The following Fedora 16 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-8647/FlightGear-2.4.0-2.fc16,SimGear-2.4.0-4.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8592/qemu-0.15.1-5.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8596/groff-1.21-4.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8686/pidgin-2.10.4-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8646/hostapd-0.7.3-7.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5833/python3-3.2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8675/arpwatch-2.1a15-18.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6614/gdb-7.3.50.20110722-16.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8692/asterisk-1.8.12.2-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8729/nut-2.6.3-4.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8328/socat-1.7.2.1-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8465/apache-commons-compress-1.4.1-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8461/globus-gridftp-server-6.10-2.fc16,globus-gridftp-server-control-2.5-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8014/openssl-1.0.0j-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-7593/tomcat6-6.0.35-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8470/python-crypto-2.3-6.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8067/libgssglue-0.4-0.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8021/sudo-1.8.3p1-3.fc16
The following Fedora 16 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-8727/bash-4.2.29-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8744/perl-5.14.2-198.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8617/gnutls-2.12.14-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8601/libvpx-1.0.0-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8605/xorg-x11-drv-intel-2.19.0-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8587/ppp-2.4.5-21.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8385/control-center-3.2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8389/pm-utils-1.4.1-13.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8381/colord-0.1.21-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8203/mdadm-3.2.5-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8212/libreport-2.0.10-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-8210/perl-URI-1.60-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6994/upower-0.9.16-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-3319/GConf2-3.2.3-4.fc16
The following builds have been pushed to Fedora 16 updates-testing
Django-south-0.7.5-1.fc16
WindowMaker-0.95.3-2.fc16
arpwatch-2.1a15-18.fc16
asterisk-1.8.12.2-1.fc16
bash-4.2.29-1.fc16
drupal7-date_ical-1.1-1.fc16
dwarves-1.10-1.fc16
gettext-0.18.1.1-9.1.fc16
ghc-Agda-2.3.0.1-2.fc16
ghc-derive-2.5.8-1.fc16
gnome-shell-search-fedora-packages-0.1-4.fc16
gridengine-6.2u5p2-7.fc16.4
guacamole-ext-0.6.0-5.fc16
hfsplus-tools-332.14-15.fc16
java-1.6.0-openjdk-1.6.0.0-66.1.11.2.fc16
kismon-0.5-2.fc16
man-pages-it-2.80-11.fc16
nut-2.6.3-4.fc16
perl-5.14.2-198.fc16
perl-XML-LibXML-1.90-1.fc16
pidgin-2.10.4-1.fc16
qpid-cpp-0.16-1.fc16.1
recoll-1.17.3-1.fc16
rubygem-rake-compiler-0.8.1-1.fc16
smb4k-1.0.2-1.fc16
sssd-1.8.4-12.fc16
synfigstudio-0.63.05-3.1.fc16
uget-1.8.2-1.fc16
wdiff-1.1.2-1.fc16
xmonad-0.10-3.7.fc16
Details about builds:
================================================================================
Django-south-0.7.5-1.fc16 (FEDORA-2012-8666)
Intelligent schema migrations for Django apps
--------------------------------------------------------------------------------
Update Information:
Update to new upstream
version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Domingo Becker <domingobecker@xxxxxxxxx> - 0.7.5-1
- New upstream version.
- Remove docs dir in files section.
