracks (kde#295199)
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5.0-7
- Rebuilt for c++ ABI breakage
* Sun Jan 29 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 2.5.0-6
- help: invoke a browser on the online UserBase doc if amarok-doc not installed
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799906 - Can't load XSPF playlist in amarok
https://bugzilla.redhat.com/show_bug.cgi?id=799906
--------------------------------------------------------------------------------
================================================================================
apper-0.7.1-5.fc16 (FEDORA-2012-7575)
KDE interface for PackageKit
--------------------------------------------------------------------------------
Update Information:
Respect the settings and don't check for updates when on battery
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Lukáš Tinkl <ltinkl@xxxxxxxxxx> 0.7.1-5
- respect the settings and don't check for updates when on battery
* Wed Apr 25 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.7.1-4
- rebuild (PackageKit-qt)
--------------------------------------------------------------------------------
================================================================================
autojump-20-1.fc16 (FEDORA-2012-7564)
A fast way to navigate your filesystem from the command line
--------------------------------------------------------------------------------
Update Information:
- Update to version 20
- Bugfixes
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 20-1
- Update to version 20
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 19-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
bash-4.2.28-1.fc16 (FEDORA-2012-7553)
The GNU Bourne Again shell
--------------------------------------------------------------------------------
Update Information:
Update to upstream patch level 28
Bash could hang or segafult when handling sigchld signal
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Roman Rakus <rrakus@xxxxxxxxxx> - 4.2.28-1
- Patchlevel 28
* Mon Apr 23 2012 Roman Rakus <rrakus@xxxxxxxxxx> - 4.2.24-2
- Don't call malloc in signal handler
--------------------------------------------------------------------------------
================================================================================
bouncycastle-1.46-2.fc16 (FEDORA-2012-7557)
Bouncy Castle Crypto Package for Java
--------------------------------------------------------------------------------
Update Information:
Use original sources from here on out.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1.46-2
- use original sources from here on out
--------------------------------------------------------------------------------
================================================================================
bouncycastle-mail-1.46-2.fc16 (FEDORA-2012-7557)
S/MIME and CMS libraries for Bouncy Castle
--------------------------------------------------------------------------------
Update Information:
Use original sources from here on out.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Orcan Ogetbil <oget [DOT] fedora [AT] gmail [DOT] com> - 1.46-2
- use original sources from here on out
--------------------------------------------------------------------------------
================================================================================
clutter-1.8.4-2.fc16 (FEDORA-2012-7561)
Open Source software library for creating rich graphical user interfaces
--------------------------------------------------------------------------------
Update Information:
This Clutter update fixes a GNOME 3 Shell crash when using GNOME with the AMD Catalyst drivers or within Parallels.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 26 2012 Owen Taylor <otaylor@xxxxxxxxxx> - 1.8.4-2
- Fix a double-free on when a shader program fails to compile (#702257)
- Remove a leftover patch we were no longer applying
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #702257 - [abrt] gnome-shell-3.0.1-2.fc15: magazine_chain_pop_head: Process /usr/bin/gnome-shell was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=702257
--------------------------------------------------------------------------------
================================================================================
conky-1.9.0-1.fc16 (FEDORA-2012-7559)
A system monitor for X
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Miroslav Lichvar <mlichvar@xxxxxxxxxx> - 1.9.0-1
- update to 1.9.0
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.8.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Sat Dec 24 2011 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.8.1-4
- Rebuild as needed for 1.8.1-3 and latest Audacious library deps.
- Fix rebuild failure on Rawhide (no <curl/types.h>).
