The following Fedora 17 Security updates need testing: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1734/libupnp-1.6.18-1.fc17 16 https://admin.fedoraproject.org/updates/FEDORA-2013-1286/python-tw2-jquery-2.0.3-5.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1320/dnsmasq-2.65-4.fc17 34 https://admin.fedoraproject.org/updates/FEDORA-2013-0210/vdsm-4.10.0-13.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2143/rubygem-rdoc-3.12-5.fc17 34 https://admin.fedoraproject.org/updates/FEDORA-2013-0231/ca-certificates-2012.87-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2152/postgresql-9.1.8-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1466/freetype-2.4.8-4.fc17 30 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 30 https://admin.fedoraproject.org/updates/FEDORA-2012-19606/cups-1.5.4-18.fc17 59 https://admin.fedoraproject.org/updates/FEDORA-2012-20092/libproxy-0.4.11-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-1997/qt-4.8.4-11.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1836/perl-5.14.3-221.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1667/samba4-4.0.0-60alpha18.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1816/openstack-nova-2012.1.3-3.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1718/samba-3.6.12-1.fc17.1 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1710/rubygem-activesupport-3.0.11-8.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1661/httpd-2.2.23-1.fc17 217 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2002/xen-4.1.4-4.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2023/tor-0.2.3.25-1700 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1742/android-tools-20130123git98d0789-1.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1692/wordpress-3.5.1-1.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1804/coreutils-8.15-10.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1826/sssd-1.8.6-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2128/mingw-gnutls-2.12.20-1.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2124/abrt-2.1.1-1.fc17,libreport-2.1.1-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2024/xulrunner-18.0.2-1.fc17,firefox-18.0.2-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-1997/qt-4.8.4-11.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2028/nss-util-3.14.2-2.fc17,nss-3.14.2-2.fc17,nss-softokn-3.14.2-3.fc17,nspr-4.9.5-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2065/abrt-2.1.0-1.fc17,libreport-2.1.0-2.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-1965/kernel-3.7.6-102.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-1926/xorg-x11-drv-evdev-2.7.3-5.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-1946/fedora-logos-17.0.3-3.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-1931/util-linux-2.21.2-4.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2013-1881/phonon-backend-gstreamer-4.6.3-1.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1841/sane-backends-1.0.23-7.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1836/perl-5.14.3-221.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1865/xorg-x11-drv-synaptics-1.6.3-1.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1789/bash-4.2.39-3.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1791/ModemManager-0.6.0.0-3.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-1804/coreutils-8.15-10.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1712/mtdev-1.1.3-1.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2013-1580/audit-2.2.2-2.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1544/policycoreutils-2.1.13-27.2.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1540/logrotate-3.8.3-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1466/freetype-2.4.8-4.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1471/dosfstools-3.0.14-1.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1725/libnl3-3.2.21-1.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1320/dnsmasq-2.65-4.fc17 19 https://admin.fedoraproject.org/updates/FEDORA-2013-1140/xorg-x11-drv-intel-2.20.18-1.fc17 169 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 The following builds have been pushed to Fedora 17 updates-testing abrt-2.1.1-1.fc17 datanommer-commands-0.4.1-1.fc17 ffgtk-0.8.5-1.fc17 ghc-byteorder-1.0.3-2.fc17 gimp-normalmap-1.2.3-3.fc17 libchewing-0.3.4-2.fc17 libreport-2.1.1-1.fc17 mingw-gnutls-2.12.20-1.fc17 mingw-qt5-qtbase-5.0.1-2.fc17 minicom-2.5-10.fc17 nspr-4.9.5-1.fc17 nss-3.14.2-2.fc17 nss-softokn-3.14.2-3.fc17 nss-util-3.14.2-2.fc17 postgresql-9.1.8-1.fc17 python-datanommer-consumer-0.4.1-1.fc17 python-datanommer-models-0.4.1-1.fc17 python-django-longerusername-0.4-2.20130204gite4e85d7d.fc17 rubygem-qpid_messaging-0.20.0-2.fc17 rubygem-rdoc-3.12-5.fc17 squid-3.2.7-1.fc17 steadyflow-0.2.0-1.fc17 xscreensaver-5.21-1.fc17 Details about builds: ================================================================================ abrt-2.1.1-1.fc17 (FEDORA-2013-2124) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information: Fixes problems with bugzilla attachments and adds dependency on libreport-fedora for abrt-desktop. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.1-1 - add abrt-desktop depency on libreport-fedora - abrt-dump-{oops,xorg}: limit amount of created dirs, add cooldown sleep if exceeded - abrt-watch-log: handle a case when child doesn't process its input - abrt-watch-log: fix a bug in mmap error check - abrt-action-analyze-xorg: fix the case with DIR != "." - Resolves: #908256 * Mon Feb 4 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.0-1 - pkg-config: export defaultdumplocation variable - configure: set default dump location to /var/tmp/abrt - abrtd: sanitize mode and ovner of all elements - updated translation - abrtd-inotify-flood test: expend it to check for another inotify-related bug - gnome-abrt is default GUI - applet: on requrest open gnome-abrt instead of abrt-gui - Make it so that g_io_channel_read_chars(channel_inotify) does not buffer data. - multilib fixes - daemon: unify accessibility check before delete with dbus - dbus: move dir accessibility check from abrt to libreport - dbus: user dd_chown instead of own impl. - allow default dump directory to be configured through cmd line args - introduce abrt-python - reporter-bz: post a comment to dup bug, if we found a dup. version 2. - replace left over magic dd modes by macro - synchronize default dump dir mode with libreport - replace all occurrences of hardcoded dump location by a variable - harvest-vmcore: read dump dir path from configuration - use lchown when chowning files over dbus - use lchown when chowning newly created problem directory - verify-that-report-edits test: fix to account for new CLI interface - koops: add all x86 TRAP prefixes to list of suspicious strings - koops: put all suspicious strings to global variable - applet: extend comment. No code changes - applet: introduce shortened reporting - abrt-applet: handle SIGTERM and perform nice termination - abrt-applet: update the seen list on every possible action - applet: don't notify outdated new problems - Add and use "report-cli" event instead of removed "report-cli -r" option - fixed the relro flags rhbz#812284 - applet: unref unused GIOChannel - Resolves: #892230, #895742 * Thu Dec 20 2012 Jiri Moskovcak <jmoskovc@xxxxxxxxxx> 2.0.20-1 - New version 2.0.20 - Fix typo: usefull->useful - koops: generate core backtrace if missing - udpated po files - Cosmetic fixes in abrtd-inotify-flood test - Hook up abrtd-inotify-flood to test infrastructure - Add a testcase for inotify flood - replace 'Start Autoreport' btn by a popup dialog - dbus: NewProblem returns full path as problem_id - abrt-action-analyze-xorg: fix /usr/include/paths.h -> paths.h - abrtd: set inotify fd to non-blocking mode; ignore 0-sized inotify reads. Closes rhbz#873815 - s/ABRT dump/problem directory/g - abrt-applet: don't leak component name - abrt-applet: alerts only not reported problems - build system: Remove leftover of abrt-action-analyze-xorg shell script - Rewrite abrt-action-analyze-xorg in C (partially) - rework abrt-gui>Help>'Report problem with ABRT' - abrt-action-analyze-oops: fix help text - we have no -s option - Help text fix - using "problem directory" consistently - abrt-dump-oops: add list of tainted modules to NOT_REPORTABLE string. Closes trac#821 - a-a-p-c-a: use ask_yes_no_yesforever() fn from reportclient - abrt-dump-oops: save /proc/modules contents. Partially closes trac#821 - add ureporter wrapper sending ureport only once per problem dir - introduce Desktop Session Autoreporting - add Autoreporting configuration options - abrt-action-analyze-xorg: robustify 'test "a" = "b"' against bugs - Collect ~/.xsession_errors from its new path, if it is there. Closes trac#791 - reflect recent libreport API changes .trac#822 - Indentation fix. No code changes. - minor fix to previous commit realted to .trac#541 - don't use gtk_main* when using gtk_application .trac#890 - minor fix to quit button - Make "Open problem data" open the expert mode GUI - Teach kernel oops hash to ignore "<IRQ>" / "<EOI>" prefixes. Closes rhbz#875852 - introduce