- Fixed unpacked directory name.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #826802 - New Upstream Version fixes Django 1.4 issues
https://bugzilla.redhat.com/show_bug.cgi?id=826802
--------------------------------------------------------------------------------
================================================================================
WindowMaker-0.95.3-2.fc16 (FEDORA-2012-8691)
A fast, feature rich Window Manager
--------------------------------------------------------------------------------
Update Information:
This release fixes a regression which would cause more than one instance of an application to start (under some circunstances) when using menu shortcuts. The window maximization procedures now have a more intuitive behavior with respect to remembering the old geometry and going back to it. Furthermore, there are some other small fixes and cleanups.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 0.95.3-2
- fix description
* Mon May 28 2012 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 0.95.3-1
- version upgrade (rhbz#824670)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #824670 - Window Maker 0.95.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=824670
--------------------------------------------------------------------------------
================================================================================
arpwatch-2.1a15-18.fc16 (FEDORA-2012-8675)
Network monitoring tools for tracking IP addresses on a network
--------------------------------------------------------------------------------
Update Information:
with "-u" fix supplementary group list (#825328) (CVE-2012-2653)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Aleš Ledvinka <aledvink@xxxxxxxxxx> 14:2.1a15-18
- fix supplementary group list (#825328) (CVE-2012-2653)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #825328 - CVE-2012-2653 arpwatch: fails to drop supplementary groups
https://bugzilla.redhat.com/show_bug.cgi?id=825328
--------------------------------------------------------------------------------
================================================================================
asterisk-1.8.12.2-1.fc16 (FEDORA-2012-8692)
The Open Source PBX
--------------------------------------------------------------------------------
Update Information:
The Asterisk Development Team has announced the release of Asterisk 1.8.12.2.
This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk
The release of Asterisk 1.8.12.2 resolves an issue reported by the
community and would have not been possible without your participation.
Thank you!
The following is the issue resolved in this release:
* --- Resolve crash in subscribing for MWI notifications
(Closes issue ASTERISK-19827. Reported by B. R)
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.12.2
The Asterisk Development Team has announced security releases for Certified
Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are
released as versions 1.8.11-cert2, 1.8.12.1, and 10.4.1.
These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases
The release of Asterisk 1.8.11-cert2, 1.8.12.1, and 10.4.1 resolve the following
two issues:
* A remotely exploitable crash vulnerability exists in the IAX2 channel
driver if an established call is placed on hold without a suggested music
class. Asterisk will attempt to use an invalid pointer to the music
on hold class name, potentially causing a crash.
* A remotely exploitable crash vulnerability was found in the Skinny (SCCP)
Channel driver. When an SCCP client closes its connection to the server,
a pointer in a structure is set to NULL. If the client was not in the
on-hook state at the time the connection was closed, this pointer is later
dereferenced. This allows remote authenticated connections the ability to
cause a crash in the server, denying services to legitimate users.
These issues and their resolution are described in the security advisories.
For more information about the details of these vulnerabilities, please read
security advisories AST-2012-007 and AST-2012-008, which were released at the
same time as this announcement.
For a full list of changes in the current releases, please see the ChangeLogs:
http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.12.1
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.4.1
The security advisories are available at:
* http://downloads.asterisk.org/pub/security/AST-2012-007.pdf
* http://downloads.asterisk.org/pub/security/AST-2012-008.pdf
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 1.8.12.2-1
- The Asterisk Development Team has announced the release of Asterisk 1.8.12.2.
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk
-
- The release of Asterisk 1.8.12.2 resolves an issue reported by the
- community and would have not been possible without your participation.
- Thank you!
-
- The following is the issue resolved in this release:
-
- * --- Resolve crash in subscribing for MWI notifications
- (Closes issue ASTERISK-19827. Reported by B. R)
-
- For a full list of changes in this release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.12.2
* Wed May 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 1.8.12.1-1:
- The Asterisk Development Team has announced security releases for Certified
- Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are
- released as versions 1.8.11-cert2, 1.8.12.1, and 10.4.1.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.8.11-cert2, 1.8.12.1, and 10.4.1 resolve the following
- two issues:
-
- * A remotely exploitable crash vulnerability exists in the IAX2 channel
- driver if an established call is placed on hold without a suggested music
- class. Asterisk will attempt to use an invalid pointer to the music
- on hold class name, potentially causing a crash.
-
- * A remotely exploitable crash vulnerability was found in the Skinny (SCCP)
- Channel driver. When an SCCP client closes its connection to the server,
- a pointer in a structure is set to NULL. If the client was not in the
- on-hook state at the time the connection was closed, this pointer is later
- dereferenced. This allows remote authenticated connections the ability to
- cause a crash in the server, denying services to legitimate users.
-
- These issues and their resolution are described in the security advisories.