* Tue Dec 6 2011 Adam Jackson <ajax@xxxxxxxxxx> - 1.8.1-3
- Rebuild for new libpng
--------------------------------------------------------------------------------
================================================================================
dnsperf-2.0.0.0-1.fc16 (FEDORA-2012-7547)
Benchmarking authorative and recursing DNS servers
--------------------------------------------------------------------------------
Update Information:
Update to new version, added new queryperf data file
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 18 2012 Paul Wouters <pwouters@xxxxxxxxxx> - 2.0.0.0-1
- Upgraded to 2.0.0.0
- Fixup of URLs
- Add pointer to sample query file in usage info
- Added current query sample file as old example has been removed
- Pulled in missing bind-9.8.x/9.9.x version of hmacsha.h
- Removed doc/*pdf files, as their license might mean non-free
--------------------------------------------------------------------------------
================================================================================
erlang-amf-0-0.6.20110224gitb36dfb6.fc16 (FEDORA-2012-7562)
Erlang Action Message Format Library
--------------------------------------------------------------------------------
Update Information:
* Updated to the next git tag and dropped upstreamed patch
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0-0.6.20110224gitb36dfb6
- Updated to the next git tag and dropped upstreamed patch
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.5.20100908git27329144
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
erlang-rpm-macros-0.1.3-1.fc16 (FEDORA-2012-7548)
Macros for simplifying building of Erlang packages
--------------------------------------------------------------------------------
Update Information:
* Ver. 0.1.3 (bugfix release)
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0.1.3-1
- Ver. 0.1.3
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
fcitx-4.2.3-1.fc16 (FEDORA-2012-7573)
Free Chinese Input Toy for X (XIM)
--------------------------------------------------------------------------------
Update Information:
Upgrade to fcitx-4.2.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Liang Suilong <liangsuilong@xxxxxxxxx> - 4.2.3-1
- Upgrade to fcitx-4.2.3
--------------------------------------------------------------------------------
================================================================================
gfal2-2.0.0-0.7.2012050413snap.fc16 (FEDORA-2012-7592)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
update 2012050413snap
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
ghc-sendfile-0.7.6-1.fc16 (FEDORA-2012-7568)
A portable sendfile library
--------------------------------------------------------------------------------
Update Information:
A portable sendfile library used by happstack.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812384 - Review Request: ghc-sendfile - Portable sendfile library
https://bugzilla.redhat.com/show_bug.cgi?id=812384
--------------------------------------------------------------------------------
================================================================================
git-cola-1.7.7-1.fc16 (FEDORA-2012-7582)
A highly caffeinated git gui
--------------------------------------------------------------------------------
Update Information:
An update of git-cola to the latest upstream release, with the following improvements:
* New and improved `grep` mode lets you instantly find and edit files.
* New `git cola grep` standalone mode.
* Support for passing arguments to the configured editors, e.g. `gvim -p` This makes it possible to select multiple files in the status window and use Ctrl-e to edit them all at once.
* Remote operations now prompt on errors only.
* The Tab key now jumps to the extended description when editing the summary.
* More shortcut key labels and misc. UX improvements.
* Bugfix: Selecting an item no longer copies its filename to the copy/paste buffer. Ctrl-c or the “Copy” context-menu action can be used instead.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1.7.7-1
- Update to 1.7.7 (#819165)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819165 - git-cola-1.7.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=819165
--------------------------------------------------------------------------------
================================================================================
glusterfs-3.2.6-2.fc16 (FEDORA-2012-7551)
Cluster File System
--------------------------------------------------------------------------------
Update Information:
add BuildRequires: libxml2-devel so that autoconf will DTRT
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 3.2.6-2
- Add BuildRequires: libxml2-devel, BZ 819916
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819916 - Error: xml libraries not present to produce xml-output
https://bugzilla.redhat.com/show_bug.cgi?id=819916
--------------------------------------------------------------------------------
================================================================================
janino-2.6.1-12.fc16 (FEDORA-2012-7565)
An embedded Java compiler
--------------------------------------------------------------------------------
Update Information:
Here is where you give an explanation of your update.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-12
- add codehaus-parent to BR
* Thu Apr 19 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-11
- Remove janino-parent as a BuildRequirement
* Wed Apr 18 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-10
- moved all of the jar files into janino subdirectory
* Wed Apr 18 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-9
- merged commons-compiler, commons-compiler-jdk and janino-parent in main package
* Wed Apr 18 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-8
- add janino-parent
* Mon Apr 16 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-7
- Remove commons-compiler as a BuildRequirement
- Add janino-parent as a Requirement
* Fri Apr 13 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-6
- removed BR unzip
* Fri Apr 13 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-5
- commons-compiler spec file merged
* Fri Apr 13 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-4
- added missing BR maven-surefire-provider-junit4 for prevent mock build failure
* Tue Apr 10 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-3
- removed janino-parent commons-compiler modules.
* Sun Mar 25 2012 gil cattaneo <puntogil@xxxxxxxxx> 2.6.1-2
- janino janino-parent commons-compiler spec file merged
* Tue Mar 20 2012 Mary Ellen Foster <mefoster at gmail.com> - 2.6.1-1
- Update to 2.6.1, with new build system and all
- Prepare for re-review
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806669 - Review Request: janino - An embedded Java compiler
https://bugzilla.redhat.com/show_bug.cgi?id=806669
--------------------------------------------------------------------------------
================================================================================
kernel-3.3.5-2.fc16 (FEDORA-2012-7538)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
Fix a DVB-S zig-zag regression on kernel 3.3. Without this patch, some DVB-S channels may not be successfully detected.
