The following Fedora 16 Security updates need testing: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0114/gnupg-1.4.13-1.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0110/tcl-snack-2.2.10-17.fc16 22 https://admin.fedoraproject.org/updates/FEDORA-2012-20157/libproxy-0.4.11-1.fc16 22 https://admin.fedoraproject.org/updates/FEDORA-2012-20156/389-ds-base-1.2.10.24-1.fc16 22 https://admin.fedoraproject.org/updates/FEDORA-2012-20159/v8-3.13.7.5-1.fc16 103 https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33.fc16 14 https://admin.fedoraproject.org/updates/FEDORA-2012-20621/inkscape-0.48.4-1.fc16 14 https://admin.fedoraproject.org/updates/FEDORA-2012-20623/freeciv-2.3.3-1.fc16 5 https://admin.fedoraproject.org/updates/FEDORA-2012-21069/php-symfony2-HttpKernel-2.0.21-1.fc16 21 https://admin.fedoraproject.org/updates/FEDORA-2012-20236/rssh-2.3.4-1.fc16 29 https://admin.fedoraproject.org/updates/FEDORA-2012-19347/cups-1.5.4-10.fc16 181 https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4.14-1.fc16 101 https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-1600.fc16 64 https://admin.fedoraproject.org/updates/FEDORA-2012-17291/thunderbird-16.0.2-1.fc16 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0061/php-ZendFramework-1.12.1-1.fc16 29 https://admin.fedoraproject.org/updates/FEDORA-2012-19752/dovecot-2.0.21-4.fc16 3 https://admin.fedoraproject.org/updates/FEDORA-2012-21122/php-pear-CAS-1.3.2-1.fc16 12 https://admin.fedoraproject.org/updates/FEDORA-2012-20794/drupal6-6.27-1.fc16,drupal7-7.18-1.fc16 The following Fedora 16 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0114/gnupg-1.4.13-1.fc16 12 https://admin.fedoraproject.org/updates/FEDORA-2012-20787/iproute-2.6.39-8.fc16 12 https://admin.fedoraproject.org/updates/FEDORA-2012-20768/system-config-users-1.3.3-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2012-20795/nss-3.14.1-2.fc16,nss-softokn-3.14.1-3.fc16,nss-util-3.14.1-1.fc16,nspr-4.9.4-1.fc16 The following builds have been pushed to Fedora 16 updates-testing gnupg-1.4.13-1.fc16 php-simplepie-1.3.1-3.fc16 rubygem-inifile-2.0.2-2.fc16 rubygem-ipaddress-0.8.0-3.fc16 tcl-snack-2.2.10-17.fc16 Details about builds: ================================================================================ gnupg-1.4.13-1.fc16 (FEDORA-2013-0114) A GNU utility for secure communication and data storage -------------------------------------------------------------------------------- Update Information: New upstream with CVE fix. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 2 2013 Brian C. Lane <bcl@xxxxxxxxxx> 1.4.13-1 - New upstream v1.4.13 fixes for CVE-2012-6085 (#891142) -------------------------------------------------------------------------------- References: [ 1 ] Bug #891142 - CVE-2012-6085 GnuPG: read_block() corrupt key input validation https://bugzilla.redhat.com/show_bug.cgi?id=891142 -------------------------------------------------------------------------------- ================================================================================ php-simplepie-1.3.1-3.fc16 (FEDORA-2013-0103) Simple RSS Library in PHP -------------------------------------------------------------------------------- Update Information: fixing FTBFS on EPEL-5 and unification of .spec -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 2 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.3.1-3 - fix for php 5.3.3 (RHEL-6) - disable test suite on RHEL-5 - better fix for rpmlint warnings (version-control-internal-file and script-without-shebang) -------------------------------------------------------------------------------- ================================================================================ rubygem-inifile-2.0.2-2.fc16 (FEDORA-2013-0116) INI file reader and writer -------------------------------------------------------------------------------- Update Information: First package for Fedora. -------------------------------------------------------------------------------- ================================================================================ rubygem-ipaddress-0.8.0-3.fc16 (FEDORA-2013-0113) IPv4/IPv6 addresses manipulation library -------------------------------------------------------------------------------- Update Information: Rubygem abstraction for IPv4, IPv6 addresses -------------------------------------------------------------------------------- References: [ 1 ] Bug #823340 - Review Request: rubygem-ipaddress - rubygem abstraction for ipv4, ipv6 addresses https://bugzilla.redhat.com/show_bug.cgi?id=823340 -------------------------------------------------------------------------------- ================================================================================ tcl-snack-2.2.10-17.fc16 (FEDORA-2013-0110) Sound toolkit -------------------------------------------------------------------------------- Update Information: Apply fix for CVE-2012-6303, where a crafted WAV file could cause a buffer overflow. Thanks to Michael Karcher for the patch. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 2 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.2.10-17 - apply fix from Michael Karcher to fix CVE-2012-6303 (bz 885893) * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2.10-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jan 14 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2.10-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #885893 - CVE-2012-6303 tcl-snack: multiple buffer overflows https://bugzilla.redhat.com/show_bug.cgi?id=885893 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test