The following Fedora 16 Security updates need testing: Age URL 4 https://admin.fedoraproject.org/updates/FEDORA-2012-14363/phpldapadmin-1.2.2-3.gitbbedf1.fc16 4 https://admin.fedoraproject.org/updates/FEDORA-2012-14295/moodle-2.1.8-1.fc16 14 https://admin.fedoraproject.org/updates/FEDORA-2012-13649/munin-2.0.6-2.fc16 4 https://admin.fedoraproject.org/updates/FEDORA-2012-14322/pcp-3.6.8-1.fc16 77 https://admin.fedoraproject.org/updates/FEDORA-2012-10402/bcfg2-1.2.3-1.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33.fc16 49 https://admin.fedoraproject.org/updates/FEDORA-2012-11526/dokuwiki-0-0.11.20120125.b.fc16 11 https://admin.fedoraproject.org/updates/FEDORA-2012-13839/ghostscript-9.05-2.fc16 11 https://admin.fedoraproject.org/updates/FEDORA-2012-13824/libxml2-2.7.8-8.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-14462/fetchmail-6.3.22-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14048/libxslt-1.1.26-9.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14102/seamonkey-2.12.1-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14076/dhcp-4.2.3-12.P2.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14030/bind-9.8.3-4.P3.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14046/spice-gtk-0.11-5.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14189/cloud-init-0.6.3-0.5.bzr532.fc16 80 https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4.14-1.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-1600.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14097/libguac-0.6.3-1.fc16,libguac-client-vnc-0.6.0-8.fc16,guacd-0.6.1-3.fc16,guacamole-common-0.6.1-2.fc16,guacamole-ext-0.6.1-2.fc16,guacamole-common-js-0.6.1-2.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14126/dbus-1.4.10-4.fc16 The following Fedora 16 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-14626/qrencode-3.3.1-4.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2012-14613/xorg-x11-drv-intel-2.20.8-1.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-14509/poppler-data-0.4.5-6.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14170/perl-5.14.2-201.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14126/dbus-1.4.10-4.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14186/nspr-4.9.2-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14048/libxslt-1.1.26-9.fc16 11 https://admin.fedoraproject.org/updates/FEDORA-2012-13824/libxml2-2.7.8-8.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2012-13755/sane-backends-1.0.23-4.fc16 The following builds have been pushed to Fedora 16 updates-testing clamav-0.97.6-1600.fc16 erlang-js-1.2.1-1.fc16 girara-0.1.3-6.fc16 php-pecl-memcache-3.0.7-2.fc16 python-pottymouth-2.2.1-3.fc16 tor-0.2.2.39-1600.fc16 Details about builds: ================================================================================ clamav-0.97.6-1600.fc16 (FEDORA-2012-14649) End-user tools for the Clam Antivirus scanner -------------------------------------------------------------------------------- Update Information: . -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 22 2012 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.97.6-1600 - updated to 0.97.6 -------------------------------------------------------------------------------- ================================================================================ erlang-js-1.2.1-1.fc16 (FEDORA-2012-14653) A Friendly Erlang to Javascript Binding -------------------------------------------------------------------------------- Update Information: * Ver. 1.2.1 (bugfix release) -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 22 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.2.1-1 - Ver. 1.2.1 - Drop upstreamed patches * Wed Sep 5 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.2.0-1 - Ver. 1.2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #854562 - Upgrade erlang-js to the version 1.2.0 https://bugzilla.redhat.com/show_bug.cgi?id=854562 -------------------------------------------------------------------------------- ================================================================================ girara-0.1.3-6.fc16 (FEDORA-2012-14644) Simple user interface library -------------------------------------------------------------------------------- Update Information: Initial package import -------------------------------------------------------------------------------- ================================================================================ php-pecl-memcache-3.0.7-2.fc16 (FEDORA-2012-14643) Extension to work with the Memcached caching daemon -------------------------------------------------------------------------------- Update Information: Upstream changelog: - Fixed bug #62589 - missing "$" in memcache.php - Fix php_stream_cast() usage. - fixes for windows build and php 5.4 compat -------------------------------------------------------------------------------- ChangeLog: * Sun Sep 23 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.0.7-2 - use upstream patch instead of our (memleak) * Sun Sep 23 2012 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.0.7-1 - update to 3.0.7 - drop patches merged upstream - cleanup spec * Thu Jul 5 2012 Joe Orton <jorton@xxxxxxxxxx> - 3.0.6-4 - fix php_stream_cast() usage - fix memory corruption after unserialization (Paul Clifford) - package license -------------------------------------------------------------------------------- ================================================================================ python-pottymouth-2.2.1-3.fc16 (FEDORA-2012-14640) Transform unstructured, untrusted text to safe, valid XHTML -------------------------------------------------------------------------------- Update Information: python-pottymouth version 2.2.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #856554 - Review Request: python-pottymouth - Transform unstructured, untrusted text to safe, valid XHTML https://bugzilla.redhat.com/show_bug.cgi?id=856554 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.2.39-1600.fc16 (FEDORA-2012-14654) Anonymizing overlay network for TCP (The onion router) -------------------------------------------------------------------------------- Update Information: . . . -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 22 2012 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2.39-1600 - updated to 0.2.2.29 - CVE-2012-4419: assertion failure when comparing an address with port 0 to an address policy - CVE-2012-4422: assertion failure in tor_timegm() * Sun Aug 19 2012 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2.38-1600 - updated to 0.2.2.38 * Tue Jun 12 2012 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2.37-1600 - updated to 0.2.2.37 * Sat May 26 2012 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2.36-1600 - updated to 0.2.2.36 -------------------------------------------------------------------------------- References: [ 1 ] Bug #856988 - CVE-2012-4419 CVE-2012-4922 tor: assertion failures in tor_timegm() and compare_tor_addr_to_addr_policy() https://bugzilla.redhat.com/show_bug.cgi?id=856988 [ 2 ] Bug #849949 - CVE-2012-3517 tor: Read from freed memory and double free by processing failed DNS request https://bugzilla.redhat.com/show_bug.cgi?id=849949 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