Linux 3.3.4 stable update contains numerous bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Mauro Carvalho Chehab <mchehab@xxxxxxxxxx> 3.3.5-2
- Add patch to fix DVB-S zigzag (rhbz 814404)
* Mon May 7 2012 Josh Boyer <jwboyer@xxxxxxxxx> 3.3.5-1
- Linux 3.3.5
- Add patch to rate limit NFSv4 message (rhbz 732748)
* Fri May 4 2012 Josh Boyer <jwboyer@xxxxxxxxxx>
- unfiltered netdev rio_ioctl access by users (rhbz 818820)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #818820 - CVE-2012- kernel: unfiltered netdev rio_ioctl access by users
https://bugzilla.redhat.com/show_bug.cgi?id=818820
--------------------------------------------------------------------------------
================================================================================
kile-2.1.2-2.fc16 (FEDORA-2012-6998)
(La)TeX source editor and TeX shell
--------------------------------------------------------------------------------
Update Information:
An update of Kile to the latest upstream bugfix release, version 2.1.2.
Fixes:
- Correctly convert special characters that were typed with caps lock enabled into LaTeX. This fix works from KDE 4.3 upwards. (kde#296123)
- Use 'utf8' instead of 'utf8x' as default encoding (in document templates). It should be sufficient in most cases and it is installed by default in LaTeX distributions.
- Correctly insert '\c{c}' for the cedilla character (kde#296006, kde#289529)
- Use the correct name for some icons. In this way, they can be used even if the current icon theme is not Oxygen. (Patch by Pino Toscano)
- Correctly restore VI input mode key settings (kde#293262)
Features:
- Update 'biblatex.cwl'. Thanks to Denis Bitouzé!
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 2.1.2-2
- fix kile process remaining in memory after closing (kde#299569)
* Sun Apr 29 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 2.1.2-1
- update to 2.1.2 (bugfix release, #816521)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #816521 - kile-2.1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=816521
--------------------------------------------------------------------------------
================================================================================
logwatch-7.4.0-12.20120229svn100.fc16 (FEDORA-2012-7541)
A log file analysis program
--------------------------------------------------------------------------------
Update Information:
Various small fixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 4 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-12.20120425svn100
- Update secure-update patch
- Update systemd-logind patch
* Fri Apr 27 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-11.20120425svn100
- Add dovecot-proxy patch (rhbz#812883)
- Add secure-update patch (rhbz#809314)
- Add mail-headers patch (rhbz#811185)
- Add systemd-logind patch (rhbz#812880)
- Add sshd-undef patch (rhbz#783528)
* Wed Apr 25 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-10.20120425svn100
- Update to revision 100
- Update logwatch-named-dnssec.patch
* Thu Mar 1 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-9.20120229svn85
- Get the release version right this time
* Thu Mar 1 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-7.20120229svn85
- Bump release version, so yum doesn't get confused when upgrading
* Wed Feb 29 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-1.20120229svn85
- Update to revision 85
- Drop sendmail patch
- Update xntpd,secure and dovecot patches
* Wed Jan 4 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-8.20110328svn50
- Updated -manpage patch (rhbz#719061)
* Wed Jan 4 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 7.4.0-7.20110328svn50
- Renamed sendmail patch to match other patches' naming convention
- Added -secure-grammar patch (rhbz#716224)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812883 - dovecot spam (as mail-proxy)
https://bugzilla.redhat.com/show_bug.cgi?id=812883
[ 2 ] Bug #809314 - unmatched entries in secure logwatch part
https://bugzilla.redhat.com/show_bug.cgi?id=809314
[ 3 ] Bug #811185 - Auto-Submitted: auto-generated / Precedence: bulk
https://bugzilla.redhat.com/show_bug.cgi?id=811185
[ 4 ] Bug #812880 - systemd-logind spam
https://bugzilla.redhat.com/show_bug.cgi?id=812880
[ 5 ] Bug #783528 - reporting "undef" source for ssh illegal users
https://bugzilla.redhat.com/show_bug.cgi?id=783528
--------------------------------------------------------------------------------
================================================================================
lutok-0.1-2.fc16 (FEDORA-2012-7550)
Lightweight C++ API library for Lua
--------------------------------------------------------------------------------
Update Information:
Here is where you give an explanation of your update.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #543094 - Add/Remove Software not escalating privileges
https://bugzilla.redhat.com/show_bug.cgi?id=543094
[ 2 ] Bug #508942 - No bootdisk.img as described in install instructions.
https://bugzilla.redhat.com/show_bug.cgi?id=508942
--------------------------------------------------------------------------------
================================================================================
maniadrive-1.2-32.fc16.5 (FEDORA-2012-7586)
3D stunt driving game
--------------------------------------------------------------------------------
Update Information:
The releases complete a fix for a vulnerability in CGI-based setups (CVE-2012-2311).