DeleteElement D-Bus method - introduce SetElement D-Bus method - allow only one instance of gui trac#541 - runtests/bugzilla-comment-format: fix false positive AGAIN - update translations - a-a-p-c-a: use correct name in gettext initialization - Fix build system so that make rpm works again - runtests/bugzilla-comment-format: fix false positive - Improve xorg post-create. closes trac#838 - Update po files - fix problem occurrence counter updating algorithm - abrt-dbus: immediately return an error if not-existing problem is requested - bugzilla-comment-format: new test - a-a-p-c-a: use event python API instead of abrt-handle-event - doc: add dbus problems service specification * Mon Nov 26 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.19-2 - update translations - Resolves: #879641 * Wed Nov 14 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.19-1 - call g_type_init() only in GLib version < 2.35 - plugins/*_event.conf: use reporter-bz -F FMTFILE as appropriate - repeat unchaged retrace status message only in verbose mode - check the correct return value of yesforever answer - abrt-handle-event: forward event process requests to parent - don't leak optional retrace path and kernel tainted string - enhance koops tainted flag parser - Use "comment" element instead of "description" - Resolves: #873488 -------------------------------------------------------------------------------- References: [ 1 ] Bug #908256 - abrt-desktop should require libreport-fedora https://bugzilla.redhat.com/show_bug.cgi?id=908256 [ 2 ] Bug #908762 - Attaches backtrace and other data encoded https://bugzilla.redhat.com/show_bug.cgi?id=908762 -------------------------------------------------------------------------------- ================================================================================ datanommer-commands-0.4.1-1.fc17 (FEDORA-2013-2134) Console commands for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - Latest upstream from Jessica Anderson. - Various enhancements and bugfixes. - New datanommer-latest command. - Tests now require python-mock. - New dep on fedmsg.meta Fedora Infrastructure plugin. -------------------------------------------------------------------------------- ================================================================================ ffgtk-0.8.5-1.fc17 (FEDORA-2013-2113) A solution for controlling Fritz!Box or compatible routers -------------------------------------------------------------------------------- Update Information: New upstream release Add FRITZ!OS 05.50 support -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Louis Lagendijk <louis.lagendijk@xxxxxxxxx> 0.8.5-1 - New upstream release - Add support for FRITZ!OS 05.50 * Wed Jan 16 2013 Milan Crha <mcrha@xxxxxxxxxx> - 0.8.4-3 - Rebuild for new evolution-data-server - Add patch to replace deprecated AM_CONFIG_HEADER with AC_CONFIG_HEADERS * Fri Dec 21 2012 Louis Lagendijk <louis.lagendijk@xxxxxxxxx> 0.8.4-2 Rebuild for new libemiscwidgets, libedataserverui libcamel -------------------------------------------------------------------------------- ================================================================================ ghc-byteorder-1.0.3-2.fc17 (FEDORA-2013-2150) Exposes the native endianness or byte ordering of the system -------------------------------------------------------------------------------- Update Information: Library exposes the native endianness or system byte-ordering. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894558 - Review Request : ghc-byteorder - Exposes the native endianness or byte ordering of the system https://bugzilla.redhat.com/show_bug.cgi?id=894558 -------------------------------------------------------------------------------- ================================================================================ gimp-normalmap-1.2.3-3.fc17 (FEDORA-2013-2147) Plugin that enabled the creation of normal maps -------------------------------------------------------------------------------- Update Information: Enable usage of optflags First packaging effort First packaging effort -------------------------------------------------------------------------------- References: [ 1 ] Bug #908099 - gimp-normalmap not built with $RPM_OPT_FLAGS nor $RPM_LD_FLAGS https://bugzilla.redhat.com/show_bug.cgi?id=908099 [ 2 ] Bug #906442 - Review Request: gimp-normalmap - Plugin that enabled the creation of normal maps https://bugzilla.redhat.com/show_bug.cgi?id=906442 -------------------------------------------------------------------------------- ================================================================================ libchewing-0.3.4-2.fc17 (FEDORA-2013-2154) Intelligent phonetic input method library for Traditional Chinese -------------------------------------------------------------------------------- Update Information: - Upstream update to 0.3.4 - Download is changed to Google Code. - /usr/share/chewing is removed, data files now located in /usr/lib(64)/libchewing - Info for libchewing is included - tsi.src patched -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ding-Yi Chen <dchen at redhat dot com> - 0.3.4-2 - Fix RPM build. * Fri Jan 11 2013 Ding-Yi Chen <dchen at redhat dot com> - 0.3.4-1 - Upstream update to 0.3.4 - Download is changed to Google Code. - /usr/share/chewing is removed, data files now located in /usr/lib(64)/libchewing - Info for libchewing is included. -------------------------------------------------------------------------------- ================================================================================ libreport-2.1.1-1.fc17 (FEDORA-2013-2124) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: Fixes problems with bugzilla attachments and adds dependency on libreport-fedora for abrt-desktop. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.1-1 - move 'reporter-mailx' from post-create event to notify(-dup) event - reporter-bugzilla: use base64 XMLRPC type for encoded data instead of string type - ureport: fix extra quoting when reporting error messages - Resolves: #908210 * Tue Feb 5 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.0-2 - configure libreport to be in conflict with abrt < 2.1.0 * Mon Feb 4 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.0-1 - dd: unify error handling in save_binary_file() - dd_sanitize: don't sanitize symlinks - rpm: preserve old configuration for <F17 and <REHL7 - configure: change defaults to be compliant with /var/tmp/abrt - configure: fix dump dir mode help string - dd: always sanitize mode of saved file - rhbz: replace obsolete methods by their substitutes - reporter-rhtsupport: improve error detection and logging - mailx: remove extra trailing newline in help text - spec: add requires section for pygobject3 - reporter-rhtsupport: retain " Beta" suffix in version. Closes rhbz#896090 - Fix bugs discoverent by Coverity - bz: swap 'bug id' arg with 'item name' arg in attach fn call - dd: move dir accessibility check from abrt to libreport - don't overwrite "type" rhbz#902828 - move chown functionality from ABRT DBus to libreport - expose configure cmd options for dump dir mode and ownership - cli: guard against user ^Z-ing editor and being stuck - report-cli: don't close tty fd too early - report-cli: switch terminal's fg process group to editor's one; and back - dd: open symlinks on request - minor fix to the pkg-config file - reporter-rhtsupport: extract error message from Strata-Message: header - add build time condition for dump dir ownership schema - reporter-bz: post a comment to dup bug, if we found a dup. version 2. - report-cli: use Client API - report-cli: add event name prefix before question - run_event: default callbacks for logging and errors - make default dump dir mode configurable at build time - Stop reading text files one byte at a time - make dd_delete_item check that dd is locked - never follow symlinks rhbz#887866 - Revert "reporter-bz: post a comment to dup bug, if we found a dup." - wizard: make radio-button text wrap - reporter-bz: post a comment to dup bug, if we found a dup. - added missing article - make the dependency on recordmydesktop soft - related to rhbz#891512 - cli: use !ec_skip_review as indicator that the event is a reporter - Add and use "report-cli" event instead of removed "report-cli -r" option - cli: remove superfluous problem_data_free() call - uReport: add more explanatory message when upload fails - report-cli rework - don't require recordmydesktop on RHEL rhbz#891512 - fixed the relro flags rhbz#812283 - bugzilla_format_kernel.conf: Attach dmesg element. Closes rhbz#826058 - bugzilla_format_kernel.conf: fix Debug information for package libreport - Make get_dirsize_find_largest_dir less talkative. - Minor fixes: robustify start_command(), fix style, fix English in msgs - Fix typo, remove c-format from a not c-formatted message - Resolves: #826058, #902828 * Tue Jan 1 2013 Jiri Moskovcak <jmoskovc@xxxxxxxxxx> 2.0.20-2 - don't require recordmydesktop on rhel * Wed Dec 19 2012 Jiri Moskovcak <jmoskovc@xxxxxxxxxx> 2.0.20-1 - New version 2.0.20 - updated po files - add abrt-screencast to POTFILES.in - added screen casting support to the wizard - fix memory leaks in workflow code - report_problem_in_dir(): make LIBREPORT_DEL_DIR work - add Yes/No dialog saving answer - refactor: move ask_yes_no_save_result from wizard to libreport-gtk - added anaconda workflows rhbz#885690 - report-python: export dd_delete_item too - report-python: export DD_OPEN_READONLY too - strtrimch: optimize it a bit - show only workflows applicable to actual problem directory - report-gtk: destroy global text cache only once - change rules for FILENAME_NOT_REPORTABLE to always include trailing period. - ask for BZ login/BZ pwd if Login attempt failed - ask for BZ login/BZ password if not provided by conf - remove new line from ask/ask_password responses - add ask_yes_no_yesforever() to Python client API - make client API independent on translation - run_event: use client functions for the communication callbacks - clean the workflow buttons when refreshing the event page - Fix a bug - inverted check for failed rename() call - wrap the not_reportable label .trac#908 - don't show events without configuration in preferences .trac#881 - - implemented saving/loading configuratio for workflows - related to trac#822 - reporter-bz: add AVC's description added to BZ comment - add microseconds to dump dir name (problem ID) - teach reporter-bugzilla to read BZ ID from reported_to element - teach reporter-bugzilla to add reporter to CC - introduce a function deleting dd's element - introduce a function getting no. of Bytes of dd's element - make event config name immutable - fixed segv in the last commit - made struct workflow private related to trac#822 - don't show the spinner if the problem is not reportable trac#852 - made the config_item_info structure private - added workflows trac#822 - added x,--expert cmdline option to enable expert mode - switch comment and event selector page - use get_ and set_ functions to access event_config_t - reporter-bz: don't return NULL on %non_existing_item% - use "" instead - refactoring the xml and conf loader code related to trac#822 - reporter-bugzilla: add a --debug option - reporter-bz: fix a summary line formatting bug - let logging_callback and post_run_callback members be None - expose make_run_event_state_forwarding() in Python API - reporter-bz: change syntax of bugzilla_format_*.conf to require "text::", not "text:" - reporter-bz: add support for line continuation and simple text in bugzilla_format*.conf * Mon Dec 3 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.19-3 - add a description of AVC to bugzilla comment 0 * Mon Nov 26 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.19-2 - fix bugzilla summary formatting - Resolves: #880228 * Wed Nov 14 2012 Jakub Filak <jfilak@xxxxxxxxxx> 2.0.19-1 - introduce a new formating feature for Bugzilla plugin - use gtk_show_uri() instead of own launcher - update kerneloops urls - don't force the minimal rating trac#854 - add support for forwarding of report client requests - fix i18n in event client communication protocol - add event name to the error message - can't get secret item - switch all load_conf_file() calls to use skipKeysWithoutValue=false - hide the spinner when the event processing is finishes trac#852 - add a method for loading of configuration of a single event - unlock secret collection only on meaningful demand - fix secret item look up for gnome-keyring -------------------------------------------------------------------------------- References: [ 1 ] Bug #908256 - abrt-desktop should require libreport-fedora https://bugzilla.redhat.com/show_bug.cgi?id=908256 [ 2 ] Bug #908762 - Attaches backtrace and other data encoded https://bugzilla.redhat.com/show_bug.cgi?id=908762 -------------------------------------------------------------------------------- ================================================================================ mingw-gnutls-2.12.20-1.fc17 (FEDORA-2013-2128) MinGW GnuTLS TLS/SSL encryption library -------------------------------------------------------------------------------- Update Information: * Update to 2.12.20. * Apply patches for CVE-2013-1619. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Michael Cronenworth <mike@xxxxxxxxxx> - 2.12.20-1 - Update to 2.12.20 - Apply patches for CVE-2013-1619 -------------------------------------------------------------------------------- References: [ 1 ] Bug #908238 - CVE-2013-1619 gnutls: TLS CBC padding timing attack https://bugzilla.redhat.com/show_bug.cgi?id=908238 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtbase-5.0.1-2.fc17 (FEDORA-2013-2153) Qt5 for Windows - QtBase component -------------------------------------------------------------------------------- Update Information: - Replaced the OpenSSL patch with a more proper one - Improve detection of the Qt5Bootstrap library (needed by mingw-qt5-qttools) - Workaround cross-compilation issue when using a non-x86 host (RHBZ #905863, QTBUG #29426) - Resolve build failure caused by QtDBus headers which use the reserved keyword 'interface' -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.0.1-2 - Replaced the OpenSSL patch with a more proper one - Improve detection of the Qt5Bootstrap library (needed by mingw-qt5-qttools) - Workaround cross-compilation issue when using a non-x86 host (RHBZ #905863, QTBUG #29426) - Resolve build failure caused by QtDBus headers which use the reserved keyword 'interface' * Thu Jan 31 2013 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.0.1-1 - Update to 5.0.1 - Removed the -fast configure argument (upstream dropped support for it) -------------------------------------------------------------------------------- ================================================================================ minicom-2.5-10.fc17 (FEDORA-2013-2144) A text-based modem control and terminal emulation program -------------------------------------------------------------------------------- Update Information: Disabling lock path configuration entry in the setup when building with LOCKDEV support (our case) to avoid confusions. The lockdev library doesn't support configurable lock paths. The lock path is hardcoded in the lockdev and that makes the lock path configuration entry in minicom redundant/unused. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Jaromir Capik <jcapik@xxxxxxxxxx> - 2.5-10 - Disable lock path config when built with lockdev (#754235) * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #754235 - Minicom ONLY writes lockfiles in /var/lock/lockdev/ https://bugzilla.redhat.com/show_bug.cgi?id=754235 -------------------------------------------------------------------------------- ================================================================================ nspr-4.9.5-1.fc17 (FEDORA-2013-2028) Netscape Portable Runtime -------------------------------------------------------------------------------- Update Information: Update nss family of packages to nss-3.14.2 and nspr-4.9.5. Highlights: * NSS will now make use of the Intel AES-NI and AVX instruction sets for hardware-accelerated AES-GCM on 64-bit Linux systems. * Initial man pages for some NSS command line tools have been added as part of the srpm. They are still under review, and contributions are welcome. The documentation is in docbook format and can be rendered as HTML and UNIX-style man pages using an optional build target. * For a full list of bugs fixed in nss-3.14.2 please see: https://bugzilla.mozilla.org/buglist.cgi?list_id=5502456;resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.14.2;product=NSS -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 4.9.5-1 - Update to NSPR_4_9_5_RTM -------------------------------------------------------------------------------- ================================================================================ nss-3.14.2-2.fc17 (FEDORA-2013-2028) Network Security Services -------------------------------------------------------------------------------- Update Information: Update nss family of packages to nss-3.14.2 and nspr-4.9.5. Highlights: * NSS will now make use of the Intel AES-NI and AVX instruction sets for hardware-accelerated AES-GCM on 64-bit Linux systems. * Initial man pages for some NSS command line tools have been added as part of the srpm. They are still under review, and contributions are welcome. The documentation is in docbook format and can be rendered as HTML and UNIX-style man pages using an optional build target. * For a full list of bugs fixed in nss-3.14.2 please see: https://bugzilla.mozilla.org/buglist.cgi?list_id=5502456;resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.14.2;product=NSS -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-2 - Allow building nss against older system sqlite * Fri Feb 1 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-1 - Update to NSS_3_14_2_RTM -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.14.2-3.fc17 (FEDORA-2013-2028) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Update nss family of packages to nss-3.14.2 and nspr-4.9.5. Highlights: * NSS will now make use of the Intel AES-NI and AVX instruction sets for hardware-accelerated AES-GCM on 64-bit Linux systems. * Initial man pages for some NSS command line tools have been added as part of the srpm. They are still under review, and contributions are welcome. The documentation is in docbook format and can be rendered as HTML and UNIX-style man pages using an optional build target. * For a full list of bugs fixed in nss-3.14.2 please see: https://bugzilla.mozilla.org/buglist.cgi?list_id=5502456;resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.14.2;product=NSS -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-3 - Allow building nss-softokn against older system sqlite - Add patch approved and applied upstream for nss-3.14.3 - Revert previous changes to the nss split softoken script - Use same source tar ball as the master branch * Sat Feb 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-2 - Update to NSS_3_14_2_RTM - Restore comments on how to transition when signing algorithm changes - Remove unused patches * Fri Feb 1 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-1 - Update to NSS_3_14_2_RTM - Use nss sqlite copy until this fedora branch is updated to sqlite-3.17.5 - Modify softokn split script to include sqlite in the softokn sources - Add temporary patch that adds sqlite to list of source directories to compile * Wed Jan 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.1-7 - Actually add the LD_LIBRARY_PATH line to the post-install scriptlet - Resolves: rhbz#891369 * Wed Jan 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.1-6 - Resolves: Bug 891369 - shared libraries not found due to signature verification failure - Fix failure signature verification failures on post-install scriplet - Add export LD_LIBRARY_PATH=$RPM_BUILD_ROOT//usr/lib64 before the signing commands - Ensure tool links with in-tree freebl so verification uses same algorithm as in signing * Thu Dec 27 2012 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.1-5 - Add RSA performance test for freebl - Fix bogus date in changelog warnings * Mon Dec 24 2012 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.1-4 - Fix bogus date warnings in %changelog -------------------------------------------------------------------------------- ================================================================================ nss-util-3.14.2-2.fc17 (FEDORA-2013-2028) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Update nss family of packages to nss-3.14.2 and nspr-4.9.5. Highlights: * NSS will now make use of the Intel AES-NI and AVX instruction sets for hardware-accelerated AES-GCM on 64-bit Linux systems. * Initial man pages for some NSS command line tools have been added as part of the srpm. They are still under review, and contributions are welcome. The documentation is in docbook format and can be rendered as HTML and UNIX-style man pages using an optional build target. * For a full list of bugs fixed in nss-3.14.2 please see: https://bugzilla.mozilla.org/buglist.cgi?list_id=5502456;resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.14.2;product=NSS -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-2 - Remove unused patch and update the util split script * Fri Feb 1 2013 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.2-1 - Update to NSS_3_14_2_RTM * Thu Dec 27 2012 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.14.1-2 - Install templates.c in /usr/includes/nss3/templates - Fix bogus date warnings -------------------------------------------------------------------------------- ================================================================================ postgresql-9.1.8-1.fc17 (FEDORA-2013-2152) PostgreSQL client programs -------------------------------------------------------------------------------- Update Information: - Update to new upstream releases, to fix CVE-2013-0255 and other issues described at http://www.postgresql.org/docs/9.2/static/release-9-2-3.html http://www.postgresql.org/docs/9.1/static/release-9-1-8.html - Make the package build with selinux option disabled - Include old version of pg_controldata in postgresql-upgrade subpackage -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Tom Lane <tgl@xxxxxxxxxx> 9.1.8-1 - Update to PostgreSQL 9.1.8, for various fixes described at http://www.postgresql.org/docs/9.1/static/release-9-1-8.html including the fix for CVE-2013-0255 Resolves: #908722 - Make the package build with selinux option disabled Resolves: #894367 - Include old version of pg_controldata in postgresql-upgrade subpackage Related: #896161 -------------------------------------------------------------------------------- References: [ 1 ] Bug #907892 - CVE-2013-0255 postgresql: (Heap-based) Array index error when retrieving textual error message representation for certain enum types https://bugzilla.redhat.com/show_bug.cgi?id=907892 -------------------------------------------------------------------------------- ================================================================================ python-datanommer-consumer-0.4.1-1.fc17 (FEDORA-2013-2120) Hub consumer plugin for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - Latest upstream from Jessica Anderson. - Removed dep on python-nose since tests are not run. -------------------------------------------------------------------------------- ================================================================================ python-datanommer-models-0.4.1-1.fc17 (FEDORA-2013-2139) SQLAlchemy models for datanommer -------------------------------------------------------------------------------- Update Information: Alembic upgrade scripts -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - Latest upstream contributed by Jessica Anderson. - Included alembic upgrade scripts in /usr/share/datanommer.models/ -------------------------------------------------------------------------------- ================================================================================ python-django-longerusername-0.4-2.20130204gite4e85d7d.fc17 (FEDORA-2013-2126) Make django auth.user username field longer -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #908049 - Review Request: python-django-longerusername - Make django auth.user username field longer https://bugzilla.redhat.com/show_bug.cgi?id=908049 -------------------------------------------------------------------------------- ================================================================================ rubygem-qpid_messaging-0.20.0-2.fc17 (FEDORA-2013-2158) Ruby bindings for the Qpid messaging framework -------------------------------------------------------------------------------- Update Information: bump qpid_version to 0.20 to match release -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.20.0-2 - bump qpid_version to 0.20 to match release -------------------------------------------------------------------------------- ================================================================================ rubygem-rdoc-3.12-5.fc17 (FEDORA-2013-2143) RDoc produces HTML and command-line documentation for Ruby projects -------------------------------------------------------------------------------- Update Information: Patch cross site scripting vulnerability CVE-2013-0256 (rhbz#908358). -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Josef Stribny <jstribny@xxxxxxxxxx> - 3.12-5 - Patch cross site scripting vulnerability CVE-2013-0256 (rhbz#908358). -------------------------------------------------------------------------------- References: [ 1 ] Bug #907820 - CVE-2013-0256 rubygem-rdoc (2.3.0 <= X <= 3.12): Cross-site scripting in the documentation created by Darkfish Rdoc HTML generator / template https://bugzilla.redhat.com/show_bug.cgi?id=907820 -------------------------------------------------------------------------------- ================================================================================ squid-3.2.7-1.fc17 (FEDORA-2013-2122) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: This update provides latest upstream version of Squid cache software. Run "squid -k parse" for audit your configuration files. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.2.7-1 - Update to latest upstream version 3.2.7 -------------------------------------------------------------------------------- ================================================================================ steadyflow-0.2.0-1.fc17 (FEDORA-2013-2159) Simple download manager for GNOME -------------------------------------------------------------------------------- Update Information: Steadyflow version 0.2.0. -------------------------------------------------------------------------------- References: [ 1 ] Bug #882619 - Review Request: steadyflow - Simple download manager for GNOME https://bugzilla.redhat.com/show_bug.cgi?id=882619 -------------------------------------------------------------------------------- ================================================================================ xscreensaver-5.21-1.fc17 (FEDORA-2013-2125) X screen saver and locker -------------------------------------------------------------------------------- Update Information: New version 5.21 is released. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.21-1 - Update to 5.21 * Mon Jan 21 2013 Adam Tkac <atkac redhat com> - 1:5.20-3.1 - rebuild due to "jpeg8-ABI" feature drop -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test