The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/util-linux-ng-2.18-4.8.fc14
https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc14
https://admin.fedoraproject.org/updates/socat-1.7.1.3-1.fc14
https://admin.fedoraproject.org/updates/mod_auth_mysql-3.0.0-12.fc14
https://admin.fedoraproject.org/updates/postgresql-8.4.7-1.fc14
https://admin.fedoraproject.org/updates/tor-0.2.1.29-1400.fc14
https://admin.fedoraproject.org/updates/exim-4.72-2.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/hunspell-1.2.12-4.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-8.fc14
https://admin.fedoraproject.org/updates/pinentry-0.8.1-1.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-ati-6.13.1-0.4.20100705git37b348059.fc14
https://admin.fedoraproject.org/updates/perl-5.12.3-141.fc14
https://admin.fedoraproject.org/updates/nss-3.12.9-2.fc14
https://admin.fedoraproject.org/updates/dmidecode-2.11-1.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-geode-2.11.11-2.fc14
The following builds have been pushed to Fedora 14 updates-testing
CharLS-1.0-1.fc14
LinLog-0.4-5.fc14
PyYAML-3.09-7.fc14
backintime-1.0.6-2.fc14
cvs2svn-2.3.0-0.4.r5319svn.fc14
dxcc-20080225-10.fc14
gimp-2.6.11-6.fc14
gpodder-2.12-2.fc14
groonga-1.0.8-1.fc14
gtorrentviewer-0.2b-21.fc14
jemalloc-2.1.1-1.fc14
jgroups-2.2.9.2-7.fc14
kpartsplugin-0.0.1-0.2.20101216.fc14
me-tv-1.3.6-1.fc14
mfiler3-4.2.1-2.fc14
mingw32-tcl-8.5.9-2.fc14
perl-HTML-Selector-XPath-0.04-1.fc14
perl-Log-Any-0.11-1.fc14
perl-Test-WWW-Mechanize-PSGI-0.35-1.fc14
pyxmlsec-0.3.0-8.fc14
rear-1.9.0-1.fc14
saphire-1.2.6-1.fc14
setroubleshoot-plugins-3.0.13-1.fc14
sugar-0.90.3-4.fc14
sugar-toolkit-0.90.2-3.fc14
telepathy-sofiasip-0.6.6-1.fc14
tortoisehg-1.1.9.1-1.fc14
varnish-2.1.5-1.fc14
visualvm-1.3.1-1.1.6.fc14
Details about builds:
================================================================================
CharLS-1.0-1.fc14 (FEDORA-2011-1032)
An optimized implementation of the JPEG-LS standard
--------------------------------------------------------------------------------
Update Information:
Finally, the 1.0 release of CharLS!
Compared to the beta, the following is changed/added:
* Improved C++ standard compliance for compatibility with:
o Visual C++ (Compilable with Visual Studio 2008, x86, x64, and ARM cpu's)
o GCC for Linux x64/x86 (warning free in pedantic mode)
o GCC for MinGWin
o XCode
o Big-Endian platforms
o CPU's with aligned memory access requirements
o many more (but not recently tested)
* Improved security (prevent potentially exploitable crashes). Won't crash on random data.
* Reduced memory use through DISABLE_SPECIALIZATIONS define (not enabled by default)
* Header file can now be included from C++ and C source files
* Added unit test for Dicom WG04 sample images (files not included)
* Fixes to ensure CharLS streams are readable by Java JAI JPEG-LS code.
