The following Fedora 17 Security updates need testing: Age URL 9 https://admin.fedoraproject.org/updates/FEDORA-2012-14953/dracut-018-105.git20120927.fc17 91 https://admin.fedoraproject.org/updates/FEDORA-2012-10391/bcfg2-1.2.3-1.fc17 63 https://admin.fedoraproject.org/updates/FEDORA-2012-11485/dokuwiki-0-0.12.20120125.b.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-15194/qt-4.8.2-7.fc17 33 https://admin.fedoraproject.org/updates/FEDORA-2012-13322/python-django-horizon-2012.1.1-2.fc17 14 https://admin.fedoraproject.org/updates/FEDORA-2012-14650/tor-0.2.2.39-1700.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2012-14717/openjpeg-1.4-14.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-15397/freeradius-2.2.0-0.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-15329/cxf-2.4.9-2.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-15395/ruby-1.9.3.194-17.fc17 18 https://admin.fedoraproject.org/updates/FEDORA-2012-14347/pcp-3.6.8-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15490/perl-HTML-Template-Pro-0.9509-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15496/mom-0.3.0-1.fc17 94 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15613/mingw-libpng-1.5.13-1.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15562/control-center-3.4.2-4.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15559/nss-util-3.13.6-1.fc17,nss-softokn-3.13.6-1.fc17,nss-3.13.6-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15499/gdb-7.4.50.20120120-52.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2012-15498/abrt-2.0.14-2.fc17,libreport-2.0.15-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15492/mdadm-3.2.5-10.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2012-15491/ntfs-3g-2012.1.15-4.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-15427/dbus-1.4.10-6.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2012-15396/kdelibs-4.9.2-5.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-15337/libqzeitgeist-0.8.0-8.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-15312/libarchive-3.0.4-2.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-15330/libzeitgeist-0.3.18-3.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2012-15266/xorg-x11-xinit-1.3.2-7.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2012-15194/qt-4.8.2-7.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2012-15107/nss-3.13.5-3.fc17 The following builds have been pushed to Fedora 17 updates-testing abrt-2.0.14-2.fc17 compton-0-0.1.20121007gitc7ca345.fc17 kradio4-4.0.6-1.fc17 libreport-2.0.15-1.fc17 libteam-0.1-17.20121007git6f48751.fc17 mate-panel-1.4.0-8.fc17 mingw-libpng-1.5.13-1.fc17 msmtp-1.4.27-2.fc17 openslide-3.3.0-1.fc17 rkhunter-1.4.0-5.fc17 routino-2.3.2-1.fc17 tesseract-3.01-1.fc17 xfce4-notifyd-0.2.2-6.fc17 Details about builds: ================================================================================ abrt-2.0.14-2.fc17 (FEDORA-2012-15498) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information: * adds more information from /proc to crashes * fixes typos * fixes crashes in report-gtk -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.14-2 - added forgotten Requires * Fri Oct 5 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.14-1 - abrt-dump-oops: save /sys/kernel/debug/suspend_stats. Closes rhbz#787749 - abrt-hook-ccpp: save /proc/sys/crypto/fips_enabled value if it isn't "0". Closes rhbz#747870 - abrt-dump-oops: save /proc/sys/crypto/fips_enabled value if it isn't "0". Closes rhbz#747870 - abrt-action-analyze-oops: fail if we end up hashing "" (empty string). Closes rhbz#862013 - retrace-client: respect chrooted os_release in pkgcheck - Added oops_recursive_locking1.right to Makefile.am - fix koops-parser.at, remove bastardized copy of oops_recursive_locking1.test - add new oops example (currently fails, the fix is coming up) - fix oops jiffies time stamp counter removal code - trivia: s/dump/problem directory; fix false positive in oops-with-jiffies.right - testsuite: added f18 kickstart - open files for appned not for write rhbz#854266 - added more info about locking - rewrote with vda's comments rhbz#859724 - ccpp_event.conf: ignore crashes with nonzero TracerPid. Closes rhbz#812350 - show more info when abrtd can't acquire lock on pid, related to rhbz#859724 - abrt-hook-ccpp: save "proc_pid_status" element - use FILENAME_ABRT_VERSION instead of string literal - Fix pyhook test to reflect changes made in write_dump - trac#333: Add code generating dso_list to the python hook - spec: tui should require libreport-cli rhbz#859770 - trac#682: emit Crash DBus signal on org.freedesktop.problems bus - spec: added deps on elfutils rhbz#859674 - Resolves: #859674, #859770, #859724, #812350, #854266, #862013, #747870, #787749 -------------------------------------------------------------------------------- References: [ 1 ] Bug #859674 - abrt ccpp plugin should require elfutils https://bugzilla.redhat.com/show_bug.cgi?id=859674 [ 2 ] Bug #859770 - abrt-tui should require libreport-cli https://bugzilla.redhat.com/show_bug.cgi?id=859770 [ 3 ] Bug #859724 - ABRT doesn't get launched on crashes https://bugzilla.redhat.com/show_bug.cgi?id=859724 [ 4 ] Bug #812350 - RFE: SIGTRAP bugs are probably not caused by the application itself https://bugzilla.redhat.com/show_bug.cgi?id=812350 [ 5 ] Bug #854266 - abrt should open its cache files for append, not write. https://bugzilla.redhat.com/show_bug.cgi?id=854266 [ 6 ] Bug #862013 - abrt's backtrace hashing is broken. https://bugzilla.redhat.com/show_bug.cgi?id=862013 [ 7 ] Bug #747870 - RFE: store information about FIPS mode https://bugzilla.redhat.com/show_bug.cgi?id=747870 [ 8 ] Bug #787749 - report suspend stats in kernel bugs https://bugzilla.redhat.com/show_bug.cgi?id=787749 [ 9 ] Bug #859422 - [abrt] libreport-gtk-2.0.13-2.fc17: gtk_text_line_segment_split: Process /usr/bin/report-gtk was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=859422 [ 10 ] Bug #861880 - Confusing warning message when reporting a problem https://bugzilla.redhat.com/show_bug.cgi?id=861880 [ 11 ] Bug #861679 - [abrt] libreport-gtk-2.0.13-2.fc17: nanosleep: Process /usr/bin/report-gtk was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=861679 [ 12 ] Bug #847816 - Typos in libreport messages and a comment https://bugzilla.redhat.com/show_bug.cgi?id=847816 -------------------------------------------------------------------------------- ================================================================================ compton-0-0.1.20121007gitc7ca345.fc17 (FEDORA-2012-15600) Compositor for X -------------------------------------------------------------------------------- Update Information: New Git snapshot, which gives a better user experience, especially with Fluxbox. Note: The "settrans" script has been renamed to "compton-trans". -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Mario Blättermann <mariobl@xxxxxxxxxxxxxxxxx> - 0.1.20121007gitc7ca345 - New Git snapshot - settrans has been renamed to compton-trans * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.2.20120603gitd52f7a0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ kradio4-4.0.6-1.fc17 (FEDORA-2012-15607) V4L/V4L2-Radio Application for KDE4 -------------------------------------------------------------------------------- Update Information: Updated to 4.0.6 -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Paulo Roma <roma@xxxxxxxxxxx> - 4.0.6-1 - Updated to 4.0.6. - Added BR boost-devel. -------------------------------------------------------------------------------- ================================================================================ libreport-2.0.15-1.fc17 (FEDORA-2012-15498) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: * adds more information from /proc to crashes * fixes typos * fixes crashes in report-gtk -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 5 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.15-1 - remove unnecessary flag from words highlighting functions - report-gtk: rework forbidden words highlighting - add xmalloc_fopen_fgetline_fclose helper for reading one-line files - update GUI before highlighting of forbidden words - clear warnings after switching to a next page - tweak conditions in show next forbidden word functions - reporter-ureport: respect chrooted os_release - Fix typos. - rhbz#861679: report-gtk: immediately release dump directory lock - add a few helpers for reading files as one malloced block -------------------------------------------------------------------------------- References: [ 1 ] Bug #859674 - abrt ccpp plugin should require elfutils https://bugzilla.redhat.com/show_bug.cgi?id=859674 [ 2 ] Bug #859770 - abrt-tui should require libreport-cli https://bugzilla.redhat.com/show_bug.cgi?id=859770 [ 3 ] Bug #859724 - ABRT doesn't get launched on crashes https://bugzilla.redhat.com/show_bug.cgi?id=859724 [ 4 ] Bug #812350 - RFE: SIGTRAP bugs are probably not caused by the application itself https://bugzilla.redhat.com/show_bug.cgi?id=812350 [ 5 ] Bug #854266 - abrt should open its cache files for append, not write. https://bugzilla.redhat.com/show_bug.cgi?id=854266 [ 6 ] Bug #862013 - abrt's backtrace hashing is broken. https://bugzilla.redhat.com/show_bug.cgi?id=862013 [ 7 ] Bug #747870 - RFE: store information about FIPS mode https://bugzilla.redhat.com/show_bug.cgi?id=747870 [ 8 ] Bug #787749 - report suspend stats in kernel bugs https://bugzilla.redhat.com/show_bug.cgi?id=787749 [ 9 ] Bug #859422 - [abrt] libreport-gtk-2.0.13-2.fc17: gtk_text_line_segment_split: Process /usr/bin/report-gtk was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=859422 [ 10 ] Bug #861880 - Confusing warning message when reporting a problem https://bugzilla.redhat.com/show_bug.cgi?id=861880 [ 11 ] Bug #861679 - [abrt] libreport-gtk-2.0.13-2.fc17: nanosleep: Process /usr/bin/report-gtk was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=861679 [ 12 ] Bug #847816 - Typos in libreport messages and a comment https://bugzilla.redhat.com/show_bug.cgi?id=847816 -------------------------------------------------------------------------------- ================================================================================ libteam-0.1-17.20121007git6f48751.fc17 (FEDORA-2012-15610) Library for controlling team network device -------------------------------------------------------------------------------- Update Information: rebase git commit 6f48751 -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-17.20121007git6f48751 - Rebase to git commit 6f48751 * Tue Sep 25 2012 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-16.20120925gitcc5cddc - Rebase to git commit cc5cddc -------------------------------------------------------------------------------- ================================================================================ mate-panel-1.4.0-8.fc17 (FEDORA-2012-15604) MATE Desktop panel applets -------------------------------------------------------------------------------- Update Information: mate panel bugfix mate desktop panel -------------------------------------------------------------------------------- References: [ 1 ] Bug #860518 - Review Request: mate-panel - MATE Desktop panel applets https://bugzilla.redhat.com/show_bug.cgi?id=860518 -------------------------------------------------------------------------------- ================================================================================ mingw-libpng-1.5.13-1.fc17 (FEDORA-2012-15613) MinGW Windows Libpng library -------------------------------------------------------------------------------- Update Information: This is an update to MinGW cross compiled libpng 1.5.13, including a fix to CVE-2011-3464. -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Kalev Lember <kalevlember@xxxxxxxxx> - 1.5.13-1 - Update to 1.5.13 (CVE-2011-3464) -------------------------------------------------------------------------------- References: [ 1 ] Bug #843179 - CVE-2011-3464 libpng: One-byte stack buffer overrun in png_formatted_warning https://bugzilla.redhat.com/show_bug.cgi?id=843179 -------------------------------------------------------------------------------- ================================================================================ msmtp-1.4.27-2.fc17 (FEDORA-2012-15612) SMTP client -------------------------------------------------------------------------------- Update Information: Backport fix for broken gnome-keyring support -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 7 2012 Ian Weller <iweller@xxxxxxxxxx> - 1.4.27-2 - BR: libgnome-keyring-devel (fixes RHBZ 838330) -------------------------------------------------------------------------------- References: [ 1 ] Bug #863740 - Gnome Keyring Support doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=863740 -------------------------------------------------------------------------------- ================================================================================ openslide-3.3.0-1.fc17 (FEDORA-2012-15601) C library for reading virtual slides -------------------------------------------------------------------------------- Update Information: Version 3.3.0 adds support for Leica SCN files and preliminary support for MIRAX 2.2, adds standard properties for microns-per-pixel and objective power, and improves the command-line tools. -------------------------------------------------------------------------------- ChangeLog: * Sat Sep 22 2012 Benjamin Gilbert <bgilbert@xxxxxxxxxxxx> - 3.3.0-1 - New upstream release + Support for Leica SCN format (requires libtiff 4) + Partial support for MIRAX 2.2 + Standard properties for microns-per-pixel and objective power + Improved reporting of open errors + Command-line tool improvements - Add versioned dependency on main package to subpackages * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.2.