The following Fedora 18 Security updates need testing: Age URL 205 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18 51 https://admin.fedoraproject.org/updates/FEDORA-2013-17195/spice-gtk-0.18-3.fc18 48 https://admin.fedoraproject.org/updates/FEDORA-2013-17431/thunderbird-17.0.9-1.fc18 45 https://admin.fedoraproject.org/updates/FEDORA-2013-17635/wireshark-1.10.2-4.fc18 44 https://admin.fedoraproject.org/updates/FEDORA-2013-17853/davfs2-1.4.7-3.fc18 43 https://admin.fedoraproject.org/updates/FEDORA-2013-17912/chicken-4.8.0.4-4.fc18 32 https://admin.fedoraproject.org/updates/FEDORA-2013-18647/gnupg-1.4.15-1.fc18 31 https://admin.fedoraproject.org/updates/FEDORA-2013-18802/phpMyAdmin-3.5.8.2-1.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-20176/mantis-1.2.15-3.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-20410/poppler-0.20.2-17.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-20748/kernel-3.11.7-100.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20817/python-djblets-0.7.23-1.fc18,ReviewBoard-1.7.17-1.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20976/drupal7-context-3.1-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-21057/xen-4.2.3-8.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-21018/bip-0.8.9-1.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 274 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-20263/openssl-1.0.1e-30.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-20279/gnome-abrt-0.3.3-1.fc18,abrt-2.1.9-1.fc18,libreport-2.1.9-1.fc18,satyr-0.11-1.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-20150/nss-util-3.15.2-2.fc18,nss-softokn-3.15.2-2.fc18,nss-3.15.2-2.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-20422/bind-9.9.3-7.P2.fc18 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20797/libbluray-0.4.0-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20919/sane-backends-1.0.24-6.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20908/libxfce4ui-4.10.0-9.fc18 The following builds have been pushed to Fedora 18 updates-testing ardour3-3.5.74-2.fc18 bip-0.8.9-1.fc18 etckeeper-1.10-1.fc18 libltc-1.1.3-1.fc18 manaplus-1.3.10.27.2-1.fc18 mate-control-center-1.6.1-3.fc18 mate-desktop-1.6.2-0.7.git81c245b.fc18 mate-document-viewer-1.6.1-7.fc18 mate-power-manager-1.6.3-0.3.gitbc54d96.fc18 mate-screensaver-1.6.1-4.fc18 mate-session-manager-1.6.1-4.fc18 orthanc-0.7.2-1.fc18 plowshare-0.9.4-0.45.20131102git.fc18 profile-sync-daemon-5.44-1.fc18 python-flask-images-1.0.0-3.fc18 weechat-0.4.2-3.fc18 xen-4.2.3-8.fc18 Details about builds: ================================================================================ ardour3-3.5.74-2.fc18 (FEDORA-2013-20148) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 [ 3 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 -------------------------------------------------------------------------------- ================================================================================ bip-0.8.9-1.fc18 (FEDORA-2013-21018) IRC Bouncer -------------------------------------------------------------------------------- Update Information: * Upstream v0.8.9 * CVE-2013-4550 - failed SSL handshake resource leak -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.8.9-1 - Upstream v0.8.9 - CVE-2013-4550 - failed SSL handshake resource leak - Removed 2 patches included in new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1028605 - CVE-2013-4550 bip: failed SSL handshake resource leak https://bugzilla.redhat.com/show_bug.cgi?id=1028605 -------------------------------------------------------------------------------- ================================================================================ etckeeper-1.10-1.fc18 (FEDORA-2013-21021) Store /etc in a SCM system (git, mercurial, bzr or darcs) -------------------------------------------------------------------------------- Update Information: Update to the latest stable release. From the upstream changelog: * Remove lvm/backup from default ignores, because lvm documentation recommends backing that up, for use by vgcfgrestore. * Fix exporting of some git variables. Closes: http://bugs.debian.org/728583. -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Thomas Moschny <thomas.moschny@xxxxxx> - 1.10-1 - Update to 1.10. -------------------------------------------------------------------------------- ================================================================================ libltc-1.1.3-1.fc18 (FEDORA-2013-20148) Linear/Longitudinal Time Code (LTC) Library -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 [ 3 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 -------------------------------------------------------------------------------- ================================================================================ manaplus-1.3.10.27.2-1.fc18 (FEDORA-2013-21051) OpenSource 2D MMORPG client for Evol Online and The Mana World -------------------------------------------------------------------------------- Update Information: New upstream release including bug fixes and enhancements. ChangeLog: https://www.gitorious.org/manaplus/manaplus/source/94aee6b81132884686bce4473d67380c57c72fff:ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Bruno Wolff III <bruno@xxxxxxxx> - 1.3.10.27.2-1 - Update to upstream 1.3.10.27.2 - ChangeLog: https://www.gitorious.org/manaplus/manaplus/source/94aee6b81132884686bce4473d67380c57c72fff:ChangeLog - Temporarily, the -n option is needed for %setup -------------------------------------------------------------------------------- ================================================================================ mate-control-center-1.6.1-3.fc18 (FEDORA-2013-21047) MATE Desktop control-center -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-3 - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ================================================================================ mate-desktop-1.6.2-0.7.git81c245b.fc18 (FEDORA-2013-21019) Shared code for mate-panel, mate-session, mate-file-manager, etc -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.2-0.7.git81c245b - switch to gnome-keyring for > f19 * Fri Oct 18 2013 Dan Mashal <dan.mashal@xxxxxxxxxxxxxxxxx> - 1.6.2.-0.6.git81c245b - Fix typo -------------------------------------------------------------------------------- ================================================================================ mate-document-viewer-1.6.1-7.fc18 (FEDORA-2013-21068) Document viewer -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring > f19 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-7 - switch to gnome-keyring -------------------------------------------------------------------------------- ================================================================================ mate-power-manager-1.6.3-0.3.gitbc54d96.fc18 (FEDORA-2013-21032) MATE power management service -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.3-0.3.gitbc54d96 - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ================================================================================ mate-screensaver-1.6.1-4.fc18 (FEDORA-2013-21056) MATE Screensaver -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 19 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-4 - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ================================================================================ mate-session-manager-1.6.1-4.fc18 (FEDORA-2013-21058) MATE Desktop session manager -------------------------------------------------------------------------------- Update Information: - switch to gnome-keyring for > f19 -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 16 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.1-4 - switch to gnome-keyring for > f19 - add mate-session-manager_systemd-session_id.patch * Tue Sep 10 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.6.1-3 - initial attempt at systemd-login1 suspend/hibernate support -------------------------------------------------------------------------------- ================================================================================ orthanc-0.7.2-1.fc18 (FEDORA-2013-21061) RESTful DICOM server for healthcare and medical research -------------------------------------------------------------------------------- Update Information: New upstream version of Orthanc -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.7.2-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ plowshare-0.9.4-0.45.20131102git.fc18 (FEDORA-2013-21026) Download and upload files from file-sharing websites -------------------------------------------------------------------------------- Update Information: New upstream snapshot -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Elder Marco <eldermarco@xxxxxxxxxxxxxxxxx> - 0.9.4-0.45.20131102git - New upstream snapshot -------------------------------------------------------------------------------- ================================================================================ profile-sync-daemon-5.44-1.fc18 (FEDORA-2013-21027) Offload browser profiles to RAM for speed a wear reduction -------------------------------------------------------------------------------- Update Information: New version. -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Christopher Meng <rpm@xxxxxxxx> - 5.44-1 - New version. * Sun Nov 3 2013 Christopher Meng <rpm@xxxxxxxx> - 5.43-1 - New version. * Mon Sep 16 2013 Christopher Meng <rpm@xxxxxxxx> - 5.40.1-1 - New upstream release. -------------------------------------------------------------------------------- ================================================================================ python-flask-images-1.0.0-3.fc18 (FEDORA-2013-21042) Dynamic image resizing for Flask -------------------------------------------------------------------------------- Update Information: python-flask-images version 1.0.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025058 - Review Request: python-flask-images - Dynamic image resizing for Flask https://bugzilla.redhat.com/show_bug.cgi?id=1025058 -------------------------------------------------------------------------------- ================================================================================ weechat-0.4.2-3.fc18 (FEDORA-2013-21035) Portable, fast, light and extensible IRC client -------------------------------------------------------------------------------- Update Information: - rename binary from "weechat-curses" to "weechat" (with symbolic link "weechat-curses" for compatibility) - add secured data (encryption of passwords or private data), new command /secure, new file sec.conf - search of regular expression in buffer with text emphasis, in prefixes, messages or both - add option "scroll_beyond_end" for command /window - add optional buffer context in bar items (for example to display bitlbee nicklist in a root bar) - new options weechat.look.hotlist_{prefix|suffix} - new option weechat.look.key_bind_safe to prevent any key binding error from user - new option weechat.network.proxy_curl to use a proxy when downloading URLs with curl - display day change message dynamically - support of wildcards in IRC commands (de)op/halfop/voice - new option irc.look.notice_welcome_redirect to redirect channel welcome notices to the channel buffer - new option irc.look.nick_color_hash: new hash algorithm to find nick colors (variant of djb2) - add info about things defined by a script in the detailed view of script (/script show) - support of "enchant" library in aspell plugin - many bugs fixed. - no more man page by default -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Russell Golden <niveusluna@xxxxxxxxxxxxxx> - 0.4.2-3 - Forgot to remove the patch1 instruction * Fri Nov 8 2013 Russell Golden <niveusluna@xxxxxxxxxxxxxx> - 0.4.2-2 - Forgot to remove 0.4.1 from the sources file. (Rawhide only.) * Fri Nov 8 2013 Russell Golden <niveusluna@xxxxxxxxxxxxxx> - 0.4.2-1 - rename binary from "weechat-curses" to "weechat" (with symbolic link "weechat-curses" for compatibility) - add secured data (encryption of passwords or private data), new command /secure, new file sec.conf - search of regular expression in buffer with text emphasis, in prefixes, messages or both - add option "scroll_beyond_end" for command /window - add optional buffer context in bar items (for example to display bitlbee nicklist in a root bar) - new options weechat.look.hotlist_{prefix|suffix} - new option weechat.look.key_bind_safe to prevent any key binding error from user - new option weechat.network.proxy_curl to use a proxy when downloading URLs with curl - display day change message dynamically - support of wildcards in IRC commands (de)op/halfop/voice - new option irc.look.notice_welcome_redirect to redirect channel welcome notices to the channel buffer - new option irc.look.nick_color_hash: new hash algorithm to find nick colors (variant of djb2) - add info about things defined by a script in the detailed view of script (/script show) - support of "enchant" library in aspell plugin - many bugs fixed. - no more man page by default * Sun Aug 4 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.4.1-3 - add BR: libgcrypt-devel * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025557 - New upstream version https://bugzilla.redhat.com/show_bug.cgi?id=1025557 -------------------------------------------------------------------------------- ================================================================================ xen-4.2.3-8.fc18 (FEDORA-2013-21057) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: Host crash due to HVM guest VMX instruction execution -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.3-8 - Host crash due to HVM guest VMX instruction execution [XSA-75, CVE-2013-4551] (#1028599) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1028599 - CVE-2013-4551 xen: Host crash due to guest VMX instruction execution https://bugzilla.redhat.com/show_bug.cgi?id=1028599 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
