The following Fedora 18 Security updates need testing: Age URL 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18146/xen-4.2.0-4.fc18 37 https://admin.fedoraproject.org/updates/FEDORA-2012-15716/libxslt-1.1.27-2.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17513/system-config-users-1.3.1-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17907/cups-pk-helper-0.2.4-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18278/mod_security_crs-2.2.6-3.fc18,mod_security-2.7.1-3.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17949/ruby-1.9.3.327-22.fc18 34 https://admin.fedoraproject.org/updates/FEDORA-2012-15996/cobbler-2.4.0-beta2.fc18 34 https://admin.fedoraproject.org/updates/FEDORA-2012-15987/thunderbird-16.0.1-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18185/python-django-horizon-2012.2-4.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18280/cgit-0.9.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18264/bugzilla-4.2.4-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-17798/kde-settings-4.9-15.fc18.1 15 https://admin.fedoraproject.org/updates/FEDORA-2012-16646/viewvc-1.1.17-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18273/mantis-1.2.12-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17797/system-config-date-1.10.3-1.fc18,system-config-nfs-1.4.1-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17834/cumin-0.1.5522-4.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18263/xkeyboard-config-2.6-5.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18258/accerciser-3.6.2-1.fc18,anjuta-3.6.2-1.fc18,at-spi2-atk-2.6.2-1.fc18,at-spi2-core-2.6.2-1.fc18,baobab-3.6.2-2.fc18,brasero-3.6.1-1.fc18,cheese-3.6.2-1.fc18,control-center-3.6.3-1.fc18,dconf-0.14.1-3.fc18,devhelp-3.6.1-1.fc18,empathy-3.6.2-1.fc18,eog-3.6.2-1.fc18,evolution-3.6.2-2.fc18,evolution-data-server-3.6.2-1.fc18,evolution-ews-3.6.1-1.fc18,evolution-mapi-3.6.2-1.fc18,file-roller-3.6.2-1.fc18,gcalctool-6.6.2-1.fc18,gcr-3.6.2-1.fc18,gdk-pixbuf2-2.26.5-1.fc18,gdm-3.6.2-1.fc18,gedit-3.6.2-1.fc18,glib2-2.34.2-1.fc18,glibmm24-2.34.1-1.fc18,glib-networking-2.34.2-1.fc18,glom-1.22.1-1.fc18,gmime-2.6.12-1.fc18,gnome-contacts-3.6.2-1.fc18,gnome-desktop3-3.6.2-1.fc18,gnome-devel-docs-3.6.2-1.fc18,gnome-documents-3.6.2-1.fc18,gnome-font-viewer-3.6.1-1.fc18,gnome-icon-theme-3.6.2-1.fc18,gnome-icon-theme-extras-3.6.2-1.fc18,gnome-icon-theme-symbolic-3.6.2-1.fc18,gnome-keyring-3.6.2-1.fc18,gnome-menus-3.6.1-1.fc18,gnome-online-accounts-3.6.2-1.fc18,gnome-packagekit-3.6.1-1.fc18,gnome-panel-3.6.2-1.fc18,gnome-screenshot-3.6.1-1.fc18,gnome-session-3.6.2-2.fc18,gnome-settings-daemon-3.6.3-1.fc18,gnome-shell-3.6.2-2.fc18,gnome-system-log-3.6.1-1.fc18,gnome-themes-standard-3.6.2-1.fc18,gnome-user-docs-3.6.2-1.fc18,gnote-3.6.1-1.fc18,gobject-introspection-1.34.2-1.fc18,grilo-0.2.3-1.fc18,grilo-plugins-0.2.3-1.fc18,gsettings-desktop-schemas-3.6.1-1.fc18,gtk3-3.6.2-1.fc18,gtkhtml3-4.6.1-1.fc18,gucharmap-3.6.1-1.fc18,gvfs-1.14.2-1.fc18,libcroco-0.6.8-1.fc18,libgdl-3.6.2-1.fc18,libgee06-0.6.6.1-1.fc18,libgweather-3.6.2-1.fc18,libsoup-2.40.2-1.fc18,libwnck3-3.4.4-1.fc18,libxml++-2.36.0-1.fc18,mutter-3.6.2-1.fc18,nautilus-3.6.3-1.fc18,orca-3.6.3-1.fc18,pango-1.32.2-1.fc18,pangox-compat-0.0.2-1.fc18,pyatspi-2.6.0-1.fc18,pygobject3-3.4.2-2.fc18,seahorse-3.6.3-1.fc18,seahorse-sharing-3.6.1-1.fc18,sushi-3.6.1-1.fc18,tracker-0.14.4-1.fc18,vala-0.18.1-1.fc18,vinagre-3.6.2-1.fc18,vino-3.6.2-1.fc18,vte3-0.34.2-1.fc18,yelp-3.6.2-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18260/xorg-x11-server-utils-7.5-14.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18259/policycoreutils-2.1.13-33.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18192/harfbuzz-0.9.6-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18195/ibus-1.4.99.20121109-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18180/gzip-1.5-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18148/openbox-3.5.0-9.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18095/poppler-0.20.2-9.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18101/texinfo-4.13a-18.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18105/anaconda-18.29-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18112/ppp-2.4.5-25.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17954/libtasn1-2.14-1.fc18,gnutls-2.12.21-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2012-17931/python-slip-0.2.24-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17907/cups-pk-helper-0.2.4-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17892/iso-codes-3.40-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2012-17903/xorg-x11-drv-nouveau-1.0.4-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2012-17798/kde-settings-4.9-15.fc18.1 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17803/lcms-1.19-7.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17797/system-config-date-1.10.3-1.fc18,system-config-nfs-1.4.1-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17787/hwdata-0.241-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17824/libuser-0.58-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17825/libXtst-1.2.1-3.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2012-17832/empathy-3.6.1-4.fc18,gstreamer1-plugins-good-1.0.2-3.fc18,gnome-online-accounts-3.6.1-2.20121107git.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2012-17715/pyxdg-0.24-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2012-17727/libgusb-0.1.4-1.fc18,colorhug-client-0.1.13-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2012-17718/lorax-18.22-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2012-17735/gvfs-1.14.1-2.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2012-17638/nautilus-3.6.2-1.fc18 11 https://admin.fedoraproject.org/updates/FEDORA-2012-17589/pcmanfm-1.1.0-1.fc18,libfm-1.1.0-1.fc18 13 https://admin.fedoraproject.org/updates/FEDORA-2012-17524/fedora-bookmarks-15-0.4 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17513/system-config-users-1.3.1-1.fc18 The following builds have been pushed to Fedora 18 updates-testing caribou-0.4.4.2-5.fc18 cgit-0.9.1-1.fc18 createrepo_c-0.1.12-1.fc18 ctags-5.8-9.fc18 duff-0.5.2-4.fc18 eclipse-4.2.1-17.fc18 fio-2.0.10-2.fc18 freeipa-3.0.1-2.fc18 freeipmi-1.2.3-1.fc18 gimp-2.8.2-5.fc18 gnuradio-3.6.2-4.fc18 ibus-hangul-1.4.1-7.fc18 ibus-typing-booster-0.0.22-1.fc18 ledmon-0.74-3.fc18 mantis-1.2.12-1.fc18 maven-javadoc-plugin-2.9-1.fc18 mod_security-2.7.1-3.fc18 mod_security_crs-2.2.6-3.fc18 peervpn-0.029-1.fc18 perl-AnyEvent-7.04-1.fc18 perl-CGI-3.51-9.fc18 perl-IO-Tty-1.10-8.fc18 python-llfuse-0.37.1-10.fc18 qt-at-spi-0.3.1-3.fc18 realTimeConfigQuickScan-0-0.9.20120506hg.fc18 samba-4.0.0-168.fc18.rc5 yawn-0-0.12.20121115svn606.fc18 yumex-3.0.10-1.fc18 Details about builds: ================================================================================ caribou-0.4.4.2-5.fc18 (FEDORA-2012-18286) A simplified in-place on-screen keyboard -------------------------------------------------------------------------------- Update Information: This update actually applied patch1 over previous release New upstream release as well as some fixes -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Parag Nemade <pnemade AT redhat.com> - 0.4.4.2-5 - Apply patch1 * Tue Nov 13 2012 Parag Nemade <pnemade AT redhat.com> - 0.4.4.2-4 - Patch from Rui Matos for exec python in shell shim scripts * Tue Nov 13 2012 Parag Nemade <pnemade AT redhat.com> - 0.4.4.2-3 - Fix multilib patch * Tue Nov 13 2012 Rui Matos <tiagomatos@xxxxxxxxx> - 0.4.4.2-2 - Fix dependencies, caribou and antler both need python-caribou * Tue Nov 13 2012 Parag Nemade <pnemade AT redhat.com> - 0.4.4.2-1 - Update to 0.4.4.2 release -------------------------------------------------------------------------------- ================================================================================ cgit-0.9.1-1.fc18 (FEDORA-2012-18280) A fast web interface for git -------------------------------------------------------------------------------- Update Information: Update to new upsteam version with 2 security fixes, enhancements and misc other bug fixes. See http://git.zx2c4.com/cgit/commit/?id=a6a932e198e8b6b564d7a4bb43e78078d8296026 for details. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Kevin Fenzi <kevin@xxxxxxxxx> 0.9.1-1 - Update to 0.9.1 - Fixes bug #870714 - CVE-2012-4548 - Fixes bug #820733 - CVE-2012-4465 -------------------------------------------------------------------------------- References: [ 1 ] Bug #870714 - CVE-2012-4548 cgit: syntax-highlighting.sh command injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=870714 [ 2 ] Bug #820733 - avoid stack-smash when processing unusual commit [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=820733 -------------------------------------------------------------------------------- ================================================================================ createrepo_c-0.1.12-1.fc18 (FEDORA-2012-18272) Creates a common metadata repository -------------------------------------------------------------------------------- Update Information: Update to 0.1.12 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Tomas Mlcoch <tmlcoch at redhat.com> - 0.1.12-1 - Fix bug in sqlite filelists database - Fix memory leak -------------------------------------------------------------------------------- ================================================================================ ctags-5.8-9.fc18 (FEDORA-2012-18268) A C programming language indexing and/or cross-reference tool -------------------------------------------------------------------------------- Update Information: backport from upstream to fix the crash in css parser -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 5 2012 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 5.8-9 - fix license field again * Thu Oct 18 2012 Than Ngo <than@xxxxxxxxxx> - 5.8-8 - fix the crash in cssparse -------------------------------------------------------------------------------- References: [ 1 ] Bug #852101 - [abrt] ctags-5.8-7.fc17: parseCssLine: Process /usr/bin/ctags was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=852101 -------------------------------------------------------------------------------- ================================================================================ duff-0.5.2-4.fc18 (FEDORA-2012-18288) Quickly find duplicate files -------------------------------------------------------------------------------- Update Information: version 0.5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #857639 - Review Request: duff - Quickly find duplicate files https://bugzilla.redhat.com/show_bug.cgi?id=857639 -------------------------------------------------------------------------------- ================================================================================ eclipse-4.2.1-17.fc18 (FEDORA-2012-18283) An open, extensible IDE -------------------------------------------------------------------------------- Update Information: S390 support -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 12 2012 Krzysztof Daniel <kdaniel@xxxxxxxxxx> 1:4.2.1-17 - Don't package non-existing fragments on s390, s390x. - Add BR to GConf-2-devel -------------------------------------------------------------------------------- ================================================================================ fio-2.0.10-2.fc18 (FEDORA-2012-18277) Multithreaded IO generation tool -------------------------------------------------------------------------------- Update Information: Update to 2.0.10 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 2.0.10-2 - Merge latest from F16 to master, bump release * Fri Oct 12 2012 Eric Sandeen <sandeen@xxxxxxxxxx> 2.0.10-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ freeipa-3.0.1-2.fc18 (FEDORA-2012-18282) The Identity, Policy and Audit system -------------------------------------------------------------------------------- Update Information: - Add correct Requires for dogtag-pki-server-theme - Add Requires for tar (used by ipa-replica-prepare) Update to upstream 3.0.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 14 2012 Martin Kosek <mkosek@xxxxxxxxxx> - 3.0.1-2 - Add correct Requires for dogtag-pki-server-theme - Add Requires for tar (used by ipa-replica-prepare) * Tue Nov 13 2012 Rob Crittenden <rcritten@xxxxxxxxxx> - 3.0.1-1 - Rebase to upstream 3.0.1 - Set minimum Requires of pki-* to 10.0.0-0.52.b3 - Set minimum Requires of bind-dyndb-ldap to 2.3-2 - Add patch to provide explicit user name for Dogtag installation scripts -------------------------------------------------------------------------------- ================================================================================ freeipmi-1.2.3-1.fc18 (FEDORA-2012-18274) IPMI remote console and system management software -------------------------------------------------------------------------------- Update Information: New upstream release, Dell OEM features mostly. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Ales Ledvinka <aledvink@xxxxxxxxxx> - 1.2.3-1 - Updated to freeipmi-1.2.3: - In ipmi-oem, support new Dell Poweredge R720 OEM commands extensions, including: - get-nic-selection-failover - set-nic-selection-failover - power-monitoring-over-interval - power-monitoring-interval-range - get-last-post-code - In ipmi-oem, update active-lom-status for Dell Poweredge R720. - In ipmi-oem, support new Dell Poweredge R720 get-system-info option 'cmc-info'. - In ipmi-oem, Dell get-system-info "slot-number" key changed to "blade-slot-info". Legacy option still supported. - In ipmi-sel, support Dell Poweredge R720 OEM SEL extensions. - In all tools, support nochecksumcheck workaround option. - In all daemons (ipmiseld, ipmidetectd, bmc-watchdog), check for syscall errors during daemon setup. - In libfreeipmi, support Dell R720 OEM extension intepretations. - In libfreeipmi, libipmimonitoring, and libipmiconsole, support NO_CHECKSUM_CHECK workaround flag. - In libipmiconsole, IPMICONSOLE_DEBUG_FILE logs debug to files in current working directory and not /var/log. PID is also appended to debug files. * Fri Oct 12 2012 Ales Ledvinka <aledvink@xxxxxxxxxx> - 1.2.2-1 - Updated to freeipmi-1.2.2: - Support new --sol-payload-instance and --deactivate-all-instances options in ipmiconsole. - Fix ipmiseld compile issue with -Werror=format-security. -------------------------------------------------------------------------------- References: [ 1 ] Bug #876932 - freeipmi-1.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=876932 -------------------------------------------------------------------------------- ================================================================================ gimp-2.8.2-5.fc18 (FEDORA-2012-18174) GNU Image Manipulation Program -------------------------------------------------------------------------------- Update Information: This update contains fixes for these issues: - Using "Crop to selection" doesn't adapt selection to cropped image. - Large amounts of RAM trigger a bug which makes GIMP crash. - Saving/exporting from the context menu fails to make the file dialog transient to the main window and generates warnings. Additionally, it enables using the system monitor profile for color management by default. This only affects users which haven't run GIMP before and can be changed in Edit → Preferences → Color Management. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.8.2-5 - try using the system monitor profile for color management by default (patch by Richard Hughes) * Wed Nov 14 2012 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.8.2-4 - fix marking file dialogs as transient if opened from context menu (#835736) * Tue Nov 13 2012 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.8.2-3 - don't trip over too much installed memory, reenable all tests - realign selection after "Crop to Selection" (#873212, fix by Michael Natterer) * Sat Oct 20 2012 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.8.2-2 - run "make check", skip problematic tests - don't build help browser on EL -------------------------------------------------------------------------------- References: [ 1 ] Bug #873212 - Crop to Selection leaves artifacts https://bugzilla.redhat.com/show_bug.cgi?id=873212 [ 2 ] Bug #835736 - gimp-2.8.0-1.fc17.x86_64 gets (gimp:4154): Gtk-CRITICAL **: IA__gtk_window_set_transient_for: assertion `parent == NULL || GTK_IS_WINDOW (parent)' failed https://bugzilla.redhat.com/show_bug.cgi?id=835736 -------------------------------------------------------------------------------- ================================================================================ gnuradio-3.6.2-4.fc18 (FEDORA-2012-18275) Software defined radio framework -------------------------------------------------------------------------------- Update Information: This is an update that adds previously missed requirement on PyQwt, it is needed for QT GUI Range. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 3.6.2-4 - Added PyQwt requirement Resolves: rhbz#876830 * Wed Oct 31 2012 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 3.6.2-3 - Forced gr-core build -------------------------------------------------------------------------------- References: [ 1 ] Bug #876830 - "gnuradio" depends on "PyQwt" https://bugzilla.redhat.com/show_bug.cgi?id=876830 -------------------------------------------------------------------------------- ================================================================================ ibus-hangul-1.4.1-7.fc18 (FEDORA-2012-18281) The Hangul engine for IBus input platform -------------------------------------------------------------------------------- Update Information: apply the upstream patch to hide setup icon on the desktop -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Daiki Ueno <dueno@xxxxxxxxxx> - 1.4.1-7 - Re-add ibus-hangul-HEAD.patch based on recent upstream change - Apply ibus-hangul-add-hangul-hotkey.patch only for F-15 and F-16 -------------------------------------------------------------------------------- ================================================================================ ibus-typing-booster-0.0.22-1.fc18 (FEDORA-2012-18290) A typing booster engine for the IBus platform -------------------------------------------------------------------------------- Update Information: Move input method setting from the properties to the setup tool. Makes more sense and makes it usable in gnome-shell on f18 as well. Save the input method setting to dconf and load them again. Shorten symbol displayed in gnome panel Improve setup GUI to make correct dictionary installable Save setup option “Enable suggestions by Tab Key” correctly in dconf Make enabling the lookup table with the TAB key work correctly. Make sure the lookup table is hidden if there are no candidates to suggest 858980-.desktop file is added but i-t-b's pref will be enable only after , it has added support in g-c-c New Feature, suggestions can be turned on by Tab Key Fixed bugs #852993,#852994 New Feature, suggestions can be turned on by Tab Key Fixed bugs #852993,#852994 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 14 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.22-1 - Update to 0.0.22 upstream version - Resolves: #876666 Properties of ibus-typing-booster to select input methods are not shown by gnome-shell in f18 - Make the engine use the input method from the dconf setting - Add combobox to setup GUI to select input method - Update German translation * Mon Nov 12 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.21-1 - Update to 0.0.21 upstream version - Resolves: #875285 Shorten symbol displayed in gnome panel - Add space before ( in long display name * Thu Nov 8 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.20-1 - Update to 0.0.20 upstream version - Resolves: #874421 - Improve setup GUI to make correct dictionary installable (Resolves #874421) - Add page size spin button to setup tool - Connect signals in __init__ of SetupUI after setting the initial values - Make the setup tool find the right config file in gnome-shell on Fedora 18 - Update German translation * Tue Nov 6 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.19-1 - Update to 0.0.19 upstream version - fix rpmlint warning “incorrect-fsf-address” * Wed Oct 31 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.18-1 - Update to 0.0.18 upstream version - Resolves: #871056 - Save setup option “Enable suggestions by Tab Key” correctly in dconf (Resolves: #871056) - Make setup dialog translatable and add German translations * Wed Oct 24 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.16-1 - Update to 0.0.16 upstream version - Resolves: #869687 - Make enabling the lookup table with the TAB key work correctly - Simplify code in add_input() - Make German input typed in NFD work * Mon Oct 22 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.15-1 - Update to 0.0.15 upstream version - Resolves: #869050 - Make sure the lookup table is hidden if there are no candidates to suggest (#869050) * Mon Oct 22 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.14-1 - Update to 0.0.14 upstream version - Show an obvious warning when the hunspell dictionary needed is not found - Show exact matches in the .dic files as suggestions as well - Do not forget the input method used last when activating a previously used engine - Make spelling of the value of “symbol” in the .conf files more consistent - include the file ru_RU.conf * Thu Oct 18 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.13-1 - Update to 0.0.13 upstream version, in 0.0.12 I forgot to include the file de_DE.conf * Thu Oct 18 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.12-1 - Update to 0.0.12 upstream version, in 0.0.11 I forgot to include the file keysym2ucs.py * Thu Oct 18 2012 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.0.11-1 - Upstream has released 0.0.11 version containing the following improvements: - Add .conf files for many languages and improve some existing .conf files - Read other_ime option case insensitively - Split only at the first = in a line in a .conf file - Fix the problem that the user defined phrases are lost when switching engines - use “layout = default” instead of “layout = us” in all .conf files - Make sure the input of transliterate() is UTF-8 encoded - Add a keysym2unichr() function and use it to support languages which have non Latin1 input - Let first letter start with index 1 in autogenerated tabdict - Use autogenerated tabdict always, not only in m17n mode - Use special value 'NoIme' to indicate that no input method should be used - Use contents of lang_chars for the regexp to match words in the dictionaries - In process_key_event, do not return False when a non-ASCII character has been typed - Read option valid_input_chars as UTF-8 - Use the encoding option from the .conf file always, not only in m17n mode - Whether m17n mode is used should depend on the .conf file, not the language - Use correct encoding to decode the dictionary file - Some other minor fixes * Wed Sep 26 2012 Anish Patil <apatil@xxxxxxxxxx> - 0.0.10-1 - Upstream has released new version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #876666 - Properties of ibus-typing-booster to select input methods are not shown by gnome-shell in f18 https://bugzilla.redhat.com/show_bug.cgi?id=876666 [ 2 ] Bug #875285 - IME names too long in gnome-shell Input Sources indicator https://bugzilla.redhat.com/show_bug.cgi?id=875285 [ 3 ] Bug #874421 - Dictionary install feature does not work for all languages https://bugzilla.redhat.com/show_bug.cgi?id=874421 [ 4 ] Bug #871056 - The setup option “Enable suggestions by Tab Key” in ibus-typing-booster is never saved https://bugzilla.redhat.com/show_bug.cgi?id=871056 [ 5 ] Bug #869687 - The feature to enable the display of the suggestions only when typing TAB doesn’t work correctly https://bugzilla.redhat.com/show_bug.cgi?id=869687 [ 6 ] Bug #869050 - ibus-typing-booster shows a lookup table even if there are zero candidates to suggest https://bugzilla.redhat.com/show_bug.cgi?id=869050 [ 7 ] Bug #857280 - should have Obsoletes and Provides lines for older typing-boosters https://bugzilla.redhat.com/show_bug.cgi?id=857280 [ 8 ] Bug #858980 - ibus-typing-booster setup is not enabled in gnome-control-center region, .desktop file is missing https://bugzilla.redhat.com/show_bug.cgi?id=858980 [ 9 ] Bug #859438 - unable to see suggestions in candidate window https://bugzilla.redhat.com/show_bug.cgi?id=859438 [ 10 ] Bug #860113 - [ibus-typing-booster] please list hunspell en JM dictionary as GB (British English) https://bugzilla.redhat.com/show_bug.cgi?id=860113 [ 11 ] Bug #852993 - ibus-hunspell-table lacks config file for en_GB https://bugzilla.redhat.com/show_bug.cgi?id=852993 [ 12 ] Bug #852994 - [typo] only one 'n' in Danish https://bugzilla.redhat.com/show_bug.cgi?id=852994 -------------------------------------------------------------------------------- ================================================================================ ledmon-0.74-3.fc18 (FEDORA-2012-18289) Enclosure LED Utilities -------------------------------------------------------------------------------- Update Information: Minor bugfixes (coverity scan) -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Jan Synáček <jsynacek@xxxxxxxxxx> - 0.74-3 - Some coverity fixes -------------------------------------------------------------------------------- ================================================================================ mantis-1.2.12-1.fc18 (FEDORA-2012-18273) Web-based issue tracking system -------------------------------------------------------------------------------- Update Information: New upstream release, fixes several security bugs -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Gianluca Sforna <giallu@xxxxxxxxx> - 1.2.12-1 - New upstream release - Rebase patches - Fix CVE-2012-2691 (#830735) - Fix CVE-2012-2692 (#830737) - Fix CVE-2012-1118, CVE-2012-1119, CVE-2012-1120, CVE-2012-1121, CVE-2012-1122, CVE-2012-1123 (#800665) - Fix CVE-2012-5522 CVE-2012-5523 (#876371) -------------------------------------------------------------------------------- References: [ 1 ] Bug #830735 - CVE-2012-2691 mantis: Reporters able to edit arbitrary bugnotes via SOAP API https://bugzilla.redhat.com/show_bug.cgi?id=830735 [ 2 ] Bug #830737 - CVE-2012-2692 mantis: delete_attachments_threshold permission not checked when a user attempted to delete an attachment from an issue https://bugzilla.redhat.com/show_bug.cgi?id=830737 [ 3 ] Bug #800665 - CVE-2012-1118 CVE-2012-1119 CVE-2012-1120 CVE-2012-1121 CVE-2012-1122 CVE-2012-1123 mantis: multiple flaws fixed in 1.2.9 https://bugzilla.redhat.com/show_bug.cgi?id=800665 [ 4 ] Bug #876371 - CVE-2012-5522 CVE-2012-5523 mantis: multiple security flaws fixed in version 1.2.12 https://bugzilla.redhat.com/show_bug.cgi?id=876371 -------------------------------------------------------------------------------- ================================================================================ maven-javadoc-plugin-2.9-1.fc18 (FEDORA-2012-18284) Maven Javadoc Plugin -------------------------------------------------------------------------------- Update Information: Update to new upstream version with additional bugfixes and features -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 23 2012 Alexander Kurtakov <akurtako@xxxxxxxxxx> 2.9-1 - Update to latest upstream version. -------------------------------------------------------------------------------- ================================================================================ mod_security-2.7.1-3.fc18 (FEDORA-2012-18278) Security module for the Apache HTTP Server -------------------------------------------------------------------------------- Update Information: - Update to 2.7.1 - Update Core rules set to 2.2.6 - Fix build against libxml2 >= 2.9 (upstreamed) - Add some missing directives RHBZ #569360 - Fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) (RHBZ #867424, #867773, #867774) -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.7.1-3 - Add some missing directives RHBZ #569360 - Fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) (RHBZ #867424, #867773, #867774) * Thu Nov 15 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.7.1-2 - Fix mod_security.conf * Thu Nov 15 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.7.1-1 - Update to 2.7.1 - Remove libxml2 build patch (upstreamed) - Update spec since upstream moved to github * Thu Oct 18 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.7.0-2 - Add a patch to fix failed build against libxml2 >= 2.9.0 * Wed Oct 17 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.7.0-1 - Update to 2.7.0 * Fri Sep 28 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.6.8-1 - Update to 2.6.8 * Wed Sep 12 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.6.7-2 - Re-add mlogc sub-package for epel (#856525) -------------------------------------------------------------------------------- References: [ 1 ] Bug #867424 - CVE-2012-4528 mod_security: multipart/invalid part ruleset bypass https://bugzilla.redhat.com/show_bug.cgi?id=867424 -------------------------------------------------------------------------------- ================================================================================ mod_security_crs-2.2.6-3.fc18 (FEDORA-2012-18278) ModSecurity Rules -------------------------------------------------------------------------------- Update Information: - Update to 2.7.1 - Update Core rules set to 2.2.6 - Fix build against libxml2 >= 2.9 (upstreamed) - Add some missing directives RHBZ #569360 - Fix multipart/invalid part ruleset bypass issue (CVE-2012-4528) (RHBZ #867424, #867773, #867774) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 17 2012 Athmane Madjoudj <athmane@xxxxxxxxxxxxxxxxx> 2.2.6-3 - Remove the patch since we're requiring mod_security >= 2.7.0 - Require mod_security >= 2.7.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #867424 - CVE-2012-4528 mod_security: multipart/invalid part ruleset bypass https://bugzilla.redhat.com/show_bug.cgi?id=867424 -------------------------------------------------------------------------------- ================================================================================ peervpn-0.029-1.fc18 (FEDORA-2012-18291) A VPN software using full mesh network topology -------------------------------------------------------------------------------- Update Information: A VPN software using full mesh network topology. -------------------------------------------------------------------------------- References: [ 1 ] Bug #874184 - Review Request: peervpn - A VPN software using full mesh network topology https://bugzilla.redhat.com/show_bug.cgi?id=874184 -------------------------------------------------------------------------------- ================================================================================ perl-AnyEvent-7.04-1.fc18 (FEDORA-2012-18269) Framework for multiple event loops -------------------------------------------------------------------------------- Update Information: Current release from CPAN, with DNS name resolution improvements. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Paul Howarth <paul@xxxxxxxxxxxx> - 7.04-1 - Update to 7.04: - AnyEvent::Socket::inet_aton did not work when DNS resolution was used to find the addresses - Fix a memory leak in the /etc/hosts lookup code when hosts don't resolve and are not in hosts -------------------------------------------------------------------------------- ================================================================================ perl-CGI-3.51-9.fc18 (FEDORA-2012-18287) Handle Common Gateway Interface requests and responses -------------------------------------------------------------------------------- Update Information: Escape new-lines in Set-Cookie and P3P response header. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 3.51-9 - Escape new-lines in Set-Cookie and P3P response headers properly (bug #876974) -------------------------------------------------------------------------------- References: [ 1 ] Bug #876974 - CGI::header() does not escape new lines in cookie value https://bugzilla.redhat.com/show_bug.cgi?id=876974 -------------------------------------------------------------------------------- ================================================================================ perl-IO-Tty-1.10-8.fc18 (FEDORA-2012-18276) Perl interface to pseudo tty's -------------------------------------------------------------------------------- Update Information: This update ships IO::Tty with the correct license tag. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Petr Šabata <contyk@xxxxxxxxxx> - 1.10-8 - Fix the dependencies - Re-enable the test suite - Modernize the spec - Correct the license tag -------------------------------------------------------------------------------- ================================================================================ python-llfuse-0.37.1-10.fc18 (FEDORA-2012-18285) Python Bindings for the low-level FUSE API -------------------------------------------------------------------------------- Update Information: minor bugfix. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 1 2012 Marcel Wysocki <maci@xxxxxxxxxx> 0.37.1-10 - drop python-distribute requirement, it's provided by python-setuptools -------------------------------------------------------------------------------- ================================================================================ qt-at-spi-0.3.1-3.fc18 (FEDORA-2012-18279) Qt plugin that bridges Qt's accessibility API to AT-SPI2 -------------------------------------------------------------------------------- Update Information: Include sample qt-at-spi.sh shell fragment, so it's easier for users to opt-in and enable Qt Accessibility support. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.3.1-3 - include sample qt-at-spi.sh shell fragment -------------------------------------------------------------------------------- ================================================================================ realTimeConfigQuickScan-0-0.9.20120506hg.fc18 (FEDORA-2012-18270) Inspect realtime system settings -------------------------------------------------------------------------------- Update Information: RealTimeConfigQuickScan inspects a system for its realtime audio capability and suggests solutions to any problem it finds. Command line or TK GUI interfaces. -------------------------------------------------------------------------------- References: [ 1 ] Bug #865303 - Review Request: realTimeConfigQuickScan - inspect system settings for realtime performance https://bugzilla.redhat.com/show_bug.cgi?id=865303 -------------------------------------------------------------------------------- ================================================================================ samba-4.0.0-168.fc18.rc5 (FEDORA-2012-18271) Server and Client software to interoperate with Windows machines -------------------------------------------------------------------------------- Update Information: Update to Samba 4.0.0rc5. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 - Andreas Schneider <asn@xxxxxxxxxx> - 2:4.0.0-168.rc5 - Reduce dependencies of samba-devel and create samba-test-devel package. * Tue Nov 13 2012 - Andreas Schneider <asn@xxxxxxxxxx> - 2:4.0.0-167.rc5 - Use workaround for winbind default domain only when set. - Build with old ctdb support. * Tue Nov 13 2012 - Andreas Schneider <asn@xxxxxxxxxx> - 2:4.0.0-166.rc5 - Update to Samba 4.0.0rc5. -------------------------------------------------------------------------------- References: [ 1 ] Bug #876264 - Use work around for 'winbind use default domain' only if it is set https://bugzilla.redhat.com/show_bug.cgi?id=876264 -------------------------------------------------------------------------------- ================================================================================ yawn-0-0.12.20121115svn606.fc18 (FEDORA-2012-18292) Yet Another WBEM Navigator -------------------------------------------------------------------------------- Update Information: Update to new upstream version. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Michal Minar <miminar@xxxxxxxxxx> - 0-0.12.20121115svn605 - Update to latest upstream version * Tue Nov 6 2012 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 0-0.11.20121106svn600 - Update to latest upstream version - Fix tarball name -------------------------------------------------------------------------------- References: [ 1 ] Bug #859108 - yawn is showing output parameters in input parameters https://bugzilla.redhat.com/show_bug.cgi?id=859108 -------------------------------------------------------------------------------- ================================================================================ yumex-3.0.10-1.fc18 (FEDORA-2012-18293) Yum Extender graphical package management tool -------------------------------------------------------------------------------- Update Information: New upstream release. - Make it possible to set option default values from preferences. - Make yumex use the yumex icon from the current icon theme. - Better handling of progress bar and meta-data download messages for latest yum versions. - install a local .rpm there is an update to a current installed packages - updated translations -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Tim Lauridsen <timlau@xxxxxxxxxxxxxxxxx> 3.0.10-1 - bumped version to 3.0.10 * Fri Oct 12 2012 Tim Lauridsen <timlau@xxxxxxxxxxxxxxxxx> 3.0.9-2 - changed .desktop file install to use desktop-file-validate -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