-
- For more information about the details of these vulnerabilities, please read
- security advisories AST-2012-007 and AST-2012-008, which were released at the
- same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLogs:
-
- http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.12.1
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.4.1
-
- The security advisories are available at:
-
- * http://downloads.asterisk.org/pub/security/AST-2012-007.pdf
- * http://downloads.asterisk.org/pub/security/AST-2012-008.pdf
* Thu May 3 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 1.8.12.0-1:
- The Asterisk Development Team has announced the release of Asterisk 1.8.12.0.
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk
-
- The release of Asterisk 1.8.12.0 resolves several issues reported by the
- community and would have not been possible without your participation.
- Thank you!
-
- The following are the issues resolved in this release:
-
- * --- Prevent chanspy from binding to zombie channels
- (Closes issue ASTERISK-19493. Reported by lvl)
-
- * --- Fix Dial m and r options and forked calls generating warnings
- for voice frames.
- (Closes issue ASTERISK-16901. Reported by Chris Gentle)
-
- * --- Remove ISDN hold restriction for non-bridged calls.
- (Closes issue ASTERISK-19388. Reported by Birger Harzenetter)
-
- * --- Fix copying of CDR(accountcode) to local channels.
- (Closes issue ASTERISK-19384. Reported by jamicque)
-
- * --- Ensure Asterisk acknowledges ACKs to 4xx on Replaces errors
- (Closes issue ASTERISK-19303. Reported by Jon Tsiros)
-
- * --- Eliminate double close of file descriptor in manager.c
- (Closes issue ASTERISK-18453. Reported by Jaco Kroon)
-
- For a full list of changes in this release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.12.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #826474 - CVE-2012-2947 asterisk: Remote crash in IAX2 channel driver (AST-2012-007)
https://bugzilla.redhat.com/show_bug.cgi?id=826474
--------------------------------------------------------------------------------
================================================================================
bash-4.2.29-1.fc16 (FEDORA-2012-8727)
The GNU Bourne Again shell
--------------------------------------------------------------------------------
Update Information:
Update to upstream patch level 29
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Roman Rakus <rrakus@xxxxxxxxxx> - 4.2.29-1
- Patchlevel 29
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #679696 - $PWD/<tab> no longer expands
https://bugzilla.redhat.com/show_bug.cgi?id=679696
--------------------------------------------------------------------------------
================================================================================
drupal7-date_ical-1.1-1.fc16 (FEDORA-2012-8715)
Allows creation of an iCal feed in Views
--------------------------------------------------------------------------------
Update Information:
Allows creation of an iCal feed in Views.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #825644 - Review Request: drupal7-date_ical - Allows creation of an iCal feed in Views
https://bugzilla.redhat.com/show_bug.cgi?id=825644
--------------------------------------------------------------------------------
================================================================================
dwarves-1.10-1.fc16 (FEDORA-2012-8710)
Debugging Information Manipulation Tools
--------------------------------------------------------------------------------
Update Information:
Adds support for some new GNU tags and DWARF4, which makes it work again on newer distros.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Arnaldo Carvalho de Melo <acme@xxxxxxxxxx> - 1.10-1
- New release
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #742257 - pahole dies with error
https://bugzilla.redhat.com/show_bug.cgi?id=742257
[ 2 ] Bug #772358 - pdwtags 1.9 cannot read files produced by gcc 4.7
https://bugzilla.redhat.com/show_bug.cgi?id=772358
[ 3 ] Bug #811738 - pahole isn't working right
https://bugzilla.redhat.com/show_bug.cgi?id=811738
--------------------------------------------------------------------------------
================================================================================
gettext-0.18.1.1-9.1.fc16 (FEDORA-2012-8673)
GNU libraries and utilities for producing multi-lingual messages
--------------------------------------------------------------------------------
Update Information:
- fix a xgettext segfault in remember_a_message_plural
- base package now provides bundled(gnulib)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jun 1 2012 Jens Petersen <petersen@xxxxxxxxxx> - 0.18.1.1-9.1
- add upstream patch from debian to fix xgettext segfault in
remember_a_message_plural (thanks Remi Collet, #826138)
- base package now provides bundled(gnulib) to make it clear that
gettext is built with bundled gnulib (#821757)
* Tue Oct 4 2011 Jens Petersen <petersen@xxxxxxxxxx> - 0.18.1.1-9
- correct the configure --with-pic option syntax (Gilles Espinasse)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #826138 - segfault in remember_a_message_plural
https://bugzilla.redhat.com/show_bug.cgi?id=826138
[ 2 ] Bug #821757 - gettext: Gnulib bundled but no bundled(gnulib) provides
https://bugzilla.redhat.com/show_bug.cgi?id=821757
--------------------------------------------------------------------------------
================================================================================
ghc-Agda-2.3.0.1-2.fc16 (FEDORA-2012-8697)
Dependently typed functional programming language
--------------------------------------------------------------------------------
Update Information:
A dependently typed functional programming language.
To try it is recommended to install emacs-agda.
- http://wiki.portal.chalmers.se/agda/pmwiki.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #710031 - Review Request: ghc-Agda - Dependently typed functional programming language
https://bugzilla.redhat.com/show_bug.cgi?id=710031
--------------------------------------------------------------------------------
================================================================================
ghc-derive-2.5.8-1.fc16 (FEDORA-2012-8742)
Library to derive instances for data types
--------------------------------------------------------------------------------
Update Information:
ghc-derive is a program and library to derive instances for data types in Haskell.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #712270 - Review Request: ghc-derive - A program and library to derive instances for data types
https://bugzilla.redhat.com/show_bug.cgi?id=712270
--------------------------------------------------------------------------------
================================================================================
gnome-shell-search-fedora-packages-0.1-4.fc16 (FEDORA-2012-8703)
Search the fedora-packages webapp from the gnome-shell
--------------------------------------------------------------------------------
Update Information:
Initial packaging.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #825008 - Review Request: gnome-shell-search-fedora-packages - Search the fedora-packages webapp from the gnome-shell
https://bugzilla.redhat.com/show_bug.cgi?id=825008
--------------------------------------------------------------------------------
================================================================================
gridengine-6.2u5p2-7.fc16.4 (FEDORA-2012-8740)
Grid Engine - Distributed Computing Management software
--------------------------------------------------------------------------------
Update Information:
Avoid %preun failures.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Orion Poplawski <orion@xxxxxxxxxxxxx> 6.2u5p2-7.4
- Avoid %preun failures (Bug 826668)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #826668 - gridengine uninstall script(s) failed, causing preupgrade to abort, cannot upgrade to f17 cleanly
https://bugzilla.redhat.com/show_bug.cgi?id=826668
--------------------------------------------------------------------------------
================================================================================
guacamole-ext-0.6.0-5.fc16 (FEDORA-2012-8695)
Common interfaces for extending the main Guacamole web application
--------------------------------------------------------------------------------
Update Information:
Common interfaces for extending the main Guacamole web application
--------------------------------------------------------------------------------
================================================================================
hfsplus-tools-332.14-15.fc16 (FEDORA-2012-8663)
Tools to create/check Apple HFS+ filesystems
--------------------------------------------------------------------------------
Update Information:
Add -a alias for -p in fsck.hfsplus
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Adam Jackson <ajax@xxxxxxxxxx> 332.14-15
- hfsplus-tools-332.14-dash-a.patch: Add -a alias for -p to fsck.hfsplus
(#591362, patch from Chris Bagwell)
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 332.14-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Sat Nov 19 2011 Matthew Garrett <mjg@redhat,com> 332.14-13
- hfsplus-tools-332.14-fix-uuid.patch: Fix UUID generation
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #591362 - Invalid option -a passed to fsck.hfsplus during boot
https://bugzilla.redhat.com/show_bug.cgi?id=591362
--------------------------------------------------------------------------------
================================================================================
java-1.6.0-openjdk-1.6.0.0-66.1.11.2.fc16 (FEDORA-2012-8671)
OpenJDK Runtime Environment
--------------------------------------------------------------------------------
Update Information:
- Updated to IcedTea6-1.11.2
- Bug fixes
- RH789154: javac error messages no longer contain the full path to the offending file:
- PR797: Compiler error message does not display entire file name and path
- PR881: Sign tests (wsse.policy.basic) failures with OpenJDK6
- PR886: 6-1.11.1 fails to build CACAO on ppc
- Specify both source and target in IT_GET_DTDTYPE_CHECK.
