--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0102
2011-01-20 06:04:24
--------------------------------------------------------------------------------
Name : proftpd
Product : Fedora EPEL 5
Version : 1.3.3d
Release : 1.el5
URL : http://www.proftpd.org/
Summary : Flexible, stable and highly-configurable FTP server
Description :
ProFTPD is an enhanced FTP server with a focus toward simplicity, security,
and ease of configuration. It features a very Apache-like configuration
syntax, and a highly customizable server infrastructure, including support for
multiple 'virtual' FTP servers, anonymous FTP, and permission-based directory
visibility.
This package defaults to the standalone behavior of ProFTPD, but all the
needed scripts to have it run by xinetd instead are included.
--------------------------------------------------------------------------------
Update Information:
This is an update to the current upstream maintenance release, which addresses a security issue that could affect users of the mod_sql module (not enabled by default).
* A heap-based buffer overflow flaw was found in the way ProFTPD FTP server prepared SQL queries for certain usernames, when the mod_sql module was enabled. A remote, unauthenticated attacker could use this flaw to cause the proftpd daemon to crash or, potentially, to execute arbitrary code with the privileges of the user running 'proftpd' via a specially-crafted username, provided in the authentication dialog.
The update also fixes a CPU spike when handling .ftpaccess files, and handling of SFTP uploads when compression is used.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #670170 - CVE-2010-4652 ProFTPD (mod_sql): Heap-based buffer overflow by processing certain usernames, when mod_sql module enabled
https://bugzilla.redhat.com/show_bug.cgi?id=670170
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update proftpd' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0082
2011-01-18 17:00:13
--------------------------------------------------------------------------------
Name : topgit
Product : Fedora EPEL 5
Version : 0.9
Release : 0.3.gitd279e292.el5
URL : http://repo.or.cz/w/topgit.git?a=blob;f=README
Summary : A different patch queue manager
Description :
TopGit aims to make handling of large amount of interdependent topic
branches easier. In fact, it is designed especially for the case when
you maintain a queue of third-party patches on top of another (perhaps
Git-controlled) project and want to easily organize, maintain and
submit them - TopGit achieves that by keeping a separate topic branch
for each patch and providing few tools to maintain the branches.
--------------------------------------------------------------------------------
Update Information:
Update to the latest head version. This is a release candidate for the upcoming topgit 0.9 version.
It adds tg-prev and tg-next commands. The tg-mail and tg-summary commands accept -i/-w switches now (base the operation on the index/working dir instead of branch).
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update topgit' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0084
2011-01-18 17:00:20
--------------------------------------------------------------------------------
Name : perl-List-MoreUtils
Product : Fedora EPEL 4
Version : 0.22
Release : 2.el4
URL : http://search.cpan.org/dist/List-MoreUtils/
Summary : Provide the stuff missing in List::Util
Description :
List::MoreUtils provides some trivial but commonly needed functionality
on lists which is not going to go into List::Util.
--------------------------------------------------------------------------------
Update Information:
This is the first EPEL-4 release of this package, a clone of the EPEL-5 version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #189678 - Review Request: perl-List-MoreUtils - Provide the stuff missing in List::Util
https://bugzilla.redhat.com/show_bug.cgi?id=189678
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-List-MoreUtils' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0080
2011-01-18 17:00:01
--------------------------------------------------------------------------------
Name : gmime
Product : Fedora EPEL 5
Version : 2.2.26
Release : 1.el5
URL : http://spruce.sourceforge.net/gmime/
Summary : Library for creating and parsing MIME messages
Description :
The GMime suite provides a core library and set of utilities which may be
used for the creation and parsing of messages using the Multipurpose
Internet Mail Extension (MIME).
--------------------------------------------------------------------------------
Update Information:
2010-03-26 Jeffrey Stedfast <fejj(a)novell.com>
* README: Bumped version
* configure.in: Bumped version to 2.2.26
2010-03-26 Jeffrey Stedfast <fejj(a)novell.com>
Fixes for bug #613653
* gmime/gmime.c (g_mime_init): Initialize GMimeObject's type
registry.
(g_mime_shutdown): Shut it down here.
* gmime/gmime-object.c (g_mime_object_type_registry_init): Renamed
a bit and fixed to not use g_atexit(). Also made internal-public.
(g_mime_object_type_registry_shutdown): Renamed and made
internal-public.
(g_mime_object_register_type): Don't init the type system anymore.
(g_mime_object_new_type): Same here.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update gmime' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0081
2011-01-18 17:00:03
--------------------------------------------------------------------------------
Name : perl-Authen-DigestMD5
Product : Fedora EPEL 5
Version : 0.04
Release : 10.el5
URL : http://search.cpan.org/dist/Authen-DigestMD5/
Summary : SASL DIGEST-MD5 authentication (RFC2831)
Description :
This module supports DIGEST-MD5 SASL authentication as defined in RFC-2831.
--------------------------------------------------------------------------------
Update Information:
This is the initial EPEL release of perl-Authen-DigestMD5, cloned from the current Fedora version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #191494 - Review Request: perl-Authen-DigestMD5
https://bugzilla.redhat.com/show_bug.cgi?id=191494
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-Authen-DigestMD5' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0085
2011-01-18 17:00:30
--------------------------------------------------------------------------------
Name : perl-Authen-DigestMD5
Product : Fedora EPEL 4
Version : 0.04
Release : 10.el4
URL : http://search.cpan.org/dist/Authen-DigestMD5/
Summary : SASL DIGEST-MD5 authentication (RFC2831)
Description :
This module supports DIGEST-MD5 SASL authentication as defined in RFC-2831.
--------------------------------------------------------------------------------
Update Information:
This is the initial EPEL release of perl-Authen-DigestMD5, cloned from the current Fedora version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #191494 - Review Request: perl-Authen-DigestMD5
https://bugzilla.redhat.com/show_bug.cgi?id=191494
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-Authen-DigestMD5' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2011-0070
2011-01-15 19:23:52
--------------------------------------------------------------------------------
Name : python-jsonpickle
Product : Fedora EPEL 5
Version : 0.3.1
Release : 2.1.el5
URL : http://pypi.python.org/pypi/jsonpickle/
Summary : A module that allows any object to be serialized into JSON
Description :
This module allows python objects to be serialized to JSON in a similar fashion
to the pickle module.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #669553 - SCM Change Request - python-jsonpickle
https://bugzilla.redhat.com/show_bug.cgi?id=669553
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-jsonpickle' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------