April 2010 - package-announce - Fedora Mailing-Lists

Fedora 12 Update: wxPython-2.8.10.1-2.fc12

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-4778 2010-03-18 02:14:52 -------------------------------------------------------------------------------- Name : wxPython Product : Fedora 12 Version : 2.8.10.1 Release : 2.fc12 URL : http://www.wxpython.org/ Summary : GUI toolkit for the Python programming language Description : wxPython is a GUI toolkit for the Python programming language. It allows Python programmers to create programs with a robust, highly functional graphical user interface, simply and easily. It is implemented as a Python extension module (native code) that wraps the popular wxWindows cross platform GUI library, which is written in C++. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 17 2010 Dan Horák <dan[at]danny.cz> - 2.8.10.1-2 - add missing module (#573961) * Sat Jan 16 2010 Dan Horák <dan[at]danny.cz> - 2.8.10.1-1 - update to 2.8.10.1 - backport to wxGTK 2.8.10 API - cleaned up BRs * Thu Jan 7 2010 Hans de Goede <hdegoede(a)redhat.com> - 2.8.9.2-4 - Change python_foo macros to use %global as the new rpm will break using %define here, see: https://www.redhat.com/archives/fedora-devel-list/2010-January/msg00093.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #573961 - [abrt] crash in wxPython-2.8.10.1-1.fc12: util.py:38:<module>:ImportError: No module named ebmlib https://bugzilla.redhat.com/show_bug.cgi?id=573961 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update wxPython' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

Fedora 12 Update: sectool-0.9.4-5.fc12

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-4324 2010-03-12 03:08:54 -------------------------------------------------------------------------------- Name : sectool Product : Fedora 12 Version : 0.9.4 Release : 5.fc12 URL : https://hosted.fedoraproject.org/sectool/wiki/WikiStart Summary : A security audit system and intrusion detection system Description : sectool is a security tool that can be used both as a security audit and intrusion detection system. It consists of set of tests, library and command line interface tool. Tests are sorted into groups and security levels. Admins can run certain tests, groups or whole security levels. The library and the tools are implemented in python and tests are language independent. -------------------------------------------------------------------------------- Update Information: Test sectool-gui please. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 10 2010 Maros Barabas <mbarabas(a)redhat.com> - 0.9.4-5 - fixed dBus problems in sectool-gui * Thu Nov 19 2009 Maros Barabas <mbarabas(a)redhat.com> - 0.9.4-4 - change dbus sync call to async - removed killing python test scripts * Thu Nov 19 2009 Maros Barabas <mbarabas(a)redhat.com> - 0.9.4-3 - change policy file path - removed usermod requirement -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update sectool' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

Fedora 11 Update: freeciv-2.2.0-1.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-3793 2010-03-06 02:57:25 -------------------------------------------------------------------------------- Name : freeciv Product : Fedora 11 Version : 2.2.0 Release : 1.fc11 URL : http://freeciv.wikia.com/index.php/Freeciv Summary : A multi-player strategy game Description : Freeciv is a turn-based, multi-player, X based strategy game. Freeciv is generally comparable to, and has compatible rules with, the Civilization II(R) game by Microprose(R). In Freeciv, each player is the leader of a civilization, and is competing with the other players in order to become the leader of the greatest civilization. -------------------------------------------------------------------------------- Update Information: Way to much changes/bugfixes to post it here. Please see the installed changelog. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 2 2010 Thomas Janssen <thomasj(a)fedoraproject.org> 2.2.0 - New upstream source 2.2.0 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update freeciv' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

Fedora 11 Update: hercules-3.07-1.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-4751 2010-03-18 02:13:56 -------------------------------------------------------------------------------- Name : hercules Product : Fedora 11 Version : 3.07 Release : 1.fc11 URL : http://www.hercules-390.org/ Summary : Hercules S/370, ESA/390, and z/Architecture emulator Description : Hercules is an emulator for the IBM System/370, ESA/390, and z/Architecture series of mainframe computers. It is capable of running any IBM operating system and applications that a real system will run, as long as the hardware needed is emulated. Hercules can emulate FBA and CKD DASD, tape, printer, card reader, card punch, channel-to-channel adapter, LCS Ethernet, and printer-keyboard, 3270 terminal, and 3287 printer devices. -------------------------------------------------------------------------------- Update Information: update to new stable release 3.07 see full ChangeLog at http://www.hercules-390.org/hercnew.html -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 16 2010 Dan Horák <dan[at]danny.cz> 3.07-1 - updated to 3.07 * Tue Jan 5 2010 Dan Horák <dan[at]danny.cz> 3.06-6.20100105svn5591 - updated to svn revision 5591 * Sun Dec 27 2009 Dan Horák <dan[at]danny.cz> 3.06-5.20091227svn5570 - updated to svn revision 5570 * Thu Sep 17 2009 Dan Horák <dan[at]danny.cz> 3.06-4 - fixed module loading with libtool >= 2.0 * Mon Sep 7 2009 Dan Horák <dan[at]danny.cz> 3.06-3 - enable support for external gui -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update hercules' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

Fedora 11 Update: umit-1.0-0.3.RC.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-4737 2010-03-18 02:13:27 -------------------------------------------------------------------------------- Name : umit Product : Fedora 11 Version : 1.0 Release : 0.3.RC.fc11 URL : http://umit.sourceforge.net/ Summary : Nmap front-end Description : With Umit, you have all the power provided by Nmap through its regular command line interface, and a lot more in a highly usable and portable Graphical Interface. Some of its main features include: * Easily create powerful Nmap commands and save them as profiles to use whenever you need it * Edit your Profiles using the Interface Editor * Create Profiles with the assistance of a Wizard * Group and order you scan results * Filter hosts list by services * Filter services list by hosts * Compare two scan results in one of our three compare modes: text diff, graphical comparison and HTML diff * Search scan results * Use Umit interface through the Web -------------------------------------------------------------------------------- Update Information: Nmap front-end -------------------------------------------------------------------------------- References: [ 1 ] Bug #566411 - Review Request: umit - Nmap frontend https://bugzilla.redhat.com/show_bug.cgi?id=566411 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update umit' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

Fedora 12 Update: phpldapadmin-1.2.0.5-1.fc12

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-5516 2010-04-01 00:18:51 -------------------------------------------------------------------------------- Name : phpldapadmin Product : Fedora 12 Version : 1.2.0.5 Release : 1.fc12 URL : http://phpldapadmin.sourceforge.net Summary : Web-based tool for managing LDAP servers Description : PhpLDAPadmin is a web-based LDAP client. It provides easy, anywhere-accessible, multi-language administration for your LDAP server. Its hierarchical tree-viewer and advanced search functionality make it intuitive to browse and administer your LDAP directory. Since it is a web application, this LDAP browser works on many platforms, making your LDAP server easily manageable from any location. PhpLDAPadmin is the perfect LDAP browser for the LDAP professional and novice alike. Its user base consists mostly of LDAP administration professionals. Edit /etc/phpldapadmin/config.php to change default (localhost) LDAP server location and other things. Edit /etc/httpd/conf.d/phpldapadmin.conf to allow access by remote web-clients. -------------------------------------------------------------------------------- Update Information: Update to the latest version 1.2.0.5 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 29 2010 Dmitry Butskoy <Dmitry(a)Butskoy.name> - 1.2.0.5-1 - update to 1.2.0.5 * Fri Nov 20 2009 Dmitry Butskoy <Dmitry(a)Butskoy.name> - 1.2.0.4-1 - update to 1.2.0.4 - allow local IPv6 address by default as well (#539272) -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update phpldapadmin' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

[SECURITY] Fedora 11 Update: pcmanx-gtk2-0.3.9-4.20100222svn.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-5515 2010-04-01 00:18:51 -------------------------------------------------------------------------------- Name : pcmanx-gtk2 Product : Fedora 11 Version : 0.3.9 Release : 4.20100222svn.fc11 URL : http://code.google.com/p/pcmanx-gtk2/ Summary : Telnet client designed for BBS browsing Description : An easy-to-use telnet client mainly targets BBS users. PCMan X is a newly developed GPL'd version of PCMan, a full-featured famous BBS client formerly designed for MS Windows only. It aimed to be an easy-to-use yet full-featured telnet client facilitating BBS browsing with the ability to process double-byte characters. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0181 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 0.3.9-4.20100222svn - Rebuild against newer gecko * Mon Feb 22 2010 Chen Lei <supercyper(a)163.com> - 0.3.9-3.20100222svn - svn 501 - resolves: #513527 * Thu Feb 18 2010 <jhorak(a)redhat.com> - 0.3.9-2.20100210svn - Rebuild against newer gecko * Wed Feb 10 2010 Chen Lei <supercyper(a)163.com> - 0.3.9-1.20100210svn - svn 500 - remove obsolete patchs * Wed Dec 16 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-11 - Rebuild against newer gecko * Thu Nov 5 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-10 - Rebuild against newer gecko * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-9 - Rebuild against newer gecko * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-8 - Rebuild against newer gecko * Tue Aug 4 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-7 - Rebuild against newer gecko * Thu Jul 23 2009 Jan Horak <jhorak(a)redhat.com> - 0.3.8-6 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection https://bugzilla.redhat.com/show_bug.cgi?id=578149 [ 2 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView https://bugzilla.redhat.com/show_bug.cgi?id=578150 [ 3 ] Bug #578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray https://bugzilla.redhat.com/show_bug.cgi?id=578152 [ 4 ] Bug #578154 - CVE-2010-0178 Firefox Chrome privilege escalation via forced URL drag and drop https://bugzilla.redhat.com/show_bug.cgi?id=578154 [ 5 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=578147 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pcmanx-gtk2' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

[SECURITY] Fedora 11 Update: Miro-2.5.4-3.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-5515 2010-04-01 00:18:51 -------------------------------------------------------------------------------- Name : Miro Product : Fedora 11 Version : 2.5.4 Release : 3.fc11 URL : http://www.getmiro.com/ Summary : Miro - Internet TV Player Description : Miro is a free application that turns your computer into an internet TV video player. This release is still a beta version, which means that there are some bugs, but we're moving quickly to fix them and will be releasing bug fixes on a regular basis. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0181 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 2.5.4-3 - Rebuild against newer gecko * Thu Feb 18 2010 jhorak(a)redhat.com - 2.5.4-2 - Rebuild against newer gecko * Thu Dec 17 2009 Alex Lancaster <alexlan[AT]fedoraproject org> - 2.5.4-1 - Update to upstream 2.5.4. - Hopefully fixes a whole slew of crashes (#540301, #540535, #540543) (#544047, #545681, #546141, #528036, #540207, #544889, #547062) - Tarball renamed Miro -> miro * Wed Dec 16 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-7 - Rebuild against newer gecko * Thu Nov 5 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-6 - Rebuild against newer gecko * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-5 - Rebuild against newer gecko * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-4 - Rebuild against newer gecko * Thu Aug 6 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-3 - Rebuild against newer gecko * Tue Aug 4 2009 Jan Horak <jhorak(a)redhat.com> - 2.5.2-2 - Rebuild against newer gecko * Tue Aug 4 2009 Alex Lancaster <alexlan[AT]fedoraproject org> - 2.5.2-1 - Update to latest upstream (2.5.2) - Drop xine hack patch, now upstream - Rebase remaining patches to 2.5.2 where necessary - Include new icons in files list * Fri Jul 24 2009 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.0.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Sun Jul 19 2009 Alex Lancaster <alexlan[AT]fedoraproject org> - 2.0.5-2 - Rebuild against newer gecko * Wed Jul 1 2009 Alex Lancaster <alexlan[AT]fedoraproject org> - 2.0.5-1 - Update to latest upstream (2.0.5), fixes #507642 * Sat Jun 13 2009 Alex Lancaster <alexlan[AT}fedoraproject org> - 2.0.4-1 - Update to upstream 2.0.4 * Sat Jun 13 2009 Alex Lancaster <alexlan[AT}fedoraproject org> - 2.0.3-3 - Rebuild against newer Python boost -------------------------------------------------------------------------------- References: [ 1 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection https://bugzilla.redhat.com/show_bug.cgi?id=578149 [ 2 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView https://bugzilla.redhat.com/show_bug.cgi?id=578150 [ 3 ] Bug #578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray https://bugzilla.redhat.com/show_bug.cgi?id=578152 [ 4 ] Bug #578154 - CVE-2010-0178 Firefox Chrome privilege escalation via forced URL drag and drop https://bugzilla.redhat.com/show_bug.cgi?id=578154 [ 5 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=578147 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update Miro' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

[SECURITY] Fedora 11 Update: galeon-2.0.7-22.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-5515 2010-04-01 00:18:51 -------------------------------------------------------------------------------- Name : galeon Product : Fedora 11 Version : 2.0.7 Release : 22.fc11 URL : http://galeon.sourceforge.net/ Summary : GNOME2 Web browser based on Mozilla Description : Galeon is a web browser built around Gecko (Mozilla's rendering engine) and Necko (Mozilla's networking engine). It's a GNOME web browser, designed to take advantage of as many GNOME technologies as makes sense. Galeon was written to do just one thing - browse the web. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0181 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 2.0.7-22 - Rebuild against newer gecko * Tue Mar 30 2010 Yanko Kaneti <yaneti(a)declera.com> - 2.0.7-21 - Avoid crashing (#577604), gnome bug 418439 - http://start.fedoraproject.org/ as default homepage * Thu Feb 18 2010 jhorak(a)redhat.com - 2.0.7-20 - Rebuild against newer gecko * Wed Dec 16 2009 Jan Horak <jhorak(a)redhat.com> - 2.0.7-19 - Rebuild against newer gecko * Thu Nov 5 2009 Jan Horak <jhorak(a)redhat.com> - 2.0.7-18 - Rebuild against newer gecko * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 2.0.7-17 - Rebuild against newer gecko * Fri Sep 25 2009 Denis Leroy <denis(a)poolshark.org> - 2.0.7-16 - Added patch from Yanko Kaneti (#525417) to fix crash on startup * Wed Sep 23 2009 Denis Leroy <denis(a)poolshark.org> - 2.0.7-15 - Added jsconsole patch - Changed default home location, Mandriva patch - Disable plugins wrap patch, causing spurious crashes - Made gecko libs Rs and BRs exact (#515640) * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 2.0.7-14 - Rebuild against newer gecko * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 2.0.7-13 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 2.0.7-12 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 2.0.7-11 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection https://bugzilla.redhat.com/show_bug.cgi?id=578149 [ 2 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView https://bugzilla.redhat.com/show_bug.cgi?id=578150 [ 3 ] Bug #578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray https://bugzilla.redhat.com/show_bug.cgi?id=578152 [ 4 ] Bug #578154 - CVE-2010-0178 Firefox Chrome privilege escalation via forced URL drag and drop https://bugzilla.redhat.com/show_bug.cgi?id=578154 [ 5 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=578147 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update galeon' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

[SECURITY] Fedora 11 Update: evolution-rss-0.1.4-11.fc11

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2010-5515 2010-04-01 00:18:51 -------------------------------------------------------------------------------- Name : evolution-rss Product : Fedora 11 Version : 0.1.4 Release : 11.fc11 URL : http://gnome.eu.org/evo/index.php/Evolution_RSS_Reader_Plugin Summary : Evolution RSS Reader Description : This is an evolution plugin which enables evolution to read rss feeds. -------------------------------------------------------------------------------- Update Information: Update to new upstream Firefox version 3.5.9 / XULRunner version 1.9.1.9, fixing multiple security issues detailed in the upstream advisories: http://www.mozilla.org/security/known- vulnerabilities/firefox35.html#firefox3.5.9 Update also includes all packages depending on gecko-libs rebuilt against new version of Firefox / XULRunner. CVE-2010-0173 CVE-2010-0174 CVE-2010-0175 CVE-2010-0176 CVE-2010-0177 CVE-2010-0178 CVE-2010-0181 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 30 2010 Jan Horak <jhorak(a)redhat.com> - 0.1.4-11 - Rebuild against newer gecko * Thu Feb 18 2010 jhorak(a)redhat.com - 0.1.4-10 - Rebuild against newer gecko * Wed Dec 16 2009 Jan Horak <jhorak(a)redhat.com> - 0.1.4-9 - Rebuild against newer gecko * Mon Nov 23 2009 Lucian Langa <cooly(a)gnome.eu.org> - 0.1.4-8 - drop patch2 as it is not valid for f11's evo version * Mon Nov 23 2009 Lucian Langa <cooly(a)gnome.eu.org> - 0.1.4-7 - upstream patch to fix a crash in displaying folder icons (#539649) - add new upstream fix for feeds fetching for evolution > 2.28.1 - add patch2 to fix loading of icons (gtk refuses to load icons with size 0) * Thu Nov 5 2009 Jan Horak <jhorak(a)redhat.com> - 0.1.4-6 - Rebuild against newer gecko * Tue Oct 27 2009 Jan Horak <jhorak(a)redhat.com> - 0.1.4-5 - Rebuild against newer gecko * Wed Sep 16 2009 Lucian Langa <cooly(a)gnome.eu.org> - 0.1.4-4 - added patch to fix folder properties in evolution (#523552) - added upstream patch to fix folder rename (gnome #594704) * Wed Sep 9 2009 Jan Horak <jhorak(a)redhat.com> - 0.1.4-3 - Rebuild against newer gecko * Wed Aug 26 2009 Lucian Langa <cooly(a)gnome.eu.org> - 0.1.4-2 - fix source * Tue Aug 25 2009 Lucian Langa <cooly(a)gnome.eu.org> - 0.1.4-1 - force main render gecko - drop patch0 fixed upstream - new upstream release * Mon Aug 3 2009 Christopher Aillon <caillon(a)redhat.com> - 0.1.2-12 - Rebuild against newer gecko * Fri Jul 17 2009 Jan Horak <jhorak(a)redhat.com> - 0.1.2-11 - Rebuild against newer gecko * Tue Jun 30 2009 Christopher Aillon <caillon(a)redhat.com> - 0.1.2-10 - Rebuild against newer gecko -------------------------------------------------------------------------------- References: [ 1 ] Bug #578149 - CVE-2010-0175 Mozilla remote code execution with use-after-free in nsTreeSelection https://bugzilla.redhat.com/show_bug.cgi?id=578149 [ 2 ] Bug #578150 - CVE-2010-0176 Mozilla Dangling pointer vulnerability in nsTreeContentView https://bugzilla.redhat.com/show_bug.cgi?id=578150 [ 3 ] Bug #578152 - CVE-2010-0177 Mozilla Dangling pointer vulnerability in nsPluginArray https://bugzilla.redhat.com/show_bug.cgi?id=578152 [ 4 ] Bug #578154 - CVE-2010-0178 Firefox Chrome privilege escalation via forced URL drag and drop https://bugzilla.redhat.com/show_bug.cgi?id=578154 [ 5 ] Bug #578147 - CVE-2010-0174 Mozilla crashes with evidence of memory corruption https://bugzilla.redhat.com/show_bug.cgi?id=578147 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update evolution-rss' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

14 years, 1 month

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce April 2010