The following Fedora 18 Security updates need testing: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1357/dnsmasq-2.65-4.fc18 17 https://admin.fedoraproject.org/updates/FEDORA-2013-1277/python-tw2-jquery-2.0.3-5.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-1930/openstack-glance-2012.2.3-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2123/postgresql-9.2.3-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2131/rubygem-rdoc-3.12-6.fc18 92 https://admin.fedoraproject.org/updates/FEDORA-2012-17834/cumin-0.1.5522-4.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2212/openssh-6.1p1-5.fc18 31 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2090/mediawiki119-1.19.3-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2041/qt-4.8.4-11.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2098/curl-7.27.0-6.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1654/samba-4.0.2-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2195/roundcubemail-0.8.5-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2103/tor-0.2.3.25-1800 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1765/libupnp-1.6.18-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2110/mingw-gnutls-2.12.22-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2168/openstack-keystone-2012.2.3-2.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2208/pulseaudio-2.1-6.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2212/openssh-6.1p1-5.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2174/libjpeg-turbo-1.2.90-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2199/iproute-3.6.0-6.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2213/gdb-7.5.1-36.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2178/yum-utils-1.1.31-9.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2133/gnome-terminal-3.6.1-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2161/gcr-3.6.2-3.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2151/perl-5.16.2-238.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2111/abrt-2.1.1-1.fc18,libreport-2.1.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-2138/libtalloc-2.0.8-1.fc18,libtdb-1.2.11-1.fc18,libldb-1.1.15-2.fc18,sssd-1.9.4-3.fc18,samba-4.0.3-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2055/gvfs-1.14.2-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2098/curl-7.27.0-6.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2041/qt-4.8.4-11.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2076/yum-3.4.3-49.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-1987/util-linux-2.22.2-4.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2080/xorg-x11-drv-nouveau-1.0.6-4.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2093/xorg-x11-drv-nouveau-1.0.6-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2064/dracut-024-25.git20130205.fc18,mdadm-3.2.6-14.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2102/libdrm-2.4.42-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2053/colord-0.1.29-1.fc18,colorhug-client-0.1.14-1.fc18,colord-gtk-0.1.24-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2109/abrt-2.1.0-1.fc18,libreport-2.1.0-2.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2101/selinux-policy-3.11.1-76.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-1911/libuser-0.58-2.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-1943/evolution-mapi-3.6.3-2.fc18,evolution-data-server-3.6.3-2.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-1936/exempi-2.2.0-6.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-1892/emacs-24.2-6.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-1893/phonon-backend-gstreamer-4.6.3-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1855/sane-backends-1.0.23-7.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1876/lorax-18.30-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1670/ModemManager-0.6.0.0-3.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1827/xkeyboard-config-2.6-7.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1690/libgphoto2-2.5.0-7.fc18 10 https://admin.fedoraproject.org/updates/FEDORA-2013-1636/libselinux-2.1.12-7.1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-1536/testdisk-6.13-5.fc18.1,ntfs-3g-2013.1.13-1.fc18.1 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1518/firstboot-18.7-1.fc18 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1543/binutils-2.23.51.0.1-6.fc18 13 https://admin.fedoraproject.org/updates/FEDORA-2013-1549/xorg-x11-server-1.13.1-5.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-0911/ibus-anthy-1.5.0-1.fc18,ibus-1.5.1-2.fc18 30 https://admin.fedoraproject.org/updates/FEDORA-2013-0541/mdadm-3.2.6-11.fc18 88 https://admin.fedoraproject.org/updates/FEDORA-2012-17832/empathy-3.6.1-4.fc18,gstreamer1-plugins-good-1.0.2-3.fc18,gnome-online-accounts-3.6.1-2.20121107git.fc18 115 https://admin.fedoraproject.org/updates/FEDORA-2012-16207/thunderbird-lightning-1.8-1.fc18,thunderbird-16.0.1-2.fc18 117 https://admin.fedoraproject.org/updates/FEDORA-2012-16107/xorg-x11-drv-qxl-0.1.0-1.fc18 The following builds have been pushed to Fedora 18 updates-testing abi-compliance-checker-1.98.8-1.fc18 fedora-review-0.4.0-3.fc18 fflas-ffpack-1.6.0-3.fc18 gambas3-3.4.0-1.fc18 gcab-0.4-1.fc18 gdb-7.5.1-36.fc18 givaro-3.7.2-1.fc18 gnome-shell-extension-pidgin-0-0.9.git87fc23433d.fc18 gogoc-1.2-23.fc18 iproute-3.6.0-6.fc18 jcifs-1.3.17-7.fc18 jtidy-1.0-0.13.20100930svn1125.fc18 lcgdm-dav-0.12.1-1.fc18 libjpeg-turbo-1.2.90-1.fc18 linbox-1.3.2-9.fc18 m4rie-20120613-3.fc18 mysql-utilities-1.2.0-1.fc18 nautilus-3.6.3-5.fc18 ncl-6.1.2-1.fc18 openssh-6.1p1-5.fc18 openstack-keystone-2012.2.3-2.fc18 ovirt-engine-cli-3.2.0.9-3.fc18 ovirt-guest-agent-1.0.6-4.fc18 perl-Perl-Stripper-0.04-1.fc18 pulseaudio-2.1-6.fc18 python-django-horizon-2012.2.3-1.fc18 python-fedmsg-meta-fedora-infrastructure-0.1.0-1.fc18 python-plumbum-0.9.0-3.fc18 python-rhsm-1.8.2-1.fc18 roundcubemail-0.8.5-1.fc18 subscription-manager-1.8.2-1.fc18 xfce-theme-manager-0.2.4-1.fc18 yum-utils-1.1.31-9.fc18 Details about builds: ================================================================================ abi-compliance-checker-1.98.8-1.fc18 (FEDORA-2013-2204) An ABI Compliance Checker -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Richard Shaw <hobbes1069@xxxxxxxxx> - 1.98.8-1 - Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #909136 - abi-compliance-checker-1.98.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=909136 -------------------------------------------------------------------------------- ================================================================================ fedora-review-0.4.0-3.fc18 (FEDORA-2013-2191) Review tool for fedora rpm packages -------------------------------------------------------------------------------- Update Information: This fixes problems with large docs check and incorrect handling of some package names. A small addition is also REVIEW_NO_MOCKGROUP_TEST which turns off verification of mock configuration that can be useful in certain non-standard configurations. Update to 0.4.0 and incorporate patch from Ralf Bean fixing fedora-create-review. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 0.4.0-3 - Fix rhbz908830 and rhbz908830 - Add patch for REVIEW_NO_MOCKGROUP_TEST environment variable - Remove old patch * Mon Feb 4 2013 Pierre-Yves Chibon <pingou@xxxxxxxxxxxx> - 0.4.0-2 - Add Patch0 (0001-Fix-syntax-error.patch) from Ralph Bean fixing fedora-create-review * Mon Jan 28 2013 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 0.4.0-1 - Updating to upstream 0.4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #908830 - check-large-docs.sh doesn't properly skip -doc subpackages https://bugzilla.redhat.com/show_bug.cgi?id=908830 [ 2 ] Bug #889087 - Unreadable colors in terminal with white background https://bugzilla.redhat.com/show_bug.cgi?id=889087 [ 3 ] Bug #881337 - AttributeError: 'GemCheckRequiresRubygems' object has no attribute 'spec_packages' https://bugzilla.redhat.com/show_bug.cgi?id=881337 [ 4 ] Bug #872898 - other Fatal error: Exception down the road https://bugzilla.redhat.com/show_bug.cgi?id=872898 [ 5 ] Bug #845651 - AttributeError: 'Source' object has no attribute 'filename' https://bugzilla.redhat.com/show_bug.cgi?id=845651 -------------------------------------------------------------------------------- ================================================================================ fflas-ffpack-1.6.0-3.fc18 (FEDORA-2013-2179) Finite field linear algebra subroutines -------------------------------------------------------------------------------- Update Information: This update adds OpenMP support to givaro timers, and also adds the SpyInteger interface. The other packages are just rebuilds with the new givaro. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jerry James <loganjerry@xxxxxxxxx> - 1.6.0-3 - Rebuild for givaro 3.7.2 -------------------------------------------------------------------------------- ================================================================================ gambas3-3.4.0-1.fc18 (FEDORA-2013-2172) IDE based on a basic interpreter with object extensions -------------------------------------------------------------------------------- Update Information: Update to 3.4.0 This new release fixes about 240 bugs and adds about 270 new features. For full details, see: http://gambasdoc.org/help/doc/release/3.4.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 3.4.0-1 - update to 3.4.0 * Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 3.3.4-4 - rebuild due to "jpeg8-ABI" feature drop * Thu Dec 13 2012 Adam Jackson <ajax@xxxxxxxxxx> - 3.3.4-3 - Rebuild for glew 1.9.0 -------------------------------------------------------------------------------- ================================================================================ gcab-0.4-1.fc18 (FEDORA-2013-2169) Cabinet file library and tool -------------------------------------------------------------------------------- Update Information: Update to v0.4 -------------------------------------------------------------------------------- ================================================================================ gdb-7.5.1-36.fc18 (FEDORA-2013-2213) A GNU source-level debugger for C, C++, Fortran, Go and other languages -------------------------------------------------------------------------------- Update Information: Re-enable PDF in gdb-doc after texinfo RH BZ 876710 has been fixed. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.5.1-36.fc18 - Re-enable PDF in gdb-doc after texinfo RH BZ 876710 has been fixed. * Sun Jan 13 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.5.1-35.fc18 - [testsuite] Fix gdb-orphanripper.c lockup on F-17 (/dev/pts/* glibc chown). * Tue Jan 8 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.5.1-34.fc18 - Update dlopen to support map_failed probe of glibc (Gary Benson, BZ 886516). * Thu Jan 3 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.5.1-33.fc18 - [ppc*] Fix PowerPC disassembly regression (Alan Modra, Edjunior Machado). -------------------------------------------------------------------------------- ================================================================================ givaro-3.7.2-1.fc18 (FEDORA-2013-2179) C++ library for arithmetic and algebraic computations -------------------------------------------------------------------------------- Update Information: This update adds OpenMP support to givaro timers, and also adds the SpyInteger interface. The other packages are just rebuilds with the new givaro. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jerry James <loganjerry@xxxxxxxxx> - 3.7.2-1 - New upstream release - Add BRs for TeXLive 2012 - Make sure the library doesn't have an rpath - Link with --as-needed - Add AUTHORS and COPYING to doc -------------------------------------------------------------------------------- ================================================================================ gnome-shell-extension-pidgin-0-0.9.git87fc23433d.fc18 (FEDORA-2013-2183) The components necessary to integrate Pidgin with GNOME Shell -------------------------------------------------------------------------------- Update Information: Update extension to support gnome-shell 3.6. Improve pidgin plugin. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 0-0.9.git87fc23433d - apply fixes from "thedeadparrot" github fork to get things working on gnome 3.6 - improve gnome-shell connector plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #903375 - gnome-shell-extension-pidgin does not work with GNOME 3.6 https://bugzilla.redhat.com/show_bug.cgi?id=903375 -------------------------------------------------------------------------------- ================================================================================ gogoc-1.2-23.fc18 (FEDORA-2013-2180) IPv6 TSP client for gogo6 -------------------------------------------------------------------------------- Update Information: Fix service startup because systemd fails to create namespaces in symlinked directories -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Juan Orti Alcaine <j.orti.alcaine@xxxxxxxxx> - 1.2-23 - Remove symlinked directories from ReadOnlyDirectories in unit file -------------------------------------------------------------------------------- References: [ 1 ] Bug #908591 - gogoc service fails to start with F18 https://bugzilla.redhat.com/show_bug.cgi?id=908591 -------------------------------------------------------------------------------- ================================================================================ iproute-3.6.0-6.fc18 (FEDORA-2013-2199) Advanced IP routing and network device configuration tools -------------------------------------------------------------------------------- Update Information: Don't propagate mounts out of ip. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Petr Šabata <contyk@xxxxxxxxxx> - 3.6.0-6 - Don't propogate mounts out of ip (#882047) -------------------------------------------------------------------------------- References: [ 1 ] Bug #882047 - "ip netns exec" destroys the /sys mounting and causes systemd problem https://bugzilla.redhat.com/show_bug.cgi?id=882047 -------------------------------------------------------------------------------- ================================================================================ jcifs-1.3.17-7.fc18 (FEDORA-2013-2182) Common Internet File System Client in 100% Java -------------------------------------------------------------------------------- Update Information: Update to get jcifs update to mirrors due to tagging issue resulting from a duplicate update. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jon Ciesla <limburgher@xxxxxxxxx> 1.3.17-7 - Rebuild to get update to mirror due to tagging issue, - see https://fedorahosted.org/rel-eng/ticket/5467 * Fri Nov 16 2012 gil cattaneo <puntogil@xxxxxxxxx> 1.3.17-6 - rebuilt -------------------------------------------------------------------------------- ================================================================================ jtidy-1.0-0.13.20100930svn1125.fc18 (FEDORA-2013-2194) HTML syntax checker and pretty printer -------------------------------------------------------------------------------- Update Information: This update adds missing Requires: xml-commons-apis. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Mikolaj Izdebski <mizdebsk@xxxxxxxxxx> - 2:1.0-0.13.20100930svn1125 - Add missing BR and R: xml-commons-apis - Resolves: rhbz#908421 -------------------------------------------------------------------------------- References: [ 1 ] Bug #908421 - jtidy: Missing dependencies on xml-commons-apis https://bugzilla.redhat.com/show_bug.cgi?id=908421 -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.12.1-1.fc18 (FEDORA-2013-2173) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: - fix for a frequent segfault Update for new upstream release Update for new upstream release Update for new upstream release Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Ricardo Rocha <ricardo.rocha@xxxxxxx> - 0.12.1-1 - Update for new upstream release (patch for segfault) * Wed Feb 6 2013 Ricardo Rocha <ricardo.rocha@xxxxxxx> - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha <ricardo.rocha@xxxxxxx> - 0.11.0-2 - Added patch for apache 2.4 api change * Wed Nov 14 2012 Ricardo Rocha <ricardo.rocha@xxxxxxx> - 0.11.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ libjpeg-turbo-1.2.90-1.fc18 (FEDORA-2013-2174) A MMX/SSE2 accelerated library for manipulating JPEG image files -------------------------------------------------------------------------------- Update Information: Update to 1.2.90 release. Main enhancement is: * libjpeg.so now contains jpeg_mem_src() and jpeg_mem_dest() functions which are needed by some applications. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Adam Tkac <atkac redhat com> 1.2.90-1 - update to 1.2.90 * Mon Feb 4 2013 Adam Tkac <atkac redhat com> 1.2.90-0.1.20130204svn922 - update to 1.2.80 snapshot (#854695) - run `make test` during build * Tue Dec 4 2012 Adam Tkac <atkac redhat com> 1.2.1-4 - change license to IJG (#877517) -------------------------------------------------------------------------------- References: [ 1 ] Bug #854695 - Backport jpeg_mem_{src,dest} functions https://bugzilla.redhat.com/show_bug.cgi?id=854695 -------------------------------------------------------------------------------- ================================================================================ linbox-1.3.2-9.fc18 (FEDORA-2013-2179) C++ Library for High-Performance Exact Linear Algebra -------------------------------------------------------------------------------- Update Information: This update adds OpenMP support to givaro timers, and also adds the SpyInteger interface. The other packages are just rebuilds with the new givaro. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jerry James <loganjerry@xxxxxxxxx> - 1.3.2-9 - Rebuild for givaro 3.7.2 -------------------------------------------------------------------------------- ================================================================================ m4rie-20120613-3.fc18 (FEDORA-2013-2179) Linear Algebra over F_2^e -------------------------------------------------------------------------------- Update Information: This update adds OpenMP support to givaro timers, and also adds the SpyInteger interface. The other packages are just rebuilds with the new givaro. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jerry James <loganjerry@xxxxxxxxx> - 20120613-3 - Rebuild for givaro 3.7.2 -------------------------------------------------------------------------------- ================================================================================ mysql-utilities-1.2.0-1.fc18 (FEDORA-2013-2203) MySQL Utilities -------------------------------------------------------------------------------- Update Information: Release 1.2.0 (Released January 26, 2013) * BUG#13956819: MySQL Utilities requires changes for RPM packaging * WL#6256: Change password handling * WL#6262: Audit log parser Release 1.1.2 (Released January 17, 2013) * BUG#13931340: mysqluserclone should dump all users * BUG#14712211: mysqluc fails to look for the utilities for a given utildir * BUG#15867353: Add GTID handling to mysqldbcopy, mysqldbexport * BUG#16010766: gtid enabled utilities need to check version of the server * BUG#16016887: mysqldiskusage reports missing binlog * BUG#16020953: --timeout option in mysqlfailover throws error * BUG#16023646: mysqldbcopy cannot copy world_innodb sample database * BUG#16023781: switchover can fail to complete if there are errors in slaves * BUG#16035934: unused --server option in mysqldbcompare * BUG#16037123: mysqlrplshow fails to report connection errors * BUG#16072863: gtid-enabled utilities need better error handling * BUG#14158371: mysqlserverinfo reports server offline on authentication error -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.2.0-1 - update to 1.2.0 - new commands: mysqlauditadmin and mysqlauditgrep -------------------------------------------------------------------------------- ================================================================================ nautilus-3.6.3-5.fc18 (FEDORA-2013-2192) File manager for GNOME -------------------------------------------------------------------------------- Update Information: A minor spec file change that would probably make no difference to users. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Tomas Bzatek <tbzatek@xxxxxxxxxx> - 3.6.3-5 - Disable smp build to fix intltool issues -------------------------------------------------------------------------------- ================================================================================ ncl-6.1.2-1.fc18 (FEDORA-2013-2162) NCAR Command Language and NCAR Graphics -------------------------------------------------------------------------------- Update Information: Of particular note in this version: - Better support for NetCDF-4 files A number of improvements were made to NCL's "advanced file structure". This was added in V6.1.0 to address new data features in NetCDF-4, like groups, compound data types, variable length arrays, and multiple unlimited dimensions. There are some examples of these new features on the "Output to NetCDF" section of the examples page. http://www.ncl.ucar.edu/Applications/o-netcdf.shtml This is currently in beta-testing mode, so feedback (to ncl-talk) is appreciated. - A new reassignment operator, ":=" This operator allows you to reassign variables without having to delete them first: x = fspan(-10.5,20.8,0.1) ; array of floats x := "This is a string" ; single string - Several NetCDF input/output bugs fixed o Writing an undefined variable directly to file. o Writing a scalar to a file. o Printing a variable's attribute when it is double. o Adding global attributes to an existing file. o If two files are opened, where the first one is NetCDF3 and second one is NetCDF4, then there was a problem operating on the first file. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6.1.2-1 - Update to 6.1.2 * Mon Jan 21 2013 Adam Tkac <atkac redhat com> - 6.1.0-2 - rebuild due to "jpeg8-ABI" feature drop -------------------------------------------------------------------------------- ================================================================================ openssh-6.1p1-5.fc18 (FEDORA-2013-2212) An open source implementation of SSH protocol versions 1 and 2 -------------------------------------------------------------------------------- Update Information: This update changes default of MaxStartups to 10:30:100 to start doing random early drop at 10 connections up to 100 connections - CVE-2010-5107 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Petr Lautrbach <plautrba@xxxxxxxxxx> 6.1p1-5 + 0.9.3-3 - change default value of MaxStartups - CVE-2010-5107 (#908707) -------------------------------------------------------------------------------- References: [ 1 ] Bug #908707 - CVE-2010-5107 openssh: Prevent connection slot exhaustion attacks https://bugzilla.redhat.com/show_bug.cgi?id=908707 -------------------------------------------------------------------------------- ================================================================================ openstack-keystone-2012.2.3-2.fc18 (FEDORA-2013-2168) OpenStack Identity Service -------------------------------------------------------------------------------- Update Information: update to stable folsom release 2012.2.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Alan Pevec <apevec@xxxxxxxxxx> 2012.2.3-2 - limit parameters and tokens size CVE-2013-0247 * Sat Feb 2 2013 Alan Pevec <apevec@xxxxxxxxxx> 2012.2.3-1 - updated to stable folsom release 2012.2.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #906171 - CVE-2013-0247 OpenStack Keystone: denial of service through invalid token requests https://bugzilla.redhat.com/show_bug.cgi?id=906171 -------------------------------------------------------------------------------- ================================================================================ ovirt-engine-cli-3.2.0.9-3.fc18 (FEDORA-2013-2171) oVirt Engine Command Line Interface -------------------------------------------------------------------------------- Update Information: Fix for upstream bug #907931, tracked downstream in bug #909365 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Juan Hernandez <juan.hernandez@xxxxxxxxxx> - 3.2.0.9-3 - Use -passwdFile instead of -passwdInput to fix #907931 -------------------------------------------------------------------------------- References: [ 1 ] Bug #909365 - [RFE] ovirt-shell vnc console does not work with tigervnc client https://bugzilla.redhat.com/show_bug.cgi?id=909365 -------------------------------------------------------------------------------- ================================================================================ ovirt-guest-agent-1.0.6-4.fc18 (FEDORA-2013-2175) The oVirt Guest Agent -------------------------------------------------------------------------------- Update Information: This is the oVirt managment agent running inside the guest. The agent interfaces with the oVirt manager, supplying heart-beat info as well as runtime data from within the guest itself. The agent also accepts control commands to be run executed within the OS (like: shutdown and restart). -------------------------------------------------------------------------------- References: [ 1 ] Bug #889546 - Review Request: ovirt-guest-agent - oVirt Guest Agent https://bugzilla.redhat.com/show_bug.cgi?id=889546 -------------------------------------------------------------------------------- ================================================================================ perl-Perl-Stripper-0.04-1.fc18 (FEDORA-2013-2187) Yet another PPI-based Perl source code stripper -------------------------------------------------------------------------------- Update Information: Yet another PPI-based Perl source code stripper -------------------------------------------------------------------------------- References: [ 1 ] Bug #908788 - Review Request: perl-Perl-Stripper - Yet another PPI-based Perl source code stripper https://bugzilla.redhat.com/show_bug.cgi?id=908788 -------------------------------------------------------------------------------- ================================================================================ pulseaudio-2.1-6.fc18 (FEDORA-2013-2208) Improved Linux Sound Server -------------------------------------------------------------------------------- Update Information: Handle upgrade case where default.pa refers to non-existent module-cork-music-on-phone (which has been renamed to module-role-cork) -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.1-6 - default.pa: fix for renamed modules (#908117) -------------------------------------------------------------------------------- References: [ 1 ] Bug #908117 - sounds does not work after upgrade from f17 to f18 https://bugzilla.redhat.com/show_bug.cgi?id=908117 -------------------------------------------------------------------------------- ================================================================================ python-django-horizon-2012.2.3-1.fc18 (FEDORA-2013-2166) Django application for talking to Openstack -------------------------------------------------------------------------------- Update Information: Update to latest upstream stable release 2012.2.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 2012.2.3-1 - update to latest stable release 2012.2.3 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.1.0-1.fc18 (FEDORA-2013-2165) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Fix to KojiProcessor.__name__ Processors for koji and planet messages.. Changes to git/scm messages. pkgdb messages. Fixes to git/scm messages. Koji usernames and links; fas legacy compat -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-plumbum-0.9.0-3.fc18 (FEDORA-2013-2189) Shell combinators library -------------------------------------------------------------------------------- Update Information: Introduces python3 subpackage. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 0.9.0-3 - Introduce python3 subpackage. -------------------------------------------------------------------------------- ================================================================================ python-rhsm-1.8.2-1.fc18 (FEDORA-2013-2196) A Python library to communicate with a Red Hat Unified Entitlement Platform -------------------------------------------------------------------------------- Update Information: Add support for disabling package reporting, various cosmetic bug fixes. Dozens of bug fixes, new rct commands for examining manifests. Dozens of bug fixes, new rct commands for examining manifests. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 31 2013 Bryan Kearney <bkearney@xxxxxxxxxx> 1.8.2-1 - Add a default value for the report_package_profile setting (bkearney@xxxxxxxxxx) - Remove F16 releasers, add F18. (dgoodwin@xxxxxxxxxx) * Thu Jan 24 2013 Devan Goodwin <dgoodwin@xxxxxxxx> 1.8.1-1 - Do not retrieve the value unless the match is valid (bkearney@xxxxxxxxxx) - Only look for a single item as it is quicker and all we care about is zero or not zero (bkearney@xxxxxxxxxx) - Several small tweaks: (bkearney@xxxxxxxxxx) - Store off the len of the oid to save recalculating it more that once (bkearney@xxxxxxxxxx) - certificate.match will now only accept oids. (bkearney@xxxxxxxxxx) - Remove the use of exceptions to denote a return value of false. (bkearney@xxxxxxxxxx) - The email.utils module was named email.Utils in RHEL5 (bkearney@xxxxxxxxxx) - Make stylish issues resolved (bkearney@xxxxxxxxxx) - 772936: Warn the user when clock skew is detected. (bkearney@xxxxxxxxxx) - Improve logging for rhsmcertd scenarios (wpoteat@xxxxxxxxxx) - 845622: If an identity certificate has expired, there should be a friendly error message (wpoteat@xxxxxxxxxx) - Add international text to test automatic JSON encoding. (awood@xxxxxxxxxx) - 880070: Adding unicode encoding hook for simplejson. (awood@xxxxxxxxxx) - 848836: Remove trailing / from the handler in UEPConnection (bkearney@xxxxxxxxxx) - 884259: If LANG is unset, do not attempt to send up a default locale in redeem call (bkearney@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ roundcubemail-0.8.5-1.fc18 (FEDORA-2013-2195) Round Cube Webmail is a browser-based multilingual IMAP client -------------------------------------------------------------------------------- Update Information: A cross-site scripting (XSS) flaws were round in the way Round Cube Webmail, a browser-based multilingual IMAP client, performed sanitization of 'data' and 'vbscript' URLs. A remote attacker could provide a specially-crafted URL that, when opened would lead to arbitrary JavaScript, VisualBasic script or HTML code execution in