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.2-32.5
- rebuild against PHP 5.3.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #818607 - CVE-2012-1823 php: command line arguments injection when run in CGI mode (VU#520827)
https://bugzilla.redhat.com/show_bug.cgi?id=818607
[ 2 ] Bug #818907 - CVE-2012-2311 php: incomplete fix for CVE-2012-1823
https://bugzilla.redhat.com/show_bug.cgi?id=818907
--------------------------------------------------------------------------------
================================================================================
mod_authnz_external-3.2.6-1.fc16 (FEDORA-2012-7596)
An Apache module used for authentication
--------------------------------------------------------------------------------
Update Information:
Initial release of mod_authnz_external.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #813564 - Review Request: mod_authnz_external - use external means for httpd basic authentication
https://bugzilla.redhat.com/show_bug.cgi?id=813564
--------------------------------------------------------------------------------
================================================================================
moodle-2.0.8-2.fc16 (FEDORA-2012-7597)
A Course Management System
--------------------------------------------------------------------------------
Update Information:
Drop bundled language packs.
New upstreams, multiple vulnerabilities.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Jon Ciesla <limburgher@xxxxxxxxx> - 2.0.8-2
- Dropped bundled language packs, BZ 748958.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #748958 - moodle package carries language packs which ae never used
https://bugzilla.redhat.com/show_bug.cgi?id=748958
[ 2 ] Bug #809227 - CVE-2012-1155 CVE-2012-1156 CVE-2012-1157 CVE-2012-1158 CVE-2012-1159 CVE-2012-1160 CVE-2012-1161 CVE-2012-1168 CVE-2012-1169 CVE-2012-1170 moodle: multiple security fixes in 2.2.2, 2.1.5, 2.0.8, 1.9.17 [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=809227
--------------------------------------------------------------------------------
================================================================================
novacom-client-1.1.0-0.4.rc1.git.ff7641193a.fc16 (FEDORA-2012-7552)
Client for utility to connect to WebOS devices
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
================================================================================
novacom-server-1.1.0-0.6.rc1.fc16 (FEDORA-2012-7552)
Service for utility that connects to WebOS devices
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
================================================================================
nspluginwrapper-1.4.4-8.fc16 (FEDORA-2012-7589)
A compatibility layer for Netscape 4 plugins
--------------------------------------------------------------------------------
Update Information:
Crash in plugin player script.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-8
- fixed crash in nspluginplayer script (#819479)
* Mon Feb 6 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-7
- marked /etc/sysconfig/nspluginwrapper as "noreplace"
config file (rhbz#787317)
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.4-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Thu Oct 27 2011 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-5
- Rawhide build fix (pthread)
* Thu Oct 27 2011 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-4
- Updated package description (#734056)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819479 - [abrt] nspluginwrapper-1.4.4-3.fc16: player_app_run: Process /usr/lib64/nspluginwrapper/npplayer was killed by signal 5 (SIGTRAP)
https://bugzilla.redhat.com/show_bug.cgi?id=819479
--------------------------------------------------------------------------------
================================================================================
obexd-0.44-1.fc16 (FEDORA-2012-7532)
D-Bus service for Obex Client access
--------------------------------------------------------------------------------
Update Information:
New upstream version, fixes crash on sending file
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Gianluca Sforna <giallu@xxxxxxxxx> 0.44-1
- Update to 0.44
- Fix segfault while sending (#766314)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #766314 - [abrt] obexd-0.42-1.fc16: obex_client: Process /usr/libexec/obex-client was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=766314
--------------------------------------------------------------------------------
================================================================================
perl-Plack-Middleware-Test-StashWarnings-0.06-1.fc16 (FEDORA-2012-7554)
Test your application's warnings
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.06-1
- Upstream update.
- Reflect upstream URL having changed.
- Spec file modernization.
--------------------------------------------------------------------------------
================================================================================
php-5.3.13-1.fc16 (FEDORA-2012-7586)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
The releases complete a fix for a vulnerability in CGI-based setups (CVE-2012-2311).
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.3.13-1
- update to 5.3.13 (CVE-2012-2311)
* Thu May 3 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.3.12
- update to 5.3.12 (CVE-2012-1823)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #818607 - CVE-2012-1823 php: command line arguments injection when run in CGI mode (VU#520827)
https://bugzilla.redhat.com/show_bug.cgi?id=818607
[ 2 ] Bug #818907 - CVE-2012-2311 php: incomplete fix for CVE-2012-1823
https://bugzilla.redhat.com/show_bug.cgi?id=818907
--------------------------------------------------------------------------------
================================================================================
php-eaccelerator-0.9.6.1-9.fc16.5 (FEDORA-2012-7586)
PHP accelerator, optimizer, encoder and dynamic content cacher
--------------------------------------------------------------------------------
Update Information:
The releases complete a fix for a vulnerability in CGI-based setups (CVE-2012-2311).
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1:0.9.6.1-9.5
- rebuild against PHP 5.3.13
* Thu May 3 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1:0.9.6.1-9.4
- rebuild against PHP 5.3.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #818607 - CVE-2012-1823 php: command line arguments injection when run in CGI mode (VU#520827)
https://bugzilla.redhat.com/show_bug.cgi?id=818607
[ 2 ] Bug #818907 - CVE-2012-2311 php: incomplete fix for CVE-2012-1823
https://bugzilla.redhat.com/show_bug.cgi?id=818907
--------------------------------------------------------------------------------
================================================================================
php-pecl-xhprof-0.9.2-5.fc16 (FEDORA-2012-7574)
PHP extension for XHProf, a Hierarchical Profiler
--------------------------------------------------------------------------------
Update Information:
XHProf is a function-level hierarchical profiler for PHP and has a simple HTML based navigational interface. The raw data collection component is implemented in C (as a PHP extension). The reporting/UI layer is all in PHP. It is capable of reporting function-level inclusive and exclusive wall times, memory usage, CPU times and number of calls for each function. Additionally, it supports ability to compare two runs (hierarchical DIFF reports), or aggregate results from multiple runs.
* php-pecl-xhprof provides the PHP extension
* xhprof provides the User Interface
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799597 - Review Request: php-pecl-xhprof - A Hierarchical Profiler for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=799597
--------------------------------------------------------------------------------
================================================================================
pki-core-9.0.20-1.fc16 (FEDORA-2012-7560)
Certificate System - PKI Core Components
--------------------------------------------------------------------------------
Update Information:
Bugzilla Bug #819111 - non-existent container ou=cmsusers breaks replication
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Andrew Wnuk <awnuk@xxxxxxxxxx> 9.0.20-1
- New official build
* Mon May 7 2012 Ade Lee <alee@xxxxxxxxxx> 9.0.19-4
- Bugzilla Bug #819111 - non-existent container breaks replication
* Mon Apr 16 2012 Ade Lee <alee@xxxxxxxxxx> 9.0.19-3
- Bugzilla Bug #813075 - selinux denial for file size access
* Tue Apr 10 2012 Christina Fu <cfu@xxxxxxxxxx> 9.0.19-2
- Bugzilla Bug #745278 - [RFE] ECC encryption keys cannot be archived
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819111 - non-existent container ou=cmsusers breaks replication
https://bugzilla.redhat.com/show_bug.cgi?id=819111
--------------------------------------------------------------------------------
================================================================================
poweradmin-2.1.6-1.fc16 (FEDORA-2012-7570)
A friendly web-based DNS administration tool for Bert Hubert's PowerDNS server
--------------------------------------------------------------------------------
Update Information:
Security fixes:
* added protection from XSS attacks
* updated top level domain list
* resolved sorting issue in search results screen and domain list
* fixed dynamic_update script, added support for another global ip lookup service
* various fixes to better support of PostgreSQL
* updated Japanese, Dutch and Russian translations
New features:
* implemented possibility to add PTR-records automatically for newly created A and AAAA records
* implemented bulk registration of zones
* implemented storing of user passwords in salted md5 hash format (password_encryption option)
* added experimental support of SQLite and Oracle backends
* implemented logging of authentication attempts to syslog (syslog_use option)
* imported simplified Chinese, Czech and Turkish translations
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Sven Lankes <sven@xxxxxxx> - 2.1.6-1
- new upstream release
- remove upstreamed templatefix
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
pwauth-2.3.10-1.fc16 (FEDORA-2012-7540)
External plugin for mod_authnz_external authenticator
--------------------------------------------------------------------------------
Update Information:
Initial release of pwauth.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #813594 - Review Request: pwauth - External plugin for mod_authnz_external authenticator
https://bugzilla.redhat.com/show_bug.cgi?id=813594
--------------------------------------------------------------------------------
================================================================================
pymol-1.5.0.2-2.20120218svn3982.fc16 (FEDORA-2012-7584)
PyMOL Molecular Graphics System
--------------------------------------------------------------------------------
Update Information:
fix to pymol wrapper and desktop mime types Bugzilla ref 817463
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 1 2012 Gökçen Eraslan <gokcen.eraslan@xxxxxxxxx> - 1.5.0.2-2.20120218svn3982
- Validate desktop file and add various mimetypes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #817463 - Users must be able to use PyMol as default molecular viewer application
https://bugzilla.redhat.com/show_bug.cgi?id=817463
--------------------------------------------------------------------------------
================================================================================
python-messaging-0.8-1.fc16 (FEDORA-2012-7587)
Python abstraction of a "message"
--------------------------------------------------------------------------------
Update Information:
upgrade to latest 0.8 version
upgrade to latest 0.7 version
upgrade to latest 0.7 version
upgrade to latest 0.7 version
upgrade to latest 0.7 version
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Massimo Paladin <massimo.paladin@xxxxxxxxx> - 0.8-1
- Upgrading to latest version 0.8.
