The following Fedora 16 Security updates need testing: Age URL 16 https://admin.fedoraproject.org/updates/FEDORA-2012-17376/seamonkey-2.13.2-1.fc16 56 https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33.fc16 30 https://admin.fedoraproject.org/updates/FEDORA-2012-16415/389-ds-base-1.2.10.16-1.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2012-17553/libproxy-0.4.10-1.fc16 135 https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4.14-1.fc16 54 https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-1600.fc16 35 https://admin.fedoraproject.org/updates/FEDORA-2012-16032/cobbler-2.4.0-beta2.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-18006/weechat-0.3.8-3.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2012-17746/libsocialweb-0.25.21-1.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18224/bugzilla-4.0.9-1.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18249/xen-4.1.3-4.fc16 17 https://admin.fedoraproject.org/updates/FEDORA-2012-17291/thunderbird-16.0.2-1.fc16 8 https://admin.fedoraproject.org/updates/FEDORA-2012-17854/cumin-0.1.5522-4.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18299/mantis-1.2.12-1.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18330/perl-CGI-3.51-6.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18300/insight-7.4.50-4.20120403cvs.fc16 The following Fedora 16 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18416/libass-0.10.1-2.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18401/gnupg2-2.0.19-4.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2012-18389/initscripts-9.34.4-1.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2012-18316/perl-IO-Tty-1.10-8.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2012-18217/nss-util-3.13.6-2.fc16,nss-softokn-3.13.6-2.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-17969/gnome-keyring-3.2.2-2.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2012-17746/libsocialweb-0.25.21-1.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2012-17755/NetworkManager-0.9.6.4-1.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2012-17766/coreutils-8.12-8.fc16 11 https://admin.fedoraproject.org/updates/FEDORA-2012-17660/gnutls-2.12.14-4.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2012-17572/libfm-1.1.0-1.fc16,pcmanfm-1.1.0-1.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2012-17553/libproxy-0.4.10-1.fc16 The following builds have been pushed to Fedora 16 updates-testing chmsee-1.99-0.20.15.gitf80d81d.fc16 drupal6-6.26-5.fc16 e16-1.0.11-1.fc16 fedora-review-0.3.1-3.fc16 gnupg2-2.0.19-4.fc16 gummi-0.6.5-1.fc16 initscripts-9.34.4-1.fc16 libass-0.10.1-2.fc16 mod_geoip-1.2.7-1.fc16 open-sendmail-0-0.1.20090107cvs.fc16 perl-CGI-3.51-6.fc16 perl-Plack-Middleware-Test-StashWarnings-0.07-1.fc16 spamassassin-3.3.2-14.fc16 vlgothic-fonts-20121109-1.fc16 zanata-python-client-1.3.12-1.fc16 Details about builds: ================================================================================ chmsee-1.99-0.20.15.gitf80d81d.fc16 (FEDORA-2012-18428) HTML Help viewer for Unix/Linux -------------------------------------------------------------------------------- Update Information: rebuild for xulrunner 17 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 14 2012 bbbush <bbbush.yuan@xxxxxxxxx> - 1.99-0.20.15.gitf80d81d - rebuild for xulrunner 17 -------------------------------------------------------------------------------- ================================================================================ drupal6-6.26-5.fc16 (FEDORA-2012-18407) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: JSON patch. -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Jon Ciesla <limburgher@xxxxxxxxx> - 6.26-5 - JSON patch. * Wed Oct 31 2012 Jon Ciesla <limburgher@xxxxxxxxx> - 6.26-4 - Fix conf. * Tue Oct 30 2012 Jon Ciesla <limburgher@xxxxxxxxx> - 6.26-3 - Fix for httpd 2.4, BZ 871392. * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.26-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ e16-1.0.11-1.fc16 (FEDORA-2012-18422) The Enlightenment window manager, DR16 -------------------------------------------------------------------------------- Update Information: Update to latest upstream release e16 1.0.11. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 15 2012 Terje Rosten <terje.rosten@xxxxxxx> - 1.0.11-1 - 1.0.11 * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.10-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ fedora-review-0.3.1-3.fc16 (FEDORA-2012-18398) Review tool for fedora rpm packages -------------------------------------------------------------------------------- Update Information: Backport from upstream's git fix to RHBZ#874246 (Patch0) Bugfix release including renewed support for EL6 and fix of global shell plugins -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 7 2012 Pierre-Yves Chibon <pingou@xxxxxxxxxxxx> - 0.3.1-3 - Backport from upstream's git fix to RHBZ#874246 (Patch0) -------------------------------------------------------------------------------- References: [ 1 ] Bug #874246 - review-env.sh: '}': not a valid identifier https://bugzilla.redhat.com/show_bug.cgi?id=874246 -------------------------------------------------------------------------------- ================================================================================ gnupg2-2.0.19-4.fc16 (FEDORA-2012-18401) Utility for secure communication and data storage -------------------------------------------------------------------------------- Update Information: Rebuild for <f18 (#877106) -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 2.0.19-5 - rebuild for <f18 (#877106) * Fri Jul 27 2012 Tomas Mraz <tmraz@xxxxxxxxxx> - 2.0.19-4 - fix negated condition (#843842) * Thu Jul 26 2012 Tomas Mraz <tmraz@xxxxxxxxxx> - 2.0.19-3 - add compat symlinks and provides if built on RHEL * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.19-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Apr 24 2012 Tomas Mraz <tmraz@xxxxxxxxxx> - 2.0.19-1 - new upstream release - set environment in protect-tool (#548528) - do not reject OCSP signing certs without keyUsage (#720174) * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.18-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #877106 - gnupg2 not build with full curl support (and does not support SOCKS) https://bugzilla.redhat.com/show_bug.cgi?id=877106 -------------------------------------------------------------------------------- ================================================================================ gummi-0.6.5-1.fc16 (FEDORA-2012-18393) A simple LaTeX editor -------------------------------------------------------------------------------- Update Information: * Thu Nov 15 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.6.1-1 - Updated to new upstream version 1.6.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.5-1 - Updated to new upstream version 0.6.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #858833 - [abrt] gummi-0.6.4-1.fc17: gdk_window_set_geometry_hints: Process /usr/bin/gummi was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=858833 [ 2 ] Bug #847540 - [abrt] gummi-0.6.3-1.fc17: editor_grab_buffer: Process /usr/bin/gummi was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=847540 -------------------------------------------------------------------------------- ================================================================================ initscripts-9.34.4-1.fc16 (FEDORA-2012-18389) The inittab file and the /etc/init.d scripts -------------------------------------------------------------------------------- Update Information: This update fixes a few initscripts bugs, including an incompatibility with the 3.6 kernel. See the referenced bugs for more details. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Bill Nottingham <notting@xxxxxxxxxx> - 9.34.4-1 - disable MALLOC_CHECK_ in debugmode, it's not thread-safe (#853175) - use iwconfig instead of sysfs to check for wireless devices for kernel 3.6 (#875328) -------------------------------------------------------------------------------- References: [ 1 ] Bug #853175 - debugmode: glibc mcheck does not work (with threads) https://bugzilla.redhat.com/show_bug.cgi?id=853175 [ 2 ] Bug #875328 - network service fails to detect and configure wireless devices after upgrade to kernel 3.6 https://bugzilla.redhat.com/show_bug.cgi?id=875328 -------------------------------------------------------------------------------- ================================================================================ libass-0.10.1-2.fc16 (FEDORA-2012-18416) Portable library for SSA/ASS subtitles rendering -------------------------------------------------------------------------------- Update Information: Improved compatibility with vs-filter. Various improvements and bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 17 2012 Martin Sourada <mso@xxxxxxxxxxxxxxxxx> - 0.10.1-2 - Fix a mistake in minimal required version of harfbuzz * Wed Oct 17 2012 Martin Sourada <mso@xxxxxxxxxxxxxxxxx> - 0.10.1-1 - New upstream release - various improvements and fixes - improved compatibility with vsfilter - Build with harfbuzz from F18 onward for advanced opentype shaping * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mod_geoip-1.2.7-1.fc16 (FEDORA-2012-18415) GeoIP module for the Apache HTTP Server -------------------------------------------------------------------------------- Update Information: Upgrade to 1.2.7: - Add support for GEOIP_NETSPEED_REV1 - Experimental support for GEOIP_COUNTRY_EDITION_V6 - Add GEOIP_DOMAIN_EDITION support -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 17 2012 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 1.2.7-1 - Upgrade to 1.2.7 - Updated spec file to match with Apache 2.4 policy (#809698) * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Mon Apr 16 2012 Joe Orton <jorton@xxxxxxxxxx> - 1.2.5-8 - fix config perms * Wed Apr 4 2012 Jan Kaluza <jkaluza@xxxxxxxxxx> - 1.2.5-7 - Fix compilation error with httpd-2.4 (#809698) * Fri Jan 13 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.5-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ open-sendmail-0-0.1.20090107cvs.fc16 (FEDORA-2012-18421) Additional m4 files used to generate sendmail.cf -------------------------------------------------------------------------------- Update Information: Open-Sendmail is the open development of additional m4 files used to generate and enhance sendmail.cf. The project contains sendmail goodies previously provided at anfi.homeunix.net and additional items. -------------------------------------------------------------------------------- References: [ 1 ] Bug #648305 - Review Request: open-sendmail - Additional m4 files used to generate sendmail.cf https://bugzilla.redhat.com/show_bug.cgi?id=648305 -------------------------------------------------------------------------------- ================================================================================ perl-CGI-3.51-6.fc16 (FEDORA-2012-18330) Handle Common Gateway Interface requests and responses -------------------------------------------------------------------------------- Update Information: Fix CVE-2012-5526 (escape new-lines in Set-Cookie and P3P HTTP response headers properly). -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 3.51-6 - Improper new-line escaping in Set-Cookie and P3P headers is known as CVE-2012-5526 (bug #876974) * Thu Nov 15 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 3.51-5 - Escape new-lines in Set-Cookie and P3P response headers properly (bug #876974) -------------------------------------------------------------------------------- References: [ 1 ] Bug #877015 - CVE-2012-5526 perl-CGI: Newline injection due to improper CRLF escaping in Set-Cookie and P3P headers https://bugzilla.redhat.com/show_bug.cgi?id=877015 -------------------------------------------------------------------------------- ================================================================================ perl-Plack-Middleware-Test-StashWarnings-0.07-1.fc16 (FEDORA-2012-18392) Test your application's warnings -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.07-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ spamassassin-3.3.2-14.fc16 (FEDORA-2012-18427) Spam filter for email which can be invoked from mail delivery agents -------------------------------------------------------------------------------- Update Information: Fixed incorrect path in the updates cron job. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Kevin Fenzi <kevin@xxxxxxxxx> 3.3.2-14 - Fix incorrect pgrep path. Fixes bug #875844 * Sat Aug 25 2012 Kevin Fenzi <kevin@xxxxxxxxx> 3.3.2-13 - Add systemd macros for presets. Fixes bug #850320 -------------------------------------------------------------------------------- References: [ 1 ] Bug #875844 - sa-update cron script uses wrong path for pgrep https://bugzilla.redhat.com/show_bug.cgi?id=875844 -------------------------------------------------------------------------------- ================================================================================ vlgothic-fonts-20121109-1.fc16 (FEDORA-2012-18411) Japanese TrueType font -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 16 2012 Akira TAGOH <tagoh@xxxxxxxxxx> - 20121109-1 - New upstream release. (#874981) -------------------------------------------------------------------------------- References: [ 1 ] Bug #874981 - vlgothic-fonts-20121109 is available https://bugzilla.redhat.com/show_bug.cgi?id=874981 -------------------------------------------------------------------------------- ================================================================================ zanata-python-client-1.3.12-1.fc16 (FEDORA-2012-18406) Python Client for Zanata Server -------------------------------------------------------------------------------- Update Information: - Fixed RHBZ Bug 876063 - Revised test files - Use PUT instead of POST/PUT when pushing source documents - Change Flies to Zanata in messages -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 15 2012 Sean Flanigan <sflaniga@xxxxxxxxxx> - 1.3.12-1 - Revised test files - Use PUT instead of POST/PUT when pushing source documents - Change Flies to Zanata in messages -------------------------------------------------------------------------------- References: [ 1 ] Bug #876063 - zanata-python-client should be able to push pot files in sub directories https://bugzilla.redhat.com/show_bug.cgi?id=876063 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
