--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4139
2013-03-21 23:08:42
--------------------------------------------------------------------------------
Name : rubygem-activerecord
Product : Fedora 18
Version : 3.2.8
Release : 5.fc18
URL : http://www.rubyonrails.org
Summary : Implements the ActiveRecord pattern for ORM
Description :
Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties database
tables and classes together for business objects, like Customer or
Subscription, that can find, save, and destroy themselves without resorting to
manual SQL.
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2013-1854.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 21 2013 Vít Ondruch <vondruch(a)redhat.com> - 1:3.2.8-5
- Fix for CVE-2013-1854.
* Wed Jan 9 2013 Vít Ondruch <vondruch(a)redhat.com> - 1:3.2.8-3
- Fix for CVE-2013-0155.
* Fri Jan 4 2013 Vít Ondruch <vondruch(a)redhat.com> - 1:3.2.8-2
- Fix for CVE-2012-6496.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #921329 - CVE-2013-1854 rubygem-activerecord: attribute_dos Symbol DoS vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=921329
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rubygem-activerecord' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4184
2013-03-21 23:11:15
--------------------------------------------------------------------------------
Name : powertop
Product : Fedora 18
Version : 2.3
Release : 1.fc18
URL : http://01.org/powertop/
Summary : Power consumption monitor
Description :
PowerTOP is a tool that finds the software component(s) that make your
computer use more power than necessary while it is idle.
--------------------------------------------------------------------------------
Update Information:
This is new version that fixes several bugs, for details see upstream announcement: http://01.org/powertop/blogs/kristen/2013/powertop-v2.3-release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 20 2013 Jaroslav Škarvada <jskarvad(a)redhat.com> - 2.3-1
- New version
Resolves: rhbz#923729
- Dropped fix-crash-on-readonly-fs, reduce-syscalls,
gpu-wiggle-fix patches (upstreamed)
- Dropped version-fix patch (not needed)
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.2-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Sun Jan 20 2013 Dan Horák <dan(a)danny.cz> - 2.2-6
- rebuilt again for fixed soname in libnl3
* Sun Jan 20 2013 Kalev Lember <kalevlember(a)gmail.com> - 2.2-5
- Rebuilt for libnl3
* Mon Jan 14 2013 Jaroslav Škarvada <jskarvad(a)redhat.com> - 2.2-4
- Reduced number of useless syscalls (reduce-syscalls patch) and
fixed gpu wiggle (gpu-wiggle-fix patch)
Resolves: rhbz#886185
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #923729 - powertop-2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=923729
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update powertop' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4194
2013-03-21 23:11:37
--------------------------------------------------------------------------------
Name : php-channel-drush
Product : Fedora 18
Version : 1.3
Release : 2.fc18
URL : http://pear.drush.org
Summary : Adds pear.drush.org channel to PEAR
Description :
This package adds the pear.drush.org channel which allows PEAR packages
from this channel to be installed.
--------------------------------------------------------------------------------
Update Information:
This package adds the pear.drush.org channel which allows PEAR packages
from this channel to be installed.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update php-channel-drush' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-1294
2013-01-23 00:36:46
--------------------------------------------------------------------------------
Name : pcsc-cyberjack
Product : Fedora 17
Version : 3.99.5final.SP03
Release : 11.fc17
URL : http://www.reiner-sct.de/
Summary : PC/SC driver for REINER SCT cyberjack USB chip card reader
Description :
REINER SCT cyberJack USB chip card reader user space driver.
This package includes the IFD driver for the cyberJack non-contact (RFID)
and contact USB chip card reader.
For more information regarding installation under Linux see the README.txt
in the documentation directory, esp. regarding compatibility with host
controllers.