* Added tolerance for non-standard padding bits
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Mario Ceresa mrceresa@xxxxxxxxx CharLS 1.0-1
- Update to new version
- Applied patch to fix bug http://charls.codeplex.com/workitem/7823
--------------------------------------------------------------------------------
================================================================================
LinLog-0.4-5.fc14 (FEDORA-2011-1041)
A ham radio logbook for Linux
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Randall J. Berry <dp67@xxxxxxxxxxxxxxxxx> - 0.4-5
- Rebuild for broken deps
--------------------------------------------------------------------------------
================================================================================
PyYAML-3.09-7.fc14 (FEDORA-2011-1017)
YAML parser and emitter for Python
--------------------------------------------------------------------------------
Update Information:
Added Python 3 support
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 John Eckersberg <jeckersb@xxxxxxxxxx> - 3.09-7
- Add support to build for python 3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674448 - Enable python3 support on PyYAML
https://bugzilla.redhat.com/show_bug.cgi?id=674448
--------------------------------------------------------------------------------
================================================================================
backintime-1.0.6-2.fc14 (FEDORA-2011-1031)
Simple backup tool
--------------------------------------------------------------------------------
Update Information:
Update to the latest stable version of Back In Time, which fixes many known bugs and introduces some enhancements. See http://backintime.le-web.org/change-log/ for full details.
This update also fixes a crash if the notify-python was not installed.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Tim Jackson <rpm@xxxxxxxxxx> - 1.0.6-2
- Fix error if notify-python is not installed (RHBZ #630969)
* Wed Feb 2 2011 Tim Jackson <rpm@xxxxxxxxxx> - 1.0.6-1
- Update to version 1.0.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #630969 - [abrt] backintime-gnome-0.9.26-4.fc14: app.py:30:<module>:ImportError: No module named pynotify
https://bugzilla.redhat.com/show_bug.cgi?id=630969
[ 2 ] Bug #655263 - Back In Time is very out-of-date
https://bugzilla.redhat.com/show_bug.cgi?id=655263
--------------------------------------------------------------------------------
================================================================================
cvs2svn-2.3.0-0.4.r5319svn.fc14 (FEDORA-2011-1015)
CVS to Subversion Repository Converter
--------------------------------------------------------------------------------
Update Information:
-Fix BZ#621411
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 MiloÅ JakubÃÄek <xjakub@xxxxxxxxxx> - 2.3.0-0.4.r5319svn
- Update to r5319 to fix BZ#621411
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #621411 - [abrt] crash in cvs2git-2.3.0-0.1.r4998svn.fc13: git_output_option.py:209:setup:TypeError: coercing to Unicode: need string or buffer, NoneType found
https://bugzilla.redhat.com/show_bug.cgi?id=621411
--------------------------------------------------------------------------------
================================================================================
dxcc-20080225-10.fc14 (FEDORA-2011-1043)
Small utility which determines the ARRL DXCC entity of a ham radio callsign
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Randall 'Randy' Berry <dp67@xxxxxxxxxxxxxxxxx> - 20080225-10
- Rebuild for broken deps
--------------------------------------------------------------------------------
================================================================================
gimp-2.6.11-6.fc14 (FEDORA-2011-1019)
GNU Image Manipulation Program
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.6.11-6
- avoid traceback in pyslice plugin (#667958)
* Sat Jan 1 2011 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2:2.6.11-5
- rebuild (poppler)
* Wed Dec 15 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2:2.6.11-4
- rebuild (poppler)
* Tue Nov 9 2010 Nils Philippsen <nils@xxxxxxxxxx> - 2:2.6.11-3
- avoid traceback in colorxhtml plugin (#651002)
* Sat Nov 6 2010 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2:2.6.11-2
- rebuilt (poppler)
--------------------------------------------------------------------------------
================================================================================
gpodder-2.12-2.fc14 (FEDORA-2011-1053)
Podcast receiver/catcher written in Python
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Ville-Pekka Vainio <vpivaini AT cs.helsinki.fi> - 2.12-2
- Add patch to fix encoding issues in minidb (rhbz #674758, gPodder #1088)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674758 - [abrt] gpodder-2.8-2.fc14: minidb.py:141:remove:ProgrammingError: You must not use 8-bit bytestrings unless you use a text_factory that can interpret 8-bit bytestrings (like text_factory = str). It is highly recommended that you instead just switch your a
https://bugzilla.redhat.com/show_bug.cgi?id=674758
--------------------------------------------------------------------------------
================================================================================
groonga-1.0.8-1.fc14 (FEDORA-2011-1016)
An Embeddable Fulltext Search Engine
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Daiki Ueno <dueno@xxxxxxxxxx> - 1.0.8-1
- build in fedora.
- don't depend on libevent explicitly.
* Wed Feb 2 2011 Kouhei Sutou <kou@xxxxxxxxxxxxxx> - 1.0.8-0
- new upstream release.
* Sat Jan 29 2011 Kouhei Sutou <kou@xxxxxxxxxxxxxx> - 1.0.7-0
- new upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #673432 - groonga-1.0.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=673432
--------------------------------------------------------------------------------
================================================================================
gtorrentviewer-0.2b-21.fc14 (FEDORA-2011-1049)
A GTK2-based viewer and editor for BitTorrent meta files
--------------------------------------------------------------------------------
Update Information:
This update improves support for modern trackers when using the "Tracker Details" tab.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Paul Howarth <paul@xxxxxxxxxxxx> 0.2b-21
- Improve tracker support (#674726)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674726 - "Tracker Details" tab doesn't fuction properly (patch provided)
https://bugzilla.redhat.com/show_bug.cgi?id=674726
--------------------------------------------------------------------------------
================================================================================
jemalloc-2.1.1-1.fc14 (FEDORA-2011-1036)
General-purpose scalable concurrent malloc implementation
--------------------------------------------------------------------------------
Update Information:
New upstream release. From the upstream changelog:
2.1.1
Bug Fixes
* Fix aligned huge reallocation (affected allocm()).
* Fix the ALLOCM_LG_ALIGN macro definition.
* Fix a heap dumping deadlock.
* Fix a "thread.arena" mallctl bug.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Ingvar Hagelund <ingvar@xxxxxxxxxxxxxxxxxx> - 2.1.1-1
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674256 - jemalloc-2.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=674256
--------------------------------------------------------------------------------
================================================================================
jgroups-2.2.9.2-7.fc14 (FEDORA-2011-1024)
Toolkit for reliable multicast communication
--------------------------------------------------------------------------------
Update Information:
No longer depends on GCJ or mx4j.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 mbooth <mbooth@xxxxxxxxxxxxxxxxx> 2.2.9.2-7
- Drop GCJ support, versioned jars, plus other cleanup.
- No longer requires mx4j (it's included in JDKs >= 1.5).
--------------------------------------------------------------------------------
================================================================================
kpartsplugin-0.0.1-0.2.20101216.fc14 (FEDORA-2011-1048)
KParts technology to embed file viewers into non-KDE browsers
--------------------------------------------------------------------------------
Update Information:
* Adding "application/googletalk" to blacklisted mime types
* Adding "application/futuresplash" to blacklisted mime types
* Checking if mime type is valid when reading data to avoid crash
* Minor tweaks in user interface strings
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 0.0.1-0.2.20101216
- update to 20101216
--------------------------------------------------------------------------------
================================================================================
me-tv-1.3.6-1.fc14 (FEDORA-2011-1051)
GNOME desktop application for watching digital television
--------------------------------------------------------------------------------
Update Information:
* Fix for shifting EPG events outside before/after
* Removed ellipsis from first event
* Attempting to create recording file on write rather than ChannelStream constructor
* Removed France from auto scan list, channels missing
* Added option to disable TeleText stream
* Fixed typo for "text_encoding" (LP: 689121)
* Fixed issue with recurring SRs being removed (LP: 688925)
* Using signal_toggled() to capture key presses in EPG (LP: 678452)
* EPG event buttons now use ellipsize.
* Using time_t instead of guint
* Refactored action after for SRs to a better location
* Better information about auto record conflicts
* Error messages now appear in status bar
* Added tooltips to control buttons
* Preferred language feature removed
* Fix for 1 min recordings on DVB-S cards
* Moved screensaver inhibit to player
* Changed channels.conf parser to accept VSB_8
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Thomas Janssen <thomasj@xxxxxxxxxxxxxxxxx> 1.3.6-1
- update to 1.3.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #592626 - [abrt] crash in me-tv-1.1.6-1.fc13: Process /usr/bin/me-tv was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=592626
[ 2 ] Bug #670051 - Please, update the me-tv package to the 1.3.5 version (both: f14 + rawhide).
https://bugzilla.redhat.com/show_bug.cgi?id=670051
--------------------------------------------------------------------------------
================================================================================
mfiler3-4.2.1-2.fc14 (FEDORA-2011-1014)
Two pane file manager under UNIX console
--------------------------------------------------------------------------------
Update Information:
saphire 1.2.6 is released. mfiler3 is rebuilt against this new saphire.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 4.2.1-2
- Rebuild against new saphire
--------------------------------------------------------------------------------
================================================================================
mingw32-tcl-8.5.9-2.fc14 (FEDORA-2011-1034)
MinGW Windows Tool Command Language, pronounced tickle
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Thomas Sailer <t.sailer@xxxxxxxxxxxxxx> - 8.5.9-2
- put the tcl library where tclsh.exe searches for it
--------------------------------------------------------------------------------
================================================================================
perl-HTML-Selector-XPath-0.04-1.fc14 (FEDORA-2011-1033)
CSS Selector to XPath compiler
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #664817 - Review Request: perl-HTML-Selector-XPath - CSS Selector to XPath compiler
https://bugzilla.redhat.com/show_bug.cgi?id=664817
--------------------------------------------------------------------------------
================================================================================
perl-Log-Any-0.11-1.fc14 (FEDORA-2011-1026)
Bringing loggers and listeners together
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #565232 - Review Request: perl-Log-Any - Bringing loggers and listeners together
https://bugzilla.redhat.com/show_bug.cgi?id=565232
--------------------------------------------------------------------------------
================================================================================
perl-Test-WWW-Mechanize-PSGI-0.35-1.fc14 (FEDORA-2011-1054)
Test PSGI programs using WWW::Mechanize
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #664911 - Review Request: perl-Test-WWW-Mechanize-PSGI - Test PSGI programs using WWW::Mechanize
https://bugzilla.redhat.com/show_bug.cgi?id=664911
--------------------------------------------------------------------------------
================================================================================
pyxmlsec-0.3.0-8.fc14 (FEDORA-2011-1055)
Python bindings for the XML Security Library
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Lubomir Rintel <lkundrak@xxxxx> - 0.3.0-8
- Fix x86_64 build (#664863)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #664863 - py-xmlsec misconstrues CFLAGS from xmlsec on 64 bit platforms
https://bugzilla.redhat.com/show_bug.cgi?id=664863
--------------------------------------------------------------------------------
================================================================================
rear-1.9.0-1.fc14 (FEDORA-2011-1037)
Relax and Recover (ReaR) is a Linux Disaster Recovery framework
--------------------------------------------------------------------------------
Update Information:
Support for bacula, bextract, usb (booting and archive), udev,
OBDR, dhcp client support and basic system cloning has been
added. And, many little bugs were fixed.