* Mon Apr 23 2012 Massimo Paladin <massimo.paladin@xxxxxxxxx> - 0.7-1
- Upgrading to latest version 0.7.
* Tue Apr 17 2012 Massimo Paladin <massimo.paladin@xxxxxxxxx> - 0.6-1
- Upgrading to latest version 0.6.
--------------------------------------------------------------------------------
================================================================================
qbittorrent-2.9.8-1.fc16 (FEDORA-2012-7569)
A Bittorrent Client
--------------------------------------------------------------------------------
Update Information:
* Sat May 5 2012 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.9.8
- BUGFIX: Various UI style fixes
- BUGFIX: Fix compilation with gcc 4.7
- BUGFIX: Fix possible compilation error with msvc (Windows)
- BUGFIX: Fix compilation on OS/2
- I18N: Update Italian translation
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.9.8-1
- update to 2.9.8
--------------------------------------------------------------------------------
================================================================================
rubygem-actionmailer-3.0.10-2.fc16 (FEDORA-2012-7535)
Service layer for easy email delivery and testing
--------------------------------------------------------------------------------
Update Information:
Update to Mail 2.4.4.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 1:3.0.10-2
- Fix Mailer dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #816352 - CVE-2012-2139 CVE-2012-2140 rubygem-mail: arbitrary command execution when using exim or sendmail from commandline, file system traversal flaw
https://bugzilla.redhat.com/show_bug.cgi?id=816352
--------------------------------------------------------------------------------
================================================================================
rubygem-mail-2.4.4-1.fc16 (FEDORA-2012-7535)
Mail provides a nice Ruby DSL for making, sending and reading emails
--------------------------------------------------------------------------------
Update Information:
Update to Mail 2.4.4.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 2.4.4-1
- Update to Mail 2.4.4.
* Tue Jan 31 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 2.3.0-3
- Rebuilt for Ruby 1.9.3.
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #816352 - CVE-2012-2139 CVE-2012-2140 rubygem-mail: arbitrary command execution when using exim or sendmail from commandline, file system traversal flaw
https://bugzilla.redhat.com/show_bug.cgi?id=816352
--------------------------------------------------------------------------------
================================================================================
scribus-1.4.1-1.fc16 (FEDORA-2012-7595)
DeskTop Publishing application written in Qt
--------------------------------------------------------------------------------
Update Information:
- update to bugfix release 1.4.1
- upstream changelog at http://wiki.scribus.net/canvas/1.4.1_Release
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 6 2012 Dan Horák <dan[at]danny.cz> - 1.4.1-1
- update to 1.4.1
--------------------------------------------------------------------------------
================================================================================
setroubleshoot-3.1.11-1.fc16 (FEDORA-2012-7549)
Helps troubleshoot SELinux problems
--------------------------------------------------------------------------------
Update Information:
Update translations
Check path name of files before checking with rpm for existance.
Properly escape file before executing rpm command.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 9 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.11-1
- Update translations
- Only check for rpm on target process if is still exists
* Sat Mar 17 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.9-1
- Add file_types as a param to setroubleshoot.utils
- Update translations
* Thu Mar 8 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.8-1
- Add missing lanquages, using lang supported by gtk
* Thu Mar 8 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.7-1
- Add missing lanquages
* Thu Mar 8 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.6-1
- Remove gnome-keyring requirement
* Thu Mar 8 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.5-1
- Fix potential memory leak in setools
- Update to latest translations
* Thu Mar 1 2012 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.1.4-1
- Update to latest translations
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #820286 - Audit log gets filled with a call to rpm by qemu-kvm that has not been escaped properly
https://bugzilla.redhat.com/show_bug.cgi?id=820286
--------------------------------------------------------------------------------
================================================================================
setroubleshoot-plugins-3.0.38-1.fc16 (FEDORA-2012-7542)
Analysis plugins for use with setroubleshoot
--------------------------------------------------------------------------------
Update Information:
Update translations and fix handling of man pages.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 26 2012 <dwalsh@xxxxxxxxxx> - 3.0.38-1
- Update-translations
- Have catchall_booleans report the correct man page if it exists
* Wed Mar 28 2012 <dwalsh@xxxxxxxxxx> - 3.0.36-1
- Update-translations
- Fix leaks and catchall_labels to better detect leaks
* Mon Mar 19 2012 <dwalsh@xxxxxxxxxx> - 3.0.35-1
- Update-translations
* Sat Mar 17 2012 <dwalsh@xxxxxxxxxx> - 3.0.34-1
- Add associate.py plugin
- Update-translations
* Thu Mar 8 2012 <dwalsh@xxxxxxxxxx> - 3.0.33-1
- Update-translations
* Thu Mar 1 2012 <dwalsh@xxxxxxxxxx> - 3.0.30-1
- Update-translations
* Wed Feb 22 2012 <dwalsh@xxxxxxxxxx> - 3.0.28-1
- Update-translations
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #787780 - [abrt] setroubleshoot-server-3.1.2-1.fc16: catchall_boolean.py:66:get_then_text:IndexError: tuple index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=787780
--------------------------------------------------------------------------------
================================================================================
subversion-api-docs-1.6.18-1.fc16 (FEDORA-2012-7556)
Subversion API documentation
--------------------------------------------------------------------------------
Update Information:
Rebuild against new subversion.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Bojan Smojver <bojan@xxxxxxxxxxxxx> 1.6.18-1
- bump up to 1.6.18
--------------------------------------------------------------------------------
================================================================================
sugar-calculator-40-1.fc16 (FEDORA-2012-7580)
Calculator for Sugar
--------------------------------------------------------------------------------
Update Information:
New stables release
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 40-1
- Release 40
--------------------------------------------------------------------------------
================================================================================
sugar-moon-14-1.fc16 (FEDORA-2012-7580)
Moon phases activity for sugar
--------------------------------------------------------------------------------
Update Information:
New stables release
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 14-1
- Release 14
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 13-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
sugar-record-96-1.fc16 (FEDORA-2012-7580)
Recording tool for Sugar
--------------------------------------------------------------------------------
Update Information:
New stables release
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 96-1
- New upstream 96 release
* Mon Mar 26 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 95-1
- New upstream 95 release
--------------------------------------------------------------------------------
================================================================================
texworks-0.4.4-1.fc16 (FEDORA-2012-7590)
A simple IDE for authoring TeX documents
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 0.4.4-1
- Update to 0.4.4 (#785100, #817511)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #785100 - [abrt] texworks-0.4.3-3.fc16: QTextLine::cursorToX: Process /usr/bin/texworks was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=785100
--------------------------------------------------------------------------------
================================================================================
tomcat6-6.0.35-1.fc16 (FEDORA-2012-7593)
Apache Servlet/JSP Engine, RI for Servlet 2.5/JSP 2.1 API
--------------------------------------------------------------------------------
Update Information:
Update to tomcat 6.0.35
CVE-2011-1184 multiple weaknesses in HTTP DIGEST authentication
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 3 2012 David Knox <dknox@xxxxxxxxxx> 0:6.0.35-1
- Update to 6.0.35
* Thu Oct 20 2011 David Knox <dknox@xxxxxxxxxx> 0:6.0.32-19
- Corrected patch name from CVE-2011-1183 to CVE-2011-1184.
- The entry below should b 2011-1184 versus 1138
* Wed Oct 12 2011 David Knox <dknox@xxxxxxxxxx> 0:6.0.32-18
- Resolves: CVE-2011-1138 rhbz 741407
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #741407 - CVE-2011-1184 tomcat5, tomcat6: Multiple weaknesses in the HTTP DIGEST authentication [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=741407
--------------------------------------------------------------------------------
================================================================================
transmission-remote-cli-1.2.2-1.fc16 (FEDORA-2012-7545)
A console interface for the Transmission BitTorrent client
--------------------------------------------------------------------------------
Update Information:
New upstream release (1.2.2).
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 6 2012 Ben Thompson <d0g@xxxxxxxxxxxxxxxxx> 1.2.2-2
- Added NEWS file to doc.
* Sun May 6 2012 Ben Thompson <d0g@xxxxxxxxxxxxxxxxx> 1.2.2-1
- Latest upstream, branch master.
