Fedora 12 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Fri Aug 27 06:55:20 UTC 2010 

The following builds have been pushed to Fedora 12 updates-testing

    389-admin-1.1.11-1.fc12
    389-ds-base-1.2.6-1.fc12
    chmlib-0.40-3.fc12
    couchdb-0.11.2-2.fc12
    drraw-2.2-0.6.b2.fc12
    euca2ools-1.3-1.fc12
    ghostscript-8.71-11.fc12
    gtk-equinox-engine-1.20-4.fc12
    libHX-3.6-1.fc12
    mercurial-1.6.3-1.fc12
    pam_mount-2.5-1.fc12
    qdbm-1.8.78-1.fc12
    tellico-2.3-1.fc12

Details about builds:


================================================================================
 389-admin-1.1.11-1.fc12 (FEDORA-2010-13646)
 389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:

This is the final 389-ds-base 1.2.6 release - it is exactly the same as the
1.2.6.rc7.  This is the final 389-admin 1.1.11 release - it is exactly the same
as the 1.1.11.rc2 release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-1
- This is the final 1.1.11 release
* Wed Aug  4 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-0.6.rc2
- 1.1.11.rc2 release
- git tag 389-admin-1.1.11.rc2
- Bug 594745 - Get rid of dirsrv_lib_t label
* Wed Jun  9 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-0.5.rc1
- 1.1.11.rc1 release
* Wed May 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-0.4.a4
- 1.1.11.a4 release
* Wed Apr  7 2010 Nathan Kinder <nkinder at redhat.com> - 1.1.11-0.3.a3
- 1.1.11.a3 release
- Bug 570912 - dirsrv-admin SELinux module fails to install
- Change parsing of start-slapd for instance name
- Bug 574233 - Updated requirements for selinux policy
- Moved selinux subpackage into base package
* Fri Feb 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11.a2-0.2
- the 1.1.11.a2 release
- Bug 460162 - FedoraDS "with-FHS" installs init.d StartupScript in wrong location
- Bug 460209 - Correct configure help message
- Bug 560827 - Admin Server: DistinguishName validation fails
- Make check for threaded httpd work with Apache 2.0
* Thu Jan 21 2010 Nathan Kinder <nkinder at redhat.com> - 1.1.11.a1-0.1
- the 1.1.11.a1 release
- added SELinux subpackage
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #543590 - Tracking bug for 389 Directory Server 1.2.6
        https://bugzilla.redhat.com/show_bug.cgi?id=543590
--------------------------------------------------------------------------------


================================================================================
 389-ds-base-1.2.6-1.fc12 (FEDORA-2010-13646)
 389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:

This is the final 389-ds-base 1.2.6 release - it is exactly the same as the
1.2.6.rc7.  This is the final 389-admin 1.1.11 release - it is exactly the same
as the 1.1.11.rc2 release.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-1
- This is the final 1.2.6 release
* Tue Aug 10 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.11.rc7
- 1.2.6 release candidate 7
- git tag 389-ds-base-1.2.6.rc7
- Bug 621928 - Unable to enable replica (rdn problem?) on 1.2.6 rc6
* Mon Aug  2 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.10.rc6
- 1.2.6 release candidate 6
- git tag 389-ds-base-1.2.6.rc6
- Bug 617013 - repl-monitor.pl use cpu upto 90%
- Bug 616618 - 389 v1.2.5 accepts 2 identical entries with different DN formats
- Bug 547503 - replication broken again, with 389 MMR replication and TCP errors
- Bug 613833 - Allow dirsrv_t to bind to rpc ports
- Bug 612242 - membership change on DS does not show on AD
- Bug 617629 - Missing aliases in new schema files
- Bug 619595 - Upgrading sub suffix under non-normalized suffix disappears
- Bug 616608 - SIGBUS in RDN index reads on platforms with strict alignments
- Bug 617862 - Replication: Unable to delete tombstone errors
- Bug 594745 - Get rid of dirsrv_lib_t label
* Wed Jul 14 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.9.rc3
- make selinux-devel explicit Require the base package in order
- to comply with Fedora Licensing Guidelines
* Thu Jul  1 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.8.rc3
- 1.2.6 release candidate 3
- git tag 389-ds-base-1.2.6.rc3
- Bug 603942 - null deref in _ger_parse_control() for subjectdn
- 609256  - Selinux: pwdhash fails if called via Admin Server CGI
- 578296  - Attribute type entrydn needs to be added when subtree rename switch is on
- 605827 - In-place upgrade: upgrade dn format should not run in setup-ds-admin.pl
- Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll
- Bug 604453 - SASL Stress and Server crash: Program quits with the assertion failure in PR_Poll
- 606920 - anonymous resource limit - nstimelimit - also applied to "cn=directory manager"
* Wed Jun 16 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.7.rc2
- 1.2.6 release candidate 2
* Mon Jun 14 2010 Nathan Kinder <nkinder at redhat.com> - 1.2.6-0.6.rc1
- install replication session plugin header with devel package
* Wed Jun  9 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.5.rc1
- 1.2.6 release candidate 1
* Tue Jun  1 2010 Marcela Maslanova <mmaslano at redhat.com> - 1.2.6-0.4.a4.1
- Mass rebuild with perl-5.12.0
* Wed May 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.4.a4
- 1.2.6.a4 release
* Wed Apr  7 2010 Nathan Kinder <nkinder at redhat.com> - 1.2.6-0.4.a3
- 1.2.6.a3 release
- add managed entries plug-in
- many bug fixes
- moved selinux subpackage into base package
* Fri Apr  2 2010 Caolán McNamara <caolanm at redhat.com> - 1.2.6-0.3.a2
- rebuild for icu 4.4
* Tue Mar  2 2010 Rich Megginson <rmeggins at redhat.com> - 1.2.6-0.2.a2
- 1.2.6.a2 release
- add support for matching rules
- many bug fixes
* Thu Jan 14 2010 Nathan Kinder <nkinder at redhat.com> - 1.2.6-0.1.a1
- 1.2.6.a1 release
- Added SELinux policy and subpackages
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #543590 - Tracking bug for 389 Directory Server 1.2.6
        https://bugzilla.redhat.com/show_bug.cgi?id=543590
--------------------------------------------------------------------------------


================================================================================
 chmlib-0.40-3.fc12 (FEDORA-2010-13630)
 Library for dealing with ITSS/CHM format files
--------------------------------------------------------------------------------
Update Information:

Fixed issue with rpath.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Peter Lemenkov <lemenkov at gmail.com> - 0.40-3
- Removed rpath (see rhbz #569128)
- Patches rebased
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #569128 - rpath in chmlib
        https://bugzilla.redhat.com/show_bug.cgi?id=569128
--------------------------------------------------------------------------------


================================================================================
 couchdb-0.11.2-2.fc12 (FEDORA-2010-13665)
 A document database server, accessible via a RESTful JSON API
--------------------------------------------------------------------------------
Update Information:

Despite the fact that this is a security-related fix I would like to test these
packages for a while because of possible API incompatibilities (version
upgrade).
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Peter Lemenkov <lemenkov at gmail.com> 0.11.2-2
- Cleaned up spec-file a bit
* Tue Aug 17 2010 Peter Lemenkov <lemenkov at gmail.com> 0.11.2-1
- Ver. 0.11.2
* Wed Jul 14 2010 Peter Lemenkov <lemenkov at gmail.com> 0.11.1-1
- Ver. 0.11.1
- Removed patch for compatibility with Erlang/OTP R14A (merged upstream)
* Sun Jul 11 2010 Peter Lemenkov <lemenkov at gmail.com> 0.11.0-3
- Compatibility with Erlang R14A (see patch9)
* Tue Jun 22 2010 Peter Lemenkov <lemenkov at gmail.com> 0.11.0-2
- Massive spec cleanup
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #627498 - couchdb: start-up script sets insecure LD_LIBRARY_PATH
        https://bugzilla.redhat.com/show_bug.cgi?id=627498
  [ 2 ] Bug #624764 - CVE-2010-2234 couchdb: CSRF vulnerability in versions prior to 0.11.2/1.0.1
        https://bugzilla.redhat.com/show_bug.cgi?id=624764
--------------------------------------------------------------------------------


================================================================================
 drraw-2.2-0.6.b2.fc12 (FEDORA-2010-13647)
 Web based presentation front-end for RRDtool
--------------------------------------------------------------------------------
Update Information:

First Fedora release.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #473348 - Review Request: drraw - Web based presentation front-end for RRDtool
        https://bugzilla.redhat.com/show_bug.cgi?id=473348
--------------------------------------------------------------------------------


================================================================================
 euca2ools-1.3-1.fc12 (FEDORA-2010-13651)
 Elastic Utility Computing Architecture Command-Line Tools
--------------------------------------------------------------------------------
Update Information:

euca2ools 1.3 adds support for new command line options such as block device
mapping. It also contains a number of bugfixes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 25 2010 Garrett Holmstrom <gholms at fedoraproject.org> - 1.3-1
- Update to 1.3 final
- This release no longer requires python-boto 2.0
* Fri Jul 30 2010 Garrett Holmstrom <gholms at fedoraproject.org> - 1.2-5.20100701bzr293
- Rebuild prerelease against Python 2.7
* Thu Jul 22 2010 Garrett Holmstrom <gholms at fedoraproject.org> - 1.2-4.20100701bzr293
- Update to a snapshot that includes support for block device mapping [575258]
* Wed Jul 21 2010 David Malcolm <dmalcolm at redhat.com> - 1.2-3
- Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #575201 - euca-describe-images shows no output if none of o a x specified
        https://bugzilla.redhat.com/show_bug.cgi?id=575201
  [ 2 ] Bug #575258 - Procedure to bundle and install image fails
        https://bugzilla.redhat.com/show_bug.cgi?id=575258
--------------------------------------------------------------------------------


================================================================================
 ghostscript-8.71-11.fc12 (FEDORA-2010-13633)
 A PostScript interpreter and renderer.
--------------------------------------------------------------------------------
Update Information:

This package fixes a security problem (CVE-2010-2055) in ghostscript whereby gs
uses the current working directory to look for certain types of system file.
This has been fixed by changing the default behaviour.    Additionally, two bugs
have been fixed: scripts defining GS_EXECUTABLE have been corrected, and an
epstopdf failure has been fixed.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Tim Waugh <twaugh at redhat.com> 8.71-11
- Avoid epstopdf failure using upstream patch (bug #627390).
- More upstream fixes for bug #599564.
* Wed Aug 25 2010 Tim Waugh <twaugh at redhat.com> 8.71-10
- Fix implementation of -P- (bug #599564).
- Use -P- and -dSAFER in scripts (bug #599564).
* Wed Aug 25 2010 Tim Waugh <twaugh at redhat.com> 8.71-9
- Change SEARCH_HERE_FIRST default to make -P- default instead of -P
  (bug #599564).
- Removed redundant gs-executable patch (bug #502550).
* Thu Aug  5 2010 Tim Waugh <twaugh at redhat.com> 8.71-8
- Avoid another NULL pointer dereference in jbig2 code (bug #621569).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #599564 - CVE-2010-2055 GhostScript: Honors files present in cwd at startup
        https://bugzilla.redhat.com/show_bug.cgi?id=599564
--------------------------------------------------------------------------------


================================================================================
 gtk-equinox-engine-1.20-4.fc12 (FEDORA-2010-13641)
 Equinox theme engine for GTK+ 2.x
--------------------------------------------------------------------------------
Update Information:

A new engine derived from Aurora 1.4. It features smooth gradients or glassy
effects, subtle shadows, rounded widgets.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Germán A. Racca <gracca at gmail.com> 1.20-4
- Removed dependency on gnome-icon-theme because faenza-icon-theme was released
- Fixed icon name in Equinox Glass theme
--------------------------------------------------------------------------------


================================================================================
 libHX-3.6-1.fc12 (FEDORA-2010-13155)
 General-purpose library for typical low-level operations
--------------------------------------------------------------------------------
Update Information:

Update to libHX 3.6 fixing a buffer overflow in HX_split():    * http://libhx.gi
t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f90d
pam_mount v2.5 (August 10 2010)  ===============================  Changes:  -
mount.crypt: fix incorrect processing of binary files in keyfile passthrough  -
call mount.crypt by means of mount -t crypt (selinux), same for umount  -
reorder the default path to search in /usr/local first, then /usr, /  - config:
add missing fd0ssh command to restore volumes using ssh  - ofl is now run as a
separate process (selinux policy simplification)    libHX v3.6 (August 16 2010)
===========================  Fixed:  - bitmap: set/clear/test had no effect due
to wrong type selection  - bitmap: avoid left-shift larger than type on 64-bit
- string: fixed buffer overflow in HX_split when too few fields were present in
the input    libHX 3.5 (August 01 2010)  ==========================  Fixed:  -
format2: failure to skip escaped char in "%(echo foo\ bar)" was corrected  -
proc: properly check for HXPROC_STDx--HXPROC_STDx_NULL overlap  - strquote: do
not cause allocation with invalid format numbers  Enhancements:  - format2: add
the %(exec) function  - format2: add the %(shell) function  - format2: security
feature for %(exec) and %(shell)  - format2: add the %(snl) function  - string:
HX_strquote gained HXQUOTE_LDAPFLT (LDAP search filter) support  - string:
HX_strquote gained HXQUOTE_LDAPRDN (LDAP relative DN) support  Changes:  -
format1: removed older formatter in favor of format2  - format2: add check for
empty key  - format2: function-specific delimiters  - format2: do nest-counting
even with normal parentheses  - format2: check for zero-argument function calls
- hashmap: do not needlessy change TID when no reshape was done  - string:
HX_basename (the fast variant) now recognizes the root directory  - string:
HX_basename now returns the trailing component with slashes instead of
everything after the last slash (which may have been nothing)
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 16 2010 Till Maas <opensource at till.name> - 3.6-1
- really update to latest release
* Mon Aug 16 2010 Till Maas <opensource at till.name> - 3.5-1
- Update to latest release
- remove devel %files %{_includedir} globbing
- Update soname
* Sat Aug  7 2010 Till Maas <opensource at till.name> - 3.4-2
- Use less globbing in %files to detect changes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #625866 - CVE-2010-2947 libHX: buffer overrun in HX_split()
        https://bugzilla.redhat.com/show_bug.cgi?id=625866
--------------------------------------------------------------------------------


