Fedora 12 Update: ykpers-1.3.2-1.fc12
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-4852
2010-03-20 02:19:38
--------------------------------------------------------------------------------
Name : ykpers
Product : Fedora 12
Version : 1.3.2
Release : 1.fc12
URL : http://code.google.com/p/yubikey-personalization/
Summary : Yubikey personalization program
Description :
Yubico's YubiKey can be re-programmed with a new AES key. This is a library
that makes this an easy task.
--------------------------------------------------------------------------------
Update Information:
Update to upstream release, which fixes cosmetic bugs
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ykpers' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
[SECURITY] Fedora 12 Update: dsniff-2.4-0.9.b1.fc12
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5535
2010-04-01 00:19:20
--------------------------------------------------------------------------------
Name : dsniff
Product : Fedora 12
Version : 2.4
Release : 0.9.b1.fc12
URL : http://www.monkey.org/~dugsong/dsniff/
Summary : Tools for network auditing and penetration testing
Description :
A collection of tools for network auditing and penetration testing. Dsniff,
filesnarf, mailsnarf, msgsnarf, urlsnarf and webspy allow to passively monitor
a network for interesting data (passwords, e-mail, files). Arpspoof, dnsspoof
and macof facilitate the interception of network traffic normally unavailable
to an attacker (e.g, due to layer-2 switching). Sshmitm and webmitm implement
active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions
by exploiting weak bindings in ad-hoc PKI.
--------------------------------------------------------------------------------
Update Information:
libnids 1.24 (Mar 14 2010): - fixed another remotely triggerable NULL
dereference in ip_fragment.c - unofficial patch that enables tracking of
already established TCP connections - missing reset of some tcp_* variables
upon nids_exit - correct calculation of radiotap header - compilation
warning fixes with newer gcc - use pcap_get_selectable_fd() instead of
pcap_fileno() dsniff-2.4-0.9.b1: - Rebuild against libnids 1.24
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 29 2010 Robert Scheck <robert(a)fedoraproject.org> 2.4-0.9.b1
- Rebuild against libnids 1.24
* Fri Jan 8 2010 Robert Scheck <robert(a)fedoraproject.org> 2.4-0.8.b1
- Added build requirement to libXmu-devel for webspy (#553230)
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update dsniff' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
[SECURITY] Fedora 12 Update: libnids-1.24-1.fc12
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5535
2010-04-01 00:19:20
--------------------------------------------------------------------------------
Name : libnids
Product : Fedora 12
Version : 1.24
Release : 1.fc12
URL : http://libnids.sourceforge.net/
Summary : Implementation of an E-component of Network Intrusion Detection System
Description :
Libnids is an implementation of an E-component of Network Intrusion
Detection System. It emulates the IP stack of Linux 2.x and offers
IP defragmentation, TCP stream assembly and TCP port scan detection.
Using libnids, one has got a convenient access to data carried by a
TCP stream, no matter how artfully obscured by an attacker.
--------------------------------------------------------------------------------
Update Information:
libnids 1.24 (Mar 14 2010): - fixed another remotely triggerable NULL
dereference in ip_fragment.c - unofficial patch that enables tracking of
already established TCP connections - missing reset of some tcp_* variables
upon nids_exit - correct calculation of radiotap header - compilation
warning fixes with newer gcc - use pcap_get_selectable_fd() instead of
pcap_fileno() dsniff-2.4-0.9.b1: - Rebuild against libnids 1.24
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 28 2010 Robert Scheck <robert(a)fedoraproject.org> 1.24-1
- Upgrade to 1.24
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update libnids' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
Fedora 12 Update: hercules-3.07-1.fc12
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-4758
2010-03-18 02:14:08
--------------------------------------------------------------------------------
Name : hercules
Product : Fedora 12
Version : 3.07
Release : 1.fc12
URL : http://www.hercules-390.org/
Summary : Hercules S/370, ESA/390, and z/Architecture emulator
Description :
Hercules is an emulator for the IBM System/370, ESA/390, and z/Architecture
series of mainframe computers. It is capable of running any IBM operating
system and applications that a real system will run, as long as the hardware
needed is emulated. Hercules can emulate FBA and CKD DASD, tape, printer,
card reader, card punch, channel-to-channel adapter, LCS Ethernet, and
printer-keyboard, 3270 terminal, and 3287 printer devices.
--------------------------------------------------------------------------------
Update Information:
update to new stable release 3.07 see full ChangeLog at
http://www.hercules-390.org/hercnew.html
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 16 2010 Dan Horák <dan[at]danny.cz> 3.07-1
- updated to 3.07
* Tue Jan 5 2010 Dan Horák <dan[at]danny.cz> 3.06-8.20100105svn5591
- updated to svn revision 5591
* Sun Dec 27 2009 Dan Horák <dan[at]danny.cz> 3.06-7.20091227svn5570
- updated to svn revision 5570
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update hercules' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
Fedora 12 Update: python-suds-0.3.9-1.fc12
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-4312
2010-03-12 03:08:30
--------------------------------------------------------------------------------
Name : python-suds
Product : Fedora 12
Version : 0.3.9
Release : 1.fc12
URL : https://fedorahosted.org/suds
Summary : A python SOAP client
Description :
The suds project is a python soap web services client lib. Suds leverages
python meta programming to provide an intuative API for consuming web
services. Objectification of types defined in the WSDL is provided
without class generation. Programmers rarely need to read the WSDL since
services and WSDL based objects can be easily inspected. Supports
pluggable soap bindings.
--------------------------------------------------------------------------------
Update Information:
Released new features and bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Dec 17 2009 jortel <jortel(a)redhat.com> - 0.3.9-1
- Bumped python requires to 2.4
- Replaced stream-based caching in the transport package with document-based caching.
- Caches pickled Document objects instead of XML text. 2x Faster!
- No more SAX parsing exceptions on damaged or incomplete cached files.
- Cached WSDL objects. Entire Definitions object including contained Schema object cached via pickle.
- Copy of soap encoding schema packaged with suds.
- Refactor Transports to use ProxyHandler instead of urllib2.Request.set_proxy().
- Added WSSE enhancements <Timestamp/> and <Expires/> support. See: Timestamp token.
- Fixed Tickets: #256, #291, #294, #295, #296
* Wed Dec 9 2009 jortel <jortel(a)redhat.com> - 0.3.8-1
- Includeds Windows NTLM Transport.
- Add missing self.messages in Client.clone().
- Changed default behavior for WSDL PartElement to be optional.
- Add support for services/ports defined without <address/> element in WSDL.
- Fix sax.attribute.Element.attrib() to find by name only when ns is not specified; renamed to Element.getAttribute().
- Update HttpTransport to pass timeout parameter to urllib2 open() methods when supported by urllib2.
- Add null class to pass explicit NULL values for parameters and optional elements.
- Soap encoded array (soap-enc:Array) enhancement for rpc/encoded.
Arrays passed as python arrays - works like document/literal now.
No more using the factory to create the Array.
Automatically includes arrayType attribute. Eg: soap-enc:arrayType="Array[2]".
Reintroduced ability to pass complex (objects) using python dict instead of suds object via factory.
- Fixed tickets: #84, #261, #262, #263, #265, #266, #278, #280, #282.
* Fri Oct 16 2009 jortel <jortel(a)redhat.com> - 0.3.7-1
- Better soap header support
- Added new transport HttpAuthenticated for active (not passive) basic authentication.
- New options (prefixes, timeout, retxml)
- WSDL processing enhancements.
- Expanded builtin XSD type support.
- Fixed <xs:iniclude/>
- Better XML date/datetime conversion.
- Client.clone() method added for lightweight copy of client object.
- XSD processing fixes/enhancements.
- Better <simpleType/> by <xs:restriction/> support.
- Performance enhancements.
- Fixed tickets: #65, #232, #233, #235, #241, #242, #244, #247, #254, #254, #256, #257, #258
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-suds' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
Fedora 11 Update: phpPgAdmin-4.2.3-1.fc11
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5531
2010-04-01 00:19:14
--------------------------------------------------------------------------------
Name : phpPgAdmin
Product : Fedora 11
Version : 4.2.3
Release : 1.fc11
URL : http://phppgadmin.sourceforge.net/
Summary : Web-based PostgreSQL administration
Description :
phpPgAdmin is a fully functional web-based administration utility for
a PostgreSQL database server. It handles all the basic functionality
as well as some advanced features such as triggers, views and
functions (stored procedures). It also has Slony-I support.
--------------------------------------------------------------------------------
Update Information:
This is a bugfix release. Changelog is: * Fix bug where space as first
character in a bytea column was removed by html renderer * Check if the given
pg_dumpall / pg_dump paths are correct before using them * Fix some
transalation files that had bad UTF-8 declaration, rising a warning * Fix bug
with tables that contain quote in their name * support PHP 5.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 29 2010 Devrim Gunduz <devrim(a)gunduz.org> 4.2.3-1
- Update to 4.2.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #574352 - Deprecation warning using phpPgAdmin on php-5.3
https://bugzilla.redhat.com/show_bug.cgi?id=574352
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update phpPgAdmin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
Fedora 11 Update: mcu8051ide-1.3.4-1.fc11
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5529
2010-04-01 00:19:12
--------------------------------------------------------------------------------
Name : mcu8051ide
Product : Fedora 11
Version : 1.3.4
Release : 1.fc11
URL : http://mcu8051ide.sourceforge.net
Summary : IDE for MCS-51 based microcontrollers
Description :
Integrated Development Enviroment for some MCS-51 based microcontrollers
(e.g. AT89S8253). Supported languages are assembly and C.
--------------------------------------------------------------------------------
Update Information:
Updated to upstream 1.3.4 package.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 30 2010 Shakthi Kannan <shakthimaan [AT] gmail DOT com> - 1.3.4-1
- Updated package to 1.3.4 upstream release
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mcu8051ide' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
Fedora 11 Update: systemtap-1.2-1.fc11
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5273
2010-03-24 22:20:18
--------------------------------------------------------------------------------
Name : systemtap
Product : Fedora 11
Version : 1.2
Release : 1.fc11
URL : http://sourceware.org/systemtap/
Summary : Instrumentation System
Description :
SystemTap is an instrumentation system for systems running Linux 2.6.
Developers can write instrumentation to collect data on the operation
of the system.
--------------------------------------------------------------------------------
Update Information:
New upstream release containing new features and bug fixes: prototype perf
event and hw-breakpoint probing, security fixes, error tolerance script language
extensions, optimizations, tapsets, interesting new sample scripts, kernel
versions 2.6.9 through 2.6.34-rc.
http://sourceware.org/ml/systemtap/2010-q1/msg00740.html
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 22 2010 Frank Ch. Eigler <fche(a)redhat.com> - 1.2-1
- Upstream release.
* Mon Dec 21 2009 David Smith <dsmith(a)redhat.com> - 1.1-1
- Upstream release.
* Tue Sep 22 2009 Josh Stone <jistone(a)redhat.com> - 1.0-1
- Upstream release.
* Tue Aug 4 2009 Josh Stone <jistone(a)redhat.com> - 0.9.9-1
- Upstream release.
* Thu Jun 11 2009 Josh Stone <jistone(a)redhat.com> - 0.9.8-1
- Upstream release.
* Thu Apr 23 2009 Josh Stone <jistone(a)redhat.com> - 0.9.7-1
- Upstream release.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update systemtap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
[SECURITY] Fedora 11 Update: sunbird-1.0-0.16.20090715hg.fc11
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5526
2010-04-01 00:19:08
--------------------------------------------------------------------------------
Name : sunbird
Product : Fedora 11
Version : 1.0
Release : 0.16.20090715hg.fc11
URL : http://www.mozilla.org/projects/calendar/sunbird/
Summary : Calendar application built upon Mozilla toolkit
Description :
Mozilla Sunbird is a cross-platform calendar application, built upon
Mozilla Toolkit. It brings Mozilla-style ease-of-use to your
calendar, without tying you to a particular storage solution.
--------------------------------------------------------------------------------
Update Information:
Update to new upstream Thunderbird version 3.0.4, fixing multiple security
issues detailed in the upstream advisories: http://www.mozilla.org/security
/known-vulnerabilities/thunderbird30.html#thunderbird3.0.4 Update also
includes sunbird package rebuilt against new version of Thunderbird.
CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 1.0-0.16.20090715hg
- Rebuild against new Thunderbird
* Mon Mar 1 2010 Jan Horak <jhorak(a)redhat.com> - 1.0-0.15.20090715hg
- Rebuild against new Thunderbird
* Thu Feb 25 2010 Jan Horak <jhorak(a)redhat.com> - 1.0-0.14.20090715hg
- Rebuild against new Thunderbird
* Tue Jan 26 2010 Jan Horak <jhorak(a)redhat.com> - 1.0-0.13.20090715hg
- Fixed sunbird exec script
* Thu Jan 21 2010 Jan Horak <jhorak(a)redhat.com> - 1.0-0.12.20090715hg
- Rebuild against new Thunderbird
* Wed Dec 9 2009 Jan Horak <jhorak(a)redhat.com> - 1.0-0.11.20090715hg
- Rebuild against new Thunderbird
* Thu Dec 3 2009 Jan Horak <jhorak(a)redhat.com> - 1.0-0.10.20090715hg
- Rebuild against new Thunderbird
* Wed Nov 25 2009 Jan Horak <jhorak(a)redhat.com> - 1.0-0.9.20090715hg
- Rebuild against new Thunderbird
* Fri Oct 16 2009 Jan Horak <jhorak(a)redhat.com> - 1.0-0.7.20090715hg
- Rebuild due to new version of Thunderbird
* Tue Sep 22 2009 Jan Horak <jhorak(a)redhat.com> - 1.0-0.7.20090715hg
- Sync up with Thunderbird
* Tue Aug 18 2009 Lubomir Rintel <lkundrak(a)v3.sk> - 1.0-0.6.20090715hg
- Update langpacks
* Sun Jun 28 2009 Lubomir Rintel <lkundrak(a)v3.sk> - 1.0-0.5.20090715hg
- Sync up with Thunderbird
* Sun Jun 28 2009 Lubomir Rintel <lkundrak(a)v3.sk> - 1.0-0.5.20090513hg
- Sync up with Thunderbird
- Enable the Google Data Provider
* Fri May 15 2009 Lubomir Rintel <lkundrak(a)v3.sk> - 1.0-0.4.20090302hg
- Fixed thunderbird dependency
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption
https://bugzilla.redhat.com/show_bug.cgi?id=578147
[ 2 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection
https://bugzilla.redhat.com/show_bug.cgi?id=578149
[ 3 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView
https://bugzilla.redhat.com/show_bug.cgi?id=578150
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update sunbird' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years
[SECURITY] Fedora 11 Update: thunderbird-3.0.4-1.fc11
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-5526
2010-04-01 00:19:08
--------------------------------------------------------------------------------
Name : thunderbird
Product : Fedora 11
Version : 3.0.4
Release : 1.fc11
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.
--------------------------------------------------------------------------------
Update Information:
Update to new upstream Thunderbird version 3.0.4, fixing multiple security
issues detailed in the upstream advisories: http://www.mozilla.org/security
/known-vulnerabilities/thunderbird30.html#thunderbird3.0.4 Update also
includes sunbird package rebuilt against new version of Thunderbird.
CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 3.0.4-1
- Update to 3.0.4
* Sat Mar 6 2010 Kalev Lember <kalev(a)smartlink.ee> - 3.0.3-2
- Own extension directories (#532132)
* Mon Mar 1 2010 Jan Horak <jhorak(a)redhat.com> - 3.0.3-1
- Update to 3.0.3
* Thu Feb 25 2010 Jan Horak <jhorak(a)redhat.com> - 3.0.2-1
- Update to 3.0.2
* Wed Jan 20 2010 Martin Stransky <stransky(a)redhat.com> - 3.0.1-1
- Update to 3.0.1
* Wed Dec 9 2009 Jan Horak <jhorak(a)redhat.com> - 3.0-3
- Update to 3.0
* Thu Dec 3 2009 Jan Horak <jhorak(a)redhat.com> - 3.0.2.10.rc2
- Update to 3.0 RC2
* Thu Nov 19 2009 Jan Horak <jhorak(a)redhat.com> - 3.0.2.9.rc1
- Update to 3.0 RC1
* Wed Oct 14 2009 Jan Horak <jhorak(a)redhat.com> - 3.0.2.8
- Global indexing disabled by default
- Migration to Smart Folders disabled by default
* Thu Sep 17 2009 Jan Horak <jhorak(a)redhat.com> - 3.0-2.7
- Update to 3.0 beta4
* Thu Jul 16 2009 Jan Horak <jhorak(a)redhat.com> - 3.0-2.6
- Rebuild for update
* Thu Jul 16 2009 Jan Horak <jhorak(a)redhat.com> - 3.0-2.5
- Update to 3.0 beta3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption
https://bugzilla.redhat.com/show_bug.cgi?id=578147
[ 2 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection
https://bugzilla.redhat.com/show_bug.cgi?id=578149
[ 3 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView
https://bugzilla.redhat.com/show_bug.cgi?id=578150
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update thunderbird' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years