The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/samba-3.5.10-70.fc15.1
https://admin.fedoraproject.org/updates/foomatic-4.0.7-3.fc15
https://admin.fedoraproject.org/updates/freetype-2.4.4-5.fc15
https://admin.fedoraproject.org/updates/libcap-2.22-1.fc15
https://admin.fedoraproject.org/updates/cifs-utils-5.0-2.fc15
https://admin.fedoraproject.org/updates/drupal7-7.6-1.fc15
https://admin.fedoraproject.org/updates/clamav-0.97.2-1500.fc15
https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.fc15
https://admin.fedoraproject.org/updates/wireshark-1.4.8-1.fc15
https://admin.fedoraproject.org/updates/phpMyAdmin-3.4.3.2-1.fc15
https://admin.fedoraproject.org/updates/p7zip-9.20.1-2.fc15
https://admin.fedoraproject.org/updates/openarena-0.8.5-4.fc15,quake3-1.3...
https://admin.fedoraproject.org/updates/libsoup-2.34.3-1.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/openssh-5.6p1-34.fc15.1
https://admin.fedoraproject.org/updates/shadow-utils-4.1.4.2-13.fc15
https://admin.fedoraproject.org/updates/perl-Compress-Raw-Lzma-2.036-2.fc...
https://admin.fedoraproject.org/updates/PackageKit-0.6.17-1.fc15
https://admin.fedoraproject.org/updates/logrotate-3.7.9-14.fc15
https://admin.fedoraproject.org/updates/kernel-2.6.40-3.fc15
https://admin.fedoraproject.org/updates/cyrus-sasl-2.1.23-18.fc15
https://admin.fedoraproject.org/updates/pinentry-0.8.1-4.fc15
https://admin.fedoraproject.org/updates/sendmail-8.14.5-3.fc15
https://admin.fedoraproject.org/updates/nss-3.12.10-5.fc15
https://admin.fedoraproject.org/updates/nspr-4.8.8-4.fc15
https://admin.fedoraproject.org/updates/nss-softokn-3.12.10-4.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-wacom-0.11.1-3.fc15
https://admin.fedoraproject.org/updates/freetype-2.4.4-5.fc15
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc15
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-1...
https://admin.fedoraproject.org/updates/lldpad-0.9.41-3.fc15
https://admin.fedoraproject.org/updates/libfprint-0.4.0-1.fc15,fprintd-0....
The following builds have been pushed to Fedora 15 updates-testing
bind-9.8.0-9.P4.fc15
bind-dyndb-ldap-0.2.0-4.fc15
cabal-dev-0.8-2.fc15
jd-2.8.2-0.3.rc110803.fc15
klt-1.3.4-1.fc15
luci-0.25.0-1.fc15
memcached-1.4.6-1.fc15
mercurial-1.9.1-1.fc15
openssh-5.6p1-34.fc15.1
python-rhsm-0.96.8-1.fc15
ql2400-firmware-5.06.00-1.fc15
ql2500-firmware-5.06.00-1.fc15
rwall-0.17-32.fc15
samba-3.5.10-70.fc15.1
wget-1.12-4.fc15
Details about builds:
================================================================================
bind-9.8.0-9.P4.fc15 (FEDORA-2011-10296)
The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
--------------------------------------------------------------------------------
Update Information:
This update fixes following issues:
* named could have crashed during reload/shutdown when bind-dyndb-ldap was used
(BZ#725741)
* named could have hung due race-condition in bind-dyndb-ldap
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Adam Tkac <atkac redhat com> 32:9.8.0-9.P4
- improve patch for #725741
* Tue Jul 26 2011 Adam Tkac <atkac redhat com> 32:9.8.0-8.P4
- named could have crashed during reload when dyndb module is used (#725741)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #725741 - [abrt] bind-9.8.0-7.P4.fc15: __GI_raise: Process /usr/sbin/named was
killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=725741
--------------------------------------------------------------------------------
================================================================================
bind-dyndb-ldap-0.2.0-4.fc15 (FEDORA-2011-10296)
LDAP back-end plug-in for BIND
--------------------------------------------------------------------------------
Update Information:
This update fixes following issues:
* named could have crashed during reload/shutdown when bind-dyndb-ldap was used
(BZ#725741)
* named could have hung due race-condition in bind-dyndb-ldap
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Adam Tkac <atkac redhat com> - 0.2.0-4
- fix race condition in semaphore_wait (#727856)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #725741 - [abrt] bind-9.8.0-7.P4.fc15: __GI_raise: Process /usr/sbin/named was
killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=725741
--------------------------------------------------------------------------------
================================================================================
cabal-dev-0.8-2.fc15 (FEDORA-2011-10281)
Haskell package sandboxing development tool
--------------------------------------------------------------------------------
Update Information:
cabal-dev is a development sandbox wrapper of cabal-install.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #688499 - Review Request: cabal-dev - Haskell package sandboxing tool
https://bugzilla.redhat.com/show_bug.cgi?id=688499
--------------------------------------------------------------------------------
================================================================================
jd-2.8.2-0.3.rc110803.fc15 (FEDORA-2011-10280)
A 2ch browser
--------------------------------------------------------------------------------
Update Information:
New version 2.8.2 rc 110803 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Mamoru Tasaka <mtasaka(a)fedoraproject.org> - 2.8.2-0.3.rc110803
- 2.8.2 rc 110803
--------------------------------------------------------------------------------
================================================================================
klt-1.3.4-1.fc15 (FEDORA-2011-10293)
An implementation of the Kanade-Lucas-Tomasi feature tracker
--------------------------------------------------------------------------------
Update Information:
* Initial push to update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #713677 - Review Request: klt - An implementation of the Kanade-Lucas-Tomasi
feature tracker.
https://bugzilla.redhat.com/show_bug.cgi?id=713677
--------------------------------------------------------------------------------
================================================================================
luci-0.25.0-1.fc15 (FEDORA-2011-10297)
Web-based high availability administration application
--------------------------------------------------------------------------------
Update Information:
New upstream version 0.25.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 1 2011 Ryan McCabe <rmccabe(a)redhat.com> - 0.25.0-1
- New upstream release 0.25.0
--------------------------------------------------------------------------------
================================================================================
memcached-1.4.6-1.fc15 (FEDORA-2011-10290)
High Performance, Distributed Memory Object Cache
--------------------------------------------------------------------------------
Update Information:
Upgrades memcached to 1.4.6, release notes available here:
http://code.google.com/p/memcached/wiki/ReleaseNotes146
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 2 2011 Paul Lindner <lindner(a)inuus.com> - 0:1.4.6-1
- Upgrade to memcached-1.4.6
--------------------------------------------------------------------------------
================================================================================
mercurial-1.9.1-1.fc15 (FEDORA-2011-10298)
Mercurial -- a distributed SCM
--------------------------------------------------------------------------------
Update Information:
see:
http://http://mercurial.selenic.com/wiki/WhatsNew
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Neal Becker <ndbecker2(a)gmail.com> - 1.9.1-1
- Update to 1.9.1
--------------------------------------------------------------------------------
================================================================================
openssh-5.6p1-34.fc15.1 (FEDORA-2011-10289)
An open source implementation of SSH protocol versions 1 and 2
--------------------------------------------------------------------------------
Update Information:
openssh now uses new oom_score_adj
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Jan F. Chadima <jchadima(a)redhat.com> - 5.6p2-34 + 0.9.2-29
- Improve oom_adj (#727335)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #727335 - openssh-5.6p1-33.fc15.1.x86_64 uses deprecated
/proc/<pid>/oom_adj
https://bugzilla.redhat.com/show_bug.cgi?id=727335
--------------------------------------------------------------------------------
================================================================================
python-rhsm-0.96.8-1.fc15 (FEDORA-2011-10288)
A Python library to communicate with a Red Hat Unified Entitlement Platform
--------------------------------------------------------------------------------
Update Information:
Very minor bugfixes for whitespace encoding in URLs, and the package profile upload URL.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Devan Goodwin <dgoodwin(a)rm-rf.ca> 0.96.8-1
- 719378: Encode whitespace in urls (bkearney(a)redhat.com)
- Change package profile upload url. (dgoodwin(a)redhat.com)
--------------------------------------------------------------------------------
================================================================================
ql2400-firmware-5.06.00-1.fc15 (FEDORA-2011-10292)
Firmware for qlogic 2400 devices
--------------------------------------------------------------------------------
Update Information:
Update to 5.06.00.
5.06.00, while attending a science exhibit, is bitten by a radioactive spider and acquires
the agility and proportionate strength of an arachnid. Along with super strength, he gains
the ability to adhere to walls and ceilings. Through his native knack for science, he
develops a gadget that lets him fire adhesive webbing of his own design through small,
wrist-mounted barrels. Initially seeking to capitalize on his new abilities, he dons a
costume and, as "5.06.00", becomes a novelty television star. However, he
blithely ignores the chance to stop a fleeing thief, and his indifference ironically
catches up with him when the same criminal later robs and kills his Uncle Ben. 5.06.00
tracks and subdues the killer and learns, "With great power there must also
come—great responsibility!"
No wait, that's Spider-Man. No one knows what this binary blob does. Sorry for the
confusion.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Tom Callaway <spot(a)fedoraproject.org> - 5.06.00-1
- update to 5.06.00
--------------------------------------------------------------------------------
================================================================================
ql2500-firmware-5.06.00-1.fc15 (FEDORA-2011-10292)
Firmware for qlogic 2500 devices
--------------------------------------------------------------------------------
Update Information:
Update to 5.06.00.
5.06.00, while attending a science exhibit, is bitten by a radioactive spider and acquires
the agility and proportionate strength of an arachnid. Along with super strength, he gains
the ability to adhere to walls and ceilings. Through his native knack for science, he
develops a gadget that lets him fire adhesive webbing of his own design through small,
wrist-mounted barrels. Initially seeking to capitalize on his new abilities, he dons a
costume and, as "5.06.00", becomes a novelty television star. However, he
blithely ignores the chance to stop a fleeing thief, and his indifference ironically
catches up with him when the same criminal later robs and kills his Uncle Ben. 5.06.00
tracks and subdues the killer and learns, "With great power there must also
come—great responsibility!"
No wait, that's Spider-Man. No one knows what this binary blob does. Sorry for the
confusion.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 3 2011 Tom Callaway <spot(a)fedoraproject.org> - 5.06.00-1
- update to 5.06.00
--------------------------------------------------------------------------------
================================================================================
rwall-0.17-32.fc15 (FEDORA-2011-10299)
Client for sending messages to a host's logged in users
--------------------------------------------------------------------------------
Update Information:
This is an update that fixes problems with starting rwalld with rpcbind and fixes some
rpmlint errors.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 1 2011 Honza Horak <hhorak(a)redhat.com> - 0.17-32
- moved privileges drop after port reservation to handle
a bug similar to #247985
- fixed rpmlint errors
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #226383 - Merge Review: rwall
https://bugzilla.redhat.com/show_bug.cgi?id=226383
[ 2 ] Bug #727760 - rwalld doesn't start with rpcbind installed
https://bugzilla.redhat.com/show_bug.cgi?id=727760
--------------------------------------------------------------------------------
================================================================================
samba-3.5.10-70.fc15.1 (FEDORA-2011-10286)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
Security update to 3.5.10, fixes CVE-2011-2522 and CVE-2011-2694
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 2 2011 Guenther Deschner <gdeschner(a)redhat.com> - 3.5.10-70
- Security update to 3.5.10, fixes CVE-2011-2522 and CVE-2011-2694
- resolves: #725890
* Tue Jun 14 2011 Guenther Deschner <gdeschner(a)redhat.com> - 3.5.9-69
- Update to 3.5.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #725890 - CVE-2011-2522 CVE-2011-2694 samba various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=725890
--------------------------------------------------------------------------------
================================================================================
wget-1.12-4.fc15 (FEDORA-2011-10287)
A utility for retrieving files using the HTTP or FTP protocols
--------------------------------------------------------------------------------
Update Information:
This update fixes incorrect validation of certificates. It also updates the upstream URL
in the metadata.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 23 2011 Volker Fröhlich <volker27(a)gmx.at> - 1.12-4
- Applied patch to accept subjectAltNames in X509 certificates (#674186)
- New URL (#658969)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #674186 - wget fails to verify proper certificate
https://bugzilla.redhat.com/show_bug.cgi?id=674186
[ 2 ] Bug #658969 - URL is incorrect
https://bugzilla.redhat.com/show_bug.cgi?id=658969
--------------------------------------------------------------------------------