The following Fedora 18 Security updates need testing: Age URL 47 https://admin.fedoraproject.org/updates/FEDORA-2013-21875/389-ds-base-1.3.0.9-1.fc18 21 https://admin.fedoraproject.org/updates/FEDORA-2013-23662/rubygem-actionpack-3.2.8-4.fc18 21 https://admin.fedoraproject.org/updates/FEDORA-2013-23663/ibus-chewing-1.4.4-1.fc18 13 https://admin.fedoraproject.org/updates/FEDORA-2013-23988/varnish-3.0.5-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2014-0159/python-libcloud-0.13.3-1.fc18 6 https://admin.fedoraproject.org/updates/FEDORA-2014-0085/rubygem-will_paginate-3.0.2-5.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2014-0474/openssl-1.0.1e-37.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2014-0513/strongswan-5.1.1-4.fc18 The following Fedora 18 Critical Path updates have yet to be approved: Age URL 334 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18 1 https://admin.fedoraproject.org/updates/FEDORA-2014-0474/openssl-1.0.1e-37.fc18 0 https://admin.fedoraproject.org/updates/FEDORA-2014-0515/selinux-policy-3.11.1-109.fc18 The following builds have been pushed to Fedora 18 updates-testing gimp-help-2.8.1-1.fc18 selinux-policy-3.11.1-109.fc18 strongswan-5.1.1-4.fc18 Details about builds: ================================================================================ gimp-help-2.8.1-1.fc18 (FEDORA-2014-0570) Help files for GIMP -------------------------------------------------------------------------------- Update Information: Update to 2.8.1 with updated documentation and translations. The Korean translation has been redone from scratch as it was completely botched previously. Subpackages for languages which aren't translated at all have been removed. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 9 2014 Nils Philippsen <nils@xxxxxxxxxx> - 2.8.1-1 - version 2.8.1 - reenable parallel building - add Brazilian Portuguese translation - remove (empty) translations: Finnish, Hungarian, Lithuanian, Polish - fix translation that makes xml2po.py/libxml2 crash * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.8.0-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Tue Jul 9 2013 Nils Philippsen <nils@xxxxxxxxxx> - 2.8.0-7 - add GPLv2+ to license list (included tools used for building) * Tue May 14 2013 Nils Philippsen <nils@xxxxxxxxxx> - 2.8.0-6 - don't attempt parallel builds, they succeed or fail without a clear pattern * Mon May 13 2013 Nils Philippsen <nils@xxxxxxxxxx> - 2.8.0-5 - include all PO files missing from the tarball (#914031) * Wed Feb 13 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.8.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.11.1-109.fc18 (FEDORA-2014-0515) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: See http://koji.fedoraproject.org/koji/taskinfo?taskID=6379946 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 9 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.11.1-109 - Fixed labels for sshd keys -------------------------------------------------------------------------------- References: [ 1 ] Bug #1046025 - /etc/ssh/ssh_host_ecdsa_key* have a worng etc_t type https://bugzilla.redhat.com/show_bug.cgi?id=1046025 -------------------------------------------------------------------------------- ================================================================================ strongswan-5.1.1-4.fc18 (FEDORA-2014-0513) An OpenSource IPsec-based VPN Solution -------------------------------------------------------------------------------- Update Information: This is a major update that includes a version bump, build configuration changes and security updates. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 9 2014 Pavel Šimerda <psimerda@xxxxxxxxxx> - 5.1.1-4 - Removed redundant patches and *.spec commands caused by branch merging * Wed Jan 8 2014 Pavel Šimerda <psimerda@xxxxxxxxxx> - 5.1.1-3 - rebuilt * Mon Dec 2 2013 Avesh Agarwal <avagarwa@xxxxxxxxxx> - 5.1.1-2 - Resolves: 973315 - Resolves: 1036844 * Fri Nov 1 2013 Avesh Agarwal <avagarwa@xxxxxxxxxx> - 5.1.1-1 - Support for PT-TLS (RFC 6876) - Support for SWID IMC/IMV - Support for command line IKE client charon-cmd - Changed location of pki to /usr/bin - Added swid tags files - Added man pages for pki and charon-cmd - Renamed pki to strongswan-pki to avoid conflict with pki-core/pki-tools package. - Update local patches - Fixes CVE-2013-6075 - Fixes CVE-2013-6076 - Fixed autoconf/automake issue as configure.ac got changed and it required running autoreconf during the build process. - added strongswan signature file to the sources. * Thu Sep 12 2013 Avesh Agarwal <avagarwa@xxxxxxxxxx> - 5.1.0-3 - Fixed initialization crash of IMV and IMC particularly attestation imv/imc as libstrongswas was not getting initialized. * Fri Aug 30 2013 Avesh Agarwal <avagarwa@xxxxxxxxxx> - 5.1.0-2 - Enabled fips support - Enabled TNC's ifmap support - Enabled TNC's pdp support - Fixed hardocded package name in this spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025870 - CVE-2013-6075 strongswan: denial of service and potential authorization bypass https://bugzilla.redhat.com/show_bug.cgi?id=1025870 [ 2 ] Bug #1026152 - CVE-2013-6076 strongswan: denial of service when handling IKEv1 fragmentation payloads https://bugzilla.redhat.com/show_bug.cgi?id=1026152 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
