The following Fedora 13 Security updates need testing: https://admin.fedoraproject.org/updates/glpi-0.72.4-3.svn11497.fc13 https://admin.fedoraproject.org/updates/banshee-1.6.1-4.fc13 https://admin.fedoraproject.org/updates/perl-libwww-perl-5.837-2.fc13 https://admin.fedoraproject.org/updates/gnome-xcf-thumbnailer-1.0-4.fc13 https://admin.fedoraproject.org/updates/monotone-0.48.1-1.fc13 https://admin.fedoraproject.org/updates/horde-3.3.9-1.fc13 https://admin.fedoraproject.org/updates/mailman-2.1.12-16.fc13 https://admin.fedoraproject.org/updates/luci-0.22.4-2.0.b9faf868074git.fc13 https://admin.fedoraproject.org/updates/xpdf-3.02-16.fc13 https://admin.fedoraproject.org/updates/sunbird-1.0-0.30.b2pre.fc13,thunderbird-3.1.6-1.fc13 https://admin.fedoraproject.org/updates/clamav-0.96.3-1400.fc13 https://admin.fedoraproject.org/updates/tomcat6-6.0.26-11.fc13 https://admin.fedoraproject.org/updates/bristol-0.40.7-7.fc13 https://admin.fedoraproject.org/updates/moodle-1.9.10-1.fc13 https://admin.fedoraproject.org/updates/seamonkey-2.0.9-1.fc13 https://admin.fedoraproject.org/updates/pidgin-2.7.4-1.fc13 https://admin.fedoraproject.org/updates/pootle-2.1.2-1.fc13 The following Fedora 13 Critical Path updates have yet to be approved: https://admin.fedoraproject.org/updates/chkconfig-1.3.48-1.fc13 https://admin.fedoraproject.org/updates/tzdata-2010n-1.fc13 https://admin.fedoraproject.org/updates/gnome-settings-daemon-2.30.1-9.fc13 https://admin.fedoraproject.org/updates/selinux-policy-3.7.19-69.fc13 https://admin.fedoraproject.org/updates/mingetty-1.08-5.fc13 https://admin.fedoraproject.org/updates/upstart-0.6.5-7.fc13 https://admin.fedoraproject.org/updates/libgsf-1.14.18-1.fc13 https://admin.fedoraproject.org/updates/goddard-kde-theme-13.1.0-1.fc13,fedora-logos-13.0.2-2.fc13,generic-logos-13.0.1-2.fc13,kde-settings-4.4-21.fc13 https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13 https://admin.fedoraproject.org/updates/openldap-2.4.21-11.fc13 https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc13,nss-util-3.12.7-2.fc13,nss-softokn-3.12.7-3.fc13,nspr-4.8.6-1.fc13 https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13 The following builds have been pushed to Fedora 13 updates-testing ccd2iso-0.3-6.fc13 erlang-amf-0-0.3.20100908git27329144.fc13 erlang-gettext-2.1.0-0.2.20101022gitb55cb72.fc13 erlang-neotoma-1.4-2.fc13 erlang-xmlrpc-1.13-2.fc13 ghc-regex-tdfa-1.1.6-1.fc13 ghc-split-0.1.2.1-1.fc13 gnome-xcf-thumbnailer-1.0-4.fc13 kde-plasma-translatoid-1.30-1.fc13 libisofs-0.6.38-1.fc13 libmikey-0.8.0-0.2.20100127svn3750.fc13 libmsip-0.8.0-0.1.20100629svn3775.fc13 pootle-2.1.2-1.fc13 postgresql-plparrot-0.04-2.fc13 q4wine-0.120-3.fc13 rubygem-whiskey_disk-0.5.3-1.fc13 wine-1.3.6-1.fc13 xfce4-dev-tools-4.7.3-1.fc13 Details about builds: ================================================================================ ccd2iso-0.3-6.fc13 (FEDORA-2010-16993) CloneCD image to ISO image file converter -------------------------------------------------------------------------------- Update Information: The ccd2iso project converts CD backup files created using the non-free CloneCD program to a format understood by most Free Software CD writing programs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #562585 - Review Request: ccd2iso - CloneCD image to ISO image file converter https://bugzilla.redhat.com/show_bug.cgi?id=562585 -------------------------------------------------------------------------------- ================================================================================ erlang-amf-0-0.3.20100908git27329144.fc13 (FEDORA-2010-16997) Erlang Action Message Format Library -------------------------------------------------------------------------------- Update Information: * Added missing exported function * Added workaround for missing BIFs in Erlang/OTP R12B -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 31 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0-0.3.20100908git27329144 - Fixed missing BIFs in Erlang/OTP R12B - Exported one more function -------------------------------------------------------------------------------- ================================================================================ erlang-gettext-2.1.0-0.2.20101022gitb55cb72.fc13 (FEDORA-2010-16987) Erlang internationalization library -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #645801 - Review Request: erlang-gettext - Erlang internationalization library https://bugzilla.redhat.com/show_bug.cgi?id=645801 -------------------------------------------------------------------------------- ================================================================================ erlang-neotoma-1.4-2.fc13 (FEDORA-2010-16988) Erlang library and packrat parser-generator for parsing expression grammars -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #639284 - Review Request: erlang-neotoma - Erlang library and packrat parser-generator for parsing expression grammars https://bugzilla.redhat.com/show_bug.cgi?id=639284 -------------------------------------------------------------------------------- ================================================================================ erlang-xmlrpc-1.13-2.fc13 (FEDORA-2010-17012) HTTP 1.1 compliant XML-RPC library for Erlang -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #645288 - Review Request: erlang-xmlrpc - HTTP 1.1 compliant XML-RPC library for Erlang https://bugzilla.redhat.com/show_bug.cgi?id=645288 -------------------------------------------------------------------------------- ================================================================================ ghc-regex-tdfa-1.1.6-1.fc13 (FEDORA-2010-17040) Haskell regular expression library -------------------------------------------------------------------------------- References: [ 1 ] Bug #595697 - Review Request: ghc-regex-tdfa - Haskell "tagged" DFA regex engine https://bugzilla.redhat.com/show_bug.cgi?id=595697 -------------------------------------------------------------------------------- ================================================================================ ghc-split-0.1.2.1-1.fc13 (FEDORA-2010-17009) Combinator library for splitting lists -------------------------------------------------------------------------------- Update Information: Combinator library for splitting lists. -------------------------------------------------------------------------------- References: [ 1 ] Bug #630509 - Review Request: ghc-split - Combinator library for splitting lists https://bugzilla.redhat.com/show_bug.cgi?id=630509 -------------------------------------------------------------------------------- ================================================================================ gnome-xcf-thumbnailer-1.0-4.fc13 (FEDORA-2010-17004) Thumbnailer for XCF files -------------------------------------------------------------------------------- Update Information: This update fixes potential stack-based buffer overflows that can allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted image that causes a conversion to a location "above or to the left of the canvas." -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 29 2010 ELMORABITY Mohamed <melmorabity@xxxxxxxxxxxxxxxxx> 1.0-4 - Fix RHBZ #64797 (CVE-2009-2175) - Update GConf scriptlets to latest specifications -------------------------------------------------------------------------------- References: [ 1 ] Bug #647907 - CVE-2009-2175 xcftools: stack-based buffer overflow in flatten.c https://bugzilla.redhat.com/show_bug.cgi?id=647907 -------------------------------------------------------------------------------- ================================================================================ kde-plasma-translatoid-1.30-1.fc13 (FEDORA-2010-17001) Translator Using Google Translator -------------------------------------------------------------------------------- Update Information: - Version upgrade - Correct Json parser with new Google Api. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #483730 - Review Request: kde-plasma-translatoid - A Google Translation Plasmoid https://bugzilla.redhat.com/show_bug.cgi?id=483730 [ 2 ] Bug #633712 - translatoid widget does not translate https://bugzilla.redhat.com/show_bug.cgi?id=633712 -------------------------------------------------------------------------------- ================================================================================ libisofs-0.6.38-1.fc13 (FEDORA-2010-17037) Library to create ISO 9660 disk images -------------------------------------------------------------------------------- Update Information: This release mainly provides a new feature for ISO 9660 images on USB sticks. Changes towards previous version 0.6.34: * New API function iso_write_opts_set_part_offset() controls creation of an MBR with a first partiton table entry that bears non-zero start address. A second set of volume descriptors and directory tree+tables gets created which can be used to mount the image at the partition start. * Hiding all non-API symbols from the linker by use of --version-script * Automatic C++ detection in libisofs.h by using macro __cplusplus * Corrected several memory leaks and potential NULL pointer evaluations in case of memory shortage. This release can use libjte to produce jigdo files along with the ISO image. Further filesystem images may be appended as MBR partitions 1 to 4. The capability was added to produce boot blocks for computers with MIPS CPU. Changes towards previous version 0.6.36: * New API calls iso_write_opts_attach_jte() and iso_write_opts_detach_jte() allow to use libjte for jigdo production. * New API call iso_write_opts_set_tail_blocks() for tail padding inside ISO image. * New API call iso_image_generator_is_running() to learn when the write thread is done. * New API calls iso_image_add_mips_boot_file(), iso_image_get_mips_boot_files(), iso_image_give_up_mips_boot(). * New API call iso_write_opts_set_partition_img() for appending e.g. a small empty FAT12 filesystem which may be used on USB stick. -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 31 2010 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.6.38-1 - Upgrade to 0.6.38 -------------------------------------------------------------------------------- ================================================================================ libmikey-0.8.0-0.2.20100127svn3750.fc13 (FEDORA-2010-17013) A C++ library implementing the Multimedia Internet KEYing protocol -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #626701 - Review Request: libmikey - A C++ library implementing the Multimedia Internet KEYing protocol https://bugzilla.redhat.com/show_bug.cgi?id=626701 -------------------------------------------------------------------------------- ================================================================================ libmsip-0.8.0-0.1.20100629svn3775.fc13 (FEDORA-2010-17014) A C++ library implementing the SIP protocol -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #626726 - Review Request: libmsip - A C++ library implementing the SIP protocol https://bugzilla.redhat.com/show_bug.cgi?id=626726 -------------------------------------------------------------------------------- ================================================================================ pootle-2.1.2-1.fc13 (FEDORA-2010-16998) Localization and translation management web application -------------------------------------------------------------------------------- Update Information: Update to 2.1.2 - Fix XSS on translate page - Improved monolingual support - Improved GNU style project support - New translations: Zulu, Greek, Danish, Acoli and Fulah - Completed translations: Uighur, Chinese (China), Catalan, Asturian, Akan and Ganda - Various bug fixes -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 29 2010 Dwayne Bailey <dwayne@xxxxxxxxxxxxxxxx> - 2.1.2-1 - Update to 2.1.2 - Fix XSS on translate page - Improved monolingual support - Improved GNU style project support - New translations: Zulu, Greek, Danish, Acoli and Fulah - Completed translations: Uighur, Chinese (China), Catalan, Asturian, Akan and Ganda - Various bug fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #647832 - pootle: XSS via 'match_names' parameter on translate.html page https://bugzilla.redhat.com/show_bug.cgi?id=647832 -------------------------------------------------------------------------------- ================================================================================ postgresql-plparrot-0.04-2.fc13 (FEDORA-2010-17019) A PostgreSQL procedural language for the Parrot virtual machine -------------------------------------------------------------------------------- References: [ 1 ] Bug #634091 - Review Request: postgresql-plparrot - A PostgreSQL procedural language for the Parrot virtual machine https://bugzilla.redhat.com/show_bug.cgi?id=634091 -------------------------------------------------------------------------------- ================================================================================ q4wine-0.120-3.fc13 (FEDORA-2010-17008) Qt4 GUI for wine -------------------------------------------------------------------------------- Update Information: Q4Wine is a qt4 GUI for wine. It will help you manage wine prefixes and installed applications. General features: * Can export QT color theme into wine colors settings. * Can easy work with different wine versions at same time; * Easy creating, deleting and managing prefixes (WINEPREFIX); * Easy controlling for wine process; * Autostart icons support; * Easy cd-image use; * You can extract icons from PE files (.exe .dll); * Easy backup and restore for managed prefixes. * Winetriks support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #640889 - Review Request: q4wine - Qt4 GUI for wine https://bugzilla.redhat.com/show_bug.cgi?id=640889 -------------------------------------------------------------------------------- ================================================================================ rubygem-whiskey_disk-0.5.3-1.fc13 (FEDORA-2010-16999) Ruby tool for embarrassingly fast deployments -------------------------------------------------------------------------------- References: [ 1 ] Bug #646573 - Review Request: rubygem-whiskey_disk - Ruby tool for embarrassingly fast deployments https://bugzilla.redhat.com/show_bug.cgi?id=646573 -------------------------------------------------------------------------------- ================================================================================ wine-1.3.6-1.fc13 (FEDORA-2010-17003) A Windows 16/32/64 bit emulator -------------------------------------------------------------------------------- Update Information: * Support for GStreamer filters. * Mapping of standard cursors to native desktop cursors. * Improved support for installers with services. * Many MSXML improvements. * Decoder for TGA-format images. * Translation updates. * Various bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 29 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de> - 1.3.6-1 - version upgrade - rebase winepulse configure patch - add gstreamer BR for new gstreamer support - add libtiff BR for new tiff support -------------------------------------------------------------------------------- ================================================================================ xfce4-dev-tools-4.7.3-1.fc13 (FEDORA-2010-16992) Xfce developer tools -------------------------------------------------------------------------------- Update Information: New upstream version that fixes some bugs, mainly sanity checks. This update is targeted at the release of Xfce 4.8. -------------------------------------------------------------------------------- ChangeLog: * Sun Oct 31 2010 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 4.7.3-1 - Update to 4.7.3 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test