The following Fedora 17 Security updates need testing: Age URL 303 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 115 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 85 https://admin.fedoraproject.org/updates/FEDORA-2013-2143/rubygem-rdoc-3.12-5.fc17 81 https://admin.fedoraproject.org/updates/FEDORA-2013-2315/rubygem-rack-1.4.0-4.fc17 44 https://admin.fedoraproject.org/updates/FEDORA-2013-4174/glibc-2.15-59.fc17 43 https://admin.fedoraproject.org/updates/FEDORA-2013-4234/stunnel-4.55-1.fc17 42 https://admin.fedoraproject.org/updates/FEDORA-2013-4296/tomcat6-6.0.36-1.fc17 38 https://admin.fedoraproject.org/updates/FEDORA-2013-4501/libxslt-1.1.28-1.fc17 35 https://admin.fedoraproject.org/updates/FEDORA-2013-4581/libuser-0.57.6-2.fc17 23 https://admin.fedoraproject.org/updates/FEDORA-2013-5440/php-geshi-1.0.8.11-3.fc17 23 https://admin.fedoraproject.org/updates/FEDORA-2013-5349/389-ds-base-1.2.11.21-1.fc17 22 https://admin.fedoraproject.org/updates/FEDORA-2013-5546/plexus-archiver-2.3-1.fc17 16 https://admin.fedoraproject.org/updates/FEDORA-2013-5967/xorg-x11-server-1.12.4-7.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-6720/curl-7.24.0-8.fc17 4 https://admin.fedoraproject.org/updates/FEDORA-2013-7000/phpMyAdmin-3.5.8.1-1.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-7144/xmp-3.4.0-11.fc17 3 https://admin.fedoraproject.org/updates/FEDORA-2013-7128/tinc-1.0.21-1.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-7285/php-sabredav-Sabre_DAV-1.6.5-5.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-7305/gpsd-3.9-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7361/libtiff-3.9.7-2.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7432/xen-4.1.5-2.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 255 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 84 https://admin.fedoraproject.org/updates/FEDORA-2013-2163/policycoreutils-2.1.13-27.3.fc17 63 https://admin.fedoraproject.org/updates/FEDORA-2013-3304/libvpx-1.2.0-1.fc17 44 https://admin.fedoraproject.org/updates/FEDORA-2013-4140/audit-2.2.3-2.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-6278/nss-3.14.3-2.fc17 9 https://admin.fedoraproject.org/updates/FEDORA-2013-6636/kde-settings-4.8-25.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-6720/curl-7.24.0-8.fc17 8 https://admin.fedoraproject.org/updates/FEDORA-2013-6750/xorg-x11-drv-synaptics-1.6.3-3.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-7291/dosfstools-3.0.16-3.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7362/abrt-2.1.4-1.fc17,libreport-2.1.4-1.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7364/qt-4.8.4-17.fc17 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7361/libtiff-3.9.7-2.fc17 The following builds have been pushed to Fedora 17 updates-testing PyQt4-4.10.1-4.fc17 cura-13.04-1.fc17 pdns-recursor-3.5.1-1.fc17 sidc-gui-0.4-2.fc17 sip-4.14.6-1.fc17 xen-4.1.5-2.fc17 Details about builds: ================================================================================ PyQt4-4.10.1-4.fc17 (FEDORA-2013-6827) Python bindings for Qt4 -------------------------------------------------------------------------------- Update Information: New sip/PyQt4 releases, see also: http://www.riverbankcomputing.com/news/sip-4146 http://www.riverbankcomputing.com/news/pyqt-4101 -------------------------------------------------------------------------------- ChangeLog: * Fri May 3 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.1-4 - fix dbus/mainloop hacks (#957867) * Thu May 2 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.1-3 - ImportError: cannot import name uic (#958736) * Fri Apr 26 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.1-2 - filter private shared objects - %{python_sitelib}/dbus/mainloop/qt.so should be in %python_sitearch (#957260) - .spec cleanup - -assistant subpkg * Mon Apr 22 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10.1-1 - 4.10.1 * Tue Apr 2 2013 Than Ngo <than@xxxxxxxxxx> - 4.10-3 - adapt rhel patch * Fri Mar 22 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.10-2 - introduce qscintilla, webkit feature macros -------------------------------------------------------------------------------- References: [ 1 ] Bug #923233 - [abrt] ninja-ide-2.1.1-4.fc18: highlighter.py:326:realtime_highlight:AttributeError: 'QTextBlockUserData' object has no attribute 'clear_data' https://bugzilla.redhat.com/show_bug.cgi?id=923233 [ 2 ] Bug #957260 - PyQt4: %{python_sitelib}/dbus/mainloop/qt.so should be in %python_sitearch https://bugzilla.redhat.com/show_bug.cgi?id=957260 -------------------------------------------------------------------------------- ================================================================================ cura-13.04-1.fc17 (FEDORA-2013-7430) 3D printer control software -------------------------------------------------------------------------------- Update Information: Cure can slice now, alsu updated to the latest version 3D printer control software -------------------------------------------------------------------------------- References: [ 1 ] Bug #901659 - Review Request: cura - 3D printer control software https://bugzilla.redhat.com/show_bug.cgi?id=901659 -------------------------------------------------------------------------------- ================================================================================ pdns-recursor-3.5.1-1.fc17 (FEDORA-2013-7429) Modern, advanced and high performance recursing/non authoritative name server -------------------------------------------------------------------------------- Update Information: - Update to 3.5.1 -------------------------------------------------------------------------------- ChangeLog: * Fri May 3 2013 Morten Stevens <mstevens@xxxxxxxxxxxxxxx> - 3.5.1-1 - Update to 3.5.1 -------------------------------------------------------------------------------- ================================================================================ sidc-gui-0.4-2.fc17 (FEDORA-2013-7437) Sudden ionospheric disturbance collector (sidc) GUI -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #907501 - Review Request: sidc-gui - Sudden ionospheric disturbance collector (sidc) GUI https://bugzilla.redhat.com/show_bug.cgi?id=907501 -------------------------------------------------------------------------------- ================================================================================ sip-4.14.6-1.fc17 (FEDORA-2013-6827) SIP - Python/C++ Bindings Generator -------------------------------------------------------------------------------- Update Information: New sip/PyQt4 releases, see also: http://www.riverbankcomputing.com/news/sip-4146 http://www.riverbankcomputing.com/news/pyqt-4101 -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.14.6-1 - sip-4.14.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #923233 - [abrt] ninja-ide-2.1.1-4.fc18: highlighter.py:326:realtime_highlight:AttributeError: 'QTextBlockUserData' object has no attribute 'clear_data' https://bugzilla.redhat.com/show_bug.cgi?id=923233 [ 2 ] Bug #957260 - PyQt4: %{python_sitelib}/dbus/mainloop/qt.so should be in %python_sitearch https://bugzilla.redhat.com/show_bug.cgi?id=957260 -------------------------------------------------------------------------------- ================================================================================ xen-4.1.5-2.fc17 (FEDORA-2013-7432) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: PV guests can use non-preemptible long latency operations to mount a denial of service attack on the whole system [XSA-45, CVE-2013-1918], malicious guests can inject interrupts through bridge devices to mount a denial of service attack on the whole system [XSA-49, CVE-2013-1952] -------------------------------------------------------------------------------- ChangeLog: * Thu May 2 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.1.5-2 - PV guests can use non-preemptible long latency operations to mount a denial of service attack on the whole system [XSA-45, CVE-2013-1918] (#958918) - malicious guests can inject interrupts through bridge devices to mount a denial of service attack on the whole system [XSA-49, CVE-2013-1952] (#958919) -------------------------------------------------------------------------------- References: [ 1 ] Bug #956163 - CVE-2013-1918 kernel: xen: Several long latency operations are not preemptible https://bugzilla.redhat.com/show_bug.cgi?id=956163 [ 2 ] Bug #956309 - CVE-2013-1952 kernel: xen: VT-d interrupt remapping source validation flaw for bridges https://bugzilla.redhat.com/show_bug.cgi?id=956309 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
