Fedora 13 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 13 Security updates need testing:

    https://admin.fedoraproject.org/updates/dbus-1.2.24-2.fc13
    https://admin.fedoraproject.org/updates/subversion-1.6.15-1.fc13
    https://admin.fedoraproject.org/updates/logwatch-7.3.6-55.fc13
    https://admin.fedoraproject.org/updates/dhcp-4.1.2-2.ESV.R1.fc13
    https://admin.fedoraproject.org/updates/openssl-1.0.0d-1.fc13
    https://admin.fedoraproject.org/updates/patch-2.6.1-8.fc13
    https://admin.fedoraproject.org/updates/php-pear-1.9.2-1.fc13
    https://admin.fedoraproject.org/updates/moodle-1.9.11-1.fc13
    https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
    https://admin.fedoraproject.org/updates/pywebdav-0.9.4.1-1.fc13
    https://admin.fedoraproject.org/updates/mailman-2.1.12-17.fc13
    https://admin.fedoraproject.org/updates/asterisk-1.6.2.17-1.fc13
    https://admin.fedoraproject.org/updates/xulrunner-1.9.2.14-1.fc13,firefox-3.6.14-1.fc13,mozvoikko-1.0-18.fc13,gnome-web-photo-0.9-16.fc13,perl-Gtk2-MozEmbed-0.08-6.fc13.21,gnome-python2-extras-2.25.3-26.fc13,galeon-2.0.7-37.fc13
    https://admin.fedoraproject.org/updates/thunderbird-3.1.8-3.fc13
    https://admin.fedoraproject.org/updates/perl-Mail-Box-2.097-1.fc13
    https://admin.fedoraproject.org/updates/libtiff-3.9.4-3.fc13
    https://admin.fedoraproject.org/updates/389-admin-1.1.15-1.fc13
    https://admin.fedoraproject.org/updates/TeXmacs-1.0.7.9-2.fc13
    https://admin.fedoraproject.org/updates/rubygem-actionpack-2.3.5-4.fc13
    https://admin.fedoraproject.org/updates/tor-0.2.1.29-1300.fc13
    https://admin.fedoraproject.org/updates/moin-1.9.3-4.fc13
    https://admin.fedoraproject.org/updates/kernel-2.6.34.8-68.fc13
    https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc13


The following Fedora 13 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/libtiff-3.9.4-3.fc13
    https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
    https://admin.fedoraproject.org/updates/nss-3.12.9-8.fc13,nss-softokn-3.12.9-5.fc13,nss-util-3.12.9-1.fc13,nspr-4.8.7-1.fc13
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.3.996-1.fc13
    https://admin.fedoraproject.org/updates/kernel-2.6.34.8-68.fc13
    https://admin.fedoraproject.org/updates/livecd-tools-13.2-1.fc13
    https://admin.fedoraproject.org/updates/lua-5.1.4-7.fc13
    https://admin.fedoraproject.org/updates/librsvg2-2.26.3-3.fc13
    https://admin.fedoraproject.org/updates/mobile-broadband-provider-info-1.20110218-1.fc13
    https://admin.fedoraproject.org/updates/less-436-9.fc13
    https://admin.fedoraproject.org/updates/dosfstools-3.0.9-4.fc13
    https://admin.fedoraproject.org/updates/openssl-1.0.0d-1.fc13
    https://admin.fedoraproject.org/updates/patch-2.6.1-8.fc13
    https://admin.fedoraproject.org/updates/file-5.04-7.fc13
    https://admin.fedoraproject.org/updates/tzdata-2011b-1.fc13
    https://admin.fedoraproject.org/updates/system-config-users-1.2.107-1.fc13
    https://admin.fedoraproject.org/updates/python-ethtool-0.6-1.fc13
    https://admin.fedoraproject.org/updates/libical-0.46-2.fc13
    https://admin.fedoraproject.org/updates/pm-utils-1.2.6.1-4.fc13
    https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13
    https://admin.fedoraproject.org/updates/libfprint-0.3.0-1.fc13
    https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13
    https://admin.fedoraproject.org/updates/lldpad-0.9.26-2.fc13