* Sat Feb 25 2012 Ben Thompson <d0g@xxxxxxxxxxxxxxxxx> 1.0-1
- New upstream release, branch "2.40"
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
vim-7.3.515-1.fc16 (FEDORA-2012-7577)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
This update fixes several issues
- segmentation fault when the colorcolumn parameter is used
- crash when using FileReadCmd autocmd that does :e {file}
- GTK gives an error when selecting a non-existent file
- crash when doing ":python print", compiled with gcc -O2
- scrolling back at the more prompt shows the wrong text
- crash when using ":redraw" in a BufEnter autocmd
- when using ":loadview" folds may be closed unexpectedly
- crash when calling smsg() during startup
- re-allocating memory slows Vim down
- undo broken when pasting close to the last line
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.515-1
- patchlevel 515
* Fri Mar 16 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.471-1
- patchlevel 471
* Mon Feb 13 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.444-1
- patchlevel 444
* Tue Feb 7 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.434-1
- patchlevel 434
* Tue Feb 7 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.393-3
- update spec file template, bugzilla 736774
* Thu Jan 26 2012 Harald Hoyer <harald@xxxxxxxxxx> 7.3.393-3
- rebuild against the new ruby library
* Thu Jan 26 2012 Harald Hoyer <harald@xxxxxxxxxx> 7.3.393-2
- install everything in /usr
https://fedoraproject.org/wiki/Features/UsrMove
* Thu Jan 5 2012 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.393-1
- patchlevel 393
- fix boolean key 'Terminal' in gvim.desktop
* Fri Dec 23 2011 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.386-1
- patchlevel 386
* Mon Sep 26 2011 Karsten Hopp <karsten@xxxxxxxxxx> 7.3.322-1
- patchlevel 322
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819202 - vim switch to new buffers = core dumped
https://bugzilla.redhat.com/show_bug.cgi?id=819202
--------------------------------------------------------------------------------
================================================================================
xca-0.9.2-1.fc16 (FEDORA-2012-7598)
Graphical X.509 certificate management tool
--------------------------------------------------------------------------------
Update Information:
* Mon May 7 2012 Patrick Monnerat <pm@xxxxxxxxxxxxx> 0.9.2-1
- New upstream release.
- Patch "french" to update french translation.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Patrick Monnerat <pm@xxxxxxxxxxxxx> 0.9.2-1
- New upstream release.
- Patch "french" to update french translation.
--------------------------------------------------------------------------------
================================================================================
xen-4.1.2-7.fc16 (FEDORA-2012-7591)
Xen is a virtual machine monitor
--------------------------------------------------------------------------------
Update Information:
Make the udev tap rule more specific as it breaks openvpn (#819452),
load xen-acpi-processor module (kernel 3.4 onwards) if present
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 8 2012 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.1.2-7
- Make the udev tap rule more specific as it breaks openvpn (#819452)
- load xen-acpi-processor module (kernel 3.4 onwards) if present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819452 - OpenVPN with tap interface not working with libvirt installed
https://bugzilla.redhat.com/show_bug.cgi?id=819452
--------------------------------------------------------------------------------
================================================================================
xscreensaver-5.15-6.fc16 (FEDORA-2012-7544)
X screen saver and locker
--------------------------------------------------------------------------------
Update Information:
A bug is reported that any hack with -pair option will cause segfault when terminating it. This new rpm will fix this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 7 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.15-6
- Fix segv when quitting hack with -pair option (bug 819349)
* Fri Jan 13 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.15-5
- F-17: rebuild against fixed rpm (for perl dependency generation)
* Thu Jan 5 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.15-4
- F-17: rebuild against gcc47
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819349 - [abrt] xscreensaver-gl-extras-5.15-3.fc16: fps_free: Process /usr/libexec/xscreensaver/companioncube was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=819349
--------------------------------------------------------------------------------
================================================================================
yum-3.4.3-24.fc16 (FEDORA-2012-7585)
RPM package installer/updater/manager
--------------------------------------------------------------------------------
Update Information:
Skip unavailable repositories when performing bash auto-completion.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 26 2012 Zdenek Pavlas <zpavlas at redhat.com> - 3.4.3-24
- backported completion-helper.py patches from HEAD, BZ 809469.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #809469 - [abrt] yum-3.4.3-23.fc16: yumRepo.py:999:_cachingRepoXML:RepoError: Cannot find repomd.xml file for virtualbox
https://bugzilla.redhat.com/show_bug.cgi?id=809469
[ 2 ] Bug #806844 - [abrt] yum-3.4.3-18.fc17: __init__.py:907:_getGroups:GroupsError: No Groups Available in any repository
https://bugzilla.redhat.com/show_bug.cgi?id=806844
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
