The following Fedora 17 Security updates need testing: Age URL 15 https://admin.fedoraproject.org/updates/FEDORA-2012-14344/phpldapadmin-1.2.2-3.gitbbedf1.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2012-14953/dracut-018-105.git20120927.fc17 88 https://admin.fedoraproject.org/updates/FEDORA-2012-10391/bcfg2-1.2.3-1.fc17 60 https://admin.fedoraproject.org/updates/FEDORA-2012-11485/dokuwiki-0-0.12.20120125.b.fc17 91 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2012-15194/qt-4.8.2-7.fc17 30 https://admin.fedoraproject.org/updates/FEDORA-2012-13322/python-django-horizon-2012.1.1-2.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2012-14650/tor-0.2.2.39-1700.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2012-14717/openjpeg-1.4-14.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15397/freeradius-2.2.0-0.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15329/cxf-2.4.9-2.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15395/ruby-1.9.3.194-17.fc17 15 https://admin.fedoraproject.org/updates/FEDORA-2012-14347/pcp-3.6.8-1.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15427/dbus-1.4.10-6.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15396/kdelibs-4.9.2-5.fc17 The following builds have been pushed to Fedora 17 updates-testing OpenSceneGraph-3.0.1-13.fc17 bitlyclip-0.2.2-2.fc17 cdrkit-1.1.11-14.fc17 dbus-1.4.10-6.fc17 freeradius-2.2.0-0.fc17 gprolog-1.4.1-1.fc17 gradle-1.0-7.fc17 grfcodec-6.0.1-1.fc17 help2man-1.40.12-1.fc17 html-xml-utils-6.2-1.fc17 ikiwiki-3.20120725-1.fc17 kdelibs-4.9.2-5.fc17 kdepimlibs-4.9.2-2.fc17 konsole-4.9.2-2.fc17 kwebkitpart-1.3.0-1.fc17 libstoragemgmt-0.0.13-1.fc17 libyuv-0-0.14.20121001svn389.fc17 maliit-framework-0.92.5-2.fc17 mate-session-manager-1.4.0-4.fc17 mate-themes-1.4.0-3.fc17 nepomuk-core-4.9.2-5.fc17 nikto-2.1.5-3.fc17 openttd-opengfx-0.4.5-1.fc17 oyranos-0.4.0-5.fc17 perl-HTML-Selector-XPath-0.15-1.fc17 perl-Hardware-Vhdl-Parser-0.12-13.fc17 perl-No-Worries-0.6-1.fc17 ql2400-firmware-5.08.00-1.fc17 ql2500-firmware-5.08.00-1.fc17 ruby-1.9.3.194-17.fc17 rubygem-virt-p2v-0.8.8-4.fc17 tmw-20110911-2.fc17 tmw-music-0.3-5.fc17 w_scan-20120605-1.fc17 xkbset-0.5-2.fc17 Details about builds: ================================================================================ OpenSceneGraph-3.0.1-13.fc17 (FEDORA-2012-15401) High performance real-time graphics toolkit -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 3 2012 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 3.0.1-13 - BR: libvncserver-devel, ship osgvnc (RHBZ 853755). -------------------------------------------------------------------------------- References: [ 1 ] Bug #853755 - FTBFS - installed but unpackaged file https://bugzilla.redhat.com/show_bug.cgi?id=853755 -------------------------------------------------------------------------------- ================================================================================ bitlyclip-0.2.2-2.fc17 (FEDORA-2012-15436) Shorten urls in the X clipboard with bit.ly -------------------------------------------------------------------------------- Update Information: Require python-setuptools -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.2-2 - Added requirement on python-setuptools. -------------------------------------------------------------------------------- ================================================================================ cdrkit-1.1.11-14.fc17 (FEDORA-2012-15406) A collection of CD/DVD utilities -------------------------------------------------------------------------------- Update Information: This is an update that fixes dependency issues during install. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Honza Horak <hhorak@xxxxxxxxxx> - 1.1.11-14 - Add coreutils as preun/post requirements for wodim and genisoimage Resolves: #862554 * Mon Aug 27 2012 Honza Horak <hhorak@xxxxxxxxxx> - 1.1.11-13 - Add mkhybrid(1) as a symlink to genisoimage(1) - Spec file cleanup -------------------------------------------------------------------------------- References: [ 1 ] Bug #862554 - Error while installing wodim, genisoimage: readlink: command not found https://bugzilla.redhat.com/show_bug.cgi?id=862554 -------------------------------------------------------------------------------- ================================================================================ dbus-1.4.10-6.fc17 (FEDORA-2012-15427) D-BUS message bus -------------------------------------------------------------------------------- Update Information: Fix FTBFS due to missing directory for run time information. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - 1:1.4.0-6 - Fix missing run time directory -------------------------------------------------------------------------------- ================================================================================ freeradius-2.2.0-0.fc17 (FEDORA-2012-15397) High-performance and highly configurable free RADIUS server -------------------------------------------------------------------------------- Update Information: This updates to the current upstream 2.2.0 release which is configuration compatible with the prior 2.1.12. Version 2.2.0 includes a security fix for CVE-2012-3547 Stack-based buffer overflow by processing This update also includes a fix to prevent .rpmsave and .rpmnew files from being read from the configuration directories. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 John Dennis <jdennis@xxxxxxxxxx> - 2.2.0-0 - fix CVE-2012-3547 freeradius: Stack-based buffer overflow by processing - Add new patch to avoid reading .rpmnew, .rpmsave and other invalid files when loading config files - Upgrade to new 2.2.0 upstream release - Upstream changelog for 2.1.12: Feature improvements * 100% configuration file compatible with 2.1.x. The only fix needed is to disallow "hashsize=0" for rlm_passwd * Update Aruba, Alcatel Lucent, APC, BT, PaloAlto, Pureware, Redback, and Mikrotik dictionaries * Switch to using SHA1 for certificate digests instead of MD5. See raddb/certs/*.cnf * Added copyright statements to the dictionaries, so that we know when people are using them. * Better documentation for radrelay and detail file writer. See raddb/modules/radrelay and raddb/radrelay.conf * Added TLS-Cert-Subject-Alt-Name-Email from patch by Luke Howard * Added -F <file> to radwho * Added query timeouts to MySQL driver. Patch from Brian De Wolf. * Add /etc/default/freeradius to debian package. Patch from Matthew Newton * Finalize DHCP and DHCP relay code. It should now work everywhere. See raddb/sites-available/dhcp, src_ipaddr and src_interface. * DHCP capabilitiies are now compiled in by default. It runs as a DHCP server ONLY when manually enabled. * Added one letter expansions: %G - request minute and %I request ID. * Added script to convert ISC DHCP lease files to SQL pools. See scripts/isc2ippool.pl * Added rlm_cache to cache arbitrary attributes. * Added max_use to rlm_ldap to force connection to be re-established after a given number of queries. * Added configtest option to Debian init scripts, and automatic config test on restart. * Added cache config item to rlm_krb5. When set to "no" ticket caching is disabled which may increase performance. Bug fixes * Fix CVE-2012-3547. All users of 2.1.10, 2.1.11, 2.1.12, and 802.1X should upgrade immediately. * Fix typo in detail file writer, to skip writing if the packet was read from this detail file. * Free cached replies when closing resumed SSL sessions. * Fix a number of issues found by Coverity. * Fix memory leak and race condition in the EAP-TLS session cache. Thanks to Phil Mayers for tracking down OpenSSL APIs. * Restrict ATTRIBUTE names to character sets that make sense. * Fix EAP-TLS session Id length so that OpenSSL doesn't get excited. * Fix SQL IPPool logic for non-timer attributes. Closes bug #181 * Change some informational messages to DEBUG rather than error. * Portability fixes for FreeBSD. Closes bug #177 * A much better fix for the _lt__PROGRAM__LTX_preloaded_symbols nonsense. * Safely handle extremely long lines in conf file variable expansion * Fix for Debian bug #606450 * Mutex lock around rlm_perl Clone routines. Patch from Eike Dehling * The passwd module no longer permits "hashsize = 0". Setting that is pointless for a host of reasons. It will also break the server. * Fix proxied inner-tunnel packets sometimes having zero authentication vector. Found by Brian Julin. * Added $(EXEEXT) to Makefiles for portability. Closes bug #188. * Fix minor build issue which would cause rlm_eap to be built twice. * When using "status_check=request" for a home server, the username and password must be specified, or the server will not start. * EAP-SIM now calculates keys from the SIM identity, not from the EAP-Identity. Changing the EAP type via NAK may result in identities changing. Bug reported by Microsoft EAP team. * Use home server src_ipaddr when sending Status-Server packets * Decrypt encrypted ERX attributes in CoA packets. * Fix registration of internal xlat's so %{mschap:...} doesn't disappear after a HUP. * Can now reference tagged attributes in expansions. e.g. %{Tunnel-Type:1} and %{Tunnel-Type:1[0]} now work. * Correct calculation of Message-Authenticator for CoA and Disconnect replies. Patch from Jouni Malinen * Install rad_counter, for managing rlm_counter files. * Add unique index constraint to all SQL flavours so that alternate queries work correctly. * The TTLS diameter decoder is now more lenient. It ignores unknown attributes, instead of rejecting the TTLS session. * Use "globfree" in detail file reader. Prevents very slow leak. Closes bug #207. * Operator =~ shouldn't copy the attribute, like :=. It should instead behave more like ==. * Build main Debian package without SQL dependencies * Use max_queue_size in threading code * Update permissions in raddb/sql/postgresql/admin.sql * Added OpenSSL_add_all_algorithms() to fix issues where OpenSSL wouldn't use methods it knew about. * Add more sanity checks in dynamic_clients code so the server won't crash if it attempts to load a badly formated client definition. -------------------------------------------------------------------------------- ================================================================================ gprolog-1.4.1-1.fc17 (FEDORA-2012-15435) GNU Prolog is a free Prolog compiler -------------------------------------------------------------------------------- Update Information: Upstream bug fixing release. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Jochen Schmitt <Jochen herr-schmitt de> - 1.4.1-1 - New upstream release - Clean up SPEC file * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ gradle-1.0-7.fc17 (FEDORA-2012-15429) Groovy based build system -------------------------------------------------------------------------------- Update Information: Initial import, bootstrap mode. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 21 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-7 - Revert symlinks in %_javadir, exception for gradle-launcher (see 809950#c43). thanks to A. Grimm * Fri Sep 21 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-6 - Revert symlinks from %_datadir/gradle to %_javadir/gradle * Fri Sep 21 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-5 - Removed bundled jars - Fixed unowned directories - Used symlinks in %_datadir/gradle * Sun Aug 26 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-4 - used task assemble in non bootstrap mode - fixed javadoc build - fixed incorrectly modifies the getUserHome() method (RHBZ #809950#c24) - removed libicns-utils support * Fri Aug 10 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-3 - Added some missing build/requires - Cleaned up spec file * Mon Jul 16 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-2 - Changed plexus-container-default with plexus-containers-container-default - Disabled signing plugin (depend on GRADLE-2210) - Added BR classycle * Tue Jun 12 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-1 - Update to 1.0 * Thu May 31 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.10.rc.3 - Add maven 3 support patch from Marek Goldmann * Thu May 3 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.9.rc.3 - Update to 1.0-rc-3 * Wed May 2 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.8.rc.2 - Rebuilt with guava 11.0.2 support - Remove guava-libraries references * Sat Apr 28 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.7.rc.2 - Rebuilt with guava-libraries support * Fri Apr 27 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.6.rc.2 - Update to 1.0-rc-2 * Mon Apr 23 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.5.rc.1 - edit Release tag * Thu Apr 19 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.4.rc.1 - Applied PATCH18 remove some mvn2 references * Fri Apr 13 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.3.rc.1 - Update to 1.0-rc-1 - Disable maven plugin see GRADLE-2210 - Added desktop file * Thu Apr 5 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.2.milestone.9 - Added changelog - Built apis documentation * Sun Mar 25 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.0-0.1.milestone.9 - Initial rpm -------------------------------------------------------------------------------- References: [ 1 ] Bug #809950 - Review Request: gradle - Groovy based build system https://bugzilla.redhat.com/show_bug.cgi?id=809950 -------------------------------------------------------------------------------- ================================================================================ grfcodec-6.0.1-1.fc17 (FEDORA-2012-15433) A suite of programs to modify Transport Tycoon Deluxe's GRF files -------------------------------------------------------------------------------- Update Information: Update OpenTTD's OpenGFX stack -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 2 2012 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 6.0.1-1 - update to 6.0.1 - switch to xz tarball * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.0.