The following Fedora 18 Security updates need testing: Age URL 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0437/proftpd-1.3.4b-4.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0125/drupal6-context-3.1-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0124/xorg-x11-apps-7.7-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0170/drupal7-context-3.0-0.3.beta6.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0145/asterisk-11.1.2-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0568/rubygem-actionpack-3.2.8-2.fc18,rubygem-activerecord-3.2.8-3.fc18,rubygem-activesupport-3.2.8-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0627/xen-4.2.1-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0589/thunderbird-17.0.2-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0182/kexec-tools-2.0.3-64.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0178/pl-6.0.2-5.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0185/rubygem-activerecord-3.2.8-2.fc18 64 https://admin.fedoraproject.org/updates/FEDORA-2012-17834/cumin-0.1.5522-4.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0600/moin-1.9.6-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0659/perl-5.16.2-237.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0306/ca-certificates-2012.87-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-0320/sleuthkit-4.0.1-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0063/php-ZendFramework-1.12.1-1.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0199/qt-4.8.4-6.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0655/systemd-197-1.fc18.1 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0630/gnome-settings-daemon-3.6.4-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0659/perl-5.16.2-237.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0610/shadow-utils-4.1.5.1-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0609/util-linux-2.22.2-2.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0589/thunderbird-17.0.2-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0559/bluez-4.101-6.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-0572/dhcp-4.2.5-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0531/parted-3.1-10.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0528/linux-firmware-20121218-0.1.gitbda53ca.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0541/mdadm-3.2.6-11.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0524/gnutls-2.12.22-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0543/empathy-3.6.3-1.fc18,gstreamer1-plugins-bad-free-1.0.5-1.fc18,gstreamer1-plugins-good-1.0.5-1.fc18,gstreamer1-plugins-base-1.0.5-1.fc18,gstreamer1-1.0.5-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0439/lzo-2.06-4.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0409/xorg-x11-drv-evdev-2.7.3-3.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0441/xorg-x11-drv-nouveau-1.0.6-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-0443/libdrm-2.4.40-2.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0384/python-urlgrabber-3.9.1-24.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0364/pcre-8.31-4.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0359/cogl-1.12.2-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0306/ca-certificates-2012.87-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0309/xorg-x11-drv-intel-2.20.17-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0196/grubby-8.22-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0165/qtwebkit-2.2.2-5.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0199/qt-4.8.4-6.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0149/python-bugzilla-0.7.0-3.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0162/bash-4.2.42-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0143/wayland-1.0.3-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0066/nautilus-3.6.3-4.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-0163/analitza-4.9.5-1.fc18,ark-4.9.5-1.fc18,audiocd-kio-4.9.5-1.fc18,blinken-4.9.5-1.fc18,cantor-4.9.5-1.fc18,dragon-4.9.5-1.fc18,filelight-4.9.5-1.fc18,gwenview-4.9.5-1.fc18,jovie-4.9.5-1.fc18,juk-4.9.5-1.fc18,kaccessible-4.9.5-1.fc18,kactivities-4.9.5-1.fc18,kalgebra-4.9.5-1.fc18,kalzium-4.9.5-1.fc18,kamera-4.9.5-1.fc18,kanagram-4.9.5-1.fc18,kate-4.9.5-1.fc18,kbruch-4.9.5-1.fc18,kcalc-4.9.5-1.fc18,kcharselect-4.9.5-1.fc18,kcolorchooser-4.9.5-1.fc18,kde-base-artwork-4.9.5-1.fc18,kde-baseapps-4.9.5-1.fc18,kde-l10n-4.9.5-1.fc18,kde-runtime-4.9.5-1.fc18,kde-wallpapers-4.9.5-1.fc18,kde-workspace-4.9.5-1.fc18,kdeaccessibility-4.9.5-1.fc18,kdeadmin-4.9.5-1.fc18,kdeartwork-4.9.5-1.fc18,kdebindings-4.9.5-1.fc18,kdeedu-4.9.5-1.fc18,kdegames-4.9.5-1.fc18,kdegraphics-4.9.5-1.fc18,kdegraphics-mobipocket-4.9.5-1.fc18,kdegraphics-strigi-analyzer-4.9.5-1.fc18,kdegraphics-thumbnailers-4.9.5-1.fc18,kdelibs-4.9.5-2.fc18,kdemultimedia-4.9.5-1.fc18,kdenetwork-4.9.5-1.fc18,kdepim-4.9.5-1.fc18,kdepim-runtime-4.9.5-1.fc18,kdepimlibs-4.9.5-1.fc18,kdeplasma-addons-4.9.5-1.fc18,kdesdk-4.9.5-1.fc18,kdetoys-4.9.5-1.fc18,kdeutils-4.9.5-1.fc18,kdf-4.9.5-1.fc18,kfloppy-4.9.5-1.fc18,kgamma-4.9.5-1.fc18,kgeography-4.9.5-1.fc18,kgpg-4.9.5-1.fc18,khangman-4.9.5-1.fc18,kig-4.9.5-1.fc18,kimono-4.9.5-1.fc18,kiten-4.9.5-1.fc18,klettres-4.9.5-1.fc18,kmag-4.9.5-1.fc18,kmix-4.9.5-1.fc18,kmousetool-4.9.5-1.fc18,kmouth-4.9.5-1.fc18,kmplot-4.9.5-1.fc18,kolourpaint-4.9.5-1.fc18,konsole-4.9.5-1.fc18,kremotecontrol-4.9.5-1.fc18,kross-interpreters-4.9.5-1.fc18,kruler-4.9.5-1.fc18,ksaneplugin-4.9.5-1.fc18,kscd-4.9.5-1.fc18,ksnapshot-4.9.5-1.fc18,kstars-4.9.5-1.fc18,ktimer-4.9.5-1.fc18,ktouch-4.9.5-1.fc18,kturtle-4.9.5-1.fc18,kwallet-4.9.5-1.fc18,kwordquiz-4.9.5-1.fc18,libkcddb-4.9.5-1.fc18,libkcompactdisc-4.9.5-1.fc18,libkdcraw-4.9.5-1.fc18,libkdeedu-4.9.5-1.fc18,libkexiv2-4.9.5-1.fc18,libkipi-4.9.5-1.fc18,libksane-4.9.5-1.fc18,marble-4.9.5-1.fc18,nepomuk-core-4.9.5-1.fc18,okular-4.9.5-1.fc18,oxygen-icon -theme-4.9.5-1.fc18,pairs-4.9.5-1.fc18,parley-4.9.5-1.fc18,pykde4-4.9.5-1.fc18,qyoto-4.9.5-1.fc18,rocs-4.9.5-1.fc18,ruby-korundum-4.9.5-1.fc18,ruby-qt-4.9.5-1.fc18,smokegen-4.9.5-1.fc18,smokekde-4.9.5-1.fc18,smokeqt-4.9.5-1.fc18,step-4.9.5-1.fc18,superkaramba-4.9.5-1.fc18,svgpart-4.9.5-1.fc18,sweeper-4.9.5-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0071/exempi-2.2.0-5.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0073/upower-0.9.19-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0077/xkeyboard-config-2.6-6.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0067/exo-0.10.2-1.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2012-21104/gnome-panel-3.6.2-2.fc18 60 https://admin.fedoraproject.org/updates/FEDORA-2012-17832/empathy-3.6.1-4.fc18,gstreamer1-plugins-good-1.0.2-3.fc18,gnome-online-accounts-3.6.1-2.20121107git.fc18 87 https://admin.fedoraproject.org/updates/FEDORA-2012-16207/thunderbird-lightning-1.8-1.fc18,thunderbird-16.0.1-2.fc18 89 https://admin.fedoraproject.org/updates/FEDORA-2012-16107/xorg-x11-drv-qxl-0.1.0-1.fc18 91 https://admin.fedoraproject.org/updates/FEDORA-2012-16010/gtkhtml3-4.6.0-1.fc18,evolution-mapi-3.6.0-1.fc18,evolution-ews-3.6.0-1.fc18,evolution-data-server-3.6.0-1.fc18,evolution-3.6.0-1.fc18 The following builds have been pushed to Fedora 18 updates-testing certmonger-0.65-1.fc18 duff-0.5.2-5.fc18 freeipmi-1.2.4-1.fc18 gnome-settings-daemon-3.6.4-1.fc18 gnu-free-fonts-20120503-4.fc18 gnuradio-3.6.3-0.2.rc0.fc18 libteam-0.1-25.20130110gitf16805c.fc18 lightdm-1.4.0-5.fc18 mate-control-center-1.5.2-2.fc18 mate-window-manager-1.5.2-11.fc18 perl-5.16.2-237.fc18 php-horde-Horde-Browser-2.0.3-1.fc18 php-horde-Horde-Cache-2.0.1-2.fc18 php-horde-Horde-Cli-2.0.2-1.fc18 php-horde-Horde-Date-2.0.2-1.fc18 php-horde-Horde-Exception-2.0.2-1.fc18 php-horde-Horde-Nls-2.0.2-1.fc18 php-horde-Horde-Util-2.0.3-1.fc18 php-pear-File-Fstab-2.0.3-1.fc18 pyhunspell-0.1-9.fc18 pylint-0.26.0-1.fc18 python-anyvc-0.3.7.1-2.fc18 python-logilab-astng-0.24.1-1.fc18 python-logilab-common-0.58.3-1.fc18 python-stevedore-0.8-1.fc18 python-tg-devtools-2.1.1-5.fc18 python-webob1.2-1.2.3-2.fc18 shadow-utils-4.1.5.1-2.fc18 surf-0.5-1.fc18 systemd-197-1.fc18.1 texstudio-2.5.2-1.fc18 util-linux-2.22.2-2.fc18 wordpress-3.5-3.fc18 xen-4.2.1-3.fc18 Details about builds: ================================================================================ certmonger-0.65-1.fc18 (FEDORA-2013-0709) Certificate status monitor and PKI enrollment client -------------------------------------------------------------------------------- Update Information: This update incorporates changes which force the certmonger daemon to only perform actions which might write to an NSS database one at a time, to avoid corrupting those databases. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 8 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.65-1 - fix a crash in the self-tests * Tue Jan 8 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.64-1 - at startup, if we resume the state machine for a given certificate to a state which expects to have the newly-added lock already acquired, acquire it before moving on with the certificate's work (still aimed at fixing #883484) * Wed Dec 19 2012 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.63-1 - serialize access to NSS databases and the running of pre- and post-save commands which might also access them (possibly fixing part of #883484) * Thu Nov 29 2012 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.62-1 - add a -u flag to getcert to enable requesting a keyUsage extension value - request subjectKeyIdentifier extensions from CAs, and include them in self-signed certificates - request basicConstraints from CAs, defaulting to requests for end-entity certificates - when requesting CA certificates, also request authorityKeyIdentifier - add support for requesting CRL distribution point and authorityInfoAccess extensions that specify OCSP responder locations - don't crash when OpenSSL can't build a template certificate from a request when we're in FIPS mode - put NSS in FIPS mode, when the system booted that way, except when we're trying to write certificates to a database - fix CSR generation and self-signing in FIPS mode with NSS - fix self-signing in FIPS mode with OpenSSL - new languages from the translation team: mai, ml, nn, ga * Tue Nov 27 2012 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.61-3 - backport change from git to not choke if X509_REQ_to_X509() fails when we're self-signing using OpenSSL - backport another change from git to represent this as a CA-rejected error -------------------------------------------------------------------------------- References: [ 1 ] Bug #893611 - Extend lock on NSS database to include post command scripts https://bugzilla.redhat.com/show_bug.cgi?id=893611 -------------------------------------------------------------------------------- ================================================================================ duff-0.5.2-5.fc18 (FEDORA-2013-0638) Quickly find duplicate files -------------------------------------------------------------------------------- Update Information: duff 0.5.2 - fix issues with dirs. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 25 2012 Eduardo Echeverria <echevemaster@xxxxxxxxx> - 0.5.2-5 - Added %{datadir}/duff to spec - Remove non-existent tests -------------------------------------------------------------------------------- References: [ 1 ] Bug #857639 - Review Request: duff - Quickly find duplicate files https://bugzilla.redhat.com/show_bug.cgi?id=857639 -------------------------------------------------------------------------------- ================================================================================ freeipmi-1.2.4-1.fc18 (FEDORA-2013-0716) IPMI remote console and system management software -------------------------------------------------------------------------------- Update Information: Support Supermicro X9DRI-LN4F+ OEM sensors and events. Various bugfixes. New upstream release, Dell OEM features mostly. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Ales Ledvinka <aledvink@xxxxxxxxxx> - 1.2.4-1 - Updated to freeipmi-1.2.4: - Support Supermicro X9DRI-LN4F+ OEM sensors and events. - Fix output corner case for "session-based" channels. - Fix ipmi-oem set-power-restore-delay corner case in time settings. - Fix ipmiseld memleak. - Fix libfreeipmi potential fd leak when generating random numbers. - Fix libfreeipmi error output bug in RMCP interface. - Fix several minor corner cases discovered by static code analysis. * Thu Nov 15 2012 Ales Ledvinka <aledvink@xxxxxxxxxx> - 1.2.3-1 - Updated to freeipmi-1.2.3: - In ipmi-oem, support new Dell Poweredge R720 OEM commands extensions, including: - get-nic-selection-failover - set-nic-selection-failover - power-monitoring-over-interval - power-monitoring-interval-range - get-last-post-code - In ipmi-oem, update active-lom-status for Dell Poweredge R720. - In ipmi-oem, support new Dell Poweredge R720 get-system-info option 'cmc-info'. - In ipmi-oem, Dell get-system-info "slot-number" key changed to "blade-slot-info". Legacy option still supported. - In ipmi-sel, support Dell Poweredge R720 OEM SEL extensions. - In all tools, support nochecksumcheck workaround option. - In all daemons (ipmiseld, ipmidetectd, bmc-watchdog), check for syscall errors during daemon setup. - In libfreeipmi, support Dell R720 OEM extension intepretations. - In libfreeipmi, libipmimonitoring, and libipmiconsole, support NO_CHECKSUM_CHECK workaround flag. - In libipmiconsole, IPMICONSOLE_DEBUG_FILE logs debug to files in current working directory and not /var/log. PID is also appended to debug files. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894261 - freeipmi-1.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=894261 [ 2 ] Bug #876932 - freeipmi-1.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=876932 -------------------------------------------------------------------------------- ================================================================================ gnome-settings-daemon-3.6.4-1.fc18 (FEDORA-2013-0630) The daemon sharing settings from GNOME to GTK+/KDE applications -------------------------------------------------------------------------------- Update Information: Update to upstream stable release 3.6.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Rui Matos <rmatos@xxxxxxxxxx> - 3.6.4-1 - Update to 3.6.4 - Rebase 0001-power-and-media-keys-Use-logind-for-suspending-and-r.patch -------------------------------------------------------------------------------- References: [ 1 ] Bug #893856 - the keyboard indicator shows non-deletable/duplicate xkb layout after ibus config migration https://bugzilla.redhat.com/show_bug.cgi?id=893856 -------------------------------------------------------------------------------- ================================================================================ gnu-free-fonts-20120503-4.fc18 (FEDORA-2013-0681) Free UCS Outline Fonts -------------------------------------------------------------------------------- Update Information: Fix for Indic rendering. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Jon Ciesla <limburgher@xxxxxxxxx> 20120503-4 - Fix Indic rendering, BZ 871252. -------------------------------------------------------------------------------- References: [ 1 ] Bug #871252 - installing GNU Free gives broken Indic rendering for Serif https://bugzilla.redhat.com/show_bug.cgi?id=871252 -------------------------------------------------------------------------------- ================================================================================ gnuradio-3.6.3-0.2.rc0.fc18 (FEDORA-2013-0717) Software defined radio framework -------------------------------------------------------------------------------- Update Information: This is an update that fixes unowned directories in /etc. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 3.6.3-0.2.rc0 - Fixed unowned directories Resolves: rhbz#894200 * Wed Jan 2 2013 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 3.6.3-0.1.rc0 - New version Resolves: rhbz#890393 - Fixed bogus date in changelog -------------------------------------------------------------------------------- References: [ 1 ] Bug #894200 - /etc/gnuradio is unowned https://bugzilla.redhat.com/show_bug.cgi?id=894200 -------------------------------------------------------------------------------- ================================================================================ libteam-0.1-25.20130110gitf16805c.fc18 (FEDORA-2013-0649) Library for controlling team network device -------------------------------------------------------------------------------- Update Information: rebase to git commit f16805c -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Jiri Pirko <jpirko@xxxxxxxxxx> - 0.1-25.20130110gitf16805c - Rebase to git commit f16805c -------------------------------------------------------------------------------- ================================================================================ lightdm-1.4.0-5.fc18 (FEDORA-2013-0658) Lightweight Display Manager -------------------------------------------------------------------------------- Update Information: Support native systemd-login1 suspend/shutdown (instead of ConsoleKit) -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.4.0-5 - polish systemd-login1 power support patch * Tue Jan 8 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.4.0-4 - omit upstart/init support from packaging (#892157) -------------------------------------------------------------------------------- References: [ 1 ] Bug #872797 - lightdm: provide polkit .rules for actions https://bugzilla.redhat.com/show_bug.cgi?id=872797 [ 2 ] Bug #892157 - lightdm upstart conf has incorrect path https://bugzilla.redhat.com/show_bug.cgi?id=892157 -------------------------------------------------------------------------------- ================================================================================ mate-control-center-1.5.2-2.fc18 (FEDORA-2013-0622) MATE Desktop control-center -------------------------------------------------------------------------------- Update Information: Various bugfixes for gsettings/window prefs. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Dan Mashal <dan.mashal@xxxxxxxxxxxxxxxxx> - 1.5.2-2 - Switch back to old BR scheme. - Drop unneeded BR's - Add upstream patch to fix tielbar actions -------------------------------------------------------------------------------- References: [ 1 ] Bug #889789 - Changing the Titlebar Action has no effect https://bugzilla.redhat.com/show_bug.cgi?id=889789 -------------------------------------------------------------------------------- ================================================================================ mate-window-manager-1.5.2-11.fc18 (FEDORA-2013-0668) MATE Desktop window manager -------------------------------------------------------------------------------- Update Information: Various bugfixes for gsettings/window prefs. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Dan Mashal <dan.mashal@xxxxxxxxxxxxxxxxx> - 1.5.2-11 - Convert back to old BR format - Drop unneeded BRs - Own directories that are supposed to be owned (marco-1) - Fix missing "X-Mate" category. - Add gsettings data convert file for users upgrading from 1.4 - Fix update of gsettings enum preferences -------------------------------------------------------------------------------- References: [ 1 ] Bug #889789 - Changing the Titlebar Action has no effect https://bugzilla.redhat.com/show_bug.cgi?id=889789 -------------------------------------------------------------------------------- ================================================================================ perl-5.16.2-237.fc18 (FEDORA-2013-0659) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information: Fix Locale::Maketext vulnerability allowing to cross-call functions from message catalogs (CVE-2012-6329). App::Cpan(3pm) manual page was included in two subpackages by mistake. This release keeps the file in perl-CPAN package only. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.16.2-237 - Fix CVE-2012-6329 (misparsing of maketext strings) (bug #884354) * Thu Jan 10 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.16.2-236 - Do not package App::Cpan(3pm) to perl-Test-Harness (bug #893768) -------------------------------------------------------------------------------- References: [ 1 ] Bug #884354 - CVE-2012-6329 perl: possible arbitrary code execution via Locale::Maketext https://bugzilla.redhat.com/show_bug.cgi?id=884354 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Browser-2.0.3-1.fc18 (FEDORA-2013-0692) Horde Browser API -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.0.3-1 - Update to 2.0.3 - fix files listed twice -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Cache-2.0.1-2.fc18 (FEDORA-2013-0692) Horde Caching API -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Cli-2.0.2-1.fc18 (FEDORA-2013-0692) Horde Command Line Interface API -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 2.0.2-1 - Update to 2.0.2 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Date-2.0.2-1.fc18 (FEDORA-2013-0692) Horde Date package -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 2.0.2-1 - Update to 2.0.2 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Exception-2.0.2-1.fc18 (FEDORA-2013-0692) Horde Exception Handler -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 2.0.2-1 - Update to 2.0.2 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Nls-2.0.2-1.fc18 (FEDORA-2013-0692) Native Language Support (NLS) -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 2.0.2-1 - Update to 2.0.2 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Util-2.0.3-1.fc18 (FEDORA-2013-0692) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information: Update to latest versions -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 2.0.3-1 - update to 2.0.3 -------------------------------------------------------------------------------- ================================================================================ php-pear-File-Fstab-2.0.3-1.fc18 (FEDORA-2013-0660) Read and write fstab files -------------------------------------------------------------------------------- Update Information: File_Fstab is an easy-to-use package which can read & write UNIX fstab files. It presents a pleasant object-oriented interface to the fstab. Features: * Supports blockdev, label, and UUID specification of mount device. * Extendable to parse non-standard fstab formats by defining a new Entry class for that format. * Easily examine and set mount options for an entry. * Stable, functional interface. * Fully documented with PHPDoc. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894100 - Review Request: php-pear-File-Fstab - Read and write fstab files https://bugzilla.redhat.com/show_bug.cgi?id=894100 -------------------------------------------------------------------------------- ================================================================================ pyhunspell-0.1-9.fc18 (FEDORA-2013-0639) Python bindings for hunspell -------------------------------------------------------------------------------- Update Information: Fix bugs found in pyhunspell-0.1-6.fc17 using gcc-with-cpychecker static analyzer -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Mike FABIAN <mfabian@xxxxxxxxxx> - 0.1-9 - Resolves: #800116 - Bugs found in pyhunspell-0.1-6.fc17 using gcc-with-cpychecker static analyzer * Wed Jan 9 2013 Till Maas <opensource@xxxxxxxxx> - 0.1-8 - python site_arch macro is not needed now, remove it - remove buildroot tag - Add comment/bz reference for patch - removal of buildroot in %install - remove %clean section - remove defattr(-,root,root,-) - Add PKG-INFO to %doc - BuildRequires should be python2-devel and not just python-devel -------------------------------------------------------------------------------- References: [ 1 ] Bug #800116 - Bugs found in pyhunspell-0.1-6.fc17 using gcc-with-cpychecker static analyzer https://bugzilla.redhat.com/show_bug.cgi?id=800116 -------------------------------------------------------------------------------- ================================================================================ pylint-0.26.0-1.fc18 (FEDORA-2013-0607) Analyzes Python code looking for bugs and signs of poor quality -------------------------------------------------------------------------------- Update Information: New upstream versions. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.26.0-1 - Upstream 0.26.0 - Add python3-pylint and python3-pylint-gui subpackages. Not ready to turn it on yet due to this upstream bug: http://www.logilab.org/ticket/110213 -------------------------------------------------------------------------------- ================================================================================ python-anyvc-0.3.7.1-2.fc18 (FEDORA-2013-0620) Python library to access different version control system -------------------------------------------------------------------------------- Update Information: * Fri Dec 14 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.7.1-2 - Remove egg-info - python-hgdistver is available now * Sat Nov 10 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.7.1-1 - BR updated for tests - Updated to new upstream version 0.3.7.1 * Fri Jun 08 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.7-1 - No docs for the moment because the template is unknown - Updated to new upstream version 0.3.7 * Mon Nov 08 2010 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.5-1 - Added test that is working - Added new BR - Updated to new upstream version 0.3.5 * Wed Apr 28 2010 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.1-1 - Commented check section out - Updated to new upstream version 0.3.1 * Wed Apr 28 2010 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.2.1-1 - Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #608512 - Review Request: python-anyvc - Python library to access different version control system https://bugzilla.redhat.com/show_bug.cgi?id=608512 -------------------------------------------------------------------------------- ================================================================================ python-logilab-astng-0.24.1-1.fc18 (FEDORA-2013-0607) Python Abstract Syntax Tree New Generation -------------------------------------------------------------------------------- Update Information: New upstream versions. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.24.1-1 - Upstream v0.24.1 - Add python3-logilab-astng subpackage to spec. Not ready to turn it on yet due to this upstream bug: http://www.logilab.org/ticket/110213 -------------------------------------------------------------------------------- ================================================================================ python-logilab-common-0.58.3-1.fc18 (FEDORA-2013-0607) Common libraries for Logilab projects -------------------------------------------------------------------------------- Update Information: New upstream versions. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.58.3-1 - Upstream 0.58.3 - Add python3-logilab-common subpackage to spec. Not ready to turn it on yet due to this upstream bug: http://www.logilab.org/ticket/110213 -------------------------------------------------------------------------------- ================================================================================ python-stevedore-0.8-1.fc18 (FEDORA-2013-0641) Manage dynamic plugins for Python applications -------------------------------------------------------------------------------- Update Information: - Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #886552 - Review Request: python-stevedore - Manage dynamic plugins for Python applications https://bugzilla.redhat.com/show_bug.cgi?id=886552 -------------------------------------------------------------------------------- ================================================================================ python-tg-devtools-2.1.1-5.fc18 (FEDORA-2013-0677) Development tools and templates for TurboGears2 -------------------------------------------------------------------------------- Update Information: Fixed a broken dependency on repoze.who in the quickstart, and got the test suite passing. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Luke Macken <lmacken@xxxxxxxxxx> - 2.1.1-5 - Patch out the hard requirement on repoze.who==1.0.19 - Require python-coverage to get the quickstart tests passing -------------------------------------------------------------------------------- References: [ 1 ] Bug #759142 - Requirement.parse('repoze.who==1.0.19') https://bugzilla.redhat.com/show_bug.cgi?id=759142 -------------------------------------------------------------------------------- ================================================================================ python-webob1.2-1.2.3-2.fc18 (FEDORA-2013-0621) WSGI request and response object -------------------------------------------------------------------------------- Update Information: - Update to WebOb-1.2.3 Fixed python3 subpackage. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Pádraig Brady <P@xxxxxxxxxxxxxx> - 1.2.3-2 - Update to WebOb-1.2.3 * Thu Nov 29 2012 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-9 - Trying pyver again with py2ver and py3ver. Getting ugly. * Thu Nov 29 2012 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-8 - Hardcode python3 version * Thu Nov 29 2012 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-7 - Forced rebuild. * Tue Oct 16 2012 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-6 - Use pyver macro to use the correct easy-install. * Tue Oct 16 2012 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-5 - Forced rebuild. -------------------------------------------------------------------------------- ================================================================================ shadow-utils-4.1.5.1-2.fc18 (FEDORA-2013-0610) Utilities for managing accounts and shadow password files -------------------------------------------------------------------------------- Update Information: Minor bug fix update. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Tomas Mraz <tmraz@xxxxxxxxxx> - 2:4.1.5.1-2 - /etc/default is owned by glibc-common now (#894194) -------------------------------------------------------------------------------- References: [ 1 ] Bug #894194 - /etc/default should not be owned by shadow-utils https://bugzilla.redhat.com/show_bug.cgi?id=894194 -------------------------------------------------------------------------------- ================================================================================ surf-0.5-1.fc18 (FEDORA-2013-0674) Simple web browser -------------------------------------------------------------------------------- Update Information: new upstream release, plus bugfixes for 894177 and 841348 on f18. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 François Cami <fcami@xxxxxxxxxxxxxxxxx> - 0.5-1 - New upstream release for surf - Fix bz 884296 841348 -------------------------------------------------------------------------------- References: [ 1 ] Bug #894177 - RFE: please update surf to 0.5 https://bugzilla.redhat.com/show_bug.cgi?id=894177 -------------------------------------------------------------------------------- ================================================================================ systemd-197-1.fc18.1 (FEDORA-2013-0655) A System and Service Manager -------------------------------------------------------------------------------- Update Information: This is a rebase of systemd to the current upstream release. There are many bugfixes and several enhancements. See "CHANGES WITH 196" and "CHANGES WITH 197" at: http://cgit.freedesktop.org/systemd/systemd/tree/NEWS?id=v197 (TBD: link this Bodhi update with fixed BZs) -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 12 2013 Michal Schmidt <mschmidt@xxxxxxxxxx> - 197-1.fc18.1 - Pick post-v197 fixes. * Fri Jan 11 2013 Michal Schmidt <mschmidt@xxxxxxxxxx> - 197-1 - Rebase to new upstream release. -------------------------------------------------------------------------------- ================================================================================ texstudio-2.5.2-1.fc18 (FEDORA-2013-0636) A feature-rich editor for LaTeX documents -------------------------------------------------------------------------------- Update Information: - update to latest upstream bug report - for more details: http://sourceforge.net/projects/texstudio/files/texstudio/TeXstudio%202.5.2/ -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Johannes Lips <hannes@xxxxxxxxxxxxxxxxx> 2.5.2-1 - update to recent upstream version -------------------------------------------------------------------------------- ================================================================================ util-linux-2.22.2-2.fc18 (FEDORA-2013-0609) A collection of basic system utilities -------------------------------------------------------------------------------- Update Information: upstream maintenance update -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 11 2013 Karel Zak <kzak@xxxxxxxxxx> 2.22.2-2 - fix #889888 - wipefs does not completely wipe btrfs volume * Fri Jan 11 2013 Karel Zak <kzak@xxxxxxxxxx> 2.22.2-1 - update tarball -------------------------------------------------------------------------------- References: [ 1 ] Bug #889888 - wipefs does not completely wipe btrfs volume https://bugzilla.redhat.com/show_bug.cgi?id=889888 -------------------------------------------------------------------------------- ================================================================================ wordpress-3.5-3.fc18 (FEDORA-2013-0720) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: Fix symlink to php-simplepie -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 2 2013 Remi Collet <rcollet@xxxxxxxxxx> - 3.5-3 - fix links to system PHPMailer library * Sun Dec 16 2012 Remi Collet <rcollet@xxxxxxxxxx> - 3.5-2 - fix use of system Simplepie - give access from local (httpd 2.4) -------------------------------------------------------------------------------- References: [ 1 ] Bug #891764 - php-simplepie 1.3.1 breaks wordpress https://bugzilla.redhat.com/show_bug.cgi?id=891764 -------------------------------------------------------------------------------- ================================================================================ xen-4.2.1-3.fc18 (FEDORA-2013-0627) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: Update to xen 4.2.1. VT-d interrupt remapping source validation flaw [XSA-33,CVE-2012-5634] -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 10 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.1-3 - fix some format errors in xl.cfg.pod.5 to allow build on F19 * Wed Jan 9 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.1-2 - VT-d interrupt remapping source validation flaw [XSA-33, CVE-2012-5634] (#893568) - pv guests can crash xen when xen built with debug=y (included for completeness - Fedora builds have debug=n) [XSA-37, CVE-2013-0154] * Tue Dec 18 2012 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.1-1 - update to xen-4.2.1 - remove patches that are included in 4.2.1 - rebase xen.fedora.efi.build.patch -------------------------------------------------------------------------------- References: [ 1 ] Bug #886959 - CVE-2012-5634 kernel: xen: VT-d interrupt remapping source validation flaw https://bugzilla.redhat.com/show_bug.cgi?id=886959 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
