Fedora 13 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Tue Feb 1 20:57:38 UTC 2011
The following Fedora 13 Security updates need testing:
https://admin.fedoraproject.org/updates/bugzilla-3.4.10-1.fc13
https://admin.fedoraproject.org/updates/asterisk-1.6.2.16.1-1.fc13
https://admin.fedoraproject.org/updates/dbus-1.2.24-2.fc13
https://admin.fedoraproject.org/updates/subversion-1.6.15-1.fc13
https://admin.fedoraproject.org/updates/openoffice.org-3.2.0-12.35.fc13
https://admin.fedoraproject.org/updates/dhcp-4.1.2-2.ESV.R1.fc13
https://admin.fedoraproject.org/updates/feh-1.10.1-1.fc13
https://admin.fedoraproject.org/updates/mod_auth_mysql-3.0.0-12.fc13
https://admin.fedoraproject.org/updates/postgresql-8.4.7-1.fc13
https://admin.fedoraproject.org/updates/wireshark-1.2.14-1.fc13
https://admin.fedoraproject.org/updates/tor-0.2.1.29-1300.fc13
The following Fedora 13 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/system-config-users-1.2.107-1.fc13
https://admin.fedoraproject.org/updates/python-ethtool-0.6-1.fc13
https://admin.fedoraproject.org/updates/elfutils-0.151-1.fc13
https://admin.fedoraproject.org/updates/util-linux-ng-2.17.2-10.fc13
https://admin.fedoraproject.org/updates/livecd-tools-13.1-1.fc13
https://admin.fedoraproject.org/updates/selinux-policy-3.7.19-80.fc13
https://admin.fedoraproject.org/updates/libical-0.46-2.fc13
https://admin.fedoraproject.org/updates/pm-utils-1.2.6.1-4.fc13
https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13
https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc13,nss-util-3.12.7-2.fc13,nss-softokn-3.12.7-3.fc13,nspr-4.8.6-1.fc13
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc13
The following builds have been pushed to Fedora 13 updates-testing
ecryptfs-utils-85-1.fc13
fedora-packager-0.5.3.0-1.fc13
java-1.6.0-openjdk-1.6.0.0-49.1.8.5.fc13
kobo-0.3.3-1.fc13
postgresql-8.4.7-1.fc13
pyqtrailer-0.6.2-1.fc13
rubygem-hpricot-0.8.3-2.fc13
rubygem-htmlentities-4.2.4-1.fc13
system-config-users-1.2.107-1.fc13
youtube-dl-2011.01.30-1.fc13
Details about builds:
================================================================================
ecryptfs-utils-85-1.fc13 (FEDORA-2011-0976)
The eCryptfs mount helper and support libraries
--------------------------------------------------------------------------------
Update Information:
- fixes issue when keyring is not cleared on umount
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Michal Hlavinka <mhlavink at redhat.com> - 85-1
- ecryptfs-utils updated to 85
* Tue Jan 11 2011 Dan Horák <dan[at]danny.cz> - 84-3
- fix build on arches where char is unsigned by default
--------------------------------------------------------------------------------
================================================================================
fedora-packager-0.5.3.0-1.fc13 (FEDORA-2011-0980)
Tools for setting up a fedora maintainer environment
--------------------------------------------------------------------------------
Update Information:
Multiple bugfixes, most important support packages with no remote branches
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 31 2011 Jesse Keating <jkeating at redhat.com> 0.5.3.0-1
- Catch the case where there is no branch merge point (#622592) (jkeating)
- Fix whitespace (jkeating)
- Add an argument to override the "distribution" (jkeating)
- upload to lookaside cache tgz files (dennis)
- Handle traceback if koji is down or unreachable. (jkeating)
- If we don't have a remote branch, query koji (#619979) (jkeating)
- Add a method to create an anonymous koji session (jkeating)
- Make sure we have sources for mockbuild (#665555) (jwboyer) (jkeating)
- Revert "Make sure we have an srpm when doing a mockbuild (#665555)" (jkeating)
- Regenerate the srpm if spec file is newer (ticket #84) (jkeating)
- Improve cert failure message (Ticket 90) (jkeating)
- Get package name from the specfile. (Ticket 75) (jkeating)
- Handle anonymous clones in clone_with_dirs. (#660183) (ricky)
- Make sure we have an srpm when doing a mockbuild (#665555) (jkeating)
- Catch all errors from watching tasks. (#670305) (jkeating)
- Fix a traceback when koji goes offline (#668889) (jkeating)
- Fix traceback with lint (ticket 89) (jkeating)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #622592 - [abrt] crash in fedora-packager-0.5.1.0-1.fc13: cmd.py:249:execute:GitCommandError: 'git config --get branch.f13-620971.merge' returned exit status 1:
https://bugzilla.redhat.com/show_bug.cgi?id=622592
[ 2 ] Bug #619979 - fedpkg crashes when there are no remote branches
https://bugzilla.redhat.com/show_bug.cgi?id=619979
[ 3 ] Bug #665555 - fedpkg mockbuild doesn't fetch sources files
https://bugzilla.redhat.com/show_bug.cgi?id=665555
[ 4 ] Bug #660183 - clone -B (branch) option breaks git url
https://bugzilla.redhat.com/show_bug.cgi?id=660183
[ 5 ] Bug #670305 - [abrt] fedpkg-0.5.2.0-2.fc14: httplib.py:845:putrequest:CannotSendRequest
https://bugzilla.redhat.com/show_bug.cgi?id=670305
[ 6 ] Bug #668889 - [abrt] fedpkg-0.5.1.4-1.fc13: __init__.py:1718:_callMethod:ServerOffline: database outage
https://bugzilla.redhat.com/show_bug.cgi?id=668889
[ 7 ] Bug #672370 - [abrt] fedpkg-0.5.2.0-2.fc14: socket.py:445:readline:error: [Errno 110] Connection timed out
https://bugzilla.redhat.com/show_bug.cgi?id=672370
--------------------------------------------------------------------------------
================================================================================
java-1.6.0-openjdk-1.6.0.0-49.1.8.5.fc13 (FEDORA-2011-0960)
OpenJDK Runtime Environment
--------------------------------------------------------------------------------
Update Information:
updated to icedtea 1.8.5
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jan 28 2011 Jiri Vanek <jvanek at redhat.com> -1:1.6.0-1.8.5.49
- updated to icedtea 1.8.5
- Resolves: rhbz#672262
- Security updates
- RH672262, CVE-2011-0025: IcedTea jarfile signature verification bypass
- Backports
- S6687968: PNGImageReader leaks native memory through an Inflater
- S6541476, RH665355: PNG imageio plugin incorrectly handles iTXt chunk
- S6782079: PNG: reading metadata may cause OOM on truncated images
- Fixes
- RH647157, RH582455: Update fontconfig files for rhel 6
- PR619: Improper finalization by the plugin can crash the browser
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #665355 - IIOException: Error reading PNG metadata
https://bugzilla.redhat.com/show_bug.cgi?id=665355
[ 2 ] Bug #647157 - Japanese, Chinese, Korean and possibly other fonts don't work by default in Java on RHEL6
https://bugzilla.redhat.com/show_bug.cgi?id=647157
[ 3 ] Bug #582455 - Java fontconfig needs to be updated for Japanese
https://bugzilla.redhat.com/show_bug.cgi?id=582455
--------------------------------------------------------------------------------
================================================================================
kobo-0.3.3-1.fc13 (FEDORA-2011-0967)
Python modules for tools development
--------------------------------------------------------------------------------
Update Information:
new upstream release, bugfixes mostly
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Daniel Mach <dmach at redhat.com> - 0.3.3-1
- Replace double underscores with dots in xmlrpc method names. (Daniel Mach)
- Fix regex in test_tback.py so unit tests pass. (Daniel Mach)
- Fix session handling in worker. (Daniel Mach)
- Fix kobo.Traceback to return empty string on no exception. Add traceback tests. (Tomas Kopecek)
- Simplify hub deployment (add menu and template to default). Tweak kobo-admin templates. (Daniel Mach)
- Add a warning about a possibly read-only database to the worker middleware assert. (Daniel Mach)
- Add task notification() and cleanup() class methods. (Daniel Mach)
- Revamp hub urls and admin templates. (Daniel Mach)
- Prevent a race condition when using CookieTransport in threads in py2.7. (Daniel Mach)
- Add unit test for EnumItem.change_state() return value. (Daniel Mach)
- StateEnum.change_state() now returns bool as documented. (Martin Magr)
- Command argument in kobo.shortcuts.run() can be also a list now. (Daniel Mach)
- Strip path from nvr in kobo.rpmlib.parse_nvr() and parse_nvra(). (Daniel Mach)
- Exclude XML-RPC from CSRF processing. (Daniel Mach)
- Add stdin data support to kobo.shortcuts.run(). (Daniel Mach)
- Add kobo.shortcuts.iter_chunks() to iterate through a list, string or generator and yield chunks of defined size. (Daniel Mach)
- Raise an exception when spawn_subtask() or wait() method is called in a foreground task. (Daniel Mach)
- Add constructor to kobo.django.hacks.UserChangeForm to fix maximum recursion depth error. (Daniel Mach)
- Fix username max_length hack to work with Django 1.2.1. (Martin Bukatovic)
- Add kobo.notification module to send email notifications. (Daniel Mach)
- Process kobo.shortcuts.run() logging in chunks and print data immediately. (Daniel Mach)
- Subtasks have to follow parent's channel and arch. (Martin Magr)
- Compute elapsed time for running tasks. (Tomas Kopecek)
--------------------------------------------------------------------------------
================================================================================
postgresql-8.4.7-1.fc13 (FEDORA-2011-0963)
PostgreSQL client programs
--------------------------------------------------------------------------------
Update Information:
Update to PostgreSQL 8.4.7, for various fixes described at http://www.postgresql.org/docs/8.4/static/release-8-4-7.html
including the fix for CVE-2010-4015
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Tom Lane <tgl at redhat.com> 8.4.7-1
- Update to PostgreSQL 8.4.7, for various fixes described at
http://www.postgresql.org/docs/8.4/static/release-8-4-7.html
including the fix for CVE-2010-4015
Resolves: #674296
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #664402 - CVE-2010-4015 PostgreSQL: Stack-based buffer overflow by processing certain tokens from SQL query string when intarray module enabled
https://bugzilla.redhat.com/show_bug.cgi?id=664402
--------------------------------------------------------------------------------
================================================================================
pyqtrailer-0.6.2-1.fc13 (FEDORA-2011-0965)
PyQt4 application to download trailers from apple.com
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version with better exception handling and logging support for easier debugging.
Translations were also updated.
Update to latest upstream version with better exception handling and logging support for easier debugging
Update to latest upstream version with better exception handling and logging support for easier debugging
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Stanislav Ochotnicky <sochotnicky at redhat.com> - 0.6.2-1
- Updated to latest upstream with updated translations
- Upstream fixed race condition during build
* Tue Feb 1 2011 Stanislav Ochotnicky <sochotnicky at redhat.com> - 0.6.1-2
- Fix various build problems
* Mon Jan 31 2011 Stanislav Ochotnicky <sochotnicky at redhat.com> - 0.6.1-1
- Update to latest upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #671914 - [abrt] pyqtrailer-0.6.0-1.fc14: subprocess.py:1201:_execute_child:OSError: [Errno 2] Aucun fichier ou dossier de ce type
https://bugzilla.redhat.com/show_bug.cgi?id=671914
--------------------------------------------------------------------------------
================================================================================
rubygem-hpricot-0.8.3-2.fc13 (FEDORA-2011-0979)
A Fast, Enjoyable HTML Parser for Ruby
--------------------------------------------------------------------------------
Update Information:
A bug is reported that hpricot 0.8.3 segfaults occasionally in GC. This new rpm will fix this issue.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 2 2011 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 0.8.3-2
- Fix segfault on GC (bug 672169, patch suggested by TAGOH Akira)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #672169 - segfaults on GC
https://bugzilla.redhat.com/show_bug.cgi?id=672169
--------------------------------------------------------------------------------
================================================================================
rubygem-htmlentities-4.2.4-1.fc13 (FEDORA-2011-0968)
A module for encoding and decoding (X)HTML entities
--------------------------------------------------------------------------------
Update Information:
New version 4.2.4 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 1 2011 Mamoru Tasaka <mtasaka at ioa.s.u-tokyo.ac.jp> - 4.2.4-1
- 4.2.4
--------------------------------------------------------------------------------
================================================================================
system-config-users-1.2.107-1.fc13 (FEDORA-2011-0788)
A graphical interface for administering users and groups
--------------------------------------------------------------------------------
Update Information:
This new version has a number of fixes and enhancements which mostly address some corner case issues like having users or groups with absurdly high IDs, or auto-mounted home directories:
- fix startup if max uid/gid is allocated
- attempt to mkdir home directory instead of using os.access()
- cope better with deleting auto-mounted home directories
- restore context of home directories after creating, also use umask of 0700 (u=rwx,go=)
- make most password problems warnings, not errors (#656356)
- ask if non-ASCII password should be used (#646876)
- add forced password change on next login (#656219)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 31 2011 Nils Philippsen <nils at redhat.com> - 1.2.107-1
- remove obsolete selinux module (#646876)
- search for substrings (#674047)
- add entry icon for clearing user/group filter
* Wed Jan 26 2011 Nils Philippsen <nils at redhat.com> - 1.2.106-1
- fix startup if max uid/gid is allocated
- attempt to mkdir home directory instead of using os.access()
- cope better with deleting auto-mounted home directories
- restore context of home directories after creating, also use umask of 0700
(u=rwx,go=)
- make most password problems warnings, not errors (#656356)
- ask if non-ASCII password should be used (#646876)
- add forced password change on next login (#656219)
- pick up translation updates
* Tue Aug 24 2010 Nils Philippsen <nils at redhat.com> - 1.2.105-1
- pick up translation updates
* Wed Aug 11 2010 Nils Philippsen <nils at redhat.com> - 1.2.104-1
- pick up translation updates
* Wed Aug 11 2010 Nils Philippsen <nils at redhat.com> - 1.2.103-1
- fix python format directives in id.po
* Wed Aug 11 2010 Nils Philippsen <nils at redhat.com> - 1.2.102-1
- pick up translation updates
* Tue Jul 20 2010 Nils Philippsen <nils at redhat.com> - 1.2.101-1
- don't inadvertently add new users to existing groups (#616450)
* Mon Jul 19 2010 Nils Philippsen <nils at redhat.com>
- enforce uids, gids fitting in id_t datatype, also clamp uid, gid to permitted
value range in UI (#616067)
* Wed Jun 30 2010 Nils Philippsen <nils at redhat.com> - 1.2.100-1
- check if homedirs of new users can be created
- prevent unlocking users with empty passwords
- require docs in enterprise builds
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #646876 - Non-ascii characters are not allowed in user password
https://bugzilla.redhat.com/show_bug.cgi?id=646876
[ 2 ] Bug #674047 - Search should automatically search for all substrings (no need of wildcard *)
https://bugzilla.redhat.com/show_bug.cgi?id=674047
[ 3 ] Bug #656219 - [RFE] GUI equivalent of chage -d 0
https://bugzilla.redhat.com/show_bug.cgi?id=656219
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2011.01.30-1.fc13 (FEDORA-2011-0970)
Small command-line program to download videos from YouTube
--------------------------------------------------------------------------------
Update Information:
This update adjusts youtube-dl to work with dailymotion and some ways of linking to youtube videos. A full changelog is available at:
https://github.com/rg3/youtube-dl/commits/master
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 31 2011 Till Maas <opensource at till.name> - 2010.01.30-1
- Update to latest release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #673979 - youtube-dl-2011.01.30 is available
https://bugzilla.redhat.com/show_bug.cgi?id=673979
--------------------------------------------------------------------------------
More information about the test
mailing list