Fedora 14 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

The following Fedora 14 Security updates need testing:

    https://admin.fedoraproject.org/updates/libvirt-0.8.3-9.fc14
    https://admin.fedoraproject.org/updates/couchdb-1.0.2-1.fc14
    https://admin.fedoraproject.org/updates/mediawiki-1.16.2-56.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-server-utils-7.5-5.fc14
    https://admin.fedoraproject.org/updates/nss-3.12.9-9.fc14
    https://admin.fedoraproject.org/updates/tor-0.2.1.29-1400.fc14
    https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
    https://admin.fedoraproject.org/updates/logrotate-3.7.9-2.fc14
    https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc14
    https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
    https://admin.fedoraproject.org/updates/quagga-0.99.18-1.fc14
    https://admin.fedoraproject.org/updates/perl-5.12.3-143.fc14
    https://admin.fedoraproject.org/updates/proftpd-1.3.3e-1.fc14
    https://admin.fedoraproject.org/updates/exim-4.72-2.fc14
    https://admin.fedoraproject.org/updates/python-feedparser-5.0.1-1.fc14
    https://admin.fedoraproject.org/updates/dhcp-4.2.0-21.P2.fc14


The following Fedora 14 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/xorg-x11-server-utils-7.5-5.fc14
    https://admin.fedoraproject.org/updates/dosfstools-3.0.9-6.fc14
    https://admin.fedoraproject.org/updates/grep-2.7-2.fc14
    https://admin.fedoraproject.org/updates/perl-5.12.3-143.fc14
    https://admin.fedoraproject.org/updates/kernel-2.6.35.12-88.fc14
    https://admin.fedoraproject.org/updates/tzdata-2011d-3.fc14
    https://admin.fedoraproject.org/updates/audit-2.1-1.fc14
    https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-28.fc14
    https://admin.fedoraproject.org/updates/gdb-7.2-51.fc14
    https://admin.fedoraproject.org/updates/nss-3.12.9-9.fc14
    https://admin.fedoraproject.org/updates/libimobiledevice-1.0.6-1.fc14
    https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
    https://admin.fedoraproject.org/updates/usbmuxd-1.0.7-1.fc14
    https://admin.fedoraproject.org/updates/libnl-1.1-14.fc14
    https://admin.fedoraproject.org/updates/logrotate-3.7.9-2.fc14
    https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
    https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
    https://admin.fedoraproject.org/updates/mobile-broadband-provider-info-1.20110218-1.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-geode-2.11.11-4.fc14


The following builds have been pushed to Fedora 14 updates-testing

    bluedevil-1.0.3-1.fc14
    celt071-0.7.1-2.fc14
    ghc-regexpr-0.5.3-2.fc14
    golly-2.2-2.fc14
    hanazono-fonts-20101013-1.fc14
    kdevelop-4.2.2-1.fc14
    kdevelop-pg-qt-0.9.5-1.fc14
    kdevelop-php-1.2.2-1.fc14
    kdevplatform-1.2.2-1.fc14
    latexila-2.0.7-1.fc14
    nikto-2.1.4-1.fc14
    oct2spec-1.0.1-2.fc14
    openvas-libraries-4.0.3-2.fc14
    oprofile-0.9.6-20.fc14
    pam_shield-0.9.5-4.fc14
    perl-Browser-Open-0.03-2.fc14
    perl-CHI-0.44-3.fc14
    perl-version-0.88-2.fc14
    postgresql-8.4.7-2.fc14
    proftpd-1.3.3e-1.fc14
    python-testtools-0.9.8-2.fc14
    saphire-1.3.8-1.fc14
    sir-2.1.1-3.fc14
    synapse-0.2.4.2-1.fc14

Details about builds:


================================================================================
 bluedevil-1.0.3-1.fc14 (FEDORA-2011-5041)
 Bluetooth stack for KDE
--------------------------------------------------------------------------------
Update Information:

This update introduces Bluedevil - the new KDE bluetooth application/stack - to Fedora 14 as a default option. It replaces the old Kbluetooth solution as it's obsoleted in KDE Platform 4.6.1.

Bluedevil changelog:
- Fixed requestPin helper by flushing cout buffer
- Fixed requestConfirmation by passing the correct arguments
- BUG: 267302 (crash reproducible for example with an iPhone)
- Improved wizard device name detection.
- Fixed âSend filesâ in some system by being sure that the defaultAdapter is NOT discovering.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693236 - kbluetooth no longer works with KDE 4.6.1 update
        https://bugzilla.redhat.com/show_bug.cgi?id=693236
--------------------------------------------------------------------------------


================================================================================
 celt071-0.7.1-2.fc14 (FEDORA-2011-5047)
 An audio codec for use in low-delay speech and audio communication
--------------------------------------------------------------------------------
Update Information:

Initial build for celt071
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #641572 - Review Request: celt071 - Celt version 0.7.1 for mumble compatibility
        https://bugzilla.redhat.com/show_bug.cgi?id=641572
--------------------------------------------------------------------------------


================================================================================
 ghc-regexpr-0.5.3-2.fc14 (FEDORA-2011-5036)
 Regular expression like Perl/Ruby in Haskell
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #630205 - Review Request: ghc-regexpr - Regular expression like Perl/Ruby in Haskell
        https://bugzilla.redhat.com/show_bug.cgi?id=630205
--------------------------------------------------------------------------------


================================================================================
 golly-2.2-2.fc14 (FEDORA-2011-5028)
 Cellular automata simulator (includes Conway's Game of Life)
--------------------------------------------------------------------------------
Update Information:

Golly is an open source application for exploring Conway's Game of
Life and other cellular automata.  Golly supports unbounded universes
with up to 256 states.  Golly supports multiple algorithms, including
Bill Gosper's super fast hashlife algorithm.  Many different types of
CA are included: John von Neumann's 29-state CA, Wolfram's 1D rules,
WireWorld, Generations, Langton's Loops, Paterson's Worms, etc.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #590355 - Review Request: golly - cellular automata simulator
        https://bugzilla.redhat.com/show_bug.cgi?id=590355
--------------------------------------------------------------------------------


================================================================================
 hanazono-fonts-20101013-1.fc14 (FEDORA-2011-5031)
 Japanese Mincho-typeface TrueType font
--------------------------------------------------------------------------------
ChangeLog:

* Fri Apr  8 2011 Akira TAGOH <tagoh@xxxxxxxxxx> - 20101013-1
- New upstream release. (#692826)
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 20100718-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #692826 - hanazono-fonts-20101013 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=692826
--------------------------------------------------------------------------------


================================================================================
 kdevelop-4.2.2-1.fc14 (FEDORA-2011-5054)
 Integrated Development Environment for C++/C
--------------------------------------------------------------------------------
Update Information:

Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Radek Novacek <rnovacek@xxxxxxxxxx> 9:4.2.2-1
- Update to 4.2.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693680 - kdevelop-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------


================================================================================
 kdevelop-pg-qt-0.9.5-1.fc14 (FEDORA-2011-5054)
 A parser generator
--------------------------------------------------------------------------------
Update Information:

Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Radek Novacek <rnovacek@xxxxxxxxxx> 0.9.5-1
- Update to 0.9.5
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693680 - kdevelop-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------


================================================================================
 kdevelop-php-1.2.2-1.fc14 (FEDORA-2011-5054)
 Php language plugin for KDevelop
--------------------------------------------------------------------------------
Update Information:

Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Radek Novacek <rnovacek@xxxxxxxxxx> 1.2.2-1
- Update to 1.2.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693680 - kdevelop-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------


================================================================================
 kdevplatform-1.2.2-1.fc14 (FEDORA-2011-5054)
 Libraries for use by KDE development tools
--------------------------------------------------------------------------------
Update Information:

Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Radek Novacek <rnovacek@xxxxxxxxxx> - 1.2.2-1
- Update to 1.2.2
- Remove FTBFS with g++ 4.6 patch
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693680 - kdevelop-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------


================================================================================
 latexila-2.0.7-1.fc14 (FEDORA-2011-5056)
 Integrated LaTeX Environment for the GNOME desktop
--------------------------------------------------------------------------------
Update Information:

Update to 2.0.7
New upstream release 2.0.6
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 2.0.7-1
- Update to 2.0.7
* Sun Mar 20 2011 Thibault North <tnorth@xxxxxxxxxxxxxxxxx> - 2.0.6-1
- Update to 2.0.6
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #694657 - Please update to latexila 2.0.7
        https://bugzilla.redhat.com/show_bug.cgi?id=694657
--------------------------------------------------------------------------------


================================================================================
 nikto-2.1.4-1.fc14 (FEDORA-2011-5032)
 Web server scanner
--------------------------------------------------------------------------------
ChangeLog:

* Mon Mar 28 2011 Michal Ambroz <rebus AT seznam.cz> - 1:2.1.4-1
- Version bump
* Sun Sep 12 2010 Michal Ambroz <rebus AT seznam.cz> - 1:2.1.3-1
- Version bump
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #632931 - nikto - new version 2.1.4 released
        https://bugzilla.redhat.com/show_bug.cgi?id=632931
--------------------------------------------------------------------------------


================================================================================
 oct2spec-1.0.1-2.fc14 (FEDORA-2011-5053)
 Python script to generate Octave package spec file
--------------------------------------------------------------------------------


================================================================================
 openvas-libraries-4.0.3-2.fc14 (FEDORA-2011-5029)
 Support libraries for Open Vulnerability Assessment (OpenVAS) Scanner
--------------------------------------------------------------------------------
Update Information:

Module of a new release OpenVAS 4
--------------------------------------------------------------------------------
ChangeLog:

* Tue Mar 22 2011 Michal Ambroz <rebus at, seznam.cz> - 4.0.3-2
- patch not used
* Fri Mar 18 2011 Michal Ambroz <rebus at, seznam.cz> - 4.0.3-1
- Bump to latest stable release 4
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.1.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 oprofile-0.9.6-20.fc14 (FEDORA-2011-5030)
 System wide profiler
--------------------------------------------------------------------------------
Update Information:

Re-enable xenoprof support in OProfile. Also some fixes in the spec file.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Apr  5 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-20
- Re-enable xenoprof patch.
* Thu Mar 31 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-19
- Provide oprofile-static.
* Tue Mar 15 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-18
- Clean up rpmlint complaints.
* Tue Mar 15 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-17
- Correct oprofile user information.
* Thu Mar 10 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-16
- Remove obsolete configure options.
* Thu Mar 10 2011 Will Cohen <wcohen@xxxxxxxxxx> - 0.9.6-15
- Use QT4.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #687914 - oprofile user without $HOME
        https://bugzilla.redhat.com/show_bug.cgi?id=687914
  [ 2 ] Bug #683923 - oprofile-gui is built against qt3
        https://bugzilla.redhat.com/show_bug.cgi?id=683923
  [ 3 ] Bug #609614 - oprofile : does not adhere to Static Library Packaging Guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=609614
  [ 4 ] Bug #693596 - OProfile package does not build with Xen support
        https://bugzilla.redhat.com/show_bug.cgi?id=693596
--------------------------------------------------------------------------------


================================================================================
 pam_shield-0.9.5-4.fc14 (FEDORA-2011-5055)
 Pam Shield - A pam module to counter brute force attacks
--------------------------------------------------------------------------------
Update Information:

added %{optflags}


--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Carl Thompson <fedora@xxxxxxxxxxxxxx> 0.9.5-4
- fixed a typo in previous release in %build
LANG=C
export LANG
unset DISPLAY
 section
* Thu Apr  7 2011 Carl Thompson <fedora@xxxxxxxxxxxxxx> 0.9.5-3
- updated %build
LANG=C
export LANG
unset DISPLAY
 section with -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #694557 - pam_shield not built with $RPM_OPT_FLAGS
        https://bugzilla.redhat.com/show_bug.cgi?id=694557
  [ 2 ] Bug #691153 - Review Request: pam_shield - pam module to block brute force attacks
        https://bugzilla.redhat.com/show_bug.cgi?id=691153
--------------------------------------------------------------------------------


================================================================================
 perl-Browser-Open-0.03-2.fc14 (FEDORA-2011-5046)
 Open a browser in a given URL
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #680593 - Review Request: perl-Browser-Open - Open a browser in a given URL
        https://bugzilla.redhat.com/show_bug.cgi?id=680593
--------------------------------------------------------------------------------


================================================================================
 perl-CHI-0.44-3.fc14 (FEDORA-2011-5027)
 Unified cache handling interface
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #688035 - Review Request: perl-CHI - Unified cache handling interface
        https://bugzilla.redhat.com/show_bug.cgi?id=688035
--------------------------------------------------------------------------------


================================================================================
 perl-version-0.88-2.fc14 (FEDORA-2011-5025)
 Perl extension for Version Objects
--------------------------------------------------------------------------------
Update Information:

Unexports private version::vxs symbol
--------------------------------------------------------------------------------
ChangeLog:

* Fri Apr  8 2011 Petr Pisar <ppisar@xxxxxxxxxx> - 3:0.88-2
- Unexport private version::vxs module (bug #633775)
- Remove BuildRoot stuff
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #633775 - perl-version twice in f14 repo
        https://bugzilla.redhat.com/show_bug.cgi?id=633775
--------------------------------------------------------------------------------


================================================================================
 postgresql-8.4.7-2.fc14 (FEDORA-2011-5058)
 PostgreSQL client programs
--------------------------------------------------------------------------------
Update Information:

Add fix to make plpgsql cope with dropped columns in rowtypes
--------------------------------------------------------------------------------
ChangeLog:

* Thu Apr  7 2011 Tom Lane <tgl@xxxxxxxxxx> 8.4.7-2
- Add fix to make plpgsql cope with dropped columns in rowtypes
Related: #694249
- Add %{?_isa} to cross-subpackage Requires, per latest packaging guidelines,
  and add explicit dependencies on the -libs subpackage to pacify rpmdiff
--------------------------------------------------------------------------------


================================================================================
 proftpd-1.3.3e-1.fc14 (FEDORA-2011-5040)
 Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:

This update, to the current upstream maintenance release, fixes a large number of bugs (see NEWS for details), and also a couple of security issues:

* Plaintext command injection vulnerability in FTPS implementation (i.e. mod_tls). See http://bugs.proftpd.org/show_bug.cgi?id=3624 for details.

* CVE-2011-1137 (badly formed SSH messages cause DoS). See http://bugs.proftpd.org/show_bug.cgi?id=3586 for details.

Other highlights include:

* Display messages work properly again.

* Performance improvements, especially during server startup/restarts.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Apr  4 2011 Paul Howarth <paul@xxxxxxxxxxxx> 1.3.3e-1
- Update to 1.3.3e, fixing a large number of bugs reported upstream:
  - Process privileges may not handled properly when --enable-autoshadow is
    used (bug 3757)
  - mod_sftp closes channel too early after scp download (bug 3544)
  - mod_sftp_pam may tell client to disable echoing erroneously (bug 3579)
  - mod_sftp behaves badly when receiving badly formed SSH messages (bug 3586,
    CVE-2011-1137)
  - Using "$shell $libtool" in prxs does not work for all shells (bug 3593)
  - WrapAllowMsg directive broken due to bug 3423 (bug 3538)
  - SocketOptions receive/send buffer size parameters no longer work (bug 3607)
  - mod_wrap2 needs to support netmask rules for IPv6 addresses (bug 3606)
  - APPE/STOU upload flags erroneously preserved across upload commands
    (bug 3612)
  - Malicious module can use sreplace() function to overflow buffer (bug 3614)
  - Exiting sessions don't seem to die properly (bug 3619)
  - mod_delay sometimes logs "unable to load DelayTable into memory" (bug 3622)
  - Plaintext command injection in FTPS support (bug 3624)
  - mod_ifsession rules using regular expressions do not work (bug 3625)
  - Truncated client name saved in ScoreboardFile (bug 3623)
  - %w variable populated with non-absolute path in SQLLog statement (bug 3627)
  - Unnecessarily verbose "warning: unable to throttle bandwidth: Interrupted
    system call" (bug 3628)
  - SSH DISCONNECT messages sent by mod_sftp even for FTP connections in some
    cases (bug 3630)
  - mod_sql should log "unrecoverable database error" at a higher priority
    (bug 3632)
  - Proftpd is eating CPU when reparsing configuration file on SIGHUP (bug 3610)
  - Incorrect generation of DSA signature for SSH sessions (bug 3634)
- Nobody else likes macros for commands
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #681718 - CVE-2011-1137 proftpd: integer overflow in mod_sftp
        https://bugzilla.redhat.com/show_bug.cgi?id=681718
--------------------------------------------------------------------------------


================================================================================
 python-testtools-0.9.8-2.fc14 (FEDORA-2011-5044)
 Extensions to the Python unit testing framework
--------------------------------------------------------------------------------
Update Information:

Extensions to the Python unit test framework, used primarily by some Canonical-sponsored projects
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #694568 - Review Request: python-testtools - Extensions to the Python unit testing framework
        https://bugzilla.redhat.com/show_bug.cgi?id=694568
--------------------------------------------------------------------------------


================================================================================
 saphire-1.3.8-1.fc14 (FEDORA-2011-5043)
 Yet another shell
--------------------------------------------------------------------------------
Update Information:

New version 1.3.8 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Apr  9 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.3.8-1
- 1.3.8
* Sun Apr  3 2011 Mamoru Tasaka <mtasaka@xxxxxxxxxxxxxxxxx> - 1.3.7-1
- 1.3.7
--------------------------------------------------------------------------------


================================================================================
 sir-2.1.1-3.fc14 (FEDORA-2011-5048)
 A simple application for resizing images
--------------------------------------------------------------------------------
Update Information:

A simple application for resizing images
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #688056 - Review Request: sir - A simple application for resizing images
        https://bugzilla.redhat.com/show_bug.cgi?id=688056
--------------------------------------------------------------------------------


================================================================================
 synapse-0.2.4.2-1.fc14 (FEDORA-2011-5057)
 A semantic launcher written in Vala
--------------------------------------------------------------------------------
Update Information:

Synapse is a semantic launcher written in Vala that you can use to start
applications as well as find and access relevant documents and files by making
use of the Zeitgeist engine.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #671862 - Review Request: synapse - A semantic launcher written in Vala
        https://bugzilla.redhat.com/show_bug.cgi?id=671862
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe: 
https://admin.fedoraproject.org/mailman/listinfo/test
[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux