The following Fedora 12 Security updates need testing:
https://admin.fedoraproject.org/updates/bzip2-1.0.6-1.fc12
https://admin.fedoraproject.org/updates/glpi-0.72.4-3.svn11497.fc12
https://admin.fedoraproject.org/updates/freetype-2.3.11-6.fc12
https://admin.fedoraproject.org/updates/gnome-xcf-thumbnailer-1.0-4.fc12
https://admin.fedoraproject.org/updates/horde-3.3.9-1.fc12
https://admin.fedoraproject.org/updates/mailman-2.1.12-10.fc12
https://admin.fedoraproject.org/updates/seamonkey-2.0.9-1.fc12
https://admin.fedoraproject.org/updates/pidgin-2.7.4-1.fc12
https://admin.fedoraproject.org/updates/gif2png-2.5.1-1202.fc12
https://admin.fedoraproject.org/updates/sunbird-1.0-0.26.20090916hg.fc12,thunderbird-3.0.10-1.fc12
https://admin.fedoraproject.org/updates/xpdf-3.02-16.fc12
https://admin.fedoraproject.org/updates/luci-0.22.4-2.0.b9faf868074git.fc12
https://admin.fedoraproject.org/updates/cvs-1.11.23-9.fc12
https://admin.fedoraproject.org/updates/clamav-0.96.3-1200.fc12
https://admin.fedoraproject.org/updates/nss-util-3.12.8-1.fc12,nss-softokn-3.12.8-1.fc12,nss-3.12.8-2.fc12
https://admin.fedoraproject.org/updates/bristol-0.40.7-7.fc12
https://admin.fedoraproject.org/updates/tomcat6-6.0.26-3.fc12
https://admin.fedoraproject.org/updates/pyftpdlib-0.5.2-1.fc12
https://admin.fedoraproject.org/updates/banshee-1.6.1-4.fc12
https://admin.fedoraproject.org/updates/pootle-2.1.2-1.fc12
https://admin.fedoraproject.org/updates/moodle-1.9.10-1.fc12
The following Fedora 12 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/python-nss-0.9-8.fc12
https://admin.fedoraproject.org/updates/findutils-4.4.2-7.fc12
https://admin.fedoraproject.org/updates/nss-softokn-3.12.4-16.fc12
https://admin.fedoraproject.org/updates/xorg-x11-drv-ati-6.13.0-0.22.20100316git819b4015.fc12
https://admin.fedoraproject.org/updates/binutils-2.19.51.0.14-38.fc12
https://admin.fedoraproject.org/updates/util-linux-ng-2.16.2-4.fc12
https://admin.fedoraproject.org/updates/xorg-x11-drv-synaptics-1.2.0-3.fc12
https://admin.fedoraproject.org/updates/findutils-4.4.2-5.fc12
The following builds have been pushed to Fedora 12 updates-testing
ccd2iso-0.3-6.fc12
erlang-amf-0-0.3.20100908git27329144.fc12
erlang-gettext-2.1.0-0.2.20101022gitb55cb72.fc12
erlang-neotoma-1.4-2.fc12
erlang-xmlrpc-1.13-2.fc12
gnome-xcf-thumbnailer-1.0-4.fc12
kde-plasma-translatoid-1.30-1.fc12
libisofs-0.6.38-1.fc12
libmikey-0.8.0-0.2.20100127svn3750.fc12
libmsip-0.8.0-0.1.20100629svn3775.fc12
pootle-2.1.2-1.fc12
Details about builds:
================================================================================
ccd2iso-0.3-6.fc12 (FEDORA-2010-17022)
CloneCD image to ISO image file converter
--------------------------------------------------------------------------------
Update Information:
The ccd2iso project converts CD backup files created using the non-free CloneCD
program to a format understood by most Free Software CD writing programs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #562585 - Review Request: ccd2iso - CloneCD image to ISO image file converter
https://bugzilla.redhat.com/show_bug.cgi?id=562585
--------------------------------------------------------------------------------
================================================================================
erlang-amf-0-0.3.20100908git27329144.fc12 (FEDORA-2010-16989)
Erlang Action Message Format Library
--------------------------------------------------------------------------------
Update Information:
* Added missing exported function
* Added workaround for missing BIFs in Erlang/OTP R12B
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 31 2010 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0-0.3.20100908git27329144
- Fixed missing BIFs in Erlang/OTP R12B
- Exported one more function
--------------------------------------------------------------------------------
================================================================================
erlang-gettext-2.1.0-0.2.20101022gitb55cb72.fc12 (FEDORA-2010-16994)
Erlang internationalization library
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #645801 - Review Request: erlang-gettext - Erlang internationalization library
https://bugzilla.redhat.com/show_bug.cgi?id=645801
--------------------------------------------------------------------------------
================================================================================
erlang-neotoma-1.4-2.fc12 (FEDORA-2010-17002)
Erlang library and packrat parser-generator for parsing expression grammars
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #639284 - Review Request: erlang-neotoma - Erlang library and packrat parser-generator for parsing expression grammars
https://bugzilla.redhat.com/show_bug.cgi?id=639284
--------------------------------------------------------------------------------
================================================================================
erlang-xmlrpc-1.13-2.fc12 (FEDORA-2010-16996)
HTTP 1.1 compliant XML-RPC library for Erlang
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #645288 - Review Request: erlang-xmlrpc - HTTP 1.1 compliant XML-RPC library for Erlang
https://bugzilla.redhat.com/show_bug.cgi?id=645288
--------------------------------------------------------------------------------
================================================================================
gnome-xcf-thumbnailer-1.0-4.fc12 (FEDORA-2010-17041)
Thumbnailer for XCF files
--------------------------------------------------------------------------------
Update Information:
This update fixes potential stack-based buffer overflows that can
allow remote attackers to cause a denial of service (crash) and
possibly execute arbitrary code via a crafted image that causes a
conversion to a location "above or to the left of the canvas."
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 29 2010 ELMORABITY Mohamed <melmorabity@xxxxxxxxxxxxxxxxx> 1.0-4
- Fix RHBZ #64797 (CVE-2009-2175)
- Update GConf scriptlets to latest specifications
* Wed Feb 17 2010 ELMORABITY Mohamed <melmorabity@xxxxxxxxxxxxxxxxx> 1.0-3
- Remove %config tag for GConf schema files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #647907 - CVE-2009-2175 xcftools: stack-based buffer overflow in flatten.c
https://bugzilla.redhat.com/show_bug.cgi?id=647907
--------------------------------------------------------------------------------
================================================================================
kde-plasma-translatoid-1.30-1.fc12 (FEDORA-2010-17039)
Translator Using Google Translator
--------------------------------------------------------------------------------
Update Information:
- Version upgrade
- Correct Json parser with new Google Api.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #483730 - Review Request: kde-plasma-translatoid - A Google Translation Plasmoid
https://bugzilla.redhat.com/show_bug.cgi?id=483730
[ 2 ] Bug #633712 - translatoid widget does not translate
https://bugzilla.redhat.com/show_bug.cgi?id=633712
--------------------------------------------------------------------------------
================================================================================
libisofs-0.6.38-1.fc12 (FEDORA-2010-17023)
Library to create ISO 9660 disk images
--------------------------------------------------------------------------------
Update Information:
This release mainly provides a new feature for ISO 9660 images on USB sticks.
Changes towards previous version 0.6.34:
* New API function iso_write_opts_set_part_offset() controls creation of an MBR with a first partiton table entry that bears non-zero start address. A second set of volume descriptors and directory tree+tables gets created which can be used to mount the image at the partition start.
* Hiding all non-API symbols from the linker by use of --version-script
* Automatic C++ detection in libisofs.h by using macro __cplusplus
* Corrected several memory leaks and potential NULL pointer evaluations in case of memory shortage.
This release can use libjte to produce jigdo files along with the ISO image. Further filesystem images may be appended as MBR partitions 1 to 4. The capability was added to produce boot blocks for computers with MIPS CPU.
Changes towards previous version 0.6.36:
* New API calls iso_write_opts_attach_jte() and iso_write_opts_detach_jte() allow to use libjte for jigdo production.
* New API call iso_write_opts_set_tail_blocks() for tail padding inside ISO image.
* New API call iso_image_generator_is_running() to learn when the write thread is done.
* New API calls iso_image_add_mips_boot_file(), iso_image_get_mips_boot_files(), iso_image_give_up_mips_boot().
* New API call iso_write_opts_set_partition_img() for appending e.g. a small empty FAT12 filesystem which may be used on USB stick.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 31 2010 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.6.38-1
- Upgrade to 0.6.38
--------------------------------------------------------------------------------
================================================================================
libmikey-0.8.0-0.2.20100127svn3750.fc12 (FEDORA-2010-17016)
A C++ library implementing the Multimedia Internet KEYing protocol
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #626701 - Review Request: libmikey - A C++ library implementing the Multimedia Internet KEYing protocol
https://bugzilla.redhat.com/show_bug.cgi?id=626701
--------------------------------------------------------------------------------
================================================================================
libmsip-0.8.0-0.1.20100629svn3775.fc12 (FEDORA-2010-17007)
A C++ library implementing the SIP protocol
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #626726 - Review Request: libmsip - A C++ library implementing the SIP protocol
https://bugzilla.redhat.com/show_bug.cgi?id=626726
--------------------------------------------------------------------------------
================================================================================
pootle-2.1.2-1.fc12 (FEDORA-2010-16990)
Localization and translation management web application
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.2
- Fix XSS on translate page
- Improved monolingual support
- Improved GNU style project support
- New translations: Zulu, Greek, Danish, Acoli and Fulah
- Completed translations: Uighur, Chinese (China), Catalan, Asturian, Akan and Ganda
- Various bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 29 2010 Dwayne Bailey <dwayne@xxxxxxxxxxxxxxxx> - 2.1.2-1
- Update to 2.1.2
- Fix XSS on translate page
- Improved monolingual support
- Improved GNU style project support
- New translations: Zulu, Greek, Danish, Acoli and Fulah
- Completed translations: Uighur, Chinese (China), Catalan, Asturian, Akan
and Ganda
- Various bug fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #647832 - pootle: XSS via 'match_names' parameter on translate.html page
https://bugzilla.redhat.com/show_bug.cgi?id=647832
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