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ help2man-1.40.12-1.fc17 (FEDORA-2012-15404) Create simple man pages from --help output -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.40.12-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ html-xml-utils-6.2-1.fc17 (FEDORA-2012-15398) A number of simple utilities for manipulating HTML and XML files -------------------------------------------------------------------------------- Update Information: -Update to bugfix release 6.2, see http://www.w3.org/Tools/HTML-XML-utils/ChangeLog for changes. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Miloš Jakubíček <xjakub@xxxxxxxxxx> - 6.2-1 - Update to 6.2 * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #863012 - html-xml-utils-6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=863012 -------------------------------------------------------------------------------- ================================================================================ ikiwiki-3.20120725-1.fc17 (FEDORA-2012-15438) A wiki compiler -------------------------------------------------------------------------------- Update Information: Update to the latest stable version, 3.20120725. From the upstream changelog: * recentchangesdiff: When diffurl is not set, provide inline diffs in the recentchanges page, with visibility toggleable via javascript. Thanks, Antoine Beaupré * Split CFLAGS into words when building wrapper. Closes: #682237 * osm: Avoid calling urlto before generated files are registered. Thanks, Philippe Gauthier and Antoine Beaupré * osm: Add osm_openlayers_url configuration setting. Thanks, Genevieve * osm: osm_layers can be used to configured the layers displayed on the map. Thanks, Antoine Beaupré * comments: Remove ipv6 address specific code. -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 29 2012 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20120725-1 - Update to 3.20120725. * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.20120629-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ kdelibs-4.9.2-5.fc17 (FEDORA-2012-15396) KDE Libraries -------------------------------------------------------------------------------- Update Information: Includes several bugfixes including: * Revert upstream commit starting applications in ~/Documents by default * fix/workaround multilib conflict -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 6:4.9.2-5 - multilib conflict /usr/share/doc/HTML/en/sonnet/index.cache.bz2 (#862388) * Thu Oct 4 2012 Than Ngo <than@xxxxxxxxxx> - 6:4.9.2-4 - revert kde#108510, kde#183534 * Tue Oct 2 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 6:4.9.2-3 - patch FindSamba.cmake to use pkg-config hints (#862169) -------------------------------------------------------------------------------- References: [ 1 ] Bug #841471 - Konsole (or Terminal) start in /Documents folder https://bugzilla.redhat.com/show_bug.cgi?id=841471 [ 2 ] Bug #862388 - kdelibs: multilib conflict /usr/share/doc/HTML/en/sonnet/index.cache.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=862388 -------------------------------------------------------------------------------- ================================================================================ kdepimlibs-4.9.2-2.fc17 (FEDORA-2012-15418) KDE PIM Libraries -------------------------------------------------------------------------------- Update Information: Fix/workaround multilib conflict -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.9.2-2 - fix/update HTML docbook multilib hack (#862388) -------------------------------------------------------------------------------- References: [ 1 ] Bug #862388 - kdelibs: multilib conflict /usr/share/doc/HTML/en/sonnet/index.cache.bz2 https://bugzilla.redhat.com/show_bug.cgi?id=862388 -------------------------------------------------------------------------------- ================================================================================ konsole-4.9.2-2.fc17 (FEDORA-2012-15400) KDE Terminal emulator -------------------------------------------------------------------------------- Update Information: Revert recent change that made konsole.desktop non-portable -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.9.2-2 - Failed to launch Konsole ... Failed to change $HOME and there is no such directory (#861504) -------------------------------------------------------------------------------- References: [ 1 ] Bug #861504 - Failed to launch Konsole ... Failed to change $HOME and there is no such directory https://bugzilla.redhat.com/show_bug.cgi?id=861504 -------------------------------------------------------------------------------- ================================================================================ kwebkitpart-1.3.0-1.fc17 (FEDORA-2012-15411) A KPart based on QtWebKit -------------------------------------------------------------------------------- Update Information: Update to