The following Fedora 13 Security updates need testing: https://admin.fedoraproject.org/updates/mantis-1.1.8-4.fc13 https://admin.fedoraproject.org/updates/mysql-5.1.50-2.fc13 https://admin.fedoraproject.org/updates/seamonkey-2.0.8-1.fc13 https://admin.fedoraproject.org/updates/libmspack-0.2-0.1.20100723alpha.fc13,cabextract-1.3-1.fc13 https://admin.fedoraproject.org/updates/ghostscript-8.71-16.fc13 https://admin.fedoraproject.org/updates/mailman-2.1.12-16.fc13 The following builds have been pushed to Fedora 13 updates-testing R-ROC-1.24.1-1.fc13 bdii-5.1.9-1.fc13 dbusmenu-qt-0.6.3-1.fc13 dracut-005-4.fc13 ecryptfs-utils-83-6.fc13 gdouros-symbola-fonts-2.54-1.fc13 gnome-settings-daemon-2.30.1-8.fc13 kdepim-4.4.6-3.fc13 kdepim-runtime-4.4.6-2.fc13 koffice-2.2.2-4.fc13 koffice-langpack-2.2.2-1.fc13 libnxt-0.3-2.fc13 libpst-0.6.49-1.fc13 libunicapgtk-0.9.8-2.fc13 mysql-5.1.50-2.fc13 nxtrc-2.3-3.fc13 pacemaker-1.1.3-1.fc13 perl-Net-DNS-SEC-0.16-3.fc13 phpldapadmin-1.2.0.5-2.fc13 pycryptopp-0.5.25-1.fc13 rmanage-0.1.8-1.fc13 ruby-gnome2-0.90.1-1.fc13 rubygem-marc-0.4.0-1.fc13 rubygem-pkg-config-1.0.6-2.fc13 rubygem-state_machine-0.9.4-3.fc13 shared-desktop-ontologies-0.5-1.fc13 spamass-milter-0.3.1-21.fc13 spyder-2.0.0-0.1.beta3.fc13 Details about builds: ================================================================================ R-ROC-1.24.1-1.fc13 (FEDORA-2010-15205) Utilities for ROC -------------------------------------------------------------------------------- Update Information: initial push -------------------------------------------------------------------------------- References: [ 1 ] Bug #591737 - Review Request: R-ROC - Utilities for ROC https://bugzilla.redhat.com/show_bug.cgi?id=591737 -------------------------------------------------------------------------------- ================================================================================ bdii-5.1.9-1.fc13 (FEDORA-2010-15204) The Berkeley Database Information Index (BDII) -------------------------------------------------------------------------------- Update Information: Upstream bugfix release -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.1.9-1 - New upstream version 5.1.9 -------------------------------------------------------------------------------- ================================================================================ dbusmenu-qt-0.6.3-1.fc13 (FEDORA-2010-15176) A Qt implementation of the DBusMenu protocol -------------------------------------------------------------------------------- Update Information: Latest upstream release, includes kubuntu_external_contributors patch. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 21 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.6.3-1 - dbusmenu-qt-0.6.3 - include kubuntu_00_external_contributions.diff * Fri Aug 6 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.5.2-1 - dbusmenu-qt-0.5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #626096 - dbusmenu-qt : Memory leak https://bugzilla.redhat.com/show_bug.cgi?id=626096 -------------------------------------------------------------------------------- ================================================================================ dracut-005-4.fc13 (FEDORA-2010-15201) Initramfs generator using udev -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 22 2010 Harald Hoyer <harald@xxxxxxxxxx> 005-4 - backported a lot of bugfixes from git -------------------------------------------------------------------------------- References: [ 1 ] Bug #573078 - System will not boot with singleton RAID1 https://bugzilla.redhat.com/show_bug.cgi?id=573078 [ 2 ] Bug #578060 - Dracut cannot resolve dns and needs numeric ip address for nfs root https://bugzilla.redhat.com/show_bug.cgi?id=578060 [ 3 ] Bug #583348 - Dracut fails in attempt to kill dhclient https://bugzilla.redhat.com/show_bug.cgi?id=583348 [ 4 ] Bug #583351 - dracut ignores fstab.sys when setting up root https://bugzilla.redhat.com/show_bug.cgi?id=583351 [ 5 ] Bug #589827 - requires elfutils-libelf? https://bugzilla.redhat.com/show_bug.cgi?id=589827 [ 6 ] Bug #593460 - dracut mdraid hostonly checking doesn't work for imsm https://bugzilla.redhat.com/show_bug.cgi?id=593460 [ 7 ] Bug #593830 - Error on boot: /init: 3: cannot create /sys/block/sr0: Is a directory https://bugzilla.redhat.com/show_bug.cgi?id=593830 [ 8 ] Bug #602649 - Add support for booting LVM snapshot root volume https://bugzilla.redhat.com/show_bug.cgi?id=602649 [ 9 ] Bug #602784 - RFE - support for dynamic LVM SNAPSHOT root volume https://bugzilla.redhat.com/show_bug.cgi?id=602784 [ 10 ] Bug #607149 - Dracut syslog support is broken https://bugzilla.redhat.com/show_bug.cgi?id=607149 [ 11 ] Bug #614971 - btrfs multi-device fs causes boot fail with "mount: wrong fs type, bad option . ." https://bugzilla.redhat.com/show_bug.cgi?id=614971 [ 12 ] Bug #622888 - dracut does not include "extra" and "weak-updates" directories in non-hostonly mode https://bugzilla.redhat.com/show_bug.cgi?id=622888 [ 13 ] Bug #626523 - /dev/hvc0 created on boot https://bugzilla.redhat.com/show_bug.cgi?id=626523 [ 14 ] Bug #627364 - After the update to udev I am no longer able to mount my encrypted home directory created using liveUSB tools https://bugzilla.redhat.com/show_bug.cgi?id=627364 [ 15 ] Bug #538079 - dracut built initramfs hanging while activating volume groups https://bugzilla.redhat.com/show_bug.cgi?id=538079 [ 16 ] Bug #557426 - "iso-scan/filename" boot option not supported in Fedora? https://bugzilla.redhat.com/show_bug.cgi?id=557426 -------------------------------------------------------------------------------- ================================================================================ ecryptfs-utils-83-6.fc13 (FEDORA-2010-15196) The eCryptfs mount helper and support libraries -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 83-6 - add missing gettext require (#630212) -------------------------------------------------------------------------------- References: [ 1 ] Bug #630212 - ecryptfs-utils package missing dependency on gettext https://bugzilla.redhat.com/show_bug.cgi?id=630212 -------------------------------------------------------------------------------- ================================================================================ gdouros-symbola-fonts-2.54-1.fc13 (FEDORA-2010-15169) A symbol font -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #532819 - Review Request: gdouros-symbola-fonts - A symbol font https://bugzilla.redhat.com/show_bug.cgi?id=532819 -------------------------------------------------------------------------------- ================================================================================ gnome-settings-daemon-2.30.1-8.fc13 (FEDORA-2010-15165) The daemon sharing settings from GNOME to GTK+/KDE applications -------------------------------------------------------------------------------- Update Information: This update fixes a crash when copying certain types of data into the clipboard. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Bastien Nocera <bnocera@xxxxxxxxxx> 2.30.1-8 - Don't crash if we don't recognise the copy/paste buffer content (#624380) -------------------------------------------------------------------------------- References: [ 1 ] Bug #624380 - [abrt] gnome-settings-daemon-2.30.1-7.fc13: convert_clipboard: Process /usr/libexec/gnome-settings-daemon was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=624380 -------------------------------------------------------------------------------- ================================================================================ kdepim-4.4.6-3.fc13 (FEDORA-2010-15117) KDE PIM (Personal Information Manager) applications -------------------------------------------------------------------------------- Update Information: kdepim-4.4.6 bugfix release -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Lukas Tinkl <ltinkl@xxxxxxxxxx> - 6:4.4.6-3 - s/%version/%_kde4_version/ kdelibs runtime dep * Fri Sep 10 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 6:4.4.6-2 - s/%version/%_kde4_version/ kdepimlibs build dep * Fri Sep 10 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> - 6:4.4.6-1 - update to 4.4.6 * Wed Aug 11 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 6:4.4.5-2 - build against libassuan1 (f14+) -------------------------------------------------------------------------------- References: [ 1 ] Bug #628379 - kdepim-runtime : Akonadi Configuration shows in systemsettings->lost and found https://bugzilla.redhat.com/show_bug.cgi?id=628379 -------------------------------------------------------------------------------- ================================================================================ kdepim-runtime-4.4.6-2.fc13 (FEDORA-2010-15117) KDE PIM Runtime Environment -------------------------------------------------------------------------------- Update Information: kdepim-4.4.6 bugfix release -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 10 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.4.6-2 - s/%version/%_kde4_version/ for runtime deps * Fri Sep 10 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 4.4.6-1 - update to 4.4.6 * Wed Sep 8 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.4.5-2 - Akonadi Configuration shows in systemsettings->lost and found (#628379) - Requires: kdebase-runtime -------------------------------------------------------------------------------- References: [ 1 ] Bug #628379 - kdepim-runtime : Akonadi Configuration shows in systemsettings->lost and found https://bugzilla.redhat.com/show_bug.cgi?id=628379 -------------------------------------------------------------------------------- ================================================================================ koffice-2.2.2-4.fc13 (FEDORA-2010-15182) An integrated office suite -------------------------------------------------------------------------------- Update Information: Latest bug fix release, includes kexi stability patches as well. See also: http://www.koffice.org/news/announcements/stable/koffice-2-2-2-released/ http://kexi-project.org/wiki/wikiview/index.php@xxxxxxxxxxxxxxxxxxxx -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 14 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3:2.2.2-4 - The desktop entry file .../koffice.desktop has Type=Application but no Exec line (#631183) * Wed Sep 8 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxxx - 3:2.2.2-3 - include some kexi patches recommended by upstream * Mon Aug 30 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3:2.2.2-2 - update %description/%summary all over * Sat Aug 21 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3:2.2.2-1 - koffice-2.2.2 * Thu Aug 19 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3:2.2.1-3 - rebuild (poppler) * Wed Aug 11 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 3:2.2.1-2 - recompiling .py files against Python 2.7 (rhbz#623328) -------------------------------------------------------------------------------- References: [ 1 ] Bug #631183 - The desktop entry file "/usr/share/applications/kde4/koffice.desktop" has Type= "Application" but no Exec line https://bugzilla.redhat.com/show_bug.cgi?id=631183 -------------------------------------------------------------------------------- ================================================================================ koffice-langpack-2.2.2-1.fc13 (FEDORA-2010-15182) Language files for koffice -------------------------------------------------------------------------------- Update Information: Latest bug fix release, includes kexi stability patches as well. See also: http://www.koffice.org/news/announcements/stable/koffice-2-2-2-released/ http://kexi-project.org/wiki/wikiview/index.php@xxxxxxxxxxxxxxxxxxxx -------------------------------------------------------------------------------- ChangeLog: * Sat Aug 21 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2:2.2.2-1 - koffice-l10n-2.2.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #631183 - The desktop entry file "/usr/share/applications/kde4/koffice.desktop" has Type= "Application" but no Exec line https://bugzilla.redhat.com/show_bug.cgi?id=631183 -------------------------------------------------------------------------------- ================================================================================ libnxt-0.3-2.fc13 (FEDORA-2010-15167) Utility for flashing LEGO Mindstorms NXT firmware -------------------------------------------------------------------------------- Update Information: LibNXT is an utility library for talking to the LEGO Mindstorms NXT. It currently does: * Handling USB communication and locating the NXT in the USB tree. * Interaction with the Atmel AT91SAM boot assistant. * Flashing of a firmware image to the NXT. * Execution of code directly in RAM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #631190 - Review Request: libnxt - An utility for flashing LEGO Mindstorms NXT firmware https://bugzilla.redhat.com/show_bug.cgi?id=631190 -------------------------------------------------------------------------------- ================================================================================ libpst-0.6.49-1.fc13 (FEDORA-2010-15185) Utilities to convert Outlook .pst files to other formats -------------------------------------------------------------------------------- Update Information: fix to ignore embedded objects that are not email messages -------------------------------------------------------------------------------- ChangeLog: * Mon Sep 13 2010 Carl Byington <carl@xxxxxxxxxxxxxxx> - 0.6.49-1 - fix to ignore embedded objects that are not email messages fedora bugzilla 633498 -------------------------------------------------------------------------------- References: [ 1 ] Bug #633498 - [abrt] libpst-0.6.47-2.fc12: pst_convert_utf8_null: Process /usr/bin/readpst was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=633498 -------------------------------------------------------------------------------- ================================================================================ libunicapgtk-0.9.8-2.fc13 (FEDORA-2010-15181) Library to build graphical widgets for the unicap library -------------------------------------------------------------------------------- Update Information: add missing lock/unlock in unicapgtk_video_display_set_pause() -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 24 2010 Kamil Dudka <kdudka@xxxxxxxxxx> 0.9.8-2 - build the package in %build - add missing lock/unlock in unicapgtk_video_display_set_pause() (#532289) -------------------------------------------------------------------------------- References: [ 1 ] Bug #532289 - [abrt] crash detected in ucview-0.23-4.fc12 https://bugzilla.redhat.com/show_bug.cgi?id=532289 -------------------------------------------------------------------------------- ================================================================================ mysql-5.1.50-2.fc13 (FEDORA-2010-15166) MySQL client programs and shared libraries -------------------------------------------------------------------------------- Update Information: Update to mysql 5.1.50, for numerous bug fixes including some low-grade security issues. See upstream release notes at: * http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html * http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html -------------------------------------------------------------------------------- ChangeLog: * Sat Aug 28 2010 Tom Lane <tgl@xxxxxxxxxx> 5.1.50-2 - Include my_compiler.h in distribution, per upstream bug #55846. Otherwise PHP, for example, won't build. * Sat Aug 28 2010 Tom Lane <tgl@xxxxxxxxxx> 5.1.50-1 - Update to MySQL 5.1.50, for various fixes described at http://dev.mysql.com/doc/refman/5.1/en/news-5-1-50.html http://dev.mysql.com/doc/refman/5.1/en/news-5-1-49.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #628040 - MySQL: Mysqld DoS (crash) by processing joins involving a table with a unique SET column (MySQL BZ#54575) https://bugzilla.redhat.com/show_bug.cgi?id=628040 [ 2 ] Bug #628062 - MySQL: Use of unassigned memory (valgrind errors / crash) by providing certain values to BINLOG statement (MySQL BZ#54393) https://bugzilla.redhat.com/show_bug.cgi?id=628062 [ 3 ] Bug #628172 - MySQL: mysqld DoS (crash) by processing IN / CASE statements with NULL arguments (MySQL bug #54477) https://bugzilla.redhat.com/show_bug.cgi?id=628172 [ 4 ] Bug #628192 - MySQL: mysqld DoS (assertion failure) by using temporary InnoDB engine tables with nullable columns (MySQL bug #54044) https://bugzilla.redhat.com/show_bug.cgi?id=628192 [ 5 ] Bug #628328 - MySQL: mysqld DoS (crash) by processing EXPLAIN statements for complex SQL queries (MySQL bug #52711) https://bugzilla.redhat.com/show_bug.cgi?id=628328 [ 6 ] Bug #628660 - MySQL: mysqld DoS (assertion failure) after changing InnoDB storage engine configuration parameters (MySQL bug #55039) https://bugzilla.redhat.com/show_bug.cgi?id=628660 [ 7 ] Bug #628680 - MySQL: mysqld DoS (assertion failure) by alternate reads from two indexes on a table using the HANDLER interface (MySQL bug #54007) https://bugzilla.redhat.com/show_bug.cgi?id=628680 [ 8 ] Bug #628698 - MySQL: mysqld DoS (assertion failure) while reading the file back into a table (MySQL bug #52512) https://bugzilla.redhat.com/show_bug.cgi?id=628698 -------------------------------------------------------------------------------- ================================================================================ nxtrc-2.3-3.fc13 (FEDORA-2010-15189) Program to interact with LEGO NXT via BlueTooth -------------------------------------------------------------------------------- Update Information: nxtrc (NXT Remote Command) is a small program that allows to send various commands to a LEGO Mindstorm NXT Brick. It uses the Bluetooth protocol through the Bluez libraries. -------------------------------------------------------------------------------- References: [ 1 ] Bug #620898 - Review Request: nxtrc - A program to interact with LEGO NXT via BlueTooth https://bugzilla.redhat.com/show_bug.cgi?id=620898 -------------------------------------------------------------------------------- ================================================================================ pacemaker-1.1.3-1.fc13 (FEDORA-2010-15190) Scalable High-Availability cluster resource manager -------------------------------------------------------------------------------- Update Information: Latest 1.1 release from upstream -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 21 2010 Andrew Beekhof <andrew@xxxxxxxxxxx> - 1.1.3-1 - publican is only available as a dependancy on i386/x86_64 machines - Upstream release of 1.1.3 + High: Resolve coverity RESOURCE_LEAK defects + High: ais: Bug lf2401 - Improved processing when the peer crmd processes join/leave + High: ais: fix list of active processes sent to clients (bnc#603685) + High: ais: Move the code for finding uid before the fork so that the child does no logging + High: ais: Resolve coverity CONSTANT_EXPRESSION_RESULT defects + High: cib: Also free query result for xpath operations that return more than one hit + High: cib: Attempt to resolve memory corruption when forking a child to write the cib to disk + High: cib: Correctly free memory when writing out the cib to disk + High: cib: Fix the application of unversioned diffs + High: cib: Remove old developmental error logging + High: cib: Restructure the 'valid peer' check for deciding which instructions to ignore + High: Core: Bug lf#2401 - Backed out changeset 6e6980376f01 + High: Core: Correctly unpack HA_Messages containing multiple entries with the same name + High: Core: crm_count_member() should only track nodes that have the full stack up + High: Core: New developmental logging system inspired by the kernel and a PoC from Lars Ellenberg + High: crmd: All nodes should see status updates, not just he DC + High: crmd: Allow non-DC nodes to clear failcounts too + High: crmd: Base DC election on process relative uptime + High: crmd: Bug lf#2439 - cancel_op() can also return HA_RSCBUSY + High: crmd: Bug lf#2439 - Handle asynchronous notification of resource deletion events + High: crmd: Fix assertion failure when performing async resource failures + High: crmd: Fix handling of async resource deletion results + High: crmd: Include the action for crm graph operations + High: crmd: Make sure the membership cache is accurate after a sucessful fencing operation + High: crmd: Make sure we always poke the FSA after a transition to clear any TE_HALT actions + High: crmd: Offer crm-level membership once the peer starts the crmd process + High: crmd: Only need to request quorum update for plugin based clusters + High: crmd: Prevent everyone from loosing DC elections by correctly initializing all relevant variables + High: crmd: Prevent segmentation fault + High: crmd: several fixes for async resource delete + High: crmd: Use the correct define/size for lrm resource IDs + High: crmd: Bug lf#2458 - Ensure stop actions always have the relevant resource attributes + High: crmd: Ensure we activate the DC timer if we detect an alternate DC + High: mcp: Add missing headers when built without heartbeat support + High: mcp: New master control process for (re)spawning pacemaker daemons + High: mcp: Correctly initialize the string containing the list of active daemons + High: mcp: Fix the expansion of the pid file in the init script + High: mcp: Tell chkconfig we need to shut down early on + High: mcp: Support starting plugin-based Pacemaker clusters with the MCP as well + High: PE: Bug lf#2476 - Repair on-fail=block for groups and primitive resources + High: PE: Do not demote resources because something that requires it can't run + High: PE: Rewrite the ordering constraint logic to be simplicity, clarity and maintainability + High: PE: Wait until stonith is available, don't fall back to shutdown for nodes requesting termination + High: PE: Prevent segfault by ensuring the arguments to do_calculations() are initialized + High: PE: Avoid creating invalid ordering constraints for probes that are not needed + High: PE: Bug lf#1959 - Fail unmanaged resources should not prevent other services from shutting down + High: PE: Bug lf#2422 - Ordering dependencies on partially active groups not observed properly + High: PE: Bug lf#2424 - Use notify oepration definition if it exists