The following Fedora 18 Security updates need testing: Age URL 122 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 55 https://admin.fedoraproject.org/updates/FEDORA-2013-3935/puppet-3.1.1-1.fc18 49 https://admin.fedoraproject.org/updates/FEDORA-2013-4243/stunnel-4.55-1.fc18 41 https://admin.fedoraproject.org/updates/FEDORA-2013-4589/tomcat6-6.0.36-2.fc18 36 https://admin.fedoraproject.org/updates/FEDORA-2013-4823/microcode_ctl-2.0-3.fc18 29 https://admin.fedoraproject.org/updates/FEDORA-2013-5472/php-geshi-1.0.8.11-3.fc18 20 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18 14 https://admin.fedoraproject.org/updates/FEDORA-2013-6721/openstack-keystone-2012.2.4-2.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-7135/xmp-3.5.0-3.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-7120/tinc-1.0.21-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-7289/php-sabredav-Sabre_DAV-1.6.5-5.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-7309/gpsd-3.9-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-7369/libtiff-4.0.3-6.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-7426/xen-4.2.2-3.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-7531/openvpn-2.3.1-2.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7714/mediawiki-1.19.6-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7813/curl-7.27.0-10.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 208 https://admin.fedoraproject.org/updates/FEDORA-2012-16107/xorg-x11-drv-qxl-0.1.0-1.fc18 206 https://admin.fedoraproject.org/updates/FEDORA-2012-16207/thunderbird-lightning-1.8-1.fc18,thunderbird-16.0.1-2.fc18 90 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 66 https://admin.fedoraproject.org/updates/FEDORA-2013-3458/iproute-3.6.0-7.fc18,iptables-1.4.18-1.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-7211/libwacom-0.7.1-2.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-6209/ibus-1.5.2-3.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-7131/perl-5.16.3-244.fc18,perl-Digest-1.17-244.fc18,perl-threads-1.86-243.fc18,perl-Version-Requirements-0.101022-243.fc18,perl-Test-Simple-0.98-243.fc18,perl-Carp-1.26-243.fc18,perl-ExtUtils-Manifest-1.61-243.fc18,perl-parent-0.225-243.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-7436/audit-2.3-2.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-7548/gphoto2-2.5.2-1.fc18,libgphoto2-2.5.2-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7720/PackageKit-0.8.8-1.fc18,zif-0.3.6-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7743/selinux-policy-3.11.1-94.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-7692/ntfs-3g-2013.1.13-4.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7791/network-manager-applet-0.9.8.1-3.git20130430.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7810/openldap-2.4.35-4.fc18.1 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7822/dmidecode-2.12-3.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-7357/abrt-2.1.4-3.fc18,libreport-2.1.4-4.fc18 The following builds have been pushed to Fedora 18 updates-testing deluge-1.3.6-2.fc18 e3-2.8-3.fc18 libndp-0.1-1.20130504gitca3c399.fc18 native-platform-0.3-0.2.rc2.fc18 openlmi-networking-0.0.8-1.fc18 python-lxml-3.2.0-1.fc18 python-rtslib-2.1.fb34-1.fc18 salt-0.15.1-1.fc18 targetcli-2.1.fb25-1.fc18 Details about builds: ================================================================================ deluge-1.3.6-2.fc18 (FEDORA-2013-7878) A GTK+ BitTorrent client with support for DHT, UPnP, and PEX -------------------------------------------------------------------------------- Update Information: drop dependency on gnome-python2-gnome and python-simplejson. add dependency on pygame, python-GeoIP and python-setproctitle. -------------------------------------------------------------------------------- ChangeLog: * Thu May 9 2013 Rahul Sundaram <sundaram@xxxxxxxxxxxxxxxxx> - 1.3.6-2 - drop dependency on gnome-python2-gnome and python-simplejson - add dependency on pygame, python-GeoIP and python-setproctitle - fix old bogus date in changelog -------------------------------------------------------------------------------- ================================================================================ e3-2.8-3.fc18 (FEDORA-2013-7868) Text editor with key bindings similar to WordStar, Emacs, pico, nedit, or vi -------------------------------------------------------------------------------- Update Information: Text editor with key bindings similar to WordStar, Emacs, pico, nedit, or vi -------------------------------------------------------------------------------- References: [ 1 ] Bug #785312 - Review Request: e3 - Text editor with key bindings similar to WordStar, Emacs, pico, nedit, or vi https://bugzilla.redhat.com/show_bug.cgi?id=785312 -------------------------------------------------------------------------------- ================================================================================ libndp-0.1-1.20130504gitca3c399.fc18 (FEDORA-2013-7872) Library for Neighbor Discovery Protocol -------------------------------------------------------------------------------- Update Information: Add library for Neighbor Discovery Protocol -------------------------------------------------------------------------------- ================================================================================ native-platform-0.3-0.2.rc2.fc18 (FEDORA-2013-7873) Java bindings for various native APIs -------------------------------------------------------------------------------- Update Information: Initial import (#886846). -------------------------------------------------------------------------------- References: [ 1 ] Bug #886846 - Review Request: native-platform - Java bindings for various native APIs https://bugzilla.redhat.com/show_bug.cgi?id=886846 -------------------------------------------------------------------------------- ================================================================================ openlmi-networking-0.0.8-1.fc18 (FEDORA-2013-7874) CIM providers for network management -------------------------------------------------------------------------------- Update Information: * Support for static routes * Impoved error checking and reporting -------------------------------------------------------------------------------- ChangeLog: * Fri May 10 2013 Radek Novacek <rnovacek@xxxxxxxxxx> 0.0.8-1 - Version 0.0.8 -------------------------------------------------------------------------------- ================================================================================ python-lxml-3.2.0-1.fc18 (FEDORA-2013-7875) ElementTree-like Python bindings for libxml2 and libxslt -------------------------------------------------------------------------------- Update Information: 3.2.0 (2013-04-28) ================== Features added -------------- Bugs fixed ---------- * LP#690319: Leading whitespace could change the behaviour of the string parsing functions in ``lxml.html``. * LP#599318: The string parsing functions in ``lxml.html`` are more robust in the face of uncommon HTML content like framesets or missing body tags. Patch by Stefan Seelmann. * LP#712941: I/O errors while trying to access files with paths that contain non-ASCII characters could raise ``UnicodeDecodeError`` instead of properly reporting the ``IOError``. * LP#673205: Parsing from in-memory strings disabled network access in the default parser and made subsequent attempts to parse from a URL fail. * LP#971754: lxml.html.clean appends 'nofollow' to 'rel' attributes instead of overwriting the current value. * LP#715687: lxml.html.clean no longer discards scripts that are explicitly allowed by the user provided whitelist. Patch by Christine Koppelt. 3.1.2 (2013-04-12) ================== Bugs fixed ---------- * LP#1136509: Passing attributes through the namespace-unaware API of the sax bridge (i.e. the ``handler.startElement()`` method) failed with a ``TypeError``. Patch by Mike Bayer. * LP#1123074: Fix serialisation error in XSLT output when converting the result tree to a Unicode string. * GH#105: Replace illegal usage of ``xmlBufLength()`` in libxml2 2.9.0 by properly exported API function ``xmlBufUse()``. 3.1.1 (2013-03-29) ================== Features added -------------- Bugs fixed ---------- * LP#1160386: Write access to ``lxml.html.FormElement.fields`` raised an AttributeError in Py3. * Illegal memory access during cleanup in incremental xmlfile writer. Other changes ------------- * The externally useless class ``lxml.etree._BaseParser`` was removed from the module dict. -------------------------------------------------------------------------------- ChangeLog: * Fri May 10 2013 Jeffrey Ollie <jeff@xxxxxxxxxx> - 3.2.0-1 - 3.2.0 (2013-04-28) - ================== - - Features added - -------------- - - Bugs fixed - ---------- - - * LP#690319: Leading whitespace could change the behaviour of the string - parsing functions in ``lxml.html``. - - * LP#599318: The string parsing functions in ``lxml.html`` are more robust - in the face of uncommon HTML content like framesets or missing body tags. - Patch by Stefan Seelmann. - - * LP#712941: I/O errors while trying to access files with paths that - contain non-ASCII characters could raise ``UnicodeDecodeError`` instead - of properly reporting the ``IOError``. - - * LP#673205: Parsing from in-memory strings disabled network access in the - default parser and made subsequent attempts to parse from a URL fail. - - * LP#971754: lxml.html.clean appends 'nofollow' to 'rel' attributes instead - of overwriting the current value. - - * LP#715687: lxml.html.clean no longer discards scripts that are explicitly - allowed by the user provided whitelist. Patch by Christine Koppelt. - - 3.1.2 (2013-04-12) - ================== - - Bugs fixed - ---------- - - * LP#1136509: Passing attributes through the namespace-unaware API of - the sax bridge (i.e. the ``handler.startElement()`` method) failed - with a ``TypeError``. Patch by Mike Bayer. - - * LP#1123074: Fix serialisation error in XSLT output when converting - the result tree to a Unicode string. - - * GH#105: Replace illegal usage of ``xmlBufLength()`` in libxml2 2.9.0 - by properly exported API function ``xmlBufUse()``. - - 3.1.1 (2013-03-29) - ================== - - Features added - -------------- - - Bugs fixed - ---------- - - * LP#1160386: Write access to ``lxml.html.FormElement.fields`` raised - an AttributeError in Py3. - - * Illegal memory access during cleanup in incremental xmlfile writer. - - Other changes - ------------- - - * The externally useless class ``lxml.etree._BaseParser`` was removed - from the module dict. * Fri Mar 8 2013 Jeffrey Ollie <jeff@xxxxxxxxxx> - 3.1.0-1 - 3.1.0 (2013-02-10) - ================== - - Features added - -------------- - - * GH#89: lxml.html.clean allows overriding the set of attributes that it - considers 'safe'. Patch by Francis Devereux. - - Bugs fixed - ---------- - - * LP#1104370: ``copy.copy(el.attrib)`` raised an exception. It now returns - a copy of the attributes as a plain Python dict. - - * GH#95: When used with namespace prefixes, the ``el.find*()`` methods - always used the first namespace mapping that was provided for each - path expression instead of using the one that was actually passed - in for the current run. - - * LP#1092521, GH#91: Fix undefined C symbol in Python runtimes compiled - without threading support. Patch by Ulrich Seidl. - - Other changes - ------------- - - - 3.1beta1 (2012-12-21) - ===================== - - Features added - -------------- - - * New build-time option ``--with-unicode-strings`` for Python 2 that - makes the API always return Unicode strings for names and text - instead of byte strings for plain ASCII content. - - * New incremental XML file writing API ``etree.xmlfile()``. - - * E factory in lxml.objectify is callable to simplify the creation of - tags with non-identifier names without having to resort to getattr(). - - Bugs fixed - ---------- - - * When starting from a non-namespaced element in lxml.objectify, searching - for a child without explicitly specifying a namespace incorrectly found - namespaced elements with the requested local name, instead of restricting - the search to non-namespaced children. - - * GH#85: Deprecation warnings were fixed for Python 3.x. - - * GH#33: lxml.html.fromstring() failed to accept bytes input in Py3. - - * LP#1080792: Static build of libxml2 2.9.0 failed due to missing file. - - Other changes - ------------- - - * The externally useless class ``_ObjectifyElementMakerCaller`` was - removed from the module API of lxml.objectify. - - * LP#1075622: lxml.builder is faster for adding text to elements with - many children. Patch by Anders Hammarquist. * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.0.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Mon Oct 15 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 3.0.1-1 - 3.0.1 (2012-10-14) - Bugs fixed - - * LP#1065924: Element proxies could disappear during garbage collection - in PyPy without proper cleanup. - * GH#71: Failure to work with libxml2 2.6.x. - * LP#1065139: static MacOS-X build failed in Py3. * Wed Oct 10 2012 Jeffrey Ollie <jeff@xxxxxxxxxx> - 3.0-1 - 3.0 (2012-10-08) - ================ - - Features added - -------------- - - Bugs fixed - ---------- - - * End-of-file handling was incorrect in iterparse() when reading from - a low-level C file stream and failed in libxml2 2.9.0 due to its - improved consistency checks. - - Other changes - ------------- - - * The build no longer uses Cython by default unless the generated C files - are missing. To use Cython, pass the option "--with-cython". To ignore - the fatal build error when Cython is required but not available (e.g. to - run special setup.py commands that do not actually run a build), pass - "--without-cython". - - - 3.0beta1 (2012-09-26) - ===================== - - Features added - -------------- - - * Python level access to (optional) libxml2 memory debugging features - to simplify debugging of memory leaks etc. - - Bugs fixed - ---------- - - * Fix a memory leak in XPath by switching to Cython 0.17.1. - - * Some tests were adapted to work with PyPy. - - Other changes - ------------- - - * The code was adapted to work with the upcoming libxml2 2.9.0 release. - - - 3.0alpha2 (2012-08-23) - ====================== - - Features added - -------------- - - * The .iter() method of elements now accepts tag arguments like "{*}name" - to search for elements with a given local name in any namespace. With - this addition, all combinations of wildcards now work as expected: - "{ns}name", "{}name", "{*}name", "{ns}*", "{}*" and "{*}*". Note that - "name" is equivalent to "{}name", but "*" is "{*}*". The same change - applies to the .getiterator(), .itersiblings(), .iterancestors(), - .iterdescendants(), .iterchildren() and .itertext() methods, the - strip_attributes(), strip_elements() and strip_tags() functions as well - as the iterparse() function. - - * C14N allows specifying the inclusive prefixes to be promoted to - top-level during exclusive serialisation. - - Bugs fixed - ---------- - - * Passing long Unicode strings into the feed() parser interface failed to - read the entire string. - - Other changes - ------------- - - - 3.0alpha1 (2012-07-31) - ====================== - - Features added - -------------- - - * Initial support for building in PyPy (through cpyext). - - * DTD objects gained an API that allows read access to their - declarations. - - * xpathgrep.py gained support for parsing line-by-line (e.g. - from grep output) and for surrounding the output with a new root - tag. - - * E-factory in lxml.builder accepts subtypes of known data - types (such as string subtypes) when building elements around them. - - * Tree iteration and iterparse() with a selective tag - argument supports passing a set of tags. Tree nodes will be - returned by the iterators if they match any of the tags. - - Bugs fixed - ---------- - - * The .find*() methods in lxml.objectify no longer use XPath - internally, which makes them faster in many cases (especially when - short circuiting after a single or couple of elements) and fixes - some behavioural differences compared to lxml.etree. Note that - this means that they no longer support arbitrary XPath expressions - but only the subset that the ElementPath language supports. - The previous implementation was also redundant with the normal - XPath support, which can be used as a replacement. - - * el.find('*') could accidentally return a comment or processing - instruction that happened to be in the wrong spot. (Same for the - other .find*() methods.) - - * The error logging is less intrusive and avoids a global setup where - possible. - - * Fixed undefined names in html5lib parser. - - * xpathgrep.py did not work in Python 3. - - * Element.attrib.update() did not accept an attrib of - another Element as parameter. - - * For subtypes of ElementBase that make the .text or .tail - properties immutable (as in objectify, for example), inserting text - when creating Elements through the E-Factory feature of the class - constructor would fail with an exception, stating that the text - cannot be modified. - - Other changes - -------------- - - * The code base was overhauled to properly use 'const' where the API - of libxml2 and libxslt requests it. This also has an impact on the - public C-API of lxml itself, as defined in etreepublic.pxd, as - well as the provided declarations in the lxml/includes/ directory. - Code that uses these declarations may have to be adapted. On the - plus side, this fixes several C compiler warnings, also for user - code, thus making it easier to spot real problems again. - - * The functionality of "lxml.cssselect" was moved into a separate PyPI - package called "cssselect". To continue using it, you must install - that package separately. The "lxml.cssselect" module is still - available and provides the same interface, provided the "cssselect" - package can be imported at runtime. - - * Element attributes passed in as an attrib dict or as keyword - arguments are now sorted by (namespaced) name before being created - to make their order predictable for serialisation and iteration. - Note that adding or deleting attributes afterwards does not take - that order into account, i.e. setting a new attribute appends it - after the existing ones. - - * Several classes that are for internal use only were removed - from the lxml.etree module dict: - _InputDocument, _ResolverRegistry, _ResolverContext, _BaseContext, - _ExsltRegExp, _IterparseContext, _TempStore, _ExceptionContext, - __ContentOnlyElement, _AttribIterator, _NamespaceRegistry, - _ClassNamespaceRegistry, _FunctionNamespaceRegistry, - _XPathFunctionNamespaceRegistry, _ParserDictionaryContext, - _FileReaderContext, _ParserContext, _PythonSaxParserTarget, - _TargetParserContext, _ReadOnlyProxy, _ReadOnlyPIProxy, - _ReadOnlyEntityProxy, _ReadOnlyElementProxy, _OpaqueNodeWrapper, - _OpaqueDocumentWrapper, _ModifyContentOnlyProxy, - _ModifyContentOnlyPIProxy, _ModifyContentOnlyEntityProxy, - _AppendOnlyElementProxy, _SaxParserContext, _FilelikeWriter, - _ParserSchemaValidationContext, _XPathContext, - _XSLTResolverContext, _XSLTContext, _XSLTQuotedStringParam - - * Several internal classes can no longer be inherited from: - _InputDocument, _ResolverRegistry, _ExsltRegExp, _ElementUnicodeResult, - _IterparseContext, _TempStore, _AttribIterator, _ClassNamespaceRegistry, - _XPathFunctionNamespaceRegistry, _ParserDictionaryContext, - _FileReaderContext, _PythonSaxParserTarget, _TargetParserContext, - _ReadOnlyPIProxy, _ReadOnlyEntityProxy, _OpaqueDocumentWrapper, - _ModifyContentOnlyPIProxy, _ModifyContentOnlyEntityProxy, - _AppendOnlyElementProxy, _FilelikeWriter, _ParserSchemaValidationContext, - _XPathContext, _XSLTResolverContext, _XSLTContext, - _XSLTQuotedStringParam, _XSLTResultTree, _XSLTProcessingInstruction -------------------------------------------------------------------------------- References: [ 1 ] Bug #874546 - Bad exception in etree.iterparse() https://bugzilla.redhat.com/show_bug.cgi?id=874546 [ 2 ] Bug #929417 - python-lxml-3.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=929417 -------------------------------------------------------------------------------- ================================================================================ python-rtslib-2.1.fb34-1.fc18 (FEDORA-2013-7879) API for Linux kernel LIO SCSI target -------------------------------------------------------------------------------- Update Information: Fix qla2xxx. -------------------------------------------------------------------------------- ChangeLog: * Thu May 9 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb34-1 - New upstream version * Thu May 2 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb33-1 - New upstream version - Update source file location * Tue Apr 16 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb32-2 - Add python3 subpackage -------------------------------------------------------------------------------- ================================================================================ salt-0.15.1-1.fc18 (FEDORA-2013-7869) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: update rpm spec to patch release 0.15.1 -------------------------------------------------------------------------------- ChangeLog: * Wed May 8 2013 Clint Savage <herlo1@xxxxxxxxx> - 0.15.1-1 - Update to patch release 0.15.1 * Sat May 4 2013 Clint Savage <herlo1@xxxxxxxxx> - 0.15.0-1 - Update to upstream feature release 0.15.0 -------------------------------------------------------------------------------- ================================================================================ targetcli-2.1.fb25-1.fc18 (FEDORA-2013-7879) An administration shell for storage targets -------------------------------------------------------------------------------- Update Information: Fix qla2xxx. -------------------------------------------------------------------------------- ChangeLog: * Thu May 9 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb25-1 - New upstream release * Thu May 2 2013 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb24-1 - New upstream release - Update source URL -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test