The following builds have been pushed to Fedora 13 updates-testing

    389-ds-base-1.2.8-0.6.rc1.fc13
    anki-1.2.7-1.fc13
    asterisk-1.6.2.17-1.fc13
    avrdude-5.10-3.fc13
    certmonger-0.35.1-1.fc13
    dvisvgm-1.0.5-1.fc13
    fence-agents-3.1.2-1.fc13
    gpodder-2.13-2.fc13
    gpredict-1.3-1.fc13
    libtiff-3.9.4-3.fc13
    mercurial-1.8-1.fc13
    mg-20110120-1.fc13
    mozc-1.1.626.102-0.1.20110301svn.fc13
    perl-Mail-Box-2.097-1.fc13
    perl-Text-Glob-0.09-1.fc13
    redshift-1.6-3.fc13
    resource-agents-3.1.1-1.fc13
    thunderbird-3.1.8-3.fc13
    wine-1.3.14-2.fc13
    xemacs-21.5.29-15.fc13

Details about builds:


================================================================================
 389-ds-base-1.2.8-0.6.rc1.fc13 (FEDORA-2011-2539)
 389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:

This is the 389-ds-base-1.2.8 release candidate 1 build
Split off 389-ds-base-libs to solve multilib issues
1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3
see bugs for a list of bugs fixed
This is the 1.2.8 alpha 2 release - many bug fixes
389-ds-base 1.2.8 alpha 1
contains many bug fixes
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.6.rc1
- 389-ds-base-1.2.8 release candidate 1 - git tag 389-ds-base-1.2.8.rc1
- Bug 518890 - setup-ds-admin.pl - improve hostname validation
- Bug 681015 - RFE: allow fine grained password policy duration attributes in 
-     days, hours, minutes, as well
- Bug 514190 - setup-ds-admin.pl --debug does not log to file
- Bug 680555 - ns-slapd segfaults if I have more than 100 DBs
- Bug 681345 - setup-ds.pl should set SuiteSpotGroup automatically
- Bug 674852 - crash in ldap-agent when using OpenLDAP
- Bug 679978 - modifying attr value crashes the server, which is supposed to
-     be indexed as substring type, but has octetstring syntax
- Bug 676655 - winsync stops working after server restart
- Bug 677705 - ds-logpipe.py script is failing to validate "-s" and
-     "--serverpid" options with "-t".
- Bug 625424 - repl-monitor.pl doesn't work in hub node
* Mon Feb 28 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.5.a3
- Bug 676598 - 389-ds-base multilib: file conflicts
- split off libs into a separate -libs package
* Thu Feb 24 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.4.a3
- do not create /var/run/dirsrv - setup will create it instead
- remove the fedora-ds initscript upgrade stuff - we do not support that anymore
- convert the remaining lua stuff to plain old shell script
* Wed Feb  9 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.3.a3
- 1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3
- Bug 675320 - empty modify operation with repl on or lastmod off will crash server
- Bug 675265 - preventryusn gets added to entries on a failed delete
- Bug 677774 - added support for tmpfiles.d
- Bug 666076 - dirsrv crash (1.2.7.5) with multiple simple paged result search
es
- Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH
- Bug 671199 - Don't allow other to write to rundir
- Bug 678646 - Ignore tombstone operations in managed entry plug-in
- Bug 676053 - export task followed by import task causes cache assertion
- Bug 677440 - clean up compiler warnings in 389-ds-base 1.2.8
- Bug 675113 - ns-slapd core dump in windows_tot_run if oneway sync is used
- Bug 676689 - crash while adding a new user to be synced to windows
- Bug 604881 - admin server log files have incorrect permissions/ownerships
- Bug 668385 - DS pipe log script is executed as many times as the dirsrv serv
ice is restarted
- Bug 675853 - dirsrv crash segfault in need_new_pw()
* Thu Feb  3 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.2.a2
- 1.2.8.a2 release - git tag 389-ds-base-1.2.8.a2
- Bug 674430 - Improve error messages for attribute uniqueness
- Bug 616213 - insufficient stack size for HP-UX on PA-RISC
- Bug 615052 - intrinsics and 64-bit atomics code fails to compile
-    on PA-RISC
- Bug 151705 - Need to update Console Cipher Preferences with new ciphers
- Bug 668862 - init scripts return wrong error code
- Bug 670616 - Allow SSF to be set for local (ldapi) connections
- Bug 667935 - DS pipe log script's logregex.py plugin is not redirecting the 
-    log output to the text file
- Bug 668619 - slapd stops responding
- Bug 624547 - attrcrypt should query the given slot/token for
-    supported ciphers
- Bug 646381 - Faulty password for nsmultiplexorcredentials does not give any 
-    error message in logs
* Fri Jan 21 2011 Nathan Kinder <nkinder@xxxxxxxxxx> - 1.2.8-0.1.a1
- 1.2.8-0.1.a1 release - git tag 389-ds-base-1.2.8.a1
- many bug fixes
--------------------------------------------------------------------------------


================================================================================
 anki-1.2.7-1.fc13 (FEDORA-2011-2530)
 Flashcard program for using space repetition learning
--------------------------------------------------------------------------------
Update Information:

new upstream bugfix release 1.2.7:

* various minor bug fixes
* changelog: http://www.ankisrs.net/changes.html

--------------------------------------------------------------------------------
ChangeLog:

* Sun Feb 27 2011 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 1.2.7-1
- Update to new upstream version 1.2.7 (BZ 678848)
- Add sox as requirement for audio recording (BZ 674493)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #678848 - anki-1.2.7 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=678848
  [ 2 ] Bug #674493 - [abrt] anki-1.2.5-1.fc13: subprocess.py:1126:_execute_child:OSError: [Errno 2] No such file or directory
        https://bugzilla.redhat.com/show_bug.cgi?id=674493
--------------------------------------------------------------------------------


================================================================================
 asterisk-1.6.2.17-1.fc13 (FEDORA-2011-2558)
 The Open Source PBX
--------------------------------------------------------------------------------
Update Information:

The Asterisk Development Team has announced the release of Asterisk 1.6.2.17.
This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/
The release of Asterisk 1.6.2.17 resolves several issues reported by the
community and would have not been possible without your participation.
Thank you!
The following is a sample of the issues resolved in this release:
* Resolve duplicated data in the AstDB when using DIALGROUP()
(Closes issue #18091. Reported by bunny. Patched by tilghman)
* Correct issue where res_config_odbc could populate fields with invalid data.
(Closes issue #18251, #18279. Reported by bcnit, zerohalo. Tested by trev,
jthurman, elguero, zerohalo. Patched by tilghman)
* When using cdr_pgsql the billsec field was not populated correctly on
unanswered calls.
(Closes issue #18406. Reported by joscas. Patched by tilghman)
* Resolve issue where re-transmissions of SUBSCRIBE could break presence.
(Closes issue #18075. Reported by mdu113. Patched by twilson)
* Fix regression causing forwarding voicemails to not work with file storage.
(Closes issue #18358. Reported by cabal95. Patched by jpeeler)
* This version of Asterisk includes the new Compiler Flags option
BETTER_BACKTRACES which uses libbfd to search for better symbol information
within both the Asterisk binary, as well as loaded modules, to assist when
using inline backtraces to track down problems.
(Patched by tilghman)
* Resolve several issues with DTMF based attended transfers.
(Closes issues #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
shihchaun, grecco. Patched by rmudgett).
NOTE: Be sure to read the ChangeLog for more information about these changes.
* Resolve issue where no Music On Hold may be triggered when using
res_timing_dahdi.
(Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested
by francesco_r, rfrantik, one47)
* Fix regression that changed behavior of queues when ringing a queue member.
(Closes issue #18747, #18733. Reported by vrban. Patched by qwell.)
Additionally, this release has the changes related to security bulletin
AST-2011-002 which can be found at
http://downloads.asterisk.org/pub/security/AST-2011-002.pdf
For a full list of changes in this release, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.17
Asterisk Project Security Advisory - AST-2011-002
Product       Asterisk
Summary       Multiple array overflow and crash vulnerabilities in
UDPTL code
Nature of Advisory Exploitable Stack and Heap Array Overflows
Susceptibility   Remote Unauthenticated Sessions
Severity      Critical
Exploits Known   No
Reported On     January 27, 2011
Reported By     Matthew Nicholson
Posted On      February 21, 2011
Last Updated On   February 21, 2011
Advisory Contact  Matthew Nicholson <mnicholson@xxxxxxxxxx>
CVE Name
