The following Fedora 16 Security updates need testing:
Age URL
68
https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33...
7
https://admin.fedoraproject.org/updates/FEDORA-2012-18782/android-tools-2...
7
https://admin.fedoraproject.org/updates/FEDORA-2012-18559/claws-mail-3.9....
41
https://admin.fedoraproject.org/updates/FEDORA-2012-16415/389-ds-base-1.2...
25
https://admin.fedoraproject.org/updates/FEDORA-2012-17553/libproxy-0.4.10...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19267/plexus-cipher-1...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19347/cups-1.5.4-7.fc16
146
https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4....
66
https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-16...
5
https://admin.fedoraproject.org/updates/FEDORA-2012-18927/cups-pk-helper-...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19357/kernel-3.6.8-2....
47
https://admin.fedoraproject.org/updates/FEDORA-2012-16032/cobbler-2.4.0-b...
5
https://admin.fedoraproject.org/updates/FEDORA-2012-18931/seamonkey-2.14-...
8
https://admin.fedoraproject.org/updates/FEDORA-2012-18687/libssh-0.5.3-1....
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19227/squashfs-tools-...
29
https://admin.fedoraproject.org/updates/FEDORA-2012-17291/thunderbird-16....
0
https://admin.fedoraproject.org/updates/FEDORA-2012-18330/perl-CGI-3.52-2...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19195/php-symfony-sym...
8
https://admin.fedoraproject.org/updates/FEDORA-2012-18661/firefox-17.0-1....
The following Fedora 16 Critical Path updates have yet to be approved:
Age URL
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19357/kernel-3.6.8-2....
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19265/lxpanel-0.5.10-...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-19227/squashfs-tools-...
5
https://admin.fedoraproject.org/updates/FEDORA-2012-18927/cups-pk-helper-...
6
https://admin.fedoraproject.org/updates/FEDORA-2012-18857/koji-1.7.1-1.fc16
8
https://admin.fedoraproject.org/updates/FEDORA-2012-18687/libssh-0.5.3-1....
8
https://admin.fedoraproject.org/updates/FEDORA-2012-18692/NetworkManager-...
9
https://admin.fedoraproject.org/updates/FEDORA-2012-18524/dnsmasq-2.59-5....
11
https://admin.fedoraproject.org/updates/FEDORA-2012-18416/libass-0.10.1-2...
11
https://admin.fedoraproject.org/updates/FEDORA-2012-18401/gnupg2-2.0.19-4...
0
https://admin.fedoraproject.org/updates/FEDORA-2012-18330/perl-CGI-3.52-2...
12
https://admin.fedoraproject.org/updates/FEDORA-2012-18316/perl-IO-Tty-1.1...
The following builds have been pushed to Fedora 16 updates-testing
cluster-3.2.0-1.fc16
corosync-1.4.4-2.fc16
cups-1.5.4-7.fc16
girara-0.1.4-2.fc16
kernel-3.6.8-2.fc16
libnetfilter_cthelper-1.0.0-3.fc16
rgmanager-3.2.0-1.fc16
zathura-0.2.1-1.fc16
Details about builds:
================================================================================
cluster-3.2.0-1.fc16 (FEDORA-2012-19340)
Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:
This update contains several major bug fixes across the cluster stack. Update is highly
recommended.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 28 2012 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 3.2.0-1
- new upstream release
* Tue Aug 14 2012 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 3.1.93-1
- new upstream release
- spec file update:
Update BuildRequires and Requires to match current requirements
--------------------------------------------------------------------------------
================================================================================
corosync-1.4.4-2.fc16 (FEDORA-2012-19340)
The Corosync Cluster Engine and Application Programming Interfaces
--------------------------------------------------------------------------------
Update Information:
This update contains several major bug fixes across the cluster stack. Update is highly
recommended.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 10 2012 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 1.4.4-2
- Add fix for crash on i686
* Tue Aug 14 2012 Jan Friesse <jfriesse(a)redhat.com> - 1.4.4-1
- New upstream release
--------------------------------------------------------------------------------
================================================================================
cups-1.5.4-7.fc16 (FEDORA-2012-19347)
Common Unix Printing System
--------------------------------------------------------------------------------
Update Information:
This update addresses CVE-2012-5519 by moving certain configuration keywords into a
separate file, cups-files.conf, which cannot be modified by cupsd.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 28 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-7
- Fixed paths in config migration %post script.
- Set default cups-files.conf filename.
* Mon Nov 26 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-6
- Apply upstream fix for CVE-2012-5519 (STR #4223, bug #875898).
Migrate configuration keywords as needed.
* Mon Oct 22 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-5
- Add quirk rule for Xerox Phaser 3124 (#867392)
* Mon Oct 1 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-4
- improved usblp-quirks.patch (bug #847923, STR #4191)
* Thu Sep 20 2012 Tim Waugh <twaugh(a)redhat.com> 1:1.5.4-3
- The cups-libs subpackage contains code distributed under the zlib
license (md5.c).
* Thu Aug 23 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-2
- quirk handler for port reset done by new USB backend (bug #847923, STR #4155)
* Thu Jul 26 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.4-1
- 1.5.4
* Mon May 28 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.3-2
- Buildrequire libusb1 (STR #3477)
* Tue May 15 2012 Jiri Popelka <jpopelka(a)redhat.com> 1:1.5.3-1
- 1.5.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #875898 - CVE-2012-5519 cups: privilege escalation for users of the CUPS
SystemGroup group
https://bugzilla.redhat.com/show_bug.cgi?id=875898
--------------------------------------------------------------------------------
================================================================================
girara-0.1.4-2.fc16 (FEDORA-2012-19286)
Simple user interface library
--------------------------------------------------------------------------------
Update Information:
remove static lib + update to new version
Initial package import
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #863049 - Static library in -devel package
https://bugzilla.redhat.com/show_bug.cgi?id=863049
--------------------------------------------------------------------------------
================================================================================
kernel-3.6.8-2.fc16 (FEDORA-2012-19357)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
Update to Linux v3.6.8 with various fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 27 2012 Josh Boyer <jwboyer(a)redhat.com> - 3.6.8-2
- Update patches for 8139cp issues from David Woodhouse (rhbz 851278)
* Mon Nov 26 2012 Josh Boyer <jwboyer(a)redhat.com> - 3.6.8-1
- Linux v3.6.8
* Mon Nov 26 2012 Josh Boyer <jwboyer(a)redhat.com> - 3.6.7-6
- Fix regression in 8139cp driver, debugged by William J. Eaton (rhbz 851278)
- Fix ACPI video after _DOD errors (rhbz 869383)
- Fix ata command timeout oops in mvsas (rhbz 869629)
- CVE-2012-4530: stack disclosure binfmt_script load_script (rhbz 868285 880147)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #868285 - CVE-2012-4530 kernel: stack disclosure in binfmt_script
load_script()
https://bugzilla.redhat.com/show_bug.cgi?id=868285
--------------------------------------------------------------------------------
================================================================================
libnetfilter_cthelper-1.0.0-3.fc16 (FEDORA-2012-19351)
User-space infrastructure for connection tracking helpers
--------------------------------------------------------------------------------
Update Information:
User-space infrastructure for connection tracking helpers
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #880179 - Review Request: libnetfilter_cthelper - User-space infrastructure
for connection tracking helpers
https://bugzilla.redhat.com/show_bug.cgi?id=880179
--------------------------------------------------------------------------------
================================================================================
rgmanager-3.2.0-1.fc16 (FEDORA-2012-19340)
Open Source HA Resource Group Failover for Red Hat Cluster
--------------------------------------------------------------------------------
Update Information:
This update contains several major bug fixes across the cluster stack. Update is highly
recommended.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 28 2012 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 3.2.0-1
- new upstream release
* Tue Aug 14 2012 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 3.1.93-1
- new upstream release
--------------------------------------------------------------------------------
================================================================================
zathura-0.2.1-1.fc16 (FEDORA-2012-19286)
A lightweight PDF viewer
--------------------------------------------------------------------------------
Update Information:
remove static lib + update to new version
Initial package import
--------------------------------------------------------------------------------
ChangeLog:
* Mon Nov 5 2012 Kevin Fenzi <kevin(a)scrye.com> 0.2.1-1
- Update to 0.2.1
* Sun Jul 22 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.0.8.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Wed May 16 2012 Marek Kasik <mkasik(a)redhat.com> - 0.0.8.5-4
- Rebuild (poppler-0.20.0)
* Sat Mar 31 2012 Peter Robinson <pbrobinson(a)fedoraproject.org> - 0.0.8.5-3
- Fix FTBFS on recent releases
- Update URLs
- Cleanup SPEC
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.0.8.5-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #863049 - Static library in -devel package
https://bugzilla.redhat.com/show_bug.cgi?id=863049
--------------------------------------------------------------------------------