The following Fedora 18 Security updates need testing: Age URL 227 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18 73 https://admin.fedoraproject.org/updates/FEDORA-2013-17195/spice-gtk-0.18-3.fc18 70 https://admin.fedoraproject.org/updates/FEDORA-2013-17431/thunderbird-17.0.9-1.fc18 68 https://admin.fedoraproject.org/updates/FEDORA-2013-17635/wireshark-1.10.2-4.fc18 66 https://admin.fedoraproject.org/updates/FEDORA-2013-17853/davfs2-1.4.7-3.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21875/389-ds-base-1.3.0.9-1.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22312/xen-4.2.3-10.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22315/ruby-1.9.3.484-32.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22313/subversion-1.7.14-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22422/php-symfony2-Security-2.2.10-1.fc18,php-symfony2-Yaml-2.2.10-1.fc18,php-symfony2-Translation-2.2.10-1.fc18,php-symfony2-Finder-2.2.10-1.fc18,php-symfony2-Routing-2.2.10-1.fc18,php-symfony2-Console-2.2.10-1.fc18,php-symfony2-HttpFoundation-2.2.10-1.fc18,php-symfony2-Config-2.2.10-1.fc18,php-symfony2-Validator-2.2.10-1.fc18,php-symfony2-ClassLoader-2.2.10-1.fc18,php-symfony2-PropertyAccess-2.2.10-1.fc18,php-symfony2-Filesystem-2.2.10-1.fc18,php-symfony2-Templating-2.2.10-1.fc18,php-symfony2-DependencyInjection-2.2.10-1.fc18,php-symfony2-HttpKernel-2.2.10-1.fc18,php-symfony2-BrowserKit-2.2.10-1.fc18,php-symfony2-DomCrawler-2.2.10-1.fc18,php-symfony2-EventDispatcher-2.2.10-1.fc18,php-symfony2-Form-2.2.10-1.fc18,php-symfony2-CssSelector-2.2.10-1.fc18,php-symfony2-OptionsResolver-2.2.10-1.fc18,php-symfony2-Process-2.2.10-1.fc18,php-symfony2-Serializer-2.2.10-1.fc18,php-symfony2-Locale-2.2.10-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22456/seamonkey-2.22.1-1.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22497/ganglia-3.6.0-3.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-22607/nbd-3.5-1.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2013-22606/maradns-2.0.07d-1.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 296 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-21783/unzip-6.0-11.fc18 12 https://admin.fedoraproject.org/updates/FEDORA-2013-21776/soprano-2.9.4-2.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21825/gvfs-1.14.2-5.fc18 9 https://admin.fedoraproject.org/updates/FEDORA-2013-21847/sane-backends-1.0.24-7.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22215/taglib-1.9.1-2.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22253/kde-settings-4.9-22.fc18 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22299/fedora-bookmarks-15-4.fc18 2 https://admin.fedoraproject.org/updates/FEDORA-2013-22457/libbluray-0.4.0-2.fc18 The following builds have been pushed to Fedora 18 updates-testing ReviewBoard-1.7.19-1.fc18 gimp-separate+-0.5.8-9.fc18 inception-0.3.3-2.fc18 kanyremote-6.3.2-1.fc18 maradns-2.0.07d-1.fc18 nbd-3.5-1.fc18 perl-PAR-Packer-1.016-1.fc18 python-ase-3.8.1.3440-8.fc18 python-djblets-0.7.24-1.fc18 redshift-1.8-1.fc18 shared-color-targets-0.1.3-1.fc18 Details about builds: ================================================================================ ReviewBoard-1.7.19-1.fc18 (FEDORA-2013-22595) Web-based code review tool -------------------------------------------------------------------------------- Update Information: * Wed Nov 27 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 27 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. -------------------------------------------------------------------------------- ================================================================================ gimp-separate+-0.5.8-9.fc18 (FEDORA-2013-22627) Rudimentary CMYK support for The GIMP -------------------------------------------------------------------------------- Update Information: New package containing rudimentary CMYK support for The GIMP. -------------------------------------------------------------------------------- References: [ 1 ] Bug #34 - wrong permissions of /usr/doc/gimp-manual* https://bugzilla.redhat.com/show_bug.cgi?id=34 [ 2 ] Bug #913289 - Review Request: gimp-separate+ - A plug-in providing rudimentary CMYK support for The GIMP https://bugzilla.redhat.com/show_bug.cgi?id=913289 [ 3 ] Bug #35 - Bugs in /etc/rc.d/init.d/gated script https://bugzilla.redhat.com/show_bug.cgi?id=35 -------------------------------------------------------------------------------- ================================================================================ inception-0.3.3-2.fc18 (FEDORA-2013-22603) A fireWire physical memory manipulation tool -------------------------------------------------------------------------------- Update Information: * Mon Dec 02 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-2 - Remove test suite (#1036375) * Thu Nov 28 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-1 - Updated to new upstream release 0.3.3 * Thu Nov 28 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-1 - Updated to new upstream release 0.3.3 * Thu Nov 28 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-1 - Updated to new upstream release 0.3.3 -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-2 - Remove test suite (#1036375) * Thu Nov 28 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.3-1 - Updated to new upstream release 0.3.3 * Wed Sep 4 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.3.0-1 - Updated to new upstream release 0.3.0 * Mon Aug 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.2.6-1 - Updated to new upstream release 0.2.6 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1036375 - inception-debuginfo-0.3.3-1 is empty https://bugzilla.redhat.com/show_bug.cgi?id=1036375 -------------------------------------------------------------------------------- ================================================================================ kanyremote-6.3.2-1.fc18 (FEDORA-2013-22602) KDE frontend for anyRemote -------------------------------------------------------------------------------- Update Information: v6.3.2 -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Mikhail Fedotov <anyremote at mail.ru> - 6.3.2 - Fixed RedHat bugzilla bug 1034914 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1034914 - [abrt] kanyremote-6.3.1-1.fc19: kanyremote:3457:setStatusConnected:AttributeError: ConfigReader instance has no attribute 'dvSrvType_' https://bugzilla.redhat.com/show_bug.cgi?id=1034914 -------------------------------------------------------------------------------- ================================================================================ maradns-2.0.07d-1.fc18 (FEDORA-2013-22606) Authoritative and recursive DNS server made with security in mind -------------------------------------------------------------------------------- Update Information: This update fixes possible blind spoof attack vulnerability. See http://samiam.org/blog/20131202.html for more details. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Tomasz Torcz <ttorcz@xxxxxxxxxxxxxxxxx> - 2.0.07d-1 - fix against possible blind spoof attack -------------------------------------------------------------------------------- ================================================================================ nbd-3.5-1.fc18 (FEDORA-2013-22607) Network Block Device user-space tools (TCP version) -------------------------------------------------------------------------------- Update Information: Add systemd support for nbd-server. Use strcmp() rather than strncmp() for CVE-2013-6410. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Christopher Meng <rpm@xxxxxxxx> - 3.5-1 - Fix incorrect parsing of access control file in nbd-server(CVE-2013-6410). - Add systemd support for nbd-server(BZ#877518). - Enable logging to syslog. * Tue Sep 17 2013 Christopher Meng <rpm@xxxxxxxx> - 3.4-1 - New version. * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jun 7 2013 Richard W.M. Jones <rjones@xxxxxxxxxx> - 3.3-1 - New upstream version 3.3. - Modernize the spec file. - There is a new program (nbd-trdump). * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.9.20-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1035998 - CVE-2013-6410 nbd: incorrect parsing of access control file in nbd-server https://bugzilla.redhat.com/show_bug.cgi?id=1035998 -------------------------------------------------------------------------------- ================================================================================ perl-PAR-Packer-1.016-1.fc18 (FEDORA-2013-22625) PAR Packager -------------------------------------------------------------------------------- Update Information: This release removes an unsed variable from XS code. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.016-1 - 1.016 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1036594 - perl-PAR-Packer-1.016 is available https://bugzilla.redhat.com/show_bug.cgi?id=1036594 -------------------------------------------------------------------------------- ================================================================================ python-ase-3.8.1.3440-8.fc18 (FEDORA-2013-22618) Atomic Simulation Environment -------------------------------------------------------------------------------- Update Information: Should fix https://bugzilla.redhat.com/show_bug.cgi?id=1010479#c10 New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher New upstream version fixes the conflict with the_silver_searcher -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 30 2013 Marcin Dulak <Marcin.Dulak@xxxxxxxxx> - 3.8.1.3440-8 - fix Exec in ase-gui.desktop - remove MANIFEST.in from %doc - PATH modified for tests to include scripts dir * Fri Nov 22 2013 Marcin Dulak <Marcin.Dulak@xxxxxxxxx> - 3.8.1.3440-7 - new upstream version, old patches removed -------------------------------------------------------------------------------- References: [ 1 ] Bug #1010479 - Binary name conflict with python-ase and the_silver_searcher https://bugzilla.redhat.com/show_bug.cgi?id=1010479 -------------------------------------------------------------------------------- ================================================================================ python-djblets-0.7.24-1.fc18 (FEDORA-2013-22595) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information: * Wed Nov 27 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.19-1 - New upstream bugfix release 1.7.19 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.19/ - New Features: * Added support for two-factor authentication for GitHub. - Performance Improvements: * Re-introduced browser caching on the review request page. - Web API Changes: * Added the mirror_path field to Repository Resource. - Bug Fixes: * Fixed the default focus on the Review dialog. The top-most field now always has default focus. * Fixed displaying review requests for groups on a Local Site. * Prevented rare crashes with Local Sites using the new permissions support without any granted permissions. * Fixed HTTP basic authentication with the web API when using fastcgi. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 27 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 0.7.24-1 - New upstream release 0.7.24 - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.24.NEWS * djblets.util.http: * Fixed ETag matching -------------------------------------------------------------------------------- ================================================================================ redshift-1.8-1.fc18 (FEDORA-2013-22597) Adjusts the color temperature of your screen according to time of day -------------------------------------------------------------------------------- Update Information: This is an update to the latest version 1.8 of redshift -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 30 2013 Milos Komarcevic <kmilos@xxxxxxxxx> - 1.8-1 - Update to 1.8 (#1029155) - Source comes from GitHub now * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.7-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1029155 - Update package to 1.8, please https://bugzilla.redhat.com/show_bug.cgi?id=1029155 -------------------------------------------------------------------------------- ================================================================================ shared-color-targets-0.1.3-1.fc18 (FEDORA-2013-22628) Shared color targets for creating color profiles -------------------------------------------------------------------------------- Update Information: New upstream release with several new targets from Wolf Faust. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 2 2013 Richard Hughes <richard@xxxxxxxxxxx> 0.1.3-1 - New upstream release with several new targets from Wolf Faust. -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test