The following Fedora 13 Security updates need testing:
https://admin.fedoraproject.org/updates/dhcp-4.1.1-27.P1.fc13
https://admin.fedoraproject.org/updates/udunits2-2.1.19-1.fc13
https://admin.fedoraproject.org/updates/freetype-2.3.11-7.fc13
https://admin.fedoraproject.org/updates/openssl-1.0.0b-1.fc13
https://admin.fedoraproject.org/updates/mailman-2.1.12-16.fc13
https://admin.fedoraproject.org/updates/cups-1.4.4-11.fc13
https://admin.fedoraproject.org/updates/libvpx-0.9.5-2.fc13
https://admin.fedoraproject.org/updates/clamav-0.96.4-1300.fc13
https://admin.fedoraproject.org/updates/libtlen-0-0.10.20060309.fc13
https://admin.fedoraproject.org/updates/mingw32-OpenSceneGraph-2.8.2-3.fc13
The following Fedora 13 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/openssl-1.0.0b-1.fc13
https://admin.fedoraproject.org/updates/livecd-tools-13.0-1.fc13
https://admin.fedoraproject.org/updates/gcc-4.4.5-2.fc13
https://admin.fedoraproject.org/updates/freetype-2.3.11-7.fc13
https://admin.fedoraproject.org/updates/gnome-desktop-2.30.2-1.fc13
https://admin.fedoraproject.org/updates/mingetty-1.08-6.fc13
https://admin.fedoraproject.org/updates/chkconfig-1.3.49-1.fc13
https://admin.fedoraproject.org/updates/libcap-ng-0.6.5-1.fc13
https://admin.fedoraproject.org/updates/sendmail-8.14.4-6.fc13
https://admin.fedoraproject.org/updates/hunspell-1.2.8-18.fc13
https://admin.fedoraproject.org/updates/NetworkManager-0.8.1-10.git201008...
https://admin.fedoraproject.org/updates/gnome-settings-daemon-2.30.1-9.fc13
https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13
https://admin.fedoraproject.org/updates/openldap-2.4.21-11.fc13
https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc13,nss-util-3.12.7...
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7...
The following builds have been pushed to Fedora 13 updates-testing
AcetoneISO2-2.3-1.fc13
R-affydata-1.11.10-1.fc13
abrt-1.1.14-1.fc13
bangarang-1.0.1-2.fc13
dwm-5.8.2-5.fc13
libdmtx-0.7.2-3.fc13
libguestfs-1.6.2-1.fc13.4
libvpx-0.9.5-2.fc13
lyx-1.6.8-1.fc13
rxvt-unicode-9.09-3.fc13
samba-3.5.6-71.fc13
spacewalk-backend-1.2.74-2.fc13
spacewalk-config-1.2.7-1.fc13
sssd-1.3.0-38.fc13
wine-1.3.7-2.fc13
xdotool-2.20101012.3049-1.fc13
xrdp-0.5.0-0.13.fc13
yaws-1.89-3.fc13
Details about builds:
================================================================================
AcetoneISO2-2.3-1.fc13 (FEDORA-2010-17857)
CD/DVD Image Manipulator
--------------------------------------------------------------------------------
Update Information:
Update to version 2.3
- added utility to burn ISO/TOC/CUE images to CD-R/RW optical discs
- added utility to burn ISO images to DVD-+R/RW optical discs (including DL)
- AcetoneISO can now burn the raw images it generates when creating an image from CD-Audio
(toc support)
- fixed segmentation fault in erase cd/dvd function when no cd/dvd device is found
- notice user if mounting an UDF ISO image providing him correct linux command to mount
the image as root user
- small gui changes, most important is that the gui window size is not locked anymore to a
minimum value
- updated some i18n translations
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Tom "spot" Callaway <tcallawa(a)redhat.com> - 2.3-1
- update to 2.3
--------------------------------------------------------------------------------
================================================================================
R-affydata-1.11.10-1.fc13 (FEDORA-2010-17894)
Affymetrix data for demonstration purpose
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #591447 - Review Request: R-affydata - Affymetrix data for demonstration
purpose
https://bugzilla.redhat.com/show_bug.cgi?id=591447
--------------------------------------------------------------------------------
================================================================================
abrt-1.1.14-1.fc13 (FEDORA-2010-17898)
