The following Fedora 18 Security updates need testing: Age URL 170 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18 104 https://admin.fedoraproject.org/updates/FEDORA-2013-3935/puppet-3.1.1-1.fc18 97 https://admin.fedoraproject.org/updates/FEDORA-2013-4243/stunnel-4.55-1.fc18 84 https://admin.fedoraproject.org/updates/FEDORA-2013-4823/microcode_ctl-2.0-3.fc18 69 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18 28 https://admin.fedoraproject.org/updates/FEDORA-2013-9707/livecd-tools-18.16-2.fc18 23 https://admin.fedoraproject.org/updates/FEDORA-2013-9962/subversion-1.7.10-1.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-11407/qemu-1.2.2-13.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-11419/python-bugzilla-0.9.0-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-10713/openstack-keystone-2012.2.4-5.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-11574/curl-7.27.0-11.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-11630/wordpress-3.5.2-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-11768/xen-4.2.2-9.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-11396/glpi-0.83.9.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-11646/ReviewBoard-1.7.11-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-11874/xen-4.2.2-10.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 138 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 19 https://admin.fedoraproject.org/updates/FEDORA-2013-10428/NetworkManager-0.9.8.2-1.fc18,network-manager-applet-0.9.8.2-1.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-10939/dosfstools-3.0.20-2.fc18 8 https://admin.fedoraproject.org/updates/FEDORA-2013-11278/make-3.82-14.fc18 7 https://admin.fedoraproject.org/updates/FEDORA-2013-11419/python-bugzilla-0.9.0-1.fc18 5 https://admin.fedoraproject.org/updates/FEDORA-2013-11498/binutils-2.23.51.0.1-10.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-11574/curl-7.27.0-11.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-11629/unzip-6.0-10.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-11749/gnome-shell-3.6.3.1-2.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-11757/xorg-x11-drv-synaptics-1.6.4-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-11864/gnome-packagekit-3.6.2-2.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-11859/selinux-policy-3.11.1-98.fc18 The following builds have been pushed to Fedora 18 updates-testing ReviewBoard-1.7.11-1.fc18 docco-0.6.2-2.fc18 expresso-0.9.2-4.fc18 ghc-snap-core-0.9.3.1-1.fc18 gnome-packagekit-3.6.2-2.fc18 jasmine-node-1.10.0-1.fc18 java-1.7.0-openjdk-1.7.0.25-2.3.10.4.fc18 konkretcmpi-0.9.0-7.fc18 libpinyin-0.9.93-1.fc18 marked-0.2.9-2.fc18 mingw-pango-1.32.5-3.fc18 mirall-1.3.0-1.fc18 mocha-1.11.0-1.fc18 nodejs-i2c-0.1.3-2.fc18 nodejs-ncp-0.4.2-1.fc18 nodejs-package-1.0.1-1.fc18 nodejs-repl-0.1.3-1.fc18 nodejs-revalidator-0.1.5-1.fc18 nodejs-underscore-dot-string-2.3.1-1.fc18 nodejs-zap-0.2.5-3.fc18 owncloud-csync-0.80.0-1.fc18 pdfposter-0.6.0-1.fc18 perl-Geo-IPfree-1.1.3.1.6.5.0-1.fc18 pwmd-3.0.2-1.fc18 python-distutils-extra-2.37-3.fc18 selinux-policy-3.11.1-98.fc18 source-highlight-qt-0.2.3-4.fc18 sparse-0.4.4-6.fc18 vfrnav-20130627-1.fc18 wallpaperd-0.2.1-1.fc18 wt-3.3.0-2.fc18 xen-4.2.2-10.fc18 Details about builds: ================================================================================ ReviewBoard-1.7.11-1.fc18 (FEDORA-2013-11646) Web-based code review tool -------------------------------------------------------------------------------- Update Information: - New upstream release 1.7.11 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.11/ - Bug Fixes: * Fixed compatibility with Python 2.5 * Fixed the drop-down arrow by Support and the account name on older versions of Internet Explorer - New upstream release 1.7.10 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.10/ - Security Updates: * Fixed an XSS vulnerability where users could trigger script errors under certain conditions in auto-complete widgets - Web API Changes: * Added n ?order-by=<fieldname> query parameter for comment resources, allowing ordering by fields such as line numbers (for diff comments) * Added a filename field to screenshot resources, which provides the base filename (without path) of the screenshot * Added a review_url field to screenshot resources, which provides the URL to the screenshot review page * Added a thumbnail_url field to screenshot comment resources, which provides the URL to the snippet of the screenshot being commented on * Added a link_text field to file attachment comment resources, which shows the text for any link pointing to the file. This may differ depending on the comment * Added a review_url field to file attachment comment resources, which provides the URL to the review page for the file * Added a thumbnail_html field to file attachment comment resources, which provides HTML for rendering the thumbnail of the portion of the file being rendered, if any - UI Changes: * Improved the look and feel of the issue summary table. It’s cleaner and no longer looks odd with long comment text - Bug Fixes: * Fixed periodic but harmless JavaScript errors when removing elements with relative timestamps * Editing or reordering dashboard columns no longer breaks after the dashboard reloads * Relative timestamps in the dashboard no longer break after the dashboard reloads * The maximum size of the timezone has increased, allowing for longer timezone strings -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.11-1 - New upstream release 1.7.11 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.11/ - Bug Fixes: * Fixed compatibility with Python 2.5 * Fixed the drop-down arrow by Support and the account name on older versions of Internet Explorer * Mon Jun 24 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.10-1 - New upstream release 1.7.10 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.10/ - Security Updates: * Fixed an XSS vulnerability where users could trigger script errors under certain conditions in auto-complete widgets - Web API Changes: * Added n ?order-by=<fieldname> query parameter for comment resources, allowing ordering by fields such as line numbers (for diff comments) * Added a filename field to screenshot resources, which provides the base filename (without path) of the screenshot * Added a review_url field to screenshot resources, which provides the URL to the screenshot review page * Added a thumbnail_url field to screenshot comment resources, which provides the URL to the snippet of the screenshot being commented on * Added a link_text field to file attachment comment resources, which shows the text for any link pointing to the file. This may differ depending on the comment * Added a review_url field to file attachment comment resources, which provides the URL to the review page for the file * Added a thumbnail_html field to file attachment comment resources, which provides HTML for rendering the thumbnail of the portion of the file being rendered, if any - UI Changes: * Improved the look and feel of the issue summary table. It’s cleaner and no longer looks odd with long comment text - Bug Fixes: * Fixed periodic but harmless JavaScript errors when removing elements with relative timestamps * Editing or reordering dashboard columns no longer breaks after the dashboard reloads * Relative timestamps in the dashboard no longer break after the dashboard reloads * The maximum size of the timezone has increased, allowing for longer timezone strings -------------------------------------------------------------------------------- References: [ 1 ] Bug #977423 - CVE-2013-2209 ReviewBoard: Stored XSS due improper sanitization of user's full name in the reviews dropdown https://bugzilla.redhat.com/show_bug.cgi?id=977423 -------------------------------------------------------------------------------- ================================================================================ docco-0.6.2-2.fc18 (FEDORA-2013-11873) The Quick and Dirty Literate Programming Documentation Generator -------------------------------------------------------------------------------- Update Information: Restrict to compatible arches -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.6.2-2 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ expresso-0.9.2-4.fc18 (FEDORA-2013-11872) A lightweight, fast, test-driven development (TDD) framework for Node.js -------------------------------------------------------------------------------- Update Information: Restrict to compatible arches -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.9.2-4 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ ghc-snap-core-0.9.3.1-1.fc18 (FEDORA-2013-11853) Snap web framework core library -------------------------------------------------------------------------------- Update Information: Update to latest stable version -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 12 2013 Jens Petersen <petersen@xxxxxxxxxx> - 0.9.3.1-1 - update to 0.9.3.1 * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #909150 - ghc-snap-core-0.9.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=909150 -------------------------------------------------------------------------------- ================================================================================ gnome-packagekit-3.6.2-2.fc18 (FEDORA-2013-11864) Session applications to manage packages -------------------------------------------------------------------------------- Update Information: Ignore package progress updates when the transaction is being simulated which fixes the 100% CPU issue when trying to update a large number of packages. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Adel Gadllah <adel.gadllah@xxxxxxxxx> - 3.6.2-2 - Backport fix from F19 to fix #909761 -------------------------------------------------------------------------------- References: [ 1 ] Bug #909761 - Software Updates - hangs within Install Updates https://bugzilla.redhat.com/show_bug.cgi?id=909761 -------------------------------------------------------------------------------- ================================================================================ jasmine-node-1.10.0-1.fc18 (FEDORA-2013-11889) DOM-less JS behavior-driven development (BDD) testing framework for Node -------------------------------------------------------------------------------- Update Information: Update to 1.10.0 and restrict to compatible arches. Upstream changelog: * 1.10.0 - Skipped tests now show in the terminal reporter's output (thanks to kevinsawicki) * 1.9.1 - Timeout now consistent between Async and Non-Async Calls (thanks to codemnky) * 1.9.0 - Now re-throwing the file-not-found error, added info to README.md, printing version with --version * 1.8.1 - Fixed silent failure due to invalid REGEX (thanks to pimterry) * 1.8.0 - Fixed bug in autotest with multiple paths and added --watch feature (thanks to davegb3) -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 1.10.0-1 - update to upstream release 1.10.0 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ java-1.7.0-openjdk-1.7.0.25-2.3.10.4.fc18 (FEDORA-2013-11880) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: - Sync with upstream IcedTea7-forest 2.3.10 tag - Fixes regressions as introduced with 1.7.0.25-2.3.10.3.el6: rhbz#978005, rhbz#977979, rhbz#976693, IcedTeaBZ#1487. - jcmd man page is now correctly listed for all 2.3.9 archs (fixes build on non-x86 arches) -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jiri Vanek <jvanek@xxxxxxxxxx> - 1.7.0.25-2.3.10.4.f18 - Sync with upstream IcedTea7-forest 2.3.10 tag - Fixes regressions as introduced with previous 1.7.0.25 updates - rhbz#978005, rhbz#977979, rhbz#976693, IcedTeaBZ#1487. -------------------------------------------------------------------------------- ================================================================================ konkretcmpi-0.9.0-7.fc18 (FEDORA-2013-11861) Tool for rapid CMPI providers development -------------------------------------------------------------------------------- Update Information: Add support for EmbeddedInstances -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Radek Novacek <rnovacek@xxxxxxxxxx> 0.9.0-7 - Add support for embedded instances -------------------------------------------------------------------------------- References: [ 1 ] Bug #853991 - RFE: _DispatchMethod and or KBase_FromArgs could create instances from EmbeddedInstace arguments. https://bugzilla.redhat.com/show_bug.cgi?id=853991 -------------------------------------------------------------------------------- ================================================================================ libpinyin-0.9.93-1.fc18 (FEDORA-2013-11857) Library to deal with pinyin -------------------------------------------------------------------------------- Update Information: Update to 0.9.93 -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Peng Wu <pwu@xxxxxxxxxx> - 0.9.93-1 - Update to 0.9.93 -------------------------------------------------------------------------------- ================================================================================ marked-0.2.9-2.fc18 (FEDORA-2013-11860) A markdown parser for Node.js built for speed -------------------------------------------------------------------------------- Update Information: Restrict to compatible arches -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.2.9-2 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ mingw-pango-1.32.5-3.fc18 (FEDORA-2013-11868) MinGW Windows Pango library -------------------------------------------------------------------------------- Update Information: Add patch to resolve pedantic warning. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Michael Cronenworth <mike@xxxxxxxxxx> - 1.32.5-3 - Patch for RHBZ# 976906 -------------------------------------------------------------------------------- References: [ 1 ] Bug #976906 - RFE: Add native patch for pedantic warning message https://bugzilla.redhat.com/show_bug.cgi?id=976906 -------------------------------------------------------------------------------- ================================================================================ mirall-1.3.0-1.fc18 (FEDORA-2013-11882) The ownCloud Client -------------------------------------------------------------------------------- Update Information: Update to latest stable version of owncloud-csync and mirall-owncloud client. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 <jmarrero@xxxxxxxxxxxxxxxxx> 1.3.0-1 - Update to version 1.3.0 * Thu May 23 2013 <jmarrero@xxxxxxxxxxxxxxxxx> 1.3.0beta1-1 - Update to testing version 1.3.0beta1 -------------------------------------------------------------------------------- ================================================================================ mocha-1.11.0-1.fc18 (FEDORA-2013-11867) A simple, flexible, fun test framework for Node.js -------------------------------------------------------------------------------- Update Information: Update to 1.11.0 and restrict to compatible arches. Upstream changelog: * https://github.com/visionmedia/mocha/blob/master/History.md -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 1.11.0-1 - update to upstream release 1.11.0 - restrict to compatible arches * Sat Jun 22 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 1.10.0-2 - rebuild for missing npm(mocha) Provides -------------------------------------------------------------------------------- ================================================================================ nodejs-i2c-0.1.3-2.fc18 (FEDORA-2013-11544) Node.js native bindings for i2c-dev -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #976767 - Review Request: nodejs-repl - A lightweight templating library for Node.js https://bugzilla.redhat.com/show_bug.cgi?id=976767 [ 2 ] Bug #976777 - Review Request: nodejs-i2c - Node.js native bindings for i2c-dev https://bugzilla.redhat.com/show_bug.cgi?id=976777 -------------------------------------------------------------------------------- ================================================================================ nodejs-ncp-0.4.2-1.fc18 (FEDORA-2013-11876) Asynchronous recursive file copy utility for Node.js -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #911041 - Review Request: nodejs-ncp - Asynchronous recursive file copy utility for Node.js https://bugzilla.redhat.com/show_bug.cgi?id=911041 -------------------------------------------------------------------------------- ================================================================================ nodejs-package-1.0.1-1.fc18 (FEDORA-2013-11886) Provides an easy way to export package.json data -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #977133 - Review Request: nodejs-package - Provides an easy way to export package.json data https://bugzilla.redhat.com/show_bug.cgi?id=977133 -------------------------------------------------------------------------------- ================================================================================ nodejs-repl-0.1.3-1.fc18 (FEDORA-2013-11544) A lightweight templating library for Node.js -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #976767 - Review Request: nodejs-repl - A lightweight templating library for Node.js https://bugzilla.redhat.com/show_bug.cgi?id=976767 [ 2 ] Bug #976777 - Review Request: nodejs-i2c - Node.js native bindings for i2c-dev https://bugzilla.redhat.com/show_bug.cgi?id=976777 -------------------------------------------------------------------------------- ================================================================================ nodejs-revalidator-0.1.5-1.fc18 (FEDORA-2013-11878) A cross-browser/Node.js validator used by resourceful -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #911049 - Review Request: nodejs-revalidator - A cross-browser/Node.js validator used by resourceful https://bugzilla.redhat.com/show_bug.cgi?id=911049 -------------------------------------------------------------------------------- ================================================================================ nodejs-underscore-dot-string-2.3.1-1.fc18 (FEDORA-2013-11865) String manipulation extensions for the Underscore.js JavaScript library -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #977136 - Review Request: nodejs-underscore-dot-string - String manipulation extensions for the Underscore.js JavaScript library https://bugzilla.redhat.com/show_bug.cgi?id=977136 -------------------------------------------------------------------------------- ================================================================================ nodejs-zap-0.2.5-3.fc18 (FEDORA-2013-11875) A tiny test runner -------------------------------------------------------------------------------- Update Information: Rename /usr/bin/zap to /usr/bin/nodejs-zap to avoid conflict with xbase -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Tom Hughes <tom@xxxxxxxxxx> - 0.2.5-3 - Rename /usr/bin/zap to /usr/bin/nodejs-zap to avoid conflict with xbase -------------------------------------------------------------------------------- References: [ 1 ] Bug #978951 - Conflict between nodejs-zap-0.2.5-2.fc18 and xbase-utils-3.1.2-5.fc18 https://bugzilla.redhat.com/show_bug.cgi?id=978951 -------------------------------------------------------------------------------- ================================================================================ owncloud-csync-0.80.0-1.fc18 (FEDORA-2013-11882) A user level bidirectional client only file synchronizer -------------------------------------------------------------------------------- Update Information: Update to latest stable version of owncloud-csync and mirall-owncloud client. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 <jmarrero@xxxxxxxxxxxxxxxxx> 0.80.0-1 - Update to version 0.80.0 * Thu May 23 2013 <jmarrero@xxxxxxxxxxxxxxxxx> 0.70.90-1 - Update to testing version 0.70.90 -------------------------------------------------------------------------------- ================================================================================ pdfposter-0.6.0-1.fc18 (FEDORA-2013-11879) Scale and tile PDF images/pages to print on multiple pages -------------------------------------------------------------------------------- Update Information: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.0-1 - Spec file updated - Updated to new upstream version 0.6.0 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.0-1 - Spec file updated - Updated to new upstream version 0.6.0 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.0-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ perl-Geo-IPfree-1.1.3.1.6.5.0-1.fc18 (FEDORA-2013-11855) Look up the country of an IPv4 Address -------------------------------------------------------------------------------- Update Information: IP database updated. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.1.3.1.6.5.0-1 - 1.131650 bump -------------------------------------------------------------------------------- ================================================================================ pwmd-3.0.2-1.fc18 (FEDORA-2013-11852) A server for storing application data at a central location -------------------------------------------------------------------------------- Update Information: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 3.0.2-1 - Updated to new upstream version 3.0.2 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 3.0.2-1 - Updated to new upstream version 3.0.2 * Sat Apr 6 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 3.0.1-1 - Updated to new upstream version 3.0.1 * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.18-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-distutils-extra-2.37-3.fc18 (FEDORA-2013-11870) Integrate more support into Python's distutils -------------------------------------------------------------------------------- Update Information: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.37-3 - Spec file updated - Python 3 support added -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.37-3 - Spec file updated - Python 3 support added * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.37-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Sep 20 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.37-1 - Updated to new upstream version 2.37 * Mon Aug 6 2012 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.35-1 - Updated to new upstream version 2.35 -------------------------------------------------------------------------------- References: [ 1 ] Bug #959456 - build "python-distutils-extra" for python3 (3.3.1) https://bugzilla.redhat.com/show_bug.cgi?id=959456 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.11.1-98.fc18 (FEDORA-2013-11859) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: Here is where you give an explanation of your update. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.11.1-97 - Make DSPAM to act as a LDA working - Allow NM to read file_t (usb stick with no labels used to transfer keys for example) - condor_collector uses tcp/9000 - Add mandb_filetrans_named_home_content() - Allow gnomesystem to manage /root/.config - Allow ntop to read usbmon devices - Allow colord to list directories inthe users homedir - Lest dontaudit apache read all domains, so passenger will not cause this avc - Allow snmpd to run smartctl in fsadm_t domain - Allow blueman to read bluetooth conf - Add iscsi_filetrans_named_content() interface - For now we need to allow openshift_app_t to read the /etc/passwd file - Allow wine to manage wine home content - Fix labeling of mailman - Allow blueman to write ip_forward - Allow chrome processes to look at each other - Add labeling for /run/nm-xl2tpd.con - Allow apache to stream connect to thin - Allow sys_ptrace for abrt_t - Add support for abrt-uefioops-oops - Allow polkitd to getattr on al fs - Dontaudit pppd to search gnome config - Add mozilla_plugin_use_gps boolean - Lets label /sys/fs/cgroup as cgroup_t for now, to keep labels consistant -------------------------------------------------------------------------------- References: [ 1 ] Bug #964417 - SELinux is preventing /usr/lib/jvm/java-1.7.0-openjdk-1.7.0.19.x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=964417 [ 2 ] Bug #967373 - SELinux is preventing /usr/bin/login from 'read' accesses on the file /var/log/lastlog. https://bugzilla.redhat.com/show_bug.cgi?id=967373 [ 3 ] Bug #967580 - SELinux is preventing /usr/sbin/httpd from 'search' accesses on the directory saslauthd. https://bugzilla.redhat.com/show_bug.cgi?id=967580 [ 4 ] Bug #967764 - SELinux is preventing /usr/sbin/nginx from 'write' accesses on the sock_file btcsrv.sock. https://bugzilla.redhat.com/show_bug.cgi?id=967764 [ 5 ] Bug #968570 - SELinux is preventing /usr/bin/bash from 'read' accesses on the directory /sys/fs/pstore. https://bugzilla.redhat.com/show_bug.cgi?id=968570 [ 6 ] Bug #968571 - SELinux is preventing /usr/bin/Xorg from 'read' accesses on the chr_file urandom. https://bugzilla.redhat.com/show_bug.cgi?id=968571 [ 7 ] Bug #968610 - SELinux is preventing /usr/bin/bash from 'execute' accesses on the file /usr/bin/systemctl. https://bugzilla.redhat.com/show_bug.cgi?id=968610 [ 8 ] Bug #968612 - SELinux is preventing /usr/bin/chmod from 'setattr' accesses on the directory pluto. https://bugzilla.redhat.com/show_bug.cgi?id=968612 [ 9 ] Bug #968613 - SELinux is preventing /usr/libexec/ipsec/addconn from 'connectto' accesses on the unix_stream_socket /run/pluto/pluto.ctl. https://bugzilla.redhat.com/show_bug.cgi?id=968613 [ 10 ] Bug #968614 - SELinux is preventing /usr/bin/mkdir from 'create' accesses on the directory pluto. https://bugzilla.redhat.com/show_bug.cgi?id=968614 [ 11 ] Bug #968617 - SELinux is preventing /usr/bin/L2tpIPsecVpn from 'search' accesses on the directory /root/.config. https://bugzilla.redhat.com/show_bug.cgi?id=968617 [ 12 ] Bug #968620 - SELinux is preventing /usr/bin/bash from read, open access on the file /usr/bin/systemctl. https://bugzilla.redhat.com/show_bug.cgi?id=968620 [ 13 ] Bug #968997 - SELinux is preventing /opt/google/chrome/nacl_helper_bootstrap from 'search' accesses on the directory fdinfo. https://bugzilla.redhat.com/show_bug.cgi?id=968997 [ 14 ] Bug #969533 - SELinux is preventing /usr/bin/xauth from 'remove_name' accesses on the directory xauth-1000-_0-c. https://bugzilla.redhat.com/show_bug.cgi?id=969533 [ 15 ] Bug #970816 - SELinux is preventing /usr/bin/python2.7 from 'write' accesses on the file ip_forward. https://bugzilla.redhat.com/show_bug.cgi?id=970816 [ 16 ] Bug #971127 - SELinux is preventing /usr/bin/bash from 'read' accesses on the file /etc/passwd. https://bugzilla.redhat.com/show_bug.cgi?id=971127 [ 17 ] Bug #971130 - SELinux is preventing /usr/lib/systemd/systemd-timedated from 'create' accesses on the file .adjtimeXXdfqS. https://bugzilla.redhat.com/show_bug.cgi?id=971130 [ 18 ] Bug #971593 - /var/lock/mailman created with wrong permissions on every boot https://bugzilla.redhat.com/show_bug.cgi?id=971593 [ 19 ] Bug #972415 - SELinux is preventing /usr/bin/mplayer from 'create' accesses on the directory .mplayer. https://bugzilla.redhat.com/show_bug.cgi?id=972415 [ 20 ] Bug #972502 - SELinux is preventing /usr/bin/wineserver from 'lock' accesses on the file /home/user9/.wine/drive_c/users/user9/Application Data/wine_gecko/places.sqlite-shm. https://bugzilla.redhat.com/show_bug.cgi?id=972502 [ 21 ] Bug #972632 - SELinux is preventing /usr/java/jre1.7.0_21/bin/java from 'create' accesses on the netlink_socket . https://bugzilla.redhat.com/show_bug.cgi?id=972632 [ 22 ] Bug #972924 - SELinux is preventing /usr/sbin/iw from using the 'net_admin' capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=972924 [ 23 ] Bug #973033 - SELinux is preventing /usr/bin/python2.7 from 'read' accesses on the file /etc/bluetooth/audio.conf. https://bugzilla.redhat.com/show_bug.cgi?id=973033 [ 24 ] Bug #973799 - SELinux is preventing /usr/bin/python2.7 from 'connectto' accesses on the unix_stream_socket @/tmp/dbus-mq8ZeGKq8A. https://bugzilla.redhat.com/show_bug.cgi?id=973799 [ 25 ] Bug #974426 - SELinux is preventing ps from 'getattr' accesses on the directory /proc/<pid>. https://bugzilla.redhat.com/show_bug.cgi?id=974426 [ 26 ] Bug #974775 - SELinux is preventing /usr/lib/nspluginwrapper/plugin-config from 'execmod' accesses on the file /opt/google/talkplugin/libnpgoogletalk.so. https://bugzilla.redhat.com/show_bug.cgi?id=974775 [ 27 ] Bug #975260 - SELinux is preventing /usr/sbin/smartctl from using the 'sys_rawio' capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=975260 [ 28 ] Bug #975566 - SELinux is preventing /usr/libexec/kde4/ksysguardprocesslist_helper from 'write' accesses on the file /root/.config/Trolltech.conf. https://bugzilla.redhat.com/show_bug.cgi?id=975566 [ 29 ] Bug #975702 - SELinux is preventing /usr/lib/systemd/systemd-logind from write access on the directory cpu,cpuacct. https://bugzilla.redhat.com/show_bug.cgi?id=975702 [ 30 ] Bug #969561 - SELinux is preventing /usr/libexec/ipsec/addconn from connectto access on the unix_stream_socket /run/pluto/pluto.ctl https://bugzilla.redhat.com/show_bug.cgi?id=969561 -------------------------------------------------------------------------------- ================================================================================ source-highlight-qt-0.2.3-4.fc18 (FEDORA-2013-11884) Library for performing syntax highlighting in Qt documents -------------------------------------------------------------------------------- Update Information: Importing new package: source-highlight-qt. -------------------------------------------------------------------------------- ================================================================================ sparse-0.4.4-6.fc18 (FEDORA-2013-11888) A semantic parser of source files -------------------------------------------------------------------------------- Update Information: This update silences these sorts of bogus warnings: include/uapi/linux/swab.h:60:16: error: undefined identifier '__builtin_bswap32' include/uapi/linux/swab.h:60:33: error: not a function <noident> -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Jeff Layton <jlayton@xxxxxxxxxx> - 0.4.4-6 - add built-in byte swap identifiers -------------------------------------------------------------------------------- ================================================================================ vfrnav-20130627-1.fc18 (FEDORA-2013-11877) VFR/IFR Navigation -------------------------------------------------------------------------------- Update Information: update to 20130627; rebuild for polyclipping -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 27 2013 Thomas Sailer <t.sailer@xxxxxxxxxxxxxx> - 20130627-1 - update to 20130627 -------------------------------------------------------------------------------- ================================================================================ wallpaperd-0.2.1-1.fc18 (FEDORA-2013-11869) Background setter supporting random images and per-workspace images -------------------------------------------------------------------------------- Update Information: Updated to new version 0.2.1. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Germán A. Racca <skytux@xxxxxxxxxxxxxxxxx> - 0.2.1-1 - Updated to new version - Updated project page * Fri Feb 15 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ wt-3.3.0-2.fc18 (FEDORA-2013-11887) C++ library for developing web applications -------------------------------------------------------------------------------- Update Information: New upstream version. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Michal Minar <miminar@xxxxxxxxxx> 3.3.0-2 - Using LZMA2 compression for source archive. * Thu Jun 20 2013 Michal Minar <miminar@xxxxxxxxxx> 3.3.0-1 - Version 3.3.0 * Sat Feb 9 2013 Denis Arnaud <denis.arnaud_fedora@xxxxxxx> - 3.2.3-2 - Rebuild for Boost-1.53.0 -------------------------------------------------------------------------------- ================================================================================ xen-4.2.2-10.fc18 (FEDORA-2013-11874) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: XSA-45/CVE-2013-1918 breaks page reference counting let pygrub handle set default="${next_entry}" line in F19 libxl: Set vfb and vkb devid if not done so by the caller -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 26 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.2-10 - XSA-45/CVE-2013-1918 breaks page reference counting [XSA-58, CVE-2013-1432] (#978383) - let pygrub handle set default="${next_entry}" line in F19 (#978036) - libxl: Set vfb and vkb devid if not done so by the caller (#977987) * Mon Jun 24 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.2-9 - add upstream patch for PCI passthrough problems after XSA-46 (#977310) * Fri Jun 21 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.2-8 - xenstore permissions not set correctly by libxl [XSA-57, CVE-2013-2211] (#976779) -------------------------------------------------------------------------------- References: [ 1 ] Bug #974250 - CVE-2013-1432 kernel: xen: Page reference counting error due to XSA-45/CVE-2013-1918 fixes https://bugzilla.redhat.com/show_bug.cgi?id=974250 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