Description When decoding UDPTL packets, multiple stack and heap based
arrays can be made to overflow by specially crafted packets.
Systems doing T.38 pass through or termination are vulnerable.
Resolution The UDPTL decoding routines have been modified to respect the
limits of exploitable arrays.
In asterisk versions not containing the fix for this issue,
disabling T.38 support will prevent this vulnerability from
being exploited. T.38 support can be disabled in chan_sip by
setting the t38pt_udptl option to "no" (it is off by default).
t38pt_udptl = no
The chan_ooh323 module should also be disabled by adding the
following line in modles.conf.
noload => chan_ooh323
Affected Versions
Product              Release Series
Asterisk Open Source            1.4.x      All versions
Asterisk Open Source            1.6.x      All versions
Asterisk Business Edition         C.x.x      All versions
AsteriskNOW                 1.5       All versions
s800i (Asterisk Appliance)         1.2.x      All versions
Corrected In
Product                               Release
Asterisk Open Source        1.4.39.2, 1.6.1.22, 1.6.2.16.2, 1.8.2.4
Asterisk Business Edition                      C.3.6.3
Patches
URL                                 Branch
http://downloads.asterisk.org/pub/security/AST-2011-002-1.4.diff    1.4
http://downloads.asterisk.org/pub/security/AST-2011-002-1.6.1.diff  1.6.1
http://downloads.asterisk.org/pub/security/AST-2011-002-1.6.2.diff  1.6.2
http://downloads.asterisk.org/pub/security/AST-2011-002-1.8.diff    1.8
Links
Asterisk Project Security Advisories are posted at
http://www.asterisk.org/security
This document may be superseded by later versions; if so, the latest
version will be posted at
http://downloads.digium.com/pub/security/AST-2011-002.pdf and
http://downloads.digium.com/pub/security/AST-2011-002.html
Revision History
Date                Editor                    Revisions Made
02/21/11        Matthew Nicholson         Initial Release
Asterisk Project Security Advisory - AST-2011-002
Copyright (c) 2011 Digium, Inc. All Rights Reserved.
Permission is hereby granted to distribute and publish this advisory in its
original, unaltered form.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Mar  1 2011 <jeff@xxxxxxxxxx> - 1.6.2.17-1
- The Asterisk Development Team has announced the release of Asterisk 1.6.2.17.
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/
-
- The release of Asterisk 1.6.2.17 resolves several issues reported by the
- community and would have not been possible without your participation.
- Thank you!
-
- The following is a sample of the issues resolved in this release:
-
- * Resolve duplicated data in the AstDB when using DIALGROUP()
-  (Closes issue #18091. Reported by bunny. Patched by tilghman)
-
- * Correct issue where res_config_odbc could populate fields with invalid data.
-  (Closes issue #18251, #18279. Reported by bcnit, zerohalo. Tested by trev,
-  jthurman, elguero, zerohalo. Patched by tilghman)
-
- * When using cdr_pgsql the billsec field was not populated correctly on
-  unanswered calls.
-  (Closes issue #18406. Reported by joscas. Patched by tilghman)
-
- * Resolve issue where re-transmissions of SUBSCRIBE could break presence.
-  (Closes issue #18075. Reported by mdu113. Patched by twilson)
-
- * Fix regression causing forwarding voicemails to not work with file storage.
-  (Closes issue #18358. Reported by cabal95. Patched by jpeeler)
-
- * This version of Asterisk includes the new Compiler Flags option
-  BETTER_BACKTRACES which uses libbfd to search for better symbol information
-  within both the Asterisk binary, as well as loaded modules, to assist when
-  using inline backtraces to track down problems.
-  (Patched by tilghman)
-
- * Resolve several issues with DTMF based attended transfers.
-  (Closes issues #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
-  shihchaun, grecco. Patched by rmudgett).
-  NOTE: Be sure to read the ChangeLog for more information about these changes.
-
- * Resolve issue where no Music On Hold may be triggered when using