Automatic bug detection and reporting tool
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 17 2010 Jiri Moskovcak <jmoskovc(a)redhat.com> 1.1.14-1
- made howto mandatory
- fixed segv in abrt-hook-ccpp rhbz#652338
- added warning if kernel was tainted
- make the "install debuginfo" hint selectable rhbz#644343
- wrap howto and comments rhbz#625237
- wrap lines in the backtrace window rhbz#625232
- changed '*' to '•' rhbz#625236
- make the bt viewer not-editable rhbz#621871
- removed unneeded patches
* Wed Nov 10 2010 Jiri Moskovcak <jmoskovc(a)redhat.com> 1.1.13-3
- enabled gpg check forgotten from rawhide
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #652338 - Machine keeps crashing out of X and resetting to logon screen -
abrt-hook-ccpp against libc-2.12.90 in dmesg
https://bugzilla.redhat.com/show_bug.cgi?id=652338
[ 2 ] Bug #644343 - "Please try to install debuginfo manually" can't be
cut'n'pasted
https://bugzilla.redhat.com/show_bug.cgi?id=644343
[ 3 ] Bug #625237 - horizontal scroll makes filling in bug description difficult
https://bugzilla.redhat.com/show_bug.cgi?id=625237
[ 4 ] Bug #625232 - backtrace window hard to read
https://bugzilla.redhat.com/show_bug.cgi?id=625232
[ 5 ] Bug #625236 - use real bullet characters rather than * in backtrace screen
tooltip?
https://bugzilla.redhat.com/show_bug.cgi?id=625236
[ 6 ] Bug #621871 - abrt-gui backtrace viewer should not allow user to modify
backtraces
https://bugzilla.redhat.com/show_bug.cgi?id=621871
[ 7 ] Bug #627680 - [abrt] abrt-1.1.13-2.fc14: yyresolveAction: Process
/usr/bin/abrt-backtrace was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=627680
--------------------------------------------------------------------------------
================================================================================
bangarang-1.0.1-2.fc13 (FEDORA-2010-17882)
Media player with nepomuk support
--------------------------------------------------------------------------------
Update Information:
Fixed mimetype
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 17 2010 Thomas Janssen <thomasj(a)fedoraproject.org> 1.0.1-2
- removed sed lines, fix mimetype (sed is bad, patch is good) #654366
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #654366 - Invalid MIME TYPE
https://bugzilla.redhat.com/show_bug.cgi?id=654366
--------------------------------------------------------------------------------
================================================================================
dwm-5.8.2-5.fc13 (FEDORA-2010-17874)
Dynamic window manager for X
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Petr Sabata <psabata(a)redhat.com> - 5.8.2-5
- dwm-start update, rhbz#654571
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #654571 - dwm-start may start user session in non-existent directory
https://bugzilla.redhat.com/show_bug.cgi?id=654571
--------------------------------------------------------------------------------
================================================================================
libdmtx-0.7.2-3.fc13 (FEDORA-2010-17886)
Library for working with Data Matrix 2D bar-codes
--------------------------------------------------------------------------------
================================================================================
libguestfs-1.6.2-1.fc13.4 (FEDORA-2010-17872)
Access and modify virtual machine disk images
--------------------------------------------------------------------------------
Update Information:
New stable branch version 1.6.2.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Richard Jones <rjones(a)redhat.com> - 1:1.6.2-1.fc13.4
- New upstream stable branch version 1.6.2.
- This version includes a make install rule that works for Ruby, so
we can remove those instructions in the install section.
- Add BR gperf.
- Add BR febootstrap 2.10.
- Remove BR ocaml-xml-light-devel.
- Remove FIPS .*.hmac files from the supermin appliance (RHBZ#654638).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #654638 - openssl updated to 1.0.0b libguestfs depends on exact file names
https://bugzilla.redhat.com/show_bug.cgi?id=654638
--------------------------------------------------------------------------------
================================================================================
libvpx-0.9.5-2.fc13 (FEDORA-2010-17893)
VP8 Video Codec SDK
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.5 and apply patch from upstream to resolve CVE-2010-4203 libvpx: memory
corruption flaw.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 17 2010 Tom "spot" Callaway <tcallawa(a)redhat.com> 0.9.5-2
- apply patch from upstream git (Change I6266aba7), should resolve CVE-2010-4203
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #651213 - CVE-2010-4203 libvpx: memory corruption flaw
https://bugzilla.redhat.com/show_bug.cgi?id=651213
--------------------------------------------------------------------------------
================================================================================
lyx-1.6.8-1.fc13 (FEDORA-2010-17871)
WYSIWYM (What You See Is What You Mean) document processor
--------------------------------------------------------------------------------
Update Information:
New upstream bugfix release, see also
http://www.lyx.org/announce/1_6_8.txt
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Rex Dieter <rdieter(a)fedoraproject.org> - 1.6.8-1
- lyx-1.6.8
--------------------------------------------------------------------------------
================================================================================
rxvt-unicode-9.09-3.fc13 (FEDORA-2010-17888)
Unicode version of rxvt
--------------------------------------------------------------------------------
Update Information:
Provide four versions:
* standard (rxvt-unicode)
* multi-language support (rxvt-unicode-ml)
* 256color version (rxvt-unicode-256color)
* 256color multi-language (rxvt-unicode-256color-ml)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 9.09-3
- re-add frills build option for standard versions
- bind scrolling actions to crtl+up/down/pgup/pgdown as shift will break the
tabbing support
* Mon Nov 15 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 9.09-2
- Rework to provide four versions:
- standard (rxvt-unicode)
- multi-language support (rxvt-unicode-ml)
- 256color version (rxvt-unicode-256color)
- 256color multi-language (rxvt-unicode-256color-ml)
* Sun Nov 14 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 9.09-1
- version upgrade (fixes #581373)
- allow scrolling with mod+up/down (#510944)
- fixup desktop file (#617519)
- spec file cleanups
* Wed Jun 2 2010 Marcela Maslanova <mmaslano(a)redhat.com> - 9.07-2
- Mass rebuild with perl-5.12.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #581373 - RFE: Apply 256 color patch [PATCH]
https://bugzilla.redhat.com/show_bug.cgi?id=581373
[ 2 ] Bug #510944 - rxvt-unicode single line scrolling patch
https://bugzilla.redhat.com/show_bug.cgi?id=510944
[ 3 ] Bug #617519 - .desktop menu entry has wrong/missing categories
https://bugzilla.redhat.com/show_bug.cgi?id=617519
--------------------------------------------------------------------------------
================================================================================
samba-3.5.6-71.fc13 (FEDORA-2010-17855)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Guenther Deschner <gdeschner(a)redhat.com> - 3.5.6-71
- Fix libsmbclient SMB signing
- resolves: #598620
* Mon Nov 1 2010 Guenther Deschner <gdeschner(a)redhat.com> - 3.5.6-70
- Handle no network case in init scripts
- resolves: #604147
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #598620 - Nautilus fails to write to windows share
https://bugzilla.redhat.com/show_bug.cgi?id=598620
[ 2 ] Bug #604147 - Error message from initscript
https://bugzilla.redhat.com/show_bug.cgi?id=604147
--------------------------------------------------------------------------------
================================================================================
spacewalk-backend-1.2.74-2.fc13 (FEDORA-2010-17867)
Common programs needed to be installed on the Spacewalk servers/proxies
--------------------------------------------------------------------------------
Update Information:
new package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #612581 - Review Request: spacewalk-backend - Common programs needed to be
installed on the Spacewalk servers/proxies
https://bugzilla.redhat.com/show_bug.cgi?id=612581
--------------------------------------------------------------------------------
================================================================================
spacewalk-config-1.2.7-1.fc13 (FEDORA-2010-17889)
Spacewalk Configuration
--------------------------------------------------------------------------------
Update Information:
new package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #491331 - Review Request: spacewalk-config - Spacewalk Configuration
https://bugzilla.redhat.com/show_bug.cgi?id=491331
--------------------------------------------------------------------------------
================================================================================
sssd-1.3.0-38.fc13 (FEDORA-2010-17890)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
* Thu Nov 18 2010 Stephen Gallagher <sgallagh(a)redhat.com> - 1.3.0-38
- Solve a shutdown race-condition that sometimes left processes running
* Thu Nov 18 2010 Stephen Gallagher <sgallagh(a)redhat.com> - 1.3.0-37
- Resolves: rhbz#606887 - SSSD stops on upgrade
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Stephen Gallagher <sgallagh(a)redhat.com> - 1.3.0-38
- Solve a shutdown race-condition that sometimes left processes running
* Thu Nov 18 2010 Stephen Gallagher <sgallagh(a)redhat.com> - 1.3.0-37
- Resolves: rhbz#606887 - SSSD stops on upgrade
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #606887 - sssd stops on upgrade
https://bugzilla.redhat.com/show_bug.cgi?id=606887
--------------------------------------------------------------------------------
================================================================================
wine-1.3.7-2.fc13 (FEDORA-2010-17698)
A Windows 16/32/64 bit emulator
--------------------------------------------------------------------------------
Update Information:
* Improved system tray support.
* Better support for installers with assemblies.
* Many of the msvcrt "secure" functions implemented.
* A lot of fixes to the GStreamer support.
* Many MSXML improvements.
* Translation updates.
* Various bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 16 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.7-2
- cleanup cflags a bit
* Sat Nov 13 2010 Andreas Bierfert <andreas.bierfert[AT]lowlatency.de>
- 1.3.7-1
- version upgrade
- fix package description (#652718)
- compile with D_FORTIFY_SOURCE=0 for now to avoid breaking wine (#650875)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #652718 - misspelled package description
https://bugzilla.redhat.com/show_bug.cgi?id=652718
[ 2 ] Bug #650875 - Office 2007 crashes due to compiling with Fortify
https://bugzilla.redhat.com/show_bug.cgi?id=650875
--------------------------------------------------------------------------------
================================================================================
xdotool-2.20101012.3049-1.fc13 (FEDORA-2010-17900)
Fake keyboard/mouse input
--------------------------------------------------------------------------------
Update Information:
New upstream (mostly bugfix)-release
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 11 2010 Sven Lankes <sven(a)lank.es> - 1:2.20101012.3049-1
- new upstream release
* Sun Jul 11 2010 Sven Lankes <sven(a)lank.es> - 1:2.20100623.2949-1
- remove upstreamed patch
- new upstream release
* Sun Mar 28 2010 Sven Lankes <sven(a)lank.es> - 1:2.20100602.2915-1
- new upstream release
- add patch from Bruce Jerrick to not segfault when called with unknown command (bz
#602946)
* Sun Mar 28 2010 Sven Lankes <sven(a)lank.es> - 1:1.20100318.2737-1
- new upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #602952 - F13 xdotool scripting scheme is problematic
https://bugzilla.redhat.com/show_bug.cgi?id=602952
--------------------------------------------------------------------------------
================================================================================
xrdp-0.5.0-0.13.fc13 (FEDORA-2010-17875)
Open source remote desktop protocol (RDP) server
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 18 2010 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> - 0.5.0-0.13
- up to git tag a9cfc235211a49c69c3cce3f98ee5976ff8103a4
* Thu Nov 18 2010 Itamar Reis Peixoto <itamar(a)ispbrasil.com.br> -
0.5.0-0.12.03172010
- fix logrotate to not restart xrdp and drop all open connections
--------------------------------------------------------------------------------
================================================================================
yaws-1.89-3.fc13 (FEDORA-2010-17866)
Web server for dynamic content written in Erlang
--------------------------------------------------------------------------------
Update Information:
* Make building docs conditional
* Added one more module to package
* Added missing runtime dependency - erlang-xmlrpc
--------------------------------------------------------------------------------