The following Fedora 12 Security updates need testing: https://admin.fedoraproject.org/updates/clamav-0.96.3-1200.fc12 https://admin.fedoraproject.org/updates/bzip2-1.0.6-1.fc12 https://admin.fedoraproject.org/updates/java-1.6.0-openjdk-1.6.0.0-41.1.8.2.fc12 https://admin.fedoraproject.org/updates/ghostscript-8.71-16.fc12 https://admin.fedoraproject.org/updates/subversion-1.6.13-1.fc12.1 https://admin.fedoraproject.org/updates/mailman-2.1.12-10.fc12 https://admin.fedoraproject.org/updates/ardour-2.8.11-5.fc12 https://admin.fedoraproject.org/updates/tomcat6-6.0.26-3.fc12 https://admin.fedoraproject.org/updates/openldap-2.4.19-6.fc12 https://admin.fedoraproject.org/updates/gif2png-2.5.1-1202.fc12 https://admin.fedoraproject.org/updates/php-pear-CAS-1.1.3-1.fc12 https://admin.fedoraproject.org/updates/tuxguitar-1.2-3.fc12 https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc12 https://admin.fedoraproject.org/updates/apr-util-1.3.10-1.fc12 https://admin.fedoraproject.org/updates/postgresql-8.4.5-1.fc12 https://admin.fedoraproject.org/updates/webkitgtk-1.2.5-1.fc12 https://admin.fedoraproject.org/updates/poppler-0.12.4-5.fc12 The following builds have been pushed to Fedora 12 updates-testing ailurus-10.10.3-1.fc12 erlang-mochiweb-1.4.0-1.fc12 fluidsynth-1.1.3-1.fc12 fwsnort-1.0.6-8.fc12 gwibber-2.33.0-12.894bzr.fc12 haildb-2.2.0-2.fc12 ibus-skk-1.3.2-1.fc12 iputils-20071127-13.fc12 java-1.6.0-openjdk-1.6.0.0-41.1.8.2.fc12 jna-3.2.7-8.fc12 kchmviewer-5.2-5.fc12 kdeedu-4.4.5-2.fc12 kmess-2.0.4-1.fc12 libdigidocpp-0.3.0-2.fc12.1 liferea-1.6.5-1.fc12 moodle-1.9.9-3.fc12 mpich2-1.2.1p1-3.fc12 ntfs-3g-2010.10.2-1.fc12 perl-5.10.0-96.fc12 subversion-api-docs-1.6.13-1.fc12 tomcat6-6.0.26-3.fc12 xscreensaver-5.12-5.fc12 Details about builds: ================================================================================ ailurus-10.10.3-1.fc12 (FEDORA-2010-16274) A simple application installer and GNOME tweaker -------------------------------------------------------------------------------- Update Information: Upstream to ailurus-10.10.3 -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 Liang Suilong <liangsuilong@xxxxxxxxx> 10.10.3-1 - Upstream to 10.10.3 -------------------------------------------------------------------------------- ================================================================================ erlang-mochiweb-1.4.0-1.fc12 (FEDORA-2010-16277) An Erlang library for building lightweight HTTP servers -------------------------------------------------------------------------------- Update Information: Ver. 1.4.0 (fully API/ABI compatible with previous one) - Narrowed BuildRequires. - Restricted explicit requirement for obsoleted fd_server module (rhbz #601152). - Dropped upstreamed patch6. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.4.0-1 - Ver. 1.4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #601152 - Missing runtime dependency in erlang-mochiweb - fd_server https://bugzilla.redhat.com/show_bug.cgi?id=601152 -------------------------------------------------------------------------------- ================================================================================ fluidsynth-1.1.3-1.fc12 (FEDORA-2010-15720) Real-time software synthesizer -------------------------------------------------------------------------------- Update Information: FluidSynth 1.1.3 is a pure bug-fix release and contains no new functionality. * Compilation with LADSPA enabled was broken in 1.1.2 - fixed (plcl, diwic) * Multichannel output broken when double precision was used - fixed (plcl, diwic) * Optimize by not starting unused threads with multicore rendering (diwic) * Race condition in alsa_seq / alsa_raw drivers caused them not to quit (diwic) -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2010 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.1.3-1 - Update to 1.1.3 * Fri Oct 1 2010 Orcan Ogetbil <oget[DOT]fedora[AT]gmail[DOT]com> - 1.1.2-2 - Fix garbled sound issues. Upstream ticket #87 -------------------------------------------------------------------------------- ================================================================================ fwsnort-1.0.6-8.fc12 (FEDORA-2010-16290) Translates Snort rules into equivalent iptables rules -------------------------------------------------------------------------------- Update Information: Minor spec adjust for improved perl packaging guidelines compliance. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 Mark Chappell <tremble@xxxxxxxxxxxxxx> - 1.0.6-8 - Replace the perl dependencies with the virtual modules rather than the package name -------------------------------------------------------------------------------- ================================================================================ gwibber-2.33.0-12.894bzr.fc12 (FEDORA-2010-16296) An open source microblogging client for GNOME developed with Python and GTK -------------------------------------------------------------------------------- Update Information: Update gwibber to bzr894. This build uses a new facebook key, so you will need to delete your old facebook account from gwibber and re-add it (it should work much much better once you do this). update to 875bzr, BigWhales DM fixes, fix digg, fix kitchen unicode patch, fix glib usage, right-click closes streams now, fixes identi.ca message parsing update to 875bzr, BigWhales DM fixes, fix digg, fix kitchen unicode patch, fix glib usage, right-click closes streams now, fixes identi.ca message parsing update to 875bzr, BigWhales DM fixes, fix digg, fix kitchen unicode patch, fix glib usage, right-click closes streams now, fixes identi.ca message parsing -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-12.894bzr - update to 894, improve result parsing, more digg fixes, fedora facebook key * Mon Oct 11 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-11.886bzr - update to 886, dm patches merged, glibc fix merged, digg fix merged, several facebook fixes * Thu Oct 7 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-11.875bzr - right click on a stream in the navigation bar and it closes - RIBBIT! * Thu Oct 7 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-10.875bzr - fix place where glib was being used without being imported - apply BigWhale's DM fixes * Thu Oct 7 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-9.875bzr - fix digg, apply kitchen changes to digg too * Wed Oct 6 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:2.33.0-8.875bzr - sync to bzr875 -------------------------------------------------------------------------------- References: [ 1 ] Bug #619249 - doesn't work - org.freedesktop.DBus.Error.ServiceUnknown: The name com.Gwibber.Connection was not provided by any .service files https://bugzilla.redhat.com/show_bug.cgi?id=619249 [ 2 ] Bug #637579 - incomplete facebook timeline https://bugzilla.redhat.com/show_bug.cgi?id=637579 [ 3 ] Bug #637580 - Posting messages to facebook doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=637580 [ 4 ] Bug #634054 - [abrt] gwibber-1:2.31.4-1.fc13: decoder.py:338:raw_decode:ValueError: No JSON object could be decoded https://bugzilla.redhat.com/show_bug.cgi?id=634054 -------------------------------------------------------------------------------- ================================================================================ haildb-2.2.0-2.fc12 (FEDORA-2010-16246) A relational database in shared library form -------------------------------------------------------------------------------- References: [ 1 ] Bug #638402 - Review Request: haildb - A relational database in shared library form https://bugzilla.redhat.com/show_bug.cgi?id=638402 -------------------------------------------------------------------------------- ================================================================================ ibus-skk-1.3.2-1.fc12 (FEDORA-2010-16235) Japanese SKK input method for ibus -------------------------------------------------------------------------------- Update Information: new upstream release new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Daiki Ueno <dueno@xxxxxxxxxx> - 1.3.2-1 - new upstream release * Tue Sep 14 2010 Daiki Ueno <dueno@xxxxxxxxxx> - 1.3.0-1 - new upstream release -------------------------------------------------------------------------------- ================================================================================ iputils-20071127-13.fc12 (FEDORA-2010-16291) Network monitoring tools including ping -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 Jiri Skala <jskala@xxxxxxxxxx> - 20071127-13 - fixes #642005 - arping -c option broken for even numbers, even worse when combined with -w -------------------------------------------------------------------------------- References: [ 1 ] Bug #642005 - arping -c option broken for even numbers, even worse when combined with -w https://bugzilla.redhat.com/show_bug.cgi?id=642005 -------------------------------------------------------------------------------- ================================================================================ java-1.6.0-openjdk-1.6.0.0-41.1.8.2.fc12 (FEDORA-2010-16240) OpenJDK Runtime Environment -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 7 2010 Jiri Vanek <jvanek@xxxxxxxxxx> -1:1.6.0-41.1.8.2 - Imports icedtea6-1.8.2 - changed Release versioning from openjdkver to icedteaver - Resolves: rhbz#533125 - Resolves: rhbz#639876 - Resolves: rhbz#639880 - Resolves: rhbz#639897 - Resolves: rhbz#639904 - Resolves: rhbz#639909 - Resolves: rhbz#639914 - Resolves: rhbz#639920 - Resolves: rhbz#639922 - Resolves: rhbz#639925 - Resolves: rhbz#639951 - Resolves: rhbz#6622002 - Resolves: rhbz#6623943 - Resolves: rhbz#6925672 - Resolves: rhbz#6952017 - Resolves: rhbz#6952603 - Resolves: rhbz#6961084 - Resolves: rhbz#6963285 - Resolves: rhbz#6980004 - Resolves: rhbz#6981426 - Resolves: rhbz#6990437 -------------------------------------------------------------------------------- References: [ 1 ] Bug #533125 - CVE-2009-3555 TLS: MITM attacks via session renegotiation https://bugzilla.redhat.com/show_bug.cgi?id=533125 [ 2 ] Bug #642202 - CVE-2010-3541 CVE-2010-3573 OpenJDK HttpURLConnection allows arbitrary request headers (6961084,6980004) https://bugzilla.redhat.com/show_bug.cgi?id=642202 [ 3 ] Bug #639909 - CVE-2010-3548 OpenJDK DNS server IP address information leak (6957564) https://bugzilla.redhat.com/show_bug.cgi?id=639909 [ 4 ] Bug #642180 - CVE-2010-3549 OpenJDK HttpURLConnection request splitting (6952017) https://bugzilla.redhat.com/show_bug.cgi?id=642180 [ 5 ] Bug #642187 - CVE-2010-3551 OpenJDK local network address disclosure (6952603) https://bugzilla.redhat.com/show_bug.cgi?id=642187 [ 6 ] Bug #642167 - CVE-2010-3553 OpenJDK Swing unsafe reflection usage (6622002) https://bugzilla.redhat.com/show_bug.cgi?id=642167 [ 7 ] Bug #639880 - CVE-2010-3554 CVE-2010-3561 OpenJDK corba reflection vulnerabilities (6891766,6925672) https://bugzilla.redhat.com/show_bug.cgi?id=639880 [ 8 ] Bug #639904 - CVE-2010-3557 OpenJDK Swing mutable static (6938813) https://bugzilla.redhat.com/show_bug.cgi?id=639904 [ 9 ] Bug #639897 - CVE-2010-3562 OpenJDK IndexColorModel double-free (6925710) https://bugzilla.redhat.com/show_bug.cgi?id=639897 [ 10 ] Bug #639914 - CVE-2010-3564 OpenJDK kerberos vulnerability (6958060) https://bugzilla.redhat.com/show_bug.cgi?id=639914 [ 11 ] Bug #639920 - CVE-2010-3565 OpenJDK JPEG writeImage remote code execution (6963023) https://bugzilla.redhat.com/show_bug.cgi?id=639920 [ 12 ] Bug #642197 - CVE-2010-3567 OpenJDK ICU Opentype layout engine crash (6963285) https://bugzilla.redhat.com/show_bug.cgi?id=642197 [ 13 ] Bug #639876 - CVE-2010-3568 OpenJDK Deserialization Race condition (6559775) https://bugzilla.redhat.com/show_bug.cgi?id=639876 [ 14 ] Bug #639925 - CVE-2010-3569 OpenJDK Serialization inconsistencies (6966692) https://bugzilla.redhat.com/show_bug.cgi?id=639925 [ 15 ] Bug #642215 - CVE-2010-3574 OpenJDK HttpURLConnection incomplete TRACE permission check (6981426) https://bugzilla.redhat.com/show_bug.cgi?id=642215 -------------------------------------------------------------------------------- ================================================================================ jna-3.2.7-8.fc12 (FEDORA-2010-16271) Pure Java access to native libraries -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 Levente Farkas <lfarkas@xxxxxxxxxxx> - 3.2.7-8 - exclude check on ppc * Fri Oct 8 2010 Levente Farkas <lfarkas@xxxxxxxxxxx> - 3.2.7-7 - fix excludearch condition * Wed Oct 6 2010 Levente Farkas <lfarkas@xxxxxxxxxxx> - 3.2.7-6 - readd excludearch for old release fix #548099 * Fri Oct 1 2010 Dennis Gilmore <dennis@xxxxxxxx> - 3.2.7-5.1 - remove the ExcludeArch it makes no sense -------------------------------------------------------------------------------- References: [ 1 ] Bug #640005 - Missing ppc/ppc64 build on F-12 https://bugzilla.redhat.com/show_bug.cgi?id=640005 -------------------------------------------------------------------------------- ================================================================================ kchmviewer-5.2-5.fc12 (FEDORA-2010-16255) CHM viewer -------------------------------------------------------------------------------- Update Information: Provides the Qt-only version as kchmviewer-qt -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 5.2-5 - _smp_mflags will break compilation of the Qt version, remove it * Mon Oct 11 2010 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 5.2-4 - Make a subpackage for the Qt-only version - Make a subpackage owning the common data files * Fri Jun 4 2010 Robin Lee <robinlee.sysu@xxxxxxxxx> - 5.2-3 - fix tag * Fri Jun 4 2010 Robin Lee <robinlee.sysu@xxxxxxxxx> - 5.2-2 - Tar ball updated -------------------------------------------------------------------------------- ================================================================================ kdeedu-4.4.5-2.fc12 (FEDORA-2010-16236) Educational/Edutainment applications -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.4.5-2 - resurrect indi_nodrivers patch (#640522) -------------------------------------------------------------------------------- References: [ 1 ] Bug #640522 - Menu item Device missing in kstars (kdeedu not built against libindi) https://bugzilla.redhat.com/show_bug.cgi?id=640522 -------------------------------------------------------------------------------- ================================================================================ kmess-2.0.4-1.fc12 (FEDORA-2010-16278) Messaging client for MSN -------------------------------------------------------------------------------- Update Information: As usual with our 2.0 point releases, it contains a lot of bug fixes, but also general improvements, and even some new features. Here is a quick highlight of the changes in this new version: Added a small toggle button on the contact list to quickly enable/disable the "Now Listening" feature. Implemented the new KDE4 system tray specification. Added ability to drag-and-drop ink drawings from the conversation into the ink editor in order to be edited again. Fixed bug which caused KMess to fail to connect, instead giving an "Invalid Command Parameter" error. Fixed bug which caused the user's display picture to be reset upon login. Fixed bug where status was not changed from Idle upon wake up from sleep. Updated many translations. And various other smaller updates and fixes... -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Steven M. Parrish <smparrish@xxxxxxxxx> - 2.0.4-1 - Added a small toggle button on the contact list to quickly enable/disable the "Now Listening" feature. - Implemented the new KDE4 system tray specification. - Added ability to drag-and-drop ink drawings from the conversation into the ink editor in order to be edited again. - Fixed bug which caused KMess to fail to connect, instead giving an "Invalid Command Parameter" error. - Fixed bug which caused the user's display picture to be reset upon login. - Fixed bug where status was not changed from Idle upon wake up from sleep. - Updated many translations. - And various other smaller updates and fixes... -------------------------------------------------------------------------------- References: [ 1 ] Bug #638284 - Upgrade Kmess to 2.0.4 https://bugzilla.redhat.com/show_bug.cgi?id=638284 [ 2 ] Bug #544097 - [abrt] crash detected in kmess-2.0-2.fc12 https://bugzilla.redhat.com/show_bug.cgi?id=544097 [ 3 ] Bug #611161 - [abrt] crash in kmess-2.0.3-1.fc13: QTextEngine::itemize: Process /usr/bin/kmess was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=611161 -------------------------------------------------------------------------------- ================================================================================ libdigidocpp-0.3.0-2.fc12.1 (FEDORA-2010-16264) Library for creating and validating BDoc and DDoc containers -------------------------------------------------------------------------------- Update Information: libdigidocpp is a C++ library for reading, validating, and creating BDoc and DDoc containers. These file formats are widespread in Estonia where they are used for storing legally binding digital signatures. -------------------------------------------------------------------------------- ================================================================================ liferea-1.6.5-1.fc12 (FEDORA-2010-16295) An RSS/RDF feed reader -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Steven M. Parrish <smparrish@xxxxxxxxx> - 1.6.5-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ moodle-1.9.9-3.fc12 (FEDORA-2010-16300) A Course Management System -------------------------------------------------------------------------------- Update Information: Fixes updating via yum due to CAS replacement typo. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 4 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 1.9.9-3 - Correction of CAS symlink typo. -------------------------------------------------------------------------------- References: [ 1 ] Bug #628424 - Cannot upgrade moodle: error: unpacking of archive failed on file /var/www/moodle/web/auth/cas: cpio: rename https://bugzilla.redhat.com/show_bug.cgi?id=628424 -------------------------------------------------------------------------------- ================================================================================ mpich2-1.2.1p1-3.fc12 (FEDORA-2010-16289) A high-performance implementation of MPI -------------------------------------------------------------------------------- Update Information: Set PYTHONPATH in the module file -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Deji Akingunola <dakingun@xxxxxxxxx> - 1.2.1p1-3 - Resolve undefined symbols in the mpichcxx library. * Mon Oct 11 2010 Deji Akingunola <dakingun@xxxxxxxxx> - 1.2.1p1-2 - Set PYTHONPATH in the module file. -------------------------------------------------------------------------------- References: [ 1 ] Bug #635742 - external program cannot find mpi4py https://bugzilla.redhat.com/show_bug.cgi?id=635742 -------------------------------------------------------------------------------- ================================================================================ ntfs-3g-2010.10.2-1.fc12 (FEDORA-2010-16265) Linux NTFS userspace driver -------------------------------------------------------------------------------- Update Information: Updated to 2010.10.2: * Fixed filename encoding when standard functions are not available. * Fixed checking mounted device status on some non-Linux platforms. * Fixed mounting with SELinux context (fedora patch merged) * Fixed -n and âno-mtab mount option handling, needed by automount (fedora patch merged) * Improved consistency checks of POSIX ACLs. * NTFS-3G manual update. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 2:2010.10.2-1 - update to 2010.10.2, all patches merged upstream -------------------------------------------------------------------------------- ================================================================================ perl-5.10.0-96.fc12 (FEDORA-2010-16239) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information: This update contain updates of threaded modules, which brings mostly bugfixes. This update fix previous -95 build, which included incompatible threads version. For details you can check upstream changes: http://cpansearch.perl.org/src/JDHEDDEN/threads-1.79/Changes http://cpansearch.perl.org/src/JDHEDDEN/threads-shared-1.34/Changes http://cpansearch.perl.org/src/JDHEDDEN/Thread-Queue-2.11/Changes -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 11 2010 Marcela MaÅlÃÅovà <mmaslano@xxxxxxxxxx> - 4:5.10.0-96 - update of threads::shared and threads, which should fix failure of threads in previous update * Tue Sep 7 2010 Marcela MaÅlÃÅovà <mmaslano@xxxxxxxxxx> - 4:5.10.0-95 - update thread modules - Thread::Queue, threads::shared, which also fix 627192 * Tue Aug 24 2010 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.10.0-94 - Fix nested loop variable free warning by back-porting from 5.10.1 (RT#70660, rhbz#626411) - Log Patch62 by patchlevel.h * Thu Aug 19 2010 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.10.0-93 - Add "-Wl,--enable-new-dtags" to linker to allow to override perl's rpath by LD_LIBRARY_PATH used in tests. Otherwise tested perl would link to old in-system libperl.so. * Wed Jul 28 2010 Petr Pisar <ppisar@xxxxxxxxxx> - 4:5.10.0-92 - Fix taint.t test in Test::Harness -------------------------------------------------------------------------------- References: [ 1 ] Bug #627192 - Padre-0.32 requires newer Thread::Queue https://bugzilla.redhat.com/show_bug.cgi?id=627192 [ 2 ] Bug #626411 - Perl gives the error 'Attempt to free unreferenced scalar' with nested foreach loops using the same variable https://bugzilla.redhat.com/show_bug.cgi?id=626411 [ 3 ] Bug #622190 - Sending signal to thread without signal handler in thread causes perl to segfault https://bugzilla.redhat.com/show_bug.cgi?id=622190 -------------------------------------------------------------------------------- ================================================================================ subversion-api-docs-1.6.13-1.fc12 (FEDORA-2010-16297) Subversion API documentation -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Bojan Smojver <bojan@xxxxxxxxxxxxx> 1.6.13-1 - bump up to 1.6.13 * Mon May 10 2010 Bojan Smojver <bojan@xxxxxxxxxxxxx> 1.6.11-1 - bump up to 1.6.11 -------------------------------------------------------------------------------- ================================================================================ tomcat6-6.0.26-3.fc12 (FEDORA-2010-16248) Apache Servlet/JSP Engine, RI for Servlet 2.5/JSP 2.1 API -------------------------------------------------------------------------------- Update Information: * Includes security fix for cve-2010-2227. * Package updated to new upstream version tomcat-6.0.26 * commons-dbcp-tomcat5, commons-collections-tomcat5, and commons-pool-tomcat5 have been dropped in favor of commons-collections, commons-pool, and commons-dbcp * Directory permissions fixed * tomcat user shell fixed -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 12 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-3 - resolves: rhbz#641102 * Thu Oct 7 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-1 - copied spec and patches from f13 to bring f12 up to date - with all tomcat6 fedora. * Mon Oct 4 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-10 - ant-nodeps is breaking the build. Put ant-nodeps on the - OPT_JAR_LIST * Fri Oct 1 2010 David Knox <dknox@xxxxxxxxx> 0:6.0.26-9 - Resolves rhbz#575341 - Additionally created instances of Tomcat - are broken * Fri Jul 2 2010 David Knox <dknox@xxxxxxxxx> 0:6.0.26-8 - LSB initscript compliance * Thu Jul 1 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-7 - Made elspec the standard for elspec %post and %postun. * Tue Jun 29 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-6 - Completed package and file sections. Added el-spec. Fixed - directory permission problems. * Thu May 6 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-5 - Working on 589145. Tomcat can't find java compiler for java. * Thu Apr 8 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-4 - Moved build-jar-repository to later in the install process. * Tue Apr 6 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-3 - Incremented the Release tag to 3 to avoid any confusion about which - is the most recent * Tue Apr 6 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-1 - Solved packaging problems involving taglibs-standard - Solved packaging problems involving jakarta-commons - Corrected Requires(post) to Requires and checked companion BuildRequires * Mon Mar 29 2010 David Knox <dknox@xxxxxxxxxx> 0:6.0.26-2 - Update source to tomcat6.0.26 - Bugzilla 572357 - Please retest. - OSGi manifests for servlet-api and jsp-api * Fri Mar 26 2010 Mary Ellen Foster <mefoster@xxxxxxxxx> 0:6.0.24-2 - Add maven POMs and metadata - Link tomcat6-juli into /usr/share/java/tomcat6 * Mon Mar 1 2010 Alexander Kurtakov <akurtako@xxxxxxxxxx> 0:6.0.24-1 - Update to 6.0.24. * Tue Dec 22 2009 Alexander Kurtakov <akurtako@xxxxxxxxxx> 0:6.0.20-2 - Drop file requires on /usr/share/java/ecj.jar. -------------------------------------------------------------------------------- References: [ 1 ] Bug #612799 - CVE-2010-2227 tomcat: information leak vulnerability in the handling of 'Transfer-Encoding' header https://bugzilla.redhat.com/show_bug.cgi?id=612799 -------------------------------------------------------------------------------- ================================================================================ xscreensaver-5.12-5.fc12 (FEDORA-2010-16258) X screen saver and locker -------------------------------------------------------------------------------- Update Information: Rebuilt against fixed gcc. memleak was found on gltext. Also a issue was found that flame is completely blank. This new rpm will fix the issue. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 13 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1:5.12-5 - Fix the issue that xflame is completely blank (bug 642651) * Wed Oct 13 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1:5.12-4 - Enable libgle dependent hacks on F-13+ * Wed Oct 13 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1:5.12-3 - Kill memleak on gltext (bug 638600) * Sun Oct 10 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - F-14+: rebuild against fixed gcc * Mon Sep 20 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1:5.12-2 - Update Patch 31 (xscreensaver-5.12-for-now-set-lang-on-daemon-to-C.patch) - Reduce BR using pseudo symlink -------------------------------------------------------------------------------- References: [ 1 ] Bug #638600 - [abrt] xscreensaver-gl-extras-1:5.12-1.fc13: raise: Process /usr/libexec/xscreensaver/gltext was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=638600 [ 2 ] Bug #642651 - Upstream broke flame xscreensaver hack https://bugzilla.redhat.com/show_bug.cgi?id=642651 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test