Fedora 19 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 19 Security updates need testing:
 Age  URL
  86  https://admin.fedoraproject.org/updates/FEDORA-2013-14814/python-glanceclient-0.9.0-3.fc19
  42  https://admin.fedoraproject.org/updates/FEDORA-2013-17836/davfs2-1.4.7-3.fc19
  29  https://admin.fedoraproject.org/updates/FEDORA-2013-18794/phpMyAdmin-3.5.8.2-1.fc19
  21  https://admin.fedoraproject.org/updates/FEDORA-2013-19262/quassel-0.9.1-1.fc19
  14  https://admin.fedoraproject.org/updates/FEDORA-2013-19997/openstack-glance-2013.1.4-2.fc19
  14  https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19
  10  https://admin.fedoraproject.org/updates/FEDORA-2013-20202/mantis-1.2.15-3.fc19
   7  https://admin.fedoraproject.org/updates/FEDORA-2013-20443/poppler-0.22.1-5.fc19
   5  https://admin.fedoraproject.org/updates/FEDORA-2013-20555/xen-4.2.3-7.fc19
   4  https://admin.fedoraproject.org/updates/FEDORA-2013-20628/gnutls-3.1.16-1.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20744/krb5-1.11.3-11.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20814/python-djblets-0.7.23-1.fc19,ReviewBoard-1.7.17-1.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20988/prboom-plus-2.5.1.3-3.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20993/ibus-pinyin-1.5.0-5.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20985/wireshark-1.10.3-3.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20965/drupal7-context-3.1-1.fc19


The following Fedora 19 Critical Path updates have yet to be approved:
 Age URL
   9  https://admin.fedoraproject.org/updates/FEDORA-2013-20355/colord-1.0.4-1.fc19
   6  https://admin.fedoraproject.org/updates/FEDORA-2013-20487/acl-2.2.51-10.fc19
   4  https://admin.fedoraproject.org/updates/FEDORA-2013-20628/gnutls-3.1.16-1.fc19
   4  https://admin.fedoraproject.org/updates/FEDORA-2013-20619/soprano-2.9.4-2.fc19
   4  https://admin.fedoraproject.org/updates/FEDORA-2013-20645/langtable-0.0.18-1.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20818/libbluray-0.4.0-1.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20801/kbd-1.15.5-8.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20792/gnome-online-accounts-3.8.5-1.fc19
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-20744/krb5-1.11.3-11.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20980/selinux-policy-3.12.1-74.12.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20963/libdrm-2.4.47-1.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20991/kde-settings-19-26.fc19
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-20900/libxfce4ui-4.10.0-9.fc19


The following builds have been pushed to Fedora 19 updates-testing

    dnsyo-1.1.4-2.fc19
    drupal7-context-3.1-1.fc19
    drupal7-strongarm-2.0-1.fc19
    ghc-hjsmin-0.1.4.3-2.fc19
    ghc-language-javascript-0.5.8-2.fc19
    gimp-2.8.8-3.fc19
    hg-git-0.4.0-3.fc19
    ibus-pinyin-1.5.0-5.fc19
    kde-settings-19-26.fc19
    libdrm-2.4.47-1.fc19
    mate-applets-1.6.1-7.fc19
    mingw-gnutls-3.1.16-1.fc19
    net-snmp-5.7.2-12.fc19
    nfsometer-1.6-1.fc19
    openscap-0.9.13-3.fc19
    openvswitch-2.0.0-1.fc19
    pencil-2.0.5-1.fc19
    prboom-plus-2.5.1.3-3.fc19
    python-gnutls-1.2.4-2.fc19
    python-moksha-wsgi-1.2.1-3.fc19
    selinux-policy-3.12.1-74.12.fc19
    sysusage-5.3-2.fc19
    wireshark-1.10.3-3.fc19
    youtube-dl-2013.11.07-1.fc19

Details about builds:


================================================================================
 dnsyo-1.1.4-2.fc19 (FEDORA-2013-20983)
 Check DNS against many global DNS servers
--------------------------------------------------------------------------------
Update Information:

Latest upstream version.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 1.1.4-2
- Fix 'requests' sed to fix the build on Fedora.
* Tue Nov  5 2013 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 1.1.4-1
- Latest upstream version.
--------------------------------------------------------------------------------


================================================================================
 drupal7-context-3.1-1.fc19 (FEDORA-2013-20965)
 Allows you to manage contextual conditions and reactions of your site
--------------------------------------------------------------------------------
Update Information:

- Update to upstream 3.1 release for bug fixes
- Upstream changelog for this release: https://drupal.org/node/2113785
- Fixes CVE-2013-4445, CVE-2013-4446 BZ 1020777, BZ 1020262, BZ 1020781, BZ 1020784
Upstream updated to rc1
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 3.1-1
- Update to upstream 3.1 release for bug fixes
- Upstream changelog for this release: https://drupal.org/node/2113785
- Fixes CVE-2013-4445, CVE-2013-4446 BZ 1020777, BZ 1020262, BZ 1020781, BZ 1020784
* Sat Sep 28 2013 Scott Dodson <sdodson@xxxxxxxxxx> - 3.0-0.7.rc1
- Update to upstream 3.0-rc1
- Upstream changelog for this release is available at https://drupal.org/node/2098831
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1020777 - CVE-2013-4445 CVE-2013-4446 drupal-context: multiple vulnerabilities
        https://bugzilla.redhat.com/show_bug.cgi?id=1020777
--------------------------------------------------------------------------------


================================================================================
 drupal7-strongarm-2.0-1.fc19 (FEDORA-2013-20975)
 Strongarm gives a way to override the default variable values
--------------------------------------------------------------------------------
Update Information:

Update to upstream 2.0 release for bug fixes
Upstream changelog for this release: https://drupal.org/node/1632574
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 2.0-1
- Update to upstream 2.0 release for bug fixes
- Upstream changelog for this release: https://drupal.org/node/1632574
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0-0.8.rc1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #993735 - drupal7-strongarm possibly affected by F-20 unversioned docdir change
        https://bugzilla.redhat.com/show_bug.cgi?id=993735
--------------------------------------------------------------------------------


================================================================================
 ghc-hjsmin-0.1.4.3-2.fc19 (FEDORA-2013-20958)
 Haskell implementation of a javascript minifier
--------------------------------------------------------------------------------
Update Information:

Rebuild for language-javascript update.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 0.1.4.3-2
- rebuild
--------------------------------------------------------------------------------


================================================================================
 ghc-language-javascript-0.5.8-2.fc19 (FEDORA-2013-20967)
 Parser for JavaScript
--------------------------------------------------------------------------------
Update Information:

Latest upstream version, and FTBFS fix
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Jens Petersen <petersen@xxxxxxxxxx> - 0.5.8-2
- add BangPatterns patch from Debian for secondary arch's (#1027169)
* Tue Sep 17 2013 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 0.5.8-1
- Latest upstream release.
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.7-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1027169 - FTBFS: Illegal bang-pattern (use -XBangPatterns)
        https://bugzilla.redhat.com/show_bug.cgi?id=1027169
--------------------------------------------------------------------------------


================================================================================
 gimp-2.8.8-3.fc19 (FEDORA-2013-20992)
 GNU Image Manipulation Program
--------------------------------------------------------------------------------
Update Information:

This update fixes a bug in the BMP file plug-in where a file descriptor could be closed twice.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.8.8-3
- file-bmp: don't close already closed FD
--------------------------------------------------------------------------------


================================================================================
 hg-git-0.4.0-3.fc19 (FEDORA-2013-20964)
 Mercurial Plugin for Communicating with Git Servers
--------------------------------------------------------------------------------
Update Information:

Add missing python module requires.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1028493 - hg-git needs python module ordereddict
        https://bugzilla.redhat.com/show_bug.cgi?id=1028493
--------------------------------------------------------------------------------


================================================================================
 ibus-pinyin-1.5.0-5.fc19 (FEDORA-2013-20993)
 The Chinese Pinyin and Bopomofo engines for IBus input platform
--------------------------------------------------------------------------------
Update Information:

Fixes ibus: visible password entry flaw. (rhbz#1027029) (CVE-2013-4509)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Peng Wu <pwu@xxxxxxxxxx> - 1.5.0-5
- Fixes ibus: visible password entry flaw. (rhbz#1027029) (CVE-2013-4509)
* Tue Aug  6 2013 Peng Wu <pwu@xxxxxxxxxx> - 1.5.0-4
- Fixes lua 5.2 compile
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1027028 - CVE-2013-4509 ibus: visible password entry flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=1027028
--------------------------------------------------------------------------------


================================================================================
 kde-settings-19-26.fc19 (FEDORA-2013-20991)
 Config files for kde
--------------------------------------------------------------------------------
Update Information:

Backport a couple of recent fixes: increased kdm Timeouts, kdm keyboard control, and gpg-agent startup/shutdown
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 19-26
- kdmrc: ServerAttempts=2,ServerTimeout=60 (#967521)
* Thu Nov  7 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 19-25
- kdmrc: GrabInput=Always (#631767)
- gpg-agent isn't started automatically with KDE anymore (#845492)
* Sat Sep 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 19-24
- -sddm subpkg
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #631767 - kdm shutdown menu lacks focus, keyboard control
        https://bugzilla.redhat.com/show_bug.cgi?id=631767
  [ 2 ] Bug #845492 - gpg-agent isn't started automatically with KDE anymore
        https://bugzilla.redhat.com/show_bug.cgi?id=845492
  [ 3 ] Bug #967521 - /var/log/journal breaks system startup
        https://bugzilla.redhat.com/show_bug.cgi?id=967521
--------------------------------------------------------------------------------


================================================================================
 libdrm-2.4.47-1.fc19 (FEDORA-2013-20963)
 Direct Rendering Manager runtime library
--------------------------------------------------------------------------------
Update Information:

fix for nouveau on < nv10-nv40 gpus
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Dave Airlie <airlied@xxxxxxxxxx> 2.4.47-1
- libdrm 2.4.47

- add fix for nouveau with gcc 4.8
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.4.46-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 mate-applets-1.6.1-7.fc19 (FEDORA-2013-20973)
 MATE Desktop panel applets
--------------------------------------------------------------------------------
Update Information:

- add patch for build against upower-1.0
- clean up BRs
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-7
- add patch for build against upower-1.0
- clean up BRs
* Fri Nov  1 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-6
- disable upower BR > f20, until we know to handle upower-1.0
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 mingw-gnutls-3.1.16-1.fc19 (FEDORA-2013-20987)
 MinGW GnuTLS TLS/SSL encryption library
--------------------------------------------------------------------------------
Update Information:

Version 3.1.16 (released 2013-10-31)

* gnulib: updated.

* libdane: Fixed a one-off bug in dane_query_tlsa() introduced by the previous fix. Reported by Tomas Mraz.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Michael Cronenworth <mike@xxxxxxxxxx> - 3.1.16-1
- Update to 3.1.16
--------------------------------------------------------------------------------


================================================================================
 net-snmp-5.7.2-12.fc19 (FEDORA-2013-20969)
 A collection of SNMP protocol tools and libraries
--------------------------------------------------------------------------------
Update Information:

This is just bugfix update.
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 21 2013 Jan Safranek <jsafrane@xxxxxxxxxx> - 1:5.7.2-12
- added btrfs support to hrFSTable (#965348)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1027427 - HOST-RESOURCES-MIB::hrFS* not includes btrfs
        https://bugzilla.redhat.com/show_bug.cgi?id=1027427
--------------------------------------------------------------------------------


================================================================================
 nfsometer-1.6-1.fc19 (FEDORA-2013-20984)
 NFS Performance Framework Tool
--------------------------------------------------------------------------------
Update Information:

NFSometer v1.6: This version includes bugfixes, code cleanups and speedups and style/layout changes to reports 

NFSometer v1.5: This version includes several bugfixes, including one that caused a traceback when parsing results from older kernels. 

NFSometer v1.4 : This version has a redesign of reports, many bugfixes and several new features. 
NFSometer is a performance measurement framework for running workloads and reporting results across NFS protocol versions, NFS options and Linux NFS client implementations.
Updated to the latest upstream release: 1.5
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.6-1
- Update to 1.6
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue Mar 26 2013 Weston Andros Adamson <dros@xxxxxxxxxx> 1.5-1
- Updated to the latest upstream release: 1.5
--------------------------------------------------------------------------------


================================================================================
 openscap-0.9.13-3.fc19 (FEDORA-2013-20979)
 Set of open source libraries enabling integration of the SCAP line of standards
--------------------------------------------------------------------------------
Update Information:

OpenSCAP updates to new upstream release (0.9.13). SCE is separated to openscap-engine-sce sub-package. openscap-content is obsoleted by scap-security-guide.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Šimon Lukašík <slukasik@xxxxxxxxxx> 0.9.13-3
- correct openscap-utils dependencies
* Fri Nov  8 2013 Šimon Lukašík <slukasik@xxxxxxxxxx> 0.9.13-2
- drop openscap-content package (use scap-security-guide instead)
* Fri Nov  8 2013 Šimon Lukašík <slukasik@xxxxxxxxxx> 0.9.13-1
- upgrade
* Thu Sep 26 2013 Šimon Lukašík <slukasik@xxxxxxxxxx> 0.9.12-2
- Start building SQL probes for Fedora
--------------------------------------------------------------------------------


================================================================================
 openvswitch-2.0.0-1.fc19 (FEDORA-2013-20982)
 Open vSwitch daemon/database/utilities
--------------------------------------------------------------------------------
Update Information:

Update to Open vSwitch 2.0
stop using /var/lock/subsys with systemd.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 2.0.0-1
- updated to 2.0.0 (#1023184)
* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-8
- applied upstream commit 7b75828bf5654c494a53fa57be90713c625085e2
  rhel: Option to create tunnel through ifcfg scripts.
* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-7
- applied upstream commit 32aa46891af5e173144d672e15fec7c305f9a4f3
  rhel: Set STP of a bridge during bridge creation.
* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-6
- applied upstream commit 5b56f96aaad4a55a26576e0610fb49bde448dabe
  rhel: Prevent duplicate ifup calls.
* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-5
- applied upstream commit 79416011612541d103a1d396d888bb8c84eb1da4
  rhel: Return an exit value of 0 for ifup-ovs.
* Mon Oct 28 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-4
- applied upstream commit 2517bad92eec7e5625bc8b248db22fdeaa5fcde9
  Added RHEL ovs-ifup STP option handling
* Tue Oct  1 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-3
- don't use /var/lock/subsys with systemd (#1006412)
* Thu Sep 19 2013 Flavio Leitner <fbl@xxxxxxxxxx> - 1.11.0-2
- ovsdbmonitor package is optional
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1006412 - openvswitch fails to start
        https://bugzilla.redhat.com/show_bug.cgi?id=1006412
--------------------------------------------------------------------------------


================================================================================
 pencil-2.0.5-1.fc19 (FEDORA-2013-20986)
 A sketching and GUI prototyping tool
--------------------------------------------------------------------------------
Update Information:

Update new release 2.0.5 from upstream for PNG files export with new XULRunner bugfix.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Truong Anh Tuan <tuanta@xxxxxxxxxxxxxxx> - 2.0.5-1
- Update new release 2.0.5 from upstream for PNG files export with new XULRunner bugfix.
* Sat Aug  3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1013118 - pencil-2.0.5 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1013118
--------------------------------------------------------------------------------


================================================================================
 prboom-plus-2.5.1.3-3.fc19 (FEDORA-2013-20988)
 Free enhanced DOOM engine
--------------------------------------------------------------------------------
Update Information:

--------

prboom-plus-2.5.1.3-3 replaces mktemp with mkstemp to satisfy rpmlint
Doom is a classic 3D shoot-em-up game.
PrBoom+ is a Doom source port developed from the original PrBoom project by Andrey Budko.
The target of the project is to extend the original port with features that are necessary or useful.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #990614 - Request for Prboom-Plus doom engine.
        https://bugzilla.redhat.com/show_bug.cgi?id=990614
  [ 2 ] Bug #1026517 - Review Request: prboom-plus - Free enhanced DOOM engine
        https://bugzilla.redhat.com/show_bug.cgi?id=1026517
--------------------------------------------------------------------------------


================================================================================
 python-gnutls-1.2.4-2.fc19 (FEDORA-2013-20978)
 Python wrapper for the GNUTLS library
--------------------------------------------------------------------------------
Update Information:

This fixes removes the gnutls-extras code as that library no longer exists, sets the library version to .28 instead of .26 and changes the test for openpgp. 

There is the possibility that there could be regressions however the package as is is completely unuseable so this is should be an improvement.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Nathanael Noblet <nathanael@xxxxxxx> - 1.2.4-2
- Fix bug #1015332
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1015332 - python-gnutls isn't tracking the gnutls version
        https://bugzilla.redhat.com/show_bug.cgi?id=1015332
--------------------------------------------------------------------------------


================================================================================
 python-moksha-wsgi-1.2.1-3.fc19 (FEDORA-2013-20981)
 WSGI components for Moksha
--------------------------------------------------------------------------------
Update Information:

Requires python-paste-script.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.1-3
- Requires on python-paste-script.
* Sun Aug  4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 selinux-policy-3.12.1-74.12.fc19 (FEDORA-2013-20980)
 SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:

Here is where you give an explanation of your update.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.12
- Fixed userdom_dontaudit_delete_user_tmp_files
- Add auth_exec_chkpwd interface
- Add interface to dontaudit attempts to delete user_tmp_t files on thumbnails
- Add tcp/8893 as milter port
- Dontaudit leaked write descriptor to dmesg
- Add rpc_kill_rpcd interface
- Dontaudit attempts to write/delete user_tmp_t files
- Dontaudit attempts by system_mail to modify network config
- Allow ipc_lock for abrt to run journalctl.
- Update zoneminder policy
- Add policy for motion service
- Allow glusterd_t to mounton glusterd_tmp_t
- Allow glusterd to unmout al filesystems
- Allow xenstored to read virt config
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #983196 - SELinux is preventing /usr/bin/gnome-keyring-daemon from 'getattr' accesses on the file /var/lib/gdm/.config/dconf/user.
        https://bugzilla.redhat.com/show_bug.cgi?id=983196
  [ 2 ] Bug #986647 - SELinux is preventing /usr/bin/dmesg from 'write' accesses on the file /proc/sys/kernel/printk.
        https://bugzilla.redhat.com/show_bug.cgi?id=986647
  [ 3 ] Bug #1013909 - SELinux is preventing /usr/sbin/oxenstored from 'search' accesses on the directory /etc/xen.
        https://bugzilla.redhat.com/show_bug.cgi?id=1013909
  [ 4 ] Bug #1022466 - SELinux is preventing /usr/sbin/glusterfsd from 'unmount' accesses on the filesystem .
        https://bugzilla.redhat.com/show_bug.cgi?id=1022466
  [ 5 ] Bug #1022535 - Default context for GlusterFS /run sockets is wrong
        https://bugzilla.redhat.com/show_bug.cgi?id=1022535
  [ 6 ] Bug #1023647 - SELinux is preventing /usr/bin/motion from 'listen' accesses on the tcp_socket .
        https://bugzilla.redhat.com/show_bug.cgi?id=1023647
  [ 7 ] Bug #1025028 - SELinux is preventing /usr/bin/totem-video-thumbnailer from 'unlink' accesses on the file registry.x86_64.bin.
        https://bugzilla.redhat.com/show_bug.cgi?id=1025028
  [ 8 ] Bug #1026040 - SELinux is preventing /usr/sbin/sendmail.sendmail from using the 'net_admin' capabilities.
        https://bugzilla.redhat.com/show_bug.cgi?id=1026040
--------------------------------------------------------------------------------


================================================================================
 sysusage-5.3-2.fc19 (FEDORA-2013-20960)
 The sysstat and sar grapher
--------------------------------------------------------------------------------
Update Information:

Correct localstate path.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 5.3-2
- Fix localstatedir var for PID location
--------------------------------------------------------------------------------


================================================================================
 wireshark-1.10.3-3.fc19 (FEDORA-2013-20985)
 Network traffic analyzer
--------------------------------------------------------------------------------
Update Information:

fix subpackage requires
Harden dumpcap capabilities
* Ver. 1.10.3
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  7 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.3-3
- fix subpackage requires
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1026534 - CVE-2013-6336 wireshark: IEEE 802.15.4 dissector crash (wnpa-sec-2013-61)
        https://bugzilla.redhat.com/show_bug.cgi?id=1026534
  [ 2 ] Bug #1026538 - CVE-2013-6337 wireshark: NBAP dissector crash (wnpa-sec-2013-62)
        https://bugzilla.redhat.com/show_bug.cgi?id=1026538
  [ 3 ] Bug #1026539 - CVE-2013-6338 wireshark: SIP dissector crash (wnpa-sec-2013-63)
        https://bugzilla.redhat.com/show_bug.cgi?id=1026539
  [ 4 ] Bug #1026540 - CVE-2013-6339 wireshark: ActiveMQ OpenWire dissector large loop (wnpa-sec-2013-64)
        https://bugzilla.redhat.com/show_bug.cgi?id=1026540
  [ 5 ] Bug #1026541 - CVE-2013-6340 wireshark: TCP dissector crash (wnpa-sec-2013-65)
        https://bugzilla.redhat.com/show_bug.cgi?id=1026541
--------------------------------------------------------------------------------


================================================================================
 youtube-dl-2013.11.07-1.fc19 (FEDORA-2013-20971)
 A small command-line program to download online videos
--------------------------------------------------------------------------------
Update Information:

New version.
New version.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Nov  8 2013 Christopher Meng <rpm@xxxxxxxx> - 2013.11.07-1
- Update to new release(BZ#1027822).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1027822 - youtube-dl-2013.11.07 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1027822
  [ 2 ] Bug #1026034 - youtube-dl-2013.11.02 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1026034
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test





[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux