The following Fedora 17 Security updates need testing: Age URL 235 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 77 https://admin.fedoraproject.org/updates/FEDORA-2012-20092/libproxy-0.4.11-1.fc17 51 https://admin.fedoraproject.org/updates/FEDORA-2013-0210/vdsm-4.10.0-13.fc17 51 https://admin.fedoraproject.org/updates/FEDORA-2013-0231/ca-certificates-2012.87-1.fc17 47 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 34 https://admin.fedoraproject.org/updates/FEDORA-2013-1286/python-tw2-jquery-2.0.3-5.fc17 24 https://admin.fedoraproject.org/updates/FEDORA-2013-1804/coreutils-8.15-10.fc17 18 https://admin.fedoraproject.org/updates/FEDORA-2013-2023/tor-0.2.3.25-1700 17 https://admin.fedoraproject.org/updates/FEDORA-2013-2143/rubygem-rdoc-3.12-5.fc17 16 https://admin.fedoraproject.org/updates/FEDORA-2013-2202/gnome-online-accounts-3.4.2-3.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-2315/rubygem-rack-1.4.0-4.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-2450/pixman-0.28.0-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2013-2754/nss-pam-ldapd-0.7.16-3.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2766/mate-settings-daemon-1.5.4-3.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2789/yum-3.4.3-31.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2763/git-1.7.11.7-3.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2758/isync-1.0.6-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2793/openssl-1.0.0k-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-2874/Django-1.4.5-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-2872/drupal7-7.20-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-2845/bugzilla-4.0.10-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2984/libtasn1-2.14-1.fc17,gnutls-2.12.23-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2955/nginx-1.0.15-9.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2988/seamonkey-2.16-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2890/ptlib-2.10.10-1.fc17,opal-3.10.10-1.fc17,ekiga-4.0.1-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-3050/rubygem-json-1.6.8-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-3038/ruby-1.9.3.392-29.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 187 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 18 https://admin.fedoraproject.org/updates/FEDORA-2013-2065/abrt-2.1.0-1.fc17,libreport-2.1.0-2.fc17 16 https://admin.fedoraproject.org/updates/FEDORA-2013-2163/policycoreutils-2.1.13-27.3.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-2298/libdrm-2.4.42-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-2304/taglib-1.8-3.20121215git.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-2428/libgtop2-2.28.4-3.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-2450/pixman-0.28.0-1.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-2368/lxpanel-0.5.12-1.fc17 10 https://admin.fedoraproject.org/updates/FEDORA-2013-2564/systemd-44-24.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-2582/python-bugzilla-0.8.0-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2013-2709/perl-5.14.3-222.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2789/yum-3.4.3-31.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-2793/openssl-1.0.0k-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-2858/orc-0.4.17-2.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2989/dosfstools-3.0.15-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-2984/libtasn1-2.14-1.fc17,gnutls-2.12.23-1.fc17 The following builds have been pushed to Fedora 17 updates-testing anki-2.0.8-1.fc17 ansible-1.0-1.fc17 cqrlog-1.5.2-5.fc17 drupal7-token-1.5-1.fc17 eterm-0.9.6-7.fc17 hanazono-fonts-20130222-1.fc17 heimdall-1.4-0.3.rc2.fc17 hgsvn-0.1.9-4.fc17 klavaro-1.9.7-1.fc17 kshutdown-3.0-0.1.beta6.fc17 kyotocabinet-1.2.76-2.fc17 mate-netspeed-1.5.1-1.fc17 mpc-0.22-4.fc17 mysql-workbench-5.2.47-2.fc17 ovirt-guest-agent-1.0.6-6.fc17 pcmanx-gtk2-1.2-1.fc17 perl-Email-MessageID-1.402-1.fc17 perl-Net-SFTP-Foreign-1.74.05-2.fc17 php-JsonSchema-1.3.0-1.fc17 pspp-0.7.9-5.fc17 ruby-1.9.3.392-29.fc17 rubygem-json-1.6.8-1.fc17 rubygems-1.8.25-4.fc17 yash-2.34-1.fc17 Details about builds: ================================================================================ anki-2.0.8-1.fc17 (FEDORA-2013-3072) Flashcard program for using space repetition learning -------------------------------------------------------------------------------- Update Information: Update to new upstream release 2.0.8. Please see http://www.ankisrs.net/docs/changes.html for details. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 2.0.8-1 - Update to new upstream version 2.0.8 -------------------------------------------------------------------------------- ================================================================================ ansible-1.0-1.fc17 (FEDORA-2013-3026) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Release of 1.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 Michael DeHaan <michael.dehaan@xxxxxxxxx> - 1.0-0 - Release 1.0 -------------------------------------------------------------------------------- ================================================================================ cqrlog-1.5.2-5.fc17 (FEDORA-2013-3024) An amateur radio contact logging program -------------------------------------------------------------------------------- Update Information: Changed openssl-devel from BuildRequires to Requires. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 22 2013 Eric "Sparks" Christensen - 1.5.2-5 - Repaired desktop category * Fri Feb 22 2013 Eric "Sparks" Christensen - 1.5.2-4 - Changed openssl-devel from BuildRequires to Requires as it is needed for LoTW functionality * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Oct 9 2012 Dan Horák <dan[at]danny.cz> - 1.5.2-2 - set ExcludeArch to match fpc -------------------------------------------------------------------------------- References: [ 1 ] Bug #915069 - Sending QSOs to LoTW fail with SSL error. https://bugzilla.redhat.com/show_bug.cgi?id=915069 -------------------------------------------------------------------------------- ================================================================================ drupal7-token-1.5-1.fc17 (FEDORA-2013-3055) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: Update to upstream 1.5 release -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 1.5-1 - Update to upstream 1.5 release - Upstream changelog available at http://drupal.org/node/1925724 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #915195 - drupal7-token-1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=915195 -------------------------------------------------------------------------------- ================================================================================ eterm-0.9.6-7.fc17 (FEDORA-2013-3040) Enlightened terminal emulator -------------------------------------------------------------------------------- Update Information: Revert previous change which is not longer needed for KDE and causing trouble for Eterm in other desktop enviroments. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Terje Røsten <terje.rosten@xxxxxxx> - 0.9.6-7 - Revert #860326 (Ref: #867970 and #841471) * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9.6-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #867970 - eterm 0.9.6-5.fc16 x86_64 errors out when starting from Enlightenment -- yum downgrade solves. https://bugzilla.redhat.com/show_bug.cgi?id=867970 -------------------------------------------------------------------------------- ================================================================================ hanazono-fonts-20130222-1.fc17 (FEDORA-2013-3053) Japanese Mincho-typeface TrueType font -------------------------------------------------------------------------------- Update Information: New upstream release. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Akira TAGOH <tagoh@xxxxxxxxxx> - 20130222-1 - New upstream release. (#914077) * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 20120421-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #914077 - hanazono-fonts-20130222 is available https://bugzilla.redhat.com/show_bug.cgi?id=914077 -------------------------------------------------------------------------------- ================================================================================ heimdall-1.4-0.3.rc2.fc17 (FEDORA-2013-3071) Flash firmware on to Samsung Galaxy S devices -------------------------------------------------------------------------------- Update Information: New package: Heimdall - Flash firmware on to Samsung Galaxy S devices -------------------------------------------------------------------------------- ================================================================================ hgsvn-0.1.9-4.fc17 (FEDORA-2013-3066) A set of scripts to work locally on subversion checkouts using mercurial -------------------------------------------------------------------------------- Update Information: Fix issue related to changes in subversion 1.7. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Terje Rosten <terje.rosten@xxxxxxx> - 0.1.9-4 - Add patch to fix subversion 1.7 issue * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #904849 - [abrt] hgsvn-0.1.9-2.fc18: hgimportsvn.py:227:main:OSError: [Errno 2] No such file or directory https://bugzilla.redhat.com/show_bug.cgi?id=904849 -------------------------------------------------------------------------------- ================================================================================ klavaro-1.9.7-1.fc17 (FEDORA-2013-3070) Typing tutor -------------------------------------------------------------------------------- Update Information: * Sun Feb 24 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.9.7-1 - Updated to new upstream release 1.9.7 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.9.7-1 - Updated to new upstream release 1.9.7 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ kshutdown-3.0-0.1.beta6.fc17 (FEDORA-2013-3048) Graphical shutdown utility for KDE 4 -------------------------------------------------------------------------------- Update Information: KShutdown 3.0 beta6 release. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 16 2013 Jan Grulich <jgrulich@xxxxxxxxxx> - 3.0-0.1.beta6 - update to 3.0beta6 -------------------------------------------------------------------------------- ================================================================================ kyotocabinet-1.2.76-2.fc17 (FEDORA-2013-3035) A lightweight database library -------------------------------------------------------------------------------- Update Information: Kyoto Cabinet 1.2.76 (2012-05-24) ================================= * kcthread.cc (CondVar::wait): a bug on Win32 was fixed. * kcdbext.h (IndexDB::set, IndexDB::replace): a bug of updating existing records was fixed. * kcdb.h (DB::check): new function. Kyoto Cabinet 1.2.75 (2012-03-28) ================================= * kcpolydb.h (PolyDB::match_similar): supressed warnings on signedness. Kyoto Cabinet 1.2.74 (2012-03-15) ================================= * kcpolydb.h (PolyDB::SimilarKey): the type of a member was modified for c++0x mode. Kyoto Cabinet 1.2.73 (2012-03-06) ================================= * kcutil.h (memdist, strutfdist, strucsdist): new functions. * kcpolydb.h (PolyDB::match_similar): new funcion. * kclangc.h (kclevdist, kcdbmatchsimilar): new functions. * kcfile.cc (File::open): LOCKFILE_FAIL_IMMEDIATELY support was added for Win32. Kyoto Cabinet 1.2.72 (2011-12-15) ================================= * kcfile.h (File::read, File::read_rast): a bug of invalid memory deletion was fixed. Kyoto Cabinet 1.2.71 (2011-12-01) ================================= * kclang.cc (kcdbcas): the erroneous order of parameters was rectified. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.76-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jan 12 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> - 1.2.76-1 - Update to 1.2.76 (#760939) * Thu Jul 19 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.70-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #760939 - kyotocabinet-1.2.76 is available https://bugzilla.redhat.com/show_bug.cgi?id=760939 -------------------------------------------------------------------------------- ================================================================================ mate-netspeed-1.5.1-1.fc17 (FEDORA-2013-3033) MATE netspeed -------------------------------------------------------------------------------- Update Information: latest upstream release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ mpc-0.22-4.fc17 (FEDORA-2013-3042) Command-line client for MPD -------------------------------------------------------------------------------- Update Information: Install bash completion in the correct place -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.22-4 - install bash completion in the correct place and remove the triggerin/triggerun scriptlets - include the example scripts in libexecdir * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.22-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.22-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mysql-workbench-5.2.47-2.fc17 (FEDORA-2013-3011) A MySQL visual database modeling, administration and querying tool -------------------------------------------------------------------------------- Update Information: Upstream Release Notes: * MySQL Workbench 5.2.47: http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-5-2-47.html -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.2.47-2 - improve launcher (don't rely on program path, #915040) * Fri Feb 22 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.2.47-1 - update to 5.2.47 Community (OSS) Edition (GPL) http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-5-2-47.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #912088 - mysql-workbench-5.2.47 is available https://bugzilla.redhat.com/show_bug.cgi?id=912088 [ 2 ] Bug #915040 - /bin/catchsegv: line 57: //libexec/mysql-workbench-bin: No such file or directory https://bugzilla.redhat.com/show_bug.cgi?id=915040 -------------------------------------------------------------------------------- ================================================================================ ovirt-guest-agent-1.0.6-6.fc17 (FEDORA-2013-3036) The oVirt Guest Agent -------------------------------------------------------------------------------- Update Information: Use %{_datadir}/ovirt-guest-agent as home directory of the guest agent to allow polyinstantiation with PAM. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 19 2013 Vinzenz Feenstra <vfeenstr@xxxxxxxxxx> - 1.0.6-6 - Using datadir as home directory Resolves: BZ#883124 -------------------------------------------------------------------------------- ================================================================================ pcmanx-gtk2-1.2-1.fc17 (FEDORA-2013-3014) Telnet client designed for BBS browsing -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 1.2-1 - Update to 1.2 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #914263 - pcmanx-gtk2-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=914263 -------------------------------------------------------------------------------- ================================================================================ perl-Email-MessageID-1.402-1.fc17 (FEDORA-2013-3061) Generate world unique message-ids -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.402-1 - Add BR: per(ExtUtils::MakeMaker) (Fix FTBFS #914273). - Upstream update. - Modernize spec. -------------------------------------------------------------------------------- ================================================================================ perl-Net-SFTP-Foreign-1.74.05-2.fc17 (FEDORA-2013-3028) SSH File Transfer Protocol client -------------------------------------------------------------------------------- Update Information: Fixed bogus dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #914969 - Bogus dependency https://bugzilla.redhat.com/show_bug.cgi?id=914969 -------------------------------------------------------------------------------- ================================================================================ php-JsonSchema-1.3.0-1.fc17 (FEDORA-2013-3031) PHP implementation of JSON schema -------------------------------------------------------------------------------- Update Information: Updated to upstream version 1.3.0 Full change log: https://github.com/justinrainbow/json-schema/commits/1.3.0 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> 1.3.0-1 - Updated to upstream version 1.3.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #912273 - php-JsonSchema-1.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=912273 -------------------------------------------------------------------------------- ================================================================================ pspp-0.7.9-5.fc17 (FEDORA-2013-3010) A program for statistical analysis of sampled data -------------------------------------------------------------------------------- Update Information: - Fixed FTBFS in Rawhide / Fedora 19 (see rhbz #914398) - Added provides(gnulib) (see rhbz #821785) - Added accidentally removed pspp docs (see rhbz #822610) -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0.7.9-5 - Fixed FTBFS in Rawhide / Fedora 19 (see rhbz #914398) - Added provides(gnulib) (see rhbz #821785) - Added accidentally removed pspp docs (see rhbz #822610) * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Thu Apr 19 2012 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0.7.9-2 - Drop useless patch -------------------------------------------------------------------------------- References: [ 1 ] Bug #821785 - pspp: Gnulib bundled but no bundled(gnulib) provides https://bugzilla.redhat.com/show_bug.cgi?id=821785 [ 2 ] Bug #822610 - error "URI ‘file:///usr/share/doc/pspp/pspp.xml not found" https://bugzilla.redhat.com/show_bug.cgi?id=822610 [ 3 ] Bug #914398 - pspp: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=914398 -------------------------------------------------------------------------------- ================================================================================ ruby-1.9.3.392-29.fc17 (FEDORA-2013-3038) An interpreter of object-oriented scripting language -------------------------------------------------------------------------------- Update Information: The new version 1.9.3 patchlevel 392 is released. A bug was found in the previous ruby that unrestricted entity expansion can lead to a DoS vulnerability in REXML. This new rpm will fix this issue. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.9.3.392-29 - Update to 1.9.3 p392 - Fix entity expansion DoS vulnerability in REXML (bug 914716) -------------------------------------------------------------------------------- References: [ 1 ] Bug #914726 - ruby: entity expansion DoS vulnerability in REXML [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=914726 -------------------------------------------------------------------------------- ================================================================================ rubygem-json-1.6.8-1.fc17 (FEDORA-2013-3050) A JSON implementation in Ruby -------------------------------------------------------------------------------- Update Information: A security flaw was discovered on the previous json that there is a denial of service and unsafe object creation vulnerability. This vulnerability has been assigned the CVE identifier CVE-2013-0269. This new rpm will fix this issue. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.6.8-1 - Update to 1.6.8 - Security fix for JSON create_additions default value (CVS-2013-0269) * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #910313 - CVE-2013-0269 rubygem-json: Denial of Service and SQL Injection [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=910313 -------------------------------------------------------------------------------- ================================================================================ rubygems-1.8.25-4.fc17 (FEDORA-2013-3007) The Ruby standard for packaging ruby libraries -------------------------------------------------------------------------------- Update Information: Backport some macros introduced for new guideline to each packaging for older branches -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.25-4 - Backport %gem_extdir_mri also * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.25-3 - And slightly change %gem_install because rubygems 1.8.25 does not support --document=ri,rdoc style (Vít Ondruch <vondruch@xxxxxxxxxx>) * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.8.25-2 - Backport %gem_install macro -------------------------------------------------------------------------------- ================================================================================ yash-2.34-1.fc17 (FEDORA-2013-3043) Yet Another SHell -------------------------------------------------------------------------------- Update Information: New version 2.34 is released. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 2.34-1 - 2.34 * Fri Feb 22 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - bump release and fix broken deps * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.33.1-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