the context of Round Cube Webmail's user session. Upstream ticket: [1] http://trac.roundcube.net/ticket/1488850 Further details: [2] http://trac.roundcube.net/attachment/ticket/1488850/RoundCube2XSS.pdf Upstream patch: [3] https://github.com/roundcube/roundcubemail/commit/74cd0a9b62f11bc07c5a1d3ba0098b54883eb0ba References: [4] http://sourceforge.net/news/?group_id=139281&id=310213 [5] http://www.openwall.com/lists/oss-security/2013/02/07/11 [6] http://www.openwall.com/lists/oss-security/2013/02/08/1 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 0.8.5-1 - Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #909304 - CVE-2012-6121 roundcubemail: Cross-site scripting (XSS) in vbscript: and data:text URL handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=909304 [ 2 ] Bug #909306 - CVE-2012-6121 roundcubemail: Cross-site scripting (XSS) in vbscript: and data:text URL handling [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=909306 -------------------------------------------------------------------------------- ================================================================================ subscription-manager-1.8.2-1.fc18 (FEDORA-2013-2196) Tools and libraries for subscription and repository management -------------------------------------------------------------------------------- Update Information: Add support for disabling package reporting, various cosmetic bug fixes. Dozens of bug fixes, new rct commands for examining manifests. Dozens of bug fixes, new rct commands for examining manifests. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Bryan Kearney <bkearney@xxxxxxxxxx> 1.8.2-1 - Update tito for RHEL 7.0 (bkearney@xxxxxxxxxx) - Small cleanups for test_migrate (alikins@xxxxxxxxxx) - Write repofile once instead of during every iteration. (awood@xxxxxxxxxx) - Add unit test for migration script. (awood@xxxxxxxxxx) - Adding more tests for the migration script. (awood@xxxxxxxxxx) - Bump the required version of python-rhsm to pick up the new config file defaults (bkearney@xxxxxxxxxx) - Modify migration script tests to run on Fedora. (awood@xxxxxxxxxx) - Give users the ability to disable package reporting (bkearney@xxxxxxxxxx) - 891377: Note in deprecated string that auto-attach-interval is a command option (bkearney@xxxxxxxxxx) - 901612: Yum plugin warnings should go to stderr, not stdout (bkearney@xxxxxxxxxx) - 903298: Replace use of 'Register to' with 'Register with' (bkearney@xxxxxxxxxx) - Rewrite of the migration script featuring unit tests. (awood@xxxxxxxxxx) - Remove F16 and old cvs releasers, add F18. (dgoodwin@xxxxxxxxxx) * Thu Jan 24 2013 Devan Goodwin <dgoodwin@xxxxxxxx> 1.8.1-1 - Add two manifest commands to rct. (bkearney@xxxxxxxxxx) - latest translations from zanata (alikins@xxxxxxxxxx) - 895447: The count of subscriptions removed is zero for certs that have been imported. (wpoteat@xxxxxxxxxx) - 895462: Message for subscription-manager repos --list for disabled repo needs to be modified (wpoteat@xxxxxxxxxx) - 885964: After registration, recreate the UEP connection using the identity cert. (awood@xxxxxxxxxx) - 869306: Add org ID to facts dialog. (awood@xxxxxxxxxx) - 888853: Put output into proper columns regardless of the output language. (awood@xxxxxxxxxx) - Update python-rhsm requires version (wpoteat@xxxxxxxxxx) - 888052: Add all binaries to the makefile path for gettext string extraction (bkearney@xxxxxxxxxx) - 851303: additional term updates (dlackey@xxxxxxxxxxxxxx) - 844411: Add an --insecure option to subscription-manager. (awood@xxxxxxxxxx) - 891621: Users can incorrectly enter activation keys when registering to hosted. (awood@xxxxxxxxxx) - 889573: Only persist serverurl and baseurl when registering. (awood@xxxxxxxxxx) - 889204: Encode the unicode string to utf-8 to avoid syslog errors (bkearney@xxxxxxxxxx) - 889621: String substitution inside gettext causes message translations to never be found (bkearney@xxxxxxxxxx) - 890296: Unicode characters with a - are causing printing issues for rct printing (bkearney@xxxxxxxxxx) - 878269 (dlackey@xxxxxxxxxxxxxx) - 784056: Raise a running instance of the GUI to the forefront. (awood@xxxxxxxxxx) - 888968: Improve the gui message formatting for SLA selection (bkearney@xxxxxxxxxx) - 873601: Return a non zero code if subscription manager is run with an incorrect command name (bkearney@xxxxxxxxxx) - 839779: Improve messaging when autosubscribe does not work because of SLA (bkearney@xxxxxxxxxx) - 867603: Add quantity to confirm subscriptions dialog. (awood@xxxxxxxxxx) - 888790: Rebuild UEP connection after registering with activation keys. (awood@xxxxxxxxxx) - 886280; 878257; 878264; 878269 (dlackey@xxxxxxxxxxxxxx) - 814378: disable linkify if we are running as firstboot (alikins@xxxxxxxxxx) - 886887: Take the user back to the activation key page if he enters an invalid key. (awood@xxxxxxxxxx) - 863572: Make forward/back insensitive when registering (alikins@xxxxxxxxxx) - 825950: updating SAM registration procedure; other term edits and updated screenshot (dlackey@xxxxxxxxxxxxxx) - 885964: Do not make a getOwner call when not necessary. (awood@xxxxxxxxxx) - Ask for the org in environments and service-level modules. (awood@xxxxxxxxxx) - 886992: Fix for bad fix for 886604, wrong path for yum repos (alikins@xxxxxxxxxx) - matt reid's edits to rct; bz886280; bz878257; bz878269; bz878264 (dlackey@xxxxxxxxxxxxxx) - 841496: Do not use hyphens in bash completion files as these are invalid for identifiers in the sh shell. (bkearney@xxxxxxxxxx) - Improve logging for rhsmcertd scenarios (wpoteat@xxxxxxxxxx) - 878609: Do not use public url redirectors, instead use a redhat.com address (bkearney@xxxxxxxxxx) - 886604: Fix incorrect path in repos.d check (alikins@xxxxxxxxxx) - 727092: Read in the org key during registration if none is given. (awood@xxxxxxxxxx) - 845622: If an identity certificate has expired, there should be a friendly error message (wpoteat@xxxxxxxxxx) - 883123: Have the migration code use the name and the label for org and environment lookup. (bkearney@xxxxxxxxxx) - 886110: help blurb for --auto-attach formatted poorly (alikins@xxxxxxxxxx) - 880070: require latest python-rhsm to handle unicode issues (alikins@xxxxxxxxxx) - 798788: Results from subscription-manager facts --update after a server-side consumer was deleted. (wpoteat@xxxxxxxxxx) - 878634: Improve the consistency of capitalization of URL, ID, HTTP, and CPU (bkearney@xxxxxxxxxx) - 878657: Make consistent use of the term unregister instead of un-register (bkearney@xxxxxxxxxx) - 883735: load branding module slightly differently (jesusr@xxxxxxxxxx) - Stylish fix. (dgoodwin@xxxxxxxxxx) - 878664: Add bash completion script for rct (bkearney@xxxxxxxxxx) - 880764: Command line options which can be specified more than once should use the same help text (bkearney@xxxxxxxxxx) - 867070: Adjust default sizing of subscriptions pane in Installed Products tab. (awood@xxxxxxxxxx) - 873791: Expected exit codes from unsubscribe with multiple serial numbers (wpoteat@xxxxxxxxxx) - 800323: Set default output stream encoding to UTF-8. (awood@xxxxxxxxxx) - 862852: Fix double separator in redeem dialog. (dgoodwin@xxxxxxxxxx) - Display "None" if environments value is empty on consumer. (awood@xxxxxxxxxx) - 872351: Display environment in GUI facts dialog and CLI identity command. (awood@xxxxxxxxxx) - 881091: Remove punctuation in the help message (bkearney@xxxxxxxxxx) - Revert "878986: refactor to use curses/textwrap for format" (alikins@xxxxxxxxxx) - 877579: Fix -1 quantity to consume for unlimited pools. (dgoodwin@xxxxxxxxxx) - 881117: Add at-spi locator to redemption dialog. (awood@xxxxxxxxxx) - 881952: Warn and continue if encountering a failure during system deletion. (awood@xxxxxxxxxx) - 878820: Fix console error when yum.repos.d does not exist. (dgoodwin@xxxxxxxxxx) - 839772: Display "Not Set" instead of "" in SLA and release preferences. (awood@xxxxxxxxxx) - rev zanata branch version to 1.8.X (alikins@xxxxxxxxxx) - 878986: refactor to use curses/textwrap for format (alikins@xxxxxxxxxx) - 878986: Default to no line breaking if no stty is available (bkearney@xxxxxxxxxx) - 878588: Move the requires on usermode from subscription-manager-gui to subscription-manager (bkearney@xxxxxxxxxx) - 878648: Make the help usage formatting consistent for the rct and subscription manager commands (bkearney@xxxxxxxxxx) - 869046: Remove stray 'print' (jbowes@xxxxxxxxxx) - 864207: Autosubscribe should not run when all products are already subscribed. (wpoteat@xxxxxxxxxx) - 854702: Place the asterisk indicating editability into the quantity cell. (awood@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ xfce-theme-manager-0.2.4-1.fc18 (FEDORA-2013-2198) A theme manager for Xfce -------------------------------------------------------------------------------- Update Information: xfce-theme-manager updated to version 0.2.4. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Eduardo Echeverria <echevemaster@xxxxxxxxx> - 0.2.4-1 - Update to version 0.2.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #876043 - Review Request: xfce-theme-manager - A theme manager for Xfce https://bugzilla.redhat.com/show_bug.cgi?id=876043 -------------------------------------------------------------------------------- ================================================================================ yum-utils-1.1.31-9.fc18 (FEDORA-2013-2178) Utilities based around the yum package manager -------------------------------------------------------------------------------- Update Information: Fix the "yumdownloader --resolve" issue Remove conflicting yum-plugin-downloadonly -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Zdenek Pavlas <zpavlas@xxxxxxxxxx> - 1.1.31-9 - Update to latest HEAD - fix the --resolve option. BZ 908986 * Wed Feb 6 2013 Zdenek Pavlas <zpavlas@xxxxxxxxxx> - 1.1.31-8 - Update to latest HEAD - Fix for --enablerepo=broken problem - Remove conflicting yum-plugin-downloadonly -------------------------------------------------------------------------------- References: [ 1 ] Bug #908986 - When trying to download a kernel-debuginfo package by `stap-prep` for using systemtap. Yum throws a Python Exception. https://bugzilla.redhat.com/show_bug.cgi?id=908986 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test