The following Fedora 16 Security updates need testing: Age URL 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0723/thunderbird-17.0.2-1.fc16 38 https://admin.fedoraproject.org/updates/FEDORA-2012-20157/libproxy-0.4.11-1.fc16 118 https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0915/moodle-2.1.10-1.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0835/seamonkey-2.15-1.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0896/rubygem-rack-1.3.0-3.fc16 37 https://admin.fedoraproject.org/updates/FEDORA-2012-20236/rssh-2.3.4-1.fc16 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0934/qemu-0.15.1-9.fc16 196 https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4.14-1.fc16 116 https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-1600.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0640/moin-1.9.6-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0633/perl-5.14.3-205.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0477/gnupg-1.4.13-2.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2012-19347/cups-1.5.4-12.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0270/qt-4.8.4-6.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0885/firefox-18.0-1.fc16,xulrunner-18.0-6.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0686/rubygem-actionpack-3.0.10-10.fc16,rubygem-activerecord-3.0.10-5.fc16,rubygem-activesupport-3.0.10-5.fc16,rubygem-activemodel-3.0.10-2.fc16 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0761/xen-4.1.4-2.fc16 4 https://admin.fedoraproject.org/updates/FEDORA-2013-0752/nagios-3.4.4-1.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0894/ettercap-0.7.5-3.fc16.1.20120906gitc796e5 0 https://admin.fedoraproject.org/updates/FEDORA-2013-0935/samba4-4.0.0-39.alpha16.fc16 The following Fedora 16 Critical Path updates have yet to be approved: Age URL 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0633/perl-5.14.3-205.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0723/thunderbird-17.0.2-1.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0632/perl-5.14.3-204.fc16 2 https://admin.fedoraproject.org/updates/FEDORA-2013-0885/firefox-18.0-1.fc16,xulrunner-18.0-6.fc16 6 https://admin.fedoraproject.org/updates/FEDORA-2013-0651/kernel-3.6.11-4.fc16 9 https://admin.fedoraproject.org/updates/FEDORA-2013-0270/qt-4.8.4-6.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2013-0263/qtwebkit-2.2.2-5.fc16 13 https://admin.fedoraproject.org/updates/FEDORA-2013-0238/mysql-5.5.29-1.fc16 262 https://admin.fedoraproject.org/updates/FEDORA-2012-6994/upower-0.9.16-1.fc16 The following builds have been pushed to Fedora 16 updates-testing moodle-2.1.10-1.fc16 perl-Net-STOMP-Client-2.0-1.fc16 perl-No-Worries-0.8-1.fc16 qemu-0.15.1-9.fc16 samba4-4.0.0-39.alpha16.fc16 sugar-fototoon-13-2.fc16 youtube-dl-2013.01.13-1.fc16 Details about builds: ================================================================================ moodle-2.1.10-1.fc16 (FEDORA-2013-0915) A Course Management System -------------------------------------------------------------------------------- Update Information: Fix for CVE-2012-6087. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 15 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 2.1.10-1 - Latest upstream, patch for CVE-2012-6087. -------------------------------------------------------------------------------- References: [ 1 ] Bug #892701 - CVE-2012-6087 moodle (Amazon S3 module): Improper use of cURL API might lead to improper SSL certificate verification (MiTM) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=892701 [ 2 ] Bug #892702 - CVE-2012-6087 moodle (Amazon S3 module): Improper use of cURL API might lead to improper SSL certificate verification (MiTM) [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=892702 -------------------------------------------------------------------------------- ================================================================================ perl-Net-STOMP-Client-2.0-1.fc16 (FEDORA-2013-0904) STOMP object oriented client module -------------------------------------------------------------------------------- Update Information: Update to 2.0, rhbz #893464. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 15 2013 Massimo Paladin <massimo.paladin@xxxxxxxxx> - 2.0-1 - New upstream 2.0, rhbz#893464. -------------------------------------------------------------------------------- References: [ 1 ] Bug #893464 - Upgrade to new upstream version https://bugzilla.redhat.com/show_bug.cgi?id=893464 -------------------------------------------------------------------------------- ================================================================================ perl-No-Worries-0.8-1.fc16 (FEDORA-2013-0931) Perl coding without worries -------------------------------------------------------------------------------- Update Information: Update to 0.8, rhbz #895876. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 16 2013 Massimo Paladin <massimo.paladin@xxxxxxxxx> 0.8-1 - Updating to upstream 0.8 rhbz#895876. -------------------------------------------------------------------------------- References: [ 1 ] Bug #895876 - Upgrade to new upstream version https://bugzilla.redhat.com/show_bug.cgi?id=895876 -------------------------------------------------------------------------------- ================================================================================ qemu-0.15.1-9.fc16 (FEDORA-2013-0934) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * CVE-2012-6075: Buffer overflow in e1000 nic (bz #889301, bz #889304) -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 16 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 2:0.15.1-9 - CVE-2012-6075: Buffer overflow in e1000 nic (bz #889301, bz #889304) -------------------------------------------------------------------------------- References: [ 1 ] Bug #889301 - CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled https://bugzilla.redhat.com/show_bug.cgi?id=889301 -------------------------------------------------------------------------------- ================================================================================ samba4-4.0.0-39.alpha16.fc16 (FEDORA-2013-0935) The Samba4 CIFS and AD client and server suite -------------------------------------------------------------------------------- Update Information: Security update for CVE-2013-0172. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 16 2013 - Andreas Schneider <asn@xxxxxxxxxx> - 4.0.0-39.alpha16 - Fixes CVE-2013-0172. -------------------------------------------------------------------------------- References: [ 1 ] Bug #895631 - CVE-2013-0172 samba4: may provide authenticated users with write access to LDAP directory objects when used as an AD DC https://bugzilla.redhat.com/show_bug.cgi?id=895631 -------------------------------------------------------------------------------- ================================================================================ sugar-fototoon-13-2.fc16 (FEDORA-2013-0943) An activity used to create cartoons -------------------------------------------------------------------------------- Update Information: Init package -------------------------------------------------------------------------------- References: [ 1 ] Bug #892682 - Review Request: sugar-fototoon - A cartoon creating game for Sugar https://bugzilla.redhat.com/show_bug.cgi?id=892682 -------------------------------------------------------------------------------- ================================================================================ youtube-dl-2013.01.13-1.fc16 (FEDORA-2013-0974) Small command-line program to download videos from YouTube -------------------------------------------------------------------------------- Update Information: New upstream release with several bug fixes New upstream upgrade New upstream upgrade New upstream upgrade -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 15 2013 Till Maas <opensource@xxxxxxxxx> - 2013.01.13-1 - Update to new release * Sun Jan 6 2013 Matěj Cepl <mcepl@xxxxxxxxxx> - 2013.01.02-1 - Update to new release (fix #880270) * Tue Oct 23 2012 Till Maas <opensource@xxxxxxxxx> - 2012.10.09-1 - Update to new release - Update BR: add pandoc - install make target -------------------------------------------------------------------------------- References: [ 1 ] Bug #892618 - youtube-dl-2013.01.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=892618 [ 2 ] Bug #880270 - youtube-dl-2013.01.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=880270 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test