Fedora 17 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Wed Jan 16 19:55:37 UTC 2013
The following Fedora 17 Security updates need testing:
Age URL
0 https://admin.fedoraproject.org/updates/FEDORA-2013-0833/seamonkey-2.15-1.fc17
0 https://admin.fedoraproject.org/updates/FEDORA-2013-0834/ettercap-0.7.5-3.fc17.1.20120906gitc796e5
7 https://admin.fedoraproject.org/updates/FEDORA-2013-0459/gnupg-1.4.13-2.fc17
0 https://admin.fedoraproject.org/updates/FEDORA-2013-0839/rubygem-multi_xml-0.4.1-4.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0685/moin-1.9.6-1.fc17
114 https://admin.fedoraproject.org/updates/FEDORA-2012-14650/tor-0.2.2.39-1700.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0635/rubygem-actionpack-3.0.11-8.fc17,rubygem-activerecord-3.0.11-5.fc17,rubygem-activemodel-3.0.11-2.fc17,rubygem-activesupport-3.0.11-7.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0210/vdsm-4.10.0-13.fc17
7 https://admin.fedoraproject.org/updates/FEDORA-2013-0483/proftpd-1.3.4b-4.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0231/ca-certificates-2012.87-1.fc17
194 https://admin.fedoraproject.org/updates/FEDORA-2012-10269/revelation-0.4.14-1.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0246/drupal6-context-3.1-1.fc17
7 https://admin.fedoraproject.org/updates/FEDORA-2012-19606/cups-1.5.4-18.fc17
36 https://admin.fedoraproject.org/updates/FEDORA-2012-20092/libproxy-0.4.11-1.fc17
7 https://admin.fedoraproject.org/updates/FEDORA-2013-0455/fedora-business-cards-1-0.1.beta1.fc17
14 https://admin.fedoraproject.org/updates/FEDORA-2013-0057/php-ZendFramework-1.12.1-1.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0608/xen-4.1.4-2.fc17
9 https://admin.fedoraproject.org/updates/FEDORA-2013-0336/sleuthkit-4.0.1-1.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0696/perl-5.14.3-220.fc17
2 https://admin.fedoraproject.org/updates/FEDORA-2013-0753/nagios-3.4.4-1.fc17
0 https://admin.fedoraproject.org/updates/FEDORA-2013-0859/samba4-4.0.0-59alpha18.fc17
0 https://admin.fedoraproject.org/updates/FEDORA-2013-0861/rubygem-rack-1.4.0-3.fc17
The following Fedora 17 Critical Path updates have yet to be approved:
Age URL
2 https://admin.fedoraproject.org/updates/FEDORA-2013-0776/gdb-7.4.50.20120120-54.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0696/perl-5.14.3-220.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0645/shadow-utils-4.1.5.1-2.fc17
4 https://admin.fedoraproject.org/updates/FEDORA-2013-0694/perl-5.14.3-219.fc17
7 https://admin.fedoraproject.org/updates/FEDORA-2013-0497/fedora-release-17-2
7 https://admin.fedoraproject.org/updates/FEDORA-2013-0481/python-urlgrabber-3.9.1-18.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0231/ca-certificates-2012.87-1.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0242/xorg-x11-drv-intel-2.20.17-1.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0275/mdadm-3.2.6-8.fc17
11 https://admin.fedoraproject.org/updates/FEDORA-2013-0236/qtwebkit-2.2.2-5.fc17
13 https://admin.fedoraproject.org/updates/FEDORA-2013-0106/upower-0.9.19-1.fc17
13 https://admin.fedoraproject.org/updates/FEDORA-2013-0119/xkeyboard-config-2.5.1-4.fc17
146 https://admin.fedoraproject.org/updates/FEDORA-2012-12509/PackageKit-0.7.6-1.fc17
The following builds have been pushed to Fedora 17 updates-testing
OpenTK-0.0-5.20130108svn3126.fc17
autoconf-2.68-7.fc17
bind-dyndb-ldap-2.4-1.fc17
dcraw-9.17-1.fc17
ecj-4.2.1-2.fc17
ettercap-0.7.5-3.fc17.1.20120906gitc796e5
guitarix-0.25.1-4.fc17
indefero-1.3.3-1.fc17
logwatch-7.4.0-22.20130102svn127.fc17
mate-common-1.5.1-1.fc17
mediatomb-0.12.1-22.fc17
perl-Language-Expr-0.19-3.fc17
perl-Locale-SubCountry-1.57-1.fc17
php-pear-phing-2.4.14-1.fc17
python-docopt-0.5.0-1.fc17
rubygem-multi_xml-0.4.1-4.fc17
rubygem-rack-1.4.0-3.fc17
samba4-4.0.0-59alpha18.fc17
seamonkey-2.15-1.fc17
skeinforge-12.03.14-12.fc17
skf-1.99.1-1.fc17
warzone2100-3.1.0-1.fc17
yadex-1.7.0-23.fc17
Details about builds:
================================================================================
OpenTK-0.0-5.20130108svn3126.fc17 (FEDORA-2013-0867)
C# library that wraps OpenGL, OpenCL and OpenAL
--------------------------------------------------------------------------------
Update Information:
C Sharp library that wraps OpenGL, OpenCL and OpenAL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #890872 - Review Request: OpenTK - C# library that wraps OpenGL, OpenCL and OpenAL
https://bugzilla.redhat.com/show_bug.cgi?id=890872
--------------------------------------------------------------------------------
================================================================================
autoconf-2.68-7.fc17 (FEDORA-2013-0821)
A GNU tool for automatically configuring source code
--------------------------------------------------------------------------------
Update Information:
"This update adds the '/usr/share/config.site' file which helps when user runs "./configure --prefix=/usr". In that case, Makefile's paths are set based on FHS defaults. HowToTest: use the "--prefix=/usr" option and look into resulted Makefile — the variable 'sysconfdir' should be by default in '/etc', not '${prefix}/etc'."
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Pavel Raiskup <praiskup at redhat.com> - 2.69-7
- the 'INSTALL' file can be used as template file for packages which are using
autoconf - mark it for installation again (#661623)
* Mon Jan 14 2013 Pavel Raiskup <praiskup at redhat.com> - 2.69-6
- Support the 'config.site' file in /usr/share (#772999)
* Wed Sep 26 2012 Pavel Raiskup <praiskup at redhat.com> - 2.68-5
- do not install the "INSTALL" documentation file (#661623)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #772999 - autoconf should install a config.site that favors lib64 on 64-bit machines
https://bugzilla.redhat.com/show_bug.cgi?id=772999
[ 2 ] Bug #661623 - don't package INSTALL
https://bugzilla.redhat.com/show_bug.cgi?id=661623
--------------------------------------------------------------------------------
================================================================================
bind-dyndb-ldap-2.4-1.fc17 (FEDORA-2013-0895)
LDAP back-end plug-in for BIND
--------------------------------------------------------------------------------
Update Information:
Update to upstream version 2.4.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Petr Spacek <pspacek redhat com> 2.4-1
- update to 2.4
--------------------------------------------------------------------------------
================================================================================
dcraw-9.17-1.fc17 (FEDORA-2013-0846)
Tool for decoding raw image data from digital cameras
--------------------------------------------------------------------------------
Update Information:
Improvements and support for new models:
* Canon EOS 6D, 1DX, SX50
* Casio EX-ZR100
* Fuji X-E1, XF1
* Pentax K-5 II (s)
* Samsung EX2F
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Nils Philippsen <nils at redhat.com> - 9.17-1
- version 9.17
* Fri Dec 21 2012 Adam Tkac <atkac redhat com> - 9.16-4
- rebuild against new libjpeg
* Thu Oct 18 2012 Nils Philippsen <nils at redhat.com> - 9.16-3
- upstream changed 9.16 tarball, adds support for Samsung NX1000, Sony
DSC-RX100 models
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 9.16-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ecj-4.2.1-2.fc17 (FEDORA-2013-0887)
Eclipse Compiler for Java
--------------------------------------------------------------------------------
Update Information:
Update to 4.2.1 upstream version.
Update to latest stable upstream version, supporting Java7
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Jon VanAlten <jon.vanalten at redhat.com> 1:4.2.1-2
- Patch GCCMain to avoid dummy symbols.
* Wed Oct 10 2012 Jon VanAlten <jon.vanalten at redhat.com> 1:4.2.1-1
- Update to 4.2.1 upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #813352 - ecj in Fedora should be updated to latest version that supports Java 7
https://bugzilla.redhat.com/show_bug.cgi?id=813352
--------------------------------------------------------------------------------
================================================================================
ettercap-0.7.5-3.fc17.1.20120906gitc796e5 (FEDORA-2013-0834)
Network traffic sniffer/analyser, NCURSES interface version
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2013-0722
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Jon Ciesla <limburgher at gmail.com> - 0.7.5-3.1.20120906gitc796e5
- Patch for CVE-2013-0722.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #891502 - ettercap-0.7.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=891502
[ 2 ] Bug #894094 - CVE-2013-0722 ettercap: stack-based buffer overflow when parsing hosts list [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=894094
--------------------------------------------------------------------------------
================================================================================
guitarix-0.25.1-4.fc17 (FEDORA-2013-0866)
Mono amplifier to JACK
--------------------------------------------------------------------------------
Update Information:
- fix build on non-x86 arches
- pass %{optflags} only once
This release introduces 5 new LV2 amp modelling plugins. It also introduces the libgxw and libgxwmm Guitarix widget development libraries with glade support.
This release introduces 5 new LV2 amp modelling plugins. It also introduces the libgxw and libgxwmm Guitarix widget development libraries with glade support.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Dan Horák <dan[at]danny.cz> 0.25.1-4
- fix build on non-x86 arches (gxamp shouldn't append x86-only flags)
- set %{optflags} only once
* Sun Jan 13 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.25.1-3
- Add missing BR lv2-devel
* Sun Jan 13 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.25.1-2
- Clean up descriptions/summary
* Sat Jan 5 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.25.1-1
- Update to 0.25.1
- Add LV2 sub-package
- Add libs
--------------------------------------------------------------------------------
================================================================================
indefero-1.3.3-1.fc17 (FEDORA-2013-0850)
Simple code and project management
--------------------------------------------------------------------------------
Update Information:
Simple code and project management
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #575956 - Review Request: indefero - Simple code and project management
https://bugzilla.redhat.com/show_bug.cgi?id=575956
--------------------------------------------------------------------------------
================================================================================
logwatch-7.4.0-22.20130102svn127.fc17 (FEDORA-2013-0863)
A log file analysis program
--------------------------------------------------------------------------------
Update Information:
Update to r127 and some minor fixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 11 2013 Jan Synáček <jsynacek at redhat.com> - 7.4.0-22.20130102svn127
- Add secure-username patch to properly ignore "password check failed for user"
(rhbz#894272)
- Fix dovecot timestamp misparsing (related: rhbz#886193)
* Wed Jan 9 2013 Jan Synáček <jsynacek at redhat.com> - 7.4.0-21.20130102svn127
- Update to revision 127 and drop ustreamed patches
- Update dovecot patch
* Mon Dec 10 2012 Jan Synáček <jsynacek at redhat.com> - 7.4.0-20.20120619svn110
- Comment patches
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #894272 - Logwatch doesn't proper ignore "password check failed for user"
https://bugzilla.redhat.com/show_bug.cgi?id=894272
[ 2 ] Bug #886193 - Unnecessary dovecot messages spam the Logwatch report
https://bugzilla.redhat.com/show_bug.cgi?id=886193
--------------------------------------------------------------------------------
================================================================================
mate-common-1.5.1-1.fc17 (FEDORA-2013-0873)
mate common build files
--------------------------------------------------------------------------------
Update Information:
latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Dan Mashal <dan.mashal at fedoraproject.org> 1.5.1-1
- Update to latest upstream release.
* Mon Jan 14 2013 Dan Mashal <dan.mashal at fedoraproject.org> 1.5.0-2
- Add patch for latest autoconf and automake on rawhide
--------------------------------------------------------------------------------
================================================================================
mediatomb-0.12.1-22.fc17 (FEDORA-2013-0858)
MediaTomb - UPnP AV Mediaserver for Linux
--------------------------------------------------------------------------------
Update Information:
Fix segfault when transcoding.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Jon Ciesla <limburgher at gmail.com> - 0.12.1-22
- Patch to fix crash, BZ 783367.
- autoconfig fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #783367 - [abrt] mediatomb-0.12.1-14.fc16: Process /usr/bin/mediatomb was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=783367
--------------------------------------------------------------------------------
================================================================================
perl-Language-Expr-0.19-3.fc17 (FEDORA-2013-0862)
Simple mini-language for use in expression
--------------------------------------------------------------------------------
Update Information:
Simple mini-language for use in expression
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #876411 - Review Request: perl-Language-Expr - Simple mini-language for use in expression
https://bugzilla.redhat.com/show_bug.cgi?id=876411
--------------------------------------------------------------------------------
================================================================================
perl-Locale-SubCountry-1.57-1.fc17 (FEDORA-2013-0883)
ISO 3166-2 two letter subcountry codes
--------------------------------------------------------------------------------
Update Information:
Bring module version back.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Petr Pisar <ppisar at redhat.com> - 1.57-1
- 1.57 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #895438 - perl-Locale-SubCountry-1.57 is available
https://bugzilla.redhat.com/show_bug.cgi?id=895438
--------------------------------------------------------------------------------
================================================================================
php-pear-phing-2.4.14-1.fc17 (FEDORA-2013-0881)
A project build system based on Apache Ant
--------------------------------------------------------------------------------
Update Information:
upstream 2.4.14, remove non-free stuff, remove optional xdebug requirement, use pear_metadir
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Christof Damian <christof at damian.net> - 2.4.14-1
- upstream 2.4.14
- remove non-free stuff
- remove optional xdebug requirement
- use pear_metadir
* Sun Aug 19 2012 Remi Collet <remi at fedoraproject.org> - 2.4.12-3
- rebuilt for new pear_datadir
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.4.12-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #894748 - Non-free license
https://bugzilla.redhat.com/show_bug.cgi?id=894748
[ 2 ] Bug #878789 - php-pear-phing-2.4.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=878789
--------------------------------------------------------------------------------
================================================================================
python-docopt-0.5.0-1.fc17 (FEDORA-2013-0880)
Pythonic argument parser, that will make you smile
--------------------------------------------------------------------------------
Update Information:
This is a new package containing a python module docopt. This module is useful for command line arguments parsing and generates its parsing rules from POSIX formatted help string.
--------------------------------------------------------------------------------
================================================================================
rubygem-multi_xml-0.4.1-4.fc17 (FEDORA-2013-0839)
A generic swappable back-end for XML parsing
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2013-0175.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 14 2013 Vít Ondruch <vondruch at redhat.com> - 0.4.1-4
- Fix for CVE-2013-0175.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #894383 - CVE-2013-0175 rubygem-multi_xml: Security flaw in Symbol and YAML parameters parsing
https://bugzilla.redhat.com/show_bug.cgi?id=894383
--------------------------------------------------------------------------------
================================================================================
rubygem-rack-1.4.0-3.fc17 (FEDORA-2013-0861)
Common API for connecting web frameworks, web servers and layers of software
--------------------------------------------------------------------------------
Update Information:
Fixes for CVE-2011-6109, CVE-2013-0183 and CVE-2013-0184.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Vít Ondruch <vondruch at redhat.com> - 1:1.4.0-3
- Fixes for CVE-2011-6109, CVE-2013-0183 and CVE-2013-0184.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #895277 - CVE-2012-6109 rubygem-rack: parsing Content-Disposition header DoS
https://bugzilla.redhat.com/show_bug.cgi?id=895277
[ 2 ] Bug #895282 - CVE-2013-0183 rubygem-rack: receiving excessively long lines triggers out-of-memory error
https://bugzilla.redhat.com/show_bug.cgi?id=895282
[ 3 ] Bug #895384 - CVE-2013-0184 rubygem-rack: Rack::Auth::AbstractRequest DoS
https://bugzilla.redhat.com/show_bug.cgi?id=895384
--------------------------------------------------------------------------------
================================================================================
samba4-4.0.0-59alpha18.fc17 (FEDORA-2013-0859)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
Security update for CVE-2013-0172.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 - Andreas Schneider <asn at redhat.com>
- Fixes CVE-2013-0172
--------------------------------------------------------------------------------
================================================================================
seamonkey-2.15-1.fc17 (FEDORA-2013-0833)
Web browser, e-mail, news, IRC client, HTML editor
--------------------------------------------------------------------------------
Update Information:
Update to 2.15
Fixes CVE-2013-0743, CVE-2013-{0744-0760},
CVE-2013-0762, CVE-2013-0764, CVE-2013-{0766-0770}
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 11 2013 Dmitry Butskoy <Dmitry at Butskoy.name> 2.15-1
- update to 2.15
- don't try to change global user settings for default browser/mail etc.
- add fix for #304121 (derived from Xulrunner)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #893717 - seamonkey-2.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=893717
--------------------------------------------------------------------------------
================================================================================
skeinforge-12.03.14-12.fc17 (FEDORA-2013-0869)
Converts 3D model into G-Code for RepRap
--------------------------------------------------------------------------------
Update Information:
Converts 3D model into G-Code for RepRap
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #863793 - Review Request: skeinforge - Converts 3D model into G-Code for RepRap
https://bugzilla.redhat.com/show_bug.cgi?id=863793
--------------------------------------------------------------------------------
================================================================================
skf-1.99.1-1.fc17 (FEDORA-2013-0876)
Utility binary files in Simple Kanji Filter
--------------------------------------------------------------------------------
Update Information:
New version 1.99.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Mamoru TASAKA <mtasaka at fedoraproject.org> - 1.99.1-1
- 1.99.1
* Mon Jan 14 2013 Mamoru TASAKA <mtasaka at fedoraproject.org> - 1.99.0-3
- Check if tables generated in each extension are the same as in main
- Detect and strip same files in debuginfo rpm more
* Thu Jan 10 2013 Mamoru TASAKA <mtasaka at fedoraproject.org> - 1.99.0-2
- Workaround for gcc48 build failure (dyn_table_gen segfault)
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.99.0-1.2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Fri Jun 8 2012 Petr Pisar <ppisar at redhat.com> - 1.99.0-1.1
- Perl 5.16 rebuild
--------------------------------------------------------------------------------
================================================================================
warzone2100-3.1.0-1.fc17 (FEDORA-2013-0878)
Innovative 3D real-time strategy
--------------------------------------------------------------------------------
Update Information:
Update to 3.1.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Jan Synáček <jsynacek at redhat.com> - 3.1.0-1
- Update to 3.1.0
* Thu Dec 13 2012 Adam Jackson <ajax at redhat.com> - 3.1-0.11.rc3
- Rebuild for glew 1.9.0
--------------------------------------------------------------------------------
================================================================================
yadex-1.7.0-23.fc17 (FEDORA-2013-0841)
Doom level editor
--------------------------------------------------------------------------------
Update Information:
- fixing crashes when trying to edit a level
- fixing long time broken hexen support
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 11 2013 Jaromir Capik <jcapik at redhat.com> - 1.7.0-23
- Fixing keyboard shortcuts for adding and deleting objects
- ... by altering the Mr'Meval's patch (#830628)
* Thu Jan 10 2013 Jaromir Capik <jcapik at redhat.com> - 1.7.0-22
- Disabling optimizations (#830628 - crash workaround)
* Thu Jan 10 2013 Jaromir Capik <jcapik at redhat.com> - 1.7.0-21
- Introducing changes from Mr.Meval's "allpatches" patch (e.g HEXEN patch)
* Sun Jul 22 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7.0-20
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #830628 - Yadex crashes when trying to edit a level.
https://bugzilla.redhat.com/show_bug.cgi?id=830628
--------------------------------------------------------------------------------
More information about the test
mailing list