The following builds have been pushed to Fedora 12 updates-testing
boa-0.94.14-0.15.rc21.fc12
coreutils-7.6-11.fc12
dhcp-4.1.1-16.fc12
easytag-2.1.6-3.fc12
erlang-R13B-04.9.fc12
filezilla-3.3.2.1-1.fc12
flashrom-0.9.1-4.svn995.fc12
hivex-1.2.2-1.fc12
html-xml-utils-5.7-1.fc12
initscripts-9.02.2-1
kchmviewer-5.2-1.fc12
lighttpd-1.4.26-2.fc12
lsdvd-0.16-13.fc12
mod_security-2.5.12-2.fc12
phonon-4.4.1-2.fc12
pinentry-0.8.0-1.fc12
python-elixir-0.6.1-5.fc12
ruby-gnome2-0.19.4-1.fc12
shadow-utils-4.1.4.2-3.fc12
soprano-2.4.3-2.fc12
synergy-plus-1.3.4-3.fc12.1
taggle-1.0-1.fc12
uqm-0.6.2-11.fc12
xar-1.5.2-6.fc12
youtube-dl-2010.04.04-1.fc12
Details about builds:
================================================================================
boa-0.94.14-0.15.rc21.fc12 (FEDORA-2010-7640)
Single-tasking HTTP server
--------------------------------------------------------------------------------
Update Information:
This update fixes CVE-2009-4496 where HTTP request logs were written without
sanitizing non-printable characters.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Matthias Saou <http://freshrpms.net/> 0.94.14-0.15.rc21
- Include escape-errorlog patch from Debian to fix CVE-2009-4496 (#583162).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #583162 - CVE-2009-4496 boa: sanitize nonprintable characters in error logs
https://bugzilla.redhat.com/show_bug.cgi?id=583162
--------------------------------------------------------------------------------
================================================================================
coreutils-7.6-11.fc12 (FEDORA-2010-7665)
A set of basic GNU tools commonly used in shell scripts
--------------------------------------------------------------------------------
Update Information:
- doublequote LS_COLORS in colorls.*sh scripts to speedup shell
start(#586029) - update /etc/DIR_COLORS* files - move readlink from /usr/bin
to bin, keep symlink in /usr/bin(#580682) - run tput colors in colorls
profile.d scripts only in the interactive mode(#450424) - fix exit status of
terminated child processes in su with pam(#559098) - who doesn't determine
user's message status correctly (#454261)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Ondrej Vasik <ovasik@xxxxxxxxxx> - 7.6-11
- doublequote LS_COLORS in colorls.*sh scripts to speedup
shell start(#586029)
- update /etc/DIR_COLORS* files
- move readlink from /usr/bin to bin, keep symlink in
/usr/bin(#580682)
- run tput colors in colorls profile.d scripts only
in the interactive mode(#450424)
- fix exit status of terminated child processes in su with
pam(#559098)
- who doesn't determine user's message status correctly
(#454261)
* Wed Mar 3 2010 Dennis Gilmore <dennis@xxxxxxxx> - 7.6-10
- add patch for mkstemp on sparc64
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #586029 - LS_COLORS setup in /etc/profile.d has insufficient escaping
https://bugzilla.redhat.com/show_bug.cgi?id=586029
[ 2 ] Bug #580682 - move readlink from /usr/bin to /bin
https://bugzilla.redhat.com/show_bug.cgi?id=580682
[ 3 ] Bug #450424 - tput: No value for $TERM and no -T specified
https://bugzilla.redhat.com/show_bug.cgi?id=450424
[ 4 ] Bug #454261 - who does not determine user's message status correctly
https://bugzilla.redhat.com/show_bug.cgi?id=454261
--------------------------------------------------------------------------------
================================================================================
dhcp-4.1.1-16.fc12 (FEDORA-2010-7202)
Dynamic host configuration protocol software
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 12:4.1.1-16
- Move /etc/NetworkManager/dispatcher.d/10-dhclient script
from dhcp to dhclient subpackage (#586999).