- Install nss.cfg into j2re-image too.
- PR584: Don't use shared Eden in incremental mode.
- Backports
- S6792400: Avoid loading of Normalizer resources for simple uses
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Jiri Vanek <jvanek@xxxxxxxxxx> 1:6.0.0-0-66.1.11.2
- Updated to IcedTea6-1.11.2
- Bug fixes
- RH789154: javac error messages no longer contain the full path to the offending file:
- PR797: Compiler error message does not display entire file name and path
- PR881: Sign tests (wsse.policy.basic) failures with OpenJDK6
- PR886: 6-1.11.1 fails to build CACAO on ppc
- Specify both source and target in IT_GET_DTDTYPE_CHECK.
- Install nss.cfg into j2re-image too.
- PR584: Don't use shared Eden in incremental mode.
- Backports
- S6792400: Avoid loading of Normalizer resources for simple uses
--------------------------------------------------------------------------------
================================================================================
kismon-0.5-2.fc16 (FEDORA-2012-8712)
A simple GUI client for kismet
--------------------------------------------------------------------------------
Update Information:
* Mon May 28 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.5-2 - License fixed - Old stuff removed
* Tue Mar 27 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.5-1 - Initial package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #817847 - Review Request: kismon - A simple GUI client for kismet
https://bugzilla.redhat.com/show_bug.cgi?id=817847
--------------------------------------------------------------------------------
================================================================================
man-pages-it-2.80-11.fc16 (FEDORA-2012-8684)
Italian man (manual) pages from the Linux Documentation Project
--------------------------------------------------------------------------------
Update Information:
Remove hman to avoid collide with man2html
Remove man2html.1
Remove man2html.1
Remove man2html.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Ding-Yi Chen <dchen@xxxxxxxxxx> - 2.80-11
- Remove hman.1 as well.
* Tue May 29 2012 Ding-Yi Chen <dchen@xxxxxxxxxx> - 2.80-10
- Resolves: #825918 - man-pages-it : Conflicts with man2html
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.80-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #825918 - man-pages-it : Conflicts with man2html
https://bugzilla.redhat.com/show_bug.cgi?id=825918
--------------------------------------------------------------------------------
================================================================================
nut-2.6.3-4.fc16 (FEDORA-2012-8729)
Network UPS Tools
--------------------------------------------------------------------------------
Update Information:
fix heap-based buffer overflow due improper processing of non-printable characters in random network data (CVE-2012-2944)
- no change, just updated release number to fix upgrade path
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 2.6.3-4
- fix heap-based buffer overflow due improper processing of non-printable
characters in random network data (CVE-2012-2944)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #826489 - CVE-2012-2944 nut: Heap-based buffer overflow due improper processing of non-printable characters in random network data
https://bugzilla.redhat.com/show_bug.cgi?id=826489
--------------------------------------------------------------------------------
================================================================================
perl-5.14.2-198.fc16 (FEDORA-2012-8744)
Practical Extraction and Report Language
--------------------------------------------------------------------------------
Update Information:
Fix find2perl to translate ? glob properly
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 29 2012 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4:5.14.2-198
- Fix find2perl to translate ? glob properly (bug #825701)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #825701 - find2perl does not translate ? glob properly
https://bugzilla.redhat.com/show_bug.cgi?id=825701
--------------------------------------------------------------------------------
================================================================================
perl-XML-LibXML-1.90-1.fc16 (FEDORA-2012-8721)
Perl interface to the libxml2 library
--------------------------------------------------------------------------------
Update Information:
Upstream fix of HTML parsing in XML::LibXML.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 10 2012 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 1:1.90-1
- update to 1.90
* Wed Dec 21 2011 Dan Horák <dan[at]danny.cz> - 1:1.88-3
- use better workaround until rhbz#769537 is resolved
* Tue Dec 20 2011 Karsten Hopp <karsten@xxxxxxxxxx> - 1:1.88-2
- disable tests on ppc as most ppc buildmachines have only 2Gb
and the tests run out of memory
* Sun Oct 2 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1:1.88-1
- update to 1.88
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #821290 - Update from upstream
https://bugzilla.redhat.com/show_bug.cgi?id=821290
--------------------------------------------------------------------------------
================================================================================
pidgin-2.10.4-1.fc16 (FEDORA-2012-8686)
A Gtk+ based multiprotocol instant messaging client
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2012-2214 and CVE-2012-2318.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Jon Ciesla <limburgher@xxxxxxxxx> - 2.10.4-1
- Update to 2.10.4, CVE-2012-2214, CVE-2012-2318, BZ 806839, 819454.
- Port to farstream patch upstreamed.
* Wed May 2 2012 Milan Crha <mcrha@xxxxxxxxxx> - 2.10.2-2
- Rebuild against newer evolution-data-server
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806839 - pidgin-2.10.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=806839
[ 2 ] Bug #819454 - CVE-2012-2214 CVE-2012-2318 pidgin various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=819454
--------------------------------------------------------------------------------
================================================================================
qpid-cpp-0.16-1.fc16.1 (FEDORA-2012-8705)
Libraries for Qpid C++ client applications
--------------------------------------------------------------------------------
Update Information:
Release 0.16 of Qpid.
Added missing subpackage dependency
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 29 2012 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.16-1.1
- Release 0.16 of Qpid upstream.
- Removed non-Fedora conditional areas of the specfile.
- Changed the location of qmfgen to the python sitelib directory.
* Tue Apr 17 2012 Dan Horák <dan[at]danny.cz> - 0.14-1.2
- fix build when size_t != unsigned int
--------------------------------------------------------------------------------
================================================================================
recoll-1.17.3-1.fc16 (FEDORA-2012-8746)
Desktop full text search tool with Qt GUI
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release, fixing a issue in creation of index of mail data.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Terje Rosten <terje.rosten@xxxxxxx> - 1.17.3-1
- 1.17.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #819408 - [abrt] recoll-1.17.1-1.fc16: std::istream::seekg: Process /usr/bin/recollindex was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=819408
--------------------------------------------------------------------------------
================================================================================
rubygem-rake-compiler-0.8.1-1.fc16 (FEDORA-2012-8737)
Rake-based Ruby C Extension task generator
--------------------------------------------------------------------------------
Update Information:
New version 0.8.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 0.8.1-1
- 0.8.1
* Tue Apr 3 2012 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 0.8.0-3
- Fix conditionals for F17 to work for RHEL 7 as well.
* Sun Jan 22 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 0.8.0-2
- Rebuild against ruby 1.9
--------------------------------------------------------------------------------
================================================================================
smb4k-1.0.2-1.fc16 (FEDORA-2012-8735)
The SMB/CIFS Share Browser for KDE
--------------------------------------------------------------------------------
Update Information:
New upstream release, one bug fix release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Sérgio Basto <sergio@xxxxxxxxxx> 1.0.2
- New upstream release
* Thu May 31 2012 Sérgio Basto <sergio@xxxxxxxxxx> 1.0.1-8
- add patch to fix several bugs, from upcoming release 1.0.2.
* Mon May 7 2012 Sérgio Basto <sergio@xxxxxxxxxx> 1.0.1-7
- add requires cifs-utils, to have mount.cifs
* Thu Apr 19 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.0.1-6
- remove some assumptions about qreal = double
--------------------------------------------------------------------------------
================================================================================
sssd-1.8.4-12.fc16 (FEDORA-2012-8700)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
* Wed May 30 2012 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.8.4-12
- New upstream release 1.8.4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.4
- Fix a bug causing AD servers not to fail over properly when the KDC on the primary server is down
- Fix an endianness bug on big-endian systems when looking up services
- Fix a segfault dealing with nested groups
- Make the nowait cache updates work for netgroups
- Fix a regression that broke domains with use_fully_qualified_names = True
- Correct package dependency versions to match installed arch
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 30 2012 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.8.4-12
- New upstream release 1.8.4
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.4
- Fix a bug causing AD servers not to fail over properly when the KDC on the
primary server is down
- Fix an endianness bug on big-endian systems when looking up services
- Fix a segfault dealing with nested groups
- Make the nowait cache updates work for netgroups
- Fix a regression that broke domains with use_fully_qualified_names = True
- Correct package dependency versions to match installed arch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #811375 - Use keytab to select etypes for krb5_get_init_creds_keytab()
https://bugzilla.redhat.com/show_bug.cgi?id=811375
[ 2 ] Bug #811518 - Invalid cache file created when canoning principals during krb5_get_init_creds_keytab()
https://bugzilla.redhat.com/show_bug.cgi?id=811518
[ 3 ] Bug #820979 - sssd does not provide maps for automounter when custom schema is being used
https://bugzilla.redhat.com/show_bug.cgi?id=820979
--------------------------------------------------------------------------------
================================================================================
synfigstudio-0.63.05-3.1.fc16 (FEDORA-2012-8698)
Vector-based 2D animation studio
--------------------------------------------------------------------------------
Update Information:
This fix addresses an issue where Shared MIME-Info database cache gets overwritten causing a break of file type recognition in many applications.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 29 2012 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.63.05-3.1
- Really remove all but xml file (rhbz#821740)
* Mon May 21 2012 Luya Tshimbalanga <luya@xxxxxxxxxxxxxxxxx> - 0.63.05-2
- Fix mime.cache issue (rhbz#821740)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #821740 - synfigstudio-0.63.05-1.fc16: package contains wrong files
https://bugzilla.redhat.com/show_bug.cgi?id=821740
--------------------------------------------------------------------------------
================================================================================
uget-1.8.2-1.fc16 (FEDORA-2012-8696)
Download manager using GTK+ and libcurl
--------------------------------------------------------------------------------
Update Information:
New version 1.8.2 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.2-1
- 1.8.2
--------------------------------------------------------------------------------
================================================================================
wdiff-1.1.2-1.fc16 (FEDORA-2012-8678)
A front-end to GNU diff
--------------------------------------------------------------------------------
Update Information:
New release and resolved non-bundled library issue.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 29 2012 Praveen Kumar <kumarpraveen.nitdgp@xxxxxxxxx> 1.1.2-1
- New release and fixed no bundled library issue
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #821791 - wdiff: Gnulib bundled but no bundled(gnulib) provides
https://bugzilla.redhat.com/show_bug.cgi?id=821791
--------------------------------------------------------------------------------
================================================================================
xmonad-0.10-3.7.fc16 (FEDORA-2012-8484)
A tiling window manager
--------------------------------------------------------------------------------
Update Information:
recompile user binary at startup if it has broken shared libraries
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 31 2012 Jens Petersen <petersen@xxxxxxxxxx> - 0.10-3.7
- really fix xmonad-start to use hardware-platform correctly
* Wed May 30 2012 Jens Petersen <petersen@xxxxxxxxxx> - 0.10-3.6
- fix user binary ldd check on i686/i386 using "uname -i" not "arch",
and then recompile directly instead of just touching xmonad.hs first
* Fri May 25 2012 Jens Petersen <petersen@xxxxxxxxxx> - 0.10-3.5
- xmonad-start: if user binary has missing shared lib dependencies
touch xmonad.hs so it gets recompiled (#806624 reported by Erik Streb)
- try delaying manpage terminal startup 5s to avoid window resize
- add license to ghc_files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806624 - config dynlinked against older xmonad version breaks when version is updated
https://bugzilla.redhat.com/show_bug.cgi?id=806624
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
