The following Fedora 17 Security updates need testing: Age URL 291 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 103 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 73 https://admin.fedoraproject.org/updates/FEDORA-2013-2143/rubygem-rdoc-3.12-5.fc17 69 https://admin.fedoraproject.org/updates/FEDORA-2013-2315/rubygem-rack-1.4.0-4.fc17 32 https://admin.fedoraproject.org/updates/FEDORA-2013-4174/glibc-2.15-59.fc17 31 https://admin.fedoraproject.org/updates/FEDORA-2013-4234/stunnel-4.55-1.fc17 30 https://admin.fedoraproject.org/updates/FEDORA-2013-4296/tomcat6-6.0.36-1.fc17 26 https://admin.fedoraproject.org/updates/FEDORA-2013-4501/libxslt-1.1.28-1.fc17 23 https://admin.fedoraproject.org/updates/FEDORA-2013-4581/libuser-0.57.6-2.fc17 18 https://admin.fedoraproject.org/updates/FEDORA-2013-4827/haproxy-1.4.23-1.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2013-5440/php-geshi-1.0.8.11-3.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2013-5349/389-ds-base-1.2.11.21-1.fc17 10 https://admin.fedoraproject.org/updates/FEDORA-2013-5546/plexus-archiver-2.3-1.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2013-5610/curl-7.24.0-7.fc17 6 https://admin.fedoraproject.org/updates/FEDORA-2013-5833/mantis-1.2.15-1.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-5967/xorg-x11-server-1.12.4-7.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-6107/php-twig-Twig-1.12.3-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-6211/qemu-1.0.1-6.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-6170/mediawiki-1.19.5-1.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-6316/pdns-recursor-3.5-2.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 243 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 72 https://admin.fedoraproject.org/updates/FEDORA-2013-2163/policycoreutils-2.1.13-27.3.fc17 51 https://admin.fedoraproject.org/updates/FEDORA-2013-3304/libvpx-1.2.0-1.fc17 32 https://admin.fedoraproject.org/updates/FEDORA-2013-4140/audit-2.2.3-2.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-5287/libogg-1.3.0-5.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-5288/python-pycurl-7.19.0-11.1.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2013-5476/perl-5.14.4-225.fc17 11 https://admin.fedoraproject.org/updates/FEDORA-2013-5353/abrt-2.1.3-2.fc17,libreport-2.1.3-1.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2013-5610/curl-7.24.0-7.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-5724/ncurses-5.9-10.20130413.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-6034/kernel-3.8.8-100.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-6278/nss-3.14.3-2.fc17 The following builds have been pushed to Fedora 17 updates-testing CUnit-2.1.3-4.fc17 armadillo-3.810.0-1.fc17 cbootimage-1.0-2.fc17 cobbler-2.4.0-beta5.fc17 csmith-2.1.0-9.fc17 dgc-0.98-8.fc17 gajim-0.15.3-3.fc17 ghc-data-inttrie-0.1.0-1.fc17 gnome-abrt-0.2.11-1.fc17 java-1.7.0-openjdk-1.7.0.19-2.3.9.3.fc17 linsmith-0.99.24-2.fc17 mysql-5.5.31-1.fc17 nss-3.14.3-2.fc17 pdns-recursor-3.5-2.fc17 perl-Sys-CPU-0.54-3.fc17 stompclt-0.9-1.fc17 xscreensaver-5.21-5.fc17 Details about builds: ================================================================================ CUnit-2.1.3-4.fc17 (FEDORA-2013-6317) A unit testing framework for C -------------------------------------------------------------------------------- Update Information: Use autoconf -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 20 2013 Shakthi Kannan <shakthimaan [AT] fedoraproject.org> - 2.1.3-4 - Use autoconf for ARM * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #925208 - CUnit: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=925208 -------------------------------------------------------------------------------- ================================================================================ armadillo-3.810.0-1.fc17 (FEDORA-2013-6287) Fast C++ matrix library with interfaces to LAPACK and ATLAS -------------------------------------------------------------------------------- Update Information: This is a small update that has fixes and new features: * minor fix for multiplication of complex sparse matrices * added fast Fourier transform: fft() * added handling of .imbue() and .transform() by submatrices and subcubes * added batch insertion constructors for sparse matrices This is a new stable release with the following fixes: * workaround for a bug in ATLAS 3.8 on 64 bit systems * faster matrix-vector multiply for small matrices -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 21 2013 José Matos <jamatos@xxxxxxxxxxxxxxxxx> - 3.810.0-1 - Update to latest stable version * Sun Apr 14 2013 José Matos <jamatos@xxxxxxxxxxxxxxxxx> - 3.800.2-1 - Update to latest stable version -------------------------------------------------------------------------------- ================================================================================ cbootimage-1.0-2.fc17 (FEDORA-2013-6321) Tools to dump and generate boot config table on Tegra devices -------------------------------------------------------------------------------- Update Information: Tools to dump and generate boot config table on Tegra devices -------------------------------------------------------------------------------- ================================================================================ cobbler-2.4.0-beta5.fc17 (FEDORA-2013-6281) Boot server configurator -------------------------------------------------------------------------------- Update Information: New upstream release New upstream release New upstream release New upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 James Cammarata <jimi@xxxxxxxx> 2.4.0-beta5 - A few bugfixes and rebuilding the RPM because of a goof (jimi@xxxxxxxx) * Wed Apr 3 2013 James Cammarata <jimi@xxxxxxxx> 2.4.0-beta4 - 2.4.0-beta4 release * Wed Dec 12 2012 James Cammarata <jimi@xxxxxxxx> 2.4.0-beta3 - New release 2.4.0-beta3 * Thu Oct 11 2012 James Cammarata <jimi@xxxxxxxx> 2.4.0-beta2 - Modified spec version/release to be 2.4.0-beta2 (jimi@xxxxxxxx) - fixing up a bad commit merge (jimi@xxxxxxxx) * Thu Oct 11 2012 James Cammarata <jimi@xxxxxxxx> 2.4.0-beta1 - Beta Release 1 of 2.4.0 - BUGFIX - Issue #329 - Systems no longer allow an add with an image for a parent (jimi@xxxxxxxx) - BUGFIX - Issue #327 - revert 5afcff7 and fix in a more sane way (jimi@xxxxxxxx) - Removed some duplicates created by reapplying a patch (jimi@xxxxxxxx) - BUGFIX - Issue #267 - old python-virtinst does not support --boot (jimi@xxxxxxxx) - Revise install_post_puppet.py to use newer puppet syntax (stephen@xxxxxxxxxxxx) - Get rid of deprecated Puppet syntax so that cobbler works with Puppet 3.0 (stephen@xxxxxxxxxxxx) - Added ubuntu to dist check for named.conf location (daniel.givens@xxxxxxxxxxxxx) - Expanded automatic determination of tftpboot path, isc dhcp and bind service names and config files based on distro. (daniel@xxxxxxxxxxxx) - Make the service name for DHCP and DNS restarts configurable for better portable between distros. (daniel.givens@xxxxxxxxxxxxx) - Serial based on formatted date and revision number (alevy@xxxxxxxxxx) - Correct undefined variable name (jbd@xxxxxxxxxxx) - fix merge Issue #252 BUGFIX and #262 (daikame@xxxxxxxxx) - Add check for valid driver_type before executing qemu-img (jimi@xxxxxxxx) - fix mistake remove import. (daikame@xxxxxxxxx) - move exec method to utils.py, and catch unexpected exception. (daikame@xxxxxxxxx) - not check driver type on create method. (daikame@xxxxxxxxx) - BUGFIX - Issue #305 - Incorrect Kickstart file when gPXE enabled (jimi@xxxxxxxx) - BUGFIX - Issue #304 - Cobbler does not store values correctly for ksmeta Objects were getting flattened improperly, so it was losing escapes/quoting for values with spaces (jimi@xxxxxxxx) - add vmdk and raw file create support. (daikame@xxxxxxxxx) - BUGFIX - Issue #267 - old python-virtinst does not support --boot (jimi@xxxxxxxx) - Modified spec version/release to be 2.4.0-beta-1 (jimi@xxxxxxxx) - Initial commit for mysql backend support (jimi@xxxxxxxx) - BUGFIX - Issue #277 - move webroot to /srv/www for debian/ubuntu (jimi@xxxxxxxx) - FEATURE - adding 'zonetype' variable for DNS zone rendering (jimi@xxxxxxxx) - BUGFIX - Issue #278 - cobbler import fails for ubuntu images due to rsync args (jimi@xxxxxxxx) - BUGFIX - Issue #285 - update cobbler man page for incorrect options (jimi@xxxxxxxx) - BUGFIX - Issue #241 - adding distro with blank name via XMLRPC should not work (jimi@xxxxxxxx) - BUGFIX - Issue #272 - allow anamon to log entries when building systems based on profiles (no corresponding system record) (jimi@xxxxxxxx) - BUGFIX - Issue #252 - fuzzy match on lvs name returns a false match preventing LV creation (jimi@xxxxxxxx) - BUGFIX - Issue #287 - patch to allow templar to work without a config, which was breaking the tftpd.py script (jimi@xxxxxxxx) - add qcow2 driver type (daikame@xxxxxxxxx) - fix koan qemu-machine-type param test. (daikame@xxxxxxxxx) - Only cosmetic cleanup - removed commands that were commented out, added spaces for more clear code (flaks@xxxxxxx) - Modified sample.seed to make use kickstart_start and kickstart_done snippets for debian. As a result the following cobbler features work for debian: - prevent net boot looping - cobbler status reflects debian installations - preseed file is downloaded a nd saved on the installed system as /var/log/cobbler.seed Also made download_config_files_deb snippet, make use of late_command New post_run_deb snippet allows to execute post installation script. (flaks@xxxxxxx) - Some changes for testing (jimi@xxxxxxxx) - Minor fix for urlparse on older pythons (>2.5) (jimi@xxxxxxxx) - FEATURE - Issue #253 - Use PEERDNS=no for DHCP interfaces when name servers are specified (jimi@xxxxxxxx) - install-tree for debian/ubuntu modified to take tree= from meta data. http, ftp and nfs remote tree locations supported (flaks@xxxxxxx) - add support of custom logical volume name (daikame@xxxxxxxxx) - Partial revert of 87acfc8b, and a minor change to bring the koan extra-args inline with the PXE args (jimi@xxxxxxxx) - New default preseed, and a few minor changes to make ubuntu auto install work better (jimi@xxxxxxxx) - Add support for qemu machine type to emulate (option --qemu-machine-type). (isaoshimizu@xxxxxxxxx) - Modern x86 kernels have 2048 char limit and this is needed to support configurations with kickstart+NIC kernel params. Otherwise koan refuses to accept the param list. (oliver@xxxxxxxx) - Allow koan's -S option to work for SuSE breed. Also remove -S for breed=None, as I assume "Red Hat" is not a sane assumption for all Distros without a breed. (oliver@xxxxxxxx) - Only add a udev net rule for an interface if the MAC is set. This fixes behaviour whereby a dummy udev rule at eth0 forces the first NIC to get eth1 post-install. (oliver@xxxxxxxx) - Make the domainname setting be the full eth0 DNS Name, minus the first dotted part (and not the FQDN). (oliver@xxxxxxxx) - BUGFIX - Issue #252 - fuzzy match on lvs name returns a false match preventing LV creation (jimi@xxxxxxxx) - Added back in the filesystem loader. (oliver@xxxxxxxx) - BUGFIX - Issue #247 - Reposync does not work from the web interface (jimi@xxxxxxxx) - BUGFIX - Issue #246 - CentOS 5.x install fence_tools to /sbin/ (jimi@xxxxxxxx) - Fix post_report trigger typo (jimi@xxxxxxxx) - Some fixes for koan running with an old virt-install (jimi@xxxxxxxx) - Define pxe_menu_items variable when creating PXE files for systems (jthiltges2@xxxxxxx) - Refactor PXE and GRUB menu item creation into a separate function (jthiltges2@xxxxxxx) - django 1.4 and later have deprecated the old TEMPLATE_LOADERS and replaced them with a new app_directories.Loader (oliver@xxxxxxxx) - Add support for UEFI boot to the subnet, but not for defined systems yet. (erinn.looneytriggs@xxxxxxxxx) - Fix redhat import whitelist for Fedora 17 (jimi@xxxxxxxx) - Fix unittest on the case of haven't virt-install libs. (daikame@xxxxxxxxx) - os_version for debian should be similar to ubunty for virt-install to work changed tree in app.py so that I can use debian mirror different from cobbler server (flaks@xxxxxxx) - fedora 17 changed the output of ifconfig command. This will make IFNAME set in snippets again (flaks@xxxxxxx) - remove edit for now (flaks@xxxxxxx) - Fixed snippets for bonded_bridge_slave and a few other fixes for koan/web GUI (jimi@xxxxxxxx) - Initial support for bonded_bridge_slave type. TODO: modifying snippets to actually make it work... (jimi@xxxxxxxx) - The webui_sessions directory belongs only to cobbler-web (chutzimir@xxxxxxxxx) - RPM: put cobbler*.conf files only in /etc/httpd/conf.d (cristian.ciupitu@xxxxxxxxx) - better fix for pull request #228 (jorgen.maas@xxxxxxxxx) - make rpms failed because the misc/ directory containing the augeas lense could not be found. this simple diff fixes that. (jorgen.maas@xxxxxxxxx) - Ubuntu actually requires auto=true in kopts See http://serverfault.com/a/144290/39018 (ekirpichov@xxxxxxxxx) - Whitespace cleanup for the new openvz stuff (jimi@xxxxxxxx) - Remove dead code (useless imports) (cristian.ciupitu@xxxxxxxxx) - BUGFIX extra-args option problems (daikame@xxxxxxxxx) - FIX koan virt-install tests. (daikame@xxxxxxxxx) - added debian support to prevent net boot looping (flaks@xxxxxxx) - README.openvz: - added (nvrhood@xxxxxxxxx) - scripts/ovz-install: - added support for "services" kickstart option - corrected repos and installation source processing (nvrhood@xxxxxxxxx) - cobbler.spec, setup.py: - added scripts/ovz-install (nvrhood@xxxxxxxxx) - koan/openvzcreate.py, scripts/ovz-install: - changes in copyright notice (nvrhood@xxxxxxxxx) - koan/app.py: - bug in koan: size of freespace on VG expressed as float with comma, but need fload with point (nvrhood@xxxxxxxxx) - koan/app.py: - added type "openvz" (nvrhood@xxxxxxxxx) - cobbler/collection.py: - openvz containers doesn't need to boot from PXE, so we prevent PXE-menu creation for such profiles. (nvrhood@xxxxxxxxx) - cobbler/item_profile.py, cobbler/utils.py: - added "openvz" virtualization type (nvrhood@xxxxxxxxx) - cobbler/item_system.py: - added openvz for virt_type (nvrhood@xxxxxxxxx) - [BUGFIX] template errors can hit an exception path that references an undefined variable (jimi@xxxxxxxx) - If the call to int() fails, inum has no value, thus the reference to inum in the except clause causes an UnboundLocalError when it tries to reference inum. (joshua@xxxxxxxxxxx) - Add new ubuntu (alpha) version to codes.py (jorgen.maas@xxxxxxxxx) - Not all remove current ifcfg- post_install_network_config (me@xxxxxxxx) - Update systemctl script to resolve some issues (jimi@xxxxxxxx) - More spec fixes (jimi@xxxxxxxx) - Removing replicate_use_default_rsync_options setting and setting replicate_rsync_options to existing rsync default. Issue #58 (john@xxxxxxxxxxxxxxxx) - Commit for RFE: Expose rsync options during replication. Issue #58 (john@xxxxxxxxxxxxxxxx) - Yet more HTML/CSS fixes, cleaning up some overly large inputs caused by other CSS changes (jimi@xxxxxxxx) - More HTML/CSS improvements for new weblayout (jimi@xxxxxxxx) - CSS improvements for the tabbed layout (jimi@xxxxxxxx) - Fix for settings edit using the new tab format (jimi@xxxxxxxx) - Added a cancel button to replace the reset button (jimi@xxxxxxxx) - Fix saving of multiselect fields (jimi@xxxxxxxx) - Modification to generic_edit template to use tabs for categories plus some miscellaneous cleanup (jimi@xxxxxxxx) - Adding an example line for redhat imports to the whitelist file (jimi@xxxxxxxx) - Another minor fix for suse imports - fixing up name when using --available-as (already done in other import modules) - allowing multiple arch imports (also already done in other imports) (jimi@xxxxxxxx) - Some fixups for suse using --available-as (jimi@xxxxxxxx) - Fix for import when using --available-as - currently rsyncs full remote tree, changing that to only import files in a white list - some modifications to import modules to clean some things up and make available-as work better - fix in utils.py for path_tail, which was not working right and appending the full path (jimi@xxxxxxxx) - Run the same sed command on the default distributed config file to ensure