The following Fedora 13 Security updates need testing:
https://admin.fedoraproject.org/updates/libvirt-0.8.2-3.fc13
https://admin.fedoraproject.org/updates/dbus-1.2.24-2.fc13
https://admin.fedoraproject.org/updates/tor-0.2.1.29-1300.fc13
https://admin.fedoraproject.org/updates/php-pear-1.9.2-1.fc13
https://admin.fedoraproject.org/updates/libxml2-2.7.7-2.fc13
https://admin.fedoraproject.org/updates/dhcp-4.1.2-2.ESV.R1.fc13
https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
https://admin.fedoraproject.org/updates/php-5.3.6-1.fc13,maniadrive-1.2-27.fc13,php-eaccelerator-0.9.6.1-6.fc13
https://admin.fedoraproject.org/updates/389-admin-1.1.15-1.fc13
https://admin.fedoraproject.org/updates/gnash-0.8.9-1.fc13
https://admin.fedoraproject.org/updates/phpMyAdmin-3.3.10-1.fc13
https://admin.fedoraproject.org/updates/libcgroup-0.35.1-5.fc13
https://admin.fedoraproject.org/updates/wordpress-3.1-1.fc13
https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc13
https://admin.fedoraproject.org/updates/libtiff-3.9.4-4.fc13
https://admin.fedoraproject.org/updates/quagga-0.99.18-1.fc13
https://admin.fedoraproject.org/updates/asterisk-1.6.2.17.2-1.fc13
The following Fedora 13 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/usbmuxd-1.0.7-1.fc13
https://admin.fedoraproject.org/updates/libtiff-3.9.4-4.fc13
https://admin.fedoraproject.org/updates/libnl-1.1-14.fc13
https://admin.fedoraproject.org/updates/selinux-policy-3.7.19-101.fc13
https://admin.fedoraproject.org/updates/policycoreutils-2.0.83-33.4.fc13
https://admin.fedoraproject.org/updates/tzdata-2011d-1.fc13
https://admin.fedoraproject.org/updates/tzdata-2011b-3.fc13
https://admin.fedoraproject.org/updates/perl-ExtUtils-XSpp-0.15-2.fc13,perl-5.10.1-122.fc13,perl-Wx-0.98-5.fc13
https://admin.fedoraproject.org/updates/libxml2-2.7.7-2.fc13
https://admin.fedoraproject.org/updates/fuse-2.8.5-5.fc13
https://admin.fedoraproject.org/updates/NetworkManager-0.8.3.997-1.fc13
https://admin.fedoraproject.org/updates/libcgroup-0.35.1-5.fc13
https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
https://admin.fedoraproject.org/updates/livecd-tools-13.2-1.fc13
https://admin.fedoraproject.org/updates/lua-5.1.4-7.fc13
https://admin.fedoraproject.org/updates/librsvg2-2.26.3-3.fc13
https://admin.fedoraproject.org/updates/mobile-broadband-provider-info-1.20110218-1.fc13
https://admin.fedoraproject.org/updates/dosfstools-3.0.9-4.fc13
https://admin.fedoraproject.org/updates/file-5.04-7.fc13
https://admin.fedoraproject.org/updates/system-config-users-1.2.107-1.fc13
https://admin.fedoraproject.org/updates/python-ethtool-0.6-1.fc13
https://admin.fedoraproject.org/updates/libical-0.46-2.fc13
https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13
https://admin.fedoraproject.org/updates/libfprint-0.3.0-1.fc13
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13
https://admin.fedoraproject.org/updates/lldpad-0.9.26-2.fc13
The following builds have been pushed to Fedora 13 updates-testing
389-ds-base-1.2.8-0.7.rc2.fc13
asterisk-1.6.2.17.2-1.fc13
bti-031-1.fc13
calibre-0.7.38-4.fc13
gromacs-4.5.4-1.fc13
kicad-2011.01.28-2.rev2765.fc13
mysql-workbench-5.2.33b-1.fc13
perl-Locale-US-1.2-2.fc13
plowshare-0.9.4-0.5.svn1391.fc13
pyPdf-1.13-1.fc13
quagga-0.99.18-1.fc13
samba-3.5.8-75.fc13
speech-dispatcher-0.7.1-5.fc13
Details about builds:
================================================================================
389-ds-base-1.2.8-0.7.rc2.fc13 (FEDORA-2011-3914)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
This is 389-ds-base-1.2.8 RC 2 - this fixes several bugs found in alpha and RC 1 testing
This is the 389-ds-base-1.2.8 release candidate 1 build
Split off 389-ds-base-libs to solve multilib issues
1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3
see bugs for a list of bugs fixed
This is the 1.2.8 alpha 2 release - many bug fixes
389-ds-base 1.2.8 alpha 1
contains many bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 22 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.7.rc2
- 389-ds-base-1.2.8 release candidate 2 - git tag 389-ds-base-1.2.8.rc2
- Bug 689537 - (cov#10610) Fix Coverity NULL pointer dereferences
- Bug 689866 - ns-newpwpolicy.pl needs to use the new DN format
- Bug 681015 - RFE: allow fine grained password policy duration attributes
- in days, hours, minutes, as well
- Bug 684996 - Exported tombstone cannot be imported correctly
- Bug 683250 - slapd crashing when traffic replayed
- Bug 668909 - Can't modify replication agreement in some cases
- Bug 504803 - Allow maxlogsize to be set if logmaxdiskspace is -1
- Bug 644784 - Memory leak in "testbind.c" plugin
- Bug 680558 - Winsync plugin fails to restrain itself to the configured subtree
* Wed Mar 2 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.6.rc1
- 389-ds-base-1.2.8 release candidate 1 - git tag 389-ds-base-1.2.8.rc1
- Bug 518890 - setup-ds-admin.pl - improve hostname validation
- Bug 681015 - RFE: allow fine grained password policy duration attributes in
- days, hours, minutes, as well
- Bug 514190 - setup-ds-admin.pl --debug does not log to file
- Bug 680555 - ns-slapd segfaults if I have more than 100 DBs
- Bug 681345 - setup-ds.pl should set SuiteSpotGroup automatically
- Bug 674852 - crash in ldap-agent when using OpenLDAP
- Bug 679978 - modifying attr value crashes the server, which is supposed to
- be indexed as substring type, but has octetstring syntax
- Bug 676655 - winsync stops working after server restart
- Bug 677705 - ds-logpipe.py script is failing to validate "-s" and
- "--serverpid" options with "-t".
- Bug 625424 - repl-monitor.pl doesn't work in hub node
* Mon Feb 28 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.5.a3
- Bug 676598 - 389-ds-base multilib: file conflicts
- split off libs into a separate -libs package
* Thu Feb 24 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.4.a3
- do not create /var/run/dirsrv - setup will create it instead
- remove the fedora-ds initscript upgrade stuff - we do not support that anymore
- convert the remaining lua stuff to plain old shell script
* Wed Feb 9 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.3.a3
- 1.2.8.a3 release - git tag 389-ds-base-1.2.8.a3
- Bug 675320 - empty modify operation with repl on or lastmod off will crash server
- Bug 675265 - preventryusn gets added to entries on a failed delete
- Bug 677774 - added support for tmpfiles.d
- Bug 666076 - dirsrv crash (1.2.7.5) with multiple simple paged result search
es
- Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH
- Bug 671199 - Don't allow other to write to rundir
- Bug 678646 - Ignore tombstone operations in managed entry plug-in
- Bug 676053 - export task followed by import task causes cache assertion
- Bug 677440 - clean up compiler warnings in 389-ds-base 1.2.8
- Bug 675113 - ns-slapd core dump in windows_tot_run if oneway sync is used
- Bug 676689 - crash while adding a new user to be synced to windows
- Bug 604881 - admin server log files have incorrect permissions/ownerships
- Bug 668385 - DS pipe log script is executed as many times as the dirsrv serv
ice is restarted
- Bug 675853 - dirsrv crash segfault in need_new_pw()
* Thu Feb 3 2011 Rich Megginson <rmeggins@xxxxxxxxxx> - 1.2.8-0.2.a2
- 1.2.8.a2 release - git tag 389-ds-base-1.2.8.a2
- Bug 674430 - Improve error messages for attribute uniqueness
- Bug 616213 - insufficient stack size for HP-UX on PA-RISC
- Bug 615052 - intrinsics and 64-bit atomics code fails to compile
- on PA-RISC
- Bug 151705 - Need to update Console Cipher Preferences with new ciphers
- Bug 668862 - init scripts return wrong error code
- Bug 670616 - Allow SSF to be set for local (ldapi) connections
- Bug 667935 - DS pipe log script's logregex.py plugin is not redirecting the
- log output to the text file
- Bug 668619 - slapd stops responding
- Bug 624547 - attrcrypt should query the given slot/token for
- supported ciphers
- Bug 646381 - Faulty password for nsmultiplexorcredentials does not give any
- error message in logs
* Fri Jan 21 2011 Nathan Kinder <nkinder@xxxxxxxxxx> - 1.2.8-0.1.a1
- 1.2.8-0.1.a1 release - git tag 389-ds-base-1.2.8.a1
- many bug fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #689537 - Fix Coverity NULL pointer dereferences
https://bugzilla.redhat.com/show_bug.cgi?id=689537
[ 2 ] Bug #689866 - ns-newpwpolicy.pl needs to use the new DN format
https://bugzilla.redhat.com/show_bug.cgi?id=689866
[ 3 ] Bug #681015 - RFE: allow fine grained password policy duration attributes in days, hours, minutes, as well
https://bugzilla.redhat.com/show_bug.cgi?id=681015
[ 4 ] Bug #684996 - Exported tombstone cannot be imported correctly.
https://bugzilla.redhat.com/show_bug.cgi?id=684996
[ 5 ] Bug #683250 - slapd crashing when traffic replayed
https://bugzilla.redhat.com/show_bug.cgi?id=683250
[ 6 ] Bug #668909 - Can't modify replication agreement in some cases
https://bugzilla.redhat.com/show_bug.cgi?id=668909
[ 7 ] Bug #504803 - Not possible to set nsslapd-*-logmaxdiskspace to -1 through fedora-idm-console
https://bugzilla.redhat.com/show_bug.cgi?id=504803
[ 8 ] Bug #644784 - Memory leak in "testbind.c" plugin
https://bugzilla.redhat.com/show_bug.cgi?id=644784
[ 9 ] Bug #680558 - Winsync plugin fails to restrain itself to the configured subtree
https://bugzilla.redhat.com/show_bug.cgi?id=680558
--------------------------------------------------------------------------------
================================================================================
asterisk-1.6.2.17.2-1.fc13 (FEDORA-2011-3945)
The Open Source PBX
--------------------------------------------------------------------------------
Update Information:
The Asterisk Development Team has announced security releases for Asterisk
branches 1.6.1, 1.6.2, and 1.8. The available security releases are
released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2.
These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases
** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which
contained a bug which caused duplicate manager entries (issue #18987).
The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues:
* Resource exhaustion in Asterisk Manager Interface (AST-2011-003)
* Remote crash vulnerability in TCP/TLS server (AST-2011-004)
The issues and resolutions are described in the AST-2011-003 and AST-2011-004
security advisories.
For more information about the details of these vulnerabilities, please read the
security advisories AST-2011-003 and AST-2011-004, which were released at the
same time as this announcement.
For a full list of changes in the current releases, please see the ChangeLog:
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.24
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2
Security advisory AST-2011-003 and AST-2011-004 are available at:
http://downloads.asterisk.org/pub/security/AST-2011-003.pdf
http://downloads.asterisk.org/pub/security/AST-2011-004.pdf
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 23 2011 Jeffrey C. Ollie <jeff@xxxxxxxxxx> - 1.6.2.17.2-1
- The Asterisk Development Team has announced security releases for Asterisk
- branches 1.6.1, 1.6.2, and 1.8. The available security releases are
- released as versions 1.6.1.24, 1.6.2.17.2, and 1.8.3.2.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- ** This is a re-release of Asterisk 1.6.1.23, 1.6.2.17.1 and 1.8.3.1 which
- contained a bug which caused duplicate manager entries (issue #18987).
-
- The releases of Asterisk 1.6.1.24, 1.6.2.17.2, and 1.8.3.2 resolve two issues:
-
- * Resource exhaustion in Asterisk Manager Interface (AST-2011-003)
- * Remote crash vulnerability in TCP/TLS server (AST-2011-004)
-
- The issues and resolutions are described in the AST-2011-003 and AST-2011-004
- security advisories.
-
- For more information about the details of these vulnerabilities, please read the
- security advisories AST-2011-003 and AST-2011-004, which were released at the
- same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.1.24
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.17.2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.3.2
-
- Security advisory AST-2011-003 and AST-2011-004 are available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-003.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-004.pdf
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #688675 - CVE-2011-1174 asterisk: resource exhaustion in Asterisk Manager Interface (AST-2011-003)
https://bugzilla.redhat.com/show_bug.cgi?id=688675
[ 2 ] Bug #688678 - CVE-2011-1175 asterisk: DoS in TCP/TLS server due to NULL ptr deref (AST-2011-004)
https://bugzilla.redhat.com/show_bug.cgi?id=688678
--------------------------------------------------------------------------------
================================================================================
bti-031-1.fc13 (FEDORA-2011-3913)
Bash Twitter/Identi.ca Idiocy
--------------------------------------------------------------------------------
Update Information:
- now checks for identi.ca server success in non-background mode
- correctly parse passwords containing the '#' character
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 22 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 031-1
- Update to 031
* Sat Mar 19 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 030-3
- Improved comment marker fix, now safer and handle lines containing both
non-marker and marker '#'s
* Fri Mar 18 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 030-2
- Improve detection of comment marker in configuration file
* Fri Mar 18 2011 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 030-1
- Update to 030
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #689745 - bti-031 is available
https://bugzilla.redhat.com/show_bug.cgi?id=689745
[ 2 ] Bug #688872 - bti-030 is available
https://bugzilla.redhat.com/show_bug.cgi?id=688872
--------------------------------------------------------------------------------
================================================================================
calibre-0.7.38-4.fc13 (FEDORA-2011-3937)
E-book converter and library management
--------------------------------------------------------------------------------
Update Information:
* fix crash when converting books to PDF format
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 22 2011 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 0.7.38-4
- Add patch to fix crash on pdf export (BZ #673604)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #673604 - [abrt] calibre-0.7.38-3.fc14: writer.py:196:_write:TypeError: __init__() got an unexpected keyword argument 'title'
https://bugzilla.redhat.com/show_bug.cgi?id=673604
--------------------------------------------------------------------------------
================================================================================
gromacs-4.5.4-1.fc13 (FEDORA-2011-3918)
Fast, Free and Flexible Molecular Dynamics
--------------------------------------------------------------------------------
Update Information:
Maintenance release, fixing many bugs and updating documentation.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 23 2011 Jussi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 4.5.4-1
- Update to 4.5.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #689395 - gromacs-4.5.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=689395
--------------------------------------------------------------------------------
================================================================================
kicad-2011.01.28-2.rev2765.fc13 (FEDORA-2011-3912)
Electronic schematic diagrams and printed circuit board artwork
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 23 2011 Alain Portal <alain.portal[AT]univ-montp2[DOT]fr> 2011.01.28-2.rev2765
- Add missing library
* Tue Mar 22 2011 Alain Portal <alain.portal[AT]univ-montp2[DOT]fr> 2011.01.28-1.rev2765
- New upstream version
- Update versioning patch, all others patches no more needed
- Patch to fix a link time error (with help from Kevin Kofler and Nikola Pajkovsky)
* Sun Jan 30 2011 Dan HorÃk <dan@xxxxxxxx> - 2010.05.27-8.rev2363
- Add s390x as 64-bit arch
--------------------------------------------------------------------------------
================================================================================
mysql-workbench-5.2.33b-1.fc13 (FEDORA-2011-3931)
A MySQL visual database modeling, administration and querying tool
--------------------------------------------------------------------------------
Update Information:
New version 5.2.33b.
Upstream Change history:
* http://dev.mysql.com/doc/workbench/en/wb-news-5-2-33b.html
* http://dev.mysql.com/doc/workbench/en/wb-news-5-2-33.html
* http://dev.mysql.com/doc/workbench/en/wb-news-5-2-32.html
* http://dev.mysql.com/doc/workbench/en/wb-news-5-2-31.html
Detailed Changelog:
* http://wb.mysql.com/?page_id=49
This new version uses
* mysql-utilities - Scripts for managing and administering MySQL servers
* mysql-connector-python - MySQL Connector for Python 2
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 23 2011 Remi Collet <Fedora@xxxxxxxxxxxxxxxxx> 5.2.33b-1
- update to 5.2.33b Community (OSS) Edition (GPL)
http://dev.mysql.com/doc/workbench/en/wb-news-5-2-33b.html
http://wb.mysql.com/?page_id=49
- use bundled cppconn (which is a fork of svn version...)
- add mysql-utilities sub-package
- requires mysql-connector-python
- use system tinyxml >= 2.6.0 when available
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #683047 - mysql-workbench-5.2.33b is available
https://bugzilla.redhat.com/show_bug.cgi?id=683047
--------------------------------------------------------------------------------
================================================================================
perl-Locale-US-1.2-2.fc13 (FEDORA-2011-3926)
Two letter codes for state identification in the United States and vice versa
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #673030 - Review Request: perl-Locale-US - Two letter codes for state identification in the United States and vice versa
https://bugzilla.redhat.com/show_bug.cgi?id=673030
--------------------------------------------------------------------------------
================================================================================
plowshare-0.9.4-0.5.svn1391.fc13 (FEDORA-2011-3925)
CLI downloader/uploader for some of the most popular file-sharing websites
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #539693 - Review Request: plowshare - command-line downloader/uploader for some of the most popular file-sharing websites
https://bugzilla.redhat.com/show_bug.cgi?id=539693
--------------------------------------------------------------------------------
================================================================================
pyPdf-1.13-1.fc13 (FEDORA-2011-3920)
PDF toolkit
--------------------------------------------------------------------------------
Update Information:
* new upstream release with lots of bug fixes
* detailed changelog: https://bugzilla.redhat.com/show_bug.cgi?id=660139#c0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 27 2010 Felix Schwarz <felix.schwarz@xxxxxxxxxxxxxx> 1.13-1
- update to 1.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #660139 - New pyPdf release available
https://bugzilla.redhat.com/show_bug.cgi?id=660139
--------------------------------------------------------------------------------
================================================================================
quagga-0.99.18-1.fc13 (FEDORA-2011-3916)
Routing daemon
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 23 2011 Jiri Skala <jskala@xxxxxxxxxx> - 0.99.18-1
- fixes #689852 - CVE-2010-1674 CVE-2010-1675 quagga various flaws
- fixes #689763 - updated to latest upstream version 0.99.18
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #654603 - CVE-2010-1674 quagga: DoS (crash) by processing malformed extended community attribute in a route
https://bugzilla.redhat.com/show_bug.cgi?id=654603
[ 2 ] Bug #654614 - CVE-2010-1675 quagga: BGP session reset by processing BGP Update message with malformed AS-path attributes
https://bugzilla.redhat.com/show_bug.cgi?id=654614
--------------------------------------------------------------------------------
================================================================================
samba-3.5.8-75.fc13 (FEDORA-2011-3941)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
The smb.conf manpage contained in the upstream samba tarball was misgenerated and almost empty.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 22 2011 Guenther Deschner <gdeschner@xxxxxxxxxx> - 3.5.8-75
- Fix broken smb.conf.5 manpage
- resolves: #690216
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #690216 - 3.5.8 update has corrupted smb.conf manpage
https://bugzilla.redhat.com/show_bug.cgi?id=690216
--------------------------------------------------------------------------------
================================================================================
speech-dispatcher-0.7.1-5.fc13 (FEDORA-2011-3933)
To provide a high-level device independent layer for speech synthesis
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 15 2011 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.7.1-5
- safer rpath handling (#654585)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #654585 - speech-dispatcher cannot load modules
https://bugzilla.redhat.com/show_bug.cgi?id=654585
--------------------------------------------------------------------------------
--
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test
