Fedora 16 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Wed Apr 11 17:08:56 UTC 2012
The following Fedora 16 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-5624/phpMyAdmin-3.5.0-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-4946/freetype-2.4.6-5.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5058/expat-2.1.0-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5155/perl-Pod-Plainer-1.03-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5411/quagga-0.99.20.1-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5243/wireshark-1.6.6-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5434/tremulous-1.2.0-0.5.beta1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5410/libtiff-3.9.5-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5421/rpm-4.9.1.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2011-14691/tomcat6-6.0.32-19.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5518/libpng-1.2.49-1.fc16
The following Fedora 16 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-5669/v4l-utils-0.8.7-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5518/libpng-1.2.49-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5410/libtiff-3.9.5-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5396/gdb-7.3.50.20110722-14.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5421/rpm-4.9.1.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5400/NetworkManager-0.9.4-2.git20120403.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5274/gnome-settings-daemon-3.2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5236/virtuoso-opensource-6.1.5-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5227/akonadi-1.7.2-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5148/flac-1.2.1-8.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5030/mysql-5.5.22-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-4946/freetype-2.4.6-5.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-4975/openbox-3.5.0-5.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5058/expat-2.1.0-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-4990/colord-0.1.18-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5087/polkit-0.103-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5062/phonon-4.6.0-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5086/nss-3.13.4-2.fc16,nss-softokn-3.13.4-1.fc16,nspr-4.9-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5032/mdadm-3.2.3-7.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5005/cups-1.5.2-8.1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5056/accountsservice-0.6.15-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5022/xorg-x11-server-1.11.4-3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-4981/openldap-2.4.26-7.fc16
The following builds have been pushed to Fedora 16 updates-testing
389-ds-base-1.2.10.5-1.fc16
389-ds-base-1.2.10.6-1.fc16
cabal2spec-0.25.5-1.fc16
dovecot-2.0.20-1.fc16
duplicity-0.6.18-1.fc16
editarea-0.8.2-5.fc16
freeipa-2.1.4-7.fc16
geome-1.1-3.fc16
ghc-data-reify-0.6-1.fc16
ghc-dotgen-0.4.1-1.fc16
ghc-resourcet-0.3.2-1.fc16
gthumb-2.14.3-1.fc16
insight-7.4.50-1.20120403cvs.fc16
liquidwar-5.6.4-9.1.fc16
md5deep-4.1-1.fc16
mod_auth_shadow-2.3-1.fc16
newlisp-10.4.0-1.fc16
nspr-4.9-2.fc16
nss-3.13.4-2.fc16
nss-softokn-3.13.4-1.fc16
openscada-0.8.0-1.fc16
perl-Hash-Merge-0.12-7.fc16
perl-WWW-Shorten-3.03-1.fc16
perl-XML-DTDParser-2.01-4.fc16
phoronix-test-suite-3.8.0-1.fc16
phpMyAdmin-3.5.0-1.fc16
pidgin-sipe-1.13.1-1.fc16
pitivi-0.15.1-1.fc16
plowshare-0.9.4-0.29.20120409git.fc16
python-kinterbasdb-3.3.0-5.fc16
python-shapely-1.2.14-1.fc16
qt-at-spi-0.2-2.fc16
rpkg-1.17-1.fc16
smb4k-1.0.1-5.fc16
sssd-1.8.2-10.fc16
tomcat-7.0.27-2.fc16
twirssi-2.5.1-3.fc16
v4l-utils-0.8.7-1.fc16
worker-2.19.2-1.fc16
Details about builds:
================================================================================
389-ds-base-1.2.10.5-1.fc16 (FEDORA-2012-5642)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
crash bug with multiple transactions and range searches
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10.5-1
- Bug 808770 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV)
- same as Ticket #336
--------------------------------------------------------------------------------
================================================================================
389-ds-base-1.2.10.6-1.fc16 (FEDORA-2012-5656)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
typo in previous patch
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10.6-1
- Bug 808770 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV)
- typo in previous patch
* Tue Apr 10 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10.5-1
- Bug 808770 - [abrt] 389-ds-base-1.2.10.4-2.fc16: index_range_read_ext: Process /usr/sbin/ns-slapd was killed by signal 11 (SIGSEGV)
- same as Ticket #336
--------------------------------------------------------------------------------
================================================================================
cabal2spec-0.25.5-1.fc16 (FEDORA-2012-5667)
Tool for creating .spec files for Haskell Cabal Packages
--------------------------------------------------------------------------------
Update Information:
- add LICENSE arg to ghc_files by default
- new MAJOR_VERSION for templates version
- use UTC timezone when setting .spec changelog date
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 18 2012 Jens Petersen <petersen at redhat.com> - 0.25.5-1
- add LICENSE arg to ghc_files by default
- add MAJOR_VERSION for templates version
- use UTC timezone for setting .spec changelog date
--------------------------------------------------------------------------------
================================================================================
dovecot-2.0.20-1.fc16 (FEDORA-2012-5629)
Secure imap and pop3 server
--------------------------------------------------------------------------------
Update Information:
- dovecot updated to 2.0.20
- doveadm import didn't import messages' flags
- Make sure IMAP clients can't create directories when accessing nonexistent users' mailboxes via shared namespace.
- Dovecot auth clients authenticating via TCP socket could have failed with bogus "PID already in use" errors.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Michal Hlavinka <mhlavink at redhat.com> - 1:2.0.20-1
- dovecot updated to 2.0.20
- doveadm import didn't import messages' flags
- Make sure IMAP clients can't create directories when accessing
nonexistent users' mailboxes via shared namespace.
- Dovecot auth clients authenticating via TCP socket could have failed
with bogus "PID already in use" errors.
--------------------------------------------------------------------------------
================================================================================
duplicity-0.6.18-1.fc16 (FEDORA-2012-5644)
Encrypted bandwidth-efficient backup using rsync algorithm
--------------------------------------------------------------------------------
Update Information:
New in v0.6.18 (2012/02/29)
===========================
Enhancements:
- fix extraneous '.py' in botobackend.py include
- tests: add delay between backups to avoid assertion error
- tests: use backup source that is more likely to be larger than 1M compressed
- tests: make other-filesystem check more robust against certain directories being mounts or not
- resuming an incremental results in a 'Restarting backup, but current encryption settings do not match original settings' error because curtime is incorrectly set away from previous incremental value
- added option to not compress the backup, when no encryption is selected
- always delay a little bit when a backend gives us errors
- Don't cache TarInfo files. Tests still pass, so I don't believe we need the members cache (and in the old tarfile.py, we didn't cache either).
- Adding --file-prefix option so different sets of backups can be stored in the same bucket. See blueprint at https://blueprints.launchpad.net/duplicity/+spec/file-prefix-option
- two changes that help the test suite pass
- raise log level on backend import failure so it will be visible under default conditions
- file /etc/motd may not exist in test environment. Use __file__ instead to point to a known plaintext source file.
- some code/import changes to make the ssh and boto backends compatible with Python 2.4.
- some changes to make roottest.py compatible with the new dir structure.
Bugs closed in this release:
- Python 2.5 / boto error
- possible memory leak
- SSH-Backend: Creating dirs separately causes a permissons-problems
- multipart upload fails on python 2.7.2
- UnsupportedBackendScheme: scheme not supported in url: scp://u123@u123.example.com/foo/
- ftpsbackend should respect num_retries for ftp commands
- duplicity crashes when PYTHONOPTIMIZE is set
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 8 2012 Robert Scheck <robert at fedoraproject.org> 0.6.18-1
- Upgrade to 0.6.18 (#798951)
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.6.17-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #784768 - duplicity uses way too much memory
https://bugzilla.redhat.com/show_bug.cgi?id=784768
[ 2 ] Bug #798951 - duplicity-0.6.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=798951
--------------------------------------------------------------------------------
================================================================================
editarea-0.8.2-5.fc16 (FEDORA-2012-5641)
A replacement for the HTML textarea tag
--------------------------------------------------------------------------------
Update Information:
Add support for IE9
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Colin Coe <colin.coe at gmail.com> - 0.8.2-5
- Include IE9 fix as supplied by Stephen Herr
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #811164 - editarea does not work properly with IE9
https://bugzilla.redhat.com/show_bug.cgi?id=811164
--------------------------------------------------------------------------------
================================================================================
freeipa-2.1.4-7.fc16 (FEDORA-2012-5661)
The Identity, Policy and Audit system
--------------------------------------------------------------------------------
Update Information:
Don't escape shell characters because pkisilent now does it in 9.0.18
Set minimum n-v-r on pki-* to 9.0.18
Add tool to fix replication agreements that lacked memberof in EXCLUDES.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 20 2012 Rob Crittenden <rcritten at redhat.com> - 2.1.4-7
- Set minimum n-v-r on pki-* to 9.0.18
* Mon Mar 19 2012 Rob Crittenden <rcritten at redhat.com> - 2.1.4-6
- Add patch to drop shell escaping before calling pkisilent
- Patch which adds tool to fix replication agreements missing memberof in
EXCLUDE list
--------------------------------------------------------------------------------
================================================================================
geome-1.1-3.fc16 (FEDORA-2012-5658)
Obtain your geolocation data from Google using NetworkManager
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810417 - Review Request: geome - Obtain your geolocation data from Google using NetworkManager
https://bugzilla.redhat.com/show_bug.cgi?id=810417
--------------------------------------------------------------------------------
================================================================================
ghc-data-reify-0.6-1.fc16 (FEDORA-2012-5677)
data-reify turns recursive data structures into graphs
--------------------------------------------------------------------------------
Update Information:
First release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #787977 - Review Request: ghc-data-reify - converts recursive data structures into graphs
https://bugzilla.redhat.com/show_bug.cgi?id=787977
--------------------------------------------------------------------------------
================================================================================
ghc-dotgen-0.4.1-1.fc16 (FEDORA-2012-5633)
Simple interface to build .dot graph files
--------------------------------------------------------------------------------
Update Information:
First release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #787972 - Review Request: ghc-dotgen - Simple interface to build .dot graph files
https://bugzilla.redhat.com/show_bug.cgi?id=787972
--------------------------------------------------------------------------------
================================================================================
ghc-resourcet-0.3.2-1.fc16 (FEDORA-2012-5662)
Deterministic allocation and freeing of scarce resources
--------------------------------------------------------------------------------
Update Information:
Library for deterministic allocation and freeing of scarce resources, used by conduit.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806536 - Review Request: ghc-resourcet - Deterministic allocation and freeing of scarce resources
https://bugzilla.redhat.com/show_bug.cgi?id=806536
--------------------------------------------------------------------------------
================================================================================
gthumb-2.14.3-1.fc16 (FEDORA-2012-5655)
Image viewer, editor, organizer
--------------------------------------------------------------------------------
Update Information:
Update to new upstream release 2.14.3.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 27 2012 Christian Krause <chkr at fedoraproject.org> - 2.14.3-1
- Update to 2.14.3
--------------------------------------------------------------------------------
================================================================================
insight-7.4.50-1.20120403cvs.fc16 (FEDORA-2012-5626)
Graphical debugger based on GDB
--------------------------------------------------------------------------------
Update Information:
* Tue Apr 3 2012 Patrick Monnerat <pm at datasphere.ch> 7.4.50-1.20120403cvs
- New cvs snapshot.
- Patches imported or adapted from gdb package.
- Patch "sig2dead" to avoid a segfault while notifying a signal to a dead
process.
http://sourceware.org/ml/insight/2012-q2/msg00002.html
- Patch "sizesizet" to fix a type mismatch between print format descriptors and
corresponding argument.
http://sourceware.org/ml/insight/2012-q2/msg00003.html
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 3 2012 Patrick Monnerat <pm at datasphere.ch> 7.4.50-1.20120403cvs
- New cvs snapshot.
- Patches imported or adapted from gdb package.
- Patch "sig2dead" to avoid a segfault while notifying a signal to a dead
process.
http://sourceware.org/ml/insight/2012-q2/msg00002.html
- Patch "sizesizet" to fix a type mismatch between print format descriptors and
corresponding argument.
http://sourceware.org/ml/insight/2012-q2/msg00003.html
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #694890 - fails to work properly on x86_64 perhaps due to old gdb source bundled/hidden in the build
https://bugzilla.redhat.com/show_bug.cgi?id=694890
[ 2 ] Bug #768813 - [abrt] insight-6.8.1-4.fc15: gdb_get_breakpoint_info: Process /usr/bin/insight was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=768813
--------------------------------------------------------------------------------
================================================================================
liquidwar-5.6.4-9.1.fc16 (FEDORA-2012-5628)
Multiplayer wargame with liquid armies
--------------------------------------------------------------------------------
Update Information:
Fix for server crash and sysvinit/systemd startup issues.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Jon Ciesla <limburgher at gmail.com - 5.6.4-9.1
- Patch for server buffer overflow, BZ 810607.
- Fix initscript.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810607 - [abrt] liquidwar-server-5.6.4-9.fc16: strncpy: Process /usr/bin/liquidwar-server was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=810607
--------------------------------------------------------------------------------
================================================================================
md5deep-4.1-1.fc16 (FEDORA-2012-5630)
A set of cross-platform tools to compute hashes
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Paul P. Komkoff Jr <i at stingr.net> - 4.1-1
- new upstream version
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.9.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810725 - md5deep upstream already on version 4.1
https://bugzilla.redhat.com/show_bug.cgi?id=810725
--------------------------------------------------------------------------------
================================================================================
mod_auth_shadow-2.3-1.fc16 (FEDORA-2012-5654)
An Apache module for authentication using /etc/shadow
--------------------------------------------------------------------------------
Update Information:
updated to latest version, fixed dependency on httpd
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Jan Klepek <jan.klepek at gmail.com> - 2.3-1
- updated to latest version
* Sat Mar 17 2012 Jan Klepek <jan.klepek at gmail.com> - 2.2-11
- updated requires
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.2-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #803066 - Missing Requires: httpd-mmn
https://bugzilla.redhat.com/show_bug.cgi?id=803066
--------------------------------------------------------------------------------
================================================================================
newlisp-10.4.0-1.fc16 (FEDORA-2012-5646)
Lisp-like general purpose scripting
--------------------------------------------------------------------------------
Update Information:
Version Update.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 7 2012 Nathan Owe <ndowens at fedoraproject.org> 10.4.0-1
- Updated version
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 10.3.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #790777 - newlisp-10.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=790777
--------------------------------------------------------------------------------
================================================================================
nspr-4.9-2.fc16 (FEDORA-2012-5086)
Netscape Portable Runtime
--------------------------------------------------------------------------------
Update Information:
Update to 3.13.4
The list of bugs fixed on this release can be obtained with the following query:
https://bugzilla.mozilla.org/buglist.cgi?resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.13.4;product=NSS;list_id=2781258
Added partial RELRO support as a security enhancement
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 28 2012 Elio Maldonado <emaldona at redhat.com> - 4.9-2
- Resolves: Bug 805672 - Library needs partial RELRO support added
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #805672 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805672
[ 2 ] Bug #805716 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805716
[ 3 ] Bug #805719 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805719
[ 4 ] Bug #805723 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805723
[ 5 ] Bug #806043 - nss needs to be able to use pem files interchangeably in a single process
https://bugzilla.redhat.com/show_bug.cgi?id=806043
[ 6 ] Bug #806051 - [PEM] various flaws detected by Coverity
https://bugzilla.redhat.com/show_bug.cgi?id=806051
[ 7 ] Bug #806058 - [PEM] pem_CreateObject() leaks memory given a non-existing file name
https://bugzilla.redhat.com/show_bug.cgi?id=806058
[ 8 ] Bug #808824 - nss 3.13.3 causes chrome to no longer trust certain comodo CAs
https://bugzilla.redhat.com/show_bug.cgi?id=808824
--------------------------------------------------------------------------------
================================================================================
nss-3.13.4-2.fc16 (FEDORA-2012-5086)
Network Security Services
--------------------------------------------------------------------------------
Update Information:
Update to 3.13.4
The list of bugs fixed on this release can be obtained with the following query:
https://bugzilla.mozilla.org/buglist.cgi?resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.13.4;product=NSS;list_id=2781258
Added partial RELRO support as a security enhancement
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 8 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.4-2
- Resolves: Bug 805723 - Library needs partial RELRO support added
- Patch coreconf/Linux.mk as done on RHEL 6.2
* Sat Apr 7 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.4-1
- Update to NSS_3_13_4_RTM
- Update the nss-pem source archive to the latest version
- Remove no longer needed patches
- Resolves: Bug 806043 - use pem files interchangeably in a single process
- Resolves: Bug 806051 - PEM various flaws detected by Coverity
- Resolves: Bug 806058 - PEM pem_CreateObject leaks memory given a non-existing file name
* Wed Mar 28 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.3-2
- Resolves: Bug 805723 - Library needs partial RELRO support added
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #805672 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805672
[ 2 ] Bug #805716 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805716
[ 3 ] Bug #805719 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805719
[ 4 ] Bug #805723 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805723
[ 5 ] Bug #806043 - nss needs to be able to use pem files interchangeably in a single process
https://bugzilla.redhat.com/show_bug.cgi?id=806043
[ 6 ] Bug #806051 - [PEM] various flaws detected by Coverity
https://bugzilla.redhat.com/show_bug.cgi?id=806051
[ 7 ] Bug #806058 - [PEM] pem_CreateObject() leaks memory given a non-existing file name
https://bugzilla.redhat.com/show_bug.cgi?id=806058
[ 8 ] Bug #808824 - nss 3.13.3 causes chrome to no longer trust certain comodo CAs
https://bugzilla.redhat.com/show_bug.cgi?id=808824
--------------------------------------------------------------------------------
================================================================================
nss-softokn-3.13.4-1.fc16 (FEDORA-2012-5086)
Network Security Services Softoken Module
--------------------------------------------------------------------------------
Update Information:
Update to 3.13.4
The list of bugs fixed on this release can be obtained with the following query:
https://bugzilla.mozilla.org/buglist.cgi?resolution=FIXED;classification=Components;query_format=advanced;target_milestone=3.13.4;product=NSS;list_id=2781258
Added partial RELRO support as a security enhancement
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 7 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.4-1
- Update to NSS_3_13_4
* Wed Mar 28 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.3-2.1
- Resolves: Bug 805719 - Library needs partial RELRO support added
* Wed Mar 21 2012 Elio Maldonado <emaldona at redhat.com> - 3.13.3-2
- Resolves: Bug 804453 - libfreebl3.[chk|so] in /usr/lib{64} mis-linked to ../../lib{64}
- No relative paths when creating symbolic links for libfreebl3.{so|chk}
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #805672 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805672
[ 2 ] Bug #805716 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805716
[ 3 ] Bug #805719 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805719
[ 4 ] Bug #805723 - Library needs partial RELRO support added
https://bugzilla.redhat.com/show_bug.cgi?id=805723
[ 5 ] Bug #806043 - nss needs to be able to use pem files interchangeably in a single process
https://bugzilla.redhat.com/show_bug.cgi?id=806043
[ 6 ] Bug #806051 - [PEM] various flaws detected by Coverity
https://bugzilla.redhat.com/show_bug.cgi?id=806051
[ 7 ] Bug #806058 - [PEM] pem_CreateObject() leaks memory given a non-existing file name
https://bugzilla.redhat.com/show_bug.cgi?id=806058
[ 8 ] Bug #808824 - nss 3.13.3 causes chrome to no longer trust certain comodo CAs
https://bugzilla.redhat.com/show_bug.cgi?id=808824
--------------------------------------------------------------------------------
================================================================================
openscada-0.8.0-1.fc16 (FEDORA-2012-5670)
Open SCADA system project
--------------------------------------------------------------------------------
Update Information:
Build 0.8.8
Rebuild for CentOs 6.x
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Aleksey Popkov <aleksey at oscada.org>
- Build 0.8.0 release.
--------------------------------------------------------------------------------
================================================================================
perl-Hash-Merge-0.12-7.fc16 (FEDORA-2012-5651)
Merges arbitrary deep hashes into a single hash
--------------------------------------------------------------------------------
Update Information:
This update adds a missing dependency on perl(Clone).
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Iain Arnell <iarnell at gmail.com> 0.12-7
- explicitly require perl(Clone)
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.12-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
perl-WWW-Shorten-3.03-1.fc16 (FEDORA-2012-5657)
Interface to URL shortening sites
--------------------------------------------------------------------------------
Update Information:
Interface to URL shortening sites
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810028 - Review Request: perl-WWW-Shorten - Interface to URL shortening sites
https://bugzilla.redhat.com/show_bug.cgi?id=810028
--------------------------------------------------------------------------------
================================================================================
perl-XML-DTDParser-2.01-4.fc16 (FEDORA-2012-5639)
Quick and dirty DTD parser
--------------------------------------------------------------------------------
Update Information:
change spec to list XML directory
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Bill Pemberton <wfp5p at virginia.edu> - 2.01-4
- change files section to list just XML directory
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #791363 - Review Request: perl-XML-DTDParser - Quick and dirty DTD parser
https://bugzilla.redhat.com/show_bug.cgi?id=791363
--------------------------------------------------------------------------------
================================================================================
phoronix-test-suite-3.8.0-1.fc16 (FEDORA-2012-5666)
An Automated, Open-Source Testing Framework
--------------------------------------------------------------------------------
Update Information:
- new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Markus Mayer <lotharlutz at gmx.de> 3.8.0-1
- new upstream release
- drop fix_install.patch (merged upstream)
- remove devel packages
* Thu Jan 5 2012 Markus Mayer <lotharlutz at gmx.de> 3.6.1-3
- really remove missing requires for rhel
* Thu Jan 5 2012 Markus Mayer <lotharlutz at gmx.de> 3.6.1-2
- remove missing requires for rhel
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-3.5.0-1.fc16 (FEDORA-2012-5624)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
Changes for 3.5.0.0 (2012-04-07):
- [interface] Add support for mass prefix change.
- [display] "up to date" message on main page when current version is up to date
- [feature] Update to jQuery 1.6.2
- [search] Show/hide db search results
- [patch] Add gettext wrappers around a message
- [cleanup] Remove deprecated function PMA_DBI_get_fields
- [feature] Remember recent tables
- [feature] Remember the last sort order for each table
- [ajax] for Create table in navigation panel
- [feature] Wording about Column
- [ajax] AJAX for Add a user in Database privileges
- [feature] new DisableMultiTableMaintenance directive
- [interface] Reorganised server status page.
- [interface] Changed way of generating charts.
- [interface] Flexible column width
- [interface] Mouse-based column reordering in query results
- [ajax] AJAX for Insert to a table from database Structure page
- [patch] PMA_ajaxShowMessage() does not respect timeout
- [ajax] AJAX for Change on multiple rows in table Browse
- [interface] Improved support for stored routines
- [display] More options for browsing GIS data
- [interface] Support for spatial indexes
- [display] GIS data visualization
- [ajax] AJAX for table structure multiple-column change
- [ajax] AJAX for table structure index edit
- [feature] Show/hide indexes in table Structure
- [display] More compact navigation bar
- [display] Display direction (horizontal/vertical) no longer displayed by default
- [feature] Shift/click support in database Structure
- [display] Show/hide column in table Browse
- [ajax] AJAX dialogs use wrong font-size
- [interface] Timepicker does not work in AJAX dialogs
- [ajax] AJAX for table Structure Indexes Edit
- [ajax] AJAX for table Structure column Change
- [interface] Improved support for events
- [interface] Improved support for triggers
- [interface] Improved server monitoring
- [ajax] AJAX for table Structure column Add
- [ajax] AJAX for table Operations copy table
- [export] no uid Query result export (Suhosin limit)
- [feature] Grid editing in browse mode (replaces row inline edit)
- [feature] Zoom-search in table Search
- [interface] Editor for GIS data
- [import] Import GIS data from ESRI Shapefiles
- [interface] 'Function based search' for GIS data
- [database] Support Drizzle database
- [interface] Interface problems for queries having LIMIT clauses
- [interface] Remove DefaultPropDisplay feature
- [prettyprint] Order By in a query containing comment character
- [interface] Improved ENUM/SET editor
- [pmadb] pmadb on a different MySQL server
- [interface] Improving field size for character columns
- [usability] Removed an unnecessary AJAX request from database search
- [navi] Tabs break when squeezing page
- [navi] Stick table tools to top of page on scroll
- [interface] Improved error handling
- [interface] Add useful intermediate pages to pageselector
- [interface] Improved index editor
- [display] View editing via a generated ALTER VIEW
- [interface] Deleting table from the DB does not change the table counter
- [designer] Toggle for relation lines
- [ajax] database list not updated after adding/deleting a user + database
- [edit] Sort by key generates wrong sql with limit clause
- [structure] Error dropping index of non-existing column
- [display] Page through rows returned from a view
- [interface] Checkbox to have SQL input remain
- [export] Fixed CSV escape for the export
- [import] Fixed CSV escape for the import
- [interface] No warning on syntax error in search form
- [core] Improved detection of SSL connection
- [feature] FULLTEXT support for InnoDB, starting with MySQL 5.6.4
- [interface] Duplicate inline query edit box
- [mime] Description of the transformation missing in the tooltip
Changes for 3.4.11.0 (not yet released):
- [import] Exception on XML import
- [navi] $cfg['ShowTooltipAliasTB'] and blank names in navigation
Changes for 3.4.10.2 (2012-03-28):
- [security] Fixed local path disclosure vulnerability, see PMASA-2012-2
Changes for 3.4.10.1 (2012-02-18):
- [security] XSS in replication setup, see PMASA-2012-1
Changes for 3.4.10.0 (2012-02-14):
- [interface] TextareaAutoSelect feature broken
- [export] PHP Array export might generate invalid php code
- [import] Import from ODS ignores cell that is the same as cell before
- [display] SELECT DISTINCT displays wrong total records found
- [operations] copy table data missing SET SQL_MODE='NO_AUTO_VALUE_ON_ZERO'
- [edit] Setting data to NULL and drop-downs
- [edit] Missing set fields and values in generated INSERT query
- [libraries] license issue with TCPDF (updated to 5.9.145)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 8 2012 Robert Scheck <robert at fedoraproject.org> 3.5.0-1
- Upgrade to 3.5.0 (#790782, #795020, #809146)
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.4.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #795020 - CVE-2012-1190 phpMyAdmin: XSS in replication setup (PMASA-2012-1)
https://bugzilla.redhat.com/show_bug.cgi?id=795020
[ 2 ] Bug #809146 - CVE-2012-1902 phpMyAdmin: path disclosure flaw (PMASA-2012-2)
https://bugzilla.redhat.com/show_bug.cgi?id=809146
--------------------------------------------------------------------------------
================================================================================
pidgin-sipe-1.13.1-1.fc16 (FEDORA-2012-5676)
Pidgin protocol plugin to connect to MS Office Communicator
--------------------------------------------------------------------------------
Update Information:
New upstream release: minor bugfixes
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Stefan Becker <chemobejk at gmail.com> - 1.13.1-1
- update to 1.13.1: bug fix release
--------------------------------------------------------------------------------
================================================================================
pitivi-0.15.1-1.fc16 (FEDORA-2012-5643)
Non-linear video editor
--------------------------------------------------------------------------------
Update Information:
Fixes compatibility with
gstreamer-plugins-good > 0.10.29, other fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Jon Ciesla <limburgher at gmail.com> - 0.15.1-1
- New upstream, BZ 810765, multiple bugfixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #810765 - Update package to version 0.15.1
https://bugzilla.redhat.com/show_bug.cgi?id=810765
--------------------------------------------------------------------------------
================================================================================
plowshare-0.9.4-0.29.20120409git.fc16 (FEDORA-2012-5673)
Download and upload files from file-sharing websites
--------------------------------------------------------------------------------
Update Information:
New upstream snapshot.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Elder Marco <eldermarco at fedoraproject.org> - 0.9.4-0.29.20120409git
- New upstream snapshot
--------------------------------------------------------------------------------
================================================================================
python-kinterbasdb-3.3.0-5.fc16 (FEDORA-2012-5679)
A Python DB-API 2.0 compliant interface to Firebird
--------------------------------------------------------------------------------
Update Information:
bump release to fix Broken upgrade path
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 27 2012 Philippe Makowski <makowski at ibphoenix.fr> - 3.3.0-5
- bump release to fix Broken upgrade path
--------------------------------------------------------------------------------
================================================================================
python-shapely-1.2.14-1.fc16 (FEDORA-2012-5660)
Geometric objects, predicates, and operations
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 8 2012 Volker Fröhlich <volker27 at gmx.at> - 1.2.14-1
- Update for release 1.2.14
- Remove duplicate PKG-INFO file
- Correct description -- pointing to README.rst now
- Add patch that corrects the attribute chaining test
- Tests now work fine, therefore respect their outcome
- Remove ready-made _speedups.c
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.2.13-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qt-at-spi-0.2-2.fc16 (FEDORA-2012-5675)
Qt plugin that bridges Qt's accessibility API to AT-SPI2
--------------------------------------------------------------------------------
Update Information:
Qt plugin that bridges Qt's accessibility API to AT-SPI2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #809530 - Review Request: qt-at-spi - Qt plugin that bridges Qt's accessibility API to AT-SPI2
https://bugzilla.redhat.com/show_bug.cgi?id=809530
--------------------------------------------------------------------------------
================================================================================
rpkg-1.17-1.fc16 (FEDORA-2012-5664)
Utility for interacting with rpm+git packaging systems
--------------------------------------------------------------------------------
Update Information:
Fix chain-building and reading of custom configs
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Jesse Keating <jkeating at redhat.com> - 1.17-1
- Don't assume master branch for chain builds (jkeating)
* Mon Mar 26 2012 Jesse Keating <jkeating at redhat.com> - 1.16-1
- Only read from .koji/config (jkeating)
--------------------------------------------------------------------------------
================================================================================
smb4k-1.0.1-5.fc16 (FEDORA-2012-5648)
The SMB/CIFS Share Browser for KDE
--------------------------------------------------------------------------------
Update Information:
Unretirment of smb4k and update to newer version 1.0.1. Smb4k still maintained and project has moved sourceforge.net. Smb4k, for me, still useful for detect and mount windows Network and smb NAS.
smb4k has been orphan at F15 and dropped on F16.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Sérgio Basto <sergio at serjux.com> - 1.0.1-5
- Obsoletes: smb4k-devel for F15
* Mon Apr 2 2012 Sérgio Basto <sergio at serjux.com> - 1.0.1-4
- a little review
* Wed Mar 28 2012 Sérgio Basto <sergio at serjux.com> - 1.0.1-3
- new review
* Tue Mar 27 2012 Sérgio Basto <sergio at serjux.com> - 1.0.1-2
- review
- remove devel subpackage
* Sat Mar 24 2012 Sérgio Basto <sergio at serjux.com> - 1.0.1-1
- New upstream version 1.0.1
- some cleanups for fedora-review.
* Sun Dec 4 2011 Sérgio Basto <sergio at serjux.com> - 0.10.12-1
- update to 0.10.12
- drop qtstring upstreamed patch
* Thu Dec 1 2011 Sérgio Basto <sergio at serjux.com> - 0.10.11-1
- update to 0.10.11
- patch a qtstring to fix a compile error.
- update homepage project and url source.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799651 - Review Request: smb4k - The SMB/CIFS Share Browser for KDE
https://bugzilla.redhat.com/show_bug.cgi?id=799651
--------------------------------------------------------------------------------
================================================================================
sssd-1.8.2-10.fc16 (FEDORA-2012-4404)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
Changes in sssd-1.8.1-8.fc17
* Fixes an uninitialized variable that was causing crashes throughout the code.
Changes in sssd-1.8.1-9.fc16
* Don't duplicate libsss_autofs.so in two packages
* Set explicit package contents instead of globbing
Changes in sssd-1.8.2-10.fc17
* New upstream release 1.8.2
* https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2
* Several fixes to case-insensitive domain functions
* Fix for GSSAPI binds when the keytab contains unrelated principals
* Fixed several segfaults
* Workarounds added for LDAP servers with unreadable RootDSE
* SSH knownhostproxy will no longer enter an infinite loop preventing login
* The provided SYSV init script now starts SSSD earlier at startup and stops it later during shutdown
* Assorted minor fixes for issues discovered by static analysis tools
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Stephen Gallagher <sgallagh at redhat.com> - 1.8.2-10
- New upstream release 1.8.2
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.8.2
- Several fixes to case-insensitive domain functions
- Fix for GSSAPI binds when the keytab contains unrelated principals
- Fixed several segfaults
- Workarounds added for LDAP servers with unreadable RootDSE
- SSH knownhostproxy will no longer enter an infinite loop preventing login
- The provided SYSV init script now starts SSSD earlier at startup and stops
it later during shutdown
- Assorted minor fixes for issues discovered by static analysis tools
* Mon Mar 26 2012 Stephen Gallagher <sgallagh at redhat.com> - 1.8.1-9
- Don't duplicate libsss_autofs.so in two packages
- Set explicit package contents instead of globbing
* Wed Mar 21 2012 Stephen Gallagher <sgallagh at redhat.com> - 1.8.1-8
- Fix uninitialized value bug causing crashes throughout the code
- Resolves: rhbz#804783 - [abrt] Segfault during LDAP 'services' lookup
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #805566 - [abrt] sssd-1.8.1-8.fc16: strlen: Process /usr/libexec/sssd/sssd_be was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=805566
[ 2 ] Bug #810608 - authconfig crashes on --update
https://bugzilla.redhat.com/show_bug.cgi?id=810608
--------------------------------------------------------------------------------
================================================================================
tomcat-7.0.27-2.fc16 (FEDORA-2012-5647)
Apache Servlet/JSP Engine, RI for Servlet 3.0/JSP 2.2 API
--------------------------------------------------------------------------------
Update Information:
- Updated to 7.0.27
- Fixed jakarta-taglibs-standard BR and R
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 10 2012 Ivan Afonichev <ivan.afonichev at gmail.com> 0:7.0.27-2
- Fixed tomcat-native download
* Sat Apr 7 2012 Ivan Afonichev <ivan.afonichev at gmail.com> 0:7.0.27-1
- Updated to 7.0.27
- Fixed jakarta-taglibs-standard BR and R
--------------------------------------------------------------------------------
================================================================================
twirssi-2.5.1-3.fc16 (FEDORA-2012-5634)
An Irssi script to interact with Twitter
--------------------------------------------------------------------------------
Update Information:
Fixed missing deps.
Twirssi is an Irssi script that allows you to interact with Twitter.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #809948 - Missing Requires: WWW::Shortner::TinyURL; LWP::Protocol::https
https://bugzilla.redhat.com/show_bug.cgi?id=809948
[ 2 ] Bug #808254 - Review Request: twirssi - Allows you to post to Twitter from Irssi
https://bugzilla.redhat.com/show_bug.cgi?id=808254
--------------------------------------------------------------------------------
================================================================================
v4l-utils-0.8.7-1.fc16 (FEDORA-2012-5669)
Utilities for video4linux and DVB devices
--------------------------------------------------------------------------------
Update Information:
New upstream bugfix release 0.8.7
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 9 2012 Hans de Goede <hdegoede at redhat.com> - 0.8.7-1
- New upstream release 0.8.7
- Fixes rhbz#807656
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.8.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #807656 - V4L-utils should be upgraded to add dvb-fe-tool
https://bugzilla.redhat.com/show_bug.cgi?id=807656
--------------------------------------------------------------------------------
================================================================================
worker-2.19.2-1.fc16 (FEDORA-2012-5640)
File Manager for the X11
--------------------------------------------------------------------------------
Update Information:
Version Update.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 8 2012 Nathan Owe <ndowens at fedoraproject.org> 2.19.2-1
- Updated version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808417 - worker-2.19.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=808417
--------------------------------------------------------------------------------
More information about the test
mailing list