consistent indentation (jimi@xxxxxxxx) - Add setting to enable/disable dynamic settings changes Adding cobblersettings.aug to distributed files, since we need a copy that doesn't insert tabs Added a "cobbler check" that checks if dynamic settings is enabled and prints a sed command to cleanup the settings file spacing/indents (jimi@xxxxxxxx) - Change cli command "settings" to "setting" to match other commands (which are not plurarlized) (jimi@xxxxxxxx) - Removing commented-out try/except block in config.py, didn't mean to commit this (jimi@xxxxxxxx) - Fixed/improved CLI reporting for settings (jimi@xxxxxxxx) - Added support for validating setting type when saving Also fixed up the augeas stuff to save lists and hashes correctly (jimi@xxxxxxxx) - Fix for incorrect redirect when login times out when looking at a setting edit (jimi@xxxxxxxx) - Dynamic settings edit support for the web GUI (jimi@xxxxxxxx) - Added ability to write settings file via augeas (jimi@xxxxxxxx) - Initial support for modifying settings live Changed settings do not survive a reboot and revert to what's in /etc/cobbler/settings TODO: * report --name show a single setting * validate settings based on type (string, list, bool, etc.) * web support for editing * persisting settings after change (jimi@xxxxxxxx) - Branch for 2.4.0, updated spec and setup.py (jimi@xxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ csmith-2.1.0-9.fc17 (FEDORA-2013-6315) Tool to generate random C programs for compiler testing -------------------------------------------------------------------------------- Update Information: Use autoconf -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 20 2013 Shakthi Kannan <shakthimaan [AT] fedoraproject dot org> 2.1.0-9 - Use autoconf for ARM * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #925202 - csmith: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=925202 -------------------------------------------------------------------------------- ================================================================================ dgc-0.98-8.fc17 (FEDORA-2013-6308) Digital Gate Compiler -------------------------------------------------------------------------------- Update Information: Use autoconf -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 20 2013 Shakthi Kannan <shakthimaan [AT] fedoraproject.org> - 0.98-8 - Use autoconf for ARM * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.98-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.98-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #925247 - dgc: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=925247 -------------------------------------------------------------------------------- ================================================================================ gajim-0.15.3-3.fc17 (FEDORA-2013-6283) Jabber client written in PyGTK -------------------------------------------------------------------------------- Update Information: This Gajim update fixes a traceback when connecting to a server without SSL support. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 Michal Schmidt <mschmidt@xxxxxxxxxx> - 0.15.3-3 - Fix connecting to non-SSL servers (#953243). - Remove unused patch files. -------------------------------------------------------------------------------- References: [ 1 ] Bug #953243 - Gajim IndexError: list index out of range https://bugzilla.redhat.com/show_bug.cgi?id=953243 -------------------------------------------------------------------------------- ================================================================================ ghc-data-inttrie-0.1.0-1.fc17 (FEDORA-2013-6293) A simple lazy, infinite trie from integers -------------------------------------------------------------------------------- Update Information: Updated to 0.1.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Apr 20 2013 Shakthi Kannan <shakthimaan [AT] fedoraproject dot org> - 0.1.0-1 - Updated to 0.1.0 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #953775 - ghc-data-inttrie-0.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=953775 -------------------------------------------------------------------------------- ================================================================================ gnome-abrt-0.2.11-1.fc17 (FEDORA-2013-6285) A utility for viewing problems that have occurred with the system -------------------------------------------------------------------------------- Update Information: - Introduce expert mode and show 'Analyze' button in that mode - Use last occurrence item for problems sorting - Fix broken keyboard shortcuts - Display 'component' name instead of 'executable' if desktop file is missing - Do not show scrollbar for long links - Move manpage to volume 1 -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 Jakub Filak <jfilak@xxxxxxxxxx> 0.2.11-1 - Enable pylint check only on Fedora - Fix bogus dates in chagelog - Introduce expert mode and show 'Analyze' button in that mode - Use last occurrence item for problems sorting - Fix broken keyboard shortcuts - Fix missing space typo - Martin Milata <mmilata@xxxxxxxxxx> - Compare all DesktopEntry.*() return values to None - Display 'component' name instead of 'executable' if desktop file is missing - Do not show scrollbar for long links - Allow to disable pylint check in configure.ac - Move manpage to volume 1 - Chris Lockfort <clockfort@xxxxxxxxxxx> - Move gnome_abrt module check to module's Makefile - Disable 'Interface not implemented' pylint warning - Configure pylint to produce parseable output -------------------------------------------------------------------------------- ================================================================================ java-1.7.0-openjdk-1.7.0.19-2.3.9.3.fc17 (FEDORA-2013-6303) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: Fix FTBFS on Secondary Arches - updated to updated IcedTea 2.3.9 with fix to one of security fixes - fixed font glyph offset WARNING - this build have not yet updated not-hotspot (arm...)builds! - added client to ghosted classes.jsa - updated to IcedTea 2.3.9 with latest security patches - 920245 CVE-2013-0401 OpenJDK: unspecified sandbox bypass (CanSecWest 2013, AWT) - 920247 CVE-2013-1488 OpenJDK: unspecified sanbox bypass (CanSecWest 2013, Libraries) - 952387 CVE-2013-1537 OpenJDK: remote code loading enabled by default (RMI, 8001040) - 952389 CVE-2013-2415 OpenJDK: temporary files created with insecure permissions (JAX-WS, 8003542) - 952398 CVE-2013-2423 OpenJDK: incorrect setter access checks in MethodHandles (Hostspot, 8009677) - 952509 CVE-2013-2424 OpenJDK: MBeanInstantiator insufficient class access checks (JMX, 8006435) - 952521 CVE-2013-2429 OpenJDK: JPEGImageWriter state corruption (ImageIO, 8007918) - 952524 CVE-2013-2430 OpenJDK: JPEGImageReader state corruption (ImageIO, 8007667) - 952550 CVE-2013-2436 OpenJDK: Wrapper.convert insufficient type checks (Libraries, 8009049) - 952638 CVE-2013-2420 OpenJDK: image processing vulnerability (2D, 8007617) - 952640 CVE-2013-1558 OpenJDK: java.beans.ThreadGroupContext missing restrictions (Beans, 7200507) - 952642 CVE-2013-2422 OpenJDK: MethodUtil trampoline class incorrect restrictions (Libraries, 8009857) - 952645 CVE-2013-2431 OpenJDK: Hotspot intrinsic frames vulnerability (Hotspot, 8004336) - 952646 CVE-2013-1518 OpenJDK: JAXP missing security restrictions (JAXP, 6657673) - 952648 CVE-2013-1557 OpenJDK: LogStream.setDefaultStream() missing security restrictions (RMI, 8001329) - 952649 CVE-2013-2421 OpenJDK: Hotspot MethodHandle lookup error (Hotspot, 8009699) - 952653 CVE-2013-2426 OpenJDK: ConcurrentHashMap incorrectly calls defaultReadObject() method (Libraries, 8009063) - 952656 CVE-2013-2419 OpenJDK: font processing errors (2D, 8001031) - 952657 CVE-2013-2417 OpenJDK: Network InetAddress serialization information disclosure (Networking, 8000724) - 952708 CVE-2013-2383 OpenJDK: font layout and glyph table errors (2D, 8004986) - 952709 CVE-2013-2384 OpenJDK: font layout and glyph table errors (2D, 8004987) - 952711 CVE-2013-1569 OpenJDK: font layout and glyph table errors (2D, 8004994) - buildver sync to b19 - rewritten java-1.7.0-openjdk-java-access-bridge-security.patch - fixed priority (one zero deleted) - unapplied patch2 - added patch107 abrt_friendly_hs_log_jdk7.patch - removed patch2 java-1.7.0-openjdk-java-access-bridge-idlj.patch - removed redundant rm of classes.jsa, ghost is handling it correctly -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 19 2013 Deepak Bhole <dbhole@xxxxxxxxxx> - 1.7.0.19-2.3.9.3.fc17 - Updated 2.1.8 tarball * Thu Apr 18 2013 Deepak Bhole <dbhole@xxxxxxxxxx> - 1.7.0.19-2.3.9.2.fc17 - Updated secondary arches to 2.1.8 - Removed upstreamed Zero allocation patch -------------------------------------------------------------------------------- References: [ 1 ] Bug #953257 - java-1.7.0-openjdk-1.7.0.19-2.3.9.1 is FTBFS on ARM https://bugzilla.redhat.com/show_bug.cgi?id=953257 -------------------------------------------------------------------------------- ================================================================================ linsmith-0.99.24-2.fc17 (FEDORA-2013-6286) A Smith charting program -------------------------------------------------------------------------------- Update Information: Use autoreconf -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 19 2013 Shakthi Kannan <shakthimaan [AT] fedoraproject dot org> - 0.99.24-2 - Use autoreconf -------------------------------------------------------------------------------- References: [ 1 ] Bug #926079 - linsmith: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=926079 -------------------------------------------------------------------------------- ================================================================================ mysql-5.5.31-1.fc17 (FEDORA-2013-6310) MySQL client programs and shared libraries -------------------------------------------------------------------------------- Update Information: Update to MySQL 5.5.31, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-31.html -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 19 2013 Honza Horak <hhorak@xxxxxxxxxx> 5.5.31-1 - Update to MySQL 5.5.31, for various fixes described at http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-31.html -------------------------------------------------------------------------------- ================================================================================ nss-3.14.3-2.fc17 (FEDORA-2013-6278) Network Security Services -------------------------------------------------------------------------------- Update Information: Fix the tools to correctly convert ASCII encoded files lacking headers. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 Kai Engert <kaie@xxxxxxxxxx> - 3.14.3-2 - Add upstream patch to fix rhbz#872761 - Update expired test certificates (fixed in upstream bug 852781) -------------------------------------------------------------------------------- References: [ 1 ] Bug #872761 - Sporadic failure of 'certutil' to convert ASCII cert request to binary . . . https://bugzilla.redhat.com/show_bug.cgi?id=872761 -------------------------------------------------------------------------------- ================================================================================ pdns-recursor-3.5-2.fc17 (FEDORA-2013-6316) Modern, advanced and high performance recursing/non authoritative name server -------------------------------------------------------------------------------- Update Information: - Update to 3.5 - This is a stability, security and bugfix update to 3.3 - Disarm dead code that causes gcc crashes on ARM (rhbz#954192) -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 Morten Stevens <mstevens@xxxxxxxxxxxxxxx> - 3.5-2 - Disarm dead code that causes gcc crashes on ARM (rhbz#954192) * Mon Apr 15 2013 Morten Stevens <mstevens@xxxxxxxxxxxxxxx> - 3.5-1 - Update to 3.5 - Fixes CVE-2012-1193 and another variant of the attack (rhbz#794965) - D.ROOT-SERVERS.NET has a new IP (rhbz#917347) - Enable hardened build as per http://fedoraproject.org/wiki/Packaging:Guidelines#PIE - Enable PrivateTmp as per http://fedoraproject.org/wiki/Features/ServicesPrivateTmp - Fix bogus date in changelog - Fix typo in gecos field - Some rpmlint fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #794963 - CVE-2012-1193 pdns-recursor: Deleted / ghost domain names resolving flaw https://bugzilla.redhat.com/show_bug.cgi?id=794963 -------------------------------------------------------------------------------- ================================================================================ perl-Sys-CPU-0.54-3.fc17 (FEDORA-2013-6290) Getting CPU information -------------------------------------------------------------------------------- Update Information: Disable cpu_type test -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 19 2013 Shakthi Kannan <shakthimaan@xxxxxxxxxxxxxxxxx> - 0.54-3 - Disable cpu_type test * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.54-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Nov 13 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.54-1 - 0.54 bump * Mon Nov 5 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.52-2 - Add support for s390 (CPAN RT #80633) * Fri Nov 2 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.52-1 - 0.52 bump * Fri Jul 20 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.51-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Mon Jun 11 2012 Petr Pisar <ppisar@xxxxxxxxxx> - 0.51-9 - Perl 5.16 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #928059 - perl-Sys-CPU 0.54 tests fail on ARM https://bugzilla.redhat.com/show_bug.cgi?id=928059 -------------------------------------------------------------------------------- ================================================================================ stompclt-0.9-1.fc17 (FEDORA-2013-6300) Versatile STOMP client -------------------------------------------------------------------------------- Update Information: Updating to upstream version 0.9, rhbz #954346. -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 22 2013 Massimo Paladin <massimo.paladin@xxxxxxxxx> 0.9-1 - Update to 0.9, rhbz #954346. -------------------------------------------------------------------------------- ================================================================================ xscreensaver-5.21-5.fc17 (FEDORA-2013-6160) X screen saver and locker -------------------------------------------------------------------------------- Update Information: Some issues are found on several hacks shipped in xscreensaver. Also an issue was reported that when installing gss rpms xscreensaver hacks appears in desktop entry. This new rpm will fix these issues. -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 21 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.21-5 - Don't autostart xscreensaver when mate-screensaver is installed. * Sun Apr 21 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.21-4 - Fix engine crash with one byte ahead access (bug 954115) * Sun Apr 21 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.21-3 - Fix the iteration number for pentomino mode in polyominoes (bug 954077) - Convert maxlife option from 5.20- for fireworkx (bug 953916) - Fix broken Name entry for desktop file of GL hacks (bug 953558) - Add OnlyShownIn entry for desktop files (bug 953558) -------------------------------------------------------------------------------- References: [ 1 ] Bug #954077 - [abrt] xscreensaver-extras-5.21-2.fc19: make_one_sided_pentomino: Process /usr/libexec/xscreensaver/polyominoes was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=954077 [ 2 ] Bug #953916 - [abrt] xscreensaver-extras-5.21-2.fc18: rnd: Process /usr/libexec/xscreensaver/fireworkx was killed by signal 8 (SIGFPE) https://bugzilla.redhat.com/show_bug.cgi?id=953916 [ 3 ] Bug #953558 - Xfce-Panel adds Xscreensaver-Plugins into Panelsection 'Other' (German: Sonstiges) https://bugzilla.redhat.com/show_bug.cgi?id=953558 [ 4 ] Bug #954115 - [abrt] xscreensaver-gl-extras-5.21-2.fc19: make_tables: Process /usr/libexec/xscreensaver/engine was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=954115 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