-  res_timing_dahdi.
-  (Closes issues #18262. Reported by francesco_r. Patched by cjacobson. Tested
-  by francesco_r, rfrantik, one47)
-
- * Fix regression that changed behavior of queues when ringing a queue member.
-  (Closes issue #18747, #18733. Reported by vrban. Patched by qwell.)
-
- Additionally, this release has the changes related to security bulletin
- AST-2011-002 which can be found at
- http://downloads.asterisk.org/pub/security/AST-2011-002.pdf
-
- For a full list of changes in this release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.6.2.17
* Mon Feb 21 2011 <jeff@xxxxxxxxxx> - 1.6.2.16.2-1
-
-              Asterisk Project Security Advisory - AST-2011-002
-
-       Product       Asterisk
-       Summary       Multiple array overflow and crash vulnerabilities in
-                     UDPTL code
-  Nature of Advisory Exploitable Stack and Heap Array Overflows
-    Susceptibility   Remote Unauthenticated Sessions
-       Severity      Critical
-    Exploits Known   No
-     Reported On     January 27, 2011
-     Reported By     Matthew Nicholson
-      Posted On      February 21, 2011
-   Last Updated On   February 21, 2011
-   Advisory Contact  Matthew Nicholson <mnicholson@xxxxxxxxxx>
-       CVE Name
-
-  Description When decoding UDPTL packets, multiple stack and heap based
-              arrays can be made to overflow by specially crafted packets.
-              Systems doing T.38 pass through or termination are vulnerable.
-
-  Resolution The UDPTL decoding routines have been modified to respect the
-             limits of exploitable arrays.
-
-             In asterisk versions not containing the fix for this issue,
-             disabling T.38 support will prevent this vulnerability from
-             being exploited. T.38 support can be disabled in chan_sip by
-             setting the t38pt_udptl option to "no" (it is off by default).
-
-             t38pt_udptl = no
-
-             The chan_ooh323 module should also be disabled by adding the
-             following line in modles.conf.
-
-             noload => chan_ooh323
-
-                              Affected Versions
-               Product              Release Series
-        Asterisk Open Source            1.4.x      All versions
-        Asterisk Open Source            1.6.x      All versions
-      Asterisk Business Edition         C.x.x      All versions
-             AsteriskNOW                 1.5       All versions
-     s800i (Asterisk Appliance)         1.2.x      All versions
-
-                                 Corrected In
-             Product                               Release
-       Asterisk Open Source        1.4.39.2, 1.6.1.22, 1.6.2.16.2, 1.8.2.4
-    Asterisk Business Edition                      C.3.6.3
-
-                                   Patches
-                                  URL                                 Branch
-  http://downloads.asterisk.org/pub/security/AST-2011-002-1.4.diff    1.4
-  http://downloads.asterisk.org/pub/security/AST-2011-002-1.6.1.diff  1.6.1
-  http://downloads.asterisk.org/pub/security/AST-2011-002-1.6.2.diff  1.6.2
-  http://downloads.asterisk.org/pub/security/AST-2011-002-1.8.diff    1.8
-
-         Links
-
-  Asterisk Project Security Advisories are posted at
-  http://www.asterisk.org/security
-
-  This document may be superseded by later versions; if so, the latest
-  version will be posted at
-  http://downloads.digium.com/pub/security/AST-2011-002.pdf and
-  http://downloads.digium.com/pub/security/AST-2011-002.html
-
-                               Revision History
-       Date                Editor                    Revisions Made
-  02/21/11        Matthew Nicholson         Initial Release
-
-              Asterisk Project Security Advisory - AST-2011-002
-             Copyright (c) 2011 Digium, Inc. All Rights Reserved.
- Permission is hereby granted to distribute and publish this advisory in its
-                          original, unaltered form.
--------------------------------------------------------------------------------


================================================================================
 avrdude-5.10-3.fc13 (FEDORA-2011-2522)
 Software for programming Atmel AVR Microcontroller
--------------------------------------------------------------------------------
Update Information:

This release just re-syncs the git source with the actual packages. It should not change the actual package content except for changelogs and package version number.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Hans Ulrich Niedermann <hun@xxxxxxxxxxxxxxxx> - 5.10-3
- Rebuilt package from fixed sources (unchanged package content)
- Unify pkg source in git for el6, f13, f14, f15, rawhide
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.10-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 certmonger-0.35.1-1.fc13 (FEDORA-2011-2521)
 Certificate status monitor and PKI enrollment client
--------------------------------------------------------------------------------
Update Information:

This update rolls up minor command-line UI tweaks, new translations, and fixes for self-tests.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.35.1-1
- fix a self-test that broke because one-year-from-now is now a day's worth
  of seconds further out than it was a few days ago
* Mon Feb 14 2011 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.35-1
- update to 0.35
  - self-test fixes to rebuild properly in mock (#670322)
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.34-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Fri Jan 14 2011 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.34-1
- update to 0.34
  - explicitly note the number of requests we're tracking in the output of
    "getcert list" (#652049)
  - try to offer some suggestions when we get certain specific errors back
    in "getcert" (#652047)
  - updated translations
    - es
* Thu Dec 23 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.33-1
- update to 0.33
  - new translations
    - id by Okta Purnama Rahadian!
  - updated translations
    - pl, uk
  - roll up assorted fixes for defects
* Fri Nov 12 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.32-2
- depend on the e2fsprogs libuuid on Fedora and RHEL releases where it's
  not part of util-linux-ng
* Wed Oct 13 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.32-1
- oops, rfc5280 says we shouldn't be populating unique identifiers, so
  make it a configuration option and default the behavior to off
* Tue Oct 12 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.31-1
- start populating the optional unique identifier fields in self-signed
  certificates
* Thu Sep 30 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.30-4
- explicitly require "dbus" to try to ensure we have a running system bus
  when we get started (#639126)
* Wed Sep 29 2010 jkeating - 0.30-3
- Rebuilt for gcc bug 634757
* Thu Sep 23 2010 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.30-2
- try to SIGHUP the messagebus daemon at first install so that it'll
  let us claim our service name if it isn't restarted before we are
  first started (#636876)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #636876 - certmonger fails to start on new install
        https://bugzilla.redhat.com/show_bug.cgi?id=636876
--------------------------------------------------------------------------------


================================================================================
 dvisvgm-1.0.5-1.fc13 (FEDORA-2011-2556)
 DVI to SVG converter
--------------------------------------------------------------------------------
Update Information:

dvisvgm 1.0.5 is a maintenance release with the following changes:
* An optional argument to command-line option -n has been added to disable the generation of <use> elements.
* Font cache files are now validated with a checksum
* Missing measurement units have been added to the width/height attributes of the SVG root element
* A couple of minor issues have been fixed.

For further information see http://dvisvgm.sourceforge.net/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Martin Gieseking <martin.gieseking@xxxxxx> 1.0.5-1
- updated to upstream release 1.0.5
--------------------------------------------------------------------------------


================================================================================
 fence-agents-3.1.2-1.fc13 (FEDORA-2011-2547)
 Fence Agents for Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:

This update addresses several minor bugs and adds fence_scsi/watchdog integration layer.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Fabio M. Di Nitto <fdinitto@xxxxxxxxxx> - 3.1.2-1
- new upstream release
--------------------------------------------------------------------------------


================================================================================
 gpodder-2.13-2.fc13 (FEDORA-2011-2077)
 Podcast receiver/catcher written in Python
--------------------------------------------------------------------------------
Update Information:

Latest bugfix release. For more information, refer to http://blog.gpodder.org/2011/02/gpodder-213-mr-dingle-strong-released.html

This package also includes two patches for bugs found after the release: fix problems if there is no active podcast and fix invalid UTF-8 text in podcast descriptions.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Ville-Pekka Vainio <vpivaini AT cs.helsinki.fi> - 2.13-2
- Add patch to fix problems if there is no active podcast (rhbz #681383,
  gPodder #1291)
- Add patch to fix invalid UTF-8 text in podcast descriptions (gPodder #1277)
* Wed Feb 23 2011 Ville-Pekka Vainio <vpivaini AT cs.helsinki.fi> - 2.13-1
- New upstream release, remove upstreamed patches
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.12-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #681383 - [abrt] gpodder-2.12-2.fc14: model.py:199:replace_from_channel:AttributeError: 'NoneType' object has no attribute 'get_all_episodes'
        https://bugzilla.redhat.com/show_bug.cgi?id=681383
--------------------------------------------------------------------------------


================================================================================
 gpredict-1.3-1.fc13 (FEDORA-2011-2528)
 Real-time satellite tracking and orbit prediction program
--------------------------------------------------------------------------------
Update Information:

Upgrade to version 1.3.
- Feature request 2873824: Flip Passes.
- Feature Request 3022617: Malaysia's location.
- Automatically refresh the Sky at a glance view every minute.
- Added more checks with hamlib communications.
- List satellite as available or selected when configuring module.
- Fixed bug 2116691: Leave network connection open.
- Fixed bug 3099314: Rotator Thrashing.
- Fixed bug 2167508: problems in rotator controller.
- Fixed bug from Ubuntu #706452: Update from local files won't work with files in UPPER case 
- Fixed bug 3171615: Searching for satellites in the satellite selector
- Fixed bug 3113190: .desktop file error
- Address bug 2945538: Pass in polar display going outside the circle (Improve the graphical portion.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Eric "Sparks" Christensen <sparks@xxxxxxxxxxxxxxxxx> - 1.3-1
- Feature request 2873824: Flip Passes.
- Feature Request 3022617: Malaysia's location.
- Automatically refresh the Sky at a glance view every minute.
- Added more checks with hamlib communications.
- List satellite as available or selected when configuring module.
- Fixed bug 2116691: Leave network connection open.
- Fixed bug 3099314: Rotator Thrashing.
- Fixed bug 2167508: problems in rotator controller.
- Fixed bug from Ubuntu #706452: Update from local files won't work with files in UPPER case 
- Fixed bug 3171615: Searching for satellites in the satellite selector
- Fixed bug 3113190: .desktop file error
- Address bug 2945538: Pass in polar display going outside the circle (Improve the graphical portion.)
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sun Nov 21 2010 Eric "Sparks" Christensen <sparks@xxxxxxxxxxxxxxxxx> - 1.2-2
- Updated desktop file to fix icon.
* Mon Nov 15 2010 Eric "Sparks" Christensen <sparks@xxxxxxxxxxxxxxxxx> - 1.2-1
- Updated to newest version available (1.2).
* Tue May  4 2010 Lubomir Rintel (Fedora Astronomy) <lkundrak@xxxxx> - 0.9.0-7
- Adjust for yet newer GTK, rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #681491 - gpredict-1.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=681491
--------------------------------------------------------------------------------


================================================================================
 libtiff-3.9.4-3.fc13 (FEDORA-2011-2555)
 Library of functions for manipulating TIFF format image files
--------------------------------------------------------------------------------
Update Information:

Fix buffer overrun in fax decoding (CVE-2011-0192) as well as a non-security-critical crash in gif2tiff.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Tom Lane <tgl@xxxxxxxxxx> 3.9.4-3
- Add patch for CVE-2011-0192
Resolves: #681672
- Fix non-security-critical potential SIGSEGV in gif2tiff
Related: #648820
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #678635 - CVE-2011-0192 libtiff: buffer overflow in Fax4Decode
        https://bugzilla.redhat.com/show_bug.cgi?id=678635
--------------------------------------------------------------------------------


================================================================================
 mercurial-1.8-1.fc13 (FEDORA-2011-2553)
 Mercurial -- a distributed SCM
--------------------------------------------------------------------------------
Update Information:

see: http://http://mercurial.selenic.com/wiki/WhatsNew
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Neal Becker <ndbecker2@xxxxxxxxx> - 1.8-1
- Update to 1.8
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.7.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 mg-20110120-1.fc13 (FEDORA-2011-2544)
 Tiny Emacs-like editor
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Mark McKinstry <mmckinst@xxxxxxxxxxx> - 20110120-1
- upgrade to version 20110120
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 20090107-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 mozc-1.1.626.102-0.1.20110301svn.fc13 (FEDORA-2011-2525)
 Open-sourced Google Japanese Input
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Akira TAGOH <tagoh@xxxxxxxxxx> - 1.1.626.102-0.1.20110301svn
- Update to 1.1.626.102.
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.558.102-0.2.20101216svn
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 perl-Mail-Box-2.097-1.fc13 (FEDORA-2011-2531)
 Manage a mailbox, a folder with messages
--------------------------------------------------------------------------------
Update Information:

Update perl-Mail-Box to 2.097.
No longer require spamassassin.
2.097 now randomizes boundary string to avoid (undemonstrated) security risks with boundary guessing.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.097-1
- update to 2.097
- remove Mail::SpamAssassin from BuildRequires
- filter Mail::SpamAssassin out of Requires
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.095-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Dec 20 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 2.095-2
- 661697 rebuild for fixing problems with vendorach/lib
* Mon Jul 12 2010 Tom "spot" Callaway <tcallawa@xxxxxxxxxx> - 2.095-1
- update to 2.095
* Mon May  3 2010 Marcela Maslanova <mmaslano@xxxxxxxxxx> - 2.091-3
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #647783 - perl-Mail-Box shouldn't force spamassassin to be installed
        https://bugzilla.redhat.com/show_bug.cgi?id=647783
--------------------------------------------------------------------------------


================================================================================
 perl-Text-Glob-0.09-1.fc13 (FEDORA-2011-2543)
 Perl module to match globbing patterns against text
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Ralf CorsÃpius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.09-1
- Upstream update.
- Spec cleanup.
--------------------------------------------------------------------------------


================================================================================
 redshift-1.6-3.fc13 (FEDORA-2011-2517)
 Adjusts the color temperature of your screen according to time of day
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 28 2011 Milos Komarcevic <kmilos@xxxxxxxxx> - 1.6-3
- Fix for clock applet detection (#661145)
- Require pyxdg explicitly (#675804)
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sat Nov 13 2010 Milos Komarcevic <kmilos@xxxxxxxxx> - 1.6-1
- Update to 1.6
- Remove BuildRoot tag and clean section
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #661145 - redshift has to be started with sudo (elevated privileges)
        https://bugzilla.redhat.com/show_bug.cgi?id=661145
  [ 2 ] Bug #675804 - [abrt] gtk-redshift-1.5-1.fc14: utils.py:20:<module>:ImportError: No module named xdg
        https://bugzilla.redhat.com/show_bug.cgi?id=675804
--------------------------------------------------------------------------------


================================================================================
 resource-agents-3.1.1-1.fc13 (FEDORA-2011-2559)
 Open Source HA Resource Agents for Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:

This update includes several bug fixes and lays down the path to the new unified upstream merge.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Mar  1 2011 Fabio M. Di Nitto <fdinitto@xxxxxxxxxx> - 3.1.1-1
- new upstream release 3.1.1 and 1.0.4
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.1.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 thunderbird-3.1.8-3.fc13 (FEDORA-2011-2524)
 Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Jan Horak <jhorak@xxxxxxxxxx> - 3.1.8-3
- Update to 3.1.8
--------------------------------------------------------------------------------


================================================================================
 wine-1.3.14-2.fc13 (FEDORA-2011-2532)
 A Windows 16/32/64 bit emulator
--------------------------------------------------------------------------------
Update Information:

 * Many cleanups to address Valgrind and Clang warnings.
 * Support for creating compressed cabinet files.
 * Translation updates.
 * Tools for creating MSI installers.
 * Clipboard improvements.
 * Support for po files in the message compiler.
 * Improvements to the Wine debugger.
 * Various bug fixes.

--------------------------------------------------------------------------------
ChangeLog:

* Tue Mar  1 2011 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.14-2
- prepare for wine-gecko
* Sat Feb 19 2011 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.14-1
- version upgrade
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.13-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sun Feb  6 2011 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.13-1
- version upgrade
- update desktop files
--------------------------------------------------------------------------------


================================================================================
 xemacs-21.5.29-15.fc13 (FEDORA-2011-2526)
 Different version of Emacs
--------------------------------------------------------------------------------
Update Information:

This is mostly a rebuild so that -fno-strict-aliasing is used for the build, which fixes some subtle bugs in the compiled code.  In addition, various package tweaks from Rawhide have been backported, but should not affect anyone except maintainers of XEmacs add-ons.

--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar  2 2011 Jerry James <loganjerry@xxxxxxxxx> - 21.5.29-15
- Add noarch filesystem subpackage (bz 672093).
- Add gnuclient desktop file.
- Fix CFLAGS so -fno-strict-aliasing actually gets used.
- Add . to the default load-path in _xemacs_bytecompile.
- Update Requires for pre/post(un) scripts.
- Don't create /var/lock/xemacs; it is not used (bz 656723).
- Drop the BuildRoot tag.
- Ship COPYING with the -info subpackage.
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test



[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux