The following Fedora 17 Security updates need testing: Age URL 348 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17 160 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17 88 https://admin.fedoraproject.org/updates/FEDORA-2013-4234/stunnel-4.55-1.fc17 83 https://admin.fedoraproject.org/updates/FEDORA-2013-4501/libxslt-1.1.28-1.fc17 80 https://admin.fedoraproject.org/updates/FEDORA-2013-4581/libuser-0.57.6-2.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-10128/ssmtp-2.61-20.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-10121/subversion-1.7.10-1.fc17 12 https://admin.fedoraproject.org/updates/FEDORA-2013-10233/php-5.4.16-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2013-10830/fail2ban-0.8.10-1.fc17 5 https://admin.fedoraproject.org/updates/FEDORA-2013-9123/kernel-3.9.5-101.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-10929/xen-4.1.5-6.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-10940/tomcat6-6.0.37-1.fc17 2 https://admin.fedoraproject.org/updates/FEDORA-2013-10980/clamav-0.97.8-2.fc17 0 https://admin.fedoraproject.org/updates/FEDORA-2013-11234/haproxy-1.4.24-1.fc17 The following Fedora 17 Critical Path updates have yet to be approved: Age URL 300 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17 108 https://admin.fedoraproject.org/updates/FEDORA-2013-3304/libvpx-1.2.0-1.fc17 13 https://admin.fedoraproject.org/updates/FEDORA-2013-10172/gnome-bluetooth-3.4.2-2.fc17 7 https://admin.fedoraproject.org/updates/FEDORA-2013-10602/dnsmasq-2.65-6.fc17 The following builds have been pushed to Fedora 17 updates-testing anthy-9100h-23.fc17 augeas-1.0.0-4.fc17 cvs-1.11.23-27.fc17 ddate-0.2.1-1.fc17 drupal6-backup_migrate-2.7-1.fc17 drupal7-7.22-6.fc17 haproxy-1.4.24-1.fc17 ibus-typing-booster-1.0.3-1.fc17 kde-workspace-4.10.4-5.fc17 libmetalink-0.1.2-3.fc17 printrun-0.0-26.20130604git80e313d.fc17 proftpd-1.3.4d-2.fc17 python-itsdangerous-0.21-3.fc17 rubygem-qpid_messaging-0.22.0-1.fc17 sugar-labyrinth-15-1.fc17 sugar-maze-24-1.fc17 wireshark-1.6.16-2.fc17 Details about builds: ================================================================================ anthy-9100h-23.fc17 (FEDORA-2013-11214) Japanese character set input library -------------------------------------------------------------------------------- Update Information: Fix a segfault issue -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 17 2013 Akira TAGOH <tagoh@xxxxxxxxxx> - 9100h-23 - Fix a segfault issue. (#973127) * Wed Mar 27 2013 Akira TAGOH <tagoh@xxxxxxxxxx> - 9100h-22 - Rebuilt for aarch64 support (#925002) * Fri Mar 8 2013 Akira TAGOH <tagoh@xxxxxxxxxx> - 9100h-21 - Apply a patch from Mike FABIAN to get anthy.el working back on Emacs 24.3.1. * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 9100h-20 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Aug 14 2012 Akira TAGOH <tagoh@xxxxxxxxxx> - 9100h-19 - Update License tag. * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 9100h-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #973127 - [abrt] ibus-anthy-1.5.3-1.fc18: anthy_xstrcmp: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=973127 -------------------------------------------------------------------------------- ================================================================================ augeas-1.0.0-4.fc17 (FEDORA-2013-11222) A library for changing configuration files -------------------------------------------------------------------------------- Update Information: Fix parsing of /etc/sysconfig/network. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1.0.0-4 - Fix /etc/sysconfig/network (RHBZ#904222). * Wed Jun 5 2013 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1.0.0-3 - Don't package lenses in tests/ subdirectory. -------------------------------------------------------------------------------- References: [ 1 ] Bug #904222 - augeas-libs-1.0.0-1.el5 update prevents setting /etc/sysconfig/network https://bugzilla.redhat.com/show_bug.cgi?id=904222 -------------------------------------------------------------------------------- ================================================================================ cvs-1.11.23-27.fc17 (FEDORA-2013-11213) Concurrent Versions System -------------------------------------------------------------------------------- Update Information: Texinfo documentation syntax corrected. A crash while passing invalid salt to crypt(3) fixed. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 5 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.11.23-27 - Fix texinfo documentation to work with texinfo-5.1 (bug #970716) - Do not crash if crypt(3) returns NULL (bug #966497) -------------------------------------------------------------------------------- References: [ 1 ] Bug #970716 - cvs fails to build on fc19 with texinfo-5.1 https://bugzilla.redhat.com/show_bug.cgi?id=970716 [ 2 ] Bug #974797 - cvs segfaults when using pserver https://bugzilla.redhat.com/show_bug.cgi?id=974797 -------------------------------------------------------------------------------- ================================================================================ ddate-0.2.1-1.fc17 (FEDORA-2013-11224) Convert Gregorian dates to Discordian dates -------------------------------------------------------------------------------- Update Information: The ddate(1) that has been removed from util-linux is back again. -------------------------------------------------------------------------------- ================================================================================ drupal6-backup_migrate-2.7-1.fc17 (FEDORA-2013-11193) Database backup, restore, and migrate module for Drupal 6 -------------------------------------------------------------------------------- Update Information: For more information, refer to upstream release notes: https://drupal.org/node/1996612 -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 17 2013 Paul W. Frields <stickster@xxxxxxxxx> - 2.7-1 - Update to upstream 2.7 (#964273) * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Wed Jul 18 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #964273 - drupal6-backup_migrate-2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=964273 -------------------------------------------------------------------------------- ================================================================================ drupal7-7.22-6.fc17 (FEDORA-2013-11228) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: Add AllowOverride All to enable upstream's .htaccess file. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 7.22-6 - Add AllowOverride All to drupal7.conf, BZ 905912. * Mon Jun 3 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 7.22-5 - Add auto-requires, BZ 969593. -------------------------------------------------------------------------------- References: [ 1 ] Bug #905912 - .htaccess file not used https://bugzilla.redhat.com/show_bug.cgi?id=905912 -------------------------------------------------------------------------------- ================================================================================ haproxy-1.4.24-1.fc17 (FEDORA-2013-11234) HA-Proxy is a TCP/HTTP reverse proxy for high availability environments -------------------------------------------------------------------------------- Update Information: Update to upstream stable release 1.4.24. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 17 2013 Ryan O'Hara <rohara@xxxxxxxxxx> - 1.4.24-1 - Update to 1.4.24 (CVE-2013-2175, #975160) -------------------------------------------------------------------------------- References: [ 1 ] Bug #974259 - CVE-2013-2175 haproxy: http_get_hdr()/get_ip_from_hdr2() MAX_HDR_HISTORY handling denial of service https://bugzilla.redhat.com/show_bug.cgi?id=974259 -------------------------------------------------------------------------------- ================================================================================ ibus-typing-booster-1.0.3-1.fc17 (FEDORA-2013-11202) A typing booster engine for the IBus platform -------------------------------------------------------------------------------- Update Information: Don’t output page_size in “/usr/libexec/ibus-engine-typing-booster --xml”; Use ~/.local/share/ibus-typing-booster/ to store user data and log files Fix problem when IBUS_TYPING_BOOSTER_DEBUG_LEVEL is not set Much more intelligent now because it uses the context Push context *after* writing the trigram to the database -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Mike FABIAN <mfabian@xxxxxxxxxx> - 1.0.3-1 - Update to 1.0.3 upstream version - Don’t output page_size in “/usr/libexec/ibus-engine-typing-booster --xml” (Resolves: rhbz#975449 - ibus-daemon prints warnings because “/usr/libexec/ibus-engine-typing-booster --xml” prints the invalid element “page_size”) - Use ~/.local/share/ibus-typing-booster/ to store user data and log files (Resolves: rhbz#949035 - don't use a hidden directory under .local/share) * Fri Jun 14 2013 Mike FABIAN <mfabian@xxxxxxxxxx> - 1.0.2-1 - Update to 1.0.2 upstream version - Push context *after* writing the trigram to the database * Fri Jun 14 2013 Mike FABIAN <mfabian@xxxxxxxxxx> - 1.0.1-1 - Update to 1.0.1 upstream version - Fix problem when IBUS_TYPING_BOOSTER_DEBUG_LEVEL is not set * Thu Jun 13 2013 Mike FABIAN <mfabian@xxxxxxxxxx> - 1.0.0-1 - Update to 1.0.0 upstream version - Remove mudb and use “Write-Ahead Logging” - Introduce an environment variable IBUS_TYPING_BOOSTER_DEBUG_LEVEL for debugging - Speed up converting an old database to the current format - Make prediction more intelligent by using context of up to 2 previous words - Automatically remove whitespace between the last word and a punctuation character ending a sentence -------------------------------------------------------------------------------- References: [ 1 ] Bug #975449 - ibus-daemon prints warnings because “/usr/libexec/ibus-engine-typing-booster --xml” prints the invalid element “page_size” https://bugzilla.redhat.com/show_bug.cgi?id=975449 [ 2 ] Bug #949035 - don't use a hidden directory under .local/share https://bugzilla.redhat.com/show_bug.cgi?id=949035 -------------------------------------------------------------------------------- ================================================================================ kde-workspace-4.10.4-5.fc17 (FEDORA-2013-11220) KDE Workspace -------------------------------------------------------------------------------- Update Information: This update fixes DPMS profile switching in VM and kickoff keyboard navigation and VT numbers in fast user switching. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 14 2013 Lukáš Tinkl <ltinkl@xxxxxxxxxx> - 4.10.4-5 - fix kickoff menu kbd navigation (kdebz#310166) * Fri Jun 14 2013 Daniel Vrátil <dvratil@xxxxxxxxxx> - 4.10.4-4 - add upstream patch for #921742 * Thu Jun 13 2013 Martin Briza <mbriza@xxxxxxxxxx> - 4.10.4-3 - Fix VT numbers on starting a new session (#857366) * Tue Jun 11 2013 Daniel Vrátil <dvratil@xxxxxxxxxx> - 4.10.4-2 - backport upstream patch for #921781 -------------------------------------------------------------------------------- References: [ 1 ] Bug #921742 - DPMS control error from AC profile in VM https://bugzilla.redhat.com/show_bug.cgi?id=921742 [ 2 ] Bug #857366 - Inconsistency in TTYs opened with new sessions https://bugzilla.redhat.com/show_bug.cgi?id=857366 -------------------------------------------------------------------------------- ================================================================================ libmetalink-0.1.2-3.fc17 (FEDORA-2013-11209) Metalink library written in C -------------------------------------------------------------------------------- Update Information: libmetalink adopted. Updated for new upstream release. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 13 2013 Alejandro Alvarez <aalvarez@xxxxxxx> - 0.1.2-3 - Added BuildRequires: CUnit-devel - Added %check section - Removed %defattr - Moved man pages to devel package. There is no need for -doc * Mon Jun 10 2013 Alejandro Alvarez <aalvarez@xxxxxxx> - 0.1.2-2 - Escaped macros in changelog - Changed packages summaries - Renamed -docs to -doc, and changed its group to Documentation - Fixed -devel dependencies - Removed -docs dependency on the main package - All header files specified explicitly * Mon Apr 22 2013 Alejandro Alvarez <aalvarez@xxxxxxx> - 0.1.2-1 - Updated for new upstream release - Man pages moved to libmetalink-docs package -------------------------------------------------------------------------------- ================================================================================ printrun-0.0-26.20130604git80e313d.fc17 (FEDORA-2013-11244) RepRap printer interface and tools -------------------------------------------------------------------------------- Update Information: New upstream tag release -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Miro Hrončok <mhroncok@xxxxxxxxxx> - 0.0-26.20130604git80e313d - Upstream released tag release 20130604 - Pyglet 1.2 issue fixed in upstream, removed patch - Prepared spec for prontserve but do not produce the package yet (not all deps satisfied) * Tue Jun 18 2013 Miro Hrončok <mhroncok@xxxxxxxxxx> - 0.0-25.20130123git71e5da0 - When printrun is installed and plater not, don't crash when clicking Compose - Require pyglet for plater for F18+ -------------------------------------------------------------------------------- ================================================================================ proftpd-1.3.4d-2.fc17 (FEDORA-2013-11192) Flexible, stable and highly-configurable FTP server -------------------------------------------------------------------------------- Update Information: This is upstream's current stable bug-fix release. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 17 2013 Paul Howarth <paul@xxxxxxxxxxxx> 1.3.4d-2 - Fix spurious log messages at session close (upstream bug #3945) * Sat Jun 15 2013 Paul Howarth <paul@xxxxxxxxxxxx> 1.3.4d-1 - Update to 1.3.4d - Fixed broken build when using --disable-ipv6 configure option - Fixed mod_sql "SQLAuthType Backend" MySQL issues - Various other bugs fixed - see NEWS for details - Drop upstreamed patch for PAM session closing * Tue Apr 16 2013 Paul Howarth <paul@xxxxxxxxxxxx> 1.3.4c-2 - Make sure we can switch back to root before closing PAM sessions so that they're closed properly and don't pollute the system logs with dbus reject messages (#951728, upstream bug #3929) -------------------------------------------------------------------------------- ================================================================================ python-itsdangerous-0.21-3.fc17 (FEDORA-2013-11216) Python library for passing trusted data to untrusted environments -------------------------------------------------------------------------------- Update Information: Itsdangerous is a Python library for passing data through untrusted environments (for example, HTTP cookies) while ensuring the data is not tampered with. -------------------------------------------------------------------------------- References: [ 1 ] Bug #974348 - Review Request: python-itsdangerous - Python library for passing trusted data to untrusted environments https://bugzilla.redhat.com/show_bug.cgi?id=974348 -------------------------------------------------------------------------------- ================================================================================ rubygem-qpid_messaging-0.22.0-1.fc17 (FEDORA-2013-11207) Ruby bindings for the Qpid messaging framework -------------------------------------------------------------------------------- Update Information: Rebased on Qpid 0.22. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.22-1 - Rebased on qpid_messaging 0.22. -------------------------------------------------------------------------------- ================================================================================ sugar-labyrinth-15-1.fc17 (FEDORA-2013-11211) A lightweight mind-mapping activity for Sugar -------------------------------------------------------------------------------- Update Information: Version 15 release -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> - 15-1 - New 15 release * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 14-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 14-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ sugar-maze-24-1.fc17 (FEDORA-2013-11217) Maze for Sugar -------------------------------------------------------------------------------- Update Information: Version 24 release -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 18 2013 Kalpa Welivitigoda <callkalpa@xxxxxxxxx> -24-1 - Release 24 * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 22-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ wireshark-1.6.16-2.fc17 (FEDORA-2013-11210) Network traffic analyzer -------------------------------------------------------------------------------- Update Information: upgrade to 1.6.16 -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 17 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.6.16-2 - fix flow graph crash * Mon Jun 17 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.6.16-1 - upgrade to 1.6.16 - see http://www.wireshark.org/docs/relnotes/wireshark-1.6.16.html -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