rear release with cloning functionalities (P2V,...)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 24 2011 Gratien D'haese <gdha at sourceforge.net> - 1.9.0-1
- New development release with P2V, V2V functionality, and more
- added AUTHORS, TODO to %doc and rm from datadir
--------------------------------------------------------------------------------
================================================================================
saphire-1.2.6-1.fc14 (FEDORA-2011-1014)
Yet another shell
--------------------------------------------------------------------------------
Update Information:
saphire 1.2.6 is released. mfiler3 is rebuilt against this new saphire.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 31 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1.2.6-1
- 1.2.6
* Thu Jan 27 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxxxx> - 1.2.5-1
- 1.2.5
--------------------------------------------------------------------------------
================================================================================
setroubleshoot-plugins-3.0.13-1.fc14 (FEDORA-2011-1038)
Analysis plugins for use with setroubleshoot
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 <dwalsh@xxxxxxxxxx> - 3.0.13-1
- Update Translations
- Fix allow_execstack plugin to be backwards compatable
* Mon Jan 24 2011 <dwalsh@xxxxxxxxxx> - 3.0.12-1
- Update translations
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674122 - [abrt] setroubleshoot-server-3.0.23-1.fc14: allow_execstack.py:92:get_if_text:IndexError: tuple index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=674122
--------------------------------------------------------------------------------
================================================================================
sugar-0.90.3-4.fc14 (FEDORA-2011-1035)
Constructionist learning platform
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 29 2011 Peter Robinson <pbrobinson@xxxxxxxxx> - 0.90.3-4
- Drop patch to enable sugar-settings-manager
* Sat Jan 29 2011 Peter Robinson <pbrobinson@xxxxxxxxx> - 0.90.3-3
- bump build
--------------------------------------------------------------------------------
================================================================================
sugar-toolkit-0.90.2-3.fc14 (FEDORA-2011-1035)
Sugar toolkit
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Peter Robinson <pbrobinson@xxxxxxxxx> - 0.90.2-3
- Drop fonts patch as its causing issues
* Sat Jan 29 2011 Peter Robinson <pbrobinson@xxxxxxxxx> - 0.90.2-2
- bump build
--------------------------------------------------------------------------------
================================================================================
telepathy-sofiasip-0.6.6-1.fc14 (FEDORA-2011-1059)
SIP connection manager for Telepathy
--------------------------------------------------------------------------------
Update Information:
Latest stable upstream release.
Latest stable release. Changes include:
* Changed the type of the size parameter to gssize in tpsip_unquote_string().
* fd.o #31720 - stop using tp_get_bus()
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.6.6-1
- Update to 0.6.6.
- Drop reject calls patch. Fixed upstream.
* Mon Jan 31 2011 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.6.5-2
- Update url and source url.
- Add patch to prevent crash when receiving a call from user's own URI. (#668308)
* Fri Jan 28 2011 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.6.5-1
- Update to 0.6.5.
- Add BR to run tests, and enable check.
- Drop buildroot and clean section. No longer needed.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #668308 - [PATCH] telepathy-sofiasip crashes when receiving a call from user's own URI
https://bugzilla.redhat.com/show_bug.cgi?id=668308
--------------------------------------------------------------------------------
================================================================================
tortoisehg-1.1.9.1-1.fc14 (FEDORA-2011-1058)
Mercurial GUI command line tool hgtk
--------------------------------------------------------------------------------
Update Information:
This is a bug fix release, with minor improvements.
See https://bitbucket.org/tortoisehg/stable/wiki/ReleaseNotes#!tortoisehg-119
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 3 2011 Mads Kiilerich <mads@xxxxxxxxxxxxx> - 1.1.9.1-1
- tortoisehg-1.1.9.1
* Wed Feb 2 2011 Mads Kiilerich <mads@xxxxxxxxxxxxx> - 1.1.9-1
- tortoisehg-1.1.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674506 - tortoisehg-1.1.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=674506
--------------------------------------------------------------------------------
================================================================================
varnish-2.1.5-1.fc14 (FEDORA-2011-1052)
High-performance HTTP accelerator
--------------------------------------------------------------------------------
Update Information:
New upstream release 2.1.5. See changes-2.1.5.html for upstream changes, and the package changelog.
This build of varnishd is now linked with the system installed jemalloc library, so the package now requires jemalloc installed.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Ingvar Hagelund <ingvar@xxxxxxxxxxxxxxxxxx> - 2.1.5-1
- New upstream release
- New download location
- Moved varnish_reload_vcl to sbin
- Removed patches included upstream
- Use jemalloc as system installed library
--------------------------------------------------------------------------------
================================================================================
visualvm-1.3.1-1.1.6.fc14 (FEDORA-2011-1022)
Lightweight profiler that integrates many command-line JDK tools
--------------------------------------------------------------------------------
Update Information:
Fixed requires for java-devel, fixed conflicts version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #640205 - Review Request: visualvm - Lightweight profiler that integrates many command-line JDK tools
https://bugzilla.redhat.com/show_bug.cgi?id=640205
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
