The following builds have been pushed to Fedora 11 updates-testing cherokee-1.0.0-1.fc11 couchdb-0.10.2-3.fc11 libimobiledevice-1.0.1-1.fc11 perl-HTTP-Lite-2.2-1.fc11 pidgin-2.7.0-1.fc11 report-0.12-1.fc11 sugar-artwork-0.84.2-1.fc11 zikula-1.2.3-1.fc11 Details about builds: ================================================================================ cherokee-1.0.0-1.fc11 (FEDORA-2010-8526) Flexible and Fast Webserver -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2010 Lorenzo Villani <lvillani@xxxxxxxxxxxxxxx> - 1.0.0-1 - First stable release * Wed May 5 2010 Lorenzo Villani <lvillani@xxxxxxxxxxxxxxx> - 0.99.49-1 - Changes since 0.99.44: - New cherokee-admin (rewritten from scratch) - FIX: Reverse proxy bug - FIX: Handler init bug: crashed on ARM - FIX: Adds missing HTTP methods - FIX: PTHREAD_RWLOCK_INITIALIZER usage - FIX: uWSGI paths bug - FIX: WordPress wizard bug - FIX: Safer (synchronous) cherokee-admin start - FIX: Keep-alive related bug - FIX: Error log management has been fixed - FIX: Re-integrates the phpMyAdmin wizard - FIX: Cherokee-admin default timeout increased - FIX: Wordpress wizard - FIX: Flags in the GeoIP plug-in - FIX: LOCK method detection - FIX: upgrade_config.py was broken - I18n: Chinese translation updated - I18n: New translation to Polish - I18n: Spanish translation updated - I18n: Dutch translation updated - DOC: Improves Server Info handler documentation - DOC: Many documentation updates - DOC: New screenshots - DOC: PHP recipe improved * Fri Apr 23 2010 Lorenzo Villani <lvillani@xxxxxxxxxxxxxxx> - 0.99.44-1 - FIX: Large POST support bug fixed - FIX: UTF-8 requests bug fixed - FIX: 7z MIME-type - FIX: Added missing HTTP response codes - FIX: Added missing HTTP methods - FIX: Many documentation typos fixed - I18N: Dutch translation updated * Thu Mar 18 2010 Pavel Lisy <pavel.lisy@xxxxxxxxx> - 0.99.43-1 - 0.99.43 - FIX: Performance related regression (Keep-alive w/o cache) - FIX: Better lingering close - FIX: PAM authentication module fixes: threading issue - FIX: Cherokee-admin supports IPv6 by default - FIX: Parsing IPv6 addresses in "allow from" restrictions - FIX: Rule OR is slightly faster now - FIX: Fixes a few accessibility issues in cherokee-admin - FIX: Symfony wizard, fixed to use the new paths - suppressed confusing output from init script * Tue Feb 2 2010 Lorenzo Villani <lvillani@xxxxxxxxxxxxxxx> - 0.99.42-1 - 0.99.42 - Compilation and last-minute fixes - NEW: POST managing subsystem has been rewritten from scratch - NEW: New POST (uploads) status reporting mechanism - NEW: Rules can be configured to forbid the use of certain encoders - NEW: Custom logger: Adds ${response_size} support - FIX: File descriptor leak fixed in the HTTP reverse proxy - FIX: Error pages with UTF8 encoded errors work now - FIX: Safer file descriptor closing - FIX: getpwuid_r() detection - FIX: Original query strings (and requests) are logged now - FIX: Misc cherokee-admin fixes - FIX: uWSCGI: Endianess fixes and protocol modifiers - FIX: Chinese translation updated - FIX: Cherokee-admin: Display custom error if the doc. is missing - FIX: Early logging support is not supported any longer - FIX: QA and Cherokee-Admin: Bumps PySCGI to version 1.11 - FIX: The 'fastcgi' handler has been deprecated in favor of 'fcgi' - FIX: PATH_INFO generation on merging non-final rules (corner case) - DOC: Installation updated -------------------------------------------------------------------------------- ================================================================================ couchdb-0.10.2-3.fc11 (FEDORA-2010-8482) A document database server, accessible via a RESTful JSON API -------------------------------------------------------------------------------- Update Information: * Fixed init-script to use /etc/sysconfig/couchdb values (see rhbz #583004) * Fixed installation location of beam-files (moved to erlang directory) -------------------------------------------------------------------------------- ChangeLog: * Thu May 13 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.10.2-3 - Fixed init-script to use /etc/sysconfig/couchdb values (see rhbz #583004) - Fixed installation location of beam-files (moved to erlang directory) -------------------------------------------------------------------------------- References: [ 1 ] Bug #583004 - Couchdb initscript can't start couchdb https://bugzilla.redhat.com/show_bug.cgi?id=583004 -------------------------------------------------------------------------------- ================================================================================ libimobiledevice-1.0.1-1.fc11 (FEDORA-2010-8522) Library for connecting to mobile devices -------------------------------------------------------------------------------- Update Information: new upstream 1.0.1 stable bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2010 Peter Robinson <pbrobinson@xxxxxxxxx> 1.0.1-1 - New upstream stable 1.0.1 release -------------------------------------------------------------------------------- ================================================================================ perl-HTTP-Lite-2.2-1.fc11 (FEDORA-2010-8493) Lightweight HTTP implementation -------------------------------------------------------------------------------- References: [ 1 ] Bug #589833 - Review Request: perl-HTTP-Lite - Lightweight HTTP implementation https://bugzilla.redhat.com/show_bug.cgi?id=589833 -------------------------------------------------------------------------------- ================================================================================ pidgin-2.7.0-1.fc11 (FEDORA-2010-8523) A Gtk+ based multiprotocol instant messaging client -------------------------------------------------------------------------------- Update Information: 2.7.0 with new features, bug fixes and a security fix for CVE-2010-1624 Full Upstream ChangeLog: * http://developer.pidgin.im/wiki/ChangeLog Fedora packaging changes: * Use System SSL Certificates * Add additional dependencies for Voice + Video -------------------------------------------------------------------------------- ChangeLog: * Thu May 13 2010 Stu Tomlinson <stu@xxxxxxxxxxxxx> 2.7.0-1 - 2.7.0 with features, bug fixes and a security fix: CVE-2010-1624 (#591806) - Use System SSL Certificates (#576721) - Add additional dependencies for Voice + Video (#581343) - Upstream backport: 87ada76abf90c44e615679efc5f8128bb941bba1 Reduce MSN traffic -------------------------------------------------------------------------------- References: [ 1 ] Bug #589973 - CVE-2010-1624 Pidgin: MSN SLP emoticon DoS (NULL pointer dereference) https://bugzilla.redhat.com/show_bug.cgi?id=589973 -------------------------------------------------------------------------------- ================================================================================ report-0.12-1.fc11 (FEDORA-2010-8489) Incident reporting library -------------------------------------------------------------------------------- Update Information: Resolves: bz#561830 And other minor bugs. -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.12-1 - correct summary and description for strata client (RHEL 589707) - remove component from bz query (Fedora 561830) - add product, version, and component to strata create case (RHEL 590180) - correct bug in report file parsing - added pl lang - update PO files - fix memory leak: free attach_reponse in send_report_to_new_case - a number of minor cleanups - make it easy to build the RHEL configuration on Fedora for testing - add --gtk option to bin/report to improve ability to test - clean up _add_binding_from_string/isbinary problem - remove unused/unneeded patches from source repo - add example script showing htmlErrors - correct strata_client.h double underscores to single underscores - rename response_data to createcase_response in send_report_to_new_case - clean up warnings in strata_client code - correct/update strata testing scripts * Thu May 6 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.11-1 - many minor changes to keep up with strata server including set the 'Accepted-Language:' header in the strata client (Fedora BZ 575819) - initial Polish translation from raven <raven@xxxxxxxxxxxxxxxxx> - fix python config in spec file and makefiles so that both x86 and x86_64 arches can be installed at the same time. (RHEL BZ 586971) - corrects the password remembering/forgetting code for bugzilla.redhat.com and sealert (RHEL BZ 576632) - Spanish translation from logan <logan@xxxxxxxxxxxxxxxxx> - Ukrainian (uk) translation from yurchor <yurchor@xxxxxxxxxxxxxxxxx> - deal gracefully with non-openable/readable files in NamedFileSignatureValues (Fedora BZ 573037) - minor makefile and spec file changes: upgrade version change RHEL-6-build to RHEL-6-candidate add more mock makefile rules for more configurations * Mon Apr 5 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.10-5 - Resolves: bz579045 * Tue Mar 30 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.10-2 - Update bz filer to submit correct product/version - Complete move from templates to plugins * Thu Mar 25 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.10-1 - Resolves: rhbz#576927 - Resolves: rhbz#576926 - Resolves: rhbz#576997 - Resolves: rhbz#576995 - simplify/correct interdependancies among report's sub-packages - don't install the strata report plugin (but leave the client library) * Wed Mar 24 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.9-2 - Update translation scheme - Renamed ini to conf - Renamed templates dir to plugins - Defined target/plugins * Tue Mar 23 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.9-1 - Resolves: rhbz#562655 - Update to new version in prep for release * Fri Mar 19 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.8-5 - report.conf manpage - report manpage - do not traceback on empty login - ask for existing strata case - setting of config options overrides previous parameter if defined. * Tue Mar 16 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.8-4 - add Strata client - add serialize to report/signature file and read from report/signature file * Thu Mar 11 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.8-3 - wrapper function to print to syslog and display io - build plugins/configs based on distro - makefile targets for el5.x86/x86_64 el6.x86/x86_64 - copyright addition to bin - updated createfilesignature to accept binary bool * Tue Mar 2 2010 Adam Stokes <ajs@xxxxxxxxxx> 0.8-2 - move all alternatives into templates - templates accepts overrides from cmdline - new template ftp * Thu Feb 11 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.8-1 - upgrade to 0.8 - add examples/IOtest.py - add report/io/NewtIO - have all GTK dialogs open in the center of the screen - consistantly return True/False/None from io.functions and report - add Provides: report-config-default - minor improvements to makefile - replace autogen.sh with a better makefiles system - improved error message when scp plugin fails * Thu Jan 28 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.7-1 - upgrade to 0.7 - correct the Requires: for config-RHEL - improve localcopy plugin * Mon Jan 4 2010 Gavin Romig-Koch <gavin@xxxxxxxxxx> 0.6-1 - Add suffix to files in '/etc/report.d/' - Create RHEL-template which doesn't depend on a separate python-bugzilla - Correct bugs in report::report template loading which caused the same template to be loaded multiple times, and the wrong templates to be used - Correct a open file leak - Merge the fastback command into report - Rename fastback to report-sendfile - Correct button response bugs in GTKIO -------------------------------------------------------------------------------- References: [ 1 ] Bug #561830 - Your duplicate detection code is not working correctly. https://bugzilla.redhat.com/show_bug.cgi?id=561830 -------------------------------------------------------------------------------- ================================================================================ sugar-artwork-0.84.2-1.fc11 (FEDORA-2010-8517) Artwork for Sugar look-and-feel -------------------------------------------------------------------------------- Update Information: This update contains a bugfix for the battery charging icon and adds a new icon for GSM modems. -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2010 Sayamindu Dasgupta <sayamindu@xxxxxxxxxx> - 0.84.2-1 - New upstream release containing new icon for GSM modem and bugfixes -------------------------------------------------------------------------------- ================================================================================ zikula-1.2.3-1.fc11 (FEDORA-2010-8531) Zikula is a free open source Web Application Framework -------------------------------------------------------------------------------- Update Information: Upstream pushed this release to fix two security issues (one XSS, and one CSRF) Upstream also removed a non-free javascript library that we previously had to strip. http://community.zikula.org/module-News-display-sid-3012.htm -------------------------------------------------------------------------------- ChangeLog: * Wed May 12 2010 David Nalley <david@xxxxxxx> 1.2.3-1 - upgrading to 1.2.3 - removed jsminify patch, and thus requirement for custom tarball - fixes XSS and CSRF security problems. * Sun Dec 6 2009 David Nalley <david@xxxxxxx> 1.2.0-1 - upgrading to 1.2.0 - added require for php-gettext and symlinked it to includes/classes - added patch to strip jsminify support - build custom tarball because upstream ships non-free libs -------------------------------------------------------------------------------- References: [ 1 ] Bug #589290 - CVE-2010-1724 Zikula multiple XSS flaws https://bugzilla.redhat.com/show_bug.cgi?id=589290 [ 2 ] Bug #589308 - CVE-2010-1732 Zikula CSRF flaw https://bugzilla.redhat.com/show_bug.cgi?id=589308 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test