The following Fedora 17 Security updates need testing: Age URL 282 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 94 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 64 https://admin.fedoraproject.org/updates/FEDORA-2013-2143/rubygem-rdoc-3.12-5.fc17 60 https://admin.fedoraproject.org/updates/FEDORA-2013-2315/rubygem-rack-1.4.0-4.fc17 23 https://admin.fedoraproject.org/updates/FEDORA-2013-4174/glibc-2.15-59.fc17 22 https://admin.fedoraproject.org/updates/FEDORA-2013-4234/stunnel-4.55-1.fc17 21 https://admin.fedoraproject.org/updates/FEDORA-2013-4296/tomcat6-6.0.36-1.fc17 17 https://admin.fedoraproject.org/updates/FEDORA-2013-4501/libxslt-1.1.28-1.fc17 14 https://admin.fedoraproject.org/updates/FEDORA-2013-4581/libuser-0.57.6-2.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-4619/polarssl-1.1.6-1.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2013-4827/haproxy-1.4.23-1.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-5051/gsi-openssh-5.9p1-11.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5286/krb5-1.10.2-10.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5440/php-geshi-1.0.8.11-3.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5349/389-ds-base-1.2.11.21-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-5546/plexus-archiver-2.3-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5610/curl-7.24.0-7.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5623/phpMyAdmin-3.5.8-1.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 234 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 63 https://admin.fedoraproject.org/updates/FEDORA-2013-2163/policycoreutils-2.1.13-27.3.fc17 42 https://admin.fedoraproject.org/updates/FEDORA-2013-3304/libvpx-1.2.0-1.fc17 23 https://admin.fedoraproject.org/updates/FEDORA-2013-4140/audit-2.2.3-2.fc17 10 https://admin.fedoraproject.org/updates/FEDORA-2013-4730/koji-1.8.0-1.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-5001/selinux-policy-3.10.0-169.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4958/cryptopp-5.6.2-2.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-4977/livecd-tools-17.16-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5287/libogg-1.3.0-5.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5288/python-pycurl-7.19.0-11.1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-5101/analitza-4.10.2-1.fc17,ark-4.10.2-1.fc17,audiocd-kio-4.10.2-1.fc17,blinken-4.10.2-1.fc17,bomber-4.10.2-1.fc17,bovo-4.10.2-1.fc17,cantor-4.10.2-1.fc17,dragon-4.10.2-1.fc17,filelight-4.10.2-1.fc17,granatier-4.10.2-1.fc17,gwenview-4.10.2-1.fc17,jovie-4.10.2-1.fc17,juk-4.10.2-1.fc17,kaccessible-4.10.2-1.fc17,kactivities-4.10.2-1.fc17,kajongg-4.10.2-1.fc17,kalgebra-4.10.2-1.fc17,kalzium-4.10.2-1.fc17,kamera-4.10.2-1.fc17,kanagram-4.10.2-1.fc17,kapman-4.10.2-1.fc17,kate-4.10.2-1.fc17,katomic-4.10.2-1.fc17,kblackbox-4.10.2-1.fc17,kblocks-4.10.2-1.fc17,kbounce-4.10.2-1.fc17,kbreakout-4.10.2-1.fc17,kbruch-4.10.2-1.fc17,kcalc-4.10.2-1.fc17,kcharselect-4.10.2-1.fc17,kcolorchooser-4.10.2-1.fc17,kdeaccessibility-4.10.2-1.fc17,kdeadmin-4.10.2-1.fc17,kdeartwork-4.10.2-1.fc17,kde-baseapps-4.10.2-1.fc17,kde-base-artwork-4.10.2-1.fc17,kdebindings-4.10.2-1.fc17,kdeedu-4.10.2-1.fc17,kdegames-4.10.2-1.fc17,kdegraphics-4.10.2-1.fc17,kdegraphics-mobipocket-4.10.2-1.fc17,kdegraphics-strigi-analyzer-4.10.2-1.fc17,kdegraphics-thumbnailers-4.10.2-1.fc17,kde-l10n-4.10.2-1.fc17,kdelibs-4.10.2-1.fc17,kdemultimedia-4.10.2-1.fc17,kdenetwork-4.10.2-1.fc17,kdepim-4.10.2-2.fc17,kdepimlibs-4.10.2-1.fc17,kdepim-runtime-4.10.2-1.fc17,kdeplasma-addons-4.10.2-1.fc17,kde-print-manager-4.10.2-1.fc17,kde-runtime-4.10.2-1.fc17,kdesdk-4.10.2-1.fc17,kdetoys-4.10.2-1.fc17,kdeutils-4.10.2-1.fc17,kde-wallpapers-4.10.2-1.fc17,kde-workspace-4.10.2-1.fc17,kdf-4.10.2-1.fc17,kdiamond-4.10.2-1.fc17,kfloppy-4.10.2-1.fc17,kfourinline-4.10.2-1.fc17,kgamma-4.10.2-1.fc17,kgeography-4.10.2-1.fc17,kgoldrunner-4.10.2-1.fc17,kgpg-4.10.2-1.fc17,khangman-4.10.2-1.fc17,kig-4.10.2-1.fc17,kigo-4.10.2-1.fc17,killbots-4.10.2-1.fc17,kimono-4.10.2-1.fc17,kiriki-4.10.2-1.fc17,kiten-4.10.2-1.fc17,kjumpingcube-4.10.2-1.fc17,klettres-4.10.2-1.fc17,klickety-4.10.2-1.fc17,klines-4.10.2-1.fc17,kmag-4.10.2-1.fc17,kmahjongg-4.10.2-1.fc17,kmines-4.10.2-1.fc17,kmix-4.10.2-1.fc17,kmousetool-4.10.2-1.fc17,kmouth-4.10.2-1.fc17,kmplot-4. 10.2-1.fc17,knavalbattle-4.10.2-1.fc17,knetwalk-4.10.2-1.fc17,kolf-4.10.2-1.fc17,kollision-4.10.2-1.fc17,kolourpaint-4.10.2-1.fc17,konquest-4.10.2-1.fc17,konsole-4.10.2-1.fc17,kpat-4.10.2-1.fc17,kremotecontrol-4.10.2-1.fc17,kreversi-4.10.2-1.fc17,kross-interpreters-4.10.2-1.fc17,kruler-4.10.2-1.fc17,ksaneplugin-4.10.2-1.fc17,kscd-4.10.2-1.fc17,kshisen-4.10.2-1.fc17,ksirk-4.10.2-1.fc17,ksnakeduel-4.10.2-1.fc17,ksnapshot-4.10.2-1.fc17,kspaceduel-4.10.2-1.fc17,ksquares-4.10.2-1.fc17,kstars-4.10.2-1.fc17,ksudoku-4.10.2-1.fc17,ktimer-4.10.2-1.fc17,ktouch-4.10.2-1.fc17,ktuberling-4.10.2-1.fc17,kturtle-4.10.2-1.fc17,kubrick-4.10.2-1.fc17,kwallet-4.10.2-1.fc17,kwordquiz-4.10.2-1.fc17,libkcddb-4.10.2-1.fc17,libkcompactdisc-4.10.2-1.fc17,libkdcraw-4.10.2-1.fc17,libkdeedu-4.10.2-1.fc17,libkdegames-4.10.2-1.fc17,libkexiv2-4.10.2-1.fc17,libkipi-4.10.2-1.fc17,libkmahjongg-4.10.2-1.fc17,libksane-4.10.2-1.fc17,lskat-4.10.2-1.fc17,marble-4.10.2-1.fc17,nepomuk-core-4.10.2-2.fc17,nepomuk-widgets-4.10.2-1.fc17,okular-4.10.2-1.fc17,oxygen-icon-theme-4.10.2-1.fc17,pairs-4.10.2-1.fc17,palapeli-4.10.2-1.fc17,parley-4.10.2-1.fc17,picmi-4.10.2-1.fc17,pykde4-4.10.2-1.fc17,qyoto-4.10.2-1.fc17,rocs-4.10.2-1.fc17,ruby-korundum-4.10.2-1.fc17,ruby-qt-4.10.2-1.fc17,smokegen-4.10.2-1.fc17,smokekde-4.10.2-1.fc17,smokeqt-4.10.2-1.fc17,step-4.10.2-1.fc17,superkaramba-4.10.2-1.fc17,svgpart-4.10.2-1.fc17,sweeper-4.10.2-1.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5476/perl-5.14.4-225.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-5353/abrt-2.1.3-2.fc17,libreport-2.1.3-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5619/kernel-3.8.7-100.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-5610/curl-7.24.0-7.fc17 The following builds have been pushed to Fedora 17 updates-testing 3Depict-0.0.13-1.fc17 curl-7.24.0-7.fc17 drupal7-views-3.7-1.fc17 jd-2.8.6-0.6.svn4109_trunk.fc17 kernel-3.8.7-100.fc17 musique-1.2.1-1.fc17 openslide-3.3.3-1.fc17 phpMyAdmin-3.5.8-1.fc17 python-sqlalchemy-0.7.10-1.fc17 qlipper-2.0.1-2.fc17 skf-1.99.3-1.fc17 sugar-fototoon-14-2.fc17 Details about builds: ================================================================================ 3Depict-0.0.13-1.fc17 (FEDORA-2013-5631) Valued 3D point cloud visualization and analysis -------------------------------------------------------------------------------- Update Information: New Upstream version -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 D Haley <mycae(a!t)gmx.com> - 0.0.13-1 - Update to 0.0.13 * Sat Mar 23 2013 D Haley <mycae(a!t)gmx.com> - 0.0.12-4 - Add aarch 64 patch for bug 924960, until next version * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.0.12-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ curl-7.24.0-7.fc17 (FEDORA-2013-5610) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: fix cookie tailmatching to prevent cross-domain leakage (CVE-2013-1944) -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Kamil Dudka <kdudka@xxxxxxxxxx> 7.24.0-7 - fix cookie tailmatching to prevent cross-domain leakage (CVE-2013-1944) -------------------------------------------------------------------------------- References: [ 1 ] Bug #950577 - CVE-2013-1944 curl: Cookie domain suffix match vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=950577 -------------------------------------------------------------------------------- ================================================================================ drupal7-views-3.7-1.fc17 (FEDORA-2013-5609) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: Update to upstream 3.7 release. Upstream changelog is at http://drupal.org/node/1965242 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2013 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 3.7-1 - Release 3.7 is a bug-fix release - Upstream changelog is at http://drupal.org/node/1965242 -------------------------------------------------------------------------------- References: [ 1 ] Bug #950345 - drupal7-views-3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=950345 -------------------------------------------------------------------------------- ================================================================================ jd-2.8.6-0.6.svn4109_trunk.fc17 (FEDORA-2013-5613) A 2ch browser -------------------------------------------------------------------------------- Update Information: Update to the latest trunk, including bug fix for samba24 limitation. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 10 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - Update to the latest trunk -------------------------------------------------------------------------------- ================================================================================ kernel-3.8.7-100.fc17 (FEDORA-2013-5619) The Linux kernel -------------------------------------------------------------------------------- Update Information: Rebase to latest stable release 3.8.7 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Dave Jones <davej@xxxxxxxxxx> - 3.8.7-100 - 3.8.7 dropped: HID-magicmouse-fix-race-between-input_register-and-probe.patch dropped: 0001-drm-i915-add-quirk-to-invert-brightness-on-eMachines.patch * Fri Apr 12 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Enable CONFIG_LDM_PARTITION (rhbz 948636) * Thu Apr 11 2013 Dave Jones <davej@xxxxxxxxxx> - Print out some extra debug information when we hit bad page tables. * Thu Apr 11 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Fix ALPS backport patch (rhbz 812111) * Tue Apr 9 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - CVE-2013-1929 tg3: len overflow in VPD firmware parsing (rhbz 949932 949946) - Backport intel brightness quirk for emachines (rhbz 871932) * Mon Apr 8 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - Enable CMA on ARM tegra - Minor tweeks to ARM OMAP * Mon Apr 8 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Add patch from Benjamin Tissoires to fix race in HID magicmouse (rhbz 908604) * Fri Apr 5 2013 Justin M. Forbes <jforbes@xxxxxxxxxx> - Linux v3.8.6 * Wed Apr 3 2013 Dave Jones <davej@xxxxxxxxxx> - Enable MTD_CHAR/MTD_BLOCK (Needed for SFC) Enable 10gigE on 64-bit only. * Tue Apr 2 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Add support for Atheros 04ca:3004 bluetooth devices (again) (rhbz 844750) - Enable CONFIG_SCSI_DMX3191D (rhbz 919874) * Mon Apr 1 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Enable CONFIG_MCE_INJECT (rhbz 927353) * Thu Mar 28 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - 3.8.5-101 - Linux v3.8.5 * Tue Mar 26 2013 Justin M. Forbes <jforbes@xxxxxxxxxx> - Fix child thread introspection of of /proc/self/exe (rhbz 927469) * Tue Mar 26 2013 Josh Boyer <jwboyer@xxxxxxxxxx> - Add quirk for Realtek card reader to avoid 10 sec boot delay (rhbz 806587) - Add quirk for MSI keyboard backlight to avoid 10 sec boot delay (rhbz 907221) * Mon Mar 25 2013 Justin M. Forbes <jforbes@xxxxxxxxxx> - disable whci-hcd since it doesnt seem to have users (rhbz 919289) -------------------------------------------------------------------------------- ================================================================================ musique-1.2.1-1.fc17 (FEDORA-2013-5624) A music player designed by and for people that love music -------------------------------------------------------------------------------- Update Information: Updated to new upstream version 1.2.1 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Germán A. Racca <skytux@xxxxxxxxxxxxxxxxx> - 1.2.1-1 - Updated to new upstream version - Patches re-created and re-named * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #909752 - Update to latest version https://bugzilla.redhat.com/show_bug.cgi?id=909752 -------------------------------------------------------------------------------- ================================================================================ openslide-3.3.3-1.fc17 (FEDORA-2013-5635) C library for reading virtual slides -------------------------------------------------------------------------------- Update Information: OpenSlide 3.3.3 adds minor compatibility improvements for Aperio JP2K and Hamamatsu slides. -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Benjamin Gilbert <bgilbert@xxxxxxxxxxxx> - 3.3.3-1 - New upstream release + Minor compatibility improvements for Aperio JP2K and Hamamatsu slides - Update Source0 URL -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-3.5.8-1.fc17 (FEDORA-2013-5623) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.8.0 (2013-04-08) =============================== - [bug] MariaDB reported as MySQL - [bug] Incorrect header for Safari 6.0 - [bug] Attempt to open trigger for edit gives NULL - [change] Use HTML5 DOCTYPE - [security] Self-XSS on GIS visualisation page, reported by Janek Vind - [bug] Incorrect keyhandler behaviour #2 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 3.5.8-1 - Upgrade to 3.5.8 (#949868) -------------------------------------------------------------------------------- References: [ 1 ] Bug #950102 - CVE-2013-1937 phpMyAdmin: XSS flaw when displaying GIS Visualization(s) https://bugzilla.redhat.com/show_bug.cgi?id=950102 -------------------------------------------------------------------------------- ================================================================================ python-sqlalchemy-0.7.10-1.fc17 (FEDORA-2013-5621) Modular and flexible ORM library for python -------------------------------------------------------------------------------- Update Information: Upstream changelog: http://docs.sqlalchemy.org/en/latest/changelog/changelog_07.html#change-0.7.10 -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 0.7.10-1 - 0.7.10 updstream bugfix release -------------------------------------------------------------------------------- ================================================================================ qlipper-2.0.1-2.fc17 (FEDORA-2013-5622) Lightweight clipboard history -------------------------------------------------------------------------------- Update Information: Qt-based clipboard history. -------------------------------------------------------------------------------- References: [ 1 ] Bug #949154 - Review Request: qlipper - Qt-based clipboard history https://bugzilla.redhat.com/show_bug.cgi?id=949154 -------------------------------------------------------------------------------- ================================================================================ skf-1.99.3-1.fc17 (FEDORA-2013-5625) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 1.99.3 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 12 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.3-1 - 1.99.3 * Wed Mar 27 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.2-0.1.cvs20130327T1317 - Try CVS source for ruby 2.0 support * Sun Mar 17 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.99.1-2 - F-19: rebuild for ruby 2.0.0 * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.99.1-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ sugar-fototoon-14-2.fc17 (FEDORA-2013-5629) An activity used to create cartoons -------------------------------------------------------------------------------- Update Information: Version 14 release gtk3 port -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 13 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 14-2 - fixed a typo * Sat Apr 13 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 14-1 - Release version 14 - gtk3 port * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 13-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
