The following Fedora 17 Security updates need testing: Age URL 60 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-12958/seamonkey-2.12-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-12973/trousers-0.3.9-1.fc17 14 https://admin.fedoraproject.org/updates/FEDORA-2012-12352/GraphicsMagick-1.3.16-5.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-12985/pcp-3.6.6-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2012-12483/tor-0.2.2.38-1700.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-13075/openstack-keystone-2012.1.2-2.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2012-12598/dnsmasq-2.63-1.fc17 58 https://admin.fedoraproject.org/updates/FEDORA-2012-10391/bcfg2-1.2.3-1.fc17 30 https://admin.fedoraproject.org/updates/FEDORA-2012-11485/dokuwiki-0-0.12.20120125.b.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2012-13129/munin-2.0.6-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13163/bugzilla-4.0.8-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13234/rpmdevtools-8.3-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13268/ypserv-2.29-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13244/pnp4nagios-0.6.16-4.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-13322/python-django-horizon-2012.1.1-2.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-13338/asterisk-10.7.1-2.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-13328/sane-backends-1.0.23-2.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-13351/xorg-x11-drv-intel-2.20.6-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-13354/libbluray-0.2.3-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13251/perl-Compress-Raw-Lzma-2.052-2.fc17,xz-5.1.2-1alpha.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-13231/liboauth-0.9.7-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-13085/xorg-x11-drv-synaptics-1.6.2-2.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-13029/webkitgtk3-1.8.3-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-13037/wpa_supplicant-1.0-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-12981/kde-settings-4.8-19.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-12976/colord-0.1.23-1.fc17,colord-gtk-0.1.23-1.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2012-12598/dnsmasq-2.63-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2012-12518/gdb-7.4.50.20120120-50.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 The following builds have been pushed to Fedora 17 updates-testing Cython-0.17-1.fc17 asterisk-10.7.1-2.fc17 audacity-2.0.2-2.fc17 calligra-2.5.1-1.fc17 calligra-l10n-2.5.1-1.fc17 erlang-bear-0.1.1-1.fc17 evolution-mapi-3.4.4-2.fc17 fuelmanager-0.3.8.1-1.fc17 glm-0.9.3.4-2.fc17 gtk-vnc-0.5.1-4.fc17 katello-cli-1.1.5-1.fc17 keepalived-1.2.7-1.fc17 libbluray-0.2.3-1.fc17 librep-0.92.2-6.fc17 libteam-0.1-14.20120904gitbdcf72c.fc17 mingw-gmp-5.0.2-4.fc17 nacl-20110221-2.fc17 netsniff-ng-0.5.7-7.fc17 pavucontrol-1.0-2.fc17 perl-Log-Dispatch-Configurator-Any-1.110690-5.fc17 perl-Net-Appliance-Session-3.122100-2.fc17 perl-Net-CLI-Interact-1.122100-2.fc17 perl-RPC-XML-0.77-1.fc17 perl-SQL-ReservedWords-0.8-1.fc17 php-pecl-apc-3.1.13-1.fc17 python-django-horizon-2012.1.1-2.fc17 sane-backends-1.0.23-2.fc17 strigi-0.7.7-5.20120626.fc17 subscription-manager-1.0.17-1.fc17 tito-0.4.9-1.fc17 vala-0.16.1-1.fc17 varnish-3.0.3-1.fc17 xdelta-3.0.4-1.fc17 xorg-x11-drv-intel-2.20.6-1.fc17 Details about builds: ================================================================================ Cython-0.17-1.fc17 (FEDORA-2012-13339) A language for writing Python extension modules -------------------------------------------------------------------------------- Update Information: see: http://wiki.cython.org/ReleaseNotes-0.17 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Neal Becker <ndbecker2@xxxxxxxxx> - 0.17-1 - Update to 0.17 * Tue Aug 28 2012 Neal Becker <ndbecker2@xxxxxxxxx> - 0.17-3.b3 - Turn on check (temporarily) - Add br numpy from check * Tue Aug 28 2012 Neal Becker <ndbecker2@xxxxxxxxx> - 0.17-1.b3 - Test 0.17b3 * Fri Aug 24 2012 David Malcolm <dmalcolm@xxxxxxxxxx> - 0.16-3 - generalize egg-info logic to support RHEL (rhbz#851528) * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ asterisk-10.7.1-2.fc17 (FEDORA-2012-13338) The Open Source PBX -------------------------------------------------------------------------------- Update Information: fix build on s390 The Asterisk Development Team has announced security releases for Certified Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are released as versions 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones. These releases are available for immediate download at http://downloads.asterisk.org/pub/telephony/asterisk/releases The release of Asterisk 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones resolve the following two issues: * A permission escalation vulnerability in Asterisk Manager Interface. This would potentially allow remote authenticated users the ability to execute commands on the system shell with the privileges of the user running the Asterisk application. Please note that the README-SERIOUSLY.bestpractices.txt file delivered with Asterisk has been updated due to this and other related vulnerabilities fixed in previous versions of Asterisk. * When an IAX2 call is made using the credentials of a peer defined in a dynamic Asterisk Realtime Architecture (ARA) backend, the ACL rules for that peer are not applied to the call attempt. This allows for a remote attacker who is aware of a peer's credentials to bypass the ACL rules set for that peer. These issues and their resolutions are described in the security advisories. For more information about the details of these vulnerabilities, please read security advisories AST-2012-012 and AST-2012-013, which were released at the same time as this announcement. For a full list of changes in the current releases, please see the ChangeLogs: http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert7 http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.15.1 http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1 http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1-digiumphones The security advisories are available at: * http://downloads.asterisk.org/pub/security/AST-2012-012.pdf * http://downloads.asterisk.org/pub/security/AST-2012-013.pdf -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Dan Horák <dan[at]danny.cz> - 10.7.1-2 - fix build on s390 * Thu Aug 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 10.7.1-1 - The Asterisk Development Team has announced security releases for Certified - Asterisk 1.8.11 and Asterisk 1.8 and 10. The available security releases are - released as versions 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones. - - These releases are available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk/releases - - The release of Asterisk 1.8.11-cert7, 1.8.15.1, 10.7.1, and 10.7.1-digiumphones - resolve the following two issues: - - * A permission escalation vulnerability in Asterisk Manager Interface. This - would potentially allow remote authenticated users the ability to execute - commands on the system shell with the privileges of the user running the - Asterisk application. Please note that the README-SERIOUSLY.bestpractices.txt - file delivered with Asterisk has been updated due to this and other related - vulnerabilities fixed in previous versions of Asterisk. - - * When an IAX2 call is made using the credentials of a peer defined in a - dynamic Asterisk Realtime Architecture (ARA) backend, the ACL rules for that - peer are not applied to the call attempt. This allows for a remote attacker - who is aware of a peer's credentials to bypass the ACL rules set for that - peer. - - These issues and their resolutions are described in the security advisories. - - For more information about the details of these vulnerabilities, please read - security advisories AST-2012-012 and AST-2012-013, which were released at the - same time as this announcement. - - For a full list of changes in the current releases, please see the ChangeLogs: - - http://downloads.asterisk.org/pub/telephony/certified-asterisk/releases/ChangeLog-1.8.11-cert7 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.15.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1 - http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-10.7.1-digiumphones - - The security advisories are available at: - - * http://downloads.asterisk.org/pub/security/AST-2012-012.pdf - * http://downloads.asterisk.org/pub/security/AST-2012-013.pdf * Thu Aug 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 10.7.0-1 - The Asterisk Development Team has announced the release of Asterisk 10.7.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.7.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- Fix deadlock potential with ast_set_hangupsource() calls. - (Closes issue ASTERISK-19801. Reported by Alec Davis) - - * --- Fix request routing issue when outboundproxy is used. - (Closes issue ASTERISK-20008. Reported by Marcus Hunger) - - * --- Set the Caller ID "tag" on peers even if remote party - information is present. - (Closes issue ASTERISK-19859. Reported by Thomas Arimont) - - * --- Fix NULL pointer segfault in ast_sockaddr_parse() - (Closes issue ASTERISK-20006. Reported by Michael L. Young) - - * --- Do not perform install on existing directories - (Closes issue ASTERISK-19492. Reported by Karl Fife) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.7.0 * Thu Aug 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 10.6.1-1 - The Asterisk Development Team has announced the release of Asterisk 10.6.1. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.1 resolves an issue reported by the - community and would have not been possible without your participation. - Thank you! - - The following is the issue resolved in this release: - - * --- Remove a superfluous and dangerous freeing of an SSL_CTX. - (Closes issue ASTERISK-20074. Reported by Trevor Helmsley) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.1 * Thu Aug 30 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 10.6.0-1 - The Asterisk Development Team has announced the release of Asterisk 10.6.0. - This release is available for immediate download at - http://downloads.asterisk.org/pub/telephony/asterisk - - The release of Asterisk 10.6.0 resolves several issues reported by the - community and would have not been possible without your participation. - Thank you! - - The following is a sample of the issues resolved in this release: - - * --- format_mp3: Fix a possible crash in mp3_read(). - (Closes issue ASTERISK-19761. Reported by Chris Maciejewsk) - - * --- Fix local channel chains optimizing themselves out of a call. - (Closes issue ASTERISK-16711. Reported by Alec Davis) - - * --- Re-add LastMsgsSent value for SIP peers - (Closes issue ASTERISK-17866. Reported by Steve Davies) - - * --- Prevent sip_pvt refleak when an ast_channel outlasts its - corresponding sip_pvt. - (Closes issue ASTERISK-19425. Reported by David Cunningham) - - * --- Send more accurate identification information in dialog-info SIP - NOTIFYs. - (Closes issue ASTERISK-16735. Reported by Maciej Krajewski) - - For a full list of changes in this release, please see the ChangeLog: - - http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-10.6.0 * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 10.5.2-1.2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Mon Jul 9 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 10.5.2-1.1 - Perl 5.16 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #853541 - CVE-2012-2186 Asterisk: Asterisk Manager User Unauthorized Shell Access https://bugzilla.redhat.com/show_bug.cgi?id=853541 -------------------------------------------------------------------------------- ================================================================================ audacity-2.0.2-2.fc17 (FEDORA-2012-13346) Multitrack audio editor -------------------------------------------------------------------------------- Update Information: fix build on non-x86 arches Bug fix upgrade of 2.0.0 to 2.0.2. Full release notes available at: http://wiki.audacityteam.org/wiki/Release_Notes_2.0.2 Bug fix upgrade of 2.0.0 to 2.0.2. Full release notes available at: http://wiki.audacityteam.org/wiki/Release_Notes_2.0.2 Bug fix upgrade of 2.0.0 to 2.0.2. Full release notes available at: http://wiki.audacityteam.org/wiki/Release_Notes_2.0.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Dan Horák <dan[at]danny.cz> - 2.0.2-2 - fix build on non-x86 arches * Mon Aug 27 2012 David Timms <iinet.net.au@dtimms> - 2.0.2-1 - update to 2.0.2 final - update to manual-2.0.2 - adjust manual extract path to suit changes to manual.zip * Tue Aug 21 2012 David Timms <iinet.net.au@dtimms> - 2.0.2-0.3.rc4 - update to 2.0.2 release candidate 4 * Mon Aug 13 2012 David Timms <iinet.net.au@dtimms> - 2.0.2-0.1.rc2 - update to 2.0.2 release candidate 2 * Tue Jul 3 2012 David Timms <iinet.net.au@dtimms> - 2.0.1-1 - update to 2.0.1 final - rebase libmp3lame-default.patch - rebase desktop.in.patch * Tue Jun 26 2012 David Timms <iinet.net.au@dtimms> - 2.0.1-0.1.rc2 - update to 2.0.1 release candidate 2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #815052 - [abrt] audacity-2.0.0-1.fc16: Process /usr/bin/audacity was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=815052 [ 2 ] Bug #825401 - [abrt] audacity-2.0.0-1.fc16: __GI_raise: Process /usr/bin/audacity was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=825401 -------------------------------------------------------------------------------- ================================================================================ calligra-2.5.1-1.fc17 (FEDORA-2012-13022) An integrated office suite -------------------------------------------------------------------------------- Update Information: New bugfix release, see also: http://www.calligra.org/news/calligra-2-5-1-released/ -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 29 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.5.1-1 - 2.5.1 * Sun Aug 26 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.5.0-3 - calligra is FTBFS on ARM, qreal = float (bug #851851) -------------------------------------------------------------------------------- ================================================================================ calligra-l10n-2.5.1-1.fc17 (FEDORA-2012-13022) Language files for calligra -------------------------------------------------------------------------------- Update Information: New bugfix release, see also: http://www.calligra.org/news/calligra-2-5-1-released/ -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.5.1-1 - 2.5.1 -------------------------------------------------------------------------------- ================================================================================ erlang-bear-0.1.1-1.fc17 (FEDORA-2012-13320) A set of statistics functions for erlang -------------------------------------------------------------------------------- Update Information: * Initial package (see rhbz #853686) -------------------------------------------------------------------------------- References: [ 1 ] Bug #853686 - Review Request: erlang-bear - A set of statistics functions for erlang https://bugzilla.redhat.com/show_bug.cgi?id=853686 -------------------------------------------------------------------------------- ================================================================================ evolution-mapi-3.4.4-2.fc17 (FEDORA-2012-13331) Evolution extension for MS Exchange 2007 servers -------------------------------------------------------------------------------- Update Information: Fixes crash on event modification or meeting invitation response, caused by incorrect structure use. -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Milan Crha <mcrha@xxxxxxxxxx> - 3.4.4-2 - Add patch for Red Hat bug #853695 (crash in calendar) -------------------------------------------------------------------------------- References: [ 1 ] Bug #853695 - [abrt] evolution-data-server-3.4.3-1.fc17: __memcpy_ssse3_back: Process /usr/libexec/evolution-calendar-factory was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=853695 -------------------------------------------------------------------------------- ================================================================================ fuelmanager-0.3.8.1-1.fc17 (FEDORA-2012-13350) Manage fuel mileage -------------------------------------------------------------------------------- Update Information: the help files actually work now. added the icon, license and authors files as resources -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 31 2012 Charles Amey <kc8hfi@xxxxxxxxx> - 0.3.8.1-1 - added the documentation file to the files macro -------------------------------------------------------------------------------- ================================================================================ glm-0.9.3.4-2.fc17 (FEDORA-2012-13342) C++ mathematics library for graphics programming -------------------------------------------------------------------------------- Update Information: fix build on non-x86 arches Initial released version of glm for Fedora 17 -------------------------------------------------------------------------------- ================================================================================ gtk-vnc-0.5.1-4.fc17 (FEDORA-2012-13355) A GTK2 widget for VNC clients -------------------------------------------------------------------------------- Update Information: Add missing Requires on sub-RPMs -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Daniel P. Berrange <berrange@xxxxxxxxxx> - 0.5.1-4 - Add missing deps on gvnc (rhbz #852053) * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jul 14 2012 Ville Skyttä <ville.skytta@xxxxxx> - 0.5.1-2 - Call ldconfig at gvnc, gvncpulse, and gtk-vnc2 post(un)install time. -------------------------------------------------------------------------------- References: [ 1 ] Bug #852053 - virt-manager does not work with the latest gtk-vnc https://bugzilla.redhat.com/show_bug.cgi?id=852053 -------------------------------------------------------------------------------- ================================================================================ katello-cli-1.1.5-1.fc17 (FEDORA-2012-13337) Client package for managing application life-cycle for Linux systems -------------------------------------------------------------------------------- Update Information: Client package for Katello cloud management. -------------------------------------------------------------------------------- References: [ 1 ] Bug #822926 - Review Request: katello-cli - client package for Katello https://bugzilla.redhat.com/show_bug.cgi?id=822926 -------------------------------------------------------------------------------- ================================================================================ keepalived-1.2.7-1.fc17 (FEDORA-2012-13343) High Availability monitor built upon LVS, VRRP and service pollers -------------------------------------------------------------------------------- Update Information: Update to keepalived v1.2.7 stable release. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Ryan O'Hara <rohara@xxxxxxxxxx> - 1.2.7-1 - Update to 1.2.6. - Fix systemd service file (#769726). * Mon Aug 20 2012 Ryan O'Hara <rohara@xxxxxxxxxx> - 1.2.6-1 - Update to 1.2.6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #769726 - keepalived systemd service file problems https://bugzilla.redhat.com/show_bug.cgi?id=769726 [ 2 ] Bug #852640 - keepalived-1.2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=852640 -------------------------------------------------------------------------------- ================================================================================ libbluray-0.2.3-1.fc17 (FEDORA-2012-13354) Library to access Blu-Ray disks for video playback -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 21 2012 Xavier Bachelot <xavier@xxxxxxxxxxxx> 0.2.3-1 - Update to 0.2.3. * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Jun 12 2012 Xavier Bachelot <xavier@xxxxxxxxxxxx> 0.2.2-3 - Don't build pdf doc, it breaks multilib (see RHBZ#835952). * Tue Jun 12 2012 Xavier Bachelot <xavier@xxxxxxxxxxxx> 0.2.2-2 - Fix multilib conflict in doxygen docs (RHBZ#831401). -------------------------------------------------------------------------------- ================================================================================ librep-0.92.2-6.fc17 (FEDORA-2012-13341) A lightweight Lisp environment -------------------------------------------------------------------------------- Update Information: fix build on s390(x) -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Dan Horák <dan[at]danny.cz> 0.92.2-6 - fix stack direction on s390(x) * Thu Aug 9 2012 karsten Hopp <karsten@xxxxxxxxxx> 0.92.2-5 - fix stack direction on PPC* * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.92.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libteam-0.1-14.20120904gitbdcf72c.fc17 (FEDORA-2012-11637) Library for controlling team network device -------------------------------------------------------------------------------- Update Information: Rebase to git commit bdcf72c -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-14.20120904gitbdcf72c - Rebase to git commit bdcf72c * Wed Aug 22 2012 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-13.20120822gitc0d943d - Rebase to git commit c0d943d * Tue Aug 7 2012 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-12.20120807git9fa4a96 - Rebase to git commit 9fa4a96 * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1-11.20120628gitca7b526 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mingw-gmp-5.0.2-4.fc17 (FEDORA-2012-13333) Cross-compiled GNU arbitrary precision library -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #833622 - Review Request: mingw-gmp - Cross-compiled GNU arbitrary precision library https://bugzilla.redhat.com/show_bug.cgi?id=833622 -------------------------------------------------------------------------------- ================================================================================ nacl-20110221-2.fc17 (FEDORA-2012-13345) Networking and Cryptography library -------------------------------------------------------------------------------- Update Information: This is new package, networking and cryptography library. For more details see http://nacl.cace-project.eu/ -------------------------------------------------------------------------------- ================================================================================ netsniff-ng-0.5.7-7.fc17 (FEDORA-2012-13321) Packet sniffing beast -------------------------------------------------------------------------------- Update Information: This is new version of package that adds curvetun and changes package description to be in sync with upstream. Fixed license field, the license of the package is GPLv2, not GPLv2+. Updated summary & description to be in sync with upstream. This is an update that removes sysvinit leftovers and fixes build on secondary architectures. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 0.5.7-7 - Build with NaCl, i.e. build curvetun * Mon Sep 3 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 0.5.7-6 - Extended package description according to upstream requirements * Mon Sep 3 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 0.5.7-5 - Fixed license field, the package is licensed under GPLv2, not GPLv2+ - Updated summary & description to be in sync with upstream * Wed Aug 8 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 0.5.7-4 - Removed code that handles drop of sysvinit script (obsoleted now) Resolves: rhbz#842793 * Mon Jul 30 2012 Dan Horák <dan[at]danny.cz> - 0.5.7-3 - fix build on secondary arches * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #842793 - Pre-install script for netsniff-ng fails during update https://bugzilla.redhat.com/show_bug.cgi?id=842793 -------------------------------------------------------------------------------- ================================================================================ pavucontrol-1.0-2.fc17 (FEDORA-2012-13353) Volume control for PulseAudio -------------------------------------------------------------------------------- Update Information: Update pavucontrol to 1.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 1.0-2 - Merge in patch from BZ#588724 * Mon Sep 3 2012 Julian Sikorski <belegdol@xxxxxxxxxxxxxxxxx> - 1.0-1 - Updated to 1.0 - Switched to .xz sources - Dropped obsolete Group, Buildroot, %clean and %defattr - Updated Source0 and URL - Switched to gtk3 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9.10-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ perl-Log-Dispatch-Configurator-Any-1.110690-5.fc17 (FEDORA-2012-13352) Configurator implementation with Config::Any -------------------------------------------------------------------------------- Update Information: Net::Appliance::Session and required modules -------------------------------------------------------------------------------- References: [ 1 ] Bug #853380 - Review Request: perl-Net-Appliance-Session - Run command-line sessions to network appliances https://bugzilla.redhat.com/show_bug.cgi?id=853380 [ 2 ] Bug #853379 - Review Request: perl-Net-CLI-Interact - Toolkit for CLI Automation https://bugzilla.redhat.com/show_bug.cgi?id=853379 [ 3 ] Bug #853378 - Review Request: perl-Log-Dispatch-Configurator-Any - Configurator implementation with Config::Any https://bugzilla.redhat.com/show_bug.cgi?id=853378 -------------------------------------------------------------------------------- ================================================================================ perl-Net-Appliance-Session-3.122100-2.fc17 (FEDORA-2012-13352) Run command-line sessions to network appliances -------------------------------------------------------------------------------- Update Information: Net::Appliance::Session and required modules -------------------------------------------------------------------------------- References: [ 1 ] Bug #853380 - Review Request: perl-Net-Appliance-Session - Run command-line sessions to network appliances https://bugzilla.redhat.com/show_bug.cgi?id=853380 [ 2 ] Bug #853379 - Review Request: perl-Net-CLI-Interact - Toolkit for CLI Automation https://bugzilla.redhat.com/show_bug.cgi?id=853379 [ 3 ] Bug #853378 - Review Request: perl-Log-Dispatch-Configurator-Any - Configurator implementation with Config::Any https://bugzilla.redhat.com/show_bug.cgi?id=853378 -------------------------------------------------------------------------------- ================================================================================ perl-Net-CLI-Interact-1.122100-2.fc17 (FEDORA-2012-13352) Toolkit for CLI Automation -------------------------------------------------------------------------------- Update Information: Net::Appliance::Session and required modules -------------------------------------------------------------------------------- References: [ 1 ] Bug #853380 - Review Request: perl-Net-Appliance-Session - Run command-line sessions to network appliances https://bugzilla.redhat.com/show_bug.cgi?id=853380 [ 2 ] Bug #853379 - Review Request: perl-Net-CLI-Interact - Toolkit for CLI Automation https://bugzilla.redhat.com/show_bug.cgi?id=853379 [ 3 ] Bug #853378 - Review Request: perl-Log-Dispatch-Configurator-Any - Configurator implementation with Config::Any https://bugzilla.redhat.com/show_bug.cgi?id=853378 -------------------------------------------------------------------------------- ================================================================================ perl-RPC-XML-0.77-1.fc17 (FEDORA-2012-13325) Set of classes for core data, message and XML handling -------------------------------------------------------------------------------- Update Information: Upgrade to 0.77 version fixes various bugs: Spelling in manual page, port number in Host HTTP header, message_file_thresh requiring File::Temp, handling of DateTime parameters, RPC::XML::Server works with Net::Server. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.77-1 - 0.77 bump - Specify all dependencies - Modernize spec file - Do not package tests -------------------------------------------------------------------------------- References: [ 1 ] Bug #854138 - perl-RPC-XML-0.77 is available https://bugzilla.redhat.com/show_bug.cgi?id=854138 -------------------------------------------------------------------------------- ================================================================================ perl-SQL-ReservedWords-0.8-1.fc17 (FEDORA-2012-13330) Determine if words are reserved by ANSI/ISO SQL standard -------------------------------------------------------------------------------- Update Information: Update to 0.8 -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Bill Pemberton <wfp5p@xxxxxxxxxxxx> - 0.8-1 - update to version 0.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #853366 - perl-SQL-ReservedWords-0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=853366 -------------------------------------------------------------------------------- ================================================================================ php-pecl-apc-3.1.13-1.fc17 (FEDORA-2012-12069) APC caches and optimizes PHP intermediate code -------------------------------------------------------------------------------- Update Information: Upstream Changelog: * Fixed bug (apc_bin_dump doesn't swizzle bucket arKey in HashTable) (Laruence) * Fixed bug #62825 (php carshed OR return PHP Fatal error when used apc_bin_dump after apc_store) (Laruence) * Fixed bug due to Conditional "jump or move depends on uninitialised value(s)" in apc_op_ZEND_INCLUDE_OR_EVAL and apc_bin_dump (Laruence) * Fixed bug #62802 (Crash when use apc_bin_dump/load) (Laruence) * Fixed bug #62757 (php-fpm carshed when used apc_bin_dumpfile with apc.serializer) (Laruence) * Fixed bug #62765 (apc_bin_dumpfile report Fatal error when there is "goto" in function) (Laruence) * Fixed bug #61133 (segfault in tests/apc_bin_002.phpt) (Laruence) * Fixed handling of userspace stream wrappers simulating file inclusion/requiring (Anatoliy, Rasmus) * Fixed bug #62699 trait aliases and precedences handling (Anatoliy) * Added cli built-in server tests (Anatoliy) * Fixed filter regex freeing on request shutdown (Anatoliy) * Fixed interned strings storage freeing on module shutdown (Anatoily) * Fixed bug #61742 preload_path does not work due to incorrect string length (Anatoliy) * Fixed several memory leaks it APCIterator (Anatoliy) * Fixed potential overflows in bin dumps (Anatoliy) * fix num. segfaults by revert rev. 326820 and issue reported in bug #69972 -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.1.13-1 - Version 3.1.13 (beta) - API 3.1.0 (stable) - add patches from upstream (fixes some tests) - change serveur port for tests (allow 32/64 bits build) * Mon Aug 27 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.1.12-2 - add patches from upstream - delete tests which fail because of missing dom extension * Thu Aug 16 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.1.12-1 - Version 3.1.12 (beta) - API 3.1.0 (stable) - spec cleanups -------------------------------------------------------------------------------- ================================================================================ python-django-horizon-2012.1.1-2.fc17 (FEDORA-2012-13322) Django application for talking to Openstack -------------------------------------------------------------------------------- Update Information: CVE-2012-3540 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 30 2012 Nuno Santos <nsantos@xxxxxxxxxx> - 2012.1.1-2 - CVE-2012-3540 vulnerability in authentication mechanism -------------------------------------------------------------------------------- References: [ 1 ] Bug #852246 - CVE-2012-3540 OpenStack-Horizon: Open redirect through 'next' parameter https://bugzilla.redhat.com/show_bug.cgi?id=852246 -------------------------------------------------------------------------------- ================================================================================ sane-backends-1.0.23-2.fc17 (FEDORA-2012-13328) Scanner access software -------------------------------------------------------------------------------- Update Information: New upstream version: Changes since 1.0.22 ==================== * New backends: kvs40xx (Panasonic KV-S40xx), kodakaio (Kodak AiO ESP and Hero) * Significant enhancements to several backends * 30 new scanner models supported * V4L support improvements * Improvements for builds on multiple platforms * Improved udev rules * Updated software deskew algorithm * Documentation updates * Bugfixes -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.23-2 - make installed sane-config multi-lib aware again * Fri Aug 31 2012 Nils Philippsen <nils@xxxxxxxxxx> - 1.0.23-1 - version 1.0.23 - update udev patch, remove obsolete patches - use %_hardened_build macro from F-16 on instead of tweaking flags manually - don't use the same SONAME for backend libs and main lib * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.22-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Wed Jul 11 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.0.22-12 - rebuild (gphoto2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #740990 - sane-backends-drivers- is providing libsane.so.1, this seems wrong https://bugzilla.redhat.com/show_bug.cgi?id=740990 -------------------------------------------------------------------------------- ================================================================================ strigi-0.7.7-5.20120626.fc17 (FEDORA-2012-13344) A desktop search program -------------------------------------------------------------------------------- Update Information: pull in a handful of upstream bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 26 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.7.7-5.20120626 - backport upstream patches (as of 20120626) * Wed May 2 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.7.7-4 - rebuild (exiv2) -------------------------------------------------------------------------------- ================================================================================ subscription-manager-1.0.17-1.fc17 (FEDORA-2012-13349) Tools and libraries for subscription and repository management -------------------------------------------------------------------------------- Update Information: Dozens of bug fixes, new rct cert viewing tool. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 31 2012 Alex Wood <awood@xxxxxxxxxx> 1.0.17-1 - Fix gettext_lint issue with concat string in rhn-migrate (alikins@xxxxxxxxxx) - 851124: Fix GUI unsubscribe. (dgoodwin@xxxxxxxxxx) - fix po version for ta_IN.po (alikins@xxxxxxxxxx) - latest strings (alikins@xxxxxxxxxx) * Thu Aug 30 2012 Alex Wood <awood@xxxxxxxxxx> 1.0.16-1 - 853187: Verbiage change in install-num-migrate-to-rhsm. (awood@xxxxxxxxxx) - 852894: Abort migration if multiple JBEAP channels are detected. (awood@xxxxxxxxxx) - 850715: Fix malloc for Config (jbowes@xxxxxxxxxx) - 852001: output the orgs key as part of the identity command. (bkearney@xxxxxxxxxx) - fix "make gettext", wrong var name for the find root (alikins@xxxxxxxxxx) - 850715: Fixes based on coverity scans (bkearney@xxxxxxxxxx) - 846316: Use the full name of Subscrition Manager during first boot (bkearney@xxxxxxxxxx) - 851346: Remove special case channel certs before subscribing. (awood@xxxxxxxxxx) - 847354: When printing, translate None type into an empty string (bkearney@xxxxxxxxxx) * Wed Aug 29 2012 Alex Wood <awood@xxxxxxxxxx> 1.0.15-1 - Replace 16x16 icon with a new version that has no background (bkearney@xxxxxxxxxx) - 852107: Update verbiage in migration script. (awood@xxxxxxxxxx) - 847060: Push dependency higher up in the chain (bkearney@xxxxxxxxxx) - 848534: Change the about dialog icon to be a PNG to ensure accurate representation. (bkearney@xxxxxxxxxx) - 841396: Select first item in My Subscriptions table by default. (awood@xxxxxxxxxx) - 849483: Prompt user for org name if necessary. (awood@xxxxxxxxxx) - 849644: Calls made with --no-auto were not actually registering the system. (awood@xxxxxxxxxx) - 849494: Fix variable name collision. (awood@xxxxxxxxxx) - 846834: Use Subscription instead of entitlement certificate (bkearney@xxxxxxxxxx) - 847859: Expiration highlighting was being set incorrectly. (awood@xxxxxxxxxx) - 847750: Handle bad proxy values in migration script. (awood@xxxxxxxxxx) - 841961: Ignore case when specifying the service level in migration (bkearney@xxxxxxxxxx) - 842020: Remove an extraneous option group for rhsmcertd (bkearney@xxxxxxxxxx) - Refactored some of the shared CLI code in 'rct' (mstead@xxxxxxxxxx) * Fri Aug 17 2012 Alex Wood <awood@xxxxxxxxxx> 1.0.14-1 - 849171: Remove an extraneous print statement (bkearney@xxxxxxxxxx) - 849105: Fixed a typo in the error message (bkearney@xxxxxxxxxx) - 772161: Notifiy virt who, if running, when the identity changes (bkearney@xxxxxxxxxx) - Reduce reads/parses of certificates (jbowes@xxxxxxxxxx) - remove unused function 'getInstalledProductHashMap' (jbowes@xxxxxxxxxx) - 843191: handle network errors better for 'version' command (alikins@xxxxxxxxxx) - 826739, 827553: Combine Service Level and Service Type and move up in display order. (awood@xxxxxxxxxx) - 847316: Remove the menu path for Subscription Manager from the manual registration screen. (bkearney@xxxxxxxxxx) - 848409,848195,848190,848184: Do not print the exception when attempting to do the server version check (bkearney@xxxxxxxxxx) - 847795: String and terminology clean up (bkearney@xxxxxxxxxx) - 847380: Update the verbiage to prefer the term Subscription Management (bkearney@xxxxxxxxxx) - 846834: Updated verbiage to focus on subsriptions and not on entitlements (bkearney@xxxxxxxxxx) - 846105: Verbiage changes to empasize subscriptions over entitlements (bkearney@xxxxxxxxxx) - 836933: Handle empty spaces for servce levels (bkearney@xxxxxxxxxx) - 836932,835050: Fix the service level lifecycle (bkearney@xxxxxxxxxx) - 836932: Reduce extra loggging when setting the service level (bkearney@xxxxxxxxxx) - About dialog was not working due to key errors from python (bkearney@xxxxxxxxxx) - 833319: Updated the help text for registration and service levels (bkearney@xxxxxxxxxx) - 847060: Add missing requires on pygobject2 (bkearney@xxxxxxxxxx) - 828954: Fix ta_IN.po file error with options (bkearney@xxxxxxxxxx) - 842898: re-implement string fix for it.po (bkearney@xxxxxxxxxx) - 828958: Fix the accidental translation of an option (bkearney@xxxxxxxxxx) - fix up make stylish (jbowes@xxxxxxxxxx) - No longer require root to run rct (mstead@xxxxxxxxxx) - Remove manually_subscribe.py, it's class moved to rhsm_login.py (alikins@xxxxxxxxxx) - Bumping the required python-rhsm version (mstead@xxxxxxxxxx) - Renamed rt command to rct. (mstead@xxxxxxxxxx) - Fix test case failure on 5.9 (Exception.message) (alikins@xxxxxxxxxx) - Refactor ManuallySubscribeScreen to use new Screen api (alikins@xxxxxxxxxx) - Check passed args as None to allow empty args (mstead@xxxxxxxxxx) - Exception.message is deprecated, just let _str_ do it (alikins@xxxxxxxxxx) - use MockStdout intead of nosetests sys.stdout.getvalue() (alikins@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ tito-0.4.9-1.fc17 (FEDORA-2012-13317) A tool for managing rpm based git projects -------------------------------------------------------------------------------- Update Information: New RsyncReleaser (similar to YumRepo but more generic), several bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Devan Goodwin <dgoodwin@xxxxxxxx> 0.4.9-1 - Stop passing --installdeps for mock builds. (dgoodwin@xxxxxxxxxx) - YumRepoReleaser feature: createrepo command can now be specified from releasers.conf with the 'createrepo_command' config option (palli@xxxxxxxxxxxxx) - Created new releaser called RsyncReleaser. Based heavily on YumRepoReleaser. Refactored YumRepoReleaser to inherit most code from RsyncReleaser. (palli@xxxxxxxxxxxxx) - Optionally print stacktrace whenever error_out is hit (bleanhar@xxxxxxxxxx) - encourage users to push only their new tag (jbowes@xxxxxxxxxx) - Attempt to copy local Sources during releases. (dgoodwin@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ vala-0.16.1-1.fc17 (FEDORA-2012-13327) A modern programming language for GNOME -------------------------------------------------------------------------------- Update Information: Bug fixes and binding updates -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 0.16.1-1 - Update to 0.16.1 -------------------------------------------------------------------------------- ================================================================================ varnish-3.0.3-1.fc17 (FEDORA-2012-13347) High-performance HTTP accelerator -------------------------------------------------------------------------------- Update Information: New upstream release. This is a bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 21 2012 Ingvar Hagelund <ingvar@xxxxxxxxxxxxxxxxxx> - 3.0.3-1 - New upstream release - Remove unneeded hacks for ppc - Remove hacks for rhel4, we no longer support that - Remove unneeded hacks for docs, since we use the pregenerated docs - Add new systemd scriptlets from f18+ - Added a patch switching off pcre jit on i386 and ppc to avoid upstream bug #1191 * Sun Jul 22 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.0.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xdelta-3.0.4-1.fc17 (FEDORA-2012-13336) A binary file delta generator -------------------------------------------------------------------------------- Update Information: Update to 3.0.4 upstream release which fixes various issues, notably: * xdelta could crash when processing large files. (BZ#853953) -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Adam Tkac <atkac redhat com> - 3.0.4-1 - update to 3.0.4 * Sun Jul 22 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.0.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #853953 - xdelta 3.0.0-3.fc17 stack overflow https://bugzilla.redhat.com/show_bug.cgi?id=853953 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-intel-2.20.6-1.fc17 (FEDORA-2012-13351) Xorg X11 Intel video driver -------------------------------------------------------------------------------- Update Information: Upstream 2.20.6 release. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 4 2012 Adam Jackson <ajax@xxxxxxxxxx> 2.20.6-1 - intel 2.20.6 (#853783) * Thu Aug 30 2012 Adam Jackson <ajax@xxxxxxxxxx> 2.20.5-2 - Don't package I810XvMC when not building legacy i810 -------------------------------------------------------------------------------- References: [ 1 ] Bug #853783 - xorg-x11-drv-intel-2.20.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=853783 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test