v1.3.0 (tag) release, fix regression making kwebkitpart default (over khtmlpart) -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.3.0-1 - generate tarball from v1.3.0 tag - include a few post v1.3.0 patches - default web browsing KPart unexpectedly changed to WebKitPart (#862601) - BR: pkgconfig(QtWebKit) - .spec cosmetics -------------------------------------------------------------------------------- References: [ 1 ] Bug #862601 - Konqueror: default web browsing KPart unexpectedly changed to WebKitPart https://bugzilla.redhat.com/show_bug.cgi?id=862601 -------------------------------------------------------------------------------- ================================================================================ libstoragemgmt-0.0.13-1.fc17 (FEDORA-2012-15425) Storage array management library -------------------------------------------------------------------------------- Update Information: Update to version 0.0.13 Update to upstream version 0.0.12 -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Tony Asleson <tasleson@xxxxxxxxxx> - 0.0.13-1 - New upstream release * Tue Sep 18 2012 Tony Asleson <tasleson@xxxxxxxxxx> - 0.0.12-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ libyuv-0-0.14.20121001svn389.fc17 (FEDORA-2012-15424) YUV conversion and scaling functionality library -------------------------------------------------------------------------------- Update Information: * Next svn snapshot - ver. 389 -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0-0.14.20121001svn389 - Next svn snapshot - ver. 389 - Enable NEON on ARM (if detected) -------------------------------------------------------------------------------- ================================================================================ maliit-framework-0.92.5-2.fc17 (FEDORA-2012-15409) Input method framework -------------------------------------------------------------------------------- Update Information: Fix gtk2 module -------------------------------------------------------------------------------- ================================================================================ mate-session-manager-1.4.0-4.fc17 (FEDORA-2012-15416) MATE Desktop session manager -------------------------------------------------------------------------------- Update Information: mate desktop session manager -------------------------------------------------------------------------------- References: [ 1 ] Bug #860521 - Review Request: mate-session-manager - MATE Desktop session manager https://bugzilla.redhat.com/show_bug.cgi?id=860521 -------------------------------------------------------------------------------- ================================================================================ mate-themes-1.4.0-3.fc17 (FEDORA-2012-15417) MATE Desktop themes -------------------------------------------------------------------------------- Update Information: MATE Desktop themes -------------------------------------------------------------------------------- References: [ 1 ] Bug #860515 - Review Request: mate-themes - MATE Desktop themes https://bugzilla.redhat.com/show_bug.cgi?id=860515 -------------------------------------------------------------------------------- ================================================================================ nepomuk-core-4.9.2-5.fc17 (FEDORA-2012-15420) Nepomuk Core utilities and libraries -------------------------------------------------------------------------------- Update Information: This build includes fixes for a couple more possible crash conditions. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.9.2-5 - respin isEmpty_crash based on 32b44881 upstream commit (#858271) * Tue Oct 2 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.9.2-4 - respin isEmpty_crash patch to guard against NULL (#858271) * Tue Oct 2 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.9.2-3 - sysctl.d/nepomuk-inotify.conf: fs.inotify.max_user_watches=524288 (f18+) -------------------------------------------------------------------------------- References: [ 1 ] Bug #858271 - [abrt] nepomuk-core-4.9.1-1.fc17: isEmpty: Process /usr/bin/nepomukservicestub was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=858271 -------------------------------------------------------------------------------- ================================================================================ nikto-2.1.5-3.fc17 (FEDORA-2012-15415) Web server scanner -------------------------------------------------------------------------------- Update Information: fix libwhisker and databases director path -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Michal Ambroz <rebus AT seznam.cz> - 1:2.1.5-3 - add databases directory - omit initialization of SSL untill it is pushed to libwhiskers beware this can result in usage of Net::SSLeay and memory leaks -------------------------------------------------------------------------------- References: [ 1 ] Bug #862577 - Can not scan https / ssl in 2.1.5-2 https://bugzilla.redhat.com/show_bug.cgi?id=862577 -------------------------------------------------------------------------------- ================================================================================ openttd-opengfx-0.4.5-1.fc17 (FEDORA-2012-15433) OpenGFX replacement graphics for OpenTTD -------------------------------------------------------------------------------- Update Information: Update OpenTTD's OpenGFX stack -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 2 2012 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 0.4.5-1 - update to 0.4.5 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ oyranos-0.4.0-5.fc17 (FEDORA-2012-15399) The Oyranos Color Management System (CMS) -------------------------------------------------------------------------------- Update Information: Add missing BR Add missing Requires -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Nicolas Chauvet <kwizart@xxxxxxxxx> - 0.4.0-5 - Add missing BR * Tue Oct 2 2012 Nicolas Chauvet <kwizart@xxxxxxxxx> - 0.4.0-4 - Add Requires icc-profiles-basiccolor-printing2009 * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Wed May 2 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.4.0-2 - rebuild (exiv2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #862339 - lcms: Error #12288; cinepaint fatal error: sigsegv caught https://bugzilla.redhat.com/show_bug.cgi?id=862339 -------------------------------------------------------------------------------- ================================================================================ perl-HTML-Selector-XPath-0.15-1.fc17 (FEDORA-2012-15405) CSS Selector to XPath compiler -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.15-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-Hardware-Vhdl-Parser-0.12-13.fc17 (FEDORA-2012-15428) Complete grammar for parsing VHDL code using perl -------------------------------------------------------------------------------- Update Information: Removed make check. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Shakthi Kannan <shakthimaan [AT] fedoraproject dot org> - 0.12-13 - Removed make check * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.12-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jun 16 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.12-11 - Perl 5.16 rebuild -------------------------------------------------------------------------------- ================================================================================ perl-No-Worries-0.6-1.fc17 (FEDORA-2012-15422) Perl coding without worries -------------------------------------------------------------------------------- Update Information: updating to latest upstream version -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Massimo Paladin <massimo.paladin@xxxxxxxxx> 0.6-1 - Updating to latest upstream version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #862977 - Upgrade to new upstream version https://bugzilla.redhat.com/show_bug.cgi?id=862977 -------------------------------------------------------------------------------- ================================================================================ ql2400-firmware-5.08.00-1.fc17 (FEDORA-2012-15430) Firmware for qlogic 2400 devices -------------------------------------------------------------------------------- Update Information: Update to ql2400/ql2500 firmware 5.08.00. I have no idea what it does. Normally, I'd put something clever and witty here to explain the absence of useful changelog data, but eh. Whatever. I hope it is delicious. :P -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 5.08.00-1 - update to 5.08.00 * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.06.05-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ ql2500-firmware-5.08.00-1.fc17 (FEDORA-2012-15430) Firmware for qlogic 2500 devices -------------------------------------------------------------------------------- Update Information: Update to ql2400/ql2500 firmware 5.08.00. I have no idea what it does. Normally, I'd put something clever and witty here to explain the absence of useful changelog data, but eh. Whatever. I hope it is delicious. :P -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 3 2012 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 5.08.00-1 - update to 5.08.00 * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.06.05-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ ruby-1.9.3.194-17.fc17 (FEDORA-2012-15395) An interpreter of object-oriented scripting language -------------------------------------------------------------------------------- Update Information: Some security flaws were found on ruby currently shipped on Fedora 17 where malicious user can bypass safe mechanize by raising exception intentionally and make arbitrary strings tainted. This flaw were now registered as CVE-2012-4464 and CVE-2012-4466. This update rpm will fix this issue. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.9.3.194-17 - Patch from trunk for CVE-2012-4464, CVE-2012-4466 -------------------------------------------------------------------------------- References: [ 1 ] Bug #862907 - CVE-2012-4464 CVE-2012-4466 ruby: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=862907 -------------------------------------------------------------------------------- ================================================================================ rubygem-virt-p2v-0.8.8-4.fc17 (FEDORA-2012-15413) Send a machine's storage and metadata to virt-p2v-server -------------------------------------------------------------------------------- Update Information: Build of virt-p2v for ruby 1.9 This is the initial release of rubygem-virt-p2v which builds against ruby 1.9 New version of rubygem-virt-p2v compiles on ruby 1.9 -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Matthew Booth <mbooth@xxxxxxxxxx> - 0.8.8-4 - Fix directory locations * Wed Oct 3 2012 Matthew Booth <mbooth@xxxxxxxxxx> - 0.8.8-3 - Update ruby(abi) dependency to >= 1.9 * Wed Oct 3 2012 Matthew Booth <mbooth@xxxxxxxxxx> - 0.8.8-1 - New upstream release 0.8.8 * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.8.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ tmw-20110911-2.fc17 (FEDORA-2012-15402) The Mana World is a 2D MMORPG -------------------------------------------------------------------------------- Update Information: The Mana World (TMW for short) is an innovative, free and open source MMORPG. Besides the official game server, this client can connect to multiple community-grown servers, which provide varied environments and further challenge. In TMW, the players solve quests, fight monsters, practice skills and study magic. Social activities include parties, trading and limited PvP in designated areas. While there are no limits to solo play, collaborative behavior such as healing others, fighting together and banding up against tougher monsters are rewarded in the game. The Mana World graphics have been inspired by 2D pixel art at its prime of the late 1990s, when many RPG classics, such as Secret of Mana for the Super Nintendo Entertainment System, were released. -------------------------------------------------------------------------------- References: [ 1 ] Bug #860697 - Review Request: tmw - The Mana World is a 2D MMORPG https://bugzilla.redhat.com/show_bug.cgi?id=860697 -------------------------------------------------------------------------------- ================================================================================ tmw-music-0.3-5.fc17 (FEDORA-2012-15408) Music files for The Mana World -------------------------------------------------------------------------------- Update Information: This package contains the optional music files for The Mana World (TMW). -------------------------------------------------------------------------------- References: [ 1 ] Bug #860703 - Rename Request: tmw-music - Music files for The Mana World https://bugzilla.redhat.com/show_bug.cgi?id=860703 -------------------------------------------------------------------------------- ================================================================================ w_scan-20120605-1.fc17 (FEDORA-2012-15432) Tool for scanning DVB transponders -------------------------------------------------------------------------------- Update Information: Update to latest version with many bugfixes and enhancements See http://wirbel.htpc-forum.de/w_scan/index2.html (German) -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 4 2012 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 20120605-1 - bugfixes - Israel DVB-T support - updated all sattelite info - added support for 67 more sattelites * Sun Jul 22 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 20120112-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xkbset-0.5-2.fc17 (FEDORA-2012-15437) Tool to configure XKB extensions -------------------------------------------------------------------------------- Update Information: configure XKB extensions -------------------------------------------------------------------------------- References: [ 1 ] Bug #862368 - Review Request: xkbset - Tool to configure XKB extensions https://bugzilla.redhat.com/show_bug.cgi?id=862368 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test