For more information about the reader, software updates and a shop see
http://www.reiner-sct.com/
--------------------------------------------------------------------------------
Update Information:
Change to spec file from RHBZ 901764 to build on el6 too
version 3.99.5 SP03 of the REINER SCT cyberJack® driver
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #767657 - RFE: please update to 3.99.5 final SP03
https://bugzilla.redhat.com/show_bug.cgi?id=767657
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update pcsc-cyberjack' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4126
2013-03-21 23:08:16
--------------------------------------------------------------------------------
Name : mate-corba
Product : Fedora 17
Version : 1.4.1
Release : 1.fc17
URL : http://mate-desktop.org
Summary : CORBA Object Request Broker for MATE Desktop
Description :
MateCORBA is a fork of GNOME's Orbit
--------------------------------------------------------------------------------
Update Information:
update to 1.4.1 version
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 19 2013 Dan Mashal <dan.mashal(a)fedoraproject.org> 1.4.1-1
- Update to latest upstream release to fix compilation errors (needed for compiz)
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.4.0-11
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Aug 10 2012 Rex Dieter <rdieter(a)fedoraproject.org> 1.4.0-10
- include gtk-doc stuff in -devel exclusively
* Fri Aug 10 2012 Rex Dieter <rdieter(a)fedoraproject.org> 1.4.0-9
- cleanup file lists
- omit auto-pkgconfig-related deps
- own %{_libdir}/matecorba-2.0/
- drop deprecated stuff like Group:, %defattr
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mate-corba' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4121
2013-03-21 23:08:04
--------------------------------------------------------------------------------
Name : thunderbird-lightning
Product : Fedora 18
Version : 1.9.1
Release : 1.fc18
URL : http://www.mozilla.org/projects/calendar/lightning/
Summary : The calendar extension to Thunderbird
Description :
Lightning brings the Sunbird calendar to the popular email client,
Mozilla Thunderbird. Since it's an extension, Lightning is tightly
integrated with Thunderbird, allowing it to easily perform email-related
calendaring tasks.
--------------------------------------------------------------------------------
Update Information:
- Update to 1.9.1
- Add patch to fix alarm handling after suspend (bug #910976)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 19 2013 Orion Poplawski <orion(a)cora.nwra.com> - 1.9.1-1
- Update to 1.9.1
- Add patch to fix alarm handling after suspend (bug #910976)
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update thunderbird-lightning' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4187
2013-03-21 23:11:21
--------------------------------------------------------------------------------
Name : puppet
Product : Fedora 17
Version : 2.7.21
Release : 2.fc17
URL : http://puppetlabs.com
Summary : A network tool for managing many disparate systems
Description :
Puppet lets you centrally manage every important aspect of your system using a
cross-platform specification language that manages all the separate elements
normally aggregated in different files, like users, cron jobs, and hosts,
along with obviously discrete elements like packages, services, and files.
--------------------------------------------------------------------------------
Update Information:
Updates for the security announcements from Puppet Labs on 12-Mar-2013.
https://groups.google.com/group/puppet-announce/t/9200f268f8479e2c
This update also provides backported fixes for a number of issues with ruby-1.9.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 18 2013 Todd Zullinger <tmz(a)pobox.com> - 2.7.21-2
- Apply upstream fix for fqdn_rand function with ruby-1.9 (#880959)
- Apply upstream fix to make WEBrick more tolerant of old clients (#831303)
- Apply upstream fix to avoid deprecated iconv (#809911)
- Apply upstream fix to avoid class level variables (#809911)
* Wed Mar 13 2013 Michael Stahnke <stahnma(a)puppetlabs.com> - 2.7.21-1
- Fixes for CVE-2013-1640 CVE-2013-1652 CVE-2013-1653 CVE-2013-1654
- CVE-2013-1655 CVE-2013-2274 CVE-2013-2275
- Remove Ruby 1.9.3 load file patch. It's now upstream
- Remove install permissions patch. It's now upstream
* Wed Jul 11 2012 Todd Zullinger <tmz(a)pobox.com> - 2.7.18-1
- Update to 2.7.17, fixes CVE-2012-3864, CVE-2012-3865, CVE-2012-3866,
CVE-2012-3867
- Improve NetworkManager compatibility, thanks to Orion Poplawski (#532085)
- Preserve timestamps when installing files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #919770 - CVE-2013-1654 Puppet: SSL protocol downgrade
https://bugzilla.redhat.com/show_bug.cgi?id=919770
[ 2 ] Bug #919774 - CVE-2013-1653 Puppet: kick connection HTTP PUT request arbitrary code execution
https://bugzilla.redhat.com/show_bug.cgi?id=919774
[ 3 ] Bug #919775 - CVE-2013-1655 Puppet: Master code loading Ruby symbols vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=919775
[ 4 ] Bug #919783 - CVE-2013-1640 Puppet: catalog request code execution
https://bugzilla.redhat.com/show_bug.cgi?id=919783
[ 5 ] Bug #919784 - CVE-2013-1652 Puppet: HTTP GET request catalog retrieval
https://bugzilla.redhat.com/show_bug.cgi?id=919784
[ 6 ] Bug #919785 - CVE-2013-2275 Puppet: default auth.conf allows authenticated node to submit a report for any other node
https://bugzilla.redhat.com/show_bug.cgi?id=919785
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update puppet' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4143
2013-03-21 23:08:50
--------------------------------------------------------------------------------
Name : icoutils
Product : Fedora 17
Version : 0.30.0
Release : 1.fc17
URL : http://www.nongnu.org/icoutils/
Summary : Utility for extracting and converting Microsoft icon and cursor files
Description :
The icoutils are a set of programs for extracting and converting images in
Microsoft Windows icon and cursor files. These files usually have the
extension .ico or .cur, but they can also be embedded in executables or
libraries.
--------------------------------------------------------------------------------
Update Information:
This updates fixes a few bugs and improves the manpage. For a more detailed list of changes, see the changelog:
http://www.nongnu.org/icoutils/NEWS
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 20 2013 Martin Gieseking <martin.gieseking(a)uos.de> 0.30.0-1
- updated to release 0.30.0
- dropped patch as it has been applied upstream
- removed old buildroot stuff
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.29.1-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.29.1-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sat May 19 2012 Martin Gieseking <martin.gieseking(a)uos.de> 0.29.1-6
- added missing Provides: bundled(gnulib): https://bugzilla.redhat.com/show_bug.cgi?id=821764
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update icoutils' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4163
2013-03-21 23:09:57
--------------------------------------------------------------------------------
Name : python-vcstools
Product : Fedora 18
Version : 0.1.30
Release : 1.20130318git963c121.fc18
URL : http://www.ros.org/wiki/vcstools
Summary : Version Control System tools for Python
Description :
The vcstools module provides a Python API for interacting with different
version control systems (VCS/SCMs). The VcsClient class provides an API
for seamless interacting with Git, Mercurial (Hg), Bzr and SVN. The focus
of the API is manipulating on-disk checkouts of source-controlled trees.
Its main use is to support the rosinstall tool.
--------------------------------------------------------------------------------
Update Information:
This update brings the latest upstream versions of rosdep, rosinstall, rospkg, and vcstools.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 18 2013 Rich Mattes <richmattes(a)gmail.com> - 0.1.30-1.20130318git963c121
- Update to release 0.1.30
- Updated upstream URL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #922296 - rosdep looks for pip, we provide python-pip
https://bugzilla.redhat.com/show_bug.cgi?id=922296
[ 2 ] Bug #922278 - vcstools 0.1.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=922278
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-vcstools' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-4163
2013-03-21 23:09:57
--------------------------------------------------------------------------------
Name : python-rospkg
Product : Fedora 18
Version : 1.0.20
Release : 1.20130318git0a4448e.fc18
URL : http://ros.org/wiki/rospkg
Summary : Utilities for ROS package, stack, and distribution information
Description :
The ROS packaging system simplifies development and distribution of code
libraries. It enable you to easily specify dependencies between code
libraries, easily interact with those libraries from the command-line, and
release your code for others to use.
--------------------------------------------------------------------------------
Update Information:
This update brings the latest upstream versions of rosdep, rosinstall, rospkg, and vcstools.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 18 2013 Rich Mattes <richmattes(a)gmail.com> - 1.0.20-1.20130318git0a4448e
- Update to release 1.0.20
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #922296 - rosdep looks for pip, we provide python-pip
https://bugzilla.redhat.com/show_bug.cgi?id=922296
[ 2 ] Bug #922278 - vcstools 0.1.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=922278
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-rospkg' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------