Fedora 13 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 13 Security updates need testing:

    https://admin.fedoraproject.org/updates/clamav-0.96.3-1400.fc13
    https://admin.fedoraproject.org/updates/seamonkey-2.0.8-1.fc13
    https://admin.fedoraproject.org/updates/openswan-2.6.29-1.fc13
    https://admin.fedoraproject.org/updates/ardour-2.8.11-5.fc13
    https://admin.fedoraproject.org/updates/perl-libwww-perl-5.837-2.fc13
    https://admin.fedoraproject.org/updates/ghostscript-8.71-16.fc13
    https://admin.fedoraproject.org/updates/cgit-0.8.2.1-4.fc13
    https://admin.fedoraproject.org/updates/gnome-subtitles-1.0-3.fc13
    https://admin.fedoraproject.org/updates/mailman-2.1.12-16.fc13
    https://admin.fedoraproject.org/updates/drupal-cck-6.x.2.8-1.fc13
    https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc13
    https://admin.fedoraproject.org/updates/tuxguitar-1.2-3.fc13


The following builds have been pushed to Fedora 13 updates-testing

    CableSwig-3.20.0-3.fc13
    bash-completion-1.2-3.fc13
    bcfg2-1.1.0-2.fc13
    bip-0.8.6-1.fc13
    coreutils-8.4-9.fc13
    cppcheck-1.45-1.fc13
    docbook-utils-0.6.14-26.fc13
    drupal-cck-6.x.2.8-1.fc13
    ebook-tools-0.2.0-1.fc13
    erlang-gen_leader-0-0.2.fc13
    erlang-mochiweb-1.3-0.8.20100929git47fe37b.fc13
    fluidsynth-1.1.2-2.fc13
    freetype-2.3.11-6.fc13
    gimp-2.6.11-1.fc13
    gnash-0.8.8-3.fc13
    gnome-subtitles-1.0-3.fc13
    gpodder-2.8-2.fc13
    grantlee-0.1.6-1.fc13
    gtk-equinox-engine-1.30.2-1.fc13
    hplip-3.10.9-1.fc13
    jpanoramamaker-5-2.fc13
    krazy2-2.90-9.20100926svn.fc13
    libimobiledevice-1.0.3-1.fc13
    libphidget-2.1.7.20100621-5.fc13
    libucil-0.9.10-1.fc13
    libunicap-0.9.12-1.fc13
    mailgraph-1.14-8.fc13
    mercurial-1.6.4-1.fc13
    motoya-lcedar-fonts-1.00-0.1.20100928git.fc13
    mscore-0.9.6.3-1.fc13
    mspdebug-0.11-1.fc13
    mysql-connector-c++-1.1.0-0.3.bzr895.fc13
    mysql-workbench-5.2.28-3.fc13
    nautilus-terminal-0.7-1.fc13
    neon-0.29.4-1.fc13
    nss-3.12.7-9.fc13
    nss-softokn-3.12.7-7.fc13
    pcb-0.20100929-1.fc13
    perl-Cache-FastMmap-1.36-1.fc13
    perl-HTML-TreeBuilder-XPath-0.12-1.fc13
    perl-KinoSearch1-1.00-2.fc13
    perl-Lingua-EN-Tagger-0.16-2.fc13
    perl-Test-Requires-0.06-1.fc13
    perl-Text-SpellChecker-0.08-1.fc13
    php-pecl-memcache-3.0.4-4.fc13
    python-pyside-0.4.1-3.fc13
    python-zope-testing-3.9.5-6.fc13
    qbittorrent-2.4.4-1.fc13
    quvi-0.2.5-1.fc13
    rabbitmq-server-2.1.0-1.fc13
    root-5.26.00d-3.fc13
    spew-1.0.8-3.fc13
    sssd-1.3.0-35.fc13
    terminator-0.95-2.fc13
    tuxguitar-1.2-3.fc13
    voms-1.9.18.1-1.fc13
    wine-1.3.4-1.fc13
    xneur-0.9.9-4.fc13
    xrdp-0.5.0-0.11.03172010.fc13
    yash-2.24-1.fc13

Details about builds:


================================================================================
 CableSwig-3.20.0-3.fc13 (FEDORA-2010-15712)
 Create interfaces to interpreted languages for templated code
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #540885 - Review Request: CableSwig - Create interfaces to interpreted languages for templated code
        https://bugzilla.redhat.com/show_bug.cgi?id=540885
--------------------------------------------------------------------------------


================================================================================
 bash-completion-1.2-3.fc13 (FEDORA-2010-15747)
 Programmable completion for Bash
--------------------------------------------------------------------------------
Update Information:

Bugfix package release addressing a few reported issues.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 28 2010 Ville Skyttà <ville.skytta@xxxxxx> - 1:1.2-3
- Apply upstream ~username completion fix for #628130.
- Apply upstream rpm completion improvements for #630328.
- Apply upstream IPv6 address completion fix for #630658.
- Drop some completions that are included in respective upstream packages.
- Fix qdbus/dcop uninstall trigger.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #628130 - ~user completion doesn't work
        https://bugzilla.redhat.com/show_bug.cgi?id=628130
  [ 2 ] Bug #630328 - Completion for RPM disables filename completion.
        https://bugzilla.redhat.com/show_bug.cgi?id=630328
  [ 3 ] Bug #630658 - Completion about IPv6 address does not work properly
        https://bugzilla.redhat.com/show_bug.cgi?id=630658
--------------------------------------------------------------------------------


================================================================================
 bcfg2-1.1.0-2.fc13 (FEDORA-2010-15773)
 Configuration management system
--------------------------------------------------------------------------------
Update Information:

* Mon Sep 27 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.1.0-2
- Update to final version
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 27 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.1.0-2
- Update to final version
* Wed Sep 15 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.1.0-1.3.rc5
- Update to 1.1.0rc5:
-
- Packages:
-  - Assign the deps variable before resolution.
-  - Allow xinclude and add XML error handling
-  - Remove log line from black/whitelist test
-  - Allow for whitelisting
-   Patch from IRConan to allow for whitelisted packages in
-   sources.
-  - Treat blacklisted packages as if they don't exist
-   Currently a blacklisted package stops further source processing.
-   This prevents any other sources from defining a good package.
-  - Document new knobs and added schema validator
-  - Move knobs to config.xml
-  - Resolver/Metadata options
-   Patch from Jack Neely to add enable/disable options to the resolver
-   and metadata pareser.
-  - Allow soft relaods and use a checksum for cache file.
-   Use checksum for cache file.
-   Allow reloads of config.xml and sources without downloading everything.
-   Merged config.xml and source processing into a single function.
-  - Expose repo data as a Connector
-  - fix type conflict
-  - invalidate virt_pkgs cache when source data is reloaded
-  - dep resolver rewrite
-   Fix dep resolver to take all providers of a dependency into consideration.
-   Rewrite resolver to be simpler at the same time.
-  - Added support for "apt" and "yum" as non-distro specific magic groups
-
- YUMng:
-  - Better error handling for installs
-  - Deal with any possible Yum verify exceptions
-  - patch from Tim Laszlo to handle verifying broken symlinks
-  - fix bug #931
-   getinstalledgpg() is an RPMng method and is no longer needed in YUMng.
-  - Fix Path type='ignore' traceback (Reported by Thomas Ackermann)
-  - speed improvements, multilib verify bug fixes, configuration knobs
-   The pkg_checks, pkg_verify, installed_action, version_fail_action, and
-   verify_fail_action configuration knobs are all wired back up.  Caching
-   implemented to help speed up the package verify routine.
-   Work arounds for Yum bug: http://yum.baseurl.org/ticket/573
-  - Speed improvements, Enable reinstalls
-   We no longer use RPMng in YUMng.  This improves speed by not calling
-   prelink as yum takes care of that for us.
-   Yum can do reinstalls on package verify fail so lets wire that up.
-  - All gpg-pubkey must be in the proper work queue to be installed.
-   gpg-pubkeys are not packages, yet we treat them as so.  They require
-   special handling for all install/upgrades/etc.  This corrects a
-   condition where gpg-pubkeys were "upgraded" rather than "installed."
-  - YUMng display classes, always compare string versions of packages.
-   The package object here can be either a yum PO or a string.  Comparing
-   strings to POs tracebacks.
-   Display classes for the YUMng driver
-  - YUMng re-implementation of VerifyPackage using the Yum API.
-
- doc:
-  - Some clarifications on Decisions plugin.
-  - Minor fixes to SSHbase documentation
-  - Style fixes
-  - Fix hyperlinks
-  - Add the rest of the altsrc documentation for Ticket #923
-
- schema:
-  - Schema updates for Path type="ignore"
-  - repo-validate: Validate two levels of Group nesting (Fixes
-   Ticket #805)
-
- Misc:
-  - bcfg2-repo-validate: Patch from Joe Digilio to fix tb in Ticket #939
-  - Metadata: Add error message when file monitor fails
-  - bcfg2.spec.in: Fix lxml requirement for bcfg2 client (Reported by tac on IRC)
-  - Tools/__init__.py: Autoload client tools present in the Tools directory
-  - bcfg2-info: Add IPython support (Patch from Jeff Strunk) for Ticket #921
-  - BB: Deprecate BB plugin (Resolves Ticket #923)
-  - bcfg2: Add back the new SSL key options (Fixes Ticket #916)
-   The man page no longer contains the -K option mentioned in Ticket #908.
-   This has been removed since [6013]. We still need the key option available
-   in the client to prevent Ticket #916.
-  - Added prefix option to [server] section
-  - fixes for #910
-  - '-K' is replaced by '--ssl-key'
-  - SSLServer: handle socket errors on shutdown gracefully (Resolves #907 and #909)
-  - bcfg2: fix option parsing for ssl key (Resolves Ticket #908)
-  - Init: Fix traceback from ticket #906
-  - Harmonised log messages
-  - debian: Merge in changes from Arto Jantunen
-  - bcfg2.init: Remove agent mode (no longer exists)
-  - POSIX.py: Fix hardcoded errno value
-  - Don't assume python2.5 is being used on successful hashlib import
-  - Probes: Fix name collapse in case of group specific probes (arch.G20_foo -> arch) (Resolves Ticket #904)
-  - TGenshi/TCheetah: Add base64 encoding support for files handled by non-Cfg plugins
-  - bcfg2-server: logger.error doesn't work when bcfg2.conf doesn't exist
-  - IPS fixups (from RickB)
-  - DBStats: Fix random mysql errors
-  - SSLServer: Retry failed writes
-  - Commit whitelist/blacksupport for glob style entries
-  - Cfg: Allow pull operations to update info.xml files
* Tue Aug 31 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.1.0-1.2.rc4
- Add new YUMng driver
* Wed Jul 21 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 1.1.0-1.1.rc4.1
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
* Tue Jul 20 2010 Fabian Affolter <fabian@xxxxxxxxxxxxxxxxx> - 1.1.0-1.1.rc4
- Added patch to fix indention
* Tue Jul 20 2010 Fabian Affolter <fabian@xxxxxxxxxxxxxxxxx> - 1.1.0-0.1.rc4
- Updated to new upstream release candidate RC4
* Sat Jun 19 2010 Fabian Affolter <fabian@xxxxxxxxxxxxxxxxx> - 1.1.0-0.1.rc3
- Updated to new upstream release candidate RC3
* Sun May  2 2010 Fabian Affolter <fabian@xxxxxxxxxxxxxxxxx> - 1.1.0-0.2.rc1
- Changed define to global
- Added graphviz for the server package
* Wed Apr 28 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.1.0-0.1.rc1
- Update to 1.1.0rc1
- 
- * Deprecate old-style server POSIX types
- 
-  You will now need to specify Path entries in the bcfg2 server
-  configuration instead of the old ConfigFile, Directory, SymLink
-  entries. A tool for helping you transition existing configurations
-  can be found at:
- 
-      https://trac.mcs.anl.gov/projects/bcfg2/browser/tags/bcfg2_1_1_0rc1/tools/posixunified.py
- 
-  Compatibility with older clients is maintained through the use of
-  the new POSIXCompat plugin which transforms the new Path entries to
-  their older equivalents.
- 
- * New Sphinx documentation
- 
-  We have migrated user documentation to Sphinx. Information about
-  building the documentation from the Bcfg2 source can be found at:
- 
-      https://trac.mcs.anl.gov/projects/bcfg2/wiki/Manual
- 
- * Migrate git plugin to Dulwich
- * New detailed client view and other improvements in Django reports
- * Encap removed
- * New OS X packaging
- * New Upstart client tool
- * Migrate Hostbase to Django 1.1
* Tue Apr 13 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.0.1-1
- Update to final version
--------------------------------------------------------------------------------


================================================================================
 bip-0.8.6-1.fc13 (FEDORA-2010-15774)
 IRC Bouncer
--------------------------------------------------------------------------------
Update Information:

Update to upstream v0.8.6
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Brian C. Lane <bcl@xxxxxxxxxx> - 0.8.6-1
- Upstream v0.8.6
* Sat Mar 27 2010 Lorenzo Villani <lvillani@xxxxxxxxxxxxxxx> - 0.8.4-3
- Install bipgenconfig as requested in bz #566879
--------------------------------------------------------------------------------


================================================================================
 coreutils-8.4-9.fc13 (FEDORA-2010-15763)
 A set of basic GNU tools commonly used in shell scripts
--------------------------------------------------------------------------------
Update Information:

- various fixes for case conversion in tr(#611274)
- change assertion failure for invalid multibyte input
  in sort to less confusing error message(#591352)
- add RELRO protection to su as well (#630017)
- compile su with pie again (#630017)
- fix double free abort in tac (#628213)
- Add .ear, .war, .sar , for Java jar-like archives to
  dircolors (#616497)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Ondrej Vasik <ovasik@xxxxxxxxxx> - 8.4-9
- various fixes for case conversion in tr(#611274)
- change assertion failure for invalid multibyte input
  in sort to less confusing error message(#591352)
- add RELRO protection to su as well (#630017)
- compile su with pie again (#630017)
- fix double free abort in tac (#628213)
- Add .ear, .war, .sar , for Java jar-like archives to
  dircolors (#616497)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #611274 - [abrt] crash in coreutils-8.4-7.fc13: raise: Process /usr/bin/tr was killed by signal 6 (SIGABRT)
        https://bugzilla.redhat.com/show_bug.cgi?id=611274
  [ 2 ] Bug #628213 - tac has a double-free bug (input line longer than 16KiB)
        https://bugzilla.redhat.com/show_bug.cgi?id=628213
--------------------------------------------------------------------------------


================================================================================
 cppcheck-1.45-1.fc13 (FEDORA-2010-15779)
 A tool for static C/C++ code analysis
--------------------------------------------------------------------------------
Update Information:

Update to 1.45, see full changelog at http://github.com/danmar/cppcheck/commit/da099234d588f308d70adfbd9c0f234fe9c5a96f .
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.45-1
- Update to 1.45.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639899 - cppcheck-1.45 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=639899
--------------------------------------------------------------------------------


================================================================================
 docbook-utils-0.6.14-26.fc13 (FEDORA-2010-15550)
 Shell scripts for managing DocBook documents
--------------------------------------------------------------------------------
Update Information:

- make [[:space:]] class syntax compatible with new grep(#637594)
- do not produce final echo, it causes some manpage noise
  with new perl(#513271, #587012)
-fix autogenerated manpage header format(#639347)
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Ondrej Vasik <ovasik@xxxxxxxxxx> 0.6.14-26
- fix autogenerated manpage header format(#639347)
* Wed Sep 29 2010 Ondrej Vasik <ovasik@xxxxxxxxxx> 0.6.14-25
- make [[:space:]] class syntax compatible with new grep(#637594)
* Mon May 31 2010 Ondrej Vasik <ovasik@xxxxxxxxxx> 0.6.14-24
- do not produce final echo, it causes some manpage noise
  with new perl(#513271, #587012)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639347 - docbook2man generates man pages which rpmlint does not like
        https://bugzilla.redhat.com/show_bug.cgi?id=639347
--------------------------------------------------------------------------------


================================================================================
 drupal-cck-6.x.2.8-1.fc13 (FEDORA-2010-15707)
 Allows you create and customize fields using a web browser
--------------------------------------------------------------------------------
Update Information:

Contains fix for DRUPAL-SA-CONTRIB-2010-088.

http://drupal.org/node/880736
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 6.x.2.8-1
- New upstream, DRUPAL-SA-CONTRIB-2010-088.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639646 - drupal-cck is missing security update to 6.x-2.8
        https://bugzilla.redhat.com/show_bug.cgi?id=639646
--------------------------------------------------------------------------------


================================================================================
 ebook-tools-0.2.0-1.fc13 (FEDORA-2010-15698)
 Tools for accessing and converting various ebook file formats
--------------------------------------------------------------------------------
Update Information:

This release contains major bug fixes, see also http://sourceforge.net/news/?group_id=206526&id=291219
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep  9 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-1
- ebook-tools-0.2.0
- %files: track lib soname
- tighten subpkg deps with %_isa
--------------------------------------------------------------------------------


================================================================================
 erlang-gen_leader-0-0.2.fc13 (FEDORA-2010-15770)
 A leader election behavior modeled after gen_server
--------------------------------------------------------------------------------
Update Information:

initial commit
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638906 - Review Request: erlang-gen_leader - A leader election behavior modeled after gen_server
        https://bugzilla.redhat.com/show_bug.cgi?id=638906
--------------------------------------------------------------------------------


================================================================================
 erlang-mochiweb-1.3-0.8.20100929git47fe37b.fc13 (FEDORA-2010-15728)
 An Erlang library for building lightweight HTTP servers
--------------------------------------------------------------------------------
Update Information:

- Narrowed BuildRequires.
- Restricted explicit requirement for obsoleted fd_server module (rhbz #601152).
- Dropped upstreamed patch6.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 29 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.3-0.8.20100929git9687b40
- Narrowed BuildRequires
- Restricted explicit requirement for obsoleted fd_server module (rhbz #601152)
- Dropped upstreamed patch6
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #601152 - Missing runtime dependency in erlang-mochiweb - fd_server
        https://bugzilla.redhat.com/show_bug.cgi?id=601152
--------------------------------------------------------------------------------


================================================================================
 fluidsynth-1.1.2-2.fc13 (FEDORA-2010-15740)
 Real-time software synthesizer
--------------------------------------------------------------------------------
Update Information:

Fix garbled sound issue. Upstream ticket #87
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.1.2-2
- Fix garbled sound issues. Upstream ticket #87
--------------------------------------------------------------------------------


================================================================================
 freetype-2.3.11-6.fc13 (FEDORA-2010-15705)
 A free and portable font rendering engine
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Marek Kasik <mkasik@xxxxxxxxxx> 2.3.11-6
- Add freetype-2.3.11-CVE-2010-2805.patch
    (Fix comparison.)
- Add freetype-2.3.11-CVE-2010-2806.patch
    (Protect against negative string_size. Fix comparison.)
- Add freetype-2.3.11-CVE-2010-2808.patch
    (Check the total length of collected POST segments.)
- Add freetype-2.3.11-CVE-2010-3311.patch
    (Don't seek behind end of stream.)
- Resolves: #638522
* Mon Oct  4 2010 Marek Kasik <mkasik@xxxxxxxxxx> 2.3.11-5
- Add freetype-2.3.11-CVE-2010-1797.patch
    (Check stack after execution of operations too.
     Skip the evaluations of the values in decoder, if
     cff_decoder_parse_charstrings() returns any error.)
- Resolves: #621627
* Fri Oct  1 2010 Marek Kasik <mkasik@xxxxxxxxxx> 2.3.11-4
- Add freetype-2.3.11-CVE-2010-2498.patch
    (Assure that `end_point' is not larger than `glyph->num_points')
- Add freetype-2.3.11-CVE-2010-2499.patch
    (Check the buffer size during gathering PFB fragments)
- Add freetype-2.3.11-CVE-2010-2500.patch
    (Use smaller threshold values for `width' and `height')
- Add freetype-2.3.11-CVE-2010-2519.patch
    (Check `rlen' the length of fragment declared in the POST fragment header)
- Add freetype-2.3.11-CVE-2010-2520.patch
    (Fix bounds check)
- Add freetype-2.3.11-CVE-2010-2527.patch
    (Use precision for `%s' where appropriate to avoid buffer overflows)
- Add freetype-2.3.11-CVE-2010-2541.patch
    (Avoid overflow when dealing with names of axes)
- Resolves: #613299
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #613160 - CVE-2010-2498 freetype: invalid free vulnerability with possible heap corruption
        https://bugzilla.redhat.com/show_bug.cgi?id=613160
  [ 2 ] Bug #613162 - CVE-2010-2499 freetype: buffer overflow vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=613162
  [ 3 ] Bug #613167 - CVE-2010-2500 freetype: integer overflow vulnerability in smooth/ftgrays.c
        https://bugzilla.redhat.com/show_bug.cgi?id=613167
  [ 4 ] Bug #613194 - CVE-2010-2519 freetype: heap buffer overflow vulnerability when processing certain font files
        https://bugzilla.redhat.com/show_bug.cgi?id=613194
  [ 5 ] Bug #613198 - CVE-2010-2520 freetype: heap buffer overflow vulnerability in truetype bytecode support
        https://bugzilla.redhat.com/show_bug.cgi?id=613198
  [ 6 ] Bug #614557 - CVE-2010-2527 Freetype demos multiple buffer overflows
        https://bugzilla.redhat.com/show_bug.cgi?id=614557
  [ 7 ] Bug #617342 - CVE-2010-2541 Freetype ftmulti buffer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=617342
  [ 8 ] Bug #621144 - CVE-2010-1797 FreeType: Multiple stack overflows by processing CFF opcodes
        https://bugzilla.redhat.com/show_bug.cgi?id=621144
  [ 9 ] Bug #621907 - CVE-2010-2808 FreeType: Stack-based buffer overflow by processing certain LWFN fonts
        https://bugzilla.redhat.com/show_bug.cgi?id=621907
  [ 10 ] Bug #621980 - CVE-2010-2806 FreeType: Heap-based buffer overflow by processing FontType42 fonts with negative length of SFNT strings (FT bug #30656)
        https://bugzilla.redhat.com/show_bug.cgi?id=621980
  [ 11 ] Bug #623625 - CVE-2010-3311 freetype: Input stream position error by processing Compact Font Format (CFF) font files
        https://bugzilla.redhat.com/show_bug.cgi?id=623625
  [ 12 ] Bug #625626 - CVE-2010-2805 freetype: FT_Stream_EnterFrame() does not properly validate certain position values
        https://bugzilla.redhat.com/show_bug.cgi?id=625626
--------------------------------------------------------------------------------


================================================================================
 gimp-2.6.11-1.fc13 (FEDORA-2010-15710)
 GNU Image Manipulation Program
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.6.11-1
- version 2.6.11

  Overview of Changes from GIMP 2.6.10 to GIMP 2.6.11
  ===================================================

  * Bugs fixed:

   631199 - Printing and Print preview broken with cairo 1.10
   572865 - Parasite handling had problems and can cause crashing
   628893 - Error with string-append and gimp-drawable-get-name
   623850 - (Paco) Recursive Gaussian Filter error
   624487 - Fix incorrect "wrap mode" documentation values in Edge plug-in
   557380 - Difference of Gaussians gives blank doc if "Invert" selected
   627009 - Image type filter doesn't include .rgba SGI files
   626020 - Console window opening on file-ps-load
   624698 - Wood 1 and Wood 2 have bad alpha value
   624275 - Image saved from google docs generates a
            'gimp-image-set-resolution' error message

  * Updated translations:

   German (de)
   Spanish (es)
   Italian (it)
   Japanese (ja)
   Romanian (ro)
   Chinese (Hong Kong) (zh_HK)
   Chinese (Taiwan) (zh_HK)
* Tue Aug 24 2010 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.6.10-5
- don't require gtk-doc but own %{_datadir}/gtk-doc (#604355, #604169)
* Thu Aug 19 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2:2.6.10-4
- rebuild (poppler)
* Wed Aug 11 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 2:2.6.10-3
- recompiling .py files against Python 2.7 (rhbz#623309)
--------------------------------------------------------------------------------


================================================================================
 gnash-0.8.8-3.fc13 (FEDORA-2010-13410)
 GNU flash movie player
--------------------------------------------------------------------------------
Update Information:

An update to the latest upstream release of Gnash, providing many bugfixes and a few minor enhancements, see:
http://www.gnashdev.org/?q=node/76

This update also fixes 2 issues with the documentation build (caught by the stricter make in Fedora 14).
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1:0.8.8-3
- fix FTBFS (#631181) (fix by Hicham Haouari)
* Fri Aug 27 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1:0.8.8-2
- fix the check for the docbook2X tools being in Perl
* Wed Aug 25 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1:0.8.8-1.1
- rebuild for the official release of Boost 1.44.0 (silent ABI change)
* Mon Aug 23 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1:0.8.8-1
- update to 0.8.8 (#626352, #574100, #606170)
- update file list (patch by Jeff Smith)
* Thu Jul 29 2010 Bill Nottingham <notting@xxxxxxxxxx> - 1:0.8.7-5
- Rebuilt for boost-1.44, again
* Tue Jul 27 2010 Bill Nottingham <notting@xxxxxxxxxx> - 1:0.8.7-4
- Rebuilt for boost-1.44
* Wed Jul 21 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 1:0.8.7-3
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
* Tue Jun  8 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 1:0.8.7-2
- -plugin: avoid file (directory) dependency (#601942)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #626352 - gnash-0.8.8 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=626352
  [ 2 ] Bug #574100 - [abrt] crash in gnash-1:0.8.7-1.fc12: Process /usr/bin/gtk-gnash was killed by signal 6 (SIGABRT) [AVM2]
        https://bugzilla.redhat.com/show_bug.cgi?id=574100
  [ 3 ] Bug #606170 - Youtube videos do not work
        https://bugzilla.redhat.com/show_bug.cgi?id=606170
--------------------------------------------------------------------------------


================================================================================
 gnome-subtitles-1.0-3.fc13 (FEDORA-2010-15711)
 Subtitle editor for Gnome
--------------------------------------------------------------------------------
Update Information:

Fix a security vulnerability in LD_LIBRARY_PATH handling.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct  3 2010 Julian Sikorski <belegdol@xxxxxxxxxxxxxxxxx> - 1.0-3
- Switched to upstreams approach for the security fix
- Use the new macros properly
* Thu Sep 30 2010 Julian Sikorski <belegdol@xxxxxxxxxxxxxxxxx> - 1.0-2
- Fixed security vulnrerability CVE-2010-3357
- Updated scriptlets to the latest spec
- Dropped scrollkeeper BR
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638384 - CVE-2010-3357 gnome-subtitles: insecure library loading vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=638384
--------------------------------------------------------------------------------


================================================================================
 gpodder-2.8-2.fc13 (FEDORA-2010-15751)
 Podcast receiver/catcher written in Python
--------------------------------------------------------------------------------
Update Information:

This update fixes the 'gpo update' command
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct  3 2010 Ville-Pekka Vainio <vpivaini AT cs.helsinki.fi> - 2.8-2
- Add a patch to fix the 'gpo update' command, rhbz #638107, Maemo #11217
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638107 - AttributeError: 'Podcast' object has no attribute '_config'
        https://bugzilla.redhat.com/show_bug.cgi?id=638107
--------------------------------------------------------------------------------


================================================================================
 grantlee-0.1.6-1.fc13 (FEDORA-2010-15788)
 Qt string template engine based on the Django template system
--------------------------------------------------------------------------------
Update Information:

This update fixes memory leaks in grantlee.


--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 30 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 0.1.6-1
- grantlee 0.1.6 bugfix (memory leak) update
--------------------------------------------------------------------------------


================================================================================
 gtk-equinox-engine-1.30.2-1.fc13 (FEDORA-2010-15719)
 Equinox theme engine for GTK+ 2.x
--------------------------------------------------------------------------------
Update Information:

A new engine derived from Aurora 1.4. It features smooth gradients or glassy
effects, subtle shadows, rounded widgets.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 GermÃn A. Racca <skytux@xxxxxxxxxxxxxxxxx> 1.30.2-1
- Updated to new version
- Defined some globals
--------------------------------------------------------------------------------


================================================================================
 hplip-3.10.9-1.fc13 (FEDORA-2010-15738)
 HP Linux Imaging and Printing Project
--------------------------------------------------------------------------------
Update Information:

New upstream release. Adds support for new printers and fixes several bugs.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 3.10.9-1
- 3.10.9.
* Wed Sep 22 2010 Tim Waugh <twaugh@xxxxxxxxxx>
- More fixes from package review:
  - Avoided another macro in comment.
  - Use python_sitearch macro throughout.
* Mon Sep 20 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 3.10.6-5
- Increased timeouts for curl, wget, ping for high latency networks (bug #635388).
* Wed Sep 15 2010 Tim Waugh <twaugh@xxxxxxxxxx>
- Fixes from package review:
  - Main package and hpijs sub-package require cups for directories.
  - The common sub-package requires udev for directories.
  - The libs sub-package requires python for directories.
  - Avoided macro in comment.
  - The lib sub-package now runs ldconfig for post/postun.
  - Use python_sitearch macro.
* Mon Sep 13 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> - 3.10.6-4
- Added IEEE 1284 Device ID for HP LaserJet 4000 (bug #633227).
* Fri Aug 20 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 3.10.6-3
- Added another SNMP quirk for an OfficeJet Pro 8500 variant.
* Thu Aug 12 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 3.10.6-2
- Use correct fax PPD name for Qt3 UI.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #633227 - Missing Device ID for HP Laserjet 4000
        https://bugzilla.redhat.com/show_bug.cgi?id=633227
  [ 2 ] Bug #635388 - hp-setup times out too early when downloading plugin
        https://bugzilla.redhat.com/show_bug.cgi?id=635388
--------------------------------------------------------------------------------


================================================================================
 jpanoramamaker-5-2.fc13 (FEDORA-2010-15736)
 Tool for stitching photos to panorama in linear curved space
--------------------------------------------------------------------------------
Update Information:

Publish jpanoramamaker for fedora
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638582 - Review Request: jpanoramamaker -
        https://bugzilla.redhat.com/show_bug.cgi?id=638582
--------------------------------------------------------------------------------


================================================================================
 krazy2-2.90-9.20100926svn.fc13 (FEDORA-2010-15733)
 Krazy is a tool for checking code against the KDE coding guidelines
--------------------------------------------------------------------------------
Update Information:

An update of Krazy2 to the latest snapshot from upstream:
* fixes several false positive warnings and some other bugs
* adds a few new command-line options: --types=<types>, --exclude-types=<types>, --list-sets, --check-sets=<sets>, --config=<krazyrc_file>
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 2.90-9.20100926svn
- Install sets (required for operation)
- Use install/fast instead of install for the cppchecks CMake makefile
* Fri Oct  1 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 2.90-8.20100926svn
- Remove unused (since Jan 2009!) kdelibs4-devel and kdevplatform-devel BRs
* Fri Oct  1 2010 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 2.90-7.20100926svn
- Update to current SVN (revision 1179948 committed 20100926, version 2.90)
- Drop upstreamed qt47 and rpath patches
* Mon Jun 28 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.9-6.20100628svn
- Update snapshot
- FTBFS krazy2-2.9-4.20090928svn.fc13 (#599851)
- squash /lib rpaths
* Tue Jun  1 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 2.9-5.20090928svn
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------


================================================================================
 libimobiledevice-1.0.3-1.fc13 (FEDORA-2010-15764)
 Library for connecting to mobile devices
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Peter Robinson <pbrobinson@xxxxxxxxx> 1.0.3-1
- New 1.0.3 release
* Sun Aug  1 2010 Orcan Ogetbil <oget[dot]fedora[at]gmail[dot]com> - 1.0.2-3
- Allow build against swig-2.0.0
* Wed Jul 21 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 1.0.2-2
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
--------------------------------------------------------------------------------


================================================================================
 libphidget-2.1.7.20100621-5.fc13 (FEDORA-2010-15727)
 Drivers and API for Phidget devices
--------------------------------------------------------------------------------
Update Information:

This update fixes a "undefined reference" problem when trying to run a program linked against libphidget.  It also restores the java binding functionality to f12 ppc architectures
New Package: libphidget

Phidgets are a set of "plug and play" building blocks for low cost USB sensing and control from your PC.  All the USB complexity is taken care of by the robust libphidget API.
New Package: libphidget

Phidgets are a set of "plug and play" building blocks for low cost USB sensing and control from your PC.  All the USB complexity is taken care of by the robust libphidget API.
New Package: libphidget

Phidgets are a set of "plug and play" building blocks for low cost USB sensing and control from your PC.  All the USB complexity is taken care of by the robust libphidget API.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #635515 - Review Request: libphidget - Drivers and API for Phidget devices
        https://bugzilla.redhat.com/show_bug.cgi?id=635515
--------------------------------------------------------------------------------


================================================================================
 libucil-0.9.10-1.fc13 (FEDORA-2010-15752)
 Library to render text and graphic overlays onto video images
--------------------------------------------------------------------------------
Update Information:

  * src/ucil_theora.c (fill_frames): replaced ucutil_queue with GQueue
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct  4 2020 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.9.10-1
- Upgrade to 0.9.10
* Wed Sep 29 2010 Jesse Keating <jkeating@xxxxxxxxxx> 0.9.8-6
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------


================================================================================
 libunicap-0.9.12-1.fc13 (FEDORA-2010-15776)
 Library to access different kinds of (video) capture devices
--------------------------------------------------------------------------------
Update Information:

  * src/unicap.c (unicap_open): fix: returned uninitialized status
  * (unicap_data_buffer_new): fix: buffer_structure was initialized before allocated
  * configure.ac: euvccam is now enabled by default
  * include/unicap.h (enum): add flags for interlaced buffers
  * cpi/vid21394/vid21394_base.c (_vid21394_new_iso_handler): Mark buffers as interlaced and odd field first
  * configure.ac: Added euvccam plugin
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.9.12-1
- Upgrade to 0.9.12 (#635377)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #635377 - libunicap-0.9.12 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=635377
--------------------------------------------------------------------------------


================================================================================
 mailgraph-1.14-8.fc13 (FEDORA-2010-15784)
 A RRDtool frontend for Mail statistics
--------------------------------------------------------------------------------
Update Information:

Fix a bug in the mailgraph-selinux package which doesn't restore the context on the rrd files after installation.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Mark Chappell <tremble@xxxxxxxxxxxxxxxxx> - 1.14-8
- SELinux policy did not set the context on RRD files (bz #566513)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #566513 - mailgraph-selinux does not work fine
        https://bugzilla.redhat.com/show_bug.cgi?id=566513
--------------------------------------------------------------------------------


================================================================================
 mercurial-1.6.4-1.fc13 (FEDORA-2010-15782)
 Mercurial -- a distributed SCM
--------------------------------------------------------------------------------
Update Information:

see: http://http://mercurial.selenic.com/wiki/WhatsNew
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Neal Becker <ndbecker2@xxxxxxxxx> - 1.6.4-1
- Update to 1.6.4
* Fri Aug 27 2010 Neal Becker <ndbecker2@xxxxxxxxx> - 1.6.3-1
- Fix some rpmlint issues
--------------------------------------------------------------------------------


================================================================================
 motoya-lcedar-fonts-1.00-0.1.20100928git.fc13 (FEDORA-2010-15699)
 Japanese Gothic-typeface TrueType fonts by MOTOYA Co,LTD
--------------------------------------------------------------------------------


================================================================================
 mscore-0.9.6.3-1.fc13 (FEDORA-2010-15777)
 Music Composition & Notation Software
--------------------------------------------------------------------------------
Update Information:

MuseScore 0.9.6.3 is a bug-fix release that corrects more than 13 problems, mostly critical. There are no new features in 0.9.6.3 compared to 0.9.6. Below is a full list of the corrections.

* fix #6775: Seg. fault by double clicking any element twice
* fix #7233: Transpose by diminished second doesn't work (0.9.6 branch regression)
* fix #7232: D.S. after coda sign freezes playback
* fix #7167: Time signature change causes triplets to corrupt score
* fix #7211: Copy/Paste notes over rest of diff. durations in staves
* fix #7142: Crescendo & delete measures problems
* fix #7197: MuseScore fails to open MSCZ files with capitals
* fix #6932: Changing notehead of a breve crash
* fix #7077: Applying double-note tremolo to dotted notes fails and alter measure duration
* fix #6937: Measure Properties should be modal dialog
* fix #6888: When exchanging voice, voice 1 is removed
* fix get keysig from plugin when concert pitch mode is set
* fix #6735: C# for AltoSax in default soundfont is silent
* add access to DPI and notehead, note boundingbox and note position from plugin framework
* fix #7150: Changing soundfont does not work for audio export

Documentation

* New handbook for Danish

Translation

* All languages are updated from http://translate.musescore.org

--------------------------------------------------------------------------------
ChangeLog:

* Sun Sep 26 2010 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 0.9.6.3-1
- Update to 0.9.6.3
--------------------------------------------------------------------------------


================================================================================
 mspdebug-0.11-1.fc13 (FEDORA-2010-15723)
 Debugger and gdb proxy for MSP430 MCUs
--------------------------------------------------------------------------------
Update Information:

Update to version 0.11.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Rob Spanton <rspanton@xxxxxxxxxx - 0.11-1
- Bump up to 0.11
--------------------------------------------------------------------------------


================================================================================
 mysql-connector-c++-1.1.0-0.3.bzr895.fc13 (FEDORA-2010-15762)
 MySQL database connector for C++
--------------------------------------------------------------------------------
Update Information:

MySQL Workbench provides Database administrators and developers 
an integrated tools environment for:
* Database Design and Modeling
* SQL Development (replacing MySQL Query Browser)
* Database Administration (replacing MySQL Administrator)

--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 20 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.1.0-0.3.bzr895
- update to 1.1.0 from bzr snapshot 895 (for Workbench 5.2.28)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #629326 - Review Request: mysql-workbench - A MySQL visual database modeling, administration and querying tool.
        https://bugzilla.redhat.com/show_bug.cgi?id=629326
--------------------------------------------------------------------------------


================================================================================
 mysql-workbench-5.2.28-3.fc13 (FEDORA-2010-15762)
 A MySQL visual database modeling, administration and querying tool
--------------------------------------------------------------------------------
Update Information:

MySQL Workbench provides Database administrators and developers 
an integrated tools environment for:
* Database Design and Modeling
* SQL Development (replacing MySQL Query Browser)
* Database Administration (replacing MySQL Administrator)

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #629326 - Review Request: mysql-workbench - A MySQL visual database modeling, administration and querying tool.
        https://bugzilla.redhat.com/show_bug.cgi?id=629326
--------------------------------------------------------------------------------


================================================================================
 nautilus-terminal-0.7-1.fc13 (FEDORA-2010-15703)
 Terminal embedded in Nautilus
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #635788 - Review Request: nautilus-terminal - Terminal embedded in Nautilus
        https://bugzilla.redhat.com/show_bug.cgi?id=635788
--------------------------------------------------------------------------------


================================================================================
 neon-0.29.4-1.fc13 (FEDORA-2010-15744)
 An HTTP and WebDAV client library
--------------------------------------------------------------------------------
Update Information:

This update includes the latest stable release of neon.

A bug fix for use of the TLS "Server Name Indication" feature is included, as well as some other minor fixes.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Joe Orton <jorton@xxxxxxxxxx> - 0.29.4-1
- update to 0.29.4 (#575429)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #575429 - Bug fix to Fedora 12 not pushed to Fedora 13 or Rawhide.
        https://bugzilla.redhat.com/show_bug.cgi?id=575429
--------------------------------------------------------------------------------


================================================================================
 nss-3.12.7-9.fc13 (FEDORA-2010-15520)
 Network Security Services
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 30 2010 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.12.7-9
- Fix version on triggerpostun scriplet (#636787)
* Wed Sep 29 2010 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.12.7-8
- Replace posttrans sysinit scriptlet with a triggerpostun one (#636787)
- Fix and cleanup the setup-nsssysinit.sh script (#636792, #636801)
* Tue Sep 28 2010 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.12.7-7
- Prevent of nss-sysinit disabling on package upgrade (#636787)
- Create pkcs11.txt with correct permissions regardless of umask (#636792) 
- Setup-nsssysinit.sh reports whether nss-sysinit is turned on or off (#636801)
- Add provides nss-pkcs11-devel-static to comply with packaging guidelines (#609612)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #636787 - nss-sysinit: sysinit disabled on package upgrade
        https://bugzilla.redhat.com/show_bug.cgi?id=636787
  [ 2 ] Bug #636792 - nss-sysinit: setup-nsssysinit.sh should create pkcs11.txt with correct permissions regardless of current umask
        https://bugzilla.redhat.com/show_bug.cgi?id=636792
  [ 3 ] Bug #636801 - [RFE] nss-sysinit: setup-nsssysinit.sh should be able to report current status
        https://bugzilla.redhat.com/show_bug.cgi?id=636801
  [ 4 ] Bug #609612 - nss : does not adhere to Static Library Packaging Guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=609612
  [ 5 ] Bug #609613 - nss-softokn : does not adhere to Static Library Packaging Guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=609613
--------------------------------------------------------------------------------


================================================================================
 nss-softokn-3.12.7-7.fc13 (FEDORA-2010-15520)
 Network Security Services Softoken Module
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 28 2010 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.12.7-7
- Add provides nss-softokn-freebl-static to adhere to static library packaging guidelines (#609613)
- Cleanup some comments to address rpmlint warnings
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #636787 - nss-sysinit: sysinit disabled on package upgrade
        https://bugzilla.redhat.com/show_bug.cgi?id=636787
  [ 2 ] Bug #636792 - nss-sysinit: setup-nsssysinit.sh should create pkcs11.txt with correct permissions regardless of current umask
        https://bugzilla.redhat.com/show_bug.cgi?id=636792
  [ 3 ] Bug #636801 - [RFE] nss-sysinit: setup-nsssysinit.sh should be able to report current status
        https://bugzilla.redhat.com/show_bug.cgi?id=636801
  [ 4 ] Bug #609612 - nss : does not adhere to Static Library Packaging Guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=609612
  [ 5 ] Bug #609613 - nss-softokn : does not adhere to Static Library Packaging Guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=609613
--------------------------------------------------------------------------------


================================================================================
 pcb-0.20100929-1.fc13 (FEDORA-2010-15787)
 An interactive printed circuit board editor
--------------------------------------------------------------------------------
Update Information:

This release represents over 240 commits and as such this summary clearly is not complete. See the ChangeLog file for the complete list of changes.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Chitlesh Goorah <chitlesh [AT] fedoraproject DOT org> - 0.20100929-1
- New upstream release
--------------------------------------------------------------------------------


================================================================================
 perl-Cache-FastMmap-1.36-1.fc13 (FEDORA-2010-15766)
 Uses an mmap'ed file to act as a shared memory interprocess cache
--------------------------------------------------------------------------------
Update Information:

This update to the latest upstream version fixes a potential problem for users of Time::HiRes::alarm().
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Iain Arnell <iarnell@xxxxxxxxx> 1.36-1
- update to latest upstream
- re-enable leak test
* Thu Apr 29 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 1.35-2
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------


================================================================================
 perl-HTML-TreeBuilder-XPath-0.12-1.fc13 (FEDORA-2010-15704)
 Add XPath support to HTML::TreeBuilder
--------------------------------------------------------------------------------
Update Information:

This update to latest upstream version adds getLocalName method on elements.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct  3 2010 Iain Arnell <iarnell@xxxxxxxxx> 0.12-1
- update to latest upstream
- clean up spec for modern rpmbuild
* Sun May  2 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 0.11-4
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------


================================================================================
 perl-KinoSearch1-1.00-2.fc13 (FEDORA-2010-15768)
 Search engine library
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #637489 - Review Request: perl-KinoSearch1 - Search engine library
        https://bugzilla.redhat.com/show_bug.cgi?id=637489
--------------------------------------------------------------------------------


================================================================================
 perl-Lingua-EN-Tagger-0.16-2.fc13 (FEDORA-2010-15761)
 Part-of-speech tagger for English natural language processing
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #624471 - Review Request: perl-Lingua-EN-Tagger - Part-of-speech tagger for English natural language processing
        https://bugzilla.redhat.com/show_bug.cgi?id=624471
--------------------------------------------------------------------------------


================================================================================
 perl-Test-Requires-0.06-1.fc13 (FEDORA-2010-15759)
 Checks to see if a given module can be loaded
--------------------------------------------------------------------------------
Update Information:

This update to the latest upstream version introduces no functional changes; it merely clarifies some dependencies. The update is necessary, however, for the latest version of Moose.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------


================================================================================
 perl-Text-SpellChecker-0.08-1.fc13 (FEDORA-2010-15753)
 OO interface for spell-checking a block of text
--------------------------------------------------------------------------------
Update Information:

This update to the current upstream releases changes the spell checker back-end from the legacy aspell to the system-default hunspell library.

See also:
https://fedoraproject.org/wiki/Releases/FeatureDictionary
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 20 2010 Paul Howarth <paul@xxxxxxxxxxxx> - 0.08-1
- Update to 0.08 (test suite doesn't fail in absence of Text::Aspell)
- Update testsuite patch
* Fri Sep 17 2010 Paul Howarth <paul@xxxxxxxxxxxx> - 0.07-1
- Update to 0.07 (use hunspell backend rather than aspell)
- Add patch for Fedora dictionary locations
- Add patch to remove dependency of Text::Aspell in test suite
- Buildreq Text::Hunspell rather than Text::Aspell
- Add buildreq hunspell-en
- Add manual dependency on perl(Text::Hunspell)
- Run test suite in verbose mode
* Wed Sep 15 2010 Paul Howarth <paul@xxxxxxxxxxxx> - 0.06-1
- Update to 0.06 (made deserialization accept non-blessed refs)
* Fri May  7 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 0.05-5
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------


================================================================================
 php-pecl-memcache-3.0.4-4.fc13 (FEDORA-2010-15786)
 Extension to work with the Memcached caching daemon
--------------------------------------------------------------------------------
Update Information:

fix cache delete, upstream bug #17566

--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 30 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 3.0.4-4
- patch for bug #599305 (upstream #17566)
- add minimal load test in %check
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #599305 - php-pecl-memcache extension broken due to a "protocol error"
        https://bugzilla.redhat.com/show_bug.cgi?id=599305
--------------------------------------------------------------------------------


================================================================================
 python-pyside-0.4.1-3.fc13 (FEDORA-2010-15701)
 Python bindings for Qt4
--------------------------------------------------------------------------------
Update Information:

This update adds support for Phonon bindings.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Kalev Lember <kalev@xxxxxxxxxxxx> - 0.4.1-3
- Re-enabled phonon bindings
--------------------------------------------------------------------------------


================================================================================
 python-zope-testing-3.9.5-6.fc13 (FEDORA-2010-15725)
 Zope Testing Framework
--------------------------------------------------------------------------------
Update Information:

New upstream release. Part of ZTK 1.0 c3.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 15 2010 Robin Lee <robinlee.sysu@xxxxxxxxx> - 3.9.5-6
- Requirement: python-zope-filesystem removed, python-zope-exceptions and
  python-setuptools added
- BR: python-zope-exceptions and python-zope-interface added
- Rearrange documents
- Add a small patch and a %check section to make the tests run
* Sat Jul 31 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 3.9.5-5
- actually remove the requirement on python-zope-exceptions this time
* Fri Jul 30 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 3.9.5-4
- add missing build-time requirement on python-setuptools
* Fri Jul 30 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 3.9.5-3
- remove requirement on python-zope-exceptions for now (bug 619478)
- add missing zope-testrunner executable to %files
* Thu Jul 22 2010 David Malcolm <dmalcolm@xxxxxxxxxx> - 3.9.5-2
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
* Thu Jun 17 2010 Robin Lee <robinlee.sysu@xxxxxxxxx> - 3.9.5-1
- Update to 3.9.5
- Rearrange documents
- Requires: python-zope-interface and python-zope-exceptions added
--------------------------------------------------------------------------------


================================================================================
 qbittorrent-2.4.4-1.fc13 (FEDORA-2010-15713)
 A Bittorrent Client
--------------------------------------------------------------------------------
Update Information:

* Fri Oct 1 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.4
    - BUGFIX: Clean program exit on system shutdown/logout
    - BUGFIX: Fix possible search engine plugin update
* Tue Sep 28 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.3
    - BUGFIX: Fix encoding issue in command line parameters processing
    - BUGFIX: Fix possible crash when changing the save path in addition dialog
    - BUGFIX: Fix wrong mapping to source model

* Sun Sep 26 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.2
    - BUGFIX: Fix display of torrent content in addition dialog
    - BUGFIX: Really fix manual editing of save path in torrent addition dialog

* Sun Sep 26 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.1
    - I18N: Updated Arabic translation
    - I18N: Fixes to German translation
    - BUGFIX: Save path can now be edited in torrent addition dialog
    - BUGFIX: Fix save path encoding on non-utf8 systems
    - BUGFIX: Fix saving to drive root on Windows
    - BUGFIX: OGV can now be previewed
    - BUGFIX: Maximum download limit is now 10MB/s
    - BUGFIX: Fix 'download in scan dir' persistence
    - BUGFIX: Add .torrent extension only when missing (torrent creator)
    - BUGFIX: Fix possible issue with temporary download path persistence
    - BUGFIX: Added support for | (OR) operator in RSS feed downloader
    - BUGFIX: Fix Web UI for spanish users
    - BUGFIX: Fix locale switching from Web UI
    - BUGFIX: Use AND operator for torrentdownloads.net searches
    - BUGFIX: Limit torrent addition dialog width to fit the screen
    - COSMETIC: Fix progress bars style on Windows
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.4-1
- update to 2.4.4
* Mon Sep 27 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.3-1
- update to 2.4.3
* Sun Sep 26 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.2-1
- update to 2.4.2
* Sun Sep 26 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.1-1
- update to 2.4.1
--------------------------------------------------------------------------------


================================================================================
 quvi-0.2.5-1.fc13 (FEDORA-2010-15746)
 Command line tool for parsing video download links
--------------------------------------------------------------------------------
Update Information:

Update to 0.2.5
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Nicoleau Fabien <nicoleau.fabien@xxxxxxxxx> 0.2.5-1
- Update to 0.2.5
--------------------------------------------------------------------------------


================================================================================
 rabbitmq-server-2.1.0-1.fc13 (FEDORA-2010-15731)
 The RabbitMQ server
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct  5 2010 Hubert Plociniczak <hubert.plociniczak@xxxxxxxxx> 2.1.0-1
- New Upstream Release
--------------------------------------------------------------------------------


================================================================================
 root-5.26.00d-3.fc13 (FEDORA-2010-15734)
 Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:

This update adds some missing package dependencies. For example the TBrowser will now work out-of-the-box without additional package installations.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct  2 2010 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.26.00d-3
- Add Requires on root-graf-asimage to root-core
- Add Requires on root-graf-x11 to root-graf-gui
- Add Requires on root-hist-painter to root-hist
- Add Requires on root-minuit to root-mathcore
- Add Requires on krb5-workstation to root-net-krb5
- Add BuildRequires on krb5-workstation
--------------------------------------------------------------------------------


================================================================================
 spew-1.0.8-3.fc13 (FEDORA-2010-15702)
 I/O performance measurement and load generation tool
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #634258 - Review Request: spew - I/O performance measurement and load generation tool
        https://bugzilla.redhat.com/show_bug.cgi?id=634258
--------------------------------------------------------------------------------


================================================================================
 sssd-1.3.0-35.fc13 (FEDORA-2010-15544)
 System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:

* Mon Oct 04 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-35
- Fix pre and post script requirements

* Mon Oct 04 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-34
- Resolves: rhbz#606887 - sssd stops on upgrade

*NOTE* This bug was caused by a %post error. Upgrading to this build may still see the failure, but it should not be present in future upgrades FROM this build. I apologize, but there's no way around this.

* Fri Oct 01 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-33
- Resolves: rhbz#626205 - Unable to unlock screen

* Tue Sep 28 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-32
- Resolves: rhbz#637955 - libini_config-devel needs libcollection-devel but
-                         doesn't require it

* Thu Sep 16 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-31
- Resolves: rhbz#632615 - the krb5 locator plugin isn't packaged for multilib

* Tue Aug 24 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-30
- New upstream version 1.3.0
- Improved LDAP failover
- Synchronous sysdb API (provides performance enhancements)
- Better online reconnection detection
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-35
- Fix pre and post script requirements
* Mon Oct  4 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-34
- Resolves: rhbz#606887 - sssd stops on upgrade
* Fri Oct  1 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-33
- Resolves: rhbz#626205 - Unable to unlock screen
* Tue Sep 28 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-32
- Resolves: rhbz#637955 - libini_config-devel needs libcollection-devel but
-                         doesn't require it
* Thu Sep 16 2010 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.3.0-31
- Resolves: rhbz#632615 - the krb5 locator plugin isn't packaged for multilib
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #637955 - libini_config-devel needs libcollection-devel but doesn't require it
        https://bugzilla.redhat.com/show_bug.cgi?id=637955
  [ 2 ] Bug #632615 - the krb5 locator plugin isn't packaged for multilib
        https://bugzilla.redhat.com/show_bug.cgi?id=632615
  [ 3 ] Bug #606887 - sssd stops on upgrade
        https://bugzilla.redhat.com/show_bug.cgi?id=606887
  [ 4 ] Bug #626205 - Unable to unlock screen
        https://bugzilla.redhat.com/show_bug.cgi?id=626205
--------------------------------------------------------------------------------


================================================================================
 terminator-0.95-2.fc13 (FEDORA-2010-15771)
 Store and run multiple GNOME terminals in one window
--------------------------------------------------------------------------------
Update Information:

This is a bug fix release of the Fedora package of Terminator which adds a missing dependency for gnome-python2-bonobo. Terminator may crashes if you do not have gnome-python2-bonobo installed.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Dominic Hopf <dmaphy@xxxxxxxxxxxxxxxxx> - 0.95-2
- readd dependency for gnome-python2-bonobo
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639029 - Dependency missing.
        https://bugzilla.redhat.com/show_bug.cgi?id=639029
--------------------------------------------------------------------------------


================================================================================
 tuxguitar-1.2-3.fc13 (FEDORA-2010-15783)
 A multitrack tablature editor and player written in Java-SWT
--------------------------------------------------------------------------------
Update Information:

Fix CVE-2010-3385 tuxguitar: insecure library loading vulnerability
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct  1 2010 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com>> - 1.2-3
- Fix CVE-2010-3385 insecure library loading vulnerability - RHBZ#638396
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638396 - CVE-2010-3385 tuxguitar: insecure library loading vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=638396
--------------------------------------------------------------------------------


================================================================================
 voms-1.9.18.1-1.fc13 (FEDORA-2010-15769)
 Virtual Organization Membership Service
--------------------------------------------------------------------------------
Update Information:

Upstream bugfix release that fixes some memory leaks.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 1.9.18.1-1
- Upstream 1.9.18.1 (CVS tag glite-security-voms_R_1_9_18_1)
--------------------------------------------------------------------------------


================================================================================
 wine-1.3.4-1.fc13 (FEDORA-2010-15735)
 A Windows 16/32/64 bit emulator
--------------------------------------------------------------------------------
Update Information:

* New implementation of console support on Unix terminals.
* Many new functions in the C runtime dlls.
* Improved support for right-to-left text.
* Support for CMYK JPEG images.
* Beginnings of a Game Explorer implementation.
* Improved 64-bit support in MSI.
* Stub inetcpl control panel applet.
* A number of fixes to crypto support.
* Support for right-to-left mirrored windows.
* New taskkill.exe built-in application.
* Inetcpl control panel fleshed out.
* AcceptEx is implemented now.
* Improved security checks for SSL connections.
* Translation updates.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct  3 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.4-1
- version upgrade
* Wed Sep 29 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.3-2
- winepulse upgrade (0.39)
* Mon Sep 20 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.3-1
- version upgrade
* Wed Sep  8 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.2-1
- version upgrade
--------------------------------------------------------------------------------


================================================================================
 xneur-0.9.9-4.fc13 (FEDORA-2010-15714)
 X Neural Switcher
--------------------------------------------------------------------------------
Update Information:

Initial import into Fedora xneur
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #623604 - Review Request: xneur - X Neural Switcher
        https://bugzilla.redhat.com/show_bug.cgi?id=623604
--------------------------------------------------------------------------------


================================================================================
 xrdp-0.5.0-0.11.03172010.fc13 (FEDORA-2010-15724)
 Open source remote desktop protocol (RDP) server
--------------------------------------------------------------------------------
Update Information:



--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct  4 2010 Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx> - 0.5.0-0.11.03172010
- Load a default keymap when current keymap doesnt exist
* Thu Jul  8 2010 Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx> - 0.5.0-0.10.03172010
- fix rhbz #611669 (load environment variables)
* Thu Mar 18 2010 Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx> - 0.5.0-0.9.03172010
- buildrequires libXfixes-devel
* Thu Mar 18 2010 Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx> - 0.5.0-0.8.03172010
- buildrequires libX11-devel
* Thu Mar 18 2010 Itamar Reis Peixoto <itamar@xxxxxxxxxxxxxxxx> - 0.5.0-0.7.03172010
- sync with last xrdp cvs
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #611669 - xrdp: execute startwm.sh under a login shell
        https://bugzilla.redhat.com/show_bug.cgi?id=611669
--------------------------------------------------------------------------------


================================================================================
 yash-2.24-1.fc13 (FEDORA-2010-15732)
 Yet Another SHell
--------------------------------------------------------------------------------
Update Information:

New version 2.24 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct  5 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 2.24-1
- 2.24
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test



[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux