The following Fedora 17 Security updates need testing: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11876/emacs-24.1-4.fc17 39 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11889/automake-1.12.2-2.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11603/wireshark-1.6.9-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11885/rubygem-actionpack-3.0.11-7.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11888/rubygem-activesupport-3.0.11-6.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11668/python-djblets-0.7.1-3.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-11717/bacula-5.2.10-5.fc17 37 https://admin.fedoraproject.org/updates/FEDORA-2012-10391/bcfg2-1.2.3-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-11718/transfig-3.2.5d-7.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2012-11470/bind-dyndb-ldap-1.1.0-0.14.rc1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-11762/ImageMagick-6.7.5.6-4.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-11755/xen-4.1.3-2.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-11756/openstack-nova-2012.1.1-15.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2012-11508/glibc-2.15-54.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2012-11479/drupal6-og-2.4-1.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2012-11485/dokuwiki-0-0.12.20120125.b.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11801/xfig-3.2.5-32.b.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11566/calligra-l10n-2.5.0-2.fc17,calligra-2.5.0-2.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11582/redeclipse-1.2-12.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11680/libotr-3.2.0-8.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11873/libmx-1.4.7-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11856/xz-5.1.2-1alpha.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11808/phonon-backend-gstreamer-4.6.2-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-11822/evolution-ews-3.4.4-1.fc17,evolution-mapi-3.4.4-1.fc17,evolution-exchange-3.4.4-1.fc17,evolution-3.4.4-1.fc17,evolution-data-server-3.4.4-1.fc17,gtkhtml3-4.4.4-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-11716/openldap-2.4.32-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-11702/kde-settings-4.8-18.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-11727/pykickstart-1.99.15-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11586/livecd-tools-17.14-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11601/yajl-2.0.4-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11609/openssh-5.9p1-26.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11617/virtuoso-opensource-6.1.6-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11529/abrt-2.0.11-2.fc17,libreport-2.0.12-4.fc17,btparser-0.18-2.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2012-11432/zlib-1.2.5-7.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2012-11316/linux-firmware-20120720-0.1.git7560108.fc17 The following builds have been pushed to Fedora 17 updates-testing automake-1.12.2-2.fc17 emacs-24.1-4.fc17 fedmsg-0.3.5-1.fc17 gf2x-1.1-1.fc17 ibus-typing-booster-0.0.8-1.fc17 libmatecomponent-1.4.0-12.fc17 libmx-1.4.7-1.fc17 mate-icon-theme-1.4.0-6.fc17 mingw-wxWidgets-2.8.12-11.fc17 mspdebug-0.20-1.fc17 muffin-1.0.6-2.fc17 mysql-connector-c++-1.1.1-1.fc17 mysql-workbench-5.2.42-1.fc17 nesc-1.3.4-1.fc17 nspluginwrapper-1.4.4-11.fc17 octave-nnet-0.1.13-3.fc17 rogue-5.4.5-9.fc17 ruby-1.9.3.194-15.fc17 rubygem-actionpack-3.0.11-7.fc17 rubygem-activesupport-3.0.11-6.fc17 telepathy-gabble-0.16.2-1.fc17 Details about builds: ================================================================================ automake-1.12.2-2.fc17 (FEDORA-2012-11889) A GNU tool for automatically creating Makefiles -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2012-3386, a locally exploitable "make distcheck" bug -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.12.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Jul 17 2012 Karsten Hopp <karsten@xxxxxxxxxx> 1.12.2-1 - automake-1.12.2 * Mon Apr 16 2012 Karsten Hopp <karsten@xxxxxxxxxx> 1.11.5-1 - automake-1.11.5 * Tue Apr 3 2012 Karsten Hopp <karsten@xxxxxxxxxx> 1.11.4-1 - automake-1.11.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #838286 - CVE-2012-3386 automake: locally exploitable "make distcheck" bug https://bugzilla.redhat.com/show_bug.cgi?id=838286 -------------------------------------------------------------------------------- ================================================================================ emacs-24.1-4.fc17 (FEDORA-2012-11876) GNU Emacs text editor -------------------------------------------------------------------------------- Update Information: CVE-2012-3479 emacs: Evaluation of 'eval' forms in file-local variable sections, when 'enable-local-variables' set to ':safe' -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 13 2012 Karel Klíč <kklic@xxxxxxxxxx> - 1:24.1-4 - Fix CVE-2012-3479: Evaluation of 'eval' forms in file-local variable sections, when 'enable-local-variables' set to ':safe' -------------------------------------------------------------------------------- References: [ 1 ] Bug #847698 - CVE-2012-3479 emacs: Evaluation of 'eval' forms in file-local variable sections, when 'enable-local-variables' set to ':safe' https://bugzilla.redhat.com/show_bug.cgi?id=847698 -------------------------------------------------------------------------------- ================================================================================ fedmsg-0.3.5-1.fc17 (FEDORA-2012-11879) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: IRC colors, fedmsg2repr updates, and removed fedmsg-status threadsafety and licensing Bugfix - Added a forgotten new requirement on python-requests. Bugfix to -logger and enhancement to -irc Require latest moksha. API enhancement. 0.2.5 with more realistic X509 capacity 0.2.4 with fix for disabled ssl python-argparse fix for epel-6. Fixes for fedmsg-irc and a new crypto module. Require moksha >= 0.8.3. 0.2.3 with upstream typo fixes Remove unnecessary %%ghost on /var/run/fedmsg Fix to creation of /var/run/fedmsg. bugfix to fedmsg.text. 0.3.1 for msg2repr updates and fedmsg-logger grepping. fedmsg.text updates for scm. thread safety bugfix for fedmsg-tail and fedmsg.text items from lmacken -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.5-1 - IRC colors - fedmsg2repr updates (Luke Macken) - Removed fedmsg-status and the heartbeat producer * Mon Aug 13 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.4-1 - Threadsafety bugfixes to fedmsg-tail - New fedmsg.text items from Luke Macken. * Sun Aug 12 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.3-1 - thread safety (for bodhi masher) * Wed Aug 8 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.2-1 - msg2repr updates for scm. * Wed Aug 8 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.1-1 - msg2repr updates - fedmsg-logger grepping. * Tue Aug 7 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.0-1 - Bugfix to fedmsg.text. * Tue Aug 7 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.9-1 - Upstream update including nicer message for fedmsg-irc. - fedmsg.text.msg2repr * Mon Aug 6 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.7-4 - Remove unnecessary %ghost on /var/run/fedmsg. * Mon Aug 6 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.7-3 - Hopefully fix to creation of /var/run/fedmsg. * Mon Aug 6 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.7-2 - Added a forgotten new requirement on python-requests. * Sun Aug 5 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.7-1 - Upstream bugfix to -logger and enhancement to -irc. * Mon Jul 30 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.6-2 - Require moksha >= 0.8.8 * Mon Jul 30 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.6-1 - Upstream bugfixes and API enhancements. * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sun Jul 15 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.5-1 - Upstream crypto updates in preparation for a more realistic X509 setup. * Fri Jul 13 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.4-1 - Upstream bugfix for when ssl is disabled. * Wed Jul 11 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.3-1 - Upstream bump that fixes some typos. * Tue Jul 10 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.2-3 - Added deps on python-argparse for py < 2.7 (rhel6) * Sat Jul 7 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.2-2 - Added deps on m2crypto and python-m2ext * Sat Jul 7 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.2-1 - Update to fedmsg-irc to fix lineRate issues - fedmsg.crypto module - sign and validate messages -------------------------------------------------------------------------------- ================================================================================ gf2x-1.1-1.fc17 (FEDORA-2012-11869) Polynomial multiplication over the binary field -------------------------------------------------------------------------------- Update Information: This new package provides polynomial multiplication over the binary field. It speeds up certain computations in NTL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #819099 - Review Request: gf2x - polynomial multiplication over the binary field https://bugzilla.redhat.com/show_bug.cgi?id=819099 -------------------------------------------------------------------------------- ================================================================================ ibus-typing-booster-0.0.8-1.fc17 (FEDORA-2012-11882) The Table engine for IBus platform -------------------------------------------------------------------------------- Update Information: Fixed bugs #845495,845500 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #845495 - language list in preferences for installing hunspell dictionary should be not editable https://bugzilla.redhat.com/show_bug.cgi?id=845495 [ 2 ] Bug #845500 - ")" characters getting entered twice https://bugzilla.redhat.com/show_bug.cgi?id=845500 -------------------------------------------------------------------------------- ================================================================================ libmatecomponent-1.4.0-12.fc17 (FEDORA-2012-11867) Libraries for matecomponent package of MATE-Desktop -------------------------------------------------------------------------------- Update Information: first fedora release -------------------------------------------------------------------------------- References: [ 1 ] Bug #844080 - Review Request: libmatecomponent -- Libraries for matecomponent package of MATE-Desktop https://bugzilla.redhat.com/show_bug.cgi?id=844080 -------------------------------------------------------------------------------- ================================================================================ libmx-1.4.7-1.fc17 (FEDORA-2012-11873) A clutter widget toolkit -------------------------------------------------------------------------------- Update Information: New upstream 1.4.7 stable bugfix release -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 1.4.7-1 - Release 1.4.7 - Update source location * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mate-icon-theme-1.4.0-6.fc17 (FEDORA-2012-11871) Icon theme for MATE Desktop -------------------------------------------------------------------------------- Update Information: This update obsolete mate-icon-theme-legacy Mate Icon Theme for MATE Desktop. -------------------------------------------------------------------------------- References: [ 1 ] Bug #847558 - Review Request: mate-icon-theme - Icon theme for MATE Desktop https://bugzilla.redhat.com/show_bug.cgi?id=847558 -------------------------------------------------------------------------------- ================================================================================ mingw-wxWidgets-2.8.12-11.fc17 (FEDORA-2012-11877) MinGW port of the wxWidgets GUI library -------------------------------------------------------------------------------- Update Information: enable 64bit build -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 13 2012 Thomas Sailer <t.sailer@xxxxxxxxxxxxxx> - 2.8.12-11 - enable 64bit build -------------------------------------------------------------------------------- ================================================================================ mspdebug-0.20-1.fc17 (FEDORA-2012-11891) Debugger and gdb proxy for MSP430 MCUs -------------------------------------------------------------------------------- Update Information: Update to 0.20: * Support for new chips: MSP430F6736, MSP430F2252, MSP430G2403, MSP430F6435. * Support for building under Cygwin. * Support for watchpoints using MSP430.DLL (tilib) driver. * Support for GoodFET (memory access/programming only). * Various bug fixes, including many disassembly fixes and an issue causing FRAM reset-vector corruption. * Basic C++ demangling support. * New commands: "fill" and "verify". * Erase requests are now ignored when using FRAM chips. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Rob Spanton <rspanton@xxxxxxxxxx> - 0.20-1 - Upgrade to 0.20 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.19-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ muffin-1.0.6-2.fc17 (FEDORA-2012-11884) Window and compositing manager based on Clutter -------------------------------------------------------------------------------- Update Information: - Update to 1.0.6 - Spec file clean up -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 1.0.6-2 - move gir file to devel * Tue Aug 14 2012 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 1.0.6-1 - update to 1.0.6 release - Fix unused-direct-shlib-dependency rpmlint warnings - remove .gz extension from the man files -------------------------------------------------------------------------------- ================================================================================ mysql-connector-c++-1.1.1-1.fc17 (FEDORA-2012-11778) MySQL database connector for C++ -------------------------------------------------------------------------------- Update Information: Changes in MySQL Workbench 5.2.42: http://dev.mysql.com/doc/workbench/en/wb-news-5-2-42.html Changes in MySQL Workbench 5.2.41: http://dev.mysql.com/doc/workbench/en/wb-news-5-2-41.html -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 8 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.1.1-1 - version 1.1.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #843425 - mysql-workbench-5.2.41 is available https://bugzilla.redhat.com/show_bug.cgi?id=843425 [ 2 ] Bug #847893 - mysql-workbench-5.2.42 is available https://bugzilla.redhat.com/show_bug.cgi?id=847893 -------------------------------------------------------------------------------- ================================================================================ mysql-workbench-5.2.42-1.fc17 (FEDORA-2012-11778) A MySQL visual database modeling, administration and querying tool -------------------------------------------------------------------------------- Update Information: Changes in MySQL Workbench 5.2.42: http://dev.mysql.com/doc/workbench/en/wb-news-5-2-42.html Changes in MySQL Workbench 5.2.41: http://dev.mysql.com/doc/workbench/en/wb-news-5-2-41.html -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.2.42-1 - update to 5.2.42 Community (OSS) Edition (GPL) http://dev.mysql.com/doc/workbench/en/wb-news-5-2-42.html * Sat Aug 11 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.2.41-2 - remove bundled documentation, redirect to online This documentation is NOT distributed under a GPL license - update to 5.2.41 Community (OSS) Edition (GPL) http://dev.mysql.com/doc/workbench/en/wb-news-5-2-41.html - use system cppconn and antlr - move binary to libdir (only launcher in bindir) -------------------------------------------------------------------------------- References: [ 1 ] Bug #843425 - mysql-workbench-5.2.41 is available https://bugzilla.redhat.com/show_bug.cgi?id=843425 [ 2 ] Bug #847893 - mysql-workbench-5.2.42 is available https://bugzilla.redhat.com/show_bug.cgi?id=847893 -------------------------------------------------------------------------------- ================================================================================ nesc-1.3.4-1.fc17 (FEDORA-2012-11878) Compiler used by TinyOS -------------------------------------------------------------------------------- Update Information: Updated to 1.3.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Shakthi Kannan <shakthimaan [AT] fedoraproject DOT org> - 1.3.4-1 - Updated to 1.3.4. * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #847894 - nesc-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=847894 -------------------------------------------------------------------------------- ================================================================================ nspluginwrapper-1.4.4-11.fc17 (FEDORA-2012-11866) A compatibility layer for Netscape 4 plugins -------------------------------------------------------------------------------- Update Information: * Mon Aug 13 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-11 - Fixed bug #841798 - don't wrap plugins with the same arch * Wed Jul 18 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-10 - Restart workaround for Adobe Reader plugin (rhbz#645599) -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 13 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-11 - Fixed bug #841798 - don't wrap plugins with the same arch * Wed Jul 18 2012 Martin Stransky <stransky@xxxxxxxxxx> 1.4.4-10 - Restart workaround for Adobe Reader plugin (rhbz#645599) -------------------------------------------------------------------------------- ================================================================================ octave-nnet-0.1.13-3.fc17 (FEDORA-2012-11887) A feed forward multi-layer neural network -------------------------------------------------------------------------------- Update Information: * New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #847952 - Review Request: octave-nnet - A feed forward multi-layer neural network https://bugzilla.redhat.com/show_bug.cgi?id=847952 -------------------------------------------------------------------------------- ================================================================================ rogue-5.4.5-9.fc17 (FEDORA-2012-11868) The original graphical adventure game -------------------------------------------------------------------------------- Update Information: Recognize the backspace key as the erase character. Thanks to John Haxby for the patch. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Petr Šabata <contyk@xxxxxxxxxx> - 5.4.5-9 - Recognize the backspace key as the erase character - Thanks to John Haxby <jch@xxxxxxxxxxxxxxx> (#847852) -------------------------------------------------------------------------------- References: [ 1 ] Bug #847852 - Backspace key sends ^H instead of erasechar() https://bugzilla.redhat.com/show_bug.cgi?id=847852 -------------------------------------------------------------------------------- ================================================================================ ruby-1.9.3.194-15.fc17 (FEDORA-2012-11893) An interpreter of object-oriented scripting language -------------------------------------------------------------------------------- Update Information: Revert the dependency of ruby-libs on rubygems. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 1.9.3.194-15 - Revert the dependency of ruby-libs on rubygems (rhbz#845011, rhbz#847482). -------------------------------------------------------------------------------- References: [ 1 ] Bug #845011 - ruby-libs must require rubygems https://bugzilla.redhat.com/show_bug.cgi?id=845011 [ 2 ] Bug #847482 - The latest update of ruby-libs created lots of new dependencies https://bugzilla.redhat.com/show_bug.cgi?id=847482 -------------------------------------------------------------------------------- ================================================================================ rubygem-actionpack-3.0.11-7.fc17 (FEDORA-2012-11885) Web-flow and rendering framework putting the VC in MVC -------------------------------------------------------------------------------- Update Information: Fixes for CVE-2012-3463, CVE-2012-3464 and CVE-2012-3465. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 13 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 1:3.0.11-7 - Fixes for CVE-2012-3463, CVE-2012-3464 and CVE-2012-3465. -------------------------------------------------------------------------------- References: [ 1 ] Bug #847196 - CVE-2012-3463 rubygem-actionpack: Potential XSS Vulnerability in select_tag prompt https://bugzilla.redhat.com/show_bug.cgi?id=847196 [ 2 ] Bug #847199 - CVE-2012-3464 rubygem-actionpack: Potential XSS Vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=847199 [ 3 ] Bug #847200 - CVE-2012-3465 rubygem-actionpack: XSS Vulnerability in strip_tags https://bugzilla.redhat.com/show_bug.cgi?id=847200 -------------------------------------------------------------------------------- ================================================================================ rubygem-activesupport-3.0.11-6.fc17 (FEDORA-2012-11888) Support and utility classes used by the Rails framework -------------------------------------------------------------------------------- Update Information: Fixes for CVE-2012-3464. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 13 2012 Vít Ondruch <vondruch@xxxxxxxxxx> - 1:3.0.11-6 - Fixes for CVE-2012-3464. -------------------------------------------------------------------------------- References: [ 1 ] Bug #847199 - CVE-2012-3464 rubygem-actionpack: Potential XSS Vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=847199 -------------------------------------------------------------------------------- ================================================================================ telepathy-gabble-0.16.2-1.fc17 (FEDORA-2012-11864) A Jabber/XMPP connection manager -------------------------------------------------------------------------------- Update Information: Release fixes: * fd.o#53087 - Crash in tp_base_channel_close -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 14 2012 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.16.2-1 - Update to 0.16.2. * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.16.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
