Fedora 14 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Fri Apr 8 23:21:37 UTC 2011
The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/libvirt-0.8.3-9.fc14
https://admin.fedoraproject.org/updates/couchdb-1.0.2-1.fc14
https://admin.fedoraproject.org/updates/mediawiki-1.16.2-56.fc14
https://admin.fedoraproject.org/updates/xorg-x11-server-utils-7.5-5.fc14
https://admin.fedoraproject.org/updates/nss-3.12.9-9.fc14
https://admin.fedoraproject.org/updates/tor-0.2.1.29-1400.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/logrotate-3.7.9-2.fc14
https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc14
https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
https://admin.fedoraproject.org/updates/quagga-0.99.18-1.fc14
https://admin.fedoraproject.org/updates/perl-5.12.3-143.fc14
https://admin.fedoraproject.org/updates/proftpd-1.3.3e-1.fc14
https://admin.fedoraproject.org/updates/exim-4.72-2.fc14
https://admin.fedoraproject.org/updates/python-feedparser-5.0.1-1.fc14
https://admin.fedoraproject.org/updates/dhcp-4.2.0-21.P2.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/xorg-x11-server-utils-7.5-5.fc14
https://admin.fedoraproject.org/updates/dosfstools-3.0.9-6.fc14
https://admin.fedoraproject.org/updates/grep-2.7-2.fc14
https://admin.fedoraproject.org/updates/perl-5.12.3-143.fc14
https://admin.fedoraproject.org/updates/kernel-2.6.35.12-88.fc14
https://admin.fedoraproject.org/updates/tzdata-2011d-3.fc14
https://admin.fedoraproject.org/updates/audit-2.1-1.fc14
https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-28.fc14
https://admin.fedoraproject.org/updates/gdb-7.2-51.fc14
https://admin.fedoraproject.org/updates/nss-3.12.9-9.fc14
https://admin.fedoraproject.org/updates/libimobiledevice-1.0.6-1.fc14
https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
https://admin.fedoraproject.org/updates/usbmuxd-1.0.7-1.fc14
https://admin.fedoraproject.org/updates/libnl-1.1-14.fc14
https://admin.fedoraproject.org/updates/logrotate-3.7.9-2.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/avahi-0.6.27-6.fc14
https://admin.fedoraproject.org/updates/mobile-broadband-provider-info-1.20110218-1.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-geode-2.11.11-4.fc14
The following builds have been pushed to Fedora 14 updates-testing
bluedevil-1.0.3-1.fc14
celt071-0.7.1-2.fc14
ghc-regexpr-0.5.3-2.fc14
golly-2.2-2.fc14
hanazono-fonts-20101013-1.fc14
kdevelop-4.2.2-1.fc14
kdevelop-pg-qt-0.9.5-1.fc14
kdevelop-php-1.2.2-1.fc14
kdevplatform-1.2.2-1.fc14
latexila-2.0.7-1.fc14
nikto-2.1.4-1.fc14
oct2spec-1.0.1-2.fc14
openvas-libraries-4.0.3-2.fc14
oprofile-0.9.6-20.fc14
pam_shield-0.9.5-4.fc14
perl-Browser-Open-0.03-2.fc14
perl-CHI-0.44-3.fc14
perl-version-0.88-2.fc14
postgresql-8.4.7-2.fc14
proftpd-1.3.3e-1.fc14
python-testtools-0.9.8-2.fc14
saphire-1.3.8-1.fc14
sir-2.1.1-3.fc14
synapse-0.2.4.2-1.fc14
Details about builds:
================================================================================
bluedevil-1.0.3-1.fc14 (FEDORA-2011-5041)
Bluetooth stack for KDE
--------------------------------------------------------------------------------
Update Information:
This update introduces Bluedevil - the new KDE bluetooth application/stack - to Fedora 14 as a default option. It replaces the old Kbluetooth solution as it's obsoleted in KDE Platform 4.6.1.
Bluedevil changelog:
- Fixed requestPin helper by flushing cout buffer
- Fixed requestConfirmation by passing the correct arguments
- BUG: 267302 (crash reproducible for example with an iPhone)
- Improved wizard device name detection.
- Fixed “Send files” in some system by being sure that the defaultAdapter is NOT discovering.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693236 - kbluetooth no longer works with KDE 4.6.1 update
https://bugzilla.redhat.com/show_bug.cgi?id=693236
--------------------------------------------------------------------------------
================================================================================
celt071-0.7.1-2.fc14 (FEDORA-2011-5047)
An audio codec for use in low-delay speech and audio communication
--------------------------------------------------------------------------------
Update Information:
Initial build for celt071
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #641572 - Review Request: celt071 - Celt version 0.7.1 for mumble compatibility
https://bugzilla.redhat.com/show_bug.cgi?id=641572
--------------------------------------------------------------------------------
================================================================================
ghc-regexpr-0.5.3-2.fc14 (FEDORA-2011-5036)
Regular expression like Perl/Ruby in Haskell
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #630205 - Review Request: ghc-regexpr - Regular expression like Perl/Ruby in Haskell
https://bugzilla.redhat.com/show_bug.cgi?id=630205
--------------------------------------------------------------------------------
================================================================================
golly-2.2-2.fc14 (FEDORA-2011-5028)
Cellular automata simulator (includes Conway's Game of Life)
--------------------------------------------------------------------------------
Update Information:
Golly is an open source application for exploring Conway's Game of
Life and other cellular automata. Golly supports unbounded universes
with up to 256 states. Golly supports multiple algorithms, including
Bill Gosper's super fast hashlife algorithm. Many different types of
CA are included: John von Neumann's 29-state CA, Wolfram's 1D rules,
WireWorld, Generations, Langton's Loops, Paterson's Worms, etc.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #590355 - Review Request: golly - cellular automata simulator
https://bugzilla.redhat.com/show_bug.cgi?id=590355
--------------------------------------------------------------------------------
================================================================================
hanazono-fonts-20101013-1.fc14 (FEDORA-2011-5031)
Japanese Mincho-typeface TrueType font
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 8 2011 Akira TAGOH <tagoh at redhat.com> - 20101013-1
- New upstream release. (#692826)
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 20100718-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #692826 - hanazono-fonts-20101013 is available
https://bugzilla.redhat.com/show_bug.cgi?id=692826
--------------------------------------------------------------------------------
================================================================================
kdevelop-4.2.2-1.fc14 (FEDORA-2011-5054)
Integrated Development Environment for C++/C
--------------------------------------------------------------------------------
Update Information:
Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Radek Novacek <rnovacek at redhat.com> 9:4.2.2-1
- Update to 4.2.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693680 - kdevelop-4.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------
================================================================================
kdevelop-pg-qt-0.9.5-1.fc14 (FEDORA-2011-5054)
A parser generator
--------------------------------------------------------------------------------
Update Information:
Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Radek Novacek <rnovacek at redhat.com> 0.9.5-1
- Update to 0.9.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693680 - kdevelop-4.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------
================================================================================
kdevelop-php-1.2.2-1.fc14 (FEDORA-2011-5054)
Php language plugin for KDevelop
--------------------------------------------------------------------------------
Update Information:
Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Radek Novacek <rnovacek at redhat.com> 1.2.2-1
- Update to 1.2.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693680 - kdevelop-4.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------
================================================================================
kdevplatform-1.2.2-1.fc14 (FEDORA-2011-5054)
Libraries for use by KDE development tools
--------------------------------------------------------------------------------
Update Information:
Update to new upstream update release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Radek Novacek <rnovacek at redhat.com> - 1.2.2-1
- Update to 1.2.2
- Remove FTBFS with g++ 4.6 patch
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693680 - kdevelop-4.2.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=693680
--------------------------------------------------------------------------------
================================================================================
latexila-2.0.7-1.fc14 (FEDORA-2011-5056)
Integrated LaTeX Environment for the GNOME desktop
--------------------------------------------------------------------------------
Update Information:
Update to 2.0.7
New upstream release 2.0.6
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Thibault North <tnorth at fedoraproject.org> - 2.0.7-1
- Update to 2.0.7
* Sun Mar 20 2011 Thibault North <tnorth at fedoraproject.org> - 2.0.6-1
- Update to 2.0.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #694657 - Please update to latexila 2.0.7
https://bugzilla.redhat.com/show_bug.cgi?id=694657
--------------------------------------------------------------------------------
================================================================================
nikto-2.1.4-1.fc14 (FEDORA-2011-5032)
Web server scanner
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 28 2011 Michal Ambroz <rebus AT seznam.cz> - 1:2.1.4-1
- Version bump
* Sun Sep 12 2010 Michal Ambroz <rebus AT seznam.cz> - 1:2.1.3-1
- Version bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #632931 - nikto - new version 2.1.4 released
https://bugzilla.redhat.com/show_bug.cgi?id=632931
--------------------------------------------------------------------------------
================================================================================
oct2spec-1.0.1-2.fc14 (FEDORA-2011-5053)
Python script to generate Octave package spec file
--------------------------------------------------------------------------------
================================================================================
openvas-libraries-4.0.3-2.fc14 (FEDORA-2011-5029)
Support libraries for Open Vulnerability Assessment (OpenVAS) Scanner
--------------------------------------------------------------------------------
Update Information:
Module of a new release OpenVAS 4
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 22 2011 Michal Ambroz <rebus at, seznam.cz> - 4.0.3-2
- patch not used
* Fri Mar 18 2011 Michal Ambroz <rebus at, seznam.cz> - 4.0.3-1
- Bump to latest stable release 4
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.1.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
oprofile-0.9.6-20.fc14 (FEDORA-2011-5030)
System wide profiler
--------------------------------------------------------------------------------
Update Information:
Re-enable xenoprof support in OProfile. Also some fixes in the spec file.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 5 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-20
- Re-enable xenoprof patch.
* Thu Mar 31 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-19
- Provide oprofile-static.
* Tue Mar 15 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-18
- Clean up rpmlint complaints.
* Tue Mar 15 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-17
- Correct oprofile user information.
* Thu Mar 10 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-16
- Remove obsolete configure options.
* Thu Mar 10 2011 Will Cohen <wcohen at redhat.com> - 0.9.6-15
- Use QT4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #687914 - oprofile user without $HOME
https://bugzilla.redhat.com/show_bug.cgi?id=687914
[ 2 ] Bug #683923 - oprofile-gui is built against qt3
https://bugzilla.redhat.com/show_bug.cgi?id=683923
[ 3 ] Bug #609614 - oprofile : does not adhere to Static Library Packaging Guidelines
https://bugzilla.redhat.com/show_bug.cgi?id=609614
[ 4 ] Bug #693596 - OProfile package does not build with Xen support
https://bugzilla.redhat.com/show_bug.cgi?id=693596
--------------------------------------------------------------------------------
================================================================================
pam_shield-0.9.5-4.fc14 (FEDORA-2011-5055)
Pam Shield - A pam module to counter brute force attacks
--------------------------------------------------------------------------------
Update Information:
added %{optflags}
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Carl Thompson <fedora at red-dragon.com> 0.9.5-4
- fixed a typo in previous release in %build
LANG=C
export LANG
unset DISPLAY
section
* Thu Apr 7 2011 Carl Thompson <fedora at red-dragon.com> 0.9.5-3
- updated %build
LANG=C
export LANG
unset DISPLAY
section with -O2 -g -pipe -Wall -Wp,-D_FORTIFY_SOURCE=2 -fexceptions -fstack-protector --param=ssp-buffer-size=4 -m64 -mtune=generic
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #694557 - pam_shield not built with $RPM_OPT_FLAGS
https://bugzilla.redhat.com/show_bug.cgi?id=694557
[ 2 ] Bug #691153 - Review Request: pam_shield - pam module to block brute force attacks
https://bugzilla.redhat.com/show_bug.cgi?id=691153
--------------------------------------------------------------------------------
================================================================================
perl-Browser-Open-0.03-2.fc14 (FEDORA-2011-5046)
Open a browser in a given URL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #680593 - Review Request: perl-Browser-Open - Open a browser in a given URL
https://bugzilla.redhat.com/show_bug.cgi?id=680593
--------------------------------------------------------------------------------
================================================================================
perl-CHI-0.44-3.fc14 (FEDORA-2011-5027)
Unified cache handling interface
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #688035 - Review Request: perl-CHI - Unified cache handling interface
https://bugzilla.redhat.com/show_bug.cgi?id=688035
--------------------------------------------------------------------------------
================================================================================
perl-version-0.88-2.fc14 (FEDORA-2011-5025)
Perl extension for Version Objects
--------------------------------------------------------------------------------
Update Information:
Unexports private version::vxs symbol
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 8 2011 Petr Pisar <ppisar at redhat.com> - 3:0.88-2
- Unexport private version::vxs module (bug #633775)
- Remove BuildRoot stuff
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #633775 - perl-version twice in f14 repo
https://bugzilla.redhat.com/show_bug.cgi?id=633775
--------------------------------------------------------------------------------
================================================================================
postgresql-8.4.7-2.fc14 (FEDORA-2011-5058)
PostgreSQL client programs
--------------------------------------------------------------------------------
Update Information:
Add fix to make plpgsql cope with dropped columns in rowtypes
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 7 2011 Tom Lane <tgl at redhat.com> 8.4.7-2
- Add fix to make plpgsql cope with dropped columns in rowtypes
Related: #694249
- Add %{?_isa} to cross-subpackage Requires, per latest packaging guidelines,
and add explicit dependencies on the -libs subpackage to pacify rpmdiff
--------------------------------------------------------------------------------
================================================================================
proftpd-1.3.3e-1.fc14 (FEDORA-2011-5040)
Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:
This update, to the current upstream maintenance release, fixes a large number of bugs (see NEWS for details), and also a couple of security issues:
* Plaintext command injection vulnerability in FTPS implementation (i.e. mod_tls). See http://bugs.proftpd.org/show_bug.cgi?id=3624 for details.
* CVE-2011-1137 (badly formed SSH messages cause DoS). See http://bugs.proftpd.org/show_bug.cgi?id=3586 for details.
Other highlights include:
* Display messages work properly again.
* Performance improvements, especially during server startup/restarts.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 4 2011 Paul Howarth <paul at city-fan.org> 1.3.3e-1
- Update to 1.3.3e, fixing a large number of bugs reported upstream:
- Process privileges may not handled properly when --enable-autoshadow is
used (bug 3757)
- mod_sftp closes channel too early after scp download (bug 3544)
- mod_sftp_pam may tell client to disable echoing erroneously (bug 3579)
- mod_sftp behaves badly when receiving badly formed SSH messages (bug 3586,
CVE-2011-1137)
- Using "$shell $libtool" in prxs does not work for all shells (bug 3593)
- WrapAllowMsg directive broken due to bug 3423 (bug 3538)
- SocketOptions receive/send buffer size parameters no longer work (bug 3607)
- mod_wrap2 needs to support netmask rules for IPv6 addresses (bug 3606)
- APPE/STOU upload flags erroneously preserved across upload commands
(bug 3612)
- Malicious module can use sreplace() function to overflow buffer (bug 3614)
- Exiting sessions don't seem to die properly (bug 3619)
- mod_delay sometimes logs "unable to load DelayTable into memory" (bug 3622)
- Plaintext command injection in FTPS support (bug 3624)
- mod_ifsession rules using regular expressions do not work (bug 3625)
- Truncated client name saved in ScoreboardFile (bug 3623)
- %w variable populated with non-absolute path in SQLLog statement (bug 3627)
- Unnecessarily verbose "warning: unable to throttle bandwidth: Interrupted
system call" (bug 3628)
- SSH DISCONNECT messages sent by mod_sftp even for FTP connections in some
cases (bug 3630)
- mod_sql should log "unrecoverable database error" at a higher priority
(bug 3632)
- Proftpd is eating CPU when reparsing configuration file on SIGHUP (bug 3610)
- Incorrect generation of DSA signature for SSH sessions (bug 3634)
- Nobody else likes macros for commands
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #681718 - CVE-2011-1137 proftpd: integer overflow in mod_sftp
https://bugzilla.redhat.com/show_bug.cgi?id=681718
--------------------------------------------------------------------------------
================================================================================
python-testtools-0.9.8-2.fc14 (FEDORA-2011-5044)
Extensions to the Python unit testing framework
--------------------------------------------------------------------------------
Update Information:
Extensions to the Python unit test framework, used primarily by some Canonical-sponsored projects
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #694568 - Review Request: python-testtools - Extensions to the Python unit testing framework
https://bugzilla.redhat.com/show_bug.cgi?id=694568
--------------------------------------------------------------------------------
================================================================================
saphire-1.3.8-1.fc14 (FEDORA-2011-5043)
Yet another shell
--------------------------------------------------------------------------------
Update Information:
New version 1.3.8 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 9 2011 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.3.8-1
- 1.3.8
* Sun Apr 3 2011 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.3.7-1
- 1.3.7
--------------------------------------------------------------------------------
================================================================================
sir-2.1.1-3.fc14 (FEDORA-2011-5048)
A simple application for resizing images
--------------------------------------------------------------------------------
Update Information:
A simple application for resizing images
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #688056 - Review Request: sir - A simple application for resizing images
https://bugzilla.redhat.com/show_bug.cgi?id=688056
--------------------------------------------------------------------------------
================================================================================
synapse-0.2.4.2-1.fc14 (FEDORA-2011-5057)
A semantic launcher written in Vala
--------------------------------------------------------------------------------
Update Information:
Synapse is a semantic launcher written in Vala that you can use to start
applications as well as find and access relevant documents and files by making
use of the Zeitgeist engine.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #671862 - Review Request: synapse - A semantic launcher written in Vala
https://bugzilla.redhat.com/show_bug.cgi?id=671862
--------------------------------------------------------------------------------
More information about the test
mailing list