[SECURITY] Fedora 17 Update: openssh-5.9p1-29.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2206
2013-02-09 10:46:11
--------------------------------------------------------------------------------
Name : openssh
Product : Fedora 17
Version : 5.9p1
Release : 29.fc17
URL : http://www.openssh.com/portable.html
Summary : An open source implementation of SSH protocol versions 1 and 2
Description :
SSH (Secure SHell) is a program for logging into and executing
commands on a remote machine. SSH is intended to replace rlogin and
rsh, and to provide secure encrypted communications between two
untrusted hosts over an insecure network. X11 connections and
arbitrary TCP/IP ports can also be forwarded over the secure channel.
OpenSSH is OpenBSD's version of the last free version of SSH, bringing
it up to date in terms of security and features.
This package includes the core files necessary for both the OpenSSH
client and server. To make this package useful, you should also
install openssh-clients, openssh-server, or both.
--------------------------------------------------------------------------------
Update Information:
This update changes default of MaxStartups to 10:30:100 to start doing random early drop at 10 connections up to 100 connections - CVE-2010-5107
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 8 2013 Petr Lautrbach <plautrba(a)redhat.com> 5.9p1-29 + 0.9.3-1
- change default value of MaxStartups - CVE-2010-5107 (#908707)
* Mon Nov 26 2012 Petr Lautrbach <plautrba(a)redhat.com> 5.9p1-28 + 0.9.3-1
- avoid xfree(NULL) in ssh_selinux_copy_context() (#789502)
- fix the man moduli page (#841065)
- fix the required authentications patch (#872608)
- fix IPQoS not being set on non-mapped v4-in-v6 addressed connections (#861818)
* Wed Oct 31 2012 Petr Lautrbach <plautrba(a)redhat.com> 5.9p1-27 + 0.9.3-1
- don't use /bin and /sbin paths (#856590)
- fix gssapi canohost patch (#863350)
* Mon Aug 6 2012 Petr Lautrbach <plautrba(a)redhat.com> 5.9p1-26 + 0.9.3-1
- change SELinux context also for root user (#827109)
* Fri Jul 27 2012 Petr Lautrbach <plautrba(a)redhat.com> 5.9p1-25 + 0.9.3-1
- fix various issues in openssh-5.9p1-required-authentications.patch
* Tue Jul 17 2012 Tomas Mraz <tmraz(a)redhat.com> 5.9p1-24 + 0.9.3-1
- allow sha256 and sha512 hmacs in the FIPS mode
* Fri Jun 22 2012 Tomas Mraz <tmraz(a)redhat.com> 5.9p1-23 + 0.9.3-1
- fix segfault in su when pam_ssh_agent_auth is used and the ssh-agent
is not running, most probably not exploitable
- update pam_ssh_agent_auth to 0.9.3 upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #908707 - CVE-2010-5107 openssh: Prevent connection slot exhaustion attacks
https://bugzilla.redhat.com/show_bug.cgi?id=908707
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update openssh' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: bind-9.9.2-8.P1.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2734
2013-02-20 03:32:36
--------------------------------------------------------------------------------
Name : bind
Product : Fedora 18
Version : 9.9.2
Release : 8.P1.fc18
URL : http://www.isc.org/products/BIND/
Summary : The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
Description :
BIND (Berkeley Internet Name Domain) is an implementation of the DNS
(Domain Name System) protocols. BIND includes a DNS server (named),
which resolves host names to IP addresses; a resolver library
(routines for applications to use when interfacing with DNS); and
tools for verifying that the DNS server is operating properly.
--------------------------------------------------------------------------------
Update Information:
This update fixes following issues:
* IPv4 address D-root server was outdated (BZ#901741)
* script which mounts/unmounts chroot hierarchy was wrong and caused that chroot hierarchy wasn't unmounted correctly which lead to too many mounts (BZ#904666)
This update also includes following enhancement:
* rate-limiting patch for bind was included. Check http://www.redbarn.org/dns/ratelimits for more details
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 18 2013 Adam Tkac <atkac redhat com> 32:9.9.2-8.P1
- include rate limiting patch
* Tue Jan 29 2013 Tomas Hozza <thozza(a)redhat.com> 32:9.9.2-7.P1
- Corrected IP addresses in named.ca (#901741)
- mount/umount /var/named in setup-named-chroot.sh as the last one (#904666)
* Thu Dec 20 2012 Adam Tkac <atkac redhat com> 32:9.9.2-6.P1
- generate /etc/rndc.key during named service startup if doesn't exist
- increase startup timeout in systemd units to 90sec (default)
- fix IDN related statement in dig.1 manpage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #904666 - named-chroot fails to unmount /var/named/chroot/var/named on stop, and causes too many mounts to be created
https://bugzilla.redhat.com/show_bug.cgi?id=904666
[ 2 ] Bug #901741 - D-root is changing its IPv4 address on 3 January 2013
https://bugzilla.redhat.com/show_bug.cgi?id=901741
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update bind' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
[SECURITY] Fedora 17 Update: pigz-2.2.5-1.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2589
2013-02-17 02:43:42
--------------------------------------------------------------------------------
Name : pigz
Product : Fedora 17
Version : 2.2.5
Release : 1.fc17
URL : http://www.zlib.net/pigz/
Summary : Parallel implementation of gzip
Description :
pigz, which stands for parallel implementation of gzip,
is a fully functional replacement for gzip that exploits
multiple processors and multiple cores to the hilt when compressing data.
--------------------------------------------------------------------------------
Update Information:
Update to 2.2.5
Fixes a low impact security issue (CVE-2013-0296)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 31 2012 Adel Gadllah <adel.gadllah(a)gmail.com> - 2.2.5-1
- Update to 2.2.5.
- Backport fixes from F18
- Fixes security issue RH #911556
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #911556 - CVE-2013-0296 pigz: Temporary archive representation created with insecure permissions
https://bugzilla.redhat.com/show_bug.cgi?id=911556
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update pigz' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: rubygem-openshift-origin-msg-broker-mcollective-1.4.6-2.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2593
2013-02-17 02:43:53
--------------------------------------------------------------------------------
Name : rubygem-openshift-origin-msg-broker-mcollective
Product : Fedora 18
Version : 1.4.6
Release : 2.fc18
URL : http://openshift.redhat.com
Summary : OpenShift plugin for mcollective service
Description :
OpenShift plugin for mcollective based node/gear manager
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.6
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 15 2013 Troy Dawson <tdawson(a)redhat.com> 1.4.6-2
- Change the source from a tar to gem
- Remove scl for Fedora standards
* Thu Feb 14 2013 Dan McPherson <dmcphers(a)redhat.com> 1.4.6-1
- correction in node selection algorithm (dmcphers(a)redhat.com)
* Wed Feb 6 2013 Adam Miller <admiller(a)redhat.com> 1.4.5-1
- Merge pull request #1324 from tdawson/tdawson/remove_rhel5_spec_stuff
(dmcphers+openshiftbot(a)redhat.com)
- Merge pull request #1328 from rajatchopra/master (dmcphers(a)redhat.com)
- refix bug907788 - moves across node profiles will not be supported
(rchopra(a)redhat.com)
- remove BuildRoot: (tdawson(a)redhat.com)
- make Source line uniform among all spec files (tdawson(a)redhat.com)
* Mon Feb 4 2013 Adam Miller <admiller(a)redhat.com> 1.4.4-1
- Fix _id to uuid issue with districts (dmcphers(a)redhat.com)
- share db connection logic (dmcphers(a)redhat.com)
* Thu Jan 31 2013 Adam Miller <admiller(a)redhat.com> 1.4.3-1
- better error message (dmcphers(a)redhat.com)
* Tue Jan 29 2013 Adam Miller <admiller(a)redhat.com> 1.4.2-1
- Bug 904100: Tolerate missing Endpoint cart manifest entries
(ironcladlou(a)gmail.com)
- Switch calling convention to match US3143 (rmillner(a)redhat.com)
- indexed and Bug 894985 (rchopra(a)redhat.com)
- Bug 894985 (rchopra(a)redhat.com)
- Bug 893879 (dmcphers(a)redhat.com)
- Bug 892112 (rchopra(a)redhat.com)
- district re-alignment for migration (rchopra(a)redhat.com)
- use uuid for communication with node (rchopra(a)redhat.com)
- Bug 892124 (rchopra(a)redhat.com)
- BZ890104 (rchopra(a)redhat.com)
- move fixes (rchopra(a)redhat.com)
- admin-ctl-app remove particular gear (rchopra(a)redhat.com)
- move unqueued (rchopra(a)redhat.com)
- corrected ref to app.user to app.domain.owner (lnader(a)redhat.com)
- refactoring to use getter/setter for user capabilities (abhgupta(a)redhat.com)
- Removing merge conflicts (kraman(a)gmail.com)
- porting bug fix for 883607 to model refactor branch (abhgupta(a)redhat.com)
- Fixing php manifest Adding logging statements for debugging scaled apps
(kraman(a)gmail.com)
- Added support for thread dump. Fixed default username in mongoid.yml file
(kraman(a)gmail.com)
- Various bugfixes (kraman(a)gmail.com)
- Moving model refactor work - Updated cartridge manifest files - Simplified
descriptor - Switched from mongo gem to use mongoid (kraman(a)gmail.com)
* Wed Jan 23 2013 Adam Miller <admiller(a)redhat.com> 1.4.1-1
- bump_minor_versions for sprint 23 (admiller(a)redhat.com)
* Wed Jan 23 2013 Adam Miller <admiller(a)redhat.com> 1.3.5-1
- Bug 902690 Cant use direct addressing mode when facts are required
(dmcphers(a)redhat.com)
* Mon Jan 21 2013 Adam Miller <admiller(a)redhat.com> 1.3.4-1
- set timeout to disc timeout for direct addressing (dmcphers(a)redhat.com)
- Fix include? (dmcphers(a)redhat.com)
- Still need to use broadcast for get all gears methods (dmcphers(a)redhat.com)
- favor different nodes within a gear group (dmcphers(a)redhat.com)
* Fri Jan 18 2013 Dan McPherson <dmcphers(a)redhat.com> 1.3.3-1
- added add/remove ssl cert methods to ease merge (mlamouri(a)redhat.com)
- adding rdoc to mcollective_application_container (mlamouri(a)redhat.com)
- SSL support for custom domains. (mpatel(a)redhat.com)
- Merge pull request #1163 from ironcladlou/endpoint-refactor
(dmcphers(a)redhat.com)
- Replace expose/show/conceal-port hooks with Endpoints (ironcladlou(a)gmail.com)
* Thu Jan 17 2013 Adam Miller <admiller(a)redhat.com> 1.3.2-1
- dont return nil resultIO (dmcphers(a)redhat.com)
* Wed Dec 12 2012 Adam Miller <admiller(a)redhat.com> 1.3.1-1
- bump_minor_versions for sprint 22 (admiller(a)redhat.com)
* Mon Dec 10 2012 Adam Miller <admiller(a)redhat.com> 1.2.7-1
- fix for bug 883607 (abhgupta(a)redhat.com)
* Fri Dec 7 2012 Adam Miller <admiller(a)redhat.com> 1.2.6-1
- Merge pull request #1035 from abhgupta/abhgupta-dev
(openshift+bot(a)redhat.com)
- fix for bugs 883554 and 883752 (abhgupta(a)redhat.com)
* Fri Dec 7 2012 Adam Miller <admiller(a)redhat.com> 1.2.5-1
- Move last_access file with gear (pmorie(a)gmail.com)
- Use correct alias method during gear post-move (ironcladlou(a)gmail.com)
* Wed Dec 5 2012 Adam Miller <admiller(a)redhat.com> 1.2.4-1
- Fix incorrect filter in finding district (rpenta(a)redhat.com)
- updated gemspecs so they work with scl rpm spec files. (tdawson(a)redhat.com)
* Tue Dec 4 2012 Adam Miller <admiller(a)redhat.com> 1.2.3-1
- more mco 2.2 changes (dmcphers(a)redhat.com)
- repacking for mco 2.2 (dmcphers(a)redhat.com)
- Refactor tidy into the node library (ironcladlou(a)gmail.com)
- Move add/remove alias to the node API. (rmillner(a)redhat.com)
- mco value passing cleanup (dmcphers(a)redhat.com)
* Thu Nov 29 2012 Adam Miller <admiller(a)redhat.com> 1.2.2-1
- Various mcollective changes getting ready for 2.2 (dmcphers(a)redhat.com)
- Move force-stop into the the node library (ironcladlou(a)gmail.com)
- BZ876465 Embedding scalable app (php) with jenkins fails to create a new
builder (calfonso(a)redhat.com)
- use a more reasonable large disctimeout (dmcphers(a)redhat.com)
- Changing same uid move to rsync (dmcphers(a)redhat.com)
- Merge pull request #957 from rajatchopra/master (openshift+bot(a)redhat.com)
- Merge pull request #956 from danmcp/master (openshift+bot(a)redhat.com)
- fix get_all_gears to provide Integer value of uid (rchopra(a)redhat.com)
- Merge pull request #953 from rajatchopra/master (dmcphers(a)redhat.com)
- Add method to get the active gears (dmcphers(a)redhat.com)
- add obsoletes (dmcphers(a)redhat.com)
- reform the get_all_gears call and add capability to reserve a specific uid
from a district (rchopra(a)redhat.com)
* Sat Nov 17 2012 Adam Miller <admiller(a)redhat.com> 1.2.1-1
- bump_minor_versions for sprint 21 (admiller(a)redhat.com)
* Fri Nov 16 2012 Adam Miller <admiller(a)redhat.com> 1.1.4-1
- Bug 876459 (dmcphers(a)redhat.com)
* Thu Nov 15 2012 Adam Miller <admiller(a)redhat.com> 1.1.3-1
- Merge pull request #897 from sosiouxme/BZ876271 (openshift+bot(a)redhat.com)
- fix for bug#876458 (rchopra(a)redhat.com)
- comment and set correct defaults in openshift-origin-msg-broker-
mcollective.conf.example (lmeyer(a)redhat.com)
* Wed Nov 14 2012 Adam Miller <admiller(a)redhat.com> 1.1.2-1
- add config to gemspec (dmcphers(a)redhat.com)
- Moving plugins to Rails 3.2.8 engine (kraman(a)gmail.com)
- getting specs up to 1.9 sclized (dmcphers(a)redhat.com)
- specifying rake gem version range (abhgupta(a)redhat.com)
* Thu Nov 8 2012 Adam Miller <admiller(a)redhat.com> 1.1.1-1
- Bumping specs to at least 1.1 (dmcphers(a)redhat.com)
* Tue Oct 30 2012 Adam Miller <admiller(a)redhat.com> 1.0.1-1
- bumping specs to at least 1.0.0 (dmcphers(a)redhat.com)
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rubygem-openshift-origin-msg-broker-mcollective' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: initscripts-9.42.2-1.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1590
2013-01-29 23:26:42
--------------------------------------------------------------------------------
Name : initscripts
Product : Fedora 18
Version : 9.42.2
Release : 1.fc18
URL : http://fedorahosted.org/releases/i/n/initscripts/
Summary : The inittab file and the /etc/init.d scripts
Description :
The initscripts package contains the basic system scripts used to boot
your Red Hat or Fedora system, change runlevels, and shut the system down
cleanly. Initscripts also contains the scripts that activate and
deactivate most network interfaces.
--------------------------------------------------------------------------------
Update Information:
This systemd update fixes several bugs, most importantly:
* A hacky workaround that allows udev to rename network interfaces into kernel's `ethX` namespace has been re-added. This is to support users who still rely on udev rules such as `70-persistent-net.rules` generated in previous Fedora releases to name their network interfaces. Note that the workaround is only temporary and will go away in a future Fedora release. Also note that due to unavoidable race conditions, the workaround can still fail occasionally (causing network interfaces to be named `renameX`). To be on the safe side it is recommended to change any present network interface naming udev rules to use network interface names that cannot collide with kernel generated names as soon as possible.
* udev can apply device node permissions from "change" events again.
Other fixes and improvements:
* `systemctl`, if running unprivileged, will honour shutdown or sleep inhibitors. A new command line option `-i` can be used to ignore inhibitors.
* Specifiers are supported in path units' `Unit=` settings.
* Overriding list settings is now possible in unit files. An empty assignment (such as `ExecStartPre=`) will reset the list.
* Late shutdown umount loop should work with loopback device on NFS. It also skips unused loop devices.
* vconsole: setting the console font should be more reliable.
* `systemctl`, `loginctl`, `systemd-cgls` will not ellipsize cgroup members if `--full` is specified.
* A bug in signalling a permanent service failure to its associated sockets has been fixed. The bug could cause a quickly failing service to be restarted indefinitely by the socket.
* `systemd-nspawn` will keep audit capabilities to allow dbus to start in Fedora containers. `systemd-nspawn` now allows its output to be redirected to a regular file.
* There are fewer SELinux-related debug messages logged (one was even incorrectly marked as error).
* tmpfiles: added "X" type to exclude a path, but not its contents if it's a directory.
* Fixed a bug where a job enqueued with `--ignore-dependencies` could wait for other jobs.
* logind will ignore non-tty/non-X11 sessions when checking for other sessions before shutdown. logind will allow one shutdown/sleep action to be queued at a time to avoid a suspend on closing the lid while the machine is already shutting down. logind exposes an `UnlockSessions()` DBus call. logind delay inhibition logic has been reworked to fix some bugs and to send out `PrepareForSleep(false)` after coming back from suspend.
* `loginctl` will show the seat master device in `seat-status`.
* a couple of fixes related to service watchdog timers
* other fixes
* udev hwdb updates
* documentation fixes and updates
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 20 2013 Lukáš Nykrýn <lnykryn(a)redhat.com> - 9.42.2-1
- limit udev rule for network renaming (#907365, mschmidt(a)redhat.com)
- fix path for arpwatch, seems to be in /var/lib on Fedora 18
- fix the path for lvm cache, there is no file /etc/lvm/.cache ( but there is one /etc/lvm/cache )
- fix path for dhcpd, is /var/lib/dhcpd since 2005 ( see 31cdb58df77 on the dhcp package git )
- fix the patch for apache modules in rwtab, that are now in /var/cache/httpd
- remove no longer used directory ( at least in Fedora ), hald is deprecated, /var/tux cannot be found and xend seems to use a subdirectory of /var/lib/xen
- correct the path for puppet directory in /etc/rwtab, now use /var/lib/puppet by default
- Correctly detect Open vSwitch device types
- Clear DEVICE and TYPE variables before every iteration (#902463)
- Add /usr/libexec/initscripts to file list (#894475)
- Rename term256 to 256term (glob sort) (#849429)
- Readd missing shebang. (#885821)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #896135 - network fails to start after Fedora 17 -> Fedora 18 upgrade because of network device rename failure
https://bugzilla.redhat.com/show_bug.cgi?id=896135
[ 2 ] Bug #903716 - udev: device node permissions not applied with "change" event
https://bugzilla.redhat.com/show_bug.cgi?id=903716
[ 3 ] Bug #873634 - Keyboard mapping set during the installation process is reset at first boot
https://bugzilla.redhat.com/show_bug.cgi?id=873634
[ 4 ] Bug #875531 - DOC: JoinControllers of the main system's systemd doesn't take effect, because the initrd already mounted all cgroup fs for us
https://bugzilla.redhat.com/show_bug.cgi?id=875531
[ 5 ] Bug #860464 - systemd does not recognize dash after ExecStart
https://bugzilla.redhat.com/show_bug.cgi?id=860464
[ 6 ] Bug #889624 - [abrt] systemd-195-10.fc18: log_assert: Process /usr/bin/systemctl was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=889624
[ 7 ] Bug #890827 - logind should ignore non-text and non-graphical sessions when checking whether shutdown shall be allowed
https://bugzilla.redhat.com/show_bug.cgi?id=890827
[ 8 ] Bug #756787 - RFE: allow overwrite options included with .include
https://bugzilla.redhat.com/show_bug.cgi?id=756787
[ 9 ] Bug #757928 - HP HDX 9494NR: Touchpad toggle on/off not working
https://bugzilla.redhat.com/show_bug.cgi?id=757928
[ 10 ] Bug #907365 - initscripts tries to rename added type 803 monitor mode interface
https://bugzilla.redhat.com/show_bug.cgi?id=907365
[ 11 ] Bug #902463 - Unable to stop network service
https://bugzilla.redhat.com/show_bug.cgi?id=902463
[ 12 ] Bug #894475 - /usr/libexec/initscripts is unowned
https://bugzilla.redhat.com/show_bug.cgi?id=894475
[ 13 ] Bug #849429 - Fedora 18 256 color terminal feature
https://bugzilla.redhat.com/show_bug.cgi?id=849429
[ 14 ] Bug #885821 - ifup-post doesn't contain #!/bin/bash
https://bugzilla.redhat.com/show_bug.cgi?id=885821
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update initscripts' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: systemd-197-1.fc18.2
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1590
2013-01-29 23:26:42
--------------------------------------------------------------------------------
Name : systemd
Product : Fedora 18
Version : 197
Release : 1.fc18.2
URL : http://www.freedesktop.org/wiki/Software/systemd
Summary : A System and Service Manager
Description :
systemd is a system and service manager for Linux, compatible with
SysV and LSB init scripts. systemd provides aggressive parallelization
capabilities, uses socket and D-Bus activation for starting services,
offers on-demand starting of daemons, keeps track of processes using
Linux cgroups, supports snapshotting and restoring of the system
state, maintains mount and automount points and implements an
elaborate transactional dependency-based service control logic. It can
work as a drop-in replacement for sysvinit.
--------------------------------------------------------------------------------
Update Information:
This systemd update fixes several bugs, most importantly:
* A hacky workaround that allows udev to rename network interfaces into kernel's `ethX` namespace has been re-added. This is to support users who still rely on udev rules such as `70-persistent-net.rules` generated in previous Fedora releases to name their network interfaces. Note that the workaround is only temporary and will go away in a future Fedora release. Also note that due to unavoidable race conditions, the workaround can still fail occasionally (causing network interfaces to be named `renameX`). To be on the safe side it is recommended to change any present network interface naming udev rules to use network interface names that cannot collide with kernel generated names as soon as possible.
* udev can apply device node permissions from "change" events again.
Other fixes and improvements:
* `systemctl`, if running unprivileged, will honour shutdown or sleep inhibitors. A new command line option `-i` can be used to ignore inhibitors.
* Specifiers are supported in path units' `Unit=` settings.
* Overriding list settings is now possible in unit files. An empty assignment (such as `ExecStartPre=`) will reset the list.
* Late shutdown umount loop should work with loopback device on NFS. It also skips unused loop devices.
* vconsole: setting the console font should be more reliable.
* `systemctl`, `loginctl`, `systemd-cgls` will not ellipsize cgroup members if `--full` is specified.
* A bug in signalling a permanent service failure to its associated sockets has been fixed. The bug could cause a quickly failing service to be restarted indefinitely by the socket.
* `systemd-nspawn` will keep audit capabilities to allow dbus to start in Fedora containers. `systemd-nspawn` now allows its output to be redirected to a regular file.
* There are fewer SELinux-related debug messages logged (one was even incorrectly marked as error).
* tmpfiles: added "X" type to exclude a path, but not its contents if it's a directory.
* Fixed a bug where a job enqueued with `--ignore-dependencies` could wait for other jobs.
* logind will ignore non-tty/non-X11 sessions when checking for other sessions before shutdown. logind will allow one shutdown/sleep action to be queued at a time to avoid a suspend on closing the lid while the machine is already shutting down. logind exposes an `UnlockSessions()` DBus call. logind delay inhibition logic has been reworked to fix some bugs and to send out `PrepareForSleep(false)` after coming back from suspend.
* `loginctl` will show the seat master device in `seat-status`.
* a couple of fixes related to service watchdog timers
* other fixes
* udev hwdb updates
* documentation fixes and updates
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 28 2013 Michal Schmidt <mschmidt(a)redhat.com> - 197-1.fc18.2
- Revert a couple of patches causing surprising breakage.
- Resolves: #896135, #903716
- Pick more post-v197 fixes and minor enhancements from upstream.
- Resolves: #873634, #875531, #860464, #889624, #890827, #756787, #757928
* Sat Jan 12 2013 Michal Schmidt <mschmidt(a)redhat.com> - 197-1.fc18.1
- Pick post-v197 fixes.
* Fri Jan 11 2013 Michal Schmidt <mschmidt(a)redhat.com> - 197-1
- Rebase to new upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #896135 - network fails to start after Fedora 17 -> Fedora 18 upgrade because of network device rename failure
https://bugzilla.redhat.com/show_bug.cgi?id=896135
[ 2 ] Bug #903716 - udev: device node permissions not applied with "change" event
https://bugzilla.redhat.com/show_bug.cgi?id=903716
[ 3 ] Bug #873634 - Keyboard mapping set during the installation process is reset at first boot
https://bugzilla.redhat.com/show_bug.cgi?id=873634
[ 4 ] Bug #875531 - DOC: JoinControllers of the main system's systemd doesn't take effect, because the initrd already mounted all cgroup fs for us
https://bugzilla.redhat.com/show_bug.cgi?id=875531
[ 5 ] Bug #860464 - systemd does not recognize dash after ExecStart
https://bugzilla.redhat.com/show_bug.cgi?id=860464
[ 6 ] Bug #889624 - [abrt] systemd-195-10.fc18: log_assert: Process /usr/bin/systemctl was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=889624
[ 7 ] Bug #890827 - logind should ignore non-text and non-graphical sessions when checking whether shutdown shall be allowed
https://bugzilla.redhat.com/show_bug.cgi?id=890827
[ 8 ] Bug #756787 - RFE: allow overwrite options included with .include
https://bugzilla.redhat.com/show_bug.cgi?id=756787
[ 9 ] Bug #757928 - HP HDX 9494NR: Touchpad toggle on/off not working
https://bugzilla.redhat.com/show_bug.cgi?id=757928
[ 10 ] Bug #907365 - initscripts tries to rename added type 803 monitor mode interface
https://bugzilla.redhat.com/show_bug.cgi?id=907365
[ 11 ] Bug #902463 - Unable to stop network service
https://bugzilla.redhat.com/show_bug.cgi?id=902463
[ 12 ] Bug #894475 - /usr/libexec/initscripts is unowned
https://bugzilla.redhat.com/show_bug.cgi?id=894475
[ 13 ] Bug #849429 - Fedora 18 256 color terminal feature
https://bugzilla.redhat.com/show_bug.cgi?id=849429
[ 14 ] Bug #885821 - ifup-post doesn't contain #!/bin/bash
https://bugzilla.redhat.com/show_bug.cgi?id=885821
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update systemd' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: rubygem-openshift-origin-node-1.4.5-2.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2609
2013-02-17 02:44:46
--------------------------------------------------------------------------------
Name : rubygem-openshift-origin-node
Product : Fedora 18
Version : 1.4.5
Release : 2.fc18
URL : http://openshift.redhat.com
Summary : Cloud Development Node
Description :
This contains the Cloud Development Node packaged as a rubygem.
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.5
--------------------------------------------------------------------------------
ChangeLog:
* Fri Feb 15 2013 Troy Dawson <tdawson(a)redhat.com> 1.4.5-2
- Change the source from a tar to gem
- Remove scl for Fedora standards
* Wed Feb 6 2013 Adam Miller <admiller(a)redhat.com> 1.4.5-1
- remove BuildRoot: (tdawson(a)redhat.com)
- move rest api tests to functionals (dmcphers(a)redhat.com)
- make Source line uniform among all spec files (tdawson(a)redhat.com)
* Mon Feb 4 2013 Adam Miller <admiller(a)redhat.com> 1.4.4-1
- working on testing coverage (dmcphers(a)redhat.com)
* Thu Jan 31 2013 Adam Miller <admiller(a)redhat.com> 1.4.3-1
- Merge pull request #1255 from sosiouxme/newfacts
(dmcphers+openshiftbot(a)redhat.com)
- <facter,resource_limits> active_capacity/max_active_apps/etc switched to
gear-based accounting (lmeyer(a)redhat.com)
- Merge pull request #1238 from sosiouxme/newfacts
(dmcphers+openshiftbot(a)redhat.com)
- <facter,resource_limits> reckon by gears (as opposed to git repos), add gear
status facts (lmeyer(a)redhat.com)
* Tue Jan 29 2013 Adam Miller <admiller(a)redhat.com> 1.4.2-1
- Bug 905568: Skip endpoint deletion if no Endpoints in manifest
(ironcladlou(a)gmail.com)
- Merge pull request #1231 from ironcladlou/expose-port-fix
(dmcphers+openshiftbot(a)redhat.com)
- Merge pull request #1235 from danmcp/master (dmcphers(a)redhat.com)
- Merge pull request #1117 from mscherer/fix_better_cgroup_listing
(dmcphers+openshiftbot(a)redhat.com)
- Bug 874594 Bug 888550 (dmcphers(a)redhat.com)
- Bug 904100: Tolerate missing Endpoint cart manifest entries
(ironcladlou(a)gmail.com)
- BZ896406 - warning message when installing rubygem-openshift-origin-node
(bleanhar(a)redhat.com)
- BZ876324 resolve ServerName/NameVirtualHost situation for
node/broker/ssl.conf (lmeyer(a)redhat.com)
- Switch calling convention to match US3143 (rmillner(a)redhat.com)
- adding a dash in the authorized key entry comment to make it more readable
(abhgupta(a)redhat.com)
- fix for bug 894948 (abhgupta(a)redhat.com)
- fix and factorise the function for the list of users as openshift_users do
not match on the same exact list of people than valid_user ( due to code
duplication and subtle difference between the copies ) (misc(a)zarb.org)
* Wed Jan 23 2013 Adam Miller <admiller(a)redhat.com> 1.4.1-1
- bump_minor_versions for sprint 23 (admiller(a)redhat.com)
* Wed Jan 23 2013 Adam Miller <admiller(a)redhat.com> 1.3.6-1
- Bug 903152: Execute git tidy ops as gear user (ironcladlou(a)gmail.com)
* Mon Jan 21 2013 Adam Miller <admiller(a)redhat.com> 1.3.5-1
- BZ 901449: An SELinux issue prevents forces this script to use system ruby
and not the SCL version. (rmillner(a)redhat.com)
* Fri Jan 18 2013 Dan McPherson <dmcphers(a)redhat.com> 1.3.4-1
- Bug 901444 (dmcphers(a)redhat.com)
- SSL support for custom domains. (mpatel(a)redhat.com)
- Replace expose/show/conceal-port hooks with Endpoints (ironcladlou(a)gmail.com)
* Mon Jan 14 2013 Adam Miller <admiller(a)redhat.com> 1.3.3-1
- Fix BZ875200: Add statements to rhcsh ctl_all (pmorie(a)gmail.com)
- Merge pull request #1141 from pmorie/bugs/877306
(dmcphers+openshiftbot(a)redhat.com)
- Merge pull request #1140 from pmorie/bugs/877305
(dmcphers+openshiftbot(a)redhat.com)
- Fix usage for oo-admin-ctl-cgroups (pmorie(a)gmail.com)
- Add newline to each user for oo-admin-ctl-cgroups stopall (pmorie(a)gmail.com)
* Thu Jan 10 2013 Adam Miller <admiller(a)redhat.com> 1.3.2-1
- Merge pull request #1120 from sosiouxme/BZ876324
(dmcphers+openshiftbot(a)redhat.com)
- BZ876324 resolve ServerName/NameVirtualHost situation for
node/broker/ssl.conf (lmeyer(a)redhat.com)
- Update rhc command usage. Addresses BZ889018. (asari.ruby(a)gmail.com)
- Typo. (rmillner(a)redhat.com)
- BZ 888410: The reader sequence can block if there is too much stderr
(rmillner(a)redhat.com)
* Wed Dec 12 2012 Adam Miller <admiller(a)redhat.com> 1.3.1-1
- bump_minor_versions for sprint 22 (admiller(a)redhat.com)
* Mon Dec 10 2012 Adam Miller <admiller(a)redhat.com> 1.2.6-1
- Merge pull request #1007 from sosiouxme/US3036-origin
(openshift+bot(a)redhat.com)
- Adding oo-accept-systems script for verifying all node hosts from the broker.
- also verifies cartridge consistency and checks for stale cartridge cache.
oo-accept-node sanity checks public_ip and public_hostname. Minor edits to
make node.conf easier to understand. (lmeyer(a)redhat.com)
- Fix tests. The file mock was not working. (rmillner(a)redhat.com)
- Post rebase code cleanup. (rmillner(a)redhat.com)
- Proper host name validation. (rmillner(a)redhat.com)
* Thu Dec 6 2012 Adam Miller <admiller(a)redhat.com> 1.2.5-1
- bug 884409 (dmcphers(a)redhat.com)
- Merge pull request #1023 from ramr/dev/websockets (openshift+bot(a)redhat.com)
- Fix frontend httpd tests. (ramr(a)redhat.com)
- Node web sockets and http(s) proxy support with spec file and package.
(ramr(a)redhat.com)
* Wed Dec 5 2012 Adam Miller <admiller(a)redhat.com> 1.2.4-1
- Fix for Bug 883605 (jhonce(a)redhat.com)
- updated gemspecs so they work with scl rpm spec files. (tdawson(a)redhat.com)
* Tue Dec 4 2012 Adam Miller <admiller(a)redhat.com> 1.2.3-1
- Merge pull request #1005 from ironcladlou/US2770 (openshift+bot(a)redhat.com)
- Refactor tidy into the node library (ironcladlou(a)gmail.com)
- Bug Fixes. (rmillner(a)redhat.com)
- Move add/remove alias to the node API. (rmillner(a)redhat.com)
* Thu Nov 29 2012 Adam Miller <admiller(a)redhat.com> 1.2.2-1
- Move force-stop into the the node library (ironcladlou(a)gmail.com)
- exit code and usage cleanup (dmcphers(a)redhat.com)
- Merge pull request #962 from danmcp/master (openshift+bot(a)redhat.com)
- Merge pull request #905 from kraman/ruby19 (openshift+bot(a)redhat.com)
- add oo-ruby (dmcphers(a)redhat.com)
- F18 compatibility fixes - apache 2.4 - mongo journaling - JDK 7 -
parseconfig gem update Bugfix for Bind DNS plugin (kraman(a)gmail.com)
* Sat Nov 17 2012 Adam Miller <admiller(a)redhat.com> 1.2.1-1
- bump_minor_versions for sprint 21 (admiller(a)redhat.com)
* Thu Nov 15 2012 Troy Dawson <tdawson(a)redhat.com> 1.1.7-2
- Fixed source, change from tar to gem
- added source1, not in the gem.
- Fix http conf file to work with httpd 2.4.2+
- clean up spec
* Thu Nov 15 2012 Adam Miller <admiller(a)redhat.com> 1.1.7-1
- BZ877125 - File attributes on open shift-cgroups init script are incorrect,
should be -rwxr-x--- (calfonso(a)redhat.com)
- more ruby1.9 changes (dmcphers(a)redhat.com)
* Wed Nov 14 2012 Adam Miller <admiller(a)redhat.com> 1.1.6-1
- Ruby 1.9 compatibility fixes (ironcladlou(a)gmail.com)
- getting specs up to 1.9 sclized (dmcphers(a)redhat.com)
- Merge pull request #886 from rmillner/inhibitidler (dmcphers(a)redhat.com)
- One of the SELinux denials was accessing the locale file via whois which is
unnecessary if accessing /etc directly. (rmillner(a)redhat.com)
- specifying rake gem version range (abhgupta(a)redhat.com)
* Tue Nov 13 2012 Adam Miller <admiller(a)redhat.com> 1.1.5-1
- Merge remote-tracking branch 'origin-server/master' into BZ874587-origin
(bleanhar(a)redhat.com)
- Merge pull request #881 from rmillner/wrongmcs (openshift+bot(a)redhat.com)
- SS -> OPENSHIFT (dmcphers(a)redhat.com)
- Was setting mcs label in the wrong place. (rmillner(a)redhat.com)
- Fix for Bug 875949 (jhonce(a)redhat.com)
- Bug 874587 - CLOUD_NAME in /etc/openshift/node.conf does not work
(bleanhar(a)redhat.com)
* Mon Nov 12 2012 Adam Miller <admiller(a)redhat.com> 1.1.4-1
- BZ 872379: Dead code cleanup to fix mount parsing problem.
(rmillner(a)redhat.com)
* Thu Nov 8 2012 Adam Miller <admiller(a)redhat.com> 1.1.3-1
- Merge pull request #857 from jwhonce/dev/bz874712_master
(openshift+bot(a)redhat.com)
- Fix for Bug 874712 (jhonce(a)redhat.com)
* Thu Nov 8 2012 Adam Miller <admiller(a)redhat.com> 1.1.2-1
- Merge pull request #851 from brenton/no_trace (openshift+bot(a)redhat.com)
- BZ873970, BZ873966 - disabling HTTP TRACE for the Broker, Nodes and Console
(bleanhar(a)redhat.com)
- Increase the table sizes to cover 15000 nodes in dev and prod.
(rmillner(a)redhat.com)
- BZ872523 - set quota for gear failed if the device name is too long
(bleanhar(a)redhat.com)
- Merge pull request #698 from mscherer/fix_doc_node_bin
(openshift+bot(a)redhat.com)
- do not use old name in the script help message (mscherer(a)redhat.com)
* Thu Nov 1 2012 Adam Miller <admiller(a)redhat.com> 1.1.1-1
- bump_minor_versions for sprint 20 (admiller(a)redhat.com)
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rubygem-openshift-origin-node' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 17 Update: dsqlite-1.0-4.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2623
2013-02-17 02:45:44
--------------------------------------------------------------------------------
Name : dsqlite
Product : Fedora 17
Version : 1.0
Release : 4.fc17
URL : https://github.com/bioinfornatics/DSQLite
Summary : High level library around SQLite for D language
Description :
DSQLite is a Hight level library for SQLite. Use sqlite in D programming
with this library is so easy.
--------------------------------------------------------------------------------
Update Information:
DSQLite is a High level library for SQLite. Use sqlite in D programming with this library is so easy.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #846008 - Review Request: dsqlite - DSQLite is a Hight level library for SQLite in D programming
https://bugzilla.redhat.com/show_bug.cgi?id=846008
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update dsqlite' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
Fedora 18 Update: libgphoto2-2.5.1.1-1.fc18
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-2740
2013-02-20 03:32:53
--------------------------------------------------------------------------------
Name : libgphoto2
Product : Fedora 18
Version : 2.5.1.1
Release : 1.fc18
URL : http://www.gphoto.org/
Summary : Library for accessing digital cameras
Description :
libgphoto2 is a library that can be used by applications to access
various digital cameras. libgphoto2 itself is not a GUI application,
opposed to gphoto. There are GUI frontends for the gphoto2 library,
however, such as gtkam for example.
--------------------------------------------------------------------------------
Update Information:
Updates to 2.5.1.1 and fixes camera detection.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 19 2013 Jindrich Novy <jnovy(a)redhat.com> 2.5.1.1-1
- update to 2.5.1.1
* Sun Feb 17 2013 Jindrich Novy <jnovy(a)redhat.com> 2.5.0-8
- fix camera detection - thanks to Panu Matilainen (#912040)
* Wed Jan 30 2013 Jindrich Novy <jnovy(a)redhat.com> 2.5.0-7
- move /lib files to /usr/lib
- fix changelog
* Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 2.5.0-6
- rebuild due to "jpeg8-ABI" feature drop
* Sun Jan 13 2013 Jindrich Novy <jnovy(a)redhat.com> 2.5.0-5
- remove deprecated HAL file (#894527)
* Sat Dec 1 2012 Jindrich Novy <jnovy(a)redhat.com> 2.5.0-4
- compile with -fno-strict-aliasing (because of ptp.c)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #912040 - libgphoto2 2.5.0-7 breaks camera detection on 64bit systems
https://bugzilla.redhat.com/show_bug.cgi?id=912040
[ 2 ] Bug #894527 - still shipping deprecated hal file
https://bugzilla.redhat.com/show_bug.cgi?id=894527
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update libgphoto2' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months
[SECURITY] Fedora 17 Update: cups-1.5.4-18.fc17
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2012-19606
2012-12-04 03:59:36
--------------------------------------------------------------------------------
Name : cups
Product : Fedora 17
Version : 1.5.4
Release : 18.fc17
URL : http://www.cups.org/
Summary : Common Unix Printing System
Description :
The Common UNIX Printing System provides a portable printing layer for
UNIX® operating systems. It has been developed by Easy Software Products
to promote a standard printing solution for all UNIX vendors and users.
CUPS provides the System V and Berkeley command-line interfaces.
--------------------------------------------------------------------------------
Update Information:
This update addresses two security issues:
* CVE-2012-5519 (privilege escalation for users fo the CUPS SystemGroup group or via polkit) is fixed by moving certain configuration keywords into a separate file, cups-files.conf, which cannot be modified by cupsd.
* CVE-2012-6094 (configuration issue with IPv4 vs IPv6) has been fixed by dropping support for systemd socket activation via IP sockets.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 4 2013 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-18
- Avoid misleading error message when configuration cannot be read.
- Don't enable IP-based systemd socket activation by default
(bug #842365, bug #891945, CVE-2012-6094).
* Thu Dec 6 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-17
- Additional fix relating to CVE-2012-5519 to avoid misleading error
message about actions to take to enable file device URIs.
* Tue Dec 4 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-16
- Small error handling improvements in the configuration migration
script.
* Mon Dec 3 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-15
- Applied additional upstream patch for CVE-2012-5519 so that the
RemoteRoot keyword is recognised in the correct configuration file.
* Mon Dec 3 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-14
- Fixed patch for CVE-2012-5519 so that LogFilePerm and LPDConfigFile
are recognised keywords for cups-files.conf (bug #882379).
* Wed Nov 28 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-13
- Fixed paths in config migration %post script.
- Set default cups-files.conf filename.
* Mon Nov 26 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-12
- Apply upstream fix for CVE-2012-5519 (STR #4223, bug #875898).
Migrate configuration keywords as needed.
* Mon Nov 5 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-11
- Apply upstream patch to stop backend spinning on failed auth (bug #873264).
* Wed Oct 31 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-10
- Ensure attributes are valid UTF-8 in dbus notifier (bug #863387).
* Mon Oct 29 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-9
- Removed broken cups-get-classes patch (bug #870612).
* Mon Oct 22 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-8
- Add quirk rule for Xerox Phaser 3124 (#867392)
* Thu Oct 11 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-7
- backport 2 upstream commits (r10638, r10642)
- backport fixes for STR #4191, STR #4194
- backport fixes for STR #4072, STR #4124
- backport 2 upstream commits (r10572, r10573)
* Thu Oct 11 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-6
- Avoid double-free crash in Avahi support (bug #863409).
* Mon Oct 1 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-5
- improved usblp-quirks.patch (bug #847923, STR #4191)
* Thu Sep 20 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-4
- The cups-libs subpackage contains code distributed under the zlib
license (md5.c).
* Tue Sep 18 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.2-3
- Don't use the IPP Create-Job operation, widely implemented
unreliably (bug #854989).
* Thu Aug 23 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-2
- quirk handler for port reset done by new USB backend (bug #847923, STR #4155)
* Thu Jul 26 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-1
- 1.5.4
* Mon May 28 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.3-2
- Buildrequire libusb1 (STR #3477)
* Tue May 15 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.3-1
- 1.5.3
* Wed May 9 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.2-13
- Add triggers for samba4-client. (#817110)
- No need to define BuildRoot and clean it in clean and install section anymore.
- %defattr no longer needed in %files sections.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #875898 - CVE-2012-5519 cups: privilege escalation for users of the CUPS SystemGroup group
https://bugzilla.redhat.com/show_bug.cgi?id=875898
[ 2 ] Bug #891942 - CVE-2012-6094 cups: 'Listen localhost:631' option not honoured correctly on IPv6-enabled systems when systemd used for CUPS socket activation
https://bugzilla.redhat.com/show_bug.cgi?id=891942
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update cups' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
11 years, 4 months