The following Fedora 18 Security updates need testing: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-12290/roundcubemail-0.7.3-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-12293/gimp-2.8.0-3.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-11900/libotr-3.2.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-12333/GraphicsMagick-1.3.16-5.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-11962/phpMyAdmin-3.5.2.2-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-11963/glibc-2.16-8.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2012-11981/wireshark-1.8.2-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2012-12174/postgresql-9.1.5-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-12191/openttd-1.2.2-1.fc18 The following builds have been pushed to Fedora 18 updates-testing 389-ds-base-1.2.11.11-1.fc18 GraphicsMagick-1.3.16-5.fc18 cmake-fedora-1.0.5-1.fc18 csisat-1.2-9.fc18 gnome-panel-3.5.4-4.fc18 openldap-2.4.32-2.fc18 picosat-951-1.fc18 plymouth-0.8.7-1.fc18 postgresql-odbc-09.01.0200-1.fc18 python-flask-sqlalchemy-0.14-4.fc18 undertaker-1.2-8.fc18 usermode-1.110-1.fc18 Details about builds: ================================================================================ 389-ds-base-1.2.11.11-1.fc18 (FEDORA-2012-12330) 389 Directory Server (base) -------------------------------------------------------------------------------- Update Information: Here is where you give an explanation of your update. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Mark Reynolds <mareynol@xxxxxxxxxx> - 1.2.11.11-1 6c0778f bumped version to 1.2.11.11 Ticket 429 - added nsslapd-readonly to DS schema Ticket 403 - fix CLEANALLRUV regression from last commit Trac Ticket #346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values * Wed Aug 15 2012 Mark Reynolds <mareynol@xxxxxxxxxx> - 1.2.11.10-1 db6b354 bumped version to 1.2.11.10 Ticket 403 - CLEANALLRUV revisions -------------------------------------------------------------------------------- ================================================================================ GraphicsMagick-1.3.16-5.fc18 (FEDORA-2012-12333) An ImageMagick fork, offering faster image generation and better quality -------------------------------------------------------------------------------- Update Information: This update: * addresses a potential memory allocation issue with png images * fixes a -devel multilib conflict * builds against lcms2 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.3.16-5 - CVE-2012-3438 GraphicsMagick: png_IM_malloc() size argument (#844106, #844107) * Mon Aug 20 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.3.16-4 - link GraphicsMagick against lcms2 instead of lcms1 (#849778) -------------------------------------------------------------------------------- References: [ 1 ] Bug #566361 - GraphicsMagick-devel and GraphicsMagick-c++-devel multilib conflict https://bugzilla.redhat.com/show_bug.cgi?id=566361 [ 2 ] Bug #844106 - CVE-2012-3438 GraphicsMagick: png_IM_malloc() size argument [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=844106 [ 3 ] Bug #849778 - link GraphicsMagick against lcms2 instead of lcms1 https://bugzilla.redhat.com/show_bug.cgi?id=849778 -------------------------------------------------------------------------------- ================================================================================ cmake-fedora-1.0.5-1.fc18 (FEDORA-2012-12338) CMake helper modules for fedora developers -------------------------------------------------------------------------------- Update Information: - Fedora 18 support. - Source tarball filename is changed back to name-version-Source.tar.gz to avoid confusion between source generate by cmake-fedora (which contains ChangeLog and projectName.pot) and tarball generation service from hosting site (which does not contain generated files) - koji-build-scratch: rawhide build target does not always have suffix -candidate. - README updated. - TODO updated. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 21 2012 Ding-Yi Chen <dchen at redhat.com> - 1.0.5-1 - Fedora 18 support. - Source tarball filename is changed back to name-version-Source.tar.gz to avoid confusion between source generate by cmake-fedora (which contains ChangeLog and projectName.pot) and tarball generation service from hosting site (which does not contain generated files) - koji-build-scratch: rawhide build target does not always have suffix -candidate. - README updated. - TODO updated. * Fri Aug 17 2012 Ding-Yi Chen <dchen at redhat.com> - 1.0.4-1 - Source tarball filename is now name-version.tar.gz instead of name-version-Source.tar.gz - after_release_commit depends rpm_changelog_prev_update if RPM supported enabled. - Corrected the 'FORCE' of cmake CACHE - Update the error messages when cmake-fedora is not installed. - Fixed target: zanata_push_trans. - Fixed zanata arguments. - fedpkg clone is now triggered if the clone directory does not exist when doing the fedpkg_commit, it no longer the listed OUTPUT of an ADD_CUSTOM_COMMAND. - Add target: translations as an universal easy target to generate/update translation files. -------------------------------------------------------------------------------- ================================================================================ csisat-1.2-9.fc18 (FEDORA-2012-12337) Tool for LA+EUF Interpolation -------------------------------------------------------------------------------- Update Information: This new version of picosat contains cleaned up code, a few bug fixes, and 2 new binaries. The new csisat and undertaker builds are just to adapt to the new version of picosat; there should be no functional differences. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Jerry James <loganjerry@xxxxxxxxx> - 1.2-9 - Rebuild for new picosat -------------------------------------------------------------------------------- ================================================================================ gnome-panel-3.5.4-4.fc18 (FEDORA-2012-12331) GNOME panel -------------------------------------------------------------------------------- Update Information: Rebuild for new evolution-data-server -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Daniel Drake <dsd@xxxxxxxxxx> - 3.5.4-4 - Rebuild for libcamel-1.2.so.40 -------------------------------------------------------------------------------- ================================================================================ openldap-2.4.32-2.fc18 (FEDORA-2012-12332) LDAP support libraries -------------------------------------------------------------------------------- Update Information: Resolves TLS failures in replication in 389 Directory Server introduced by recent Mozilla NSS backend fixes. contains two enhancements: * prefer key from authenticated slot * allow certificate name with token -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Jan Vcelak <jvcelak@xxxxxxxxxx> 2.4.32-2 - enhancement: TLS, prefer private keys from authenticated slots - enhancement: TLS, allow certificate specification including token name - resolve TLS failures in replication in 389 Directory Server -------------------------------------------------------------------------------- ================================================================================ picosat-951-1.fc18 (FEDORA-2012-12337) A SAT solver -------------------------------------------------------------------------------- Update Information: This new version of picosat contains cleaned up code, a few bug fixes, and 2 new binaries. The new csisat and undertaker builds are just to adapt to the new version of picosat; there should be no functional differences. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Jerry James <loganjerry@xxxxxxxxx> - 951-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ plymouth-0.8.7-1.fc18 (FEDORA-2012-12334) Graphical Boot Animation and Logger -------------------------------------------------------------------------------- Update Information: This update should work around a number of issues where users don't see boot splashes at startup. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 21 2012 Ray Strode <rstrode@xxxxxxxxxx> 0.8.7-1 - Latest upstream release - includes systemd fixes * Tue Aug 21 2012 Dave Airlie <airlied@xxxxxxxxxx> 0.8.6.2-1.2012.07.23 - fix plymouth race at bootup breaking efi/vesa handoff. - fix version number - its against fedora package policy to have 0.year -------------------------------------------------------------------------------- References: [ 1 ] Bug #848305 - When kernel modsetting is enabled, laptop screen remians off until Xorg starts (ironlake) https://bugzilla.redhat.com/show_bug.cgi?id=848305 -------------------------------------------------------------------------------- ================================================================================ postgresql-odbc-09.01.0200-1.fc18 (FEDORA-2012-12329) PostgreSQL ODBC driver -------------------------------------------------------------------------------- Update Information: Update to version 09.01.0200, for assorted minor bug fixes listed at http://psqlodbc.projects.postgresql.org/release.html -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Tom Lane <tgl@xxxxxxxxxx> 09.01.0200-1 - Update to version 09.01.0200 - Minor specfile cleanup per suggestions from Tom Callaway Related: #845110 -------------------------------------------------------------------------------- ================================================================================ python-flask-sqlalchemy-0.14-4.fc18 (FEDORA-2012-12335) Adds SQLAlchemy support to Flask application -------------------------------------------------------------------------------- Update Information: Added python-sqlalchemy as require. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 21 2012 Praveen Kumar <kumarpraveen.nitdgp@xxxxxxxxx> - 0.14-4 - Added python-sqlalchemy as requires -------------------------------------------------------------------------------- References: [ 1 ] Bug #849384 - python-flask-sqlalchemy should require python-sqlalchemy https://bugzilla.redhat.com/show_bug.cgi?id=849384 -------------------------------------------------------------------------------- ================================================================================ undertaker-1.2-8.fc18 (FEDORA-2012-12337) Find always-on and always-off conditional C code -------------------------------------------------------------------------------- Update Information: This new version of picosat contains cleaned up code, a few bug fixes, and 2 new binaries. The new csisat and undertaker builds are just to adapt to the new version of picosat; there should be no functional differences. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Jerry James <loganjerry@xxxxxxxxx> - 1.2-8 - Rebuild for new picosat -------------------------------------------------------------------------------- ================================================================================ usermode-1.110-1.fc18 (FEDORA-2012-12336) Tools for certain user account management tasks -------------------------------------------------------------------------------- Update Information: INCOMPATIBLE: {halt,poweroff,reboot} are not wrapped by userhelper an more. Use the polkit configuration for systemd instead. Invalid command-line arguments are no longer silently ignored. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 20 2012 Miloslav Trmač <mitr@xxxxxxxxxx> - 1.110-1 - Update to usermode-1.110. Note that this drops halt/poweroff/reboot helpers, the respective implementations in systemd now include PolicyKit support. Spec file change based on a patch by Lennart Poettering <lpoetter@xxxxxxxxxx>. Resolves: #804088, #849208 -------------------------------------------------------------------------------- References: [ 1 ] Bug #804088 - please remove reboot, poweroff interception, it conflicts with systemd's polkit policy https://bugzilla.redhat.com/show_bug.cgi?id=804088 [ 2 ] Bug #849208 - usermount silently fails when started with wrong parameters. https://bugzilla.redhat.com/show_bug.cgi?id=849208 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