================================================================================
 mercurial-1.6.3-1.fc12 (FEDORA-2010-13654)
 A fast, lightweight distributed source control management system
--------------------------------------------------------------------------------
Update Information:

see http://mercurial.selenic.com/wiki/WhatsNew
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Neal Becker <ndbecker2 at gmail.com> - 1.6.3-1
- Update to 1.6.3
--------------------------------------------------------------------------------


================================================================================
 pam_mount-2.5-1.fc12 (FEDORA-2010-13155)
 A PAM module that can mount volumes for a user session
--------------------------------------------------------------------------------
Update Information:

Update to libHX 3.6 fixing a buffer overflow in HX_split():    * http://libhx.gi
t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f90d
pam_mount v2.5 (August 10 2010)  ===============================  Changes:  -
mount.crypt: fix incorrect processing of binary files in keyfile passthrough  -
call mount.crypt by means of mount -t crypt (selinux), same for umount  -
reorder the default path to search in /usr/local first, then /usr, /  - config:
add missing fd0ssh command to restore volumes using ssh  - ofl is now run as a
separate process (selinux policy simplification)    libHX v3.6 (August 16 2010)
===========================  Fixed:  - bitmap: set/clear/test had no effect due
to wrong type selection  - bitmap: avoid left-shift larger than type on 64-bit
- string: fixed buffer overflow in HX_split when too few fields were present in
the input    libHX 3.5 (August 01 2010)  ==========================  Fixed:  -
format2: failure to skip escaped char in "%(echo foo\ bar)" was corrected  -
proc: properly check for HXPROC_STDx--HXPROC_STDx_NULL overlap  - strquote: do
not cause allocation with invalid format numbers  Enhancements:  - format2: add
the %(exec) function  - format2: add the %(shell) function  - format2: security
feature for %(exec) and %(shell)  - format2: add the %(snl) function  - string:
HX_strquote gained HXQUOTE_LDAPFLT (LDAP search filter) support  - string:
HX_strquote gained HXQUOTE_LDAPRDN (LDAP relative DN) support  Changes:  -
format1: removed older formatter in favor of format2  - format2: add check for
empty key  - format2: function-specific delimiters  - format2: do nest-counting
even with normal parentheses  - format2: check for zero-argument function calls
- hashmap: do not needlessy change TID when no reshape was done  - string:
HX_basename (the fast variant) now recognizes the root directory  - string:
HX_basename now returns the trailing component with slashes instead of
everything after the last slash (which may have been nothing)
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug 16 2010 Till Maas <opensource at till.name> - 2.5-1
- Update to lastest release
- Update libHX dependency
- remove upstreamed patches
- do not package pam_mount.txt (RH #615714)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #625866 - CVE-2010-2947 libHX: buffer overrun in HX_split()
        https://bugzilla.redhat.com/show_bug.cgi?id=625866
--------------------------------------------------------------------------------


================================================================================
 qdbm-1.8.78-1.fc12 (FEDORA-2010-13660)
 Quick Database Manager
--------------------------------------------------------------------------------
Update Information:

New version 1.8.78 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Aug 27 2010 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 1.8.78-1
- 1.8.78
* Wed Jun  2 2010 Marcela Maslanova <mmaslano at redhat.com> - 1.8.77-7
- Mass rebuild with perl-5.12.0
* Wed Dec 23 2009 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 1.8.77-6
- F-13: rebuild for new perl
--------------------------------------------------------------------------------


================================================================================
 tellico-2.3-1.fc12 (FEDORA-2010-13658)
 A collection manager
--------------------------------------------------------------------------------
Update Information:

Update to 2.3. Fixes some bugs with loading images, more details here: http
://tellico-project.org/tellico-23-released
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug 26 2010 Alex Lancaster <alexlan[AT]fedoraproject org> - 2.3-1
- Update to tellico 2.3 (#622431)
* Wed Aug 11 2010 David Malcolm <dmalcolm at redhat.com> - 2.2-3
- recompiling .py files against Python 2.7 (rhbz#623410)
* Wed Apr  7 2010 José Matos <jamatos at fc.up.pt> - 2.2-2
- Rebuild for new libyaz (F14+).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #622431 - tellico-2.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=622431
--------------------------------------------------------------------------------

More information about the test mailing list