Fedora 14 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 14 Security updates need testing:

    https://admin.fedoraproject.org/updates/mailman-2.1.13-6.fc14
    https://admin.fedoraproject.org/updates/apr-util-1.3.10-1.fc14
    https://admin.fedoraproject.org/updates/moodle-1.9.10-1.fc14
    https://admin.fedoraproject.org/updates/cvs-1.11.23-11.fc14
    https://admin.fedoraproject.org/updates/horde-3.3.9-1.fc14
    https://admin.fedoraproject.org/updates/tomcat6-6.0.26-14.fc14
    https://admin.fedoraproject.org/updates/gnucash-2.3.15-2.fc14
    https://admin.fedoraproject.org/updates/pidgin-2.7.4-1.fc14
    https://admin.fedoraproject.org/updates/perl-libwww-perl-5.837-2.fc14
    https://admin.fedoraproject.org/updates/exim-4.72-2.fc14
    https://admin.fedoraproject.org/updates/xpdf-3.02-16.fc14
    https://admin.fedoraproject.org/updates/glibc-2.12.90-18
    https://admin.fedoraproject.org/updates/seamonkey-2.0.9-1.fc14
    https://admin.fedoraproject.org/updates/bristol-0.40.7-7.fc14
    https://admin.fedoraproject.org/updates/qt-4.7.0-8.fc14
    https://admin.fedoraproject.org/updates/pam_mount-2.5-1.fc14,libHX-3.6-1.fc14
    https://admin.fedoraproject.org/updates/xulrunner-1.9.2.11-1.fc14,galeon-2.0.7-34.fc14.1,gnome-python2-extras-2.25.3-24.fc14.1,perl-Gtk2-MozEmbed-0.08-6.fc14.20,gnome-web-photo-0.9-14.fc14.1,mozvoikko-1.0-15.fc14.1,firefox-3.6.11-1.fc14
    https://admin.fedoraproject.org/updates/libguestfs-1.5.23-1
    https://admin.fedoraproject.org/updates/thunderbird-3.1.5-1.fc14,sunbird-1.0-0.30.b2pre.fc14
    https://admin.fedoraproject.org/updates/luci-0.22.4-2.0.b9faf868074git.fc14


The following builds have been pushed to Fedora 14 updates-testing

    EMBOSS-6.3.1-4.fc14
    apache-commons-math-2.1-2.fc14
    asterisk-sounds-core-1.4.20-1.fc14
    batik-1.7-9.fc14
    bitlbee-3.0-1.fc14
    bristol-0.40.7-7.fc14
    bullet-2.77-3.fc14
    cairo-1.10.0-2.fc14
    cbrpager-0.9.22-1.fc14
    chkconfig-1.3.48-1.fc14
    clustershell-1.3.3-1.fc14
    cryptopp-5.6.1-2.fc14
    cvs-1.11.23-11.fc14
    debootstrap-1.0.25-1.fc14
    digikam-1.5.0-1.fc14
    django-simple-captcha-0.2.0-4.fc14
    dovecot-2.0.6-1.fc14
    driftnet-0.1.6-20.20040426cvs.fc14
    drupal-service_links-6.x.2.0-1.fc14
    eclipse-fedorapackager-0.1.8-1.fc14
    emacs-common-ddskk-14.1-4.fc14
    erlang-etap-0.3.4-5.fc14
    etckeeper-0.50-1.fc14
    firefox-3.6.11-1.fc14
    flashrom-0.9.3-0.1.svn1205.fc14
    fldigi-doc-3.20-3.fc14
    fuse-2.8.5-1.fc14
    fuse-2.8.5-2.fc14
    gajim-0.14.1-1.fc14
    galeon-2.0.7-34.fc14.1
    gausssum-2.2.4-1.fc14
    generic-release-14-1
    git-1.7.3.2-1.fc14
    glibc-2.12.90-18
    gnome-gmail-1.7-1.fc14
    gnome-keyring-2.32.1-1.fc14
    gnome-python2-extras-2.25.3-24.fc14.1
    gnome-web-photo-0.9-14.fc14.1
    gnonlin-0.10.16-1.fc14
    gnucash-2.3.15-2.fc14
    gnupg-1.4.11-2.fc14
    goocanvasmm-0.15.4-1.fc14
    gphotoframe-1.1-1.fc14
    gstreamer-python-0.10.19-1.fc14
    gstreamermm-0.10.8-1.fc14
    hosts3d-1.13-1.fc14
    httpd-2.2.17-1.fc14
    ibus-anthy-1.2.4-2.fc14
    ibus-table-others-1.3.0.20100907-5.fc14
    ikiwiki-3.20101023-1.fc14
    inadyn-mt-2.18.42-1.fc14
    jgraphx-1.4.1.0-2.fc14
    kdegraphics-4.5.2-4.fc14
    kdevelop-4.1.0-1.fc14
    kdevplatform-1.1.0-2.fc14
    kipi-plugins-1.5.0-2.fc14
    kobo-0.3.2-1.fc14
    konq-plugins-4.4.0-6.fc14
    kpackagekit-0.6.2-1.fc14
    ksh-20101010-1.fc14
    libguestfs-1.5.23-1
    libmcrypto-0.8.0-0.1.20100629svn3775.fc14
    libmstun-0.8.0-0.1.20091007svn3734.fc14
    libopenraw-0.0.8-4.fc14
    libtorrent-0.12.7-1.fc14
    lohit-oriya-fonts-2.4.3-6.fc14
    lua-copas-1.1.6-1.fc14
    lua-coxpcall-1.13.0-1.fc14
    lua-md5-1.1.2-1.fc14
    lua-wsapi-1.3.4-2.fc14
    lua-xmlrpc-1.2.1-1.fc14
    luci-0.22.4-2.0.b9faf868074git.fc14
    mailx-12.5-1.fc14
    make-3.82-3.fc14
    mingetty-1.08-5.fc14
    mock-1.1.6-1.fc14
    moodle-1.9.10-1.fc14
    mozvoikko-1.0-15.fc14.1
    mtr-0.80-1.fc14
    nagios-3.2.3-1.fc14
    nagios-3.2.3-2.fc14
    nrpe-2.12-16.fc14
    numlockx-1.0-18.fc14
    openeuclide-0.5-3.fc14
    openmpi-1.4.3-7.fc14
    openoffice.org-3.3.0-11.1.fc14
    openoffice.org-3.3.0-12.1.fc14
    openscada-0.7.0-2.fc14
    openssh-5.5p1-22.fc14.2
    osmo-0.2.10-2.fc14
    papyon-0.5.2-1.fc14
    perl-Gtk2-MozEmbed-0.08-6.fc14.20
    petit-1.0.3-1.fc14
    php-pear-Auth-RADIUS-1.0.7-1.fc14
    php-pear-Cache-1.5.6-1.fc14
    php-pear-Console-Table-1.1.4-1.fc14
    php-pear-Net-SMTP-1.4.4-1.fc14
    php-pear-Net-Traceroute-0.21.3-1.fc14
    php-pear-Net-URL-Mapper-0.9.1-1.fc14
    php-pear-XML-Beautifier-1.2.2-1.fc14
    php-pear-XML-Parser-1.3.4-1.fc14
    php-pear-XML-RSS-1.0.1-1.fc14
    php-pear-XML-Serializer-0.20.2-1.fc14
    php-pecl-mongo-1.0.10-4.fc14
    pidgin-2.7.4-1.fc14
    publican-2.3-0.fc14
    publican-fedora-2.0-0.fc14
    publican-redhat-2.6-0.fc14
    pyexiv2-0.2.2-2.fc14
    pygpgme-0.1-21.20101027bzr69.fc14
    pyparsing-1.5.5-1.fc14
    python-jinja2-2.5.5-1.fc14
    python-simplejson-2.1.1-4.fc14
    qbittorrent-2.4.8-1.fc14
    qdigidoc-0.4.0-3.fc14
    qt-4.7.0-8.fc14
    qtparted-0.4.5-25.fc14
    rawtherapee-3.0-0.24.a1.fc14
    root-5.26.00e-1.fc14
    ruby-gnome2-0.90.4-1.0.fc14
    rubygem-atk-0.90.4-2.fc14
    rubygem-glib2-0.90.4-2.fc14
    rubygem-pango-0.90.4-2.fc14
    rubygem-ruby-debug-0.10.4-0.6.rc3.fc14
    rubygem-ruby-debug-base-0.10.4-0.5.rc3.fc14
    rubygem-ruby-ole-1.2.11.1-1.fc14
    seamonkey-2.0.9-1.fc14
    spamassassin-3.3.2-0.1.svn1027144.fc14
    sugar-browse-120-1.fc14
    sugar-write-72-1.fc14
    sunbird-1.0-0.30.b2pre.fc14
    sympy-0.6.7-5.fc14
    system-config-kickstart-2.8.6.1-1.fc14
    system-config-printer-1.2.5-5.fc14
    thunderbird-3.1.5-1.fc14
    tigase-server-5.0.4-1.fc14
    tomboy-1.4.2-1.fc14
    transmission-2.11-1.fc14
    tryton-1.6.1-1.fc14.1
    tzdata-2010n-1.fc14
    ucviewer-0.1-0.2.20101019svn4.fc14
    unuran-1.8.0-1.fc14
    upstart-0.6.5-10.fc14
    usbmuxd-1.0.6-1.fc14
    util-linux-ng-2.18-4.4.fc14
    vala-0.10.0-2.fc14
    vanessa_adt-0.0.7-6.fc14
    wicd-1.7.0-4.fc14
    wireshark-1.4.1-1.fc14
    xoo-0.7-12.fc14
    xorg-x11-server-1.9.1-2.fc14
    xpdf-3.02-16.fc14
    xulrunner-1.9.2.11-1.fc14
    yaws-1.89-2.fc14

Details about builds:


================================================================================
 EMBOSS-6.3.1-4.fc14 (FEDORA-2010-16774)
 The European Molecular Biology Open Software Suite
--------------------------------------------------------------------------------
Update Information:

Fix doc finding with tfm.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 6.3.1-4
- fix doc finding (bz 647140)
* Mon Oct 11 2010 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6.3.1-3
- Rebuild for plplot 5.9.7
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #647140 - tfm fails to find documentation files
        https://bugzilla.redhat.com/show_bug.cgi?id=647140
--------------------------------------------------------------------------------


================================================================================
 apache-commons-math-2.1-2.fc14 (FEDORA-2010-16837)
 Java library of lightweight mathematics and statistics components
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Chris Spike <chris.spike@xxxxxxxx> 2.1-2
- Fixed maven-surefire-plugin BR for F14
* Fri Oct 22 2010 Chris Spike <chris.spike@xxxxxxxx> 2.1-1
- Updated to 2.1
- Removed dependency on main package for -javadoc subpackage
- Fixed maven depmap entry
- Added jarfile symlinks (rhbz#612455)
- Added javadoc symlinks
- Added license file to -javadoc subpackage
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #612455 - Symlinks in apache-commons-math are not consistent with other apache-commons- packages
        https://bugzilla.redhat.com/show_bug.cgi?id=612455
--------------------------------------------------------------------------------


================================================================================
 asterisk-sounds-core-1.4.20-1.fc14 (FEDORA-2010-16869)
 Core sounds for Asterisk
--------------------------------------------------------------------------------
Update Information:

- Update to 1.4.20
- Add en_AU sounds

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 18 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.4.20-1
- Update to 1.4.20
- Add en_AU sounds
--------------------------------------------------------------------------------


================================================================================
 batik-1.7-9.fc14 (FEDORA-2010-16757)
 Scalable Vector Graphics for Java
--------------------------------------------------------------------------------
Update Information:

Fix utilities build script.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.7-9
- Fix utilities startup scripts.
* Fri Oct  1 2010 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.7-8
- Fix build.
* Fri Oct  1 2010 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.7-7
- BR/R java 1.6.0 not java-openjdk.
- Cleanup build section.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645864 - ttf2svg does something wrong with the classpath
        https://bugzilla.redhat.com/show_bug.cgi?id=645864
--------------------------------------------------------------------------------


================================================================================
 bitlbee-3.0-1.fc14 (FEDORA-2010-16864)
 IRC to other chat networks gateway
--------------------------------------------------------------------------------
Update Information:

New upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 MatÄj Cepl <mcepl@xxxxxxxxxx> - 3.0-1
- New upstream release.
--------------------------------------------------------------------------------


================================================================================
 bristol-0.40.7-7.fc14 (FEDORA-2010-16714)
 Synthesizer emulator
--------------------------------------------------------------------------------
Update Information:

This update stops altering LD_LIBRARY_PATH for Bristol insecurely at runtime.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 0.40.7-7
- Fix for CVE-2010-3351, BZ 638376.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #638376 - CVE-2010-3351 bristol: insecure library loading vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=638376
--------------------------------------------------------------------------------


================================================================================
 bullet-2.77-3.fc14 (FEDORA-2010-16821)
 3D Collision Detection and Rigid Body Dynamics Library
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Dan HorÃk <dan[at]danny.cz> - 2.77-3
- add extras subpackage with additional libs
- install headers into /usr/include/bullet
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #586107 - include ConvexDecomposition library
        https://bugzilla.redhat.com/show_bug.cgi?id=586107
--------------------------------------------------------------------------------


================================================================================
 cairo-1.10.0-2.fc14 (FEDORA-2010-16865)
 A 2D graphics library
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 23 2010 Matthew Barnes - 1.10.0-2
- Fix Requires typo in cairo-gobject-devel (#641590).
* Wed Sep 29 2010 jkeating - 1.10.0-1.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #641590 - Wrong "Requires:"  in cairo-gobject-devel
        https://bugzilla.redhat.com/show_bug.cgi?id=641590
--------------------------------------------------------------------------------


================================================================================
 cbrpager-0.9.22-1.fc14 (FEDORA-2010-16800)
 Simple comic book pager for Linux
--------------------------------------------------------------------------------
Update Information:

New version 0.9.22 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.9.22-1
- 0.9.22
--------------------------------------------------------------------------------


================================================================================
 chkconfig-1.3.48-1.fc14 (FEDORA-2010-16718)
 A system tool for maintaining the /etc/rc*.d hierarchy
--------------------------------------------------------------------------------
Update Information:

This fixes a bug in the install_initd LSB implementation.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Bill Nottingham <notting@xxxxxxxxxx> 1.3.48-1
- fix install_initd invocation for services that require $local_fs (#632294)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #632294 - install_initd fails on Required-Start: $local_fs
        https://bugzilla.redhat.com/show_bug.cgi?id=632294
--------------------------------------------------------------------------------


================================================================================
 clustershell-1.3.3-1.fc14 (FEDORA-2010-16842)
 Python framework for efficient cluster administration
--------------------------------------------------------------------------------
Update Information:

Update release to 1.3.3. Minor bug fixed and improved documentation.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Stephane Thiell <stephane.thiell@xxxxxx> 1.3.3-1
- update to 1.3.3
--------------------------------------------------------------------------------


================================================================================
 cryptopp-5.6.1-2.fc14 (FEDORA-2010-16745)
 Public domain C++ class library of cryptographic schemes
--------------------------------------------------------------------------------
Update Information:

- Added -DCRYPTOPP_DISABLE_SSE2 to CXXFLAGS instead of config.h for non-x86_64 (rhbz#645169).
- Installed TestVectors and TestData in cryptopp-progs.
- Patched cryptest for using data files in /usr/share/cryptopp.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 5.6.1-2
- add -DCRYPTOPP_DISABLE_SSE2 to CXXFLAGS instead of config.h for non-x86_64 (rhbz#645169)
- install TestVectors and TestData in cryptopp-progs
- patch cryptest for using data files in /usr/share/cryptopp
- build cryptestcwd for build time test only
- fix check section
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645169 - conflict between cryptopp-devel i686 and x86_64 pkgs
        https://bugzilla.redhat.com/show_bug.cgi?id=645169
--------------------------------------------------------------------------------


================================================================================
 cvs-1.11.23-11.fc14 (FEDORA-2010-16721)
 A version control system
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Petr Pisar <ppisar@xxxxxxxxxx> - 1.11.23-11
- Fix CVE-2010-3846 (bug #645386)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642146 - CVE-2010-3846 cvs: Heap-based buffer overflow by applying RCS file changes
        https://bugzilla.redhat.com/show_bug.cgi?id=642146
--------------------------------------------------------------------------------


================================================================================
 debootstrap-1.0.25-1.fc14 (FEDORA-2010-16839)
 Debian GNU/Linux bootstrapper
--------------------------------------------------------------------------------
Update Information:

- support for HTTPS
- added Ubuntu Nanty
- added Debian Wheezy
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Jan Vcelak <jvcelak@xxxxxxxxxx> 1.0.25-1
- new upstream release (support for HTTPS, added Ubuntu Nanty, added Debian Wheezy)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #635598 - debootstrap-1.0.25 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=635598
--------------------------------------------------------------------------------


================================================================================
 digikam-1.5.0-1.fc14 (FEDORA-2010-16809)
 A digital camera accessing & photo management application
--------------------------------------------------------------------------------
Update Information:

Latest stable upstream release, includes many bugfixes and several new features.  See also,
http://www.digikam.org/drupal/node/539
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 11 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 1.5.0-1
- digikam-1.5.0
--------------------------------------------------------------------------------


================================================================================
 django-simple-captcha-0.2.0-4.fc14 (FEDORA-2010-16732)
 Django application to add captcha images to any Django form
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644883 - Review Request: django-simple-captcha - Django application to add captcha images to any Django form.
        https://bugzilla.redhat.com/show_bug.cgi?id=644883
--------------------------------------------------------------------------------


================================================================================
 dovecot-2.0.6-1.fc14 (FEDORA-2010-16849)
 Secure imap and pop3 server
--------------------------------------------------------------------------------
Update Information:


* acl: Fixed the logic of merging multiple ACL entries. Now it works as documented, while previously it could have done slightly different things depending on the order of the entries.

* virtual: Allow opening virtual mailboxes that refer to non-existing mailboxes. It seems that the benefits of this outweigh the lack of error message when typoing a mailbox name.

* Added some disk I/O optimizations to Maildir and index code. They're especially helpful with short-lived connections like POP3.

* pop3: Added pop3_fast_size_lookups setting.

* doveconf sometimes failed with complaining about missing ssl_key setting, causing e.g. dovecot-lda to fail.

* lda: If there's an error in configuration, doveconf didn't exit with EX_TEMPFAIL as it should have.

* sdbox: Fixed memory leak when copying messages with hard links. 

* zlib + sdbox combination didn't work

* zlib: Fixed several crashes, which mainly showed up with mbox.

* quota: Don't crash if user has quota disabled, but plugin loaded.

* doveadm fetch uid was actually returning sequence, not uid.

* v2.0.4's subscription listing ignored (and logged a warning about) subscriptions=no namespaces' entries in some configurations. (So listing shared mailboxes' subscriptions could have been broken.)

* acl: Fixed crashing when sometimes listing shared mailboxes via dict proxy.
- dovecot updated to 2.0.3

- dovecot-lda: Removed use of non-standard Envelope-To: header as a default for -a

- dsync: Fixed handling \Noselect mailboxes

- Fixed an infinite loop introduced by v2.0.2's message parser changes.

- Fixed a crash introduced by v2.0.2's istream-crlf changes.

- vpopmail support is disabled for now, since it's broken. You can use it via checkpassword support or its sql/ldap database directly.

- maildir: Fixed "duplicate uidlist entry" errors that happened at least with LMTP when mail was delivered to multiple recipients

- Deleting ACLs didn't cause entries to be removed from acl_shared_dict

- mail_max_lock_timeout setting wasn't working with all locks

- auth_cache_size setting's old-style value wasn't autoconverted and it usually also caused a crash

--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.6-1
- dovecot updated to 2.0.6
- dovecot updated to 2.0.6
- Pre-login CAPABILITY includes IDLE again. Mainly to make Blackberry
  servers happy.
- auth: auth_cache_negative_ttl default was 0 in earlier v2.0.x, but it
  was supposed to be 1 hour as in v1.x. Changed it back to 1h.
- doveadm: Added import command for importing mails from other storages.
- Reduced NFS I/O operations for index file accesses
- dbox, Maildir: When copying messages, copy also already cached fields
  from dovecot.index.cache
- Maildir: LDA/LMTP assert-crashed sometimes when saving a mail.
- Fixed leaking fds when writing to dovecot.mailbox.log.
- Fixed rare dovecot.index.cache corruption
- IMAP: SEARCH YOUNGER/OLDER wasn't working correctly
* Mon Oct  4 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.5-1
- dovecot updated to 2.0.5
- acl: Fixed the logic of merging multiple ACL entries
- sdbox: Fixed memory leak when copying messages with hard links. 
- zlib: Fixed several crashes, which mainly showed up with mbox.
- quota: Don't crash if user has quota disabled, but plugin loaded.
- acl: Fixed crashing when sometimes listing shared mailboxes via dict proxy.
* Tue Sep 28 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.4-1
- dovecot updated to 2.0.4
- multi-dbox: If :INDEX=path is specified, keep storage/dovecot.map.index* 
  files also in the index path rather than in the main storage directory.
- dsync: POP3 UIDLs weren't copied with Maildir
- dict file: Fixed fd leak (showed up easily with LMTP + quota)
* Mon Sep 20 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.3-1
- dovecot updated to 2.0.3
- dovecot-lda: Removed use of non-standard Envelope-To: header as 
  a default for -a
- dsync: Fixed handling \Noselect mailboxes
- Fixed an infinite loop introduced by v2.0.2's message parser changes.
- Fixed a crash introduced by v2.0.2's istream-crlf changes.
* Thu Sep 16 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1:2.0.2-1
- dovecot updated
- vpopmail support is disabled for now, since it's broken. You can use
  it via checkpassword support or its sql/ldap database directly.
- maildir: Fixed "duplicate uidlist entry" errors that happened at
  least with LMTP when mail was delivered to multiple recipients
- Deleting ACLs didn't cause entries to be removed from acl_shared_dict
- mail_max_lock_timeout setting wasn't working with all locks
--------------------------------------------------------------------------------


================================================================================
 driftnet-0.1.6-20.20040426cvs.fc14 (FEDORA-2010-16784)
 Network image sniffer
--------------------------------------------------------------------------------
Update Information:

Implicit DSO linking fix
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  5 2010 Paul Wouters <paul@xxxxxxxxxxxxx> - 0.1.6-20.20040426cvs
- Bugfix for https://bugzilla.redhat.com/show_bug.cgi?id=564945
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #564945 - FTBFS driftnet-0.1.6-19.20040426cvs.fc12: ImplicitDSOLinking
        https://bugzilla.redhat.com/show_bug.cgi?id=564945
--------------------------------------------------------------------------------


================================================================================
 drupal-service_links-6.x.2.0-1.fc14 (FEDORA-2010-16776)
 Enables admins to add links to a number of sites
--------------------------------------------------------------------------------
Update Information:

Update to upstream supported version.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 6.x.2.0-1
- New upstream, BZ 645757.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645757 - Version not supported anymore
        https://bugzilla.redhat.com/show_bug.cgi?id=645757
--------------------------------------------------------------------------------


================================================================================
 eclipse-fedorapackager-0.1.8-1.fc14 (FEDORA-2010-16871)
 Fedora Packager Tools
--------------------------------------------------------------------------------
Update Information:

* Wed Oct 20 2010 Severin Gehwolf <sgehwolf@xxxxxxxxxx> 0.1.8-1
- Improve error checking in import wizard.
- Update user documentation.
- Include potential fix for Ticket #34 (download performance
  problem).
- Fixes for Trac #35, #38:
  https://fedorahosted.org/eclipse-fedorapackager/ticket/35
  https://fedorahosted.org/eclipse-fedorapackager/ticket/38
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Severin Gehwolf <sgehwolf@xxxxxxxxxx> 0.1.8-1
- Merged changes from rawhide. Changes include:
- Improve error checking in import wizard.
- Update user documentation.
- Include potential fix for Ticket #34 (download performance
  problem).
- Remove eclipse-jgit R/BR since JGit is required by EGit
- Note: EGit API isn't stable yet. So, this package (0.1.6) might
  or might not work with EGit 0.10.x. It's known to work with
  EGit 0.9.x.
- Fixes for Trac #35, #38:
  https://fedorahosted.org/eclipse-fedorapackager/ticket/35
  https://fedorahosted.org/eclipse-fedorapackager/ticket/38
--------------------------------------------------------------------------------


================================================================================
 emacs-common-ddskk-14.1-4.fc14 (FEDORA-2010-16728)
 Daredevil SKK - Simple Kana to Kanji conversion program for Emacs
--------------------------------------------------------------------------------
Update Information:

Daredevil SKK is a branch of SKK (Simple Kana to Kanji conversion program, an input method of Japanese)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #582894 - Review Request: emacs-common-ddskk - Daredevil SKK - Simple Kana to Kanji conversion program for Emacs
        https://bugzilla.redhat.com/show_bug.cgi?id=582894
--------------------------------------------------------------------------------


================================================================================
 erlang-etap-0.3.4-5.fc14 (FEDORA-2010-16847)
 Erlang testing library
--------------------------------------------------------------------------------
Update Information:

* Fixed runtime issues in EL-4
* Added %check target
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.3.4-5
- Fixed missing runtime dependency on EL-4
- Added %check target
* Tue Sep 28 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.3.4-4
- Narrowed BuildRequires
--------------------------------------------------------------------------------


================================================================================
 etckeeper-0.50-1.fc14 (FEDORA-2010-16868)
 Store /etc in a SCM system (git, mercurial, bzr or darcs)
--------------------------------------------------------------------------------
Update Information:

Update to etckeeper to version 0.50. 

 * Ignore /etc/.initctl.
 * Do not warn about special files or hardlinks if they are ignored by git.
 * Set GIT_COMMITTER_EMAIL to root@$hostname to avoid git prompting the user to configure it in .gitconfig.
 * Deal with strange systems that include the domain name in the hostname, by stripping it.

Complete list of changes (including Debian bug numbers) can be found here: http://joey.kitenet.net/code/etckeeper/news/version_0.50/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 0.50-1
- Update to 0.50.
- Change %define -> %global.
* Fri Sep 17 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 0.49-2
- Adjust minimum required version of GIT.
- egg-info files are not created automatically on RHEL5.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646943 - etckeeper-0.50 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=646943
--------------------------------------------------------------------------------


================================================================================
 firefox-3.6.11-1.fc14 (FEDORA-2010-16753)
 Mozilla Firefox Web browser
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 3.6.11-1
- Update to 3.6.11
* Wed Sep 29 2010 jkeating - 3.6.10-1.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 flashrom-0.9.3-0.1.svn1205.fc14 (FEDORA-2010-16793)
 Simple program for reading/writing BIOS chips content
--------------------------------------------------------------------------------
Update Information:

* Pre-release of ver. 0.9.3
* Now builds on PPC and PPC64. Other arches are not tested.
* Now builds with autotools
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.3-0.1.svn1205
- Ver. 0.9.3 (pre-release, exported from SCM)
* Wed Sep 29 2010 jkeating - 0.9.2-7.svn1180
- Rebuilt for gcc bug 634757
* Fri Sep 24 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.2-6.svn1180
- Added autotools support
* Tue Sep 21 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.2-5.svn1180
- Patch no.3 merged upstream
* Fri Sep 17 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.2-4.svn1158
- Enable building on PowerPC (only external flashers enabled so far).
  See rhbz #283491.
* Sun Sep 12 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 0.9.2-3.svn1158
- Clean up spec-file
- Updated to latest svn ver. 1158
- Doubles the number of known boards!
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #283491 - flashrom can't be built at powerpc
        https://bugzilla.redhat.com/show_bug.cgi?id=283491
  [ 2 ] Bug #617621 - Flashrom / dmidecode bad interaction could brick laptops
        https://bugzilla.redhat.com/show_bug.cgi?id=617621
--------------------------------------------------------------------------------


================================================================================
 fldigi-doc-3.20-3.fc14 (FEDORA-2010-16829)
 Documentation for the Fldigi project
--------------------------------------------------------------------------------


================================================================================
 fuse-2.8.5-1.fc14 (FEDORA-2010-16824)
 File System in Userspace (FUSE) utilities
--------------------------------------------------------------------------------
Update Information:

Ver. 2.8.5 (bugfix release)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 2.8.5-1
- Ver. 2.8.5
--------------------------------------------------------------------------------


================================================================================
 fuse-2.8.5-2.fc14 (FEDORA-2010-16727)
 File System in Userspace (FUSE) utilities
--------------------------------------------------------------------------------
Update Information:

* Allow mounting FUSE fs into current directory.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 2.8.5-2
- Fixed rhbz #622255
* Tue Oct 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> 2.8.5-1
- Ver. 2.8.5
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #622255 - Cannot mount encfs with option allow_root on $HOME
        https://bugzilla.redhat.com/show_bug.cgi?id=622255
--------------------------------------------------------------------------------


================================================================================
 gajim-0.14.1-1.fc14 (FEDORA-2010-16735)
 Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:

Gajim 0.14.1 is a bugfix release:

  * Fix changing account name
  * Fix sending XHTML
  * Fix some GPG bugs
  * Minor bugfixes

Full list of closed bugs: `http://trac.gajim.org/query?status=closed&milestone=0.14.1`

--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Michal Schmidt <mschmidt@xxxxxxxxxx> 0.14.1-1
- Upstream bugfix release.
- Dropped merged patches.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646946 - gajim-0.14.1 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=646946
--------------------------------------------------------------------------------


================================================================================
 galeon-2.0.7-34.fc14.1 (FEDORA-2010-16753)
 GNOME2 Web browser based on Mozilla
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 2.0.7-34.1
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 gausssum-2.2.4-1.fc14 (FEDORA-2010-16855)
 A GUI application for analysis of output of quantum computations
--------------------------------------------------------------------------------
Update Information:

Update to 2.2.4.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug  6 2010 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.2.4-1
- Update to 2.2.4.
--------------------------------------------------------------------------------


================================================================================
 generic-release-14-1 (FEDORA-2010-16798)
 Generic release files
--------------------------------------------------------------------------------
Update Information:

Sync with fedora-release, add location support to repo files.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 14-1
- sync up with fedora-release :
 - Enable updates, disable updates-testing, enable metadata_expire
 - update release name
 - don't set metadata_expire=7d in fedora.repo (releng #3561)
 - Prep for F14 branched
 - Add the Fedora 14 key
 - link sparc key
 - drop ppc ppc64 from primary arch list
 - When in rawhide, require the -rawhide subpackage.
 - Fix the key path in the updates-testing repo
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #643186 - Add location parameter to mirrorlist URIs
        https://bugzilla.redhat.com/show_bug.cgi?id=643186
--------------------------------------------------------------------------------


================================================================================
 git-1.7.3.2-1.fc14 (FEDORA-2010-16779)
 Fast Version Control System
--------------------------------------------------------------------------------
Update Information:

Update to the 1.7.3.2 maintenance release which contains various bugfixes.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Adam Tkac <atkac redhat com> - 1.7.3.2-1
- update to 1.7.3.2
--------------------------------------------------------------------------------


================================================================================
 glibc-2.12.90-18 (FEDORA-2010-16851)
 The GNU libc libraries
--------------------------------------------------------------------------------
Update Information:

Require suid bit on audit objects in privileged programs (CVE-2010-3856)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Andreas Schwab <schwab@xxxxxxxxxx> - 2.12.90-18
- Require suid bit on audit objects in privileged programs (CVE-2010-3856)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645672 - CVE-2010-3856 glibc: ld.so arbitrary DSO loading via LD_AUDIT in setuid/setgid programs
        https://bugzilla.redhat.com/show_bug.cgi?id=645672
--------------------------------------------------------------------------------


================================================================================
 gnome-gmail-1.7-1.fc14 (FEDORA-2010-16850)
 Integrate GMail into the GNOME desktop
--------------------------------------------------------------------------------
Update Information:

Upstream 1.7
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------


================================================================================
 gnome-keyring-2.32.1-1.fc14 (FEDORA-2010-16717)
 Framework for managing passwords and other secrets
--------------------------------------------------------------------------------
Update Information:

Update to latest bugfix stable upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Tomas Bzatek <tbzatek@xxxxxxxxxx> - 2.32.1-1
- Update to 2.32.1
--------------------------------------------------------------------------------


================================================================================
 gnome-python2-extras-2.25.3-24.fc14.1 (FEDORA-2010-16753)
 Additional PyGNOME Python extension modules
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 2.25.3-24.1
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 gnome-web-photo-0.9-14.fc14.1 (FEDORA-2010-16753)
 HTML pages thumbnailer
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 0.9-14.1
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 gnonlin-0.10.16-1.fc14 (FEDORA-2010-16828)
 GStreamer extension library for non-linear editing
--------------------------------------------------------------------------------
Update Information:

Update to 0.10.16 "I needed time to think to get the memories from my mind"

Features of this release

      * More race fixes
      * gnlcomposition: propagate caps to childs
      * gnlurisource: Only use needed streams
      * gnlcomposition: Fix QoS handling

Bugs fixed in this release

      * 613283 : gst_element_class_set_details = > gst_element_class_set_details_simple
      * 626501 : Caps property of gnlfilesource works incorrectly
      * 626733 : Race in gnlcomposition between no_more_pads_object_cb and compare_relink_single_node

--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 0.10.16-1
- Update to 0.10.16 "I needed time to think to get the memories from my mind"
-
- Features of this release
-
-       * More race fixes
-       * gnlcomposition: propagate caps to childs
-       * gnlurisource: Only use needed streams
-       * gnlcomposition: Fix QoS handling
-
- Bugs fixed in this release
-
-       * 613283 : gst_element_class_set_details = > gst_element_class_set_details_simple
-       * 626501 : Caps property of gnlfilesource works incorrectly
-       * 626733 : Race in gnlcomposition between no_more_pads_object_cb and compare_relink_single_node
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646846 - Update gnonlin to 0.10.16
        https://bugzilla.redhat.com/show_bug.cgi?id=646846
--------------------------------------------------------------------------------


================================================================================
 gnucash-2.3.15-2.fc14 (FEDORA-2010-16762)
 Finance management application
--------------------------------------------------------------------------------
Update Information:

This removes an unneeded file in GnuCash that could cause a security issue if ran from a directory that other users had write access to.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Bill Nottingham <notting@xxxxxxxxxx>
- don't ship gnc-test-env (#644933, CVE-2010-3999)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644933 - CVE-2010-3999 gnucash: insecure library loading vulnerability
        https://bugzilla.redhat.com/show_bug.cgi?id=644933
--------------------------------------------------------------------------------


================================================================================
 gnupg-1.4.11-2.fc14 (FEDORA-2010-16797)
 A GNU utility for secure communication and data storage
--------------------------------------------------------------------------------
Update Information:

- Added ownership of %dir %{_libexecdir}/gnupg (#644576)
Update to upstream v1.4.11
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Brian C. Lane <bcl@xxxxxxxxxx> 1.4.11-2
- Added ownership of %dir /usr/libexec/gnupg (#644576)
* Mon Oct 18 2010 Brian C. Lane <bcl@xxxxxxxxxx> 1.4.11-1
- New upstream v1.4.11
- Dropped patch gnupg-1.4.6-dir.patch, now in upstream
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644576 - Unowned %{_libexecdir}/gnupg dir
        https://bugzilla.redhat.com/show_bug.cgi?id=644576
--------------------------------------------------------------------------------


================================================================================
 goocanvasmm-0.15.4-1.fc14 (FEDORA-2010-16773)
 C++ interface for goocanvas
--------------------------------------------------------------------------------
Update Information:

fix build issues with gtkmm 2.22.0
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 HaÃkel GuÃmar <hguemar@xxxxxxxxxxxxxxxxx> - 0.15.4-1
- Update to upstream 0.15.4
* Fri Sep  3 2010 HaÃkel GuÃmar <hguemar@xxxxxxxxxxxxxxxxx> - 0.15.3-1
- Update to upstream 0.15.3
--------------------------------------------------------------------------------


================================================================================
 gphotoframe-1.1-1.fc14 (FEDORA-2010-16730)
 Photo Frame Gadget for the GNOME Desktop
--------------------------------------------------------------------------------
Update Information:

New version 1.1 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 23 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1.1-1
- Update to 1.1
--------------------------------------------------------------------------------


================================================================================
 gstreamer-python-0.10.19-1.fc14 (FEDORA-2010-16872)
 Python bindings for GStreamer
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Xavier Lamien <laxathom@xxxxxxxxxxxxxxxxx> - 0.10.19-1
- Update release.
--------------------------------------------------------------------------------


================================================================================
 gstreamermm-0.10.8-1.fc14 (FEDORA-2010-16827)
 C++ wrapper for GStreamer library
--------------------------------------------------------------------------------
Update Information:

upstream 10.8
- fix GCC 4.5 build issue
- fix GStreamer 0.10.30 build issue
- improved GStreamer API coverage
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 HaÃkel GuÃmar <hguemar@xxxxxxxxxxxxxxxxx> - 0.10.8-1
- Update to upstream 0.10.8
--------------------------------------------------------------------------------


================================================================================
 hosts3d-1.13-1.fc14 (FEDORA-2010-16740)
 3D real-time network visualiser
--------------------------------------------------------------------------------
Update Information:

hosts3d-1.13-1.fc14
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 30 2010 Simon Wesp <cassmodiah@xxxxxxxxxxxxxxxxx> - 1.13-1
- New upstream release
* Wed Jul 14 2010 Simon Wesp <cassmodiah@xxxxxxxxxxxxxxxxx> - 1.12-1
- New upstream release
* Fri Jul  2 2010 Simon Wesp <cassmodiah@xxxxxxxxxxxxxxxxx> - 1.11-1
- New upstream release
--------------------------------------------------------------------------------


================================================================================
 httpd-2.2.17-1.fc14 (FEDORA-2010-16771)
 Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:

This update contains the latest stable release of Apache httpd.

Changes in this update include:

* prefork: work around a bug which could cause crashes at process shutdown
* mod_reqtimeout: fix handling of timeouts for proxy backend connections
* fixes for use of output filters in sub-requests which trigger an internal redirect
* mod_ssl: fix for a possible output corruption bug

For further details, see http://www.apache.org/dist/httpd/CHANGES_2.2.17
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Joe Orton <jorton@xxxxxxxxxx> - 2.2.17-1
- update to 2.2.17
* Fri Sep 10 2010 Joe Orton <jorton@xxxxxxxxxx> - 2.2.16-2
- link everything using -z relro and -z now
* Tue Aug 17 2010 Joe Orton <jorton@xxxxxxxxxx> - 2.2.16-1.1
- add fix for PR 45444
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #624609 - Your browser sent a request that this server could not understand. Request header field is missing ':' separator.
        https://bugzilla.redhat.com/show_bug.cgi?id=624609
--------------------------------------------------------------------------------


================================================================================
 ibus-anthy-1.2.4-2.fc14 (FEDORA-2010-16715)
 The Anthy engine for IBus input platform
--------------------------------------------------------------------------------
Update Information:

Bug 644771 - ibus-anthy [F7] key cannot work with SEGV
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Takao Fujiwara <tfujiwar@xxxxxxxxxx> - 1.2.4-2
- Updated to 1.2.4
- Resolves #644771 ibus-anthy [F7] key cannot work with SEGV
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644771 - ibus-anthy [F7] key cannot work with SEGV
        https://bugzilla.redhat.com/show_bug.cgi?id=644771
--------------------------------------------------------------------------------


================================================================================
 ibus-table-others-1.3.0.20100907-5.fc14 (FEDORA-2010-16775)
 Various tables for IBus-Table
--------------------------------------------------------------------------------
Update Information:

* Fri Oct 22 2010 Naveen Kumar <nkumar@xxxxxxxxxx> - 1.3.0.20100907-5
- Initialize Package
--------------------------------------------------------------------------------


================================================================================
 ikiwiki-3.20101023-1.fc14 (FEDORA-2010-16768)
 A wiki compiler
--------------------------------------------------------------------------------
Update Information:

Update to version 3.20101023. See http://ikiwiki.info/news/ for the full list of changes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20101023-1
- Update to 3.20101023.
* Sat Oct  2 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20100926-1
- Update to 3.20100926.
* Thu Sep 16 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20100915-1
- Update to 3.20100915.
* Tue Sep  7 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20100831-1
- Update to 3.20100831.
* Fri Aug 27 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20100815-1
- Update to 3.20100815.
--------------------------------------------------------------------------------


================================================================================
 inadyn-mt-2.18.42-1.fc14 (FEDORA-2010-16724)
 Dynamic DNS Client
--------------------------------------------------------------------------------
Update Information:

New upstream bugfix releasey
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Jochen Schmitt <Jochen herr-schmitt de> 2.18.42-1
- New upstream release
* Sat Jul 24 2010 Jochen Schmitt <Nochen herr-schmitt de> 2.18.36-2
- Fix broken inistscript
- Renaming service file in units subpackage
--------------------------------------------------------------------------------


================================================================================
 jgraphx-1.4.1.0-2.fc14 (FEDORA-2010-16716)
 Java Graph Drawing Component
--------------------------------------------------------------------------------


================================================================================
 kdegraphics-4.5.2-4.fc14 (FEDORA-2010-16532)
 KDE Graphics Applications
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.5.2-4
- fix typo in xps patch (#643833)
* Tue Oct 19 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.5.2-3
- okular fails to load XPS files (#643833)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #643833 - okular fails to load XPS files
        https://bugzilla.redhat.com/show_bug.cgi?id=643833
--------------------------------------------------------------------------------


================================================================================
 kdevelop-4.1.0-1.fc14 (FEDORA-2010-16786)
 Integrated Development Environment for C++/C
--------------------------------------------------------------------------------
Update Information:

* Milian Wolff: set version to 4.1.0, require kdevplatform 1.1.0
* Milian Wolff: fix custommake manager crashes when deleting, renaming folders
* Milian Wolff: optimize: no need to call moveBehindComment if we found a last #include, just put include after that
* Milian Wolff: finally fix the missing include item placement...
* Milian Wolff: place includes/forward declarations after defines or comments if no empty line is found
* Milian Wolff: properly add include/forward definition at start of document when we don't find a position after that
* Aleix Pol: Check cached variables from conditionals too.
* Aleix Pol: Make it possible to reload CMakeFolders that don't have a cmakelists.txt (because it has been removed). Improve responsibity on file removal. Reload project branch when a CMakeLists.txt file was removed.
* Milian Wolff: use system colors instead of hardcoded colors in GDB command line toolview
* Milian Wolff: set focus on filter lineedit by default in 'attach to process' dialog
* Milian Wolff: properly read debugger state when adding output widget after debug process was started
* Aleix Pol: Test the option command works properly with the cache.
* Aleix Pol: Use correct api.
* Aleix Pol: Fix project reloading when the cache is dirty.
* Aleix Pol: Don't set the variable in case it's already specified on the cache.
* Aleix Pol: Fix wrong slot name.
* Aleix Pol: Reload the project whenever the CMakeCache is modified.
* Milian Wolff: let view take ownership of widgets, prevents leakage and crashes
* NicolÃs Alvarez: CMake support: avoid infinite loop on foreach(RANGE) that never runs.
* Aleix Pol: Make it possible to parse properly projects with empty CMakeLists.txt files. Don't add the cmake project root directory two times to the watcher.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 
- update to 4.1.0
- added BR kdeutils-devel
--------------------------------------------------------------------------------


================================================================================
 kdevplatform-1.1.0-2.fc14 (FEDORA-2010-16786)
 Libraries for use by KDE development tools
--------------------------------------------------------------------------------
Update Information:

* Milian Wolff: set version to 4.1.0, require kdevplatform 1.1.0
* Milian Wolff: fix custommake manager crashes when deleting, renaming folders
* Milian Wolff: optimize: no need to call moveBehindComment if we found a last #include, just put include after that
* Milian Wolff: finally fix the missing include item placement...
* Milian Wolff: place includes/forward declarations after defines or comments if no empty line is found
* Milian Wolff: properly add include/forward definition at start of document when we don't find a position after that
* Aleix Pol: Check cached variables from conditionals too.
* Aleix Pol: Make it possible to reload CMakeFolders that don't have a cmakelists.txt (because it has been removed). Improve responsibity on file removal. Reload project branch when a CMakeLists.txt file was removed.
* Milian Wolff: use system colors instead of hardcoded colors in GDB command line toolview
* Milian Wolff: set focus on filter lineedit by default in 'attach to process' dialog
* Milian Wolff: properly read debugger state when adding output widget after debug process was started
* Aleix Pol: Test the option command works properly with the cache.
* Aleix Pol: Use correct api.
* Aleix Pol: Fix project reloading when the cache is dirty.
* Aleix Pol: Don't set the variable in case it's already specified on the cache.
* Aleix Pol: Fix wrong slot name.
* Aleix Pol: Reload the project whenever the CMakeCache is modified.
* Milian Wolff: let view take ownership of widgets, prevents leakage and crashes
* NicolÃs Alvarez: CMake support: avoid infinite loop on foreach(RANGE) that never runs.
* Aleix Pol: Make it possible to parse properly projects with empty CMakeLists.txt files. Don't add the cmake project root directory two times to the watcher.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 1.1.0-2
- added BR qjson-devel
* Wed Oct 20 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 1.1.0-1
- update to 1.1.0
* Wed Sep 29 2010 jkeating - 1.0.1-1.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------


================================================================================
 kipi-plugins-1.5.0-2.fc14 (FEDORA-2010-16846)
 Plugins to use with Kipi
--------------------------------------------------------------------------------
Update Information:

Latest stable upstream release, includes many bugfixes.  See also,
http://www.digikam.org/drupal/node/540
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.5.0-2
- merge s390 bits from f14 branch (grr)
- cleanup inclusion/exclusion of optional modules
- expoblending unconditional
* Mon Oct 11 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.5.0-1
- kipi-plugins-1.5.0
* Wed Sep 29 2010 jkeating - 1.4.0-4
- Rebuilt for gcc bug 634757
* Fri Sep 17 2010 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 1.4.0-3
- rebuild for the new ImageMagick soname bump
* Thu Sep  2 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.4.0-2
- fix opencv/redeye plugin bits
--------------------------------------------------------------------------------


================================================================================
 kobo-0.3.2-1.fc14 (FEDORA-2010-16836)
 Python modules for tools development
--------------------------------------------------------------------------------
Update Information:

new upstream version
fix xmlrpc transports for py2.5 and 2.6

bump to new upstream version
bump to new upstream version
bump to new upstream version
bump to new upstream version
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Daniel Mach <dmach@xxxxxxxxxx> - 0.3.2-1
- Fix XML-RPC transports to make them work in py2.5 and py2.6. (Daniel Mach)
- Automatically scroll the task log window when we're at the bottom of the page. (Daniel Mach)
- Show self.* attributes in extended tracebacks. (Daniel Mach)
- Compress logs with gzip when a task finishes. (Daniel Mach)
- Convert task logs to utf8 (with "replace" option) to prevent raising UnicodeDecodeError during template processing. (Daniel Mach)
* Tue Oct 19 2010 Daniel Mach <dmach@xxxxxxxxxx> - 0.3.1-1
- Add help-admin command to display help for admin commands. (Daniel Mach)
- Add config parser support for glob matching on dict keys. (Tomas Kopecek)
- Implement timeout support in xmlrpc transports. (Daniel Mach)
- Improve kobo.xmlrpc.CookieTransport to work with python 2.7 as well. (Daniel Mach)
- Add kobo-admin utility. (Martin Bukatovic)
- Add missing HttpResponseForbidden import to kobo.hub.views. (Daniel Mach)
- Fix bug in "Show only my tasks" search option on Tasks page. (Daniel Mach)
--------------------------------------------------------------------------------


================================================================================
 konq-plugins-4.4.0-6.fc14 (FEDORA-2010-16844)
 Additional plugins that interact with konqueror
--------------------------------------------------------------------------------
Update Information:

Fixed window.close regression in adblock.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 4.4.0-6
- Fix the window.close regression in adblock (kde#253921)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644887 - Konqueror crashes when js closes the window
        https://bugzilla.redhat.com/show_bug.cgi?id=644887
--------------------------------------------------------------------------------


================================================================================
 kpackagekit-0.6.2-1.fc14 (FEDORA-2010-16741)
 KDE interface for PackageKit
--------------------------------------------------------------------------------
Update Information:

Ok we are giving 0.6.2 another try.  Feedback is appreciated
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 12 2010 Steven M. Parrish <smparrish@xxxxxxxxx> 0.6.2-1
- New upstream release
* Tue Sep 21 2010 Lukas Tinkl <ltinkl@xxxxxxxxxx> - 0.6.1-2
- fix wrong i18n() usage in a patch resulting in broken translations
--------------------------------------------------------------------------------


================================================================================
 ksh-20101010-1.fc14 (FEDORA-2010-16747)
 The Original ATT Korn Shell
--------------------------------------------------------------------------------
Update Information:

- A bug in which killing the last command in a function defined with function name, terminated the calling script has been fixed. 
- A bug which could cause a core dump if IFS is unset inside a function has been fixed.
- To reduce unwanted side effects, invoking typeset without the export option and without an assignment now causes the variables to be unset if the variable is inherited from the environment.
- The closing brace for ${ command } new a token no matter what character follows it.
- The change for $'...' expansion on 10-08-09 did not expand parameters contained in the error message and this has been fixed.
- A bug in which a declaration of indexed array (-a_ in a type definition would be displayed as a compound indexed array (-C -a) has been fixed.
- The C99 math funtion ldexp has been added.
- A bug with two dimensional arrays with expansion of the form ${ref[0..5]} where ref is a nameref to array[i] has been fixed.
- A bug in which an eval with redirections invoked from a dot script would not restore the file has been fixed.
- A bug in which loading a function from FPATH could leave a file descriptor open has been fixed.

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 20101010-1
- ksh updated to 2010-10-10
* Fri Oct  8 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 20100924-2
- disable only known to be broken builtins, let other enabled
- skip regression tests if /dev/fd is missing
* Tue Sep 28 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 20100924-1
- ksh updated to 2010-09-24
* Mon Aug 30 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 20100826-1
- ksh updated to 2010-08-26
- make regression test suite usable during package build
* Fri Aug 13 2010 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 20100811-1
- ksh updated to 2010-08-11
--------------------------------------------------------------------------------


================================================================================
 libguestfs-1.5.23-1 (FEDORA-2010-16835)
 Access and modify virtual machine disk images
--------------------------------------------------------------------------------
Update Information:

CVE-2010-3851: Fix for libguestfs: missing disk format
specifier when adding a disk
(RHBZ#642934).
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 23 2010 Richard Jones <rjones@xxxxxxxxxx> - 1:1.5.23-1
- Fix for libguestfs: missing disk format specifier when adding a disk
  (RHBZ#642934, CVE-2010-3851).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642934 - No way to specify disk format when adding a disk to libguestfs
        https://bugzilla.redhat.com/show_bug.cgi?id=642934
--------------------------------------------------------------------------------


================================================================================
 libmcrypto-0.8.0-0.1.20100629svn3775.fc14 (FEDORA-2010-16816)
 A C++ library providing various cryptography related utilities
--------------------------------------------------------------------------------
Update Information:

Initial package
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #626699 - Review Request: libmcrypto - A C++ library providing various cryptography related utilities
        https://bugzilla.redhat.com/show_bug.cgi?id=626699
--------------------------------------------------------------------------------


================================================================================
 libmstun-0.8.0-0.1.20091007svn3734.fc14 (FEDORA-2010-16873)
 A C++ library providing STUN client utilities
--------------------------------------------------------------------------------
Update Information:

Initial package
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #626462 - Review Request: libmstun - A C++ library providing STUN client utilities
        https://bugzilla.redhat.com/show_bug.cgi?id=626462
--------------------------------------------------------------------------------


================================================================================
 libopenraw-0.0.8-4.fc14 (FEDORA-2010-16783)
 Decode camera RAW files
--------------------------------------------------------------------------------
Update Information:

- fix certain CR2 formats (BZ 624283)
- fix pixbuf-loader directory and %post/%postun scripts
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 0.0.8-4
- fix %post and %postun scripts and install directory for
  pixbuf-loader
* Sun Oct 24 2010 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 0.0.8-3
- add upstream patch 22287584fbfa4657098ee997957a6c4fc972a53b to
  properly decompress CFA from certain cameras (BZ 624283)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #624283 - Unable to load Raw picture with CR2 extension with Gthumb
        https://bugzilla.redhat.com/show_bug.cgi?id=624283
--------------------------------------------------------------------------------


================================================================================
 libtorrent-0.12.7-1.fc14 (FEDORA-2010-16795)
 BitTorrent library with a focus on high performance & good code
--------------------------------------------------------------------------------
Update Information:

- New upstream release
- ChangeLog will be visible at http://libtorrent.rakshasa.no/wiki/Changelog
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Ankur Sinha <ankursinha AT fedoraproject DOT org> - 0.12.7-1
- update to latest upstream release
--------------------------------------------------------------------------------


================================================================================
 lohit-oriya-fonts-2.4.3-6.fc14 (FEDORA-2010-16819)
 Free Oriya Font
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Pravin Satpute <psatpute@xxxxxxxxxx> - 2.4.3-6
- fixed bug 639977, resolved problem of ligature rendering with gedit and oowriter
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639977 - [or_IN] Oriya fonts do not render correctly.
        https://bugzilla.redhat.com/show_bug.cgi?id=639977
--------------------------------------------------------------------------------


================================================================================
 lua-copas-1.1.6-1.fc14 (FEDORA-2010-16866)
 Coroutine Oriented Portable Asynchronous Services for Lua
--------------------------------------------------------------------------------
Update Information:

Initial package import
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645182 - Review Request: lua-copas - Coroutine Oriented Portable Asynchronous Services for Lua
        https://bugzilla.redhat.com/show_bug.cgi?id=645182
--------------------------------------------------------------------------------


================================================================================
 lua-coxpcall-1.13.0-1.fc14 (FEDORA-2010-16813)
 Coroutine safe xpcall and pcall versions for Lua
--------------------------------------------------------------------------------
Update Information:

Initial package import
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645181 - Review Request: lua-coxpcall - Coroutine safe xpcall and pcall versions for Lua
        https://bugzilla.redhat.com/show_bug.cgi?id=645181
--------------------------------------------------------------------------------


================================================================================
 lua-md5-1.1.2-1.fc14 (FEDORA-2010-16823)
 Cryptographic Library for MD5 hashes for Lua
--------------------------------------------------------------------------------
Update Information:

Initial package import
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645183 - Review Request: lua-md5 - Cryptographic Library for MD5 hashes for Lua
        https://bugzilla.redhat.com/show_bug.cgi?id=645183
--------------------------------------------------------------------------------


================================================================================
 lua-wsapi-1.3.4-2.fc14 (FEDORA-2010-16719)
 Lua Web Server API
--------------------------------------------------------------------------------
Update Information:

Initial package import
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645184 - Review Request: lua-wsapi - Lua Web Server API
        https://bugzilla.redhat.com/show_bug.cgi?id=645184
--------------------------------------------------------------------------------


================================================================================
 lua-xmlrpc-1.2.1-1.fc14 (FEDORA-2010-16822)
 Lua package to access and provide XML-RPC services
--------------------------------------------------------------------------------
Update Information:

Initial package import
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645185 - Review Request: lua-xmlrpc - Lua package to access and provide XML-RPC services
        https://bugzilla.redhat.com/show_bug.cgi?id=645185
--------------------------------------------------------------------------------


================================================================================
 luci-0.22.4-2.0.b9faf868074git.fc14 (FEDORA-2010-16848)
 Web-based high availability administration application
--------------------------------------------------------------------------------
Update Information:

Fix CVE-2010-3852
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Fabio M. Di Nitto <fdinitto@xxxxxxxxxx> - 0.22.4-2.0.b9faf868074git
- Fix CVE-2010-3852 (bug #645404)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #626504 - CVE-2010-3852 Luci: Authentication bypass via fake ticket cookie
        https://bugzilla.redhat.com/show_bug.cgi?id=626504
--------------------------------------------------------------------------------


================================================================================
 mailx-12.5-1.fc14 (FEDORA-2010-16729)
 Enhanced implementation of the mailx command
--------------------------------------------------------------------------------
Update Information:

Update to 12.5
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Dmitry Butskoy <Dmitry@xxxxxxxxxxxx> - 12.5-1
- update to 12.5
- drop patches applied upstream
* Fri Oct  1 2010 Ivana Hutarova Varekova <varekova@xxxxxxxxxx> - 12.4-7
- fix the typo in man-page
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646549 - request upgrade to cvs version of mailx
        https://bugzilla.redhat.com/show_bug.cgi?id=646549
--------------------------------------------------------------------------------


================================================================================
 make-3.82-3.fc14 (FEDORA-2010-16874)
 A GNU tool which simplifies the build process for users
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Petr Machata <pmachata@xxxxxxxxxx> - 1:3.82-3
- Fix a discrepancy between behavior of find_next_token and
  pre-allocation of token memory in func_sort.
- Resolves: #643359
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #643359 - [abrt] make-1:3.82-2.fc14.1: raise: Process /usr/bin/make was killed by signal 6 (SIGABRT)
        https://bugzilla.redhat.com/show_bug.cgi?id=643359
--------------------------------------------------------------------------------


================================================================================
 mingetty-1.08-5.fc14 (FEDORA-2010-16834)
 A compact getty program for virtual consoles only
--------------------------------------------------------------------------------
Update Information:

In addition, deprecated syslog facility has been updated to modern LOG_AUTHPRIV constant
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Petr Pisar <ppisar@xxxxxxxxxx> - 1.08-5
- Check chroot(), chdir(), and nice() (bug #635412)
- Open syslog with AUTPRIV facility
- Limit TTY name length to prevent buffer overflow (bug #551754)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #551754 - Buffer overflow in open_tty()
        https://bugzilla.redhat.com/show_bug.cgi?id=551754
  [ 2 ] Bug #635412 - unsafe chroot() calls in mingetty
        https://bugzilla.redhat.com/show_bug.cgi?id=635412
--------------------------------------------------------------------------------


================================================================================
 mock-1.1.6-1.fc14 (FEDORA-2010-16838)
 Builds packages inside chroots
--------------------------------------------------------------------------------
Update Information:

This update addresses multiple issues seen with the new selinux plugin
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 14 2010 Clark Williams <williams@xxxxxxxxxx> - 1.1.6-1
- replace call to perl with native python edit function
- change permissions of selinux plugin 'filesystems' file
- from Ville Skyttà <ville.skytta@xxxxxx>:
  - Find out completions for --*-plugin dynamically
  - Keep $COLUMNS in consolehelper environment for --help formatting
  - Document --scrub, --enable-plugin, and --disable-plugin
  - Fix option name in --enable-plugin/--disable-plugin error string
  - Add --scrub completion
  - Complete on *.spm (*.src.rpm are sometimes named like that e.g. in SUSE)
  - Fix buildsrpm() docstring
  - Error message improvements
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #573111 - Mock environment needs to fake chroot into thinking SELinux is disabled.
        https://bugzilla.redhat.com/show_bug.cgi?id=573111
  [ 2 ] Bug #629041 - selinux plugin expects that yum cache directory exists
        https://bugzilla.redhat.com/show_bug.cgi?id=629041
  [ 3 ] Bug #630479 - rebuilds fail with ""execmod" access" errors from SELinux
        https://bugzilla.redhat.com/show_bug.cgi?id=630479
  [ 4 ] Bug #637555 - Mock selinux plugin creates /proc/filesystems with incorrect permissions
        https://bugzilla.redhat.com/show_bug.cgi?id=637555
  [ 5 ] Bug #642051 - Xvfb SELinux issues in mock
        https://bugzilla.redhat.com/show_bug.cgi?id=642051
--------------------------------------------------------------------------------


================================================================================
 moodle-1.9.10-1.fc14 (FEDORA-2010-16764)
 A Course Management System
--------------------------------------------------------------------------------
Update Information:

Fixes security vulnerability in YUI.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Jon Ciesla <limb@xxxxxxxxxxxx> - 1.9.10-1
- New upstream, MSA-10-0017.
- htmlpurifier patch upstreamed.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646660 - moodle: XSS vuln in embedded YUI (MSA-10-0017)
        https://bugzilla.redhat.com/show_bug.cgi?id=646660
--------------------------------------------------------------------------------


================================================================================
 mozvoikko-1.0-15.fc14.1 (FEDORA-2010-16753)
 Finnish Voikko spell-checker extension for Mozilla programs
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 1.0-15.1
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 mtr-0.80-1.fc14 (FEDORA-2010-16751)
 A network diagnostic tool
--------------------------------------------------------------------------------
Update Information:

This is an update that fixes problems with XML output and fixes last sent packet handling.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Jan GÃrig <jgorig redhat com> 2:0.80-1
- update to 0.80
- mtr now waits for last sent packet (#611739)
- fixed crashes in XML format
- XML format fixes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #611739 - mtr report mode seems to miss one packet for -c > 1 for cvs.fedoraproject.org
        https://bugzilla.redhat.com/show_bug.cgi?id=611739
--------------------------------------------------------------------------------


================================================================================
 nagios-3.2.3-1.fc14 (FEDORA-2010-16830)
 Nagios monitors hosts and services and yells if somethings breaks
--------------------------------------------------------------------------------
Update Information:

* Ver. 3.2.3
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 3.2.3-1
- Ver. 3.2.3
- Further cleanups in spec-file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639941 - nagios: please update to 3.2.3
        https://bugzilla.redhat.com/show_bug.cgi?id=639941
--------------------------------------------------------------------------------


================================================================================
 nagios-3.2.3-2.fc14 (FEDORA-2010-16761)
 Nagios monitors hosts and services and yells if somethings breaks
--------------------------------------------------------------------------------
Update Information:

* Added accidentally missing patches
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 3.2.3-2
- Accidentally forgotten patches added back
* Tue Oct 26 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 3.2.3-1
- Ver. 3.2.3
- Further cleanups in spec-file
--------------------------------------------------------------------------------


================================================================================
 nrpe-2.12-16.fc14 (FEDORA-2010-16787)
 Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:

Proper directory access mode for %{_localstatedir}/run/nrpe
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 2.12-16
- Issue with SELinux was resolved (see rhbz #565220#c25). 2nd try.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #565220 - SELinux is preventing /usr/sbin/nrpe "dac_override" access     .
        https://bugzilla.redhat.com/show_bug.cgi?id=565220
--------------------------------------------------------------------------------


================================================================================
 numlockx-1.0-18.fc14 (FEDORA-2010-16817)
 NumLockX turns on NumLock after starting X
--------------------------------------------------------------------------------
Update Information:

Workaround to make numlockx work again on F14.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Adel Gadllah <adel.gadllah@xxxxxxxxx> 1.0-18
- Fix up XI2 patch to patch Makefile.am and not depend on the arch
* Fri Oct 22 2010 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 1.0-17
- 0001-XI2-support.patch: add support for per-device numlock switching.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #614543 - numlockx don't work with F14 rawhide
        https://bugzilla.redhat.com/show_bug.cgi?id=614543
--------------------------------------------------------------------------------


================================================================================
 openeuclide-0.5-3.fc14 (FEDORA-2010-16814)
 A geometry software that is intended for educational or modeling purposes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #643595 - Review Request: openeuclide - A plane geometry software
        https://bugzilla.redhat.com/show_bug.cgi?id=643595
--------------------------------------------------------------------------------


================================================================================
 openmpi-1.4.3-7.fc14 (FEDORA-2010-16765)
 Open Message Passing Interface
--------------------------------------------------------------------------------
Update Information:

Upgrade to 1.4.3 and add MANPATH to the openmpi module file.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Jay Fenlason <fenlason@xxxxxxxxxx> - 1.4.3-1
- set MANPATH in opempi.module
- Remove workaround for 617766
- Upgrade to 1.4.3
* Sun Sep  5 2010 Dennis Gilmore <dennis@xxxxxxxx> - 1.4.1-7
- disable valgrind support on sparc arches
--------------------------------------------------------------------------------


================================================================================
 openoffice.org-3.3.0-11.1.fc14 (FEDORA-2010-16770)
 OpenOffice.org comprehensive office suite
--------------------------------------------------------------------------------
Update Information:



The libebook soname was bumped in F14. OpenOffice.org dlopens this, which is why it wasn't automatically noticed that OpenOffice.org needs to be tweaked to be able to dlopen the new name
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 18 2010 CaolÃn McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-11.1
- latest milestone
* Wed Oct 13 2010 CaolÃn McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-10.1
- latest milestone
- drop integrated openoffice.org-3.3.0.ooo114703.vcl.betterlocalize.font.patch
* Fri Oct  8 2010 Dan HorÃk <dan[at]danny.cz>- 1:3.3.0-9.5
- don't build langpacks on s390(x) to workaround the limited diskspace
  on the builders
--------------------------------------------------------------------------------


================================================================================
 openoffice.org-3.3.0-12.1.fc14 (FEDORA-2010-16796)
 OpenOffice.org comprehensive office suite
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 CaolÃn McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-12.1
- Resolves: rhbz#635918 While inputting Hangul (Korean alphabet) with
  ibus, cursor does't move (dtardon)
- Resolves: rhbz#636521 crash in undo in sc
* Mon Oct 18 2010 CaolÃn McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-11.1
- latest milestone
* Wed Oct 13 2010 CaolÃn McNamara <caolanm@xxxxxxxxxx>- 1:3.3.0-10.1
- latest milestone
- drop integrated openoffice.org-3.3.0.ooo114703.vcl.betterlocalize.font.patch
* Fri Oct  8 2010 Dan HorÃk <dan[at]danny.cz>- 1:3.3.0-9.5
- don't build langpacks on s390(x) to workaround the limited diskspace
  on the builders
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #635918 - While inputting Hangul (Korean alphabet) with ibus, cursor does't move
        https://bugzilla.redhat.com/show_bug.cgi?id=635918
--------------------------------------------------------------------------------


================================================================================
 openscada-0.7.0-2.fc14 (FEDORA-2010-16780)
 Open SCADA system project
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Aleksey Popkov <aleksey@xxxxxxxxxx> - 0.7.0-2
- Build the 0.7.0 version.
* Wed Oct 13 2010 Aleksey Popkov <aleksey@xxxxxxxxxx> - 0.7.0-2
- Adding the module to self package of PostgreSQL servers.
- Build the 0.7.0 version.
--------------------------------------------------------------------------------


================================================================================
 openssh-5.5p1-22.fc14.2 (FEDORA-2010-16831)
 An open source implementation of SSH protocol versions 1 and 2
--------------------------------------------------------------------------------
Update Information:

Repaired bug in gsskex
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Jan F. Chadima <jchadima@xxxxxxxxxx> - 5.5p1-22 + 0.9.2-26
- update gsskex patch (#645389)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645389 - openssh-5.[3456]p1-gsskex.patch broken
        https://bugzilla.redhat.com/show_bug.cgi?id=645389
--------------------------------------------------------------------------------


================================================================================
 osmo-0.2.10-2.fc14 (FEDORA-2010-16781)
 Personal organizer
--------------------------------------------------------------------------------
Update Information:

This update brings back the address book, fixes the notification sounds and enables the backup feature.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 0.2.10-2
- BR gtkhtml2-devel for contacts (#644169)
- BR libtar for backup feature
- Add patch for aplay and require alsa-utils
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644169 - No Contact tab
        https://bugzilla.redhat.com/show_bug.cgi?id=644169
--------------------------------------------------------------------------------


================================================================================
 papyon-0.5.2-1.fc14 (FEDORA-2010-16778)
 Python libraries for MSN Messenger network
--------------------------------------------------------------------------------
Update Information:

Latest stable release that fixes:
* Use the right policy reference when requesting security token (fdo #31004)
* Set the peer end-points before requesting his display picture (fdo #30411)
* Don't queue all P2P chunks right away when using SB transport (fdo #29512)
* Don't send invalid command when contact is in Allow and Block lists
* Don't fail when current media that is not music (fdo #30625)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.5.2-1
- Update to 0.5.2. (#645554)
--------------------------------------------------------------------------------


================================================================================
 perl-Gtk2-MozEmbed-0.08-6.fc14.20 (FEDORA-2010-16753)
 Interface to the Mozilla embedding widget
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 0.08-6.20
- Rebuild against newer gecko
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 petit-1.0.3-1.fc14 (FEDORA-2010-16852)
 Log analysis tool for syslog, Apache and raw log files
--------------------------------------------------------------------------------
Update Information:

new upstream version
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Sandro Mathys <red at fedoraproject.org> - 1.0.3-1
- new upstream version
--------------------------------------------------------------------------------


================================================================================
 php-pear-Auth-RADIUS-1.0.7-1.fc14 (FEDORA-2010-16750)
 Wrapper Classes for the RADIUS PECL
--------------------------------------------------------------------------------
Update Information:

QA release
* Bug #11541 Dependency problem - mbretter
* Req #13160 start() is inflexible - mbretter

--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> - 1.0.7-1
- Version 1.0.7 (stable) - API 1.0.6 (stable) - QA release
- add generated Changelog
- define timezone during build
- clean define
- fix description
--------------------------------------------------------------------------------


================================================================================
 php-pear-Cache-1.5.6-1.fc14 (FEDORA-2010-16862)
 Framework for caching of arbitrary data
--------------------------------------------------------------------------------
Update Information:

QA release
* Bug #17020 PHP-Error - doconnor
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.5.6-1
- Version 1.5.6 (stable) - API 1.5.5 (stable) - QA release
- set timezone during build
--------------------------------------------------------------------------------


================================================================================
 php-pear-Console-Table-1.1.4-1.fc14 (FEDORA-2010-16879)
 Class that makes it easy to build console style tables
--------------------------------------------------------------------------------
Update Information:

QA release
* Req #14835 Add Console_Color support - yunosh
* Doc #15006 Console_table docs are totally worthless - cweiske

--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.1.4-1
- Version 1.1.4 (stable) - API 1.1.1 (stable) - QA release
- set timezone during build
- run tests in %check
--------------------------------------------------------------------------------


================================================================================
 php-pear-Net-SMTP-1.4.4-1.fc14 (FEDORA-2010-16155)
 Provides an implementation of the SMTP protocol
--------------------------------------------------------------------------------
Update Information:

Upstream changelog:

Version 1.4.4
* Corrected a problem with SMTP servers that don't support the SIZE feature. (Bug 17942)

Version 1.4.3
* Reduce peak memory usage when sending large files. (Request 17887)
* Adding support for proxy authentication. (Request 17358)

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 11 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.4.4-1
- Version 1.4.4 (stable) - API 1.1.3 (stable)
* Mon Oct 11 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.4.3-1
- Version 1.4.3 (stable) - API 1.1.3 (stable)
- set timezone during build
--------------------------------------------------------------------------------


================================================================================
 php-pear-Net-Traceroute-0.21.3-1.fc14 (FEDORA-2010-16767)
 Execute traceroute
--------------------------------------------------------------------------------
Update Information:

Upstream Changelog:
* move error-redirection to end of command-line (on Linux)
* handle arguments without a value (example: numeric) correctly

--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 0.21.3-1
- Version 0.21.3 (alpha) - API 0.21.1 (alpha)
- set timezone during build
--------------------------------------------------------------------------------


================================================================================
 php-pear-Net-URL-Mapper-0.9.1-1.fc14 (FEDORA-2010-16805)
 Simple and flexible way to build nice URLs for web applications
--------------------------------------------------------------------------------
Update Information:

QA release
* Doc #14700 Docs - till
* Bug #16050 URL generation problem with query parameters - kguest
* Bug #17271 small tweaks required to get unit tests working w phpunit3 - kguest

--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> - 0.9.1-1
- Version 0.9.1 (beta) - API 1.0.0 (stable)
- add generated Changelog
- run tests in %check
- rename Net_URL_Mapper.xml to php-pear-Net-URL-Mapper.xml
- set date.timezone during build
- clean define
--------------------------------------------------------------------------------


================================================================================
 php-pear-XML-Beautifier-1.2.2-1.fc14 (FEDORA-2010-16803)
 Class to format XML documents
--------------------------------------------------------------------------------
Update Information:

QA release
* Bug #17764 Patch: Using PCRE instead of ereg/eregi - olleolleolle
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> - 1.2.2-1
- Version 1.2.2 (stable) - API 1.2.0 (stable)
- add generated Changelog
- clean define
- rename XML_Beautifier.xml to php-pear-XML-Beautifier.xml
- set date.timezone during build
--------------------------------------------------------------------------------


================================================================================
 php-pear-XML-Parser-1.3.4-1.fc14 (FEDORA-2010-16749)
 XML parsing class based on PHP's bundled expat
--------------------------------------------------------------------------------
Update Information:

QA release
* Bug #16467 Unit tests are broken - ashnazg
* Bug #17725 Patch Avoid deprecated eregi functions - olleolleolle

--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 1.3.4-1
- Version 1.3.4 (stable) - API 1.3.0 (stable)
- define timezone during build
- run tests in %check
--------------------------------------------------------------------------------


================================================================================
 php-pear-XML-RSS-1.0.1-1.fc14 (FEDORA-2010-16791)
 RSS parser
--------------------------------------------------------------------------------
Update Information:

QA release
* Req #10404 Please add a timestamp in item array - cweiske
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> - 1.0.1-1
- Version 1.0.1 (stable) - API 1.0.0 (stable)
- add generated Changelog
- define timezone during build
- run tests in %check
--------------------------------------------------------------------------------


================================================================================
 php-pear-XML-Serializer-0.20.2-1.fc14 (FEDORA-2010-16746)
 Swiss-army knife for reading and writing XML files
--------------------------------------------------------------------------------
Update Information:

QA release
* Bug #17848 XML_Serializer uses deprecated return new as reference - zigo

--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> - 0.20.2-1
- Version 0.20.2 (beta) - API 0.20.0 (beta) - QA release
- add generated Changelog
- run phpunit test suite in %check
- clean define
- set date.timezone during build
- use version in "Requires".
--------------------------------------------------------------------------------


================================================================================
 php-pecl-mongo-1.0.10-4.fc14 (FEDORA-2010-16720)
 PHP MongoDB database driver
--------------------------------------------------------------------------------
Update Information:

new package
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645244 - Review Request: php-pecl-mongo - PHP MongoDB database driver
        https://bugzilla.redhat.com/show_bug.cgi?id=645244
--------------------------------------------------------------------------------


================================================================================
 pidgin-2.7.4-1.fc14 (FEDORA-2010-16876)
 A Gtk+ based multiprotocol instant messaging client
--------------------------------------------------------------------------------
Update Information:

New release 2.7.4

Full Upstream ChangeLog:

http://developer.pidgin.im/wiki/ChangeLog
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Stu Tomlinson <stu@xxxxxxxxxxxxx> 2.7.4-1
- 2.7.4, includes security fix for CVE-2010-3711
* Tue Oct 12 2010 Milan Crha <mcrha@xxxxxxxxxx> - 2.7.3-6
- Rebuild against newer evolution-data-server
* Wed Sep 29 2010 jkeating - 2.7.3-5
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #641921 - CVE-2010-3711 Pidgin (libpurple): Multiple DoS (crash) flaws by processing of unsanitized Base64 decoder values
        https://bugzilla.redhat.com/show_bug.cgi?id=641921
--------------------------------------------------------------------------------


================================================================================
 publican-2.3-0.fc14 (FEDORA-2010-16725)
 Common files and scripts for publishing with DocBook XML
--------------------------------------------------------------------------------
Update Information:

* Thu Oct 07 2010 Jeff Fearn <jfearn@xxxxxxxxxx> 2.3-0
- Prepend product name to product/version splash pages.
- Fix bash completion for --brand and --type.
- Use --nocolours in spec files.
- Update tocs when home/product/version pages are updated. BZ #612027
- Scroll to current entry in navigation menu.
- Highlight current book in navigation menu.
- Fix single quote in abstract/subtitle breaking RPM install. BZ #642088
- Fix RPM website not installing cleanly.
- Fix splash page icon wrap. BZ #642109
- Moved titles before: example, equation, table. BZ #638787
- Change html and PDF style for verbatim & example. BZ #638787
- Change html and PDF style for admonitions. BZ #638787
- Fix HTML footer style and layout.
- Add bump action Tech Preview.
- Fix indexterm merge missing nested nodes. BZ #643275
- Add phrase to translatable tag list. BZ #643287
- Fix POT files breaking when using HTML::Tree 4.0.
- Fix translated label missing from manually installed book. BZ #643781
- Add icon.svg to Create Book. BZ #644105
- Add XML dump options for site config.
- Fix histroy typo
- Stop max_image_width overriding XML width settings.
- Decrease white space at top and bottom of PDF.
- Fix toc links to refentry in chunked HTML. BZ #645602

--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Jeff Fearn <jfearn@xxxxxxxxxx> 2.3-0
- Prepend product name to product/version splash pages.
- Fix bash completion for --brand and --type.
- Use --nocolours in spec files.
- Update tocs when home/product/version pages are updated. BZ #612027
- Scroll to current entry in navigation menu.
- Highlight current book in navigation menu.
- Fix single quote in abstract/subtitle breaking RPM install. BZ #642088
- Fix RPM website not installing cleanly.
- Fix splash page icon wrap. BZ #642109
- Moved titles before: example, equation, table. BZ #638787
- Change html and PDF style for verbatim & example. BZ #638787
- Change html and PDF style for admonitions. BZ #638787
- Fix HTML footer style and layout.
- Add bump action Tech Preview.
- Fix indexterm merge missing nested nodes. BZ #643275
- Add phrase to translatable tag list. BZ #643287
- Fix POT files breaking when using HTML::Tree 4.0.
- Fix translated label missing from manually installed book. BZ #643781
- Add icon.svg to Create Book. BZ #644105
- Add XML dump options for site config.
- Fix histroy typo
- Stop max_image_width overriding XML width settings.
- Decrease white space at top and bottom of PDF.
- Fix toc links to refentry in chunked HTML. BZ #645602
--------------------------------------------------------------------------------


================================================================================
 publican-fedora-2.0-0.fc14 (FEDORA-2010-16763)
 Publican documentation template files for fedora
--------------------------------------------------------------------------------
Update Information:

* Sun Aug 29 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.0-0
- Extend callout graphics to 40; adjust colour and font BZ #629804 <r.landmann@xxxxxxxxxx>
- Restrict CSS style for edition to title pages to avoid applying to bibliographies <r.landmann@xxxxxxxxxx>
--------------------------------------------------------------------------------
ChangeLog:

* Sun Aug 29 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.0-0
- Extend callout graphics to 40; adjust colour and font BZ #629804 <r.landmann@xxxxxxxxxx>
- Restrict CSS style for edition to title pages to avoid applying to bibliographies <r.landmann@xxxxxxxxxx>
* Sun Aug 29 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 1.9-0
- Note ownership of MySQL trademark per Pamela Chestek <pchestek@xxxxxxxxxx>
- Low German translation from Nils-Christoph Fiedler <ncfiedler@xxxxxxxxxxxxxxxxx>
- Persian translation from Mostafa Daneshvar <info@xxxxxxxxxxxxxxxxxxxx>
--------------------------------------------------------------------------------


================================================================================
 publican-redhat-2.6-0.fc14 (FEDORA-2010-16841)
 Common documentation files for RedHat
--------------------------------------------------------------------------------
Update Information:

* Wed Oct 27 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.6-0
- Change docs URL to docs.redhat.com per Mike Hideo-Smith <mhideo@xxxxxxxxxx>

* Fri Oct 8 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.4-0
- Updated Italian translation Francesco Valente <fvalen@xxxxxxxxxx>
- rm fuzzies caused by BZ #628266 previously"

--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.6-0
- Change docs URL to docs.redhat.com per Mike Hideo-Smith <mhideo@xxxxxxxxxx>
* Fri Oct 15 2010 Jeff Fearn <jfearn@xxxxxxxxxx> 2.5-0
- Remove example override.
* Tue Oct 12 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.4-1
- respin to catch English string not replaced in translated languages.
* Fri Oct  8 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.4-0
- Updated Italian translation Francesco Valente <fvalen@xxxxxxxxxx>
- rm fuzzies caused by BZ #628266 previously
* Tue Aug 24 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.3-0
- Extend callout graphics to 40; adjust colour and font BZ #629804 <r.landmann@xxxxxxxxxx>
- Restrict CSS style for edition to title pages to avoid applying to bibliographies <r.landmann@xxxxxxxxxx>
* Tue Aug 24 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.2-0
- Note ownership of MySQL trademark per Pamela Chestek <pchestek@xxxxxxxxxx>
* Fri Aug  6 2010 RÃdiger Landmann <r.landmann@xxxxxxxxxx> 2.1-0
- Update Feedback section to link to customer portal
--------------------------------------------------------------------------------


================================================================================
 pyexiv2-0.2.2-2.fc14 (FEDORA-2010-16769)
 Python binding to exiv2
--------------------------------------------------------------------------------
Update Information:

Upgrade to 0.2.* branch.
The most interesting feature is support for XMP tags.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 MatÄj Cepl <mcepl@xxxxxxxxxx> - 0.2.2-2
- Fixing unit tests.
* Wed Aug 25 2010 MatÄj Cepl <mcepl@xxxxxxxxxx> - 0.2.2-1
- New upstream package, switch to 0.2.* version
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #627380 - Upgrade to pyexiv2 0.2.* is long overdue
        https://bugzilla.redhat.com/show_bug.cgi?id=627380
--------------------------------------------------------------------------------


================================================================================
 pygpgme-0.1-21.20101027bzr69.fc14 (FEDORA-2010-16754)
 Python module for working with OpenPGP messages
--------------------------------------------------------------------------------
Update Information:

* Fixes a major bug preventing pygpgme from working with gpgme-1.2.0. 

See bug report for test that that this update fixes issues.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 21.20101027bzr69
- New snapshot to fix BZ#647059: pygpgme error creating context on F14.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #647059 - Creating a new Context raises GpgmeError(32, 176, u'Not operational')
        https://bugzilla.redhat.com/show_bug.cgi?id=647059
--------------------------------------------------------------------------------


================================================================================
 pyparsing-1.5.5-1.fc14 (FEDORA-2010-16733)
 An object-oriented approach to text processing
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release pyparsing 1.5.5, which includes support for Python 3. Documentation has been split into pyparsing-doc package.

--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Terje Rosten <terje.rosten@xxxxxxx> - 1.5.5-1
- 1.5.5
- use buildroot macro
- fix wrong file end of line encoding
- convert files to utf-8
- doc subpackage
- python3 subpackage
- rpmlint clean
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #495324 - New version of pyparsing is available (1.5.1)
        https://bugzilla.redhat.com/show_bug.cgi?id=495324
--------------------------------------------------------------------------------


================================================================================
 python-jinja2-2.5.5-1.fc14 (FEDORA-2010-16861)
 General purpose template engine
--------------------------------------------------------------------------------
Update Information:

Update to version 2.5.5. See http://jinja.pocoo.org/changelog/ for the full list of changes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 2.5.5-1
- Update to 2.5.5.
* Wed Aug 25 2010 Thomas Moschny <thomas.moschny@xxxxxx> - 2.5.2-4
- Revert to previous behavior: fail the build on failed test.
- Rebuild for Python 3.2.
* Wed Aug 25 2010 Dan HorÃk <dan[at]danny.cz> - 2.5.2-3
- %ifnarch doesn't work on noarch package so don't fail the build on failed tests
* Wed Aug 25 2010 Dan HorÃk <dan[at]danny.cz> - 2.5.2-2
- disable the testsuite on s390(x)
--------------------------------------------------------------------------------


================================================================================
 python-simplejson-2.1.1-4.fc14 (FEDORA-2010-16737)
 Simple, fast, extensible JSON encoder/decoder for Python
--------------------------------------------------------------------------------
Update Information:

* Fix unowned directory
* Update provides filter to use Guidelines approved method
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Toshio Kuratomi <toshoi@xxxxxxxxxxxxxxxxx> - 2.1.1-4
- Simplify the %files section to own the tests directory
- Use the fedora documented filter functions to filter provides
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645070 - Unowned /usr/lib*/python*/site-packages/simplejson/tests dir
        https://bugzilla.redhat.com/show_bug.cgi?id=645070
--------------------------------------------------------------------------------


================================================================================
 qbittorrent-2.4.8-1.fc14 (FEDORA-2010-16807)
 A Bittorrent Client
--------------------------------------------------------------------------------
Update Information:

* Sun Oct 24 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.8
    - BUGFIX: Fix possible crash on manual peer ban
    - BUGFIX: Improved hostname resolution code
    - BUGFIX: Several search plugins fixed
    - BUGFIX: Auto-disable the shutdown feature
    - BUGFIX: Remember the current property tab on startup
    - BUGFIX: Fix status list widget height issue on style change
    - BUGFIX: Fix rounding issue in torrent progress display
    - BUGFIX: Fix issue when altering files priorities of a seeding torrent
    - BUGFIX: Better fix for save path editing issues in torrent addition dialog
    - BUGFIX: Peers can now be sorted by country

* Tue Oct 19 2010  - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.7
    - BUGFIX: Display the priority column when the queueing system gets enabled
    - BUGFIX: Fix encoding problem in file renaming
    - BUGFIX: Delete uneeded files on torrent "soft" deletion
    - BUGFIX: Fix issues when marking a file as 'not downloaded' causes the torrent to complete
    - BUGFIX: Improved "Set Location" and "Change save path" dialogs
    - BUGFIX: Fix display of queued seeding torrents
* Sun Oct 17 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.6
    - BUGFIX: Fix "torrent seeding after creation" feature
    - BUGFIX: The properties panel data would sometimes not match the selected torrent
    - BUGFIX: Fix detection of files at final destination when temp dir is used
    - BUGFIX: Fix moving of a torrent to an unexisting directory

* Tue Oct 12 2010 - Christophe Dumez <chris@xxxxxxxxxxxxxxx> - v2.4.5
    - BUGFIX: Remember torrent completion date correctly
    - BUGFIX: Fix feature to keep incomplete torrents in a separate folder
    - BUGFIX: Fix display of URL seeds in the UI
    - BUGFIX: Improved peer hostname resolution with caching
    - BUGFIX: Piece availability/downloaded widgets performance improvement
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.8-1
- update to 2.4.8
* Mon Oct 18 2010 leigh scott <leigh123linux@xxxxxxxxxxxxxx> - 1:2.4.6-1
- update to 2.4.6
--------------------------------------------------------------------------------


================================================================================
 qdigidoc-0.4.0-3.fc14 (FEDORA-2010-16726)
 Estonian digital signature application
--------------------------------------------------------------------------------
Update Information:

QDigiDoc is an application for digitally signing and encrypting documents in
BDoc, DDoc, and CDoc container formats. These file formats are widespread in
Estonia where they are used for storing legally binding digital signatures.
--------------------------------------------------------------------------------


================================================================================
 qt-4.7.0-8.fc14 (FEDORA-2010-16880)
 Qt toolkit
--------------------------------------------------------------------------------
Update Information:

Fix CVE-2010-1822 WebKit: DoS (crash) by processing certain SVG images.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Jaroslav Reznik <jreznik@xxxxxxxxxx> - 4.7.0-8
- QtWebKit, CVE-2010-1822: crash by processing certain SVG images (#640290)
* Mon Oct 18 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.7.0-7
- qt-devel contains residues from patch run (#639463)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #640290 - CVE-2010-1822 WebKit: DoS (crash) by processing certain SVG images
        https://bugzilla.redhat.com/show_bug.cgi?id=640290
--------------------------------------------------------------------------------


================================================================================
 qtparted-0.4.5-25.fc14 (FEDORA-2010-16755)
 Partition Magic clone written in C++ using the Qt toolkit
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Steven Pritchard <steve@xxxxxxxxx> 0.4.5-25
- Patch for "Cannot get parted version" bug (#585263).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #585263 - qtparted fails to start
        https://bugzilla.redhat.com/show_bug.cgi?id=585263
--------------------------------------------------------------------------------


================================================================================
 rawtherapee-3.0-0.24.a1.fc14 (FEDORA-2010-16818)
 Raw image processing software
--------------------------------------------------------------------------------
Update Information:

Sync with upstream for various enhancements and bug fixes.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 3.0-0.24.a1
- Sync with upstream for many enhancements and fixes
* Thu Sep  9 2010 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 3.0-0.23.a1
- Sync with upstream back to the official repository
- Various fixes and enhancements
* Thu May 27 2010 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 3.0-0.22.a1
- Sync upstream for OpenMP support
--------------------------------------------------------------------------------


================================================================================
 root-5.26.00e-1.fc14 (FEDORA-2010-16743)
 Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:

Update to version 5.26.00e - for a summary of what was fixed in this version see the release notes at:

http://root.cern.ch/drupal/content/root-version-v5-26-00-patch-release-notes

--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.26.00e-1
- Update to 5.26.00e
- Drop patch fixed upstream: root-tmva-segfault.patch
- Add Requires on root-proof to root-proofd
--------------------------------------------------------------------------------


================================================================================
 ruby-gnome2-0.90.4-1.0.fc14 (FEDORA-2010-16777)
 Ruby binding of libgnome/libgnomeui-2.x
--------------------------------------------------------------------------------
Update Information:

ruby-gnome2 0.90.4 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.4-1
- 0.90.4
* Sun Oct 24 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.3-1
- 0.90.3
* Tue Oct  5 2010 jkeating - 0.90.2-1.1
- Rebuilt for gcc bug 634757
* Mon Oct  4 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.2-1.2
- Use upstream patch for poppler 0.15.0 issue
* Sat Oct  2 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.2-1.1
- F-15: patch for poppler 0.15.0
--------------------------------------------------------------------------------


================================================================================
 rubygem-atk-0.90.4-2.fc14 (FEDORA-2010-16777)
 Ruby binding of ATK-1.0.x
--------------------------------------------------------------------------------
Update Information:

ruby-gnome2 0.90.4 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.4-2
- 0.90.4
* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.3-2
- 0.90.3
--------------------------------------------------------------------------------


================================================================================
 rubygem-glib2-0.90.4-2.fc14 (FEDORA-2010-16777)
 Ruby binding of GLib-2.x
--------------------------------------------------------------------------------
Update Information:

ruby-gnome2 0.90.4 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.4-2
- 0.90.4
* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.3-2
- 0.90.3
--------------------------------------------------------------------------------


================================================================================
 rubygem-pango-0.90.4-2.fc14 (FEDORA-2010-16777)
 Ruby binding of pango-1.x
--------------------------------------------------------------------------------
Update Information:

ruby-gnome2 0.90.4 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.4-2
- 0.90.4
* Sun Oct 24 2010 Mamoru Taska  <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.90.3-2
- 0.90.3
--------------------------------------------------------------------------------


================================================================================
 rubygem-ruby-debug-0.10.4-0.6.rc3.fc14 (FEDORA-2010-16882)
 Command line interface (CLI) for ruby-debug-base
--------------------------------------------------------------------------------
Update Information:

ruby-debug 0.10.4 rc3 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.10.4-0.6.rc2
- 0.10.4 rc3
--------------------------------------------------------------------------------


================================================================================
 rubygem-ruby-debug-base-0.10.4-0.5.rc3.fc14 (FEDORA-2010-16882)
 Core component for fast Ruby debugger
--------------------------------------------------------------------------------
Update Information:

ruby-debug 0.10.4 rc3 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 0.10.4-0.5.rc2
- 0.10.4 rc3
--------------------------------------------------------------------------------


================================================================================
 rubygem-ruby-ole-1.2.11.1-1.fc14 (FEDORA-2010-16881)
 Ruby OLE library
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #634608 - Review Request: rubygem-ruby-ole -  Ruby OLE library
        https://bugzilla.redhat.com/show_bug.cgi?id=634608
--------------------------------------------------------------------------------


================================================================================
 seamonkey-2.0.9-1.fc14 (FEDORA-2010-16736)
 Web browser, e-mail, news, IRC client, HTML editor
--------------------------------------------------------------------------------
Update Information:

Update to new upstream SeaMonkey version 2.0.9, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/seamonkey20.html#seamonkey2.0.9
--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Martin Stransky <stransky@xxxxxxxxxx> 2.0.9-1
- Update to 2.0.9
* Wed Oct 13 2010 Martin Stransky <stransky@xxxxxxxxxx> 2.0.8-2
- Added fix for mozbz#522635
--------------------------------------------------------------------------------


================================================================================
 spamassassin-3.3.2-0.1.svn1027144.fc14 (FEDORA-2010-16738)
 Spam filter for email which can be invoked from mail delivery agents
--------------------------------------------------------------------------------
Update Information:

Update to 3.3.2-svn1027144, fixing bugs 632846 613971 622221
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 3.3.2-0.1.svn1027144
- Update to 3.3.2 - svn1027144 to solve bug
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #632846 - sa-update.cron needs better status, configurability
        https://bugzilla.redhat.com/show_bug.cgi?id=632846
  [ 2 ] Bug #613971 - defined(%hash) is deprecated at /usr/share/perl5/Mail/SpamAssassin/Dns.pm line 757.
        https://bugzilla.redhat.com/show_bug.cgi?id=613971
  [ 3 ] Bug #622221 - Use of "goto" to jump into a construct is deprecated at /usr/share/perl5/Mail/SpamAssassin/Plugin/Check.pm line 409.
        https://bugzilla.redhat.com/show_bug.cgi?id=622221
--------------------------------------------------------------------------------


================================================================================
 sugar-browse-120-1.fc14 (FEDORA-2010-16875)
 Browse activity for Sugar
--------------------------------------------------------------------------------
Update Information:

v120
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Peter Robinson <pbrobinson@xxxxxxxxx> - 120-1
- new 120 release
--------------------------------------------------------------------------------


================================================================================
 sugar-write-72-1.fc14 (FEDORA-2010-16734)
 Word processor for Sugar
--------------------------------------------------------------------------------
Update Information:

v72 release
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 23 2010 Peter Robinson <pbrobinson@xxxxxxxxx> - 72-1
- New upstream 72 release
--------------------------------------------------------------------------------


================================================================================
 sunbird-1.0-0.30.b2pre.fc14 (FEDORA-2010-16843)
 Calendar application built upon Mozilla toolkit
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Thunderbird version 3.1.5, fixing multiple security issues detailed in the upstream advisory:

http://www.mozilla.org/security/known-vulnerabilities/thunderbird31.html#thunderbird3.1.5

Update also includes sunbird package rebuilt against new version of Thunderbird.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 20 2010 Jan Horak <jhorak@xxxxxxxxxx> - 1.0-0.30.b2pre
- Rebuild against Thunderbird 3.1.5
* Thu Sep 16 2010 Dan HorÃk <dan[at]danny.cz> - 1.0-0.29.b2pre
- fix build on s390
--------------------------------------------------------------------------------


================================================================================
 sympy-0.6.7-5.fc14 (FEDORA-2010-16802)
 A Python library for symbolic mathematics
--------------------------------------------------------------------------------
Update Information:

Fix ImportError.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 30 2010 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 0.6.7-5
- Patch around BZ #564504.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #564504 - Importing sympy raises an ImportError
        https://bugzilla.redhat.com/show_bug.cgi?id=564504
--------------------------------------------------------------------------------


================================================================================
 system-config-kickstart-2.8.6.1-1.fc14 (FEDORA-2010-16857)
 A graphical interface for making kickstart files
--------------------------------------------------------------------------------
Update Information:

This update fixes various bugs that prevented the version of system-config-kickstart shipped with F14 from starting.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 10 2010 Chris Lumens <clumens@xxxxxxxxxx> - 2.8.6.1-1
- Clear the partition store whenever a file is loaded (#610740). (clumens)
- Remove the key entry as well, since that command no longer exists. (clumens)
- Remove the deprecated interactive mode. (clumens)
- anaconda has changed all around, so fix the GroupSelector import. (clumens)
- Fix --help argument handling (#621379). (clumens)
- Update translation files (#617075). (clumens)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642560 - s-c-k GUI don't work
        https://bugzilla.redhat.com/show_bug.cgi?id=642560
--------------------------------------------------------------------------------


================================================================================
 system-config-printer-1.2.5-5.fc14 (FEDORA-2010-16218)
 A printer administration tool
--------------------------------------------------------------------------------
Update Information:

New upstream release that fixes several bugs.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> 1.2.5-5
- Correct newly added NPTLpdQueue.patch (bug #646002).
* Fri Oct 22 2010 Jiri Popelka <jpopelka@xxxxxxxxxx> 1.2.5-4
- Don't check ComboBoxEntry for allowed characters (bug #644131).
* Thu Oct 14 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 1.2.5-3
- Always use MFG and MDL fields for InstallPrinterDrivers interface
  (bug #643073).
* Thu Oct 14 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 1.2.5-2
- Show debug output whenever InstallPrinterDrivers is called.
* Wed Oct 13 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 1.2.5-1
- 1.2.5:
  - CMD-field matching for PPDs (bug #630058).
  - Avoid crash in jobviewer (bug #640904).
  - Don't try to modify firewall for SNMP broadcast responses
    as it doesn't work (trac #214).
  - Correctly parse snmp backend output when fetching
    Device ID (bug #639394).
  - XmlHelper: Don't indent output when saving to file (bug #639586).
  - GroupsPaneModel: Avoid crash when removing queue (bug #639586).
  - Use "Do It Later" instead of "Cancel" for adjust firewall
    dialog (trac #213).
  - Delete Bluetooth printer's queue when unpaired.
  - Show examples of IPP URIs (bug #575795).
  - Use actual Device ID strings in 'no match' debug
    message (bug #630350).
  - Prevent disallowed characters in text entry fields when adding
    new printer (bug #621199).
  - Fixed race condition while renaming printer (bug #625502).
  - Request required job attributes rather than assuming they will
    be present in response (bug #635719).
  - Discard disallowed characters when renaming (bug #612315).
  - Mark more translatable strings (bug #634436).
* Fri Oct  1 2010 Tim Waugh <twaugh@xxxxxxxxxx> - 1.2.4-3
- Use actual device ID in debug output (bug #630350).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #575795 - should make it clearer how to set up an IPP queue manually
        https://bugzilla.redhat.com/show_bug.cgi?id=575795
  [ 2 ] Bug #606798 - [abrt] crash in system-config-printer-1.2.2-4.fc13: AdvancedServerSettings.py:132:disconnect:KeyError: None
        https://bugzilla.redhat.com/show_bug.cgi?id=606798
  [ 3 ] Bug #612315 - [abrt] crash in system-config-printer-1.2.3-3.fc13: system-config-printer.py:3137:rename_printer:AttributeError: 'NoneType' object has no attribute 'name'
        https://bugzilla.redhat.com/show_bug.cgi?id=612315
  [ 4 ] Bug #614516 - Caught non-fatal exception in fillDeviceTab
        https://bugzilla.redhat.com/show_bug.cgi?id=614516
  [ 5 ] Bug #620056 - [abrt] crash in system-config-printer-1.1.19-3.fc12: monitor.py:552:refresh:KeyError: 'job-state'
        https://bugzilla.redhat.com/show_bug.cgi?id=620056
  [ 6 ] Bug #621199 - Can't add new printer
        https://bugzilla.redhat.com/show_bug.cgi?id=621199
  [ 7 ] Bug #625502 - [abrt] system-config-printer-1.2.3-3.fc13: system-config-printer.py:3151:rename_printer:AttributeError: 'NoneType' object has no attribute 'setAccepting'
        https://bugzilla.redhat.com/show_bug.cgi?id=625502
  [ 8 ] Bug #630058 - Only match PPDs with compatible CMD fields
        https://bugzilla.redhat.com/show_bug.cgi?id=630058
  [ 9 ] Bug #630350 - debug output gives wrong Device ID
        https://bugzilla.redhat.com/show_bug.cgi?id=630350
  [ 10 ] Bug #635719 - s-c-p doesn't ask before renaming a printer queue
        https://bugzilla.redhat.com/show_bug.cgi?id=635719
  [ 11 ] Bug #639394 - getNetworkPrinterMakeModel doesn't use Device ID field
        https://bugzilla.redhat.com/show_bug.cgi?id=639394
  [ 12 ] Bug #639586 - [abrt] system-config-printer-1.2.4-1.fc13: GroupsPaneModel.py:125:remove_queues:AttributeError: 'NoneType' object has no attribute 'unlinkNode'
        https://bugzilla.redhat.com/show_bug.cgi?id=639586
  [ 13 ] Bug #640904 - [abrt] system-config-printer-1.2.4-1.fc13: jobviewer.py:1783:job_event:KeyError: 13
        https://bugzilla.redhat.com/show_bug.cgi?id=640904
  [ 14 ] Bug #643073 - InstallPrinterDrivers interface needs MFG and MDL keys, not MANUFACTURER and MODEL
        https://bugzilla.redhat.com/show_bug.cgi?id=643073
  [ 15 ] Bug #644131 - [abrt] system-config-printer-1.2.5-3.fc14: system-config-printer.py:5630:entry_changed:AttributeError: 'gtk.ComboBoxEntry' object has no attribute 'get_text'
        https://bugzilla.redhat.com/show_bug.cgi?id=644131
--------------------------------------------------------------------------------


================================================================================
 thunderbird-3.1.5-1.fc14 (FEDORA-2010-16843)
 Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Thunderbird version 3.1.5, fixing multiple security issues detailed in the upstream advisory:

http://www.mozilla.org/security/known-vulnerabilities/thunderbird31.html#thunderbird3.1.5

Update also includes sunbird package rebuilt against new version of Thunderbird.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 3.1.5-1
- Update to 3.1.5
--------------------------------------------------------------------------------


================================================================================
 tigase-server-5.0.4-1.fc14 (FEDORA-2010-16811)
 Tigase Server
--------------------------------------------------------------------------------
Update Information:

Stabilizing on the released version.
Typos and wrong paths in added scripts.
--------------------------------------------------------------------------------


================================================================================
 tomboy-1.4.2-1.fc14 (FEDORA-2010-16794)
 Note-taking application
--------------------------------------------------------------------------------
Update Information:

This update addresses a problem in the web sync plugin that
can ultimately lead to data loss.
The tomboy release that ends the 1.3 development cycle.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Ray Strode <rstrode@xxxxxxxxxx> 1.4.2-1
- Update to 1.4.2
  Related: #646666
* Thu Sep 30 2010 Matthias Clasen <mclasen@xxxxxxxxxx> - 1.4.0-1
- Update to 1.4.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646666 - Note data loss with Tomboy sync, for notes created in Gnote
        https://bugzilla.redhat.com/show_bug.cgi?id=646666
--------------------------------------------------------------------------------


================================================================================
 transmission-2.11-1.fc14 (FEDORA-2010-16870)
 A lightweight GTK+ BitTorrent client
--------------------------------------------------------------------------------
Update Information:

* Thu Oct 21 2010 Pavol Åimo <palos AT fedoraproject DOT org> - 2.11-1
- updated to latest release version
- added new files, updated fix-optflag.patch

--------------------------------------------------------------------------------
ChangeLog:

* Thu Oct 21 2010 Pavol Åimo <palos AT fedoraproject DOT org> - 2.11-1
- updated to latest release version
- added new files, updated fix-optflag.patch
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #641575 - transmission-2.11 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=641575
--------------------------------------------------------------------------------


================================================================================
 tryton-1.6.1-1.fc14.1 (FEDORA-2010-16766)
 Client for the Tryton application framework
--------------------------------------------------------------------------------
Update Information:

update to bugfix release 1.6.1
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Dan HorÃk <dan[at]danny.cz> 1.6.1-1.1
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
* Tue Jul 27 2010 Dan HorÃk <dan[at]danny.cz> 1.6.1-1
- update to upstream version 1.6.1
--------------------------------------------------------------------------------


================================================================================
 tzdata-2010n-1.fc14 (FEDORA-2010-16788)
 Timezone data
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Petr Machata <pmachata@xxxxxxxxxx> - 2010n-1
- Upstream 2010m:
  - Hong Kong didn't observe DST in 1977
  - In zone.tab, remove obsolete association of Vostok Station with
    South Magnetic Pole; add association with Lake Vostok
- Upstream 2010n:
  - Change end of DST in Samoa in 2011 from 2011-04-03 0:00 to
    2011-04-03 1:00
* Mon Aug 16 2010 Petr Machata <pmachata@xxxxxxxxxx> - 2010l-2
- Upstream 2010l:
  - Change Cairo's 2010 reversion to DST from the midnight between
    September 8 and 9 to the midnight between September 9 and 10.
  - Change Gaza's 2010 return to standard time to the midnight between
    August 10 and 11.
  - Bahia de Banderas (Mexican state of Nayarit) changed time zone
    UTC-7 to new time zone UTC-6 on April 4, 2010
--------------------------------------------------------------------------------


================================================================================
 ucviewer-0.1-0.2.20101019svn4.fc14 (FEDORA-2010-16860)
 A tool for browsing Unicode tables
--------------------------------------------------------------------------------
Update Information:

New package - ucviewer - A tool for browsing Unicode tables
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644669 - Review Request: ucviewer - A tool for browsing Unicode tables
        https://bugzilla.redhat.com/show_bug.cgi?id=644669
--------------------------------------------------------------------------------


================================================================================
 unuran-1.8.0-1.fc14 (FEDORA-2010-16858)
 Universal Non-Uniform Random number generator
--------------------------------------------------------------------------------
Update Information:

see: NEWS
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Neal Becker <ndbecker2@xxxxxxxxx> - 1.8.0-1
- update to 1.8.0
--------------------------------------------------------------------------------


================================================================================
 upstart-0.6.5-10.fc14 (FEDORA-2010-16790)
 An event-driven init system
--------------------------------------------------------------------------------
Update Information:

This update sends to shell bash command to close leaking fd first and after that script defined in job.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 26 2010 Petr Lautrbach <plautrba@xxxxxxxxxx> 0.6.5-10
- send close fd command to shell first (#646894)
* Tue Oct  5 2010 jkeating - 0.6.5-9.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #646894 - File descriptor leaks in single user mode
        https://bugzilla.redhat.com/show_bug.cgi?id=646894
--------------------------------------------------------------------------------


================================================================================
 usbmuxd-1.0.6-1.fc14 (FEDORA-2010-16877)
 Daemon for communicating with Apple's iPod Touch and iPhone
--------------------------------------------------------------------------------
Update Information:

New upstream release adding support for new hardware
--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 24 2010 Peter Robinson <pbrobinson@xxxxxxxxx> 1.0.6-1
- New stable 1.0.6 release
--------------------------------------------------------------------------------


================================================================================
 util-linux-ng-2.18-4.4.fc14 (FEDORA-2010-16854)
 A collection of basic system utilities
--------------------------------------------------------------------------------
ChangeLog:

* Wed Oct 27 2010 Karel Zak <kzak@xxxxxxxxxx> 2.18-4.4
- fix #645640 - new "-s" parameter parsing in agetty does not work
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645640 - New "-s" parameter parsing in agetty does not work
        https://bugzilla.redhat.com/show_bug.cgi?id=645640
--------------------------------------------------------------------------------


================================================================================
 vala-0.10.0-2.fc14 (FEDORA-2010-16792)
 A modern programming language for GNOME
--------------------------------------------------------------------------------
Update Information:

This is an ABI-compatible update to Vala 0.9.8 currently in Fedora 14, with an updated GIR parser, GLib bindings and bug fixes. See http://live.gnome.org/Vala/Release for details
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------


================================================================================
 vanessa_adt-0.0.7-6.fc14 (FEDORA-2010-16812)
 Library of Abstract Data Types
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #518316 - Review Request: vanessa_adt - Library of Abstract Data Types
        https://bugzilla.redhat.com/show_bug.cgi?id=518316
--------------------------------------------------------------------------------


================================================================================
 wicd-1.7.0-4.fc14 (FEDORA-2010-16758)
 Wireless and wired network connection manager
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 David Cantrell <dcantrell@xxxxxxxxxx> - 1.7.0-4
- Use cPickle instead of deepcopy in configmanager.py (#645251)
* Wed Aug 25 2010 David Cantrell <dcantrell@xxxxxxxxxx> - 1.7.0-3
- Remove hard dependency on the base package by wicd-common.  The
  base package is arch-specific and contains optional components
  for wicd.  If it is present, wicd will make use of it, but it is
  not required for normal functionality.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645251 - [abrt] wicd-common-1.7.0-2.fc14: copy.py:174:deepcopy:TypeError: cannot deepcopy this pattern object
        https://bugzilla.redhat.com/show_bug.cgi?id=645251
--------------------------------------------------------------------------------


================================================================================
 wireshark-1.4.1-1.fc14 (FEDORA-2010-16739)
 Network traffic analyzer
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Jan Safranek <jsafrane@xxxxxxxxxx> - 1.4.1-1
- upgrade to 1.4.1
- see http://www.wireshark.org/docs/relnotes/wireshark-1.4.1.html
- Own the %{_libdir}/wireshark dir (#644508)
- associate *.pcap files with wireshark (#641163)
* Tue Oct  5 2010 jkeating - 1.4.0-2.1
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #644508 - Unowned %{_libdir}/wireshark dir
        https://bugzilla.redhat.com/show_bug.cgi?id=644508
  [ 2 ] Bug #641163 - wireshark association with *.pcap files required
        https://bugzilla.redhat.com/show_bug.cgi?id=641163
--------------------------------------------------------------------------------


================================================================================
 xoo-0.7-12.fc14 (FEDORA-2010-16815)
 Xoo is a graphical wrapper around xnest
--------------------------------------------------------------------------------
Update Information:

ImplicitDSOlinking fix
--------------------------------------------------------------------------------
ChangeLog:

* Sat Oct 23 2010 Paul Wouters <paul@xxxxxxxxxxxxx> - 0.7-12
- bz#599871 FTBFS xoo-0.7-11.fc12: ImplicitDSOLinking fix
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #599871 - FTBFS xoo-0.7-11.fc12: ImplicitDSOLinking
        https://bugzilla.redhat.com/show_bug.cgi?id=599871
--------------------------------------------------------------------------------


================================================================================
 xorg-x11-server-1.9.1-2.fc14 (FEDORA-2010-16760)
 X.Org X11 X server
--------------------------------------------------------------------------------
Update Information:

Update to 1.9.1 release.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Oct 25 2010 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 1.9.1-2
- This time with the source tarball.
* Mon Oct 25 2010 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 1.9.1-1
- xserver 1.9.1
- xserver-1.9.0-vbe-insanity.patch: drop, merged.
--------------------------------------------------------------------------------


================================================================================
 xpdf-3.02-16.fc14 (FEDORA-2010-16744)
 A PDF file viewer for the X Window System
--------------------------------------------------------------------------------
Update Information:

apply xpdf-3.02pl5 security patch to fix CVE-2010-3702, CVS-2010-3704
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 22 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 1:3.02-16
- apply xpdf-3.02pl5 security patch to fix:
  CVE-2010-3702, CVS-2010-3704
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #595245 - CVE-2010-3702 xpdf: uninitialized Gfx::parser pointer dereference
        https://bugzilla.redhat.com/show_bug.cgi?id=595245
  [ 2 ] Bug #638960 - CVE-2010-3704 xpdf: array indexing error in FoFiType1::parse()
        https://bugzilla.redhat.com/show_bug.cgi?id=638960
--------------------------------------------------------------------------------


================================================================================
 xulrunner-1.9.2.11-1.fc14 (FEDORA-2010-16753)
 XUL Runtime for Gecko Applications
--------------------------------------------------------------------------------
Update Information:

Update to new upstream Firefox version 3.6.11, fixing multiple security issues detailed in the upstream advisories:

http://www.mozilla.org/security/known-vulnerabilities/firefox36.html#firefox3.6.11

Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Oct 19 2010 Jan Horak <jhorak@xxxxxxxxxx> - 1.9.2.11-1
- Update to 1.9.2.11
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #642275 - CVE-2010-3175 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642275
  [ 2 ] Bug #642272 - CVE-2010-3176 Mozilla miscellaneous memory safety hazards
        https://bugzilla.redhat.com/show_bug.cgi?id=642272
  [ 3 ] Bug #642277 - CVE-2010-3179 Mozilla buffer overflow and memory corruption using document.write
        https://bugzilla.redhat.com/show_bug.cgi?id=642277
  [ 4 ] Bug #642283 - CVE-2010-3180 Mozilla use-after-free error in nsBarProp
        https://bugzilla.redhat.com/show_bug.cgi?id=642283
  [ 5 ] Bug #642286 - CVE-2010-3183 Mozilla dangling pointer vulnerability in LookupGetterOrSetter
        https://bugzilla.redhat.com/show_bug.cgi?id=642286
  [ 6 ] Bug #642290 - CVE-2010-3177 Mozilla XSS in gopher parser when parsing hrefs
        https://bugzilla.redhat.com/show_bug.cgi?id=642290
  [ 7 ] Bug #642294 - CVE-2010-3178 Mozilla cross-site information disclosure via modal calls
        https://bugzilla.redhat.com/show_bug.cgi?id=642294
  [ 8 ] Bug #642300 - CVE-2010-3182 Mozilla unsafe library loading flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=642300
--------------------------------------------------------------------------------


================================================================================
 yaws-1.89-2.fc14 (FEDORA-2010-16789)
 Web server for dynamic content written in Erlang
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test



[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux