Fedora 13 updates-testing report

Wed May 25 03:31:42 UTC 2011

The following Fedora 13 Security updates need testing:

    https://admin.fedoraproject.org/updates/php-ZendFramework-1.11.6-1.fc13
    https://admin.fedoraproject.org/updates/gimp-2.6.11-14.fc13
    https://admin.fedoraproject.org/updates/tor-0.2.1.29-1300.fc13
    https://admin.fedoraproject.org/updates/rssh-2.3.3-1.fc13
    https://admin.fedoraproject.org/updates/viewvc-1.1.11-1.fc13
    https://admin.fedoraproject.org/updates/libmodplug-0.8.7-3.fc13
    https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
    https://admin.fedoraproject.org/updates/libcgroup-0.35.1-5.fc13
    https://admin.fedoraproject.org/updates/polkit-0.96-2.fc13
    https://admin.fedoraproject.org/updates/xorg-x11-server-utils-7.4-17.fc13
    https://admin.fedoraproject.org/updates/kernel-2.6.34.9-69.fc13
    https://admin.fedoraproject.org/updates/cyrus-imapd-2.3.16-5.fc13
    https://admin.fedoraproject.org/updates/xen-3.4.3-3.fc13
    https://admin.fedoraproject.org/updates/libtiff-3.9.5-1.fc13
    https://admin.fedoraproject.org/updates/systemtap-1.4-6.fc13
    https://admin.fedoraproject.org/updates/apr-1.4.5-1.fc13

The following Fedora 13 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/kernel-2.6.34.9-69.fc13
    https://admin.fedoraproject.org/updates/polkit-0.96-2.fc13
    https://admin.fedoraproject.org/updates/python-ethtool-0.7-2.fc13
    https://admin.fedoraproject.org/updates/libtiff-3.9.5-1.fc13
    https://admin.fedoraproject.org/updates/pygtk2-2.17.0-9.fc13
    https://admin.fedoraproject.org/updates/dosfstools-3.0.9-5.fc13
    https://admin.fedoraproject.org/updates/libimobiledevice-1.0.6-1.fc13
    https://admin.fedoraproject.org/updates/usbmuxd-1.0.7-1.fc13
    https://admin.fedoraproject.org/updates/fuse-2.8.5-5.fc13
    https://admin.fedoraproject.org/updates/libcgroup-0.35.1-5.fc13
    https://admin.fedoraproject.org/updates/openldap-2.4.21-12.fc13
    https://admin.fedoraproject.org/updates/livecd-tools-13.2-1.fc13
    https://admin.fedoraproject.org/updates/lua-5.1.4-7.fc13
    https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13
    https://admin.fedoraproject.org/updates/lldpad-0.9.26-2.fc13

The following builds have been pushed to Fedora 13 updates-testing

    3Depict-0.0.6-1.fc13
    apr-1.4.5-1.fc13
    apr-util-1.3.12-1.fc13
    bluetile-0.5.3-7.fc13
    dcraw-9.08-1.fc13
    dojo-1.6.0-1.fc13
    ghc-dlist-0.5-3.fc13
    gimp-2.6.11-14.fc13
    git-cola-1.4.3.4-1.fc13
    gnome-chemistry-utils-0.12.8-2.fc13
    gnumeric-1.10.15-1.fc13
    goffice-0.8.15-1.fc13
    liveusb-creator-3.11.1-1.fc13
    lyx-1.6.10-1.fc13
    mod_flvx-0-0.1.20100525git.fc13
    php-ZendFramework-1.11.6-1.fc13
    qt-mobility-1.1.3-2.fc13
    rear-1.11.0-1.fc13
    recoll-1.15.8-2.fc13
    spyder-2.0.11-1.fc13
    vidalia-0.2.12-1.fc13
    votca-tools-1.1-1.fc13
    xen-3.4.3-3.fc13

Details about builds:

================================================================================
 3Depict-0.0.6-1.fc13 (FEDORA-2011-7444)
 Valued 3D point cloud visualization and analysis
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 20 2011 D Haley <mycae(a!t)yahoo.com> - 0.0.6-1
- Update to 0.0.6
--------------------------------------------------------------------------------

================================================================================
 apr-1.4.5-1.fc13 (FEDORA-2011-7340)
 Apache Portable Runtime library
--------------------------------------------------------------------------------
Update Information:

Move to 1.4.x branch.

Various bug fixes since 1.4.2.

Security: CVE-2011-0419 Reimplement apr_fnmatch() from scratch using a non-recursive algorithm; now has improved compliance with the fnmatch() spec.

Note: 1.4.3 was never officially released.

Fix CVE-2011-1928 introduced in 1.4.4.
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 20 2011 Bojan Smojver <bojan at rexursive.com> - 1.4.5-1
- bump up to 1.4.5
* Tue May 10 2011 Bojan Smojver <bojan at rexursive.com> - 1.4.4-2
- fix top_builddir in apr_rules.mk
* Mon May  9 2011 Bojan Smojver <bojan at rexursive.com> - 1.4.4-1
- bump up to 1.4.4
- CVE-2011-0419
* Wed Mar  2 2011 Joe Orton <jorton at redhat.com> - 1.4.2-3
- work around alising issue in ring macros (upstream PR 50190)
- fix buildconf with newer libtool (#670621)
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.4.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sat Dec  4 2010 Joe Orton <jorton at redhat.com> - 1.4.2-1
- update to 1.4.2
- always enable SCTP support (#659815)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #703390 - CVE-2011-0419 apr: unconstrained recursion in apr_fnmatch
        https://bugzilla.redhat.com/show_bug.cgi?id=703390
  [ 2 ] Bug #706203 - CVE-2011-1928 apr: DoS flaw in apr_fnmatch() due to fix for CVE-2011-0419
        https://bugzilla.redhat.com/show_bug.cgi?id=706203
--------------------------------------------------------------------------------

================================================================================
 apr-util-1.3.12-1.fc13 (FEDORA-2011-7203)
 Apache Portable Runtime Utility library
--------------------------------------------------------------------------------
Update Information:

Support for Berkeley DB 5.1, DBD ODBC and Oracle fixes, LDAP fixes.

Fix crash in apr_ldap_rebind_init().
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 20 2011 Bojan Smojver <bojan at rexursive.com> - 1.3.12-1
- bump up to 1.3.12
* Wed May 11 2011 Bojan Smojver <bojan at rexursive.com> - 1.3.11-2
- fix crash in apr_ldap_rebind_init()
* Mon May  9 2011 Bojan Smojver <bojan at rexursive.com> - 1.3.11-1
- bump up to 1.3.11
* Wed Mar 23 2011 Dan Horák <dan at danny.cz> - 1.3.10-7
- rebuilt for mysql 5.5.10 (soname bump in libmysqlclient)
* Wed Mar 23 2011 Joe Orton <jorton at redhat.com> - 1.3.10-6
- rebuild for MySQL soname bump
* Wed Mar  2 2011 Joe Orton <jorton at redhat.com> - 1.3.10-5
- fix build
* Wed Mar  2 2011 Joe Orton <jorton at redhat.com> - 1.3.10-4
- rebuild
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.3.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Wed Dec 29 2010 Bojan Smojver <bojan at rexursive.com> - 1.3.10-2
- rebuild for MySQL 5.5.x
--------------------------------------------------------------------------------

================================================================================
 bluetile-0.5.3-7.fc13 (FEDORA-2011-7433)
 Tiling window manager for GNOME
--------------------------------------------------------------------------------
Update Information:

Add working gnome-bluetile-session setup.
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Jens Petersen <petersen at redhat.com> - 0.5.3-7.fc14
- use bluetile for WMName
- make gnome-bluetile-session script hack just run bluetile and gnome-session
* Fri May 13 2011 Jens Petersen <petersen at redhat.com> - 0.5.3-6.fc14
- replace gnome-bluetile-session with a script that temporarily overrides
  the default gnome-session windowmanager
- patch the WMName to be Bluetile
* Wed Apr 20 2011 Jens Petersen <petersen at redhat.com> - 0.5.3-5
- gnome-session uses gconf to find window-manager:
- remove gnome-bluetile-session, since WINDOW_MANAGER doesn't work by default
- add a readme file explaining the gconf and other ways of setting up
--------------------------------------------------------------------------------

================================================================================
 dcraw-9.08-1.fc13 (FEDORA-2011-7392)
 Tool for decoding raw image data from digital cameras
--------------------------------------------------------------------------------
Update Information:

Version 9.08: Support the Fuji HS20EXR/F550EXR, Kodak Z990, Leaf AFi-II 12, Nikon D5100, and Samsung NX11 and NX100.
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Nils Philippsen <nils at redhat.com> - 9.08-1
- version 9.08
--------------------------------------------------------------------------------

================================================================================
 dojo-1.6.0-1.fc13 (FEDORA-2011-7448)
 Modular JavaScript toolkit
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #609817 - Review Request: dojo - Modular JavaScript toolkit
        https://bugzilla.redhat.com/show_bug.cgi?id=609817
--------------------------------------------------------------------------------

================================================================================
 ghc-dlist-0.5-3.fc13 (FEDORA-2011-7407)
 Haskell differences lists
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #664205 - Review Request: ghc-dlist - Haskell package that provides difference lists
        https://bugzilla.redhat.com/show_bug.cgi?id=664205
--------------------------------------------------------------------------------

================================================================================
 gimp-2.6.11-14.fc13 (FEDORA-2011-7397)
 GNU Image Manipulation Program
--------------------------------------------------------------------------------
Update Information:

This update fixes buffer overflows in the PSP (CVE-2010-4543, CVE-2011-1782), sphere-designer (CVE-2010-4541), gfig (CVE-2010-4542) and lighting (CVE-2010-4540) plugins.
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Nils Philippsen <nils at redhat.com> - 2:2.6.11-14
- fix buffer overflows in sphere-designer (CVE-2010-4541),
  gfig (CVE-2010-4542), lighting (CVE-2010-4540) plugins
* Mon May 23 2011 Nils Philippsen <nils at redhat.com> - 2:2.6.11-13
- harden PSP plugin against bogus input data (CVE-2010-4543, CVE-2011-1782)
* Sat May  7 2011 Christopher Aillon <caillon at redhat.com> - 2:2.6.11-12
- Update desktop database, icon cache scriptlets
* Fri May  6 2011 Nils Philippsen <nils at redhat.com> - 2:2.6.11-11
- simplify poppler-0.17 patch to avoid adding to libgimp (#698157)
* Wed May  4 2011 Nils Philippsen <nils at redhat.com> - 2:2.6.11-10
- don't use poppler/gdk_pixbuf API removed in poppler >= 0.17 (#698157)
- remove obsolete configure options
* Tue Mar 15 2011 Nils Philippsen <nils at redhat.com> - 2:2.6.11-9
- don't use HAL from F-16/RHEL-7 on
- explicitly use GIO/GVFS rather than gnome-vfs
* Sun Mar 13 2011 Marek Kasik <mkasik at redhat.com> - 2:2.6.11-8
- Rebuild (poppler-0.16.3)
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2:2.6.11-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #706939 - CVE-2010-4540 CVE-2010-4541 CVE-2010-4542 CVE-2010-4543 CVE-2011-1782 CVE-2010-4543 gimp various flaws [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=706939
--------------------------------------------------------------------------------

================================================================================
 git-cola-1.4.3.4-1.fc13 (FEDORA-2011-7408)
 A highly caffeinated git gui
--------------------------------------------------------------------------------
Update Information:

An update to the latest upstream bugfix release of git-cola, fixing some more bugs with non-ASCII characters (again) and providing better user feedback for some actions.

http://cola.tuxfamily.org/share/doc/git-cola/html/relnotes.html
--------------------------------------------------------------------------------
ChangeLog:

* Sat May 21 2011 Kevin Kofler <Kevin at tigcc.ticalc.org> - 1.4.3.4-1
- Update to 1.4.3.4 (#706588)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #706588 - git-cola-1.4.3.4 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=706588
--------------------------------------------------------------------------------

================================================================================
 gnome-chemistry-utils-0.12.8-2.fc13 (FEDORA-2011-7400)
 A set of chemical utilities
--------------------------------------------------------------------------------
Update Information:

This update includes latest bugfix releases of goffice and gnumeric, as well as the required gnome-chemistry-utils rebuild.
* ftp://ftp.gnome.org/pub/GNOME/sources/goffice/0.8/goffice-0.8.15.news
* ftp://ftp.gnome.org/pub/GNOME/sources/gnumeric/1.10/gnumeric-1.10.15.news
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 22 2011 Julian Sikorski <belegdol at fedoraproject.org> - 0.12.8-2
- Rebuilt for goffice-0.8.15 and gnumeric-1.10.15
--------------------------------------------------------------------------------

================================================================================
 gnumeric-1.10.15-1.fc13 (FEDORA-2011-7400)
 Spreadsheet program for GNOME
--------------------------------------------------------------------------------
Update Information:

This update includes latest bugfix releases of goffice and gnumeric, as well as the required gnome-chemistry-utils rebuild.
* ftp://ftp.gnome.org/pub/GNOME/sources/goffice/0.8/goffice-0.8.15.news
* ftp://ftp.gnome.org/pub/GNOME/sources/gnumeric/1.10/gnumeric-1.10.15.news
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 22 2011 Julian Sikorski <belegdol at fedoraproject.org> - 1:1.10.15-1
- Updated to 1.10.15
- Updated GSettings scriptlets to the latest version
--------------------------------------------------------------------------------

================================================================================
 goffice-0.8.15-1.fc13 (FEDORA-2011-7400)
 Goffice support libraries
--------------------------------------------------------------------------------
Update Information:

This update includes latest bugfix releases of goffice and gnumeric, as well as the required gnome-chemistry-utils rebuild.
* ftp://ftp.gnome.org/pub/GNOME/sources/goffice/0.8/goffice-0.8.15.news
* ftp://ftp.gnome.org/pub/GNOME/sources/gnumeric/1.10/gnumeric-1.10.15.news
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 22 2011 Julian Sikorski <belegdol at gmail.com> - 0.8.15-1
- Updated to 0.8.15
--------------------------------------------------------------------------------

================================================================================
 liveusb-creator-3.11.1-1.fc13 (FEDORA-2011-7475)
 A liveusb creator
--------------------------------------------------------------------------------
Update Information:

Support downloading the latest Fedora 15 release
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 24 2011 Luke Macken <lmacken at redhat.com> - 3.11.1-1
- Bump to support downloading Fedora 15
* Mon Apr 25 2011 Luke Macken <lmacken at redhat.com> - 3.11.0-1
- Latest upstream release
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.9.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Jan 10 2011 Luke Macken <lmacken at redhat.com> - 3.9.3-1
- Update to 3.9.3
- Require syslinux-extlinux (#664093, #665002)
--------------------------------------------------------------------------------

================================================================================
 lyx-1.6.10-1.fc13 (FEDORA-2011-7497)
 WYSIWYM (What You See Is What You Mean) document processor
--------------------------------------------------------------------------------
Update Information:

Latest 1.6 bugfix release, and brings compatiblity with 2.0 .lyx files.  See also:
http://www.lyx.org/announce/1_6_10.txt
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Rex Dieter <rdieter at fedoraproject.org> - 1.6.10-1
- lyx-1.6.10
* Mon Feb  7 2011 Rex Dieter <rdieter at fedoraproject.org> - 1.6.9-1
- lyx-1.6.9
--------------------------------------------------------------------------------

================================================================================
 mod_flvx-0-0.1.20100525git.fc13 (FEDORA-2011-7436)
 FLV progressive download streaming for the Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:

FLV streaming means it can be sought to any position during video, and browser (Flash player) will buffer only from this position to the end. Thus streaming allows to skip boring parts or see video ending without loading the whole file, which simply saves bandwidth. Even H264 is more efficient, FLV is still a common container format for videos, because H264 is supported by Flash since version 9.115.

For using FLV streaming on the web, a pseudo-streaming compliant Flash player, such as Flowplayer, is needed. Streaming requires that the FLV has embedded key-frame markers (meta-data), that can be injected by any supported tool, e.g. flvtool2.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #688121 - Review Request: mod_flvx - FLV progressive download streaming for the Apache HTTP Server
        https://bugzilla.redhat.com/show_bug.cgi?id=688121
--------------------------------------------------------------------------------

================================================================================
 php-ZendFramework-1.11.6-1.fc13 (FEDORA-2011-7388)
 Leading open-source PHP framework
--------------------------------------------------------------------------------
Update Information:

Fixes ZF2011-02: Potential SQL Injection Vector When Using PDO_MySql
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Felix Kaechele <heffer at fedoraproject.org> - 1.11.6-1
- update to 1.11.6
- fixes ZF2011-02: Potential SQL Injection Vector When Using PDO_MySql
- full changelog http://framework.zend.com/changelog/1.11.6
--------------------------------------------------------------------------------

================================================================================
 qt-mobility-1.1.3-2.fc13 (FEDORA-2011-7368)
 Qt Mobility Framework
--------------------------------------------------------------------------------
Update Information:

This Qt Mobility version brings a number of new features as well as improvements to existing modules.  See also: http://qt.nokia.com/products/qt-addons/mobility/
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Rex Dieter <rdieter at fedoraproject.org> 1.1.3-2
- drop BR: qt4-webkit-devel
- BR: gstreamer-plugins-bad-free-devel gstreamer-plugins-base-devel libXv-devel
- tweaks for qt-4.6 (el6)
* Mon May  9 2011 Jaroslav Reznik <jreznik at redhat.com> 1.1.3-1
- 1.1.3
* Tue Apr 19 2011 Rex Dieter <rdieter at fedoraproject.org> 1.1.1-1
- 1.1.1
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.1.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Dec  9 2010 Rex Dieter <rdieter at fedoraproject.org> 1.1.0-1
- 1.1.0
--------------------------------------------------------------------------------

================================================================================
 rear-1.11.0-1.fc13 (FEDORA-2011-7454)
 Relax and Recover (ReaR) is a Linux Disaster Recovery framework
--------------------------------------------------------------------------------
Update Information:

New release of rear-1.11.0
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 23 2011 Gratien D'haese <gdha at sourceforge.net> - 1.11.0-1
- placeholder for release
--------------------------------------------------------------------------------

================================================================================
 recoll-1.15.8-2.fc13 (FEDORA-2011-7437)
 Desktop full text search tool with Qt GUI
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release recoll 1.15.8.  
Also includes additional fix from upstream to fix a post release issue.

Update to latest upstream release recoll 1.15.8.

--------------------------------------------------------------------------------
ChangeLog:

* Tue May 24 2011 Terje Rosten <terje.rosten at ntnu.no> - 1.15.8-2
- add patch from upstream to fix crash.
* Sun May  8 2011 Terje Rosten <terje.rosten at ntnu.no> - 1.15.8-1
- 1.15.8
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.14.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #702046 - Update recoll to 1.15.8
        https://bugzilla.redhat.com/show_bug.cgi?id=702046
  [ 2 ] Bug #704439 - [abrt] recoll-1.15.8-1.fc15: _M_grab: Process /usr/bin/recoll was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=704439
  [ 3 ] Bug #703710 - Recoll won't start because of a segmentation fault
        https://bugzilla.redhat.com/show_bug.cgi?id=703710
  [ 4 ] Bug #700321 - [abrt] recoll-1.14.4-1.fc14: re.py:151:sub:UnicodeDecodeError: 'ascii' codec can't decode byte 0xc9 in position 0: ordinal not in range(128)
        https://bugzilla.redhat.com/show_bug.cgi?id=700321
--------------------------------------------------------------------------------

================================================================================
 spyder-2.0.11-1.fc13 (FEDORA-2011-7452)
 Scientific Python Development Environment
--------------------------------------------------------------------------------
Update Information:

Update to 2.0.11
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 22 2011 Chen Lei <supercyper at 163.com> - 2.0.11-1
- Update to 2.0.11
--------------------------------------------------------------------------------

================================================================================
 vidalia-0.2.12-1.fc13 (FEDORA-2011-7413)
 GUI controller for the Tor Onion Routing Network
--------------------------------------------------------------------------------
Update Information:

Update to 0.2.12
--------------------------------------------------------------------------------
ChangeLog:

* Sun May 22 2011 Chen Lei <supercyper at 163.com> - 0.2.12-1
- New upstream release
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.2.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Wed Sep 29 2010 jkeating - 0.2.10-2
- Rebuilt for gcc bug 634757
--------------------------------------------------------------------------------

================================================================================
 votca-tools-1.1-1.fc13 (FEDORA-2011-7345)
 VOTCA tools library
--------------------------------------------------------------------------------
Update Information:

Fix votca-csg by pushing correct version of VOTCA libraries.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Feb 20 2011 Jussi Lehtola <jussilehtola at fedoraproject.org> - 1.1-1
- Update to 1.1.
* Mon Feb  7 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sun Feb  6 2011 Thomas Spura <tomspur at fedoraproject.org> - 1.0.1-4
- rebuild for new boost
* Sun Dec 26 2010 Dan Horák <dan[at]danny.cz> - 1.0.1-3
- fix build on non-x86 64-bit architectures (ax_boost_base.m4 is wrong)
--------------------------------------------------------------------------------

================================================================================
 xen-3.4.3-3.fc13 (FEDORA-2011-7421)
 Xen is a virtual machine monitor
--------------------------------------------------------------------------------
Update Information:

gain privileged access to base domain, or access to xen
configuration info. Lack of error checking could allow DoS
attack from guest. [CVE-2011-1583]
--------------------------------------------------------------------------------
ChangeLog:

* Sat May 21 2011 Michael Young <m.a.young at durham.ac.uk> - 3.4.3-3
- Overflows in kernel decompression can allow root on xen PV guest to gain
  privileged access to base domain, or access to xen configuration info.
  Lack of error checking could allow DoS attack from guest [CVE-2011-1583]
--------------------------------------------------------------------------------