Fedora 12 updates-testing report

updates@xxxxxxxxxxxxxxxxx · Mon, 08 Nov 2010 22:48:58 +0000

The following Fedora 12 Security updates need testing:

    https://admin.fedoraproject.org/updates/bzip2-1.0.6-1.fc12
    https://admin.fedoraproject.org/updates/seamonkey-2.0.10-1.fc12
    https://admin.fedoraproject.org/updates/mailman-2.1.12-10.fc12
    https://admin.fedoraproject.org/updates/bugzilla-3.4.9-1.fc12
    https://admin.fedoraproject.org/updates/gif2png-2.5.1-1202.fc12
    https://admin.fedoraproject.org/updates/bristol-0.40.7-7.fc12
    https://admin.fedoraproject.org/updates/pam-1.1.1-6.fc12
    https://admin.fedoraproject.org/updates/banshee-1.6.1-4.fc12
    https://admin.fedoraproject.org/updates/clamav-0.96.4-1200.fc12
    https://admin.fedoraproject.org/updates/pidgin-2.7.5-1.fc12
    https://admin.fedoraproject.org/updates/moodle-1.9.10-1.fc12
    https://admin.fedoraproject.org/updates/libsmi-0.4.8-5.fc12
    https://admin.fedoraproject.org/updates/proftpd-1.3.3c-1.fc12
    https://admin.fedoraproject.org/updates/mod_fcgid-2.3.6-1.fc12

The following Fedora 12 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/pungi-2.0.20.1-1.fc12
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.1-10.git20100831.fc12
    https://admin.fedoraproject.org/updates/pam-1.1.1-6.fc12
    https://admin.fedoraproject.org/updates/findutils-4.4.2-7.fc12
    https://admin.fedoraproject.org/updates/nss-softokn-3.12.4-16.fc12
    https://admin.fedoraproject.org/updates/xorg-x11-drv-ati-6.13.0-0.22.20100316git819b4015.fc12
    https://admin.fedoraproject.org/updates/binutils-2.19.51.0.14-38.fc12
    https://admin.fedoraproject.org/updates/util-linux-ng-2.16.2-4.fc12
    https://admin.fedoraproject.org/updates/xorg-x11-drv-synaptics-1.2.0-3.fc12
    https://admin.fedoraproject.org/updates/findutils-4.4.2-5.fc12

The following builds have been pushed to Fedora 12 updates-testing

    clamav-0.96.4-1200.fc12
    cmake-fedora-0.3.1-1.fc12
    django-tracking-0.2.7-1.fc12
    mod_fcgid-2.3.6-1.fc12
    perl-SystemPerl-1.336-1.fc12
    perl-Verilog-Perl-3.304-1.fc12
    uget-1.6.1-1.fc12
    verilator-3.805-1.fc12

Details about builds:

================================================================================
 clamav-0.96.4-1200.fc12 (FEDORA-2010-17483)
 End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:

--------------------------------------------------------------------------------
ChangeLog:

* Sun Oct 31 2010 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.96.4-1200
- updated to 0.96.4
* Wed Sep 22 2010 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.96.3-1200
- updated to 0.96.3
- fixes CVE-2010-0405 in shipped bzlib.c copy
* Sun Aug 15 2010 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.96.2-1200
- updated to 0.96.2
- rediffed patches
- removed the -jit-disable patch which is replaced upstream by a more
  detailed configuration option.
* Wed Aug 11 2010 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx>
- use 'groupmems', not 'usermod' to add a user to a group because
  'usermod' does not work when user does not exist in local /etc/passwd
* Sun Jun 20 2010 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx> - 0.96.1-1200
- updated to 0.96.1
- applied upstream patch which allows to disable JIT compiler (#573191)
- disabled JIT compiler by default
- removed explicit 'pkgconfig' requirements in -devel (#533956)
- added some BRs
- rediffed patches
* Sat Nov 21 2009 Enrico Scholz <enrico.scholz@xxxxxxxxxxxxxxxxxxxxxxxxx>
- adjusted chkconfig positions for clamav-milter (#530101)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #627882 - CVE-2010-0405 bzip2: integer overflow flaw in BZ2_decompress
        https://bugzilla.redhat.com/show_bug.cgi?id=627882
--------------------------------------------------------------------------------

================================================================================
 cmake-fedora-0.3.1-1.fc12 (FEDORA-2010-17463)
 CMake helper modules for fedora developers
--------------------------------------------------------------------------------
Update Information:

- SETTING_FILE_GET_VARIABLES_PATTERN:
Fixed: unable to use relative path problem.
Fixed: UNQUOTE and NOESCAPE_SEMICOLON can now used together.
- New macro: SETTING_FILE_GET_VARIABLES_PATTERN
- New macro: PACK_SOURCE_FILES
- Fixed: Variable lost in SETTING_FILE_GET_ALL_VARIABLES and
SETTING_FILE_GET_VARABLE.
- Fixed: Variable values won't apply in SETTING_FILE_GET_ALL_VARIABLES
- UseUninstall finds cmake_uninstall.in in additional paths:
/usr/share/cmake/Modules and /usr/share/cmake/Modules
- Minor improvements in CMakeLists.txt and project.spec.in templates.
- Add new project building script.
- Build for EL-5, EL-6
- Add el5, el6 build.
- Fixed errors in UseFedpkg.
- Fixed target: tag
- Fixed target: bodhi_new
Initial package submission.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Nov  8 2010 Ding-Yi Chen <dchen at redhat.com> - 0.3.1-1
- SETTING_FILE_GET_VARIABLES_PATTERN:
  Fixed: unable to use relative path problem.
  Fixed: UNQUOTE and NOESCAPE_SEMICOLON can now used together.
* Wed Oct 20 2010 Ding-Yi Chen <dchen at redhat.com> - 0.2.4-1
- cmake-fedora-newprj.sh: New option "-e" that extract value from specified
  spec or spec.in.
- Now usage is printed instead of junk output when project_name is not given.
- Source code (whatever is packed) and tarball dependency now checked.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #639816 - Review Request: cmake-fedora - CMake helper modules for fedora developers
        https://bugzilla.redhat.com/show_bug.cgi?id=639816
--------------------------------------------------------------------------------

================================================================================
 django-tracking-0.2.7-1.fc12 (FEDORA-2010-17429)
 Django site visitor tracking, including basic blacklisting
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #645354 - Review Request: django-tracking - Django site visitor tracking, including basic blacklisting
        https://bugzilla.redhat.com/show_bug.cgi?id=645354
--------------------------------------------------------------------------------

================================================================================
 mod_fcgid-2.3.6-1.fc12 (FEDORA-2010-17474)
 FastCGI interface module for Apache 2
--------------------------------------------------------------------------------
Update Information:

This update to the current upstream maintenance release includes a fix for a possible stack buffer overwrite (CVE-2010-3872).

It also changes the default value of FcgidMaxRequestLen from 1GB to 128K; administrators should change this to an appropriate value based on site requirements.

Other changes are described in CHANGES-FCGID document included in the package.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Nov  4 2010 Paul Howarth <paul@xxxxxxxxxxxx> 2.3.6-1
- Update to 2.3.6 (see CHANGES-FCGID for full details)
  - Fix possible stack buffer overwrite (CVE-2010-3872)
  - Change the default for FcgidMaxRequestLen from 1GB to 128K; administrators
    should change this to an appropriate value based on site requirements
  - Correct a problem that resulted in FcgidMaxProcesses being ignored in some
    situations
  - Return 500 instead of segfaulting when the application returns no output
- Don't include SELinux policy for RHEL-5 builds since RHEL >= 5.5 includes it
- Explicitly require /bin/sed for fixconf script
* Tue Jun  8 2010 Paul Howarth <paul@xxxxxxxxxxxx> 2.3.5-2
- SELinux policy module not needed for RHEL-6 onwards
* Wed Jan 27 2010 Paul Howarth <paul@xxxxxxxxxxxx> 2.3.5-1
- Update to 2.3.5 (see CHANGES-FCGID for details)
- Drop upstream svn patch
--------------------------------------------------------------------------------

================================================================================
 perl-SystemPerl-1.336-1.fc12 (FEDORA-2010-17422)
 SystemPerl Perl module
--------------------------------------------------------------------------------
Update Information:

Fix support for Verilog-Perl 3.305; removing defines, bug300.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Nov  7 2010 Chitlesh GOORAH < chitlesh [AT] fedoraproject DOT org > 1.336-1
- new upstream release
* Thu Jul  1 2010 Chitlesh GOORAH < chitlesh [AT] fedoraproject DOT org > 1.335-1
- new upstream release
* Thu Mar  4 2010 Chitlesh GOORAH < chitlesh [AT] fedoraproject DOT org > 1.334-1
- new upstream release
* Tue Sep 15 2009 Chitlesh GOORAH < chitlesh [AT] fedoraproject DOT org > 1.331-1
- New upsteam release
--------------------------------------------------------------------------------

================================================================================
 perl-Verilog-Perl-3.304-1.fc12 (FEDORA-2010-17441)
 Verilog parsing routines
--------------------------------------------------------------------------------
Update Information:

Fix wrong filename on include file errors, bug289. [Brad Parker]

--------------------------------------------------------------------------------
ChangeLog:

* Sat Nov  6 2010 Chitlesh Goorah <chitlesh [AT] fedoraproject DOT org> 3.304-1
- New upstream release
--------------------------------------------------------------------------------

================================================================================
 uget-1.6.1-1.fc12 (FEDORA-2010-17453)
 Download manager using GTK+ and libcurl
--------------------------------------------------------------------------------
Update Information:

New version 1.6.1 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Oct 29 2010 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1.6.1-1
- 1.6.1
--------------------------------------------------------------------------------

================================================================================
 verilator-3.805-1.fc12 (FEDORA-2010-17450)
 A fast simulator for synthesizable Verilog
--------------------------------------------------------------------------------
Update Information:

Verilator 3.805 2010/11/02

Add warning when directory contains spaces, msg378. [Salman Sheikh]
Fix wrong filename on include file errors, bug289. [Brad Parker]
Fix segfault on SystemVerilog âoutput wire foo=0â, bug291. [Joshua Wise]
Fix DPI export name not found, msg369. [Terry Chen]

--------------------------------------------------------------------------------
ChangeLog:

* Sun Nov  7 2010 Chitlesh Goorah <chitlesh [AT] fedoraproject DOT org> - 3.805-1
- updated to 3.805
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test