[SECURITY] Fedora 17 Update: drupal6-6.28-1.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1039
2013-01-20 02:04:22
--------------------------------------------------------------------------------
Name : drupal6
Product : Fedora 17
Version : 6.28
Release : 1.fc17
URL : http://www.drupal.org
Summary : An open-source content-management platform
Description :
Equipped with a powerful blend of features, Drupal is a Content Management
System written in PHP that can support a variety of websites ranging from
personal weblogs to large community-driven websites. Drupal is highly
configurable, skinnable, and secure.
--------------------------------------------------------------------------------
Update Information:
SA-CORE-2013-001
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 17 2013 Jon Ciesla <limburgher(a)gmail.com> - 6.28-1
- 6.28, SA-CORE-2013-001.
* Thu Dec 20 2012 Jon Ciesla <limburgher(a)gmail.com> - 6.27-1
- 6.27.
* Fri Nov 16 2012 Jon Ciesla <limburgher(a)gmail.com> - 6.26-5
- JSON patch.
* Wed Oct 31 2012 Jon Ciesla <limburgher(a)gmail.com> - 6.26-4
- Fix conf.
* Tue Oct 30 2012 Jon Ciesla <limburgher(a)gmail.com> - 6.26-3
- Fix for httpd 2.4, BZ 871392.
* Wed Jul 18 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 6.26-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu May 3 2012 Jon Ciesla <limburgher(a)gmail.com> - 6.26-1
- New upstream, 818537.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #896454 - drupal6-6.28 is available
https://bugzilla.redhat.com/show_bug.cgi?id=896454
[ 2 ] Bug #896468 - drupal6, drupal7: Multiple security flaws fixed in upstream 6.28 and 7.19 versions (SA-CORE-2013-001) [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=896468
[ 3 ] Bug #896469 - drupal6, drupal7: Multiple security flaws fixed in upstream 6.28 and 7.19 versions (SA-CORE-2013-001) [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=896469
[ 4 ] Bug #896470 - drupal6, drupal7: Multiple security flaws fixed in upstream 6.28 and 7.19 versions (SA-CORE-2013-001) [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=896470
[ 5 ] Bug #896471 - drupal6, drupal7: Multiple security flaws fixed in upstream 6.28 and 7.19 versions (SA-CORE-2013-001) [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=896471
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update drupal6' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 17 Update: perl-Net-STOMP-Client-2.0-1.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-0956
2013-01-18 19:35:13
--------------------------------------------------------------------------------
Name : perl-Net-STOMP-Client
Product : Fedora 17
Version : 2.0
Release : 1.fc17
URL : http://search.cpan.org/dist/Net-STOMP-Client/
Summary : STOMP object oriented client module
Description :
This module provides an object oriented client interface to interact with
servers supporting STOMP (Streaming Text Orientated Messaging Protocol). It
supports the major features of messaging brokers: SSL, asynchronous I/O,
receipts and transactions.
--------------------------------------------------------------------------------
Update Information:
Update to 2.0, rhbz #893464.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 15 2013 Massimo Paladin <massimo.paladin(a)gmail.com> - 2.0-1
- New upstream 2.0, rhbz#893464.
* Mon Aug 6 2012 Massimo Paladin <massimo.paladin(a)gmail.com> - 1.8-1
- New upstream 1.8, rhbz#867297.
* Mon Aug 6 2012 Steve Traylen <steve.traylen(a)cern.ch> - 1.7-1
- New upstream 1.7, rhbz#837746.
* Fri Jul 20 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sat Jun 16 2012 Petr Pisar <ppisar(a)redhat.com> - 1.5-2
- Perl 5.16 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #893464 - Upgrade to new upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=893464
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update perl-Net-STOMP-Client' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 18 Update: audit-2.2.2-3.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-0898
2013-01-16 18:50:44
--------------------------------------------------------------------------------
Name : audit
Product : Fedora 18
Version : 2.2.2
Release : 3.fc18
URL : http://people.redhat.com/sgrubb/audit/
Summary : User space tools for 2.6 kernel auditing
Description :
The audit package contains the user space utilities for
storing and searching the audit records generate by
the audit subsystem in the Linux 2.6 kernel.
--------------------------------------------------------------------------------
Update Information:
In this update, the audit package no longer owns the /usr/lib64/audit directory. There are no other changes.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 11 2013 Steve Grubb <sgrubb(a)redhat.com> 2.2.2-3
- Do not own /usr/lib64/audit
* Wed Dec 12 2012 Steve Grubb <sgrubb(a)redhat.com> 2.2.2-2
- New upstream release
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update audit' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 17 Update: perl-No-Worries-0.8-1.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-0962
2013-01-18 19:35:33
--------------------------------------------------------------------------------
Name : perl-No-Worries
Product : Fedora 17
Version : 0.8
Release : 1.fc17
URL : http://search.cpan.org/dist/No-Worries/
Summary : Perl coding without worries
Description :
This module and its sub-modules ease coding by providing consistent
convenient functions to perform frequently used programming tasks.
--------------------------------------------------------------------------------
Update Information:
Update to 0.8, rhbz #895876.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #895876 - Upgrade to new upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=895876
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update perl-No-Worries' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 18 Update: ocaml-tplib-1.2-2.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1009
2013-01-20 02:02:08
--------------------------------------------------------------------------------
Name : ocaml-tplib
Product : Fedora 18
Version : 1.2
Release : 2.fc18
URL : https://gforge.inria.fr/projects/tplib
Summary : Tropical Polyhedra Library
Description :
TPLib computes a description by means of vertices and rays of tropical
polyhedra defined by means of inequalities, and conversely.
It also provides a numerical abstract domain based on tropical
polyhedra, in order to infer min-/max- invariants over programs.
--------------------------------------------------------------------------------
Update Information:
TPLib computes a description by means of vertices and rays of tropical polyhedra defined by means of inequalities, and conversely.
It also provides a numerical abstract domain based on tropical polyhedra, in order to infer min-/max- invariants over programs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #872020 - Review Request: ocaml-tplib - Tropical Polyhedra Library
https://bugzilla.redhat.com/show_bug.cgi?id=872020
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ocaml-tplib' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 16 Update: tw-0.9.8-1.fc16
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1110
2013-01-20 02:11:40
--------------------------------------------------------------------------------
Name : tw
Product : Fedora 16
Version : 0.9.8
Release : 1.fc16
URL : http://code.google.com/p/translateword
Summary : Translate words into different languages
Description :
translate word is a command that translates words into different
languages. translate word uses internal dictionaries, and contacts
online to the Google Translation and the FreeTranslation engines.
It can also be integrated via the clipboard with a desktop environment.
--------------------------------------------------------------------------------
Update Information:
GNOME/KDE helpers.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #885833 - Review Request: tw - translate words into different languages
https://bugzilla.redhat.com/show_bug.cgi?id=885833
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update tw' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 17 Update: python-greenlet-0.3.1-12.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1074
2013-01-20 02:09:11
--------------------------------------------------------------------------------
Name : python-greenlet
Product : Fedora 17
Version : 0.3.1
Release : 12.fc17
URL : http://pypi.python.org/pypi/greenlet
Summary : Lightweight in-process concurrent programming
Description :
The greenlet package is a spin-off of Stackless, a version of CPython
that supports micro-threads called "tasklets". Tasklets run
pseudo-concurrently (typically in a single or a few OS-level threads)
and are synchronized with data exchanges on "channels".
--------------------------------------------------------------------------------
Update Information:
- Fix base exception type thrown
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 18 2013 Pádraig Brady <P(a)draigBrady.com> - 0.3.1-12
- Fix base exception type thrown
* Thu Oct 11 2012 Pádraig Brady <P(a)draigBrady.com> - 0.3.1-11
- Add support for ppc64
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.3.1-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-greenlet' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 17 Update: perl-Net-Pcap-0.17-1.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1004
2013-01-20 02:01:42
--------------------------------------------------------------------------------
Name : perl-Net-Pcap
Product : Fedora 17
Version : 0.17
Release : 1.fc17
URL : http://search.cpan.org/dist/Net-Pcap/
Summary : Interface to pcap(3) LBL packet capture library
Description :
perl-Net-Pcap provides Perl bindings to the LBL pcap(3) library.
--------------------------------------------------------------------------------
Update Information:
This update fixes CPAN-RT#43308 - Net::Pcap no longer enables immediate (unsafe) signals delivery and fixes allocated size in pcap_open(), pcap_createsrcstr() and pcap_parsesrcstr().
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 18 2013 Iain Arnell <iarnell(a)gmail.com> 0.17-1
- update to latest upstream version
- clean up spec for modern rpmbuild
* Fri Jul 20 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.16-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Mon Jun 11 2012 Petr Pisar <ppisar(a)redhat.com> - 0.16-14
- Perl 5.16 rebuild
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update perl-Net-Pcap' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
Fedora 18 Update: emerald-themes-0.5.2-8.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-0991
2013-01-20 02:00:27
--------------------------------------------------------------------------------
Name : emerald-themes
Product : Fedora 18
Version : 0.5.2
Release : 8.fc18
URL : http://www.compiz.org
Summary : Themes for Emerald, a window decorator for Compiz Fusion
Description :
Emerald is themeable window decorator and compositing
manager for Compiz Fusion.
This package contains themes for emerald.
--------------------------------------------------------------------------------
Update Information:
initial package for f18
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 10 2013 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1:0.5.2-8
- own directory
- use new upstream package for rpm
- generate configure
- drop unnecessary command to remove import.sh
- remove files with 'bak' instead of '~'
- drop unnecessary 'chmod' command
* Mon Oct 15 2012 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1:0.5.2-7
- build for fedora
- review package
- remove %defattr(-,root,root,-)
- remove BuildRoot
- add basever
- add Epoch tag
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update emerald-themes' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months
[SECURITY] Fedora 16 Update: qemu-0.15.1-9.fc16
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-0934
2013-01-18 19:33:38
--------------------------------------------------------------------------------
Name : qemu
Product : Fedora 16
Version : 0.15.1
Release : 9.fc16
URL : http://www.qemu.org/
Summary : QEMU is a FAST! processor emulator
Description :
QEMU is a generic and open source processor emulator which achieves a good
emulation speed by using dynamic translation. QEMU has two operating modes:
* Full system emulation. In this mode, QEMU emulates a full system (for
example a PC), including a processor and various peripherials. It can be
used to launch different Operating Systems without rebooting the PC or
to debug system code.
* User mode emulation. In this mode, QEMU can launch Linux processes compiled
for one CPU on another CPU.
As QEMU requires no host kernel patches to run, it is safe and easy to use.
--------------------------------------------------------------------------------
Update Information:
* CVE-2012-6075: Buffer overflow in e1000 nic (bz #889301, bz #889304)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 16 2013 Cole Robinson <crobinso(a)redhat.com> - 2:0.15.1-9
- CVE-2012-6075: Buffer overflow in e1000 nic (bz #889301, bz #889304)
* Sun Oct 7 2012 Cole Robinson <crobinso(a)redhat.com> - 0.15.1-8
- CVE-2012-3515 VT100 emulation vulnerability (bz #854600, bz #851252)
* Sun Jul 29 2012 Cole Robinson <crobinso(a)redhat.com> - 0.15.1-7
- Pull patches from 0.15 stable
- CVE-2012-2652: Possible symlink attacks with -snapshot (bz 825697, bz
824919)
- Fix systemtap tapsets (bz 831763)
- Fix qmp response race caused by spice server bug (bz 744015)
- Fix text mode screendumps (bz 819155)
- Don't renable ksm on update (bz 815156)
- Fix RPM install error on non-virt machines (bz 660629)
- Obsolete openbios to fix upgrade dependency issues (bz 694802)
- Fix sgabios integration (bz 791344)
* Wed Jul 18 2012 Cole Robinson <crobinso(a)redhat.com> - 0.15.1-6
- Fix fedora guest hang with virtio console (bz 837925)
* Tue May 29 2012 Cole Robinson <crobinso(a)redhat.com> - 0.15.1-5
- CVE-2012-0029 e1000 buffer overflow (bz 783984, bz 772075)
- virtio-blk: refuse SG_IO requests with scsi=off (bz 826042)
* Mon Jan 30 2012 Justin M. Forbes <jforbes(a)redhat.com> - 2:0.15.1-4
- Add vhost-net to kvm.modules
- Fix USB passthrough assert on packet completion (#769625)
* Thu Jan 5 2012 Christophe Fergeau <cfergeau(a)redhat.com> - 2:0.15.1-3.1
- Backport patches from qemu 1.0 to fix floppy drives (#753863)
* Fri Nov 18 2011 Justin M. Forbes <jforbes(a)redhat.com> - 2:0.15.1-3
- Enable support for fedora-13 machine type (#748218)
- don't force ksm enable on updates (#754946)
* Thu Nov 3 2011 Justin M. Forbes <jforbes(a)redhat.com> - 2:0.15.1-2
- Fix POSTIN scriplet failure (#748281)
* Fri Oct 21 2011 Justin M. Forbes <jforbes(a)redhat.com> - 2:0.15.1-1
- Require seabios-bin >= 0.6.0-2 (#741992)
- Replace init scripts with systemd units (#741920)
- Update to 0.15.1 stable upstream
* Fri Oct 21 2011 Paul Moore <pmoore(a)redhat.com>
- Enable full relro and PIE (rhbz #738812)
* Wed Oct 12 2011 Daniel P. Berrange <berrange(a)redhat.com> - 2:0.15.0-6
- Add BR on ceph-devel to enable RBD block device
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #889301 - CVE-2012-6075 qemu (e1000 device driver): Buffer overflow when processing large packets when SBP and LPE flags are disabled
https://bugzilla.redhat.com/show_bug.cgi?id=889301
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update qemu' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 3 months