* Wed Apr 21 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 12:4.1.1-15
- If the Reply was received in response to Renew or Rebind message,
client adds any new addresses in the IA option to the IA (#578097)
* Mon Apr 19 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 12:4.1.1-14
- Fill in Elapsed Time Option in Release/Decline messages (#582939)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #578097 - dhclient did not add any new address in IA option
https://bugzilla.redhat.com/show_bug.cgi?id=578097
[ 2 ] Bug #582939 - Elapsed Time of release message all zero
https://bugzilla.redhat.com/show_bug.cgi?id=582939
[ 3 ] Bug #586999 - NM dispatcher script should be in dhclient package
https://bugzilla.redhat.com/show_bug.cgi?id=586999
--------------------------------------------------------------------------------
================================================================================
easytag-2.1.6-3.fc12 (FEDORA-2010-7667)
Tag editor for mp3, ogg, flac and other music files
--------------------------------------------------------------------------------
Update Information:
The easytag desktop file contained the type for directories, which could cause
nautilus to start launching easytag instead of showing directory content. This
update fixes this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 8 2010 Matthias Saou <http://freshrpms.net/> 2.1.6-3
- Remove x-directory/normal from the desktop file (#451823).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #451823 - Nautilus, Places, Home opens easytag
https://bugzilla.redhat.com/show_bug.cgi?id=451823
--------------------------------------------------------------------------------
================================================================================
erlang-R13B-04.9.fc12 (FEDORA-2010-7661)
General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:
- Finally rebuilt with autogenerated requires/provides - Fixed missing emacs
files - Fixed error in %postin section
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - R13B-04.9
- Added missing files, necessary for emacs (see rhbz #585349)
- Patches rebased
* Tue Apr 27 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - R13B-04.8
- Added missing BuildRequires libxslt (for building docs)
- Removed %post script completely (resolves rhbz #586428)
- Since now both docs and man-pages are built from sources
- No need to manually create symlinks in %{_bindir}
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #564018 - erlang could use some subpackaging
https://bugzilla.redhat.com/show_bug.cgi?id=564018
[ 2 ] Bug #585349 - The emacs mode shipped with Erlang R13B04 is missing necessary files
https://bugzilla.redhat.com/show_bug.cgi?id=585349
[ 3 ] Bug #586428 - error on upgrade
https://bugzilla.redhat.com/show_bug.cgi?id=586428
--------------------------------------------------------------------------------
================================================================================
filezilla-3.3.2.1-1.fc12 (FEDORA-2010-7663)
FileZilla FTP, FTPS and SFTP client
--------------------------------------------------------------------------------
Update Information:
New features: * Remember location of update download directory Bugfixes
and minor changes: * Cancel file renaming on actions that change the file
list, such as changing sort order or performing a refresh * Cancel file
renaming if starting a drag&drop operation * Filter invalid characters if
downloading through double-clicking files or if adding from the search dialog *
Fix site-specific bookmarks menu * The menu did not reflect initial value of
preserve timestamp option properly
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 27 2010 Nicolas Chauvet <kwizart@xxxxxxxxxxxxxxxxx> - 3.3.2.1-1
- Update to 3.3.2.1
--------------------------------------------------------------------------------
================================================================================
flashrom-0.9.1-4.svn995.fc12 (FEDORA-2010-7653)
Simple program for reading/writing BIOS chips content
--------------------------------------------------------------------------------
Update Information:
New svn ver. 995 (with really lots of new chips and m/b added)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.1-4.svn995
- Updated to latest svn ver. 995
- Lots of new chips and m/b
--------------------------------------------------------------------------------
================================================================================
hivex-1.2.2-1.fc12 (FEDORA-2010-7652)
Read and write Windows Registry binary hive files
--------------------------------------------------------------------------------
Update Information:
This contains an important fix for regedit importing. Upgrading is recommended.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1.2.2-1
- New upstream version 1.2.2.
* Tue Apr 20 2010 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1.2.1-1
- New upstream version 1.2.1.
- Includes new tool for exporting and merging in regedit format.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #578347 - Russian translation of hivex
https://bugzilla.redhat.com/show_bug.cgi?id=578347
--------------------------------------------------------------------------------
================================================================================
html-xml-utils-5.7-1.fc12 (FEDORA-2010-7655)
A number of simple utilities for manipulating HTML and XML files
--------------------------------------------------------------------------------
Update Information:
- Update to 5.7 - For changes please see http://www.w3.org/Tools/HTML-XML-
utils/ChangeLog
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Milos Jakubicek <xjakub@xxxxxxxxxx> - 5.7-1
- Update to 5.7
* Tue Apr 27 2010 Milos Jakubicek <xjakub@xxxxxxxxxx> - 5.6-1
- Update to 5.6
- Dropped html-xml-utils-5.5-hxpipe-man.patch (merged upstream)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #586325 - html-xml-utils-5.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=586325
[ 2 ] Bug #586750 - html-xml-utils-5.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=586750
--------------------------------------------------------------------------------
================================================================================
initscripts-9.02.2-1 (FEDORA-2010-7633)
The inittab file and the /etc/init.d scripts
--------------------------------------------------------------------------------
Update Information:
This update of initscripts includes some backported bug fixes, and support for
seamless boot with KDM.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Bill Nottingham <notting@xxxxxxxxxx> - 9.02.2-1
- fstab-decode.8: fix formatting (#586476)
- prefdm: add --retain-splash for KDM as well (#585250)
- fix german translation (#575954, <pb@xxxxxxxxxxxx>)
- init.d/network: only blacklist the original loopback interface. (#579816, <evgsyr@xxxxxxxxx>)
- rc.sysinit: check dmraid's return code, to catch 'no raid sets' error. (#568790)
- network-functions; use HWADDR to determine DEVICE, if necessary (#545597)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #586476 - fstab-decode manpage bug
https://bugzilla.redhat.com/show_bug.cgi?id=586476
[ 2 ] Bug #585250 - /var/spool/gdm/force-display-on-active-vt not created with KDM
https://bugzilla.redhat.com/show_bug.cgi?id=585250
[ 3 ] Bug #575954 - German translation mistake in initscripts.mo regarding iptables
https://bugzilla.redhat.com/show_bug.cgi?id=575954
[ 4 ] Bug #579816 - network initscript doesn't touch interfaces which name start with lo
https://bugzilla.redhat.com/show_bug.cgi?id=579816
[ 5 ] Bug #568790 - /etc/rc.d/rc.sysinit tries to activate RAIDs called "no", "raid", and "sets"
https://bugzilla.redhat.com/show_bug.cgi?id=568790
[ 6 ] Bug #545597 - Script errors starting network
https://bugzilla.redhat.com/show_bug.cgi?id=545597
--------------------------------------------------------------------------------
================================================================================
kchmviewer-5.2-1.fc12 (FEDORA-2010-7626)
CHM viewer
--------------------------------------------------------------------------------
Update Information:
A new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Robin Lee <robinlee.sysu@xxxxxxxxx> - 5.2-1
- update to 5.2
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.26-2.fc12 (FEDORA-2010-7643)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Update lighttpd to the latest version of the 1.4 branch, with the spawn-fcgi
program split out for the first time on EL. This fixes CVE-2010-0295 and also
includes a fix for upstream bug #2157 where SSL stopped working with RHEL 5.4.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 16 2010 Matthias Saou <http://freshrpms.net/> 1.4.26-2
- Update to 1.4.26.
- Update the geoip patch.
- Remove no longer provided ChangeLog from %doc.
- Include patch to fix upstream SSL related bug #2157.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #561340 - CVE-2010-0295 lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request
https://bugzilla.redhat.com/show_bug.cgi?id=561340
--------------------------------------------------------------------------------
================================================================================
lsdvd-0.16-13.fc12 (FEDORA-2010-7672)
Small application for listing the contents of DVDs
--------------------------------------------------------------------------------
Update Information:
This update fixes some incorrect trailing white space stripping from DVD title
strings.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Matthias Saou <http://freshrpms.net/> 0.16-13
- Include patch to fix trailing spaces stripping (#556416).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #556416 - Incorrect handing of certain dvd titles
https://bugzilla.redhat.com/show_bug.cgi?id=556416
--------------------------------------------------------------------------------
================================================================================
mod_security-2.5.12-2.fc12 (FEDORA-2010-7628)
Security module for the Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:
- Explicitly set SecDataDir (not configured in shipped config from upstream) -
Add more directives in base config, based on config-minimal from upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 29 2010 Michael Fleming <mfleming+rpm@xxxxxxxxxxxxxxxxxxx> - 2.5.12-2
- Fix SecDatadir and minimal config per bz #569360
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #569360 - The default configuration in v2.5.12 is missing important settings
https://bugzilla.redhat.com/show_bug.cgi?id=569360
--------------------------------------------------------------------------------
================================================================================
phonon-4.4.1-2.fc12 (FEDORA-2010-7668)
Multimedia framework api
--------------------------------------------------------------------------------
Update Information:
New bugfix release, includes many small pulseaudio related fixes, and is
required for development and testing of other phonon backends (like vlc)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 24 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.4.1-2
- phonon-backend-xine-4.4.1 (with pulseaudio) = no audio (kde#235193)
* Thu Apr 22 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.4.1-1
- phonon-4.4.1
--------------------------------------------------------------------------------
================================================================================
pinentry-0.8.0-1.fc12 (FEDORA-2010-7522)
Collection of simple PIN or passphrase entry dialogs
--------------------------------------------------------------------------------
Update Information:
Includes rebased pinentry and backported fix for pinentry-gtk SIGABRT when
unable to grab keyboard
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 27 2010 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 0.8.0-1
- pinentry-0.8.0
- pinentry-gtk keyboard grab fail results in SIGABRT (#585422)
* Sun Apr 18 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.7.6-5
- pinentry-gtk -g segfaults on focus change (#520236)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #520236 - pinentry-gtk -g segfaults on focus change
https://bugzilla.redhat.com/show_bug.cgi?id=520236
[ 2 ] Bug #554884 - [abrt] crash in pinentry-gtk-0.7.6-4.fc12
https://bugzilla.redhat.com/show_bug.cgi?id=554884
[ 3 ] Bug #585422 - [abrt] crash in pinentry-gtk-0.7.6-5.fc13: Process /usr/bin/pinentry-gtk-2 was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=585422
--------------------------------------------------------------------------------
================================================================================
python-elixir-0.6.1-5.fc12 (FEDORA-2010-7647)
A declarative mapper for SQLAlchemy
--------------------------------------------------------------------------------
Update Information:
Added python-crypto to Requires and fixed Source0 URL so that rpmlint doesn't
complain. For F-12 also added BuildDepends for running automated test suite
from tarball. 0.7.1 tarball doesn't have tests in tarball, probably a mistake on
upstream's part...in process of investigating
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 0.6.1-5
- Added missing python-crypto to Requires
- Added test-suite execution with BuildRequires updated
- Fixed Source0 URL
--------------------------------------------------------------------------------
================================================================================
ruby-gnome2-0.19.4-1.fc12 (FEDORA-2010-7644)
Ruby binding of libgnome/libgnomeui-2.x
--------------------------------------------------------------------------------
Update Information:
New version 0.19.4 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 29 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.19.4-1
- Update to 0.19.4, drop all upstreamed patches
--------------------------------------------------------------------------------
================================================================================
shadow-utils-4.1.4.2-3.fc12 (FEDORA-2010-7648)
Utilities for managing accounts and shadow password files
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Peter Vrabec <pvrabec@xxxxxxxxxx> - 2:4.1.4.2-3
- newusers man page more informative
- userdel should not need to run semanage
- max group name length set to 32 characters
Resolves: #586330 #586408 #582553
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #582553 - Maximum group name length is wrong, and changed mid-release
https://bugzilla.redhat.com/show_bug.cgi?id=582553
--------------------------------------------------------------------------------
================================================================================
soprano-2.4.3-2.fc12 (FEDORA-2010-7656)
Qt wrapper API to different RDF storage solutions
--------------------------------------------------------------------------------
Update Information:
This build fixes some memleaks and a crasher in the Nepomuk query service.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 25 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2.4.3-2
- fix version, and test to %check
* Thu Apr 22 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2.4.3-1
- soprano-2.4.3
* Sat Apr 17 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2.4.2-1
- soprano-2.4.2
--------------------------------------------------------------------------------
================================================================================
synergy-plus-1.3.4-3.fc12.1 (FEDORA-2010-7634)
Mouse and keyboard sharing utility
--------------------------------------------------------------------------------
Update Information:
Synergy front-ends require the "synergy" package to be installed, which
prevented them from being used with synergy-plus, even though it is meant to be
a drop-in replacement. This update makes synergy-plus virtually provide synergy
to fix this.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Matthias Saou <http://freshrpms.net/> 1.3.4-3.1
- Provide synergy, useful for front-ends (#524910).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #524910 - Hard dependency on synergy
https://bugzilla.redhat.com/show_bug.cgi?id=524910
--------------------------------------------------------------------------------
================================================================================
taggle-1.0-1.fc12 (FEDORA-2010-7659)
An online french word game
--------------------------------------------------------------------------------
Update Information:
Update sources to 1.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 26 2010 Le Coz Florent <louizatakk@xxxxxxxxxxxxxxxxx> - 1.0-1
- Update sources to 1.0
--------------------------------------------------------------------------------
================================================================================
uqm-0.6.2-11.fc12 (FEDORA-2010-7641)
The Ur-Quan Masters, a port of the classic game Star Control II
--------------------------------------------------------------------------------
Update Information:
Fix for autodownloader issue.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 0.6.2-11
- Fix for autodl urls, BZ 494465.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #494465 - uqm autodownloader is broken
https://bugzilla.redhat.com/show_bug.cgi?id=494465
--------------------------------------------------------------------------------
================================================================================
xar-1.5.2-6.fc12 (FEDORA-2010-7631)
The eXtensible ARchiver
--------------------------------------------------------------------------------
Update Information:
This update fixes CVE-2010-0055, an issue where xar did not properly validate
package signatures, which allows attackers to have an unspecified impact via a
modified package.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 28 2010 Matthias Saou <http://freshrpms.net/> 1.5.2-6
- Include patch to fix CVE-2010-0055 (#570678).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #570678 - CVE-2010-0055 xar: signature bypass vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=570678
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2010.04.04-1.fc12 (FEDORA-2010-7669)
Small command-line program to download videos from YouTube
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 29 2010 Till Maas <opensource@xxxxxxxxx> - 2010.04.04-1
- Update to latest release to fix some download issues RH #582372
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #582372 - youtube-dl 2010.04.04 is available
https://bugzilla.redhat.com/show_bug.cgi?id=582372
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