in the configuration + High: PE: Bug lf#2433 - No services should be stopped until probes finish + High: PE: Bug lf#2453 - Enforce clone ordering in the absense of colocation constraints + High: PE: Correctly detect when there is a real failcount that expired and needs to be cleared + High: PE: Correctly handle pseudo action creation + High: PE: Correctly order clone startup after group/clone start + High: PE: Fix colocation for interleaved clones + High: PE: Fix colocation with partially active groups + High: PE: Fix potential use-after-free defect from coverity + High: PE: Fix previous merge + High: PE: Fix use-after-free in order_actions() reported by valgrind + High: PE: Prevent endless loop when looking for operation definitions in the configuration + High: Shell: Complete the transition to using crm_attribute instead of crm_failcount and crm_standby + High: stonith: Advertise stonith-ng options in the metadata + High: stonith: Correctly parse pcmk_host_list parameters that appear on a single line + High: stonith: Map poweron/poweroff back to on/off expected by the stonith tool from cluster-glue + High: stonith: pass the configuration to the stonith program via environment variables (bnc#620781) + High: stonith: Bug lf#2461 - Prevent segfault by not looking up operations if the hashtable hasn't been initialized yet + High: Stonith: Bug lf#2473 - Ensure stonith operations complete within the timeout and are terminated if they run too long + High: stonith: Bug lf#2473 - Gracefully handle remote operations that arrive late (after we've done notifications) + High: stonith: Bug lf#2473 - Add the timeout at the top level where the daemon is looking for it + High: stonith: Bug lf#2473 - Ensure timeouts are included for fencing operations + High: Stonith: Use the timeout specified by the user + High: Tools: Bug lf#2456 - Fix assertion failure in crm_resource + High: tools: crm_report - corosync.conf wont necessarily contain the text 'pacemaker' anymore + High: tools: crm_simulate - Resolve coverity USE_AFTER_FREE defect + High: Tools: Drop the 'pingd' daemon and resource agent in favor of ocf:pacemaker:ping + High: Tools: Fix recently introduced use-of-NULL + High: Tools: Fix use-after-free defect from coverity * Fri Jun 11 2010 Andrew Beekhof <andrew@xxxxxxxxxxx> - 1.1.2-2 - Resolves rhbz#602239 - Added patch to documentation so that it passes validation - High: Core: Bug lf#2401 - Backed out changeset 6e6980376f01 * Wed May 12 2010 Andrew Beekhof <andrew@xxxxxxxxxxx> - 1.1.2-1 - Update the tarball from the upstream 1.1.2 release + High: ais: Bug rhbz#525552 - Move non-threadsafe calls to setenv() to after the fork() + High: ais: Do not count votes from offline nodes and calculate current votes before sending quorum data + High: ais: Ensure the list of active processes sent to clients is always up-to-date + High: ais: Fix previous commit, actually return a result in get_process_list() + High: ais: Fix two more uses of getpwnam() in non-thread-safe locations + High: ais: Look for the correct conf variable for turning on file logging + High: ais: Need to find a better and thread-safe way to set core_uses_pid. Disable for now. + High: ais: Use the threadsafe version of getpwnam + High: Core: Bug lf#2414 - Prevent use-after-free reported by valgrind when doing xpath based deletions + High: Core: Bump the feature set due to the new failcount expiry feature + High: Core: Fix memory leak in replace_xml_child() reported by valgrind + High: Core: fix memory leaks exposed by valgrind + High: crmd: Bug 2401 - Improved detection of partially active peers + High: crmd: Bug bnc#578644 - Improve handling of cancelled operations caused by resource cleanup + High: crmd: Bug lf#2379 - Ensure the cluster terminates when the PE is not available + High: crmd: Bug lf#2414 - Prevent use-after-free of the PE connection after it dies + High: crmd: Bug lf#2414 - Prevent use-after-free of the stonith-ng connection + High: crmd: Do not allow the target_rc to be misused by resource agents + High: crmd: Do not ignore action timeouts based on FSA state + High: crmd: Ensure we dont get stuck in S_PENDING if we loose an election to someone that never talks to us again + High: crmd: Fix memory leaks exposed by valgrind + High: crmd: Remove race condition that could lead to multiple instances of a clone being active on a machine + High: crmd: Send erase_status_tag() calls to the local CIB when the DC is fenced, since there is no DC to accept them + High: crmd: Use global fencing notifications to prevent secondary fencing operations of the DC + High: PE: Bug lf#2383 - Combine failcounts for all instances of an anonymous clone on a host + High: PE: Bug lf#2384 - Fix intra-set colocation and ordering + High: PE: Bug lf#2403 - Enforce mandatory promotion (colocation) constraints + High: PE: Bug lf#2412 - Correctly locate clone instances by their prefix + High: PE: Do not be so quick to pull the trigger on nodes that are coming up + High: PE: Fix memory leaks exposed by valgrind + High: PE: Fix memory leaks reported by valgrind + High: PE: Rewrite native_merge_weights() to avoid Fix use-after-free + High: Shell: always reload status if working with the cluster (bnc#590035) + High: Shell: Default to using the status section from the live CIB (bnc#592762) + High: Shell: edit multiple meta_attributes sets in resource management (lf#2315) + High: Shell: enable comments (lf#2221) + High: Shell: implement new cibstatus interface and commands (bnc#580492) + High: Shell: new configure filter command + High: Tools: crm_mon - fix memory leaks exposed by valgrind -------------------------------------------------------------------------------- ================================================================================ perl-Net-DNS-SEC-0.16-3.fc13 (FEDORA-2010-15179) DNSSEC modules for Perl -------------------------------------------------------------------------------- Update Information: version bump to pull in new required submodule -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Wes Hardaker <wjhns174@xxxxxxxxxxxxx> - 0.16-3 - rebuild after prereq now properly in the system * Tue Aug 24 2010 Wes Hardaker <wjhns174@xxxxxxxxxxxxx> - 0.16-2 - added MIME::Base32 as a build req * Tue Aug 24 2010 Wes Hardaker <wjhns174@xxxxxxxxxxxxx> - 0.16-1 - Update to upstream 0.16 * Tue May 4 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 0.14-7 - Mass rebuild with perl-5.12.0 -------------------------------------------------------------------------------- ================================================================================ phpldapadmin-1.2.0.5-2.fc13 (FEDORA-2010-15170) Web-based tool for managing LDAP servers -------------------------------------------------------------------------------- Update Information: * fix typo in config file (#628067) * avoid php-5.3 deprecation errors (#628061) * fix add parent class attributes (#628060) -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Dmitry Butskoy <Dmitry@xxxxxxxxxxxx> - 1.2.0.5-2 - add patches from Patrick Monnerat <pm@xxxxxxxxxxxxx>: * fix typo (close comment) in config file (#628067) * avoid php-5.3 deprecation errors (#628061) * fix add of parent class attributes (#628060) -------------------------------------------------------------------------------- References: [ 1 ] Bug #628060 - No way to add parent class attributes https://bugzilla.redhat.com/show_bug.cgi?id=628060 [ 2 ] Bug #628061 - E_DEPRECATED exceptions with PHP 5.3 https://bugzilla.redhat.com/show_bug.cgi?id=628061 [ 3 ] Bug #628067 - Configuration parameter login.attr is ignored. https://bugzilla.redhat.com/show_bug.cgi?id=628067 -------------------------------------------------------------------------------- ================================================================================ pycryptopp-0.5.25-1.fc13 (FEDORA-2010-15202) Python wrappers for the Crypto++ library -------------------------------------------------------------------------------- Update Information: Bugfix release updated at upstream's request. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 27 2010 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> 0.5.25-1 - Update release at upstream's request. The source code looks reasonably safe * Tue Jul 27 2010 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> 0.5.19-4 - Bumping release so we can rebuild this in the py27 rebuild tag * Tue Jul 27 2010 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> 0.5.19-3 - Remove the bundled modules - Patch so we build without hte bundled modules * Wed Jul 21 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 0.5.19-2 - Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild * Thu Jun 24 2010 Ruben Kerkhof <ruben@xxxxxxxxxxxxxxxx> 0.5.19-1 - Upstream released new version -------------------------------------------------------------------------------- ================================================================================ rmanage-0.1.8-1.fc13 (FEDORA-2010-15188) Remotely monitoring machines on network -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 20 2010 Parag Nemade <panemade AT gmail.com>- 0.1.8-1 - Update to next update version 0.1.8 -------------------------------------------------------------------------------- ================================================================================ ruby-gnome2-0.90.1-1.fc13 (FEDORA-2010-15199) Ruby binding of libgnome/libgnomeui-2.x -------------------------------------------------------------------------------- Update Information: New version 0.90.1 is released. New version 0.19.4 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 24 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.1-1 - 0.90.1 * Thu Aug 19 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.19.4-3.1 - rebuild (poppler) * Tue Jun 22 2010 Matthias Clasen <mclasen@xxxxxxxxxx> - 0.19.4-2 - Rebuild against new poppler -------------------------------------------------------------------------------- ================================================================================ rubygem-marc-0.4.0-1.fc13 (FEDORA-2010-15197) Ruby library for MARC catalog -------------------------------------------------------------------------------- Update Information: New version 0.4.0 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 24 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.4.0-1 - 0.4.0 -------------------------------------------------------------------------------- ================================================================================ rubygem-pkg-config-1.0.6-2.fc13 (FEDORA-2010-15183) A pkg-config implmenetation by Ruby -------------------------------------------------------------------------------- ================================================================================ rubygem-state_machine-0.9.4-3.fc13 (FEDORA-2010-15186) Adds support for creating state machines for attributes on any Ruby class -------------------------------------------------------------------------------- Update Information: spec file fixed. gem list -l lists state_machine as expected. No need to install -doc subpackage -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Guillermo Gomez <gomix@xxxxxxxxxxxxxxxxx> - 0.9.4-3 - Bug fixed BZ636902 -------------------------------------------------------------------------------- References: [ 1 ] Bug #636902 - rubygem-state_machine does not show up as an installed Ruby Gem. https://bugzilla.redhat.com/show_bug.cgi?id=636902 -------------------------------------------------------------------------------- ================================================================================ shared-desktop-ontologies-0.5-1.fc13 (FEDORA-2010-15200) Shared ontologies needed for semantic environments -------------------------------------------------------------------------------- Update Information: Latest upstream bugfix release, required for kde upstream development. See also http://sourceforge.net/projects/oscaf/files//shared-desktop-ontologies/0.5/shared-desktop-ontologies-0.5-release-notes/view -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 10 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.5-1 - 0.5 -------------------------------------------------------------------------------- ================================================================================ spamass-milter-0.3.1-21.fc13 (FEDORA-2010-15174) Milter (mail filter) for spamassassin -------------------------------------------------------------------------------- Update Information: This update adds whitelisting support for IPv6 networks with the "-i" option. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 23 2010 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.1-21 - Add IPv6 whitelisting support (#630263) * Tue Jun 8 2010 Paul Howarth <paul@xxxxxxxxxxxx> 0.3.1-20 - RHEL-6 onwards have noarch subpackages, so make spamass-milter-postfix one -------------------------------------------------------------------------------- References: [ 1 ] Bug #630263 - IPv6 addresses not handled correctly by spamass-milter. https://bugzilla.redhat.com/show_bug.cgi?id=630263 -------------------------------------------------------------------------------- ================================================================================ spyder-2.0.0-0.1.beta3.fc13 (FEDORA-2010-15178) Scientific Python Development Environment -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test