Fedora 12 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Wed Nov 17 23:31:15 UTC 2010


The following Fedora 12 Security updates need testing:

    https://admin.fedoraproject.org/updates/freetype-2.3.11-7.fc12
    https://admin.fedoraproject.org/updates/bzip2-1.0.6-1.fc12
    https://admin.fedoraproject.org/updates/openssl-1.0.0b-1.fc12
    https://admin.fedoraproject.org/updates/mailman-2.1.12-10.fc12
    https://admin.fedoraproject.org/updates/gif2png-2.5.1-1202.fc12
    https://admin.fedoraproject.org/updates/cups-1.4.4-11.fc12
    https://admin.fedoraproject.org/updates/clamav-0.96.4-1200.fc12
    https://admin.fedoraproject.org/updates/libtlen-0-0.10.20060309.fc12


The following Fedora 12 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/openssl-1.0.0b-1.fc12
    https://admin.fedoraproject.org/updates/selinux-policy-3.6.32-127.fc12
    https://admin.fedoraproject.org/updates/freetype-2.3.11-7.fc12
    https://admin.fedoraproject.org/updates/mingetty-1.08-6.fc12
    https://admin.fedoraproject.org/updates/tzdata-2010o-1.fc12
    https://admin.fedoraproject.org/updates/pungi-2.0.20.1-1.fc12
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.1-10.git20100831.fc12
    https://admin.fedoraproject.org/updates/findutils-4.4.2-7.fc12
    https://admin.fedoraproject.org/updates/nss-softokn-3.12.4-16.fc12
    https://admin.fedoraproject.org/updates/xorg-x11-drv-ati-6.13.0-0.22.20100316git819b4015.fc12
    https://admin.fedoraproject.org/updates/binutils-2.19.51.0.14-38.fc12
    https://admin.fedoraproject.org/updates/util-linux-ng-2.16.2-4.fc12
    https://admin.fedoraproject.org/updates/xorg-x11-drv-synaptics-1.2.0-3.fc12
    https://admin.fedoraproject.org/updates/findutils-4.4.2-5.fc12


The following builds have been pushed to Fedora 12 updates-testing

    openssl-1.0.0b-1.fc12

Details about builds:


================================================================================
 openssl-1.0.0b-1.fc12 (FEDORA-2010-17826)
 A general purpose cryptography library with TLS implementation
--------------------------------------------------------------------------------
Update Information:

This is a minor update from upstream fixing one race condition theoretically exploitable from remote connections in some SSL servers (CVE-2010-3864). There are also a few additional bug fixes.

--------------------------------------------------------------------------------
ChangeLog:

* Tue Nov 16 2010 Tomas Mraz <tmraz at redhat.com> 1.0.0b-1
- new upstream version fixing CVE-2010-3864 (#649304)
* Tue Sep  7 2010 Tomas Mraz <tmraz at redhat.com> 1.0.0a-3
- make SHLIB_VERSION reflect the library suffix
* Wed Jun 30 2010 Tomas Mraz <tmraz at redhat.com> 1.0.0a-2
- openssl man page fix (#609484)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #649304 - CVE-2010-3864 OpenSSL TLS extension parsing race condition
        https://bugzilla.redhat.com/show_bug.cgi?id=649304
--------------------------------------------------------------------------------



More information about the test mailing list