The following Fedora 18 Security updates need testing: Age URL 95 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 64 https://admin.fedoraproject.org/updates/FEDORA-2013-2131/rubygem-rdoc-3.12-6.fc18 60 https://admin.fedoraproject.org/updates/FEDORA-2013-2306/rubygem-rack-1.4.0-5.fc18 28 https://admin.fedoraproject.org/updates/FEDORA-2013-3935/puppet-3.1.1-1.fc18 22 https://admin.fedoraproject.org/updates/FEDORA-2013-4243/stunnel-4.55-1.fc18 17 https://admin.fedoraproject.org/updates/FEDORA-2013-4507/libxslt-1.1.28-1.fc18 14 https://admin.fedoraproject.org/updates/FEDORA-2013-4571/libuser-0.58-3.fc18 14 https://admin.fedoraproject.org/updates/FEDORA-2013-4589/tomcat6-6.0.36-2.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-4608/polarssl-1.1.6-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4807/haproxy-1.4.23-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4823/microcode_ctl-2.0-3.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-5057/gsi-openssh-6.1p1-5.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5280/krb5-1.10.3-15.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5472/php-geshi-1.0.8.11-3.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-5548/plexus-archiver-2.3-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5618/curl-7.27.0-8.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5626/owncloud-4.5.9-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5620/phpMyAdmin-3.5.8-1.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 181 https://admin.fedoraproject.org/updates/FEDORA-2012-16107/xorg-x11-drv-qxl-0.1.0-1.fc18 179 https://admin.fedoraproject.org/updates/FEDORA-2012-16207/thunderbird-lightning-1.8-1.fc18,thunderbird-16.0.1-2.fc18 94 https://admin.fedoraproject.org/updates/FEDORA-2013-0541/mdadm-3.2.6-11.fc18 63 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 52 https://admin.fedoraproject.org/updates/FEDORA-2013-2726/pulseaudio-2.1-7.fc18 39 https://admin.fedoraproject.org/updates/FEDORA-2013-3458/iproute-3.6.0-7.fc18,iptables-1.4.18-1.fc18 10 https://admin.fedoraproject.org/updates/FEDORA-2013-4681/wpa_supplicant-1.1-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4841/telepathy-glib-0.20.2-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4814/libssh2-1.4.3-2.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4833/perl-Filter-1.48-1.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4815/openldap-2.4.35-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4945/perl-Filter-1.49-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4929/libgsf-1.14.24-4.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4996/cryptopp-5.6.2-2.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4989/livecd-tools-18.15-1.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5280/krb5-1.10.3-15.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5276/libogg-1.3.0-5.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5265/python-pycurl-7.19.0-13.1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5439/perl-5.16.3-242.fc18,perl-Sys-Syslog-0.32-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5468/hardlink-1.0-16.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5350/abrt-2.1.3-2.fc18,libreport-2.1.3-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-5562/gdb-7.5.1-38.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-5559/emacs-24.2-18.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-5568/evolution-data-server-3.6.4-3.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5617/kernel-3.8.7-201.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5618/curl-7.27.0-8.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5634/xorg-x11-drv-intel-2.21.6-1.fc18 The following builds have been pushed to Fedora 18 updates-testing 3Depict-0.0.13-1.fc18 curl-7.27.0-8.fc18 drupal7-views-3.7-1.fc18 jd-2.8.6-0.6.svn4109_trunk.fc18 kernel-3.8.7-201.fc18 mingw-qt5-qtdeclarative-5.0.1-1.fc18 mingw-qt5-qtquick1-5.0.1-1.fc18 musique-1.2.1-1.fc18 openslide-3.3.3-1.fc18 owncloud-4.5.9-1.fc18 phpMyAdmin-3.5.8-1.fc18 python-sqlalchemy-0.7.10-1.fc18 qlipper-2.0.1-2.fc18 skf-1.99.3-1.fc18 sugar-0.98.7-1.fc18 sugar-fototoon-14-2.fc18 targetcli-2.1.fb23-1.fc18 xorg-x11-drv-intel-2.21.6-1.fc18 Details about builds: ================================================================================ 3Depict-0.0.13-1.fc18 (FEDORA-2013-5633) Valued 3D point cloud visualization and analysis -------------------------------------------------------------------------------- Update Information: New upstream -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 D Haley <mycae(a!t)gmx.com> - 0.0.13-1 - Update to 0.0.13 * Sat Mar 23 2013 D Haley <mycae(a!t)gmx.com> - 0.0.12-4 - Add aarch 64 patch for bug 924960, until next version * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.0.12-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ curl-7.27.0-8.fc18 (FEDORA-2013-5618) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: fix cookie tailmatching to prevent cross-domain leakage (CVE-2013-1944) -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Kamil Dudka <kdudka@xxxxxxxxxx> 7.27.0-8 - fix cookie tailmatching to prevent cross-domain leakage (CVE-2013-1944) -------------------------------------------------------------------------------- References: [ 1 ] Bug #950577 - CVE-2013-1944 curl: Cookie domain suffix match vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=950577 -------------------------------------------------------------------------------- ================================================================================ drupal7-views-3.7-1.fc18 (FEDORA-2013-5616) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: Update to upstream 3.7 release. Upstream changelog is at http://drupal.org/node/1965242 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2013 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 3.7-1 - Release 3.7 is a bug-fix release - Upstream changelog is at http://drupal.org/node/1965242 -------------------------------------------------------------------------------- References: [ 1 ] Bug #950345 - drupal7-views-3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=950345 -------------------------------------------------------------------------------- ================================================================================ jd-2.8.6-0.6.svn4109_trunk.fc18 (FEDORA-2013-5628) A 2ch browser -------------------------------------------------------------------------------- Update Information: Update to the latest trunk, including bug fix for samba24 limitation. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - Update to the latest trunk -------------------------------------------------------------------------------- ================================================================================ kernel-3.8.7-201.fc18 (FEDORA-2013-5617) The Linux kernel -------------------------------------------------------------------------------- Update Information: Update to the latest upstream stable release, v3.8.7. -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - 3.8.7-201 - Linux v3.8.7 - Enable CONFIG_LDM_PARTITION (rhbz 948636) * Thu Apr 11 2013 Dave Jones <davej@xxxxxxxxxx> - Print out some extra debug information when we hit bad page tables. * Thu Apr 11 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Fix ALPS backport patch (rhbz 812111) -------------------------------------------------------------------------------- References: [ 1 ] Bug #948636 - Request for including Windows Dynamic Disk support in stock Fedora kernel https://bugzilla.redhat.com/show_bug.cgi?id=948636 [ 2 ] Bug #812111 - ALPS GlidePoint touchpad recognized as PS/2 Generic ! https://bugzilla.redhat.com/show_bug.cgi?id=812111 [ 3 ] Bug #928246 - onboard serial port worked in 3.8.3, disabled in 3.8.4 https://bugzilla.redhat.com/show_bug.cgi?id=928246 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtdeclarative-5.0.1-1.fc18 (FEDORA-2013-5627) Qt5 for Windows - QtDeclarative component -------------------------------------------------------------------------------- Update Information: New packages -------------------------------------------------------------------------------- References: [ 1 ] Bug #858074 - Review Request: mingw-qt5-qtquick1 - Qt5 for Windows - QtQuick1 component https://bugzilla.redhat.com/show_bug.cgi?id=858074 [ 2 ] Bug #858064 - Review Request: mingw-qt5-qtdeclarative - Qt5 for Windows - QtDeclarative component https://bugzilla.redhat.com/show_bug.cgi?id=858064 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtquick1-5.0.1-1.fc18 (FEDORA-2013-5627) Qt5 for Windows - QtQuick1 component -------------------------------------------------------------------------------- Update Information: New packages -------------------------------------------------------------------------------- References: [ 1 ] Bug #858074 - Review Request: mingw-qt5-qtquick1 - Qt5 for Windows - QtQuick1 component https://bugzilla.redhat.com/show_bug.cgi?id=858074 [ 2 ] Bug #858064 - Review Request: mingw-qt5-qtdeclarative - Qt5 for Windows - QtDeclarative component https://bugzilla.redhat.com/show_bug.cgi?id=858064 -------------------------------------------------------------------------------- ================================================================================ musique-1.2.1-1.fc18 (FEDORA-2013-5630) A music player designed by and for people that love music -------------------------------------------------------------------------------- Update Information: Updated to new upstream version 1.2.1 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Germán A. Racca <skytux@xxxxxxxxxxxxxxxxx> - 1.2.1-1 - Updated to new upstream version - Patches re-created and re-named * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #909752 - Update to latest version https://bugzilla.redhat.com/show_bug.cgi?id=909752 -------------------------------------------------------------------------------- ================================================================================ openslide-3.3.3-1.fc18 (FEDORA-2013-5611) C library for reading virtual slides -------------------------------------------------------------------------------- Update Information: OpenSlide 3.3.3 adds minor compatibility improvements for Aperio JP2K and Hamamatsu slides. -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Benjamin Gilbert <bgilbert@xxxxxxxxxxxx> - 3.3.3-1 - New upstream release + Minor compatibility improvements for Aperio JP2K and Hamamatsu slides - Update Source0 URL -------------------------------------------------------------------------------- ================================================================================ owncloud-4.5.9-1.fc18 (FEDORA-2013-5626) Private file sync and share server -------------------------------------------------------------------------------- Update Information: update to version 4.5.9. -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Gregor Tätzner <brummbq@xxxxxxxxxxxxxxxxx> - 4.5.9-1 - 4.5.9 - disable remote access by default -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-3.5.8-1.fc18 (FEDORA-2013-5620) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.8.0 (2013-04-08) =============================== - [bug] MariaDB reported as MySQL - [bug] Incorrect header for Safari 6.0 - [bug] Attempt to open trigger for edit gives NULL - [change] Use HTML5 DOCTYPE - [security] Self-XSS on GIS visualisation page, reported by Janek Vind - [bug] Incorrect keyhandler behaviour #2 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.5.8-1 - Upgrade to 3.5.8 (#949868) -------------------------------------------------------------------------------- References: [ 1 ] Bug #950102 - CVE-2013-1937 phpMyAdmin: XSS flaw when displaying GIS Visualization(s) https://bugzilla.redhat.com/show_bug.cgi?id=950102 -------------------------------------------------------------------------------- ================================================================================ python-sqlalchemy-0.7.10-1.fc18 (FEDORA-2013-5614) Modular and flexible ORM library for python -------------------------------------------------------------------------------- Update Information: Upstream changelog: http://docs.sqlalchemy.org/en/latest/changelog/changelog_07.html#change-0.7.10 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 0.7.10-1 - 0.7.10 updstream bugfix release -------------------------------------------------------------------------------- ================================================================================ qlipper-2.0.1-2.fc18 (FEDORA-2013-5632) Lightweight clipboard history -------------------------------------------------------------------------------- Update Information: Qt-based clipboard history. -------------------------------------------------------------------------------- References: [ 1 ] Bug #949154 - Review Request: qlipper - Qt-based clipboard history https://bugzilla.redhat.com/show_bug.cgi?id=949154 -------------------------------------------------------------------------------- ================================================================================ skf-1.99.3-1.fc18 (FEDORA-2013-5615) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 1.99.3 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.3-1 - 1.99.3 * Wed Mar 27 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.2-0.1.cvs20130327T1317 - Try CVS source for ruby 2.0 support * Sun Mar 17 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.1-2 - F-19: rebuild for ruby 2.0.0 * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.99.1-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ sugar-0.98.7-1.fc18 (FEDORA-2013-5608) Constructionist learning platform -------------------------------------------------------------------------------- Update Information: * Release 0.98.7 (Manuel Quiñones) * Update Sucrose version for 0.98.7 (Manuel Quiñones) * More frame drag and drop fixes - SL #3819 (Manuel Quiñones) * Journal: fix the API for drag and drop - SL #3999 (Manuel Quiñones) * Bring back dragging of elements from the clipboard to the activities - SL #4485 (Manuel Quiñones) * Bring back dragging of elements from the activities to the frame clipboard - SL #3819 (Manuel Quiñones) * Commit from Sugar Labs: Translation System by user cjl.: 390 of 390 messages translated (0 fuzzy). (Pootle daemon) -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.98.7-1 - Sugar 0.98.7 stable release -------------------------------------------------------------------------------- ================================================================================ sugar-fototoon-14-2.fc18 (FEDORA-2013-5612) An activity used to create cartoons -------------------------------------------------------------------------------- Update Information: Version 14 release gtk3 port -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 14-2 - fixed a typo * Sat Apr 13 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 14-1 - Release version 14 - gtk3 port * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 13-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ targetcli-2.1.fb23-1.fc18 (FEDORA-2013-5636) An administration shell for storage targets -------------------------------------------------------------------------------- Update Information: Fix discovery auth Support for tags. -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb23-1 - New upstream release * Wed Apr 10 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb22-1 - New upstream release * Mon Mar 4 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.0.fb21-1 - New upstream release * Tue Feb 26 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.0.fb20-1 - New upstream release * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0rc1.fb19-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-intel-2.21.6-1.fc18 (FEDORA-2013-5634) Xorg X11 Intel video driver -------------------------------------------------------------------------------- Update Information: Upstream 2.21.6 release -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Dave Airlie <airlied@xxxxxxxxxx> 2.21.6-1 - intel 2.21.6 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