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #860706 - New version of openslide available https://bugzilla.redhat.com/show_bug.cgi?id=860706 -------------------------------------------------------------------------------- ================================================================================ rkhunter-1.4.0-5.fc17 (FEDORA-2012-15602) A host-based tool to scan for rootkits, backdoors and local exploits -------------------------------------------------------------------------------- Update Information: Misc bugfixes and tweaks to default config. -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 6 2012 Kevin Fenzi <kevin@xxxxxxxxx> 1.4.0-5 - Add /dev/md/autorebuild.pid to whitelist. Fixes bug #857315 * Sat Aug 18 2012 Kevin Fenzi <kevin@xxxxxxxxx> 1.4.0-4 - Add /var/log/pki-ca/system to whitelist for FreeIPA. Fixes bug #849251 * Wed Aug 15 2012 Kevin Fenzi <kevin@xxxxxxxxx> 1.4.0-3 - Fix /bin/ad false positive. Fixes bug #831989 * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #857315 - rkhunter complains about /dev/md/autorebuild.pid https://bugzilla.redhat.com/show_bug.cgi?id=857315 [ 2 ] Bug #849251 - FreeIPA, rkhunter & "unknown rootkit" https://bugzilla.redhat.com/show_bug.cgi?id=849251 [ 3 ] Bug #831989 - F17: false positives https://bugzilla.redhat.com/show_bug.cgi?id=831989 [ 4 ] Bug #784882 - warning about /dev/shm/spice.* https://bugzilla.redhat.com/show_bug.cgi?id=784882 [ 5 ] Bug #746020 - rpm --verify rkhunter reports issues https://bugzilla.redhat.com/show_bug.cgi?id=746020 -------------------------------------------------------------------------------- ================================================================================ routino-2.3.2-1.fc17 (FEDORA-2012-15609) Router for OpenStreetMap Data -------------------------------------------------------------------------------- Update Information: An update of Routino to the latest upstream bugfix release, version 2.3.2, fixing some routing bugs (barriers, oneway loops) and missing route instructions. Bug fixes: * Fix for highway type visualiser (was missing one-way segments). * Fix a real-life routing problem with oneway streets and super-segments. * Find a route even if an end waypoint forbids the specified transport. * Include the final junction in the HTML output (was missed in some cases). router: * Improve the error message for some cases of failing to route. planetsplitter: * Log an error if a foot/bicycle way doesn't allow foot/bicycle transport. * Do not mark nodes as super-nodes if they allow no transport types through. Configuration Files: * Change the default license/copyright notice in the translations.xml file. Note: This version is compatible with databases from versions 2.2 or 2.3/2.3.1. -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 7 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 2.3.2-1 - Update to 2.3.2 (#863789) -------------------------------------------------------------------------------- References: [ 1 ] Bug #863789 - routino-2.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=863789 -------------------------------------------------------------------------------- ================================================================================ tesseract-3.01-1.fc17 (FEDORA-2012-15611) Raw OCR Engine -------------------------------------------------------------------------------- Update Information: Update to v3.01 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 6 2012 Karol Trzcionka <karlik at fedoraproject.org> - 3.01-1 - Update to v3.01 - Add manual pages - Add BRs leptonica, automake * Tue Jul 31 2012 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 3.00-6 - Fix FTBFS with g++ 4.7 * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.00-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Feb 28 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.00-4 - Rebuilt for c++ ABI breakage * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.00-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xfce4-notifyd-0.2.2-6.fc17 (FEDORA-2012-15603) Simple notification daemon for Xfce -------------------------------------------------------------------------------- Update Information: This update fixes the annoying flickering that appeared when the cursor hovered over a notification. It also adds support for image URIs and makes the notification settings show up in the Xfce settings manager. -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 6 2012 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 0.2.2-6 - Remove obsolete libsexy checks - Add patch to avoid flickering - Add patch to support image URI locations - Make xfce4-notifyd-config show up in xfce4-settings-manager * Sun Jul 22 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sun Apr 1 2012 Kevin Fenzi <kevin@xxxxxxxxx> - 0.2.2-4 - Rebuild for new lbxfce4util -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
