Fedora 14 updates-testing report

Sat Jul 23 02:11:32 UTC 2011

The following Fedora 14 Security updates need testing:

    https://admin.fedoraproject.org/updates/xml-security-c-1.5.1-4.fc14
    https://admin.fedoraproject.org/updates/mapserver-5.6.7-1.fc14
    https://admin.fedoraproject.org/updates/foomatic-4.0.7-2.fc14
    https://admin.fedoraproject.org/updates/java-1.6.0-openjdk-1.6.0.0-54.1.9.9.fc14
    https://admin.fedoraproject.org/updates/freetype-2.4.2-5.fc14
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.4-2.git20110622.fc14
    https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.fc14
    https://admin.fedoraproject.org/updates/wireshark-1.4.8-1.fc14
    https://admin.fedoraproject.org/updates/erlang-R14B-03.1.fc14
    https://admin.fedoraproject.org/updates/system-config-firewall-1.2.27-2.fc14
    https://admin.fedoraproject.org/updates/libsndfile-1.0.25-1.fc14
    https://admin.fedoraproject.org/updates/libpng-1.2.46-1.fc14
    https://admin.fedoraproject.org/updates/ruby-1.8.7.352-1.fc14
    https://admin.fedoraproject.org/updates/xmms-1.2.11-15.20071117cvs.fc14
    https://admin.fedoraproject.org/updates/tomcat6-6.0.26-21.fc14
    https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
    https://admin.fedoraproject.org/updates/oprofile-0.9.6-21.fc14
    https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14

The following Fedora 14 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/freetype-2.4.2-5.fc14
    https://admin.fedoraproject.org/updates/logrotate-3.7.9-4.fc14
    https://admin.fedoraproject.org/updates/mdadm-3.1.3-0.git20100804.3.fc14
    https://admin.fedoraproject.org/updates/libsndfile-1.0.25-1.fc14
    https://admin.fedoraproject.org/updates/ModemManager-0.4.998-1.git20110706.fc14
    https://admin.fedoraproject.org/updates/acl-2.2.49-9.fc14
    https://admin.fedoraproject.org/updates/unique-1.1.6-3.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-savage-2.3.2-3.fc14
    https://admin.fedoraproject.org/updates/cronie-1.4.8-2.fc14
    https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc14
    https://admin.fedoraproject.org/updates/python-slip-0.2.17-1.fc14
    https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14
    https://admin.fedoraproject.org/updates/NetworkManager-0.8.4-2.git20110622.fc14
    https://admin.fedoraproject.org/updates/perl-5.12.4-146.fc14
    https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-30.2.fc14
    https://admin.fedoraproject.org/updates/system-config-keyboard-1.3.1-5.fc14
    https://admin.fedoraproject.org/updates/fedora-logos-14.0.2-1.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-8.fc14.2
    https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
    https://admin.fedoraproject.org/updates/evolution-exchange-2.32.3-1.fc14,evolution-data-server-2.32.3-1.fc14,evolution-2.32.3-1.fc14
    https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20101010git8c8f15c.fc14
    https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9.fc14,concordance-0.23-2.fc14
    https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14

The following builds have been pushed to Fedora 14 updates-testing

    RackTables-0.19.6-2.fc14
    bluefish-2.0.3-4.fc14
    botan-1.8.13-2.fc14
    cgit-0.9.0.2-2.fc14
    cvs-1.11.23-13.fc14
    deluge-1.3.2-1.fc14
    eclipse-avr-2.3.4-3.fc14
    eclipse-cdt-7.0.1-8.fc14
    ecryptfs-utils-87-6.fc14
    erlang-R14B-03.1.fc14
    etckeeper-0.56-1.fc14
    freemind-0.9.0-3.fc14
    gnome-do-0.8.5-5.fc14
    gnome-do-plugins-0.8.4-2.fc14
    ikiwiki-3.20110715-1.fc14
    libgadu-1.11.0-2.fc14
    mathomatic-15.6.2-1.fc14
    mozc-1.1.773.102-1.fc14
    nbc-1.2.1.r3-3.fc14
    olpc-os-builder-3.0.0-1.fc14
    perl-Net-FTP-AutoReconnect-0.3-3.fc14
    perl-Net-FTP-RetrHandle-0.2-3.fc14
    php-pecl-oauth-1.2.1-1.fc14
    phpldapadmin-1.2.1.1-1.fc14
    policycoreutils-2.0.85-30.2.fc14
    python-gudev-147.1-6.fc14
    rubygem-rbvmomi-1.2.3-3.fc14
    shorewall-4.4.21.1-3.fc14
    sugar-speak-29-1.fc14
    supybot-gribble-0.83.4.1-8.fc14
    surfraw-2.2.8-1.fc14
    system-config-firewall-1.2.27-2.fc14
    system-config-lvm-1.1.16-1.fc14
    tnef-1.4.8-4.fc14
    volumeicon-0.4.1-2.fc14
    wireshark-1.4.8-1.fc14
    zanata-python-client-1.2.6-1.fc14

Details about builds:

================================================================================
 RackTables-0.19.6-2.fc14 (FEDORA-2011-9586)
 A data-center asset management system
--------------------------------------------------------------------------------
Update Information:

Preserve secret.php across updates
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Colin Coe <colin.coe at gmail.com> - 0.19.6-2
- Stop blatting secret.php if it exists
* Wed Jul 20 2011 Colin Coe <colin.coe at gmail.com> - 0.19.6-1
- Rebase to v0.19.6
--------------------------------------------------------------------------------

================================================================================
 bluefish-2.0.3-4.fc14 (FEDORA-2011-9654)
 GTK2 web development application for experienced users
--------------------------------------------------------------------------------
Update Information:

This update includes an upstream fix for a crash originally caused by opening lots of files and then closing them quickly with
Ctrl-W.

https://bugzilla.gnome.org/show_bug.cgi?id=654838
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Paul Howarth <paul at city-fan.org> - 2.0.3-4
- Fix crash in _gtk_text_btree_get_chars_changed_stamp
  (Gnome bug 654838, #720990)
- Nobody else likes macros for commands
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #720990 - [abrt] bluefish-2.0.3-3.fc14: Process /usr/bin/bluefish was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=720990
--------------------------------------------------------------------------------

================================================================================
 botan-1.8.13-2.fc14 (FEDORA-2011-9621)
 Crypto library written in C++
--------------------------------------------------------------------------------
Update Information:

Botan 1.8.13 has been released with a fix for a recently discovered bug that could cause crashes in multithreaded code.

A full description of the problem can be found on the mailing list: http://lists.randombit.net/pipermail/botan-devel/2011-July/001455.html
Update to the latest version of the 1.8 series, 1.8.12.

Relevant items from the upstream changelog:

 * If EMSA3(Raw) was used for more than one signature, it would produce incorrect output.
 * Fix a memory leak in the constructors of DataSource_Stream and DataSink_Stream which would occur if opening the file failed. PR 144

See http://botan.randombit.net/log.html#version-1-8-12-2011-06-20.
Update to the latest version of the 1.8 series, 1.8.12.

Relevant items from the upstream changelog:

 * If EMSA3(Raw) was used for more than one signature, it would produce incorrect output.
 * Fix a memory leak in the constructors of DataSource_Stream and DataSink_Stream which would occur if opening the file failed. PR 144

See http://botan.randombit.net/log.html#version-1-8-12-2011-06-20.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Thomas Moschny <thomas.moschny at gmx.de> - 1.8.13-2
- Patch to revert the soname change.
* Wed Jul 20 2011 Thomas Moschny <thomas.moschny at gmx.de> - 1.8.13-1
- Update to 1.8.13.
--------------------------------------------------------------------------------

================================================================================
 cgit-0.9.0.2-2.fc14 (FEDORA-2011-9588)
 A fast web interface for git
--------------------------------------------------------------------------------
Update Information:

This update fixes a potential XSS vulnerability¹.  A malicious user would need push access to the git server in order to exploit this issue. Refer to the cgit mailing list for:

Numerous minor bugs are also fixed.  For details, refer to the upstream release announcements for 0.9.0.1² and 0.9.0.2³.

¹ http://hjemli.net/pipermail/cgit/2011-July/000276.html
² http://hjemli.net/pipermail/cgit/2011-June/000183.html
³ http://hjemli.net/pipermail/cgit/2011-July/000273.html
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Todd Zullinger <tmz at pobox.com> - 0.9.0.2-2
- Fix potential XSS vulnerability in rename hint
* Thu Jul 21 2011 Todd Zullinger <tmz at pobox.com> - 0.9.0.2-1
- Update to 0.9.0.2
--------------------------------------------------------------------------------

================================================================================
 cvs-1.11.23-13.fc14 (FEDORA-2011-9665)
 A version control system
--------------------------------------------------------------------------------
Update Information:

Fix GSS API authentication against multihomed server
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Petr Pisar <ppisar at redhat.com> - 1.11.23-13
- Fix GSS API authentication against multihomed server (bug #722972)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #722972 - Missing patch to support CVS/GSSAPI with DNS-loadbalanced clusters
        https://bugzilla.redhat.com/show_bug.cgi?id=722972
--------------------------------------------------------------------------------

================================================================================
 deluge-1.3.2-1.fc14 (FEDORA-2011-9633)
 A GTK+ BitTorrent client with support for DHT, UPnP, and PEX
--------------------------------------------------------------------------------
Update Information:

http://dev.deluge-torrent.org/wiki/ReleaseNotes/1.3.2
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Rahul Sundaram <sundaram at fedoraproject.org> - 1.3.2-1
- Update to latest upstream release
- http://dev.deluge-torrent.org/wiki/ReleaseNotes/1.3.2
- Dropped unnecessary patch concerning deluge.desktop categories
- Remove hidden files created by webui buid and compression
--------------------------------------------------------------------------------

================================================================================
 eclipse-avr-2.3.4-3.fc14 (FEDORA-2011-9600)
 AVR Eclipse Plugin Sources
--------------------------------------------------------------------------------
Update Information:

New package, tested, working fine
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #720901 - Review Request: eclipse-avr - Eclipse AVR plugin
        https://bugzilla.redhat.com/show_bug.cgi?id=720901
--------------------------------------------------------------------------------

================================================================================
 eclipse-cdt-7.0.1-8.fc14 (FEDORA-2011-9641)
 Eclipse C/C++ Development Tools (CDT) plugin
--------------------------------------------------------------------------------
Update Information:

This fixes a stall when reconfiguring an autotools project.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Jeff Johnston  <jjohnstn at redhat.com> 1:7.0.1-8
- Fix for https://bugs.eclipse.org/bugs/show_bug.cgi?id=351660
--------------------------------------------------------------------------------

================================================================================
 ecryptfs-utils-87-6.fc14 (FEDORA-2011-9661)
 The eCryptfs mount helper and support libraries
--------------------------------------------------------------------------------
Update Information:

- do not use memcpy for overlaping areas
- fix broken pam module resulting in session with wrong gid
- do not write to /etc/mtab if it's a symlink (fix remaining occurrences)
- fix pam module to set ecryptfs gid before mount helper execution 
- do not use zombie process, it causes lock ups in ssh
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 19 2011 Michal Hlavinka <mhlavink at redhat.com> - 87-5
- do not use memcpy for overlaping areas
- fix broken pam module resulting in session with wrong gid
* Thu Jun  9 2011 Michal Hlavinka <mhlavink at redhat.com> - 87-4
- check for ecryptfs pam module before home dir migration
* Tue Jun  7 2011 Michal Hlavinka <mhlavink at redhat.com> - 87-3
- update of mtab does not work if it's a symlink (#706911)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #722445 - ssh login to an account using ecryptfs Private pam mount results in dead lock and more
        https://bugzilla.redhat.com/show_bug.cgi?id=722445
  [ 2 ] Bug #719091 - ecryptfs won't mount encrypted filesystem
        https://bugzilla.redhat.com/show_bug.cgi?id=719091
--------------------------------------------------------------------------------

================================================================================
 erlang-R14B-03.1.fc14 (FEDORA-2011-9657)
 General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:

- Ver. R14B03
- New module - diameter
- Several new examples directories
- Fixed building on F-15

--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 20 2011 Peter Lemenkov <lemenkov at gmail.com> - R14B-03.1
- Ver. R14B03
- New module - diameter
- Several new examples directories
* Fri Apr  1 2011 Hans Ulrich Niedermann <hun at n-dimensional.de> - R14B-02.2
- Work around fop-1.0-14.fc16 bug (#689930) by using prebuilt docs for f16/rawhide
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #718085 - Erlang WX Driver failed to start due to C++ type mismatch.
        https://bugzilla.redhat.com/show_bug.cgi?id=718085
  [ 2 ] Bug #709024 - CVE-2011-0766 erlang: SSH library uses a weak random number generator [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=709024
  [ 3 ] Bug #707904 - erlang-14B03 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=707904
--------------------------------------------------------------------------------

================================================================================
 etckeeper-0.56-1.fc14 (FEDORA-2011-9594)
 Store /etc in a SCM system (git, mercurial, bzr or darcs)
--------------------------------------------------------------------------------
Update Information:

Update to 0.56, a bugfix version. Relevant items from the upstream changelog:

 * Handle files with % in their names.

--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Thomas Moschny <thomas.moschny at gmx.de> - 0.56-1
- Update to 0.56.
--------------------------------------------------------------------------------

================================================================================
 freemind-0.9.0-3.fc14 (FEDORA-2011-9668)
 Free mind mapping software
--------------------------------------------------------------------------------
Update Information:

Fixes the typo in freemind.sh
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Johannes Lips <Johannes.Lips googlemail com> 0.9.0-3
- fixed a typo in freemind.sh
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #723737 - classpath error on startup
        https://bugzilla.redhat.com/show_bug.cgi?id=723737
--------------------------------------------------------------------------------

================================================================================
 gnome-do-0.8.5-5.fc14 (FEDORA-2011-9434)
 Quick launch and search
--------------------------------------------------------------------------------
Update Information:

This update brings in the latest stable versions of GNOME Do and plugins from the GNOME Do plugins project, mainly consisting of a ton of bug fixes. Docky has now been dropped from GNOME Do (as it has been split off into its own project, see http://wiki.go-docky.com/). The Evolution plugin, which has been dysfunctional for some time, has also been dropped. There are several new plugins available however, including one for performing calculations with Qalculate, and several for integration with Google services.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Theodore Lee <theo148 at gmail.com> - 0.8.5-5
- Fix bindir entry in file listing
* Thu Jul 21 2011 Theodore Lee <theo148 at gmail.com> - 0.8.5-4
- Add patch for About window bug
* Sat Jul 16 2011 Theodore Lee <theo148 at gmail.com> - 0.8.5-3
- Add patch for minor ExecuteWithArguments bugs
* Fri Jul 15 2011 Theodore Lee <theo148 at gmail.com> - 0.8.5-2
- Add requires on findutils (for xargs)
- Obsolete docklets
* Tue Jun 28 2011 Theodore Lee <theo148 at gmail.com> - 0.8.5-1
- Update to latest upstream release
- Use global instead of define
- Drop patches for issues that have been fixed upstream
* Sun Mar 13 2011 Theodore Lee <theo148 at gmail.com> - 0.8.4-0.3.aa
- Update patch for opening weird filenames
* Fri Mar 11 2011 Theodore Lee <theo148 at gmail.com> - 0.8.4-0.2.aa
- Add unreleased fixes for opening weird filenames and the email action
- Updated to latest upstream release, which has dropped Docky
- Remove unnecessary Docky patch
- Add patch to get rid of linebreak in desktop file
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8.3.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Jan 10 2011 Dan Horák <dan[at]danny.cz> - 0.8.3.1-4
- updated the supported arch list
* Fri Oct 29 2010 Christian Krause <chkr at fedoraproject.org> - 0.8.3.1-3
- Rebuilt against Mono 2.8
- Add patch for compiling against Mono 2.8 
- Add patch to not set DGDK_DISABLE_DEPRECATED
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #716085 - FTBFS gnome-do-0.8.3.1-5.fc16
        https://bugzilla.redhat.com/show_bug.cgi?id=716085
  [ 2 ] Bug #599889 - FTBFS gnome-do-plugins-0.8.2-1.fc12
        https://bugzilla.redhat.com/show_bug.cgi?id=599889
  [ 3 ] Bug #715982 - FTBFS gnome-do-plugins-0.8.2-1.fc12
        https://bugzilla.redhat.com/show_bug.cgi?id=715982
  [ 4 ] Bug #548635 - power management actions use wrong D-Bus service
        https://bugzilla.redhat.com/show_bug.cgi?id=548635
  [ 5 ] Bug #709085 - gnome-do: can't dismiss "About" window
        https://bugzilla.redhat.com/show_bug.cgi?id=709085
--------------------------------------------------------------------------------

================================================================================
 gnome-do-plugins-0.8.4-2.fc14 (FEDORA-2011-9434)
 Plugins for GNOME Do
--------------------------------------------------------------------------------
Update Information:

This update brings in the latest stable versions of GNOME Do and plugins from the GNOME Do plugins project, mainly consisting of a ton of bug fixes. Docky has now been dropped from GNOME Do (as it has been split off into its own project, see http://wiki.go-docky.com/). The Evolution plugin, which has been dysfunctional for some time, has also been dropped. There are several new plugins available however, including one for performing calculations with Qalculate, and several for integration with Google services.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 15 2011 Theodore Lee <theo148 at gmail.com> - 0.8.4-2
- Obsolete Evolution plugin
* Tue Jun 28 2011 Theodore Lee <theo148 at gmail.com> - 0.8.4-1
- Update to 0.8.4 release
- Add Qalculate subpackage
- Remove Evolution plugin (dropped upstream)
- Fix subpackage descriptions and summaries
- Enable GData plugins
- Get rid of copied Banshee libraries completely
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8.2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Dec 21 2009 Juan Rodriguez <nushio at fedoraproject.org> 0.8.2.1-1
- Updates to 0.8.2.1
- Fixes gnome-do-plugins-thunderbird for Thunderbird 3.0
* Mon Oct 26 2009 Dennis Gilmore <dennis at ausil.us> - 0.8.2-3
- ExcludeArch ppc ppc64 sparc64
* Fri Aug 21 2009 Michel Salim <salimma at fedoraproject.org> - 0.8.2-2
- Enable building of GData-based plugins
- Simplify spec file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #716085 - FTBFS gnome-do-0.8.3.1-5.fc16
        https://bugzilla.redhat.com/show_bug.cgi?id=716085
  [ 2 ] Bug #599889 - FTBFS gnome-do-plugins-0.8.2-1.fc12
        https://bugzilla.redhat.com/show_bug.cgi?id=599889
  [ 3 ] Bug #715982 - FTBFS gnome-do-plugins-0.8.2-1.fc12
        https://bugzilla.redhat.com/show_bug.cgi?id=715982
  [ 4 ] Bug #548635 - power management actions use wrong D-Bus service
        https://bugzilla.redhat.com/show_bug.cgi?id=548635
  [ 5 ] Bug #709085 - gnome-do: can't dismiss "About" window
        https://bugzilla.redhat.com/show_bug.cgi?id=709085
--------------------------------------------------------------------------------

================================================================================
 ikiwiki-3.20110715-1.fc14 (FEDORA-2011-9582)
 A wiki compiler
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream version 3.20110715.

See http://ikiwiki.info/news/ for the full list of changes.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Thomas Moschny <thomas.moschny at gmx.de> - 3.20110715-1
- Update to 3.20110715.
* Wed Jul 20 2011 Petr Sabata <contyk at redhat.com> - 3.20110707-2
- Perl mass rebuild
* Sat Jul  9 2011 Thomas Moschny <thomas.moschny at gmx.de> - 3.20110707-1
- Update to 3.20110707.
* Sun Jun 19 2011 Thomas Moschny <thomas.moschny at gmx.de> - 3.20110608-1
- Update to 3.20110608.
--------------------------------------------------------------------------------

================================================================================
 libgadu-1.11.0-2.fc14 (FEDORA-2011-9658)
 A Gadu-gadu protocol compatible communications library
--------------------------------------------------------------------------------
Update Information:

* Import and export of Gadu-Gadu 10 compatible contact list.
* New gg_libgadu_check_feature() function for checking the availability of features dependent on external libraries.
* Various bug fixes and code clean-ups.
* Fix incorrect initialization of TLS.

--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 12 2011 Dominik Mierzejewski <rpm at greysector.net> 1.11.0-2
- fixed TLS usage via gnutls (rhbz #718619)
* Sat Jun  4 2011 Dominik Mierzejewski <rpm at greysector.net> 1.11.0-1
- updated to 1.11.0
- enabled gsm/speex to support voice connections
- enabled zlib to support GG10 contact list import/export
--------------------------------------------------------------------------------

================================================================================
 mathomatic-15.6.2-1.fc14 (FEDORA-2011-9614)
 Small, portable symbolic math program
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release mathomatic 15.6.2.

--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Terje Rosten <terje.rosten at ntnu.no> - 15.6.2-1
- 15.6.2
--------------------------------------------------------------------------------

================================================================================
 mozc-1.1.773.102-1.fc14 (FEDORA-2011-9609)
 Open-sourced Google Japanese Input
--------------------------------------------------------------------------------
Update Information:

This release contains some features and bug fixes.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Akira TAGOH <tagoh at redhat.com> - 1.1.773.102-1
- New upstream release.
--------------------------------------------------------------------------------

================================================================================
 nbc-1.2.1.r3-3.fc14 (FEDORA-2011-9636)
 Simple language and compiler to program the LEGO NXT brick
--------------------------------------------------------------------------------
Update Information:

New package: nbc - Simple language and compiler to program the LEGO NXT brick

Next Byte Codes (NBC) is a simple language with an assembly language syntax that can be used to program LEGO's NXT programmable brick (from the new LEGO Mindstorms NXT set).

Not Exactly C (NXC) is a high level language, similar to C, built on top of the NBC compiler. It can also be used to program the NXT brick. NXC is basically NQC (Not Quite C) for the NXT.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #677496 - Review Request: nbc - Next Byte Codes (NBC) and Not Exactly C (NXC)
        https://bugzilla.redhat.com/show_bug.cgi?id=677496
--------------------------------------------------------------------------------

================================================================================
 olpc-os-builder-3.0.0-1.fc14 (FEDORA-2011-9591)
 A development tool to build and customize OLPC OS images
--------------------------------------------------------------------------------
Update Information:

New release for OLPC OS 3.0.0
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Daniel Drake <dsd at laptop.org> - 3.0.0-1
- new release for OLPC OS 11.2.0
--------------------------------------------------------------------------------

================================================================================
 perl-Net-FTP-AutoReconnect-0.3-3.fc14 (FEDORA-2011-9590)
 FTP client class with automatic reconnect on failure
--------------------------------------------------------------------------------
Update Information:

This is a FTP client class with automatic reconnect on failure.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #720085 - Review Request: perl-Net-FTP-AutoReconnect - FTP client class with automatic reconnect on failure
        https://bugzilla.redhat.com/show_bug.cgi?id=720085
--------------------------------------------------------------------------------

================================================================================
 perl-Net-FTP-RetrHandle-0.2-3.fc14 (FEDORA-2011-9629)
 Provides a file reading interface for reading files on a remote FTP server
--------------------------------------------------------------------------------
Update Information:

Support for skipping the beginning of the file is implemented with the FTP REST
command, which starts a retrieval at any point in the file. Support for
skipping the end of the file is implemented with the FTP ABOR command, which
stops the transfer. With these two commands and some careful tracking of the
current file position, we're able to reliably emulate a seek/read pair, and get
only the parts of the file that are actually read.

This was originally designed for use with Archive::Zip; it's reliable enough
that the table of contents and individual files can be extracted from a remote
ZIP archive without downloading the whole thing.

An interface compatible with IO::Handle is provided, along with a tie-based
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #720086 - Review Request: perl-Net-FTP-RetrHandle - Provides a file reading interface for reading files on a remote FTP server
        https://bugzilla.redhat.com/show_bug.cgi?id=720086
--------------------------------------------------------------------------------

================================================================================
 php-pecl-oauth-1.2.1-1.fc14 (FEDORA-2011-9617)
 PHP OAuth consumer extension
--------------------------------------------------------------------------------
Update Information:

Update to 1.2.1, upstream release notes at http://pecl.php.net/package-changelog.php?package=oauth&release=1.2.1
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 F. Kooman <fkooman at tuxed.net> - 1.2.1-1
- update to 1.2.1 (RHBZ #724872). See
  http://pecl.php.net/package-changelog.php?package=oauth&release=1.2.1
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #724872 - version 1.2.1 segfaults
        https://bugzilla.redhat.com/show_bug.cgi?id=724872
--------------------------------------------------------------------------------

================================================================================
 phpldapadmin-1.2.1.1-1.fc14 (FEDORA-2011-9628)
 Web-based tool for managing LDAP servers
--------------------------------------------------------------------------------
Update Information:

update to latest version 1.2.1.1
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.2.1.1-1
- update to 1.2.1.1
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.2.0.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 policycoreutils-2.0.85-30.2.fc14 (FEDORA-2011-8401)
 SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:

Fixes for sandbox to cleanup processes, as well as back porting fixes from F15
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul  7 2011 Dan Walsh <dwalsh at redhat.com> 2.0.86-7.2
- Change seunshare to send kill signals to the childs session. 
- Also add signal handler to catch sigint, so if user enters ctrl-C sandbox will shutdown.
- Add -k qualifier to seunshare to have it attempt to kill all processes with 
the matching MCS label.
- Add -C option to sandbox and seunshare to maintain capabilities, otherwise 
the bounding set will be dropped.
- Change --cgroups short name -c rather then -C for consistancy
- Fix memory and fd leaks in seunshare
* Fri Jun 17 2011 Dan Walsh <dwalsh at redhat.com> 2.0.86-30.1
- Backport lots of fixes from F15 including:
- Do not drop capability bounding set in seunshare, this allows sandbox to 
- run setuid apps.
- Cleanup policy generation template
- Pass dpi settings to sandbox
- Add .config/* to restorecond_users.conf
- Clean up some of the templates for sepolgen
- Apply patches from Christoph A.
  * fix sandbox title 
  * stop xephyr from li
- Also ignore errors on sandbox include of directory missing files
- Change fixfiles restore to delete unlabeled sockets in /tmp
* Mon Apr 11 2011 Dan Walsh <dwalsh at redhat.com> 2.0.85-30
- Add Elia Pinto patches to allow user to specify directories to ignore
* Tue Apr  5 2011 Dan Walsh <dwalsh at redhat.com> 2.0.85-29
- Fix policycoreutils-sandbox description
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #714152 - sandbox leaves process running after closing the sandbox (/usr/bin/pulseaudio)
        https://bugzilla.redhat.com/show_bug.cgi?id=714152
--------------------------------------------------------------------------------

================================================================================
 python-gudev-147.1-6.fc14 (FEDORA-2011-9578)
 Python (PyGObject) bindings to the GUDev library
--------------------------------------------------------------------------------
Update Information:

Fix memory corruption when calling query_by_subsystem
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Stanislav Ochotnicky <sochotnicky at redhat.com> - 147.1-6
- Added upstream patch
- Resolves: rhbz#637084,rhbz#723795
- Related: rhbz#631789
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #723795 - python-gudev 147.1 - memory corruption calling query_by_subsystem.
        https://bugzilla.redhat.com/show_bug.cgi?id=723795
--------------------------------------------------------------------------------

================================================================================
 rubygem-rbvmomi-1.2.3-3.fc14 (FEDORA-2011-9645)
 Ruby interface to the VMware vSphere API
--------------------------------------------------------------------------------
Update Information:

Added missing vmodl.db file to package
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Michal Fojtik <mfojtik at redhat.com> - 1.2.3-3
- Added vmodl.db back, since it's required dependency
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #723543 - new deltacloud vsphere init fails w/ ERROR: No such file or directory - /usr/lib/ruby/gems/1.8/gems/rbvmomi-1.2.3/lib/rbvmomi/../../vmodl.db
        https://bugzilla.redhat.com/show_bug.cgi?id=723543
--------------------------------------------------------------------------------

================================================================================
 shorewall-4.4.21.1-3.fc14 (FEDORA-2011-9595)
 An iptables front end for firewall configuration
--------------------------------------------------------------------------------
Update Information:

Release notes: 

http://www1.shorewall.net/pub/shorewall/4.4/shorewall-4.4.21/releasenotes.txt
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Jonathan G. Underwood <jonathan.underwood at gmail.com> - 4.4.21-3
- Properly use PERLLIB environment variable for installation of the perl libraries
* Thu Jul 21 2011 Jonathan G. Underwood <jonathan.underwood at gmail.com> - 4.4.21-2
- Fix Source URL versioning in spec file
* Thu Jul 21 2011 Jonathan G. Underwood <jonathan.underwood at gmail.com> - 4.4.21-1
- Update to 4.4.21.1
- Fix BZ 720713 (incorrect init file LSB headers)
* Wed May 25 2011 Orion Poplawski <orion at cora.nwra.com> - 4.4.19.4-1
- Update to 4.4.19.4
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #720713 - Copy-and-paste error in /etc/rc.d/init.d/shorewall6
        https://bugzilla.redhat.com/show_bug.cgi?id=720713
  [ 2 ] Bug #654787 - shorewall-4.4.21 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=654787
--------------------------------------------------------------------------------

================================================================================
 sugar-speak-29-1.fc14 (FEDORA-2011-9593)
 Speak for Sugar
--------------------------------------------------------------------------------
Update Information:

v29
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 20 2011 Peter Robinson <pbrobinson at gmail.com> - 29-1
- New 29 release
--------------------------------------------------------------------------------

================================================================================
 supybot-gribble-0.83.4.1-8.fc14 (FEDORA-2011-9620)
 Cross-platform support bot based on supybot
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
Here is where you
give an explanation of
your update.
Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #693664 - Review Request: supybot-gribble - Cross-platform support bot based on supybot
        https://bugzilla.redhat.com/show_bug.cgi?id=693664
--------------------------------------------------------------------------------

================================================================================
 surfraw-2.2.8-1.fc14 (FEDORA-2011-9646)
 Shell Users Revolutionary Front Rage Against the Web
--------------------------------------------------------------------------------
Update Information:

Update to the latest stable version, 2.2.8.

Changes include:

 * New elvi: ads, archwiki, bugzilla, cablesearch, deli, duckduckgo, openports, pasearch, scirus, scitopia, worldwidescience, stack, yandex.
 * Changed elvi: archpkg, arxiv, ctan, codesearch, musicbrainz, rpmsearch, debbugs, google, openbsd, opensearch, pgpkeys, translate, wayback, wikipedia.
 * Fixed elvi: archpkg, arxiv, cia, codesearch, ctan, javasun, lastfm, musicbrainz, netbsd, rpmsearch, w3link, yahoo.
 * Removed elvi: altavista, cddb, fast, filesearching, port.
 * Support -local-help, --local-help or -lh to get elvi-specific help without displaying the global options. This works for all elvi and the main surfraw script.
 * Support -h as a synonym for -help.
 * Improved listing of elvi.
 * Default to surfraw_graphical_remote=no, as chromium doesn't support "-remote openURL".
 * Bookmark names are now an exact match not a substring match.

See http://surfraw.alioth.debian.org/ for the detailed changelog.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 21 2011 Thomas Moschny <thomas.moschny at gmx.de> - 2.2.8-1
- Update to 2.2.8.
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.2.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 system-config-firewall-1.2.27-2.fc14 (FEDORA-2011-9663)
 A graphical interface for basic firewall setup
--------------------------------------------------------------------------------
Update Information:

- fixed possible privilege escalation flaw via use of python pickle
  (CVE-2011-2520), replaced pickle by json (rhbz#717985) and (rhbz#722991)
- stop D-BUS firewall mechanism on update, because D-BUS interface will not
  be compatible to old pickle version
- system-config-printer needs to get updated, too
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Thomas Woerner <twoerner at redhat.com> 1.2.27-2
- fixed possible privilege escalation flaw via use of python pickle
  (CVE-2011-2520), replaced pickle by json (rhbz#717985) and (rhbz#722991)
- stop D-BUS firewall mechanism on update
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #717985 - CVE-2011-2520 system-config-firewall: privilege escalation flaw via use of python pickle
        https://bugzilla.redhat.com/show_bug.cgi?id=717985
--------------------------------------------------------------------------------

================================================================================
 system-config-lvm-1.1.16-1.fc14 (FEDORA-2011-9643)
 A utility for graphically configuring Logical Volumes
--------------------------------------------------------------------------------
Update Information:

New upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 22 2011 Marek Grac <mgrac at redhat.com> - 1.1.16-1
- new upstream release
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #649126 - Request to update catalan translations
        https://bugzilla.redhat.com/show_bug.cgi?id=649126
  [ 2 ] Bug #658344 - system-config-lvm leaves mount for logical group in fstab after group was completely removed.
        https://bugzilla.redhat.com/show_bug.cgi?id=658344
--------------------------------------------------------------------------------

================================================================================
 tnef-1.4.8-4.fc14 (FEDORA-2011-9619)
 Extract files from email attachments like WINMAIL.DAT
--------------------------------------------------------------------------------
Update Information:

Initial packaging of TNEF in Fedora.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #522920 - Review Request: tnef - Extract files from email attachments like winmail.dat
        https://bugzilla.redhat.com/show_bug.cgi?id=522920
--------------------------------------------------------------------------------

================================================================================
 volumeicon-0.4.1-2.fc14 (FEDORA-2011-9627)
 Lightweight volume control for the system tray
--------------------------------------------------------------------------------
Update Information:

Volume Icon aims to be a lightweight volume control that sits in your system tray.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #722914 - Review Request: volumeicon - Lightweight volume control for the system tray
        https://bugzilla.redhat.com/show_bug.cgi?id=722914
--------------------------------------------------------------------------------

================================================================================
 wireshark-1.4.8-1.fc14 (FEDORA-2011-9640)
 Network traffic analyzer
--------------------------------------------------------------------------------
Update Information:

Wireshark 1.4.8 fixes the following vulnerabilities:

The Lucent/Ascend file parser was susceptible to an infinite loop. CVE-2011-2597.
The ANSI MAP dissector was susceptible to an infinite loop. CVE-2011-2698.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #719753 - CVE-2011-2597 wireshark: infinite loop DoS in lucent/ascend file parser
        https://bugzilla.redhat.com/show_bug.cgi?id=719753
  [ 2 ] Bug #723215 - CVE-2011-2698 wireshark: Infinite loop in the ANSI A Interface (IS-634/IOS) dissector
        https://bugzilla.redhat.com/show_bug.cgi?id=723215
--------------------------------------------------------------------------------

================================================================================
 zanata-python-client-1.2.6-1.fc14 (FEDORA-2011-9581)
 Python Client for Zanata Server
--------------------------------------------------------------------------------
Update Information:

Fix bugs and improve the usability 
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 20 2011 James Ni <jni at redhat.com> - 1.2.6-1
- Change to version 1.2.6
* Thu Jun  2 2011 James Ni <jni at redhat.com> - 1.2.5-3
- Fix error of onditionals of RHEL5
* Thu Jun  2 2011 James Ni <jni at redhat.com> - 1.2.5-2
- Add python-simplejson requires for RHEL5
* Wed Jun  1 2011 James Ni <jni at redhat.com> - 1.2.5-1
- Bug fix and usability improvement
--------------------------------------